From ff1c1d918b07e108d3ae83a91abee35a64d75a44 Mon Sep 17 00:00:00 2001
From: Egor_P <egor@parity.io>
Date: Thu, 20 Jul 2023 08:52:46 +0200
Subject: [PATCH] add missing syscalls (#7521) (#7525)

Co-authored-by: tugy <33746108+tugytur@users.noreply.github.com>
---
 scripts/packaging/polkadot.service | 1 +
 1 file changed, 1 insertion(+)

diff --git a/scripts/packaging/polkadot.service b/scripts/packaging/polkadot.service
index 6d6a9f6f6629..7fb549c97f8b 100644
--- a/scripts/packaging/polkadot.service
+++ b/scripts/packaging/polkadot.service
@@ -29,6 +29,7 @@ RestrictNamespaces=true
 RestrictSUIDSGID=true
 SystemCallArchitectures=native
 SystemCallFilter=@system-service
+SystemCallFilter=landlock_add_rule landlock_create_ruleset landlock_restrict_self seccomp
 SystemCallFilter=~@clock @module @mount @reboot @swap @privileged
 UMask=0027