From 0c8a6da4eada661a68ac095789ae8acd7f2fb373 Mon Sep 17 00:00:00 2001
From: =?utf8?q?S=C3=B6ren=20Tempel?= <soeren@soeren-tempel.net>
Date: Sun, 14 Jun 2026 18:16:55 +0200
Subject: [PATCH] sys_linux: allow readv syscall in seccomp filter

This system call is used by musl libc to implement fread(3). This
library function is used by gnutls (e.g., when compiling chrony
with NTS support). This has been discovered in Alpine Linux.
---
 sys_linux.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/sys_linux.c b/sys_linux.c
index 210428b8..74255915 100644
--- a/sys_linux.c
+++ b/sys_linux.c
@@ -539,6 +539,7 @@ SYS_Linux_EnableSystemCallFilter(int level, SYS_ProcessContext context)
     SCMP_SYS(pselect6_time64),
 #endif
     SCMP_SYS(read),
+    SCMP_SYS(readv),
     SCMP_SYS(futex),
 #ifdef __NR_futex_time64
     SCMP_SYS(futex_time64),
-- 
2.47.3