From 83840125e0bd050129fc3c8983a5bcef7afefe4e Mon Sep 17 00:00:00 2001
From: Michael Pratt <mpratt@google.com>
Date: Tue, 19 Oct 2021 08:15:48 -0700
Subject: Drop accept from sentryctl socket filters

Now that we use x/sys/unix beyond https://golang.org/cl/313690 we always use
accept4 in place of accept.

PiperOrigin-RevId: 404265340
---
 runsc/boot/filter/config.go | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/runsc/boot/filter/config.go b/runsc/boot/filter/config.go
index db363435b..4a9d30c5f 100644
--- a/runsc/boot/filter/config.go
+++ b/runsc/boot/filter/config.go
@@ -651,11 +651,6 @@ func controlServerFilters(fd int) seccomp.SyscallRules {
 				seccomp.EqualTo(fd),
 			},
 		},
-		unix.SYS_ACCEPT: []seccomp.Rule{
-			{
-				seccomp.EqualTo(fd),
-			},
-		},
 		unix.SYS_LISTEN: []seccomp.Rule{
 			{
 				seccomp.EqualTo(fd),
-- 
cgit v1.2.3