vmm: seccomp: Add epoll_pwait syscall to permitted list

This is needed for basic operation on the musl target. Signed-off-by: Rob Bradford <robert.bradford@intel.com>
2024-10-05 21:15:45 +00:00 · 2020-04-27 15:18:05 +01:00 · 2020-04-27 15:18:05 +01:00 · 12758d7fad
commit 12758d7fad
parent 86fcd19b8a
1 changed files with 2 additions and 0 deletions
--- a/vmm/src/seccomp_filters.rs
+++ b/vmm/src/seccomp_filters.rs
@ -202,6 +202,7 @@ pub fn vmm_thread_filter() -> Result<SeccompFilter, Error> {
            allow_syscall(libc::SYS_dup),
            allow_syscall(libc::SYS_epoll_create1),
            allow_syscall(libc::SYS_epoll_ctl),
+            allow_syscall(libc::SYS_epoll_pwait),
            allow_syscall(libc::SYS_epoll_wait),
            allow_syscall(libc::SYS_eventfd2),
            allow_syscall(libc::SYS_execve),
@ -279,6 +280,7 @@ pub fn api_thread_filter() -> Result<SeccompFilter, Error> {
            allow_syscall(libc::SYS_dup),
            allow_syscall(libc::SYS_epoll_create1),
            allow_syscall(libc::SYS_epoll_ctl),
+            allow_syscall(libc::SYS_epoll_pwait),
            allow_syscall(libc::SYS_epoll_wait),
            allow_syscall(libc::SYS_exit),
            allow_syscall(libc::SYS_futex),