From ce4b76036c37ccf06e17ab8177d4221cace427ea Mon Sep 17 00:00:00 2001
From: tugy <33746108+tugytur@users.noreply.github.com>
Date: Wed, 19 Jul 2023 21:42:52 +0200
Subject: [PATCH] add missing syscalls (#7521)

---
 scripts/packaging/polkadot.service | 1 +
 1 file changed, 1 insertion(+)

diff --git a/scripts/packaging/polkadot.service b/scripts/packaging/polkadot.service
index 6d6a9f6f6629..7fb549c97f8b 100644
--- a/scripts/packaging/polkadot.service
+++ b/scripts/packaging/polkadot.service
@@ -29,6 +29,7 @@ RestrictNamespaces=true
 RestrictSUIDSGID=true
 SystemCallArchitectures=native
 SystemCallFilter=@system-service
+SystemCallFilter=landlock_add_rule landlock_create_ruleset landlock_restrict_self seccomp
 SystemCallFilter=~@clock @module @mount @reboot @swap @privileged
 UMask=0027