profiles/seccomp.Syscall: use pointers and omitempty

These fields are optional, and this makes the JSON representation slightly less verbose. Signed-off-by: Sebastiaan van Stijn <[email protected]>
moby · Jun 17, 2021 · c7cd1b9 · c7cd1b9
1 parent d927397
commit c7cd1b9
Show file tree

Hide file tree

Showing 4 changed files with 80 additions and 132 deletions.
diff --git a/profiles/seccomp/default.json b/profiles/seccomp/default.json
@@ -393,10 +393,7 @@
  "write",
  "writev"
  ],
- "action": "SCMP_ACT_ALLOW",
- "comment": "",
- "includes": {},
- "excludes": {}
+ "action": "SCMP_ACT_ALLOW"
  },
  {
  "names": [
@@ -405,11 +402,9 @@
  "ptrace"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "minKernel": "4.8"
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -422,10 +417,7 @@
  "value": 0,
  "op": "SCMP_CMP_EQ"
  }
- ],
- "comment": "",
- "includes": {},
- "excludes": {}
+ ]
  },
  {
  "names": [
@@ -438,10 +430,7 @@
  "value": 8,
  "op": "SCMP_CMP_EQ"
  }
- ],
- "comment": "",
- "includes": {},
- "excludes": {}
+ ]
  },
  {
  "names": [
@@ -454,10 +443,7 @@
  "value": 131072,
  "op": "SCMP_CMP_EQ"
  }
- ],
- "comment": "",
- "includes": {},
- "excludes": {}
+ ]
  },
  {
  "names": [
@@ -470,10 +456,7 @@
  "value": 131080,
  "op": "SCMP_CMP_EQ"
  }
- ],
- "comment": "",
- "includes": {},
- "excludes": {}
+ ]
  },
  {
  "names": [
@@ -486,23 +469,18 @@
  "value": 4294967295,
  "op": "SCMP_CMP_EQ"
  }
- ],
- "comment": "",
- "includes": {},
- "excludes": {}
+ ]
  },
  {
  "names": [
  "sync_file_range2"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "arches": [
  "ppc64le"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -514,43 +492,37 @@
  "set_tls"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "arches": [
  "arm",
  "arm64"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "arch_prctl"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "arches": [
  "amd64",
  "x32"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "modify_ldt"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "arches": [
  "amd64",
  "x32",
  "x86"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -559,27 +531,23 @@
  "s390_runtime_instr"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "arches": [
  "s390",
  "s390x"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "open_by_handle_at"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_DAC_READ_SEARCH"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -606,13 +574,11 @@
  "unshare"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_ADMIN"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -626,8 +592,6 @@
  "op": "SCMP_CMP_MASKED_EQ"
  }
  ],
- "comment": "",
- "includes": {},
  "excludes": {
  "caps": [
  "CAP_SYS_ADMIN"
@@ -668,26 +632,22 @@
  "reboot"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_BOOT"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "chroot"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_CHROOT"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -696,26 +656,22 @@
  "finit_module"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_MODULE"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "acct"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_PACCT"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -727,27 +683,23 @@
  "ptrace"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_PTRACE"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "iopl",
  "ioperm"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_RAWIO"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -756,26 +708,22 @@
  "clock_settime"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_TIME"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "vhangup"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_TTY_CONFIG"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
@@ -784,26 +732,22 @@
  "set_mempolicy"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYS_NICE"
  ]
- },
- "excludes": {}
+ }
  },
  {
  "names": [
  "syslog"
  ],
  "action": "SCMP_ACT_ALLOW",
- "comment": "",
  "includes": {
  "caps": [
  "CAP_SYSLOG"
  ]
- },
- "excludes": {}
+ }
  }
  ]
 }