in libbeat/common/seccomp/policy_linux_amd64.go [24:157]
func init() {
defaultPolicy = &seccomp.Policy{
DefaultAction: seccomp.ActionErrno,
Syscalls: []seccomp.SyscallGroup{
{
Action: seccomp.ActionAllow,
Names: []string{
"accept",
"accept4",
"access",
"arch_prctl",
"bind",
"brk",
"capget",
"chmod",
"chown",
"clock_gettime",
"clock_nanosleep",
"clone",
"clone3",
"close",
"connect",
"dup",
"dup2",
"dup3",
"epoll_create",
"epoll_create1",
"epoll_ctl",
"epoll_pwait",
"epoll_wait",
"execve",
"exit",
"exit_group",
"faccessat",
"faccessat2",
"fchdir",
"fchmod",
"fchmodat",
"fchown",
"fchownat",
"fcntl",
"fdatasync",
"flock",
"fstat",
"fstatfs",
"fsync",
"ftruncate",
"futex",
"getcwd",
"getdents",
"getdents64",
"geteuid",
"getgid",
"getpeername",
"getpid",
"getppid",
"getrandom",
"getrlimit",
"getrusage",
"getsockname",
"getsockopt",
"gettid",
"gettimeofday",
"getuid",
"inotify_add_watch",
"inotify_init1",
"inotify_rm_watch",
"ioctl",
"kill",
"listen",
"lseek",
"lstat",
"madvise",
"mincore",
"mkdirat",
"mmap",
"mprotect",
"munmap",
"nanosleep",
"newfstatat",
"open",
"openat",
"pipe",
"pipe2",
"poll",
"ppoll",
"prctl",
"pread64",
"pselect6",
"pwrite64",
"read",
"readlink",
"readlinkat",
"recvfrom",
"recvmmsg",
"recvmsg",
"rename",
"renameat",
"rseq",
"rt_sigaction",
"rt_sigprocmask",
"rt_sigreturn",
"sched_getaffinity",
"sched_yield",
"sendfile",
"sendmmsg",
"sendmsg",
"sendto",
"set_robust_list",
"setitimer",
"setrlimit",
"setsockopt",
"shutdown",
"sigaltstack",
"socket",
"splice",
"stat",
"statfs",
"sysinfo",
"tgkill",
"time",
"tkill",
"uname",
"unlink",
"unlinkat",
"wait4",
"waitid",
"write",
"writev",
},
},
},
}
}