Support newer glib versions (Bug#59061)

author Philipp Stephani <phst@google.com>

Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)

committer Philipp Stephani <phst@google.com>

Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)
author Philipp Stephani <phst@google.com>
Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)
committer Philipp Stephani <phst@google.com>
Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)
diff --git a/lib-src/seccomp-filter.c b/lib-src/seccomp-filter.c

index 7e54b878a22069fae6dd7d958d1bba1a8df38761..69b56aed5c518d14d3513b330a43bc99fa5b017b 100644 (file)
--- a/lib-src/seccomp-filter.c
+++ b/lib-src/seccomp-filter.c
@@ -342,6 +342,8 @@ main (int argc, char **argv)
    RULE (SCMP_ACT_ALLOW, SCMP_SYS (eventfd2));
    RULE (SCMP_ACT_ALLOW, SCMP_SYS (wait4));
    RULE (SCMP_ACT_ALLOW, SCMP_SYS (poll));
+  RULE (SCMP_ACT_ALLOW, SCMP_SYS (pidfd_open),
+       SCMP_A1_32 (SCMP_CMP_EQ, 0));
  
    /* Don't allow creating sockets (network access would be extremely
       dangerous), but also don't crash.  */
author	Philipp Stephani <phst@google.com>
	Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)
committer	Philipp Stephani <phst@google.com>
	Fri, 9 Dec 2022 18:32:14 +0000 (19:32 +0100)