diff options
Diffstat (limited to 'seccomp/arm/video_device.policy')
| -rw-r--r-- | seccomp/arm/video_device.policy | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/seccomp/arm/video_device.policy b/seccomp/arm/video_device.policy new file mode 100644 index 0000000..f8a722d --- /dev/null +++ b/seccomp/arm/video_device.policy @@ -0,0 +1,25 @@ +# Copyright 2020 The Chromium OS Authors. All rights reserved. +# Use of this source code is governed by a BSD-style license that can be +# found in the LICENSE file. + +@include /usr/share/policy/crosvm/common_device.policy + +# Syscalls specific to video devices. +clock_getres: 1 +clock_gettime: 1 +connect: 1 +fcntl64: arg1 == F_GETFL || arg1 == F_SETFL || arg1 == F_DUPFD_CLOEXEC || arg1 == F_GETFD || arg1 == F_SETFD +getegid32: 1 +geteuid32: 1 +getgid32: 1 +getresgid32: 1 +getresuid32: 1 +getsockname: 1 +getuid32: 1 +# ioctl: arg1 == DRM_IOCTL_* +ioctl: arg1 & 0x6400 +openat: 1 +send: 1 +setpriority: 1 +socket: arg0 == AF_UNIX +stat64: 1 |