summary refs log tree commit diff
path: root/seccomp/arm/gpu_device.policy
diff options
context:
space:
mode:
Diffstat (limited to 'seccomp/arm/gpu_device.policy')
-rw-r--r--seccomp/arm/gpu_device.policy4
1 files changed, 2 insertions, 2 deletions
diff --git a/seccomp/arm/gpu_device.policy b/seccomp/arm/gpu_device.policy
index f177775..4e3a052 100644
--- a/seccomp/arm/gpu_device.policy
+++ b/seccomp/arm/gpu_device.policy
@@ -23,7 +23,6 @@ madvise: arg2 == MADV_DONTNEED || arg2 == MADV_DONTDUMP || arg2 == MADV_REMOVE
 mremap: 1
 munmap: 1
 nanosleep: 1
-open: return ENOENT
 pipe2: 1
 poll: 1
 ppoll: 1
@@ -62,9 +61,10 @@ ioctl: arg1 & 0x6400 || arg1 & 0x8000
 # Used for sharing memory with wayland. arg1 == MFD_CLOEXEC|MFD_ALLOW_SEALING
 memfd_create: arg1 == 3
 
-## mmap/mprotect/openat differ from the common_device.policy
+## mmap/mprotect differ from the common_device.policy
 mmap2: arg2 == PROT_READ|PROT_WRITE || arg2 == PROT_NONE || arg2 == PROT_READ|PROT_EXEC || arg2 == PROT_WRITE || arg2 == PROT_READ
 mprotect: arg2 == PROT_READ|PROT_WRITE || arg2 == PROT_NONE || arg2 == PROT_READ
+open: return ENOENT
 openat: 1
 
 ## Rules specific to pvr
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-14 21:01:34 +0000