summaryrefslogtreecommitdiffhomepage
diff options
context:
space:
mode:
Diffstat
-rw-r--r--runsc/fsgofer/filter/config.go3
1 files changed, 3 insertions, 0 deletions
diff --git a/runsc/fsgofer/filter/config.go b/runsc/fsgofer/filter/config.go
index 71f387bd0..c058c433b 100644
--- a/runsc/fsgofer/filter/config.go
+++ b/runsc/fsgofer/filter/config.go
@@ -39,6 +39,8 @@ var allowedSyscalls = seccomp.SyscallRules{
syscall.SYS_SETSOCKOPT: []seccomp.Rule{
{
seccomp.AllowAny{},
+ seccomp.AllowValue(syscall.SOL_SOCKET),
+ seccomp.AllowValue(syscall.SO_BROADCAST),
},
},
syscall.SYS_GETSOCKNAME: []seccomp.Rule{
@@ -110,6 +112,7 @@ var allowedSyscalls = seccomp.SyscallRules{
},
{
seccomp.AllowAny{},
+ seccomp.AllowValue(syscall.F_DUPFD_CLOEXEC),
},
},
syscall.SYS_FSTAT: {},
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-06 06:41:36 +0000