From 3410a9db9192d772241e8748b1d9020d01fcc622 Mon Sep 17 00:00:00 2001
From: Joris Vink <joris@coders.se>
Date: Thu, 12 Dec 2024 10:21:25 +0100
Subject: [PATCH] linux: add readv and pipe2 to acme seccomp filters.

---
 src/acme.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/acme.c b/src/acme.c
index 16693c6..d8fcf0d 100644
--- a/src/acme.c
+++ b/src/acme.c
@@ -97,7 +97,12 @@ static struct sock_filter filter_acme[] = {
 	KORE_SYSCALL_ALLOW(faccessat),
 	KORE_SYSCALL_ALLOW(newfstatat),
 	KORE_SYSCALL_ALLOW(clock_gettime),
-
+#if defined(SYS_pipe2)
+	KORE_SYSCALL_ALLOW(pipe2),
+#endif
+#if defined(SYS_readv)
+	KORE_SYSCALL_ALLOW(readv),
+#endif
 	KORE_SYSCALL_ALLOW(bind),
 	KORE_SYSCALL_ALLOW(ioctl),
 	KORE_SYSCALL_ALLOW(connect),