syscalls: Bump to systemd 256

oxzi · Nov 29, 2024 · ac4a738 · ac4a738
1 parent a276504
commit ac4a738
Show file tree

Hide file tree

Showing 2 changed files with 31 additions and 86 deletions.
diff --git a/README.md b/README.md
@@ -93,6 +93,7 @@ Then, just use the generator tool.
 
 ```
 $ go run generator/gen.go generator/go.tmpl > syscalls.go
+$ go run generator/gen.go generator/go-apidoc.tmpl > syscallset.go
 ```
 
 As systemd's userland applications are sufficient, one can use Docker to update the list to a recent version:

diff --git a/syscalls.go b/syscalls.go
@@ -13,7 +13,7 @@
 // - https://github.com/systemd/systemd/blob/main/src/shared/seccomp-util.c
 // - https://github.com/systemd/systemd/blob/main/src/analyze/analyze-syscall-filter.c
 
-// Generated based on systemd 254 (254.3-1-arch)
+// Generated based on systemd 256 (256.8-2-arch)
 
 package syscallset
 
@@ -129,6 +129,9 @@ var syscallSets = map[string][]string{
 		"gettimeofday",
 		"getuid",
 		"getuid32",
+		"landlock_add_rule",
+		"landlock_create_ruleset",
+		"landlock_restrict_self",
 		"membarrier",
 		"mmap",
 		"mmap2",
@@ -144,13 +147,15 @@ var syscallSets = map[string][]string{
 		"rt_sigreturn",
 		"sched_getaffinity",
 		"sched_yield",
+		"seccomp",
 		"set_robust_list",
 		"set_thread_area",
 		"set_tid_address",
 		"set_tls",
 		"sigreturn",
 		"time",
 		"ugetrlimit",
+		"uretprobe",
 	},
 	// file-system: File system operations
 	"file-system": []string{
@@ -165,6 +170,7 @@ var syscallSets = map[string][]string{
 		"fchdir",
 		"fchmod",
 		"fchmodat",
+		"fchmodat2",
 		"fcntl",
 		"fcntl64",
 		"fgetxattr",
@@ -305,6 +311,7 @@ var syscallSets = map[string][]string{
 		"arc_settls",
 		"arc_usr_cmpxchg",
 		"arch_prctl",
+		"arm_fadvise64_64",
 		"atomic_barrier",
 		"atomic_cmpxchg_32",
 		"bdflush",
@@ -333,7 +340,6 @@ var syscallSets = map[string][]string{
 		"clock_settime",
 		"clock_settime64",
 		"clone",
-		"clone2",
 		"clone3",
 		"close",
 		"close_range",
@@ -372,6 +378,7 @@ var syscallSets = map[string][]string{
 		"fchdir",
 		"fchmod",
 		"fchmodat",
+		"fchmodat2",
 		"fchown",
 		"fchown32",
 		"fchownat",
@@ -383,7 +390,6 @@ var syscallSets = map[string][]string{
 		"flistxattr",
 		"flock",
 		"fork",
-		"fp_udfiex_crtl",
 		"fremovexattr",
 		"fsconfig",
 		"fsetxattr",
@@ -400,8 +406,11 @@ var syscallSets = map[string][]string{
 		"ftruncate",
 		"ftruncate64",
 		"futex",
+		"futex_requeue",
 		"futex_time64",
+		"futex_wait",
 		"futex_waitv",
+		"futex_wake",
 		"futimesat",
 		"get_kernel_syms",
 		"get_mempolicy",
@@ -445,7 +454,6 @@ var syscallSets = map[string][]string{
 		"gettimeofday",
 		"getuid",
 		"getuid32",
-		"getunwind",
 		"getxattr",
 		"getxgid",
 		"getxpid",
@@ -488,16 +496,21 @@ var syscallSets = map[string][]string{
 		"link",
 		"linkat",
 		"listen",
+		"listmount",
 		"listxattr",
 		"llistxattr",
 		"lock",
 		"lookup_dcookie",
 		"lremovexattr",
 		"lseek",
 		"lsetxattr",
+		"lsm_get_self_attr",
+		"lsm_list_modules",
+		"lsm_set_self_attr",
 		"lstat",
 		"lstat64",
 		"madvise",
+		"map_shadow_stack",
 		"mbind",
 		"membarrier",
 		"memfd_create",
@@ -530,6 +543,7 @@ var syscallSets = map[string][]string{
 		"mq_timedsend_time64",
 		"mq_unlink",
 		"mremap",
+		"mseal",
 		"msgctl",
 		"msgget",
 		"msgrcv",
@@ -542,10 +556,8 @@ var syscallSets = map[string][]string{
 		"name_to_handle_at",
 		"nanosleep",
 		"newfstatat",
-		"nfsservctl",
 		"nice",
 		"old_adjtimex",
-		"old_getpagesize",
 		"oldfstat",
 		"oldlstat",
 		"oldolduname",
@@ -558,116 +570,36 @@ var syscallSets = map[string][]string{
 		"openat",
 		"openat2",
 		"or1k_atomic",
-		"osf_adjtime",
-		"osf_afs_syscall",
-		"osf_alt_plock",
-		"osf_alt_setsid",
