From c9ffc95d14808b10c7d2780eedd3cfcf94dca869 Mon Sep 17 00:00:00 2001
From: Kenta Tada <Kenta.Tada@sony.com>
Date: Mon, 12 Apr 2021 23:00:34 +0900
Subject: [PATCH] Add preflight check for seccomp

Signed-off-by: Kenta Tada <Kenta.Tada@sony.com>
---
 validators/types_unix.go | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/validators/types_unix.go b/validators/types_unix.go
index a315bb6..9658ffd 100644
--- a/validators/types_unix.go
+++ b/validators/types_unix.go
@@ -57,6 +57,8 @@ var DefaultSysSpec = SysSpec{
 			{Name: "BLK_DEV_DM", Description: "Required for devicemapper."},
 			{Name: "CFS_BANDWIDTH", Description: "Required for CPU quota."},
 			{Name: "CGROUP_HUGETLB", Description: "Required for hugetlb cgroup."},
+			{Name: "SECCOMP", Description: "Required for seccomp."},
+			{Name: "SECCOMP_FILTER", Description: "Required for seccomp mode 2."},
 		},
 		Forbidden: []KernelConfig{},
 	},