Re: Please consider a different approach to syscall filtering on Linux
shibe
Fri Oct 30 12:44:44 2020
Note that you can use `strace` to figure out which syscall is failing. If needed with -f or -ff to also trace forked children.
I already recompiled it with --disable-privsep. Here is what I have in logs:
SECCOMP auid=0 uid=972 gid=972 ses=1 pid=8723 comm="dhcpcd" exe="/usr/bin/dhcpcd" sig=31 arch=40000028 syscall=289 compat=0 ip=0x76f1f94c code=0x0
Here, syscall 289 is "send", I think.
And BTW, Linux 5.4.72-1-ARCH armv7l
glibc 2.32
Archive administrator: postmaster@marples.name