-		"osf_alt_sigpending",
-		"osf_asynch_daemon",
-		"osf_audcntl",
-		"osf_audgen",
-		"osf_chflags",
-		"osf_execve",
-		"osf_exportfs",
-		"osf_fchflags",
-		"osf_fdatasync",
-		"osf_fpathconf",
 		"osf_fstat",
 		"osf_fstatfs",
 		"osf_fstatfs64",
-		"osf_fuser",
-		"osf_getaddressconf",
 		"osf_getdirentries",
 		"osf_getdomainname",
-		"osf_getfh",
-		"osf_getfsstat",
-		"osf_gethostid",
 		"osf_getitimer",
-		"osf_getlogin",
-		"osf_getmnt",
 		"osf_getrusage",
 		"osf_getsysinfo",
 		"osf_gettimeofday",
-		"osf_kloadcall",
-		"osf_kmodcall",
 		"osf_lstat",
-		"osf_memcntl",
-		"osf_mincore",
 		"osf_mount",
-		"osf_mremap",
-		"osf_msfs_syscall",
-		"osf_msleep",
-		"osf_mvalid",
-		"osf_mwakeup",
-		"osf_naccept",
-		"osf_nfssvc",
-		"osf_ngetpeername",
-		"osf_ngetsockname",
-		"osf_nrecvfrom",
-		"osf_nrecvmsg",
-		"osf_nsendmsg",
-		"osf_ntp_adjtime",
-		"osf_ntp_gettime",
-		"osf_old_creat",
-		"osf_old_fstat",
-		"osf_old_getpgrp",
-		"osf_old_killpg",
-		"osf_old_lstat",
-		"osf_old_open",
-		"osf_old_sigaction",
-		"osf_old_sigblock",
-		"osf_old_sigreturn",
-		"osf_old_sigsetmask",
-		"osf_old_sigvec",
-		"osf_old_stat",
-		"osf_old_vadvise",
-		"osf_old_vtrace",
-		"osf_old_wait",
-		"osf_oldquota",
-		"osf_pathconf",
-		"osf_pid_block",
-		"osf_pid_unblock",
-		"osf_plock",
-		"osf_priocntlset",
-		"osf_profil",
 		"osf_proplist_syscall",
-		"osf_reboot",
-		"osf_revoke",
-		"osf_sbrk",
-		"osf_security",
 		"osf_select",
 		"osf_set_program_attributes",
-		"osf_set_speculative",
-		"osf_sethostid",
 		"osf_setitimer",
-		"osf_setlogin",
 		"osf_setsysinfo",
 		"osf_settimeofday",
 		"osf_shmat",
-		"osf_signal",
 		"osf_sigprocmask",
-		"osf_sigsendset",
 		"osf_sigstack",
-		"osf_sigwaitprim",
-		"osf_sstk",
 		"osf_stat",
 		"osf_statfs",
 		"osf_statfs64",
-		"osf_subsys_info",
-		"osf_swapctl",
 		"osf_swapon",
 		"osf_syscall",
 		"osf_sysinfo",
-		"osf_table",
-		"osf_uadmin",
 		"osf_usleep_thread",
-		"osf_uswitch",
-		"osf_utc_adjtime",
-		"osf_utc_gettime",
 		"osf_utimes",
 		"osf_utsname",
 		"osf_wait4",
-		"osf_waitid",
 		"pause",
 		"pciconfig_iobase",
 		"pciconfig_read",
@@ -741,6 +673,11 @@ var syscallSets = map[string][]string{
 		"rt_sigtimedwait_time64",
 		"rt_tgsigqueueinfo",
 		"rtas",
+		"s390_guarded_storage",
+		"s390_pci_mmio_read",
+		"s390_pci_mmio_write",
+		"s390_runtime_instr",
+		"s390_sthyi",
 		"sched_get_affinity",
 		"sched_get_priority_max",
 		"sched_get_priority_min",
@@ -832,6 +769,7 @@ var syscallSets = map[string][]string{
 		"stat64",
 		"statfs",
 		"statfs64",
+		"statmount",
 		"statx",
 		"stime",
 		"stty",
@@ -1220,6 +1158,7 @@ var syscallSets = map[string][]string{
 		"fchdir",
 		"fchmod",
 		"fchmodat",
+		"fchmodat2",
 		"fchown",
 		"fchown32",
 		"fchownat",
@@ -1302,6 +1241,9 @@ var syscallSets = map[string][]string{
 		"kcmp",
 		"keyctl",
 		"kill",
+		"landlock_add_rule",
+		"landlock_create_ruleset",
+		"landlock_restrict_self",
 		"lchown",
 		"lchown32",
 		"lgetxattr",
@@ -1426,6 +1368,7 @@ var syscallSets = map[string][]string{
 		"sched_setparam",
 		"sched_setscheduler",
 		"sched_yield",
+		"seccomp",
 		"select",
 		"semctl",
 		"semget",
@@ -1526,6 +1469,7 @@ var syscallSets = map[string][]string{
 		"unlink",
 		"unlinkat",
 		"unshare",
+		"uretprobe",
 		"userfaultfd",
 		"utime",
 		"utimensat",
-Original file line number
+Diff line change
@@ Expand Up / @@ -93,6 +93,7 @@ Then, just use the generator tool. @@
     ```
     $ go run generator/gen.go generator/go.tmpl > syscalls.go
+    $ go run generator/gen.go generator/go-apidoc.tmpl > syscallset.go
     ```
     As systemd's userland applications are sufficient, one can use Docker to update the list to a recent version:
@@ Expand Down @@