System calls allow the kernel to carefully expose certain key pieces of functionality to user programs, such as accessing the file system, creating and destroying processes, communicating with other processes, and allocating more memory.
Early Unix systems exposed around twenty calls, Linux and OpenBSD each have over 300 different calls, NetBSD has close to 500, FreeBSD has over 500.
A system call is a C procedure call, the change of mode is achieved by special instructions hidden inside:
<ul>
 <li><code>trap</code> instruction: enter kernel mode.</li>
 <li><code>return-from-trap</code> instruction: back to user program in user mode.</li>
</ul>
<h2>ioctl</h2>
Controls hardware devices.
Kernel accepts device drivers as extra modules. Device drivers run in kernel space and can directly address the device. <code>ioctl</code> is a single system call that userspace can use it to communicate with device drivers.
Unix command-line interface is built on pseudo terminals, which are controlled as if they were hardware devices, so <code>ioctl</code> is used.
<h2>seccomp</h2>
Secure computing mode (seccomp): Any system calls not on the list are disallowed.
It can be used to sandbox the privileges of a process, restricting the calls it is able to make from userspace into the kernel.

System Calls

Google Ads vs Google Marketing Platform vs Google Ad Manager vs AdSense vs AdMob

Life of an Ad Request

Ads - Random Notes

Ads - Versus

Android - Concepts

Android - Overview

Android - Location

Android - Tools

Android - Trouble Shooting

Ansible Cheatsheet

apt/dpkg Cheatsheet

awk Cheatsheet

AWS CLI Cheatsheet

Azure CLI (az) Cheatsheet

Base64 Cheatsheet

Bash

Bazel Cheatsheet

HomeBrew Cheatsheet

Ceph Cheatsheet

Chrome Cheatsheet

Cilium Cheatsheet

AWS vs GCP vs Azure Service Comparison

containerd Cheatsheet

Containers Cheatsheet

C++ Cheatsheet

crictl cheatsheet

cron Cheatsheet

CSS Cheatsheet

CSV Cheatsheet

curl Cheatsheet

Shell Cheatsheet - Devices and File Systems

Docker Build Cheatsheet

Docker Cheatsheet

etcd Cheatsheet

gcloud CLI Cheatsheet

Git Cheatsheet

Go Cheatsheet

grep / egrep / fgrep Cheatsheet

Harbor Cheatsheet

Helm Cheatsheet

HG Cheatsheet

HTML Cheatsheet

HTTP Response Status Codes

Intellij Cheatsheet

Java Cheatsheet

JavaScript Cheatsheet

jq Cheatsheet

JSON Cheatsheet

k9s Cheatsheet

kind Cheatsheet

kubeadm Cheatsheet

kubectl Cheatsheet

LaTeX Cheatsheet

libvirt Cheatsheet

macOS cheatsheet

Markdown Cheatsheet

Minikube Cheatsheet

Cheatsheets - MySQL

Networking - Lookup Tables

Shell Cheatsheet - Networking Commands

Nginx Cheatsheet

Cheatsheets - openssl

PostgreSQL Cheatsheet

Protocol Buffers (Protobuf) Cheatsheet

Python Cheatsheet

QCOW Cheatsheet

RegEx Cheatsheet

sed Cheatsheet

Shell Cheatsheet - Commands

Shell Cheatsheet - Processes

Shell Cheatsheet - Scripts

Shell Cheatsheet - Shortcuts

Shell - Tips

Shell - Users and Groups

Signals Cheatsheet

Cloud Spanner Cheatsheet

Cheatsheets - SQL

ssh / mosh / sshuttle Cheatsheet

Syscalls Cheatsheet

systemd Cheatsheet

Shell Cheatsheet - tar / zip

Terraform Cheatsheet

Cheatsheets - tmux

Ubuntu Desktop Cheatsheet

Cheatsheets - Vim

VS Code Cheatsheet

Windows Cheatsheet

XML Cheatsheet

YAML Cheatsheet

yq Cheatsheet

Cloud - AWS

Hybrid Cloud

Cloud

C++ Keywords - auto

C++ - Best Practices

C++ - const

C++ - constexpr