seccomp: whitelist statx syscall
This whitelists the statx syscall; libseccomp-2.3.3 or up is needed for this, older seccomp versions will ignore this. Equivalent of https://github.com/moby/moby/pull/36417 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
This commit is contained in:
parent
9ab4c8cbcc
commit
8f8fd3c3a8
@ -320,6 +320,7 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
|
||||
"stat64",
|
||||
"statfs",
|
||||
"statfs64",
|
||||
"statx",
|
||||
"symlink",
|
||||
"symlinkat",
|
||||
"sync",
|
||||
|
Loading…
Reference in New Issue
Block a user