Skip to content

Commit b335e3d

Browse files
neersightedneersighted
committed
seccomp: add name_to_handle_at to allowlist
Based on the analysis on [the previous PR][1]. [1]: moby#45766 (review) Signed-off-by: Bjorn Neergaard <[email protected]>
1 parent a78c06e commit b335e3d

File tree

2 files changed

+2
-0
lines changed

2 files changed

+2
-0
lines changed

profiles/seccomp/default.json

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -237,6 +237,7 @@
237237
"munlock",
238238
"munlockall",
239239
"munmap",
240+
"name_to_handle_at",
240241
"nanosleep",
241242
"newfstatat",
242243
"_newselect",

profiles/seccomp/default_linux.go

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -229,6 +229,7 @@ func DefaultProfile() *Seccomp {
229229
"munlock",
230230
"munlockall",
231231
"munmap",
232+
"name_to_handle_at",
232233
"nanosleep",
233234
"newfstatat",
234235
"_newselect",

0 commit comments

Comments
 (0)