| Paul Lawrence | 3dd3d55 | 2017-04-12 10:02:54 -0700 | [diff] [blame] | 1 | # This file is used to populate seccomp's whitelist policy in combination with SYSCALLS.TXT. |
| 2 | # Note that the resultant policy is applied only to zygote spawned processes. |
| 3 | # |
| 4 | # The final seccomp whitelist is SYSCALLS.TXT - SECCOMP_BLACKLIST.TXT + SECCOMP_WHITELIST.TXT |
| 5 | # Any entry in the blacklist must be in the syscalls file and not be in the whitelist file |
| 6 | # |
| Victor Hsieh | 4f02dd5 | 2017-12-20 09:19:22 -0800 | [diff] [blame] | 7 | # This file is processed by a python script named genseccomp.py. |
| Paul Lawrence | 3dd3d55 | 2017-04-12 10:02:54 -0700 | [diff] [blame] | 8 | |
| 9 | int swapon(const char*, int) all |
| 10 | int swapoff(const char*) all |