From: Lennart Poettering <lennart@poettering.net>
Date: Wed, 9 Jun 2021 09:56:00 +0000 (+0200)
Subject: seccomp: add some recently added syscalls to filter groups
X-Git-Tag: v249-rc1~54
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=34254e599a28529bdb89f91571adeaf7c76d9f43;p=thirdparty%2Fsystemd.git

seccomp: add some recently added syscalls to filter groups
---

diff --git a/src/shared/seccomp-util.c b/src/shared/seccomp-util.c
index 9813d82f956..6da856872b5 100644
--- a/src/shared/seccomp-util.c
+++ b/src/shared/seccomp-util.c
@@ -514,6 +514,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "epoll_ctl\0"
                 "epoll_ctl_old\0"
                 "epoll_pwait\0"
+                "epoll_pwait2\0"
                 "epoll_wait\0"
                 "epoll_wait_old\0"
                 "eventfd\0"
@@ -545,6 +546,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "msgsnd\0"
                 "pipe\0"
                 "pipe2\0"
+                "process_madvise\0"
                 "process_vm_readv\0"
                 "process_vm_writev\0"
                 "semctl\0"
@@ -593,6 +595,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "fsopen\0"
                 "fspick\0"
                 "mount\0"
+                "mount_setattr\0"
                 "move_mount\0"
                 "open_tree\0"
                 "pivot_root\0"
@@ -688,6 +691,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "open_by_handle_at\0"
                 "pivot_root\0"
                 "quotactl\0"
+                "quotactl_path\0"
                 "setdomainname\0"
                 "setfsuid\0"
                 "setfsuid32\0"