From 0583ce921be408509748efbd57531129e1fc05c9 Mon Sep 17 00:00:00 2001
From: "Dr. David Alan Gilbert" <dgilbert@redhat.com>
Date: Wed, 24 Jun 2020 18:19:03 +0100
Subject: [PATCH] vhost_user_fs: Allow fchmod in seccomp

This corresponds to QEMU's 63659fe74e76f5c52854 commit.
the setattr code uses both fchmod and fchmodat in different cases,
however we only had fchmodat in the whitelist.

Signed-off-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
---
 vhost_user_fs/src/seccomp.rs | 1 +
 1 file changed, 1 insertion(+)

diff --git a/vhost_user_fs/src/seccomp.rs b/vhost_user_fs/src/seccomp.rs
index 3ce9446ec..9f887939f 100644
--- a/vhost_user_fs/src/seccomp.rs
+++ b/vhost_user_fs/src/seccomp.rs
@@ -51,6 +51,7 @@ fn vuf_filter(action: SeccompAction) -> Result<SeccompFilter, Error> {
             allow_syscall(libc::SYS_exit_group),
             allow_syscall(libc::SYS_fallocate),
             allow_syscall(libc::SYS_fchdir),
+            allow_syscall(libc::SYS_fchmod),
             allow_syscall(libc::SYS_fchmodat),
             allow_syscall(libc::SYS_fchownat),
             allow_syscall(libc::SYS_fcntl),