Fix Built-in Seccomp profile

Moe-hacker · Dec 18, 2024 · 9396ea6 · 9396ea6
1 parent 04ec4c6
commit 9396ea6
Showing 1 changed file with 0 additions and 1 deletion.
diff --git a/src/seccomp.c b/src/seccomp.c
@@ -90,7 +90,6 @@ void ruri_setup_seccomp(const struct RURI_CONTAINER *_Nonnull container)
 		seccomp_rule_add(ctx, SCMP_ACT_KILL, SCMP_SYS(kcmp), 0);
 		seccomp_rule_add(ctx, SCMP_ACT_KILL, SCMP_SYS(process_vm_readv), 0);
 		seccomp_rule_add(ctx, SCMP_ACT_KILL, SCMP_SYS(process_vm_writev), 0);
-		seccomp_rule_add(ctx, SCMP_ACT_KILL, SCMP_SYS(ptrace), 0);
 	}
 	if (ruri_is_in_caplist(container->drop_caplist, CAP_SYS_BOOT)) {
 		seccomp_rule_add(ctx, SCMP_ACT_KILL, SCMP_SYS(kexec_file_load), 0);