xref: /aosp_15_r20/external/crosvm/jail/seccomp/aarch64/gpu_render_server.policy (revision bb4ee6a4ae7042d18b07a98463b9c8b875e44b39) 
1# Copyright 2021 The ChromiumOS Authors
2# Use of this source code is governed by a BSD-style license that can be
3# found in the LICENSE file.
4
5@include /usr/share/policy/crosvm/gpu_common.policy
6
7# allow fork() and waitid()
8clone: 1
9waitid: 1
10
11# allow SOCK_STREAM and SOCK_DGRAM (syslog)
12socket: arg0 == AF_UNIX && arg2 == 0
13
14# allow socketpair(AF_UNIX, SOCK_SEQPACKET | SOCK_CLOEXEC)
15socketpair: arg0 == AF_UNIX && arg1 == SOCK_SEQPACKET|SOCK_CLOEXEC && arg2 == 0
16
17# allow signalfd()
18signalfd4: 1
19