From 86f3f640bff47037f9e0a6b0d53dfb0bd56f0043 Mon Sep 17 00:00:00 2001
From: tugy <33746108+tugytur@users.noreply.github.com>
Date: Wed, 19 Jul 2023 21:42:52 +0200
Subject: [PATCH] add missing syscalls (#7521)

---
 polkadot/scripts/packaging/polkadot.service | 1 +
 1 file changed, 1 insertion(+)

diff --git a/polkadot/scripts/packaging/polkadot.service b/polkadot/scripts/packaging/polkadot.service
index 6d6a9f6f66..7fb549c97f 100644
--- a/polkadot/scripts/packaging/polkadot.service
+++ b/polkadot/scripts/packaging/polkadot.service
@@ -29,6 +29,7 @@ RestrictNamespaces=true
 RestrictSUIDSGID=true
 SystemCallArchitectures=native
 SystemCallFilter=@system-service
+SystemCallFilter=landlock_add_rule landlock_create_ruleset landlock_restrict_self seccomp
 SystemCallFilter=~@clock @module @mount @reboot @swap @privileged
 UMask=0027