api: add the SCMP_FLTATR_CTL_WAITKILL filter attribute

The SCMP_FLTATR_CTL_WAITKILL attribute requests that the SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV flag be passed to the seccomp(2) system call when possible, which is currently only when the SECCOMP_FILTER_FLAG_NEW_LISTENER flag is also set. Signed-off-by: Paul Moore <paul@paul-moore.com> Signed-off-by: Tom Hromatka <tom.hromatka@oracle.com>
author: Paul Moore <paul@paul-moore.com> 2022-10-31 13:21:33 -0600
committer: Tom Hromatka <tom.hromatka@oracle.com> 2022-10-31 13:21:47 -0600
commit: 96989965042a515a3cbcb50e9b98243b9b7d4c37 (patch)
tree: 98fe9472c53c05575d4841b1bc6df61d3e35b368 /src/system.h
parent: e797591bdd6834272e2db292400f608ed9bd7fab (diff)
download: libseccomp-96989965042a515a3cbcb50e9b98243b9b7d4c37.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/src/system.h b/src/system.h
index 804e9aa..7918c1f 100644
--- a/src/system.h
+++ b/src/system.h
@@ -138,6 +138,9 @@ typedef struct sock_filter bpf_instr_raw;
 #ifndef SECCOMP_FILTER_FLAG_TSYNC_ESRCH
 #define SECCOMP_FILTER_FLAG_TSYNC_ESRCH		(1UL << 4)
 #endif
+#ifndef SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
+#define SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV	(1UL << 5)
+#endif
 
 #ifndef SECCOMP_RET_LOG
 #define SECCOMP_RET_LOG			0x7ffc0000U /* allow after logging */
author	Paul Moore <paul@paul-moore.com>	2022-10-31 13:21:33 -0600
committer	Tom Hromatka <tom.hromatka@oracle.com>	2022-10-31 13:21:47 -0600
commit	96989965042a515a3cbcb50e9b98243b9b7d4c37 (patch)
tree	98fe9472c53c05575d4841b1bc6df61d3e35b368 /src/system.h
parent	e797591bdd6834272e2db292400f608ed9bd7fab (diff)
download	libseccomp-96989965042a515a3cbcb50e9b98243b9b7d4c37.tar.gz