linux: add readv and pipe2 to acme seccomp filters. - kore - Kore is a web application platform for writing scalable, concurrent web based processes in C or Python.

commit 3410a9db9192d772241e8748b1d9020d01fcc622
parent 6122affe22bf676eed0f544e421c53699aa7a2e2
Author: Joris Vink <joris@coders.se>
Date:   Thu, 12 Dec 2024 10:21:25 +0100

linux: add readv and pipe2 to acme seccomp filters.

Diffstat:
src/acme.c  | 7 ++++++-

1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/src/acme.c b/src/acme.c
@@ -97,7 +97,12 @@ static struct sock_filter filter_acme[] = {
 	KORE_SYSCALL_ALLOW(faccessat),
 	KORE_SYSCALL_ALLOW(newfstatat),
 	KORE_SYSCALL_ALLOW(clock_gettime),
-
+#if defined(SYS_pipe2)
+	KORE_SYSCALL_ALLOW(pipe2),
+#endif
+#if defined(SYS_readv)
+	KORE_SYSCALL_ALLOW(readv),
+#endif
 	KORE_SYSCALL_ALLOW(bind),
 	KORE_SYSCALL_ALLOW(ioctl),
 	KORE_SYSCALL_ALLOW(connect),

	kore Kore is a web application platform for writing scalable, concurrent web based processes in C or Python.
	Commits \| Files \| Refs \| README \| LICENSE \| git clone https://git.kore.io/kore.git