Merge "Expand seccomp whitelist"

am: 0f0caf95c9

Change-Id: I97aac1b65cb41b5466411cef5e25d8a71d1c62e3

init/seccomp.cpp

@@ -234,6 +234,11 @@ bool set_seccomp_filter() {
     // b/34817266
     AllowSyscall(f, 252); // __NR_epoll_wait
 
+    // Needed by sanitizers (b/34606909)
+    // 5 (__NR_open) and 195 (__NR_stat64) are also required, but they are
+    // already allowed.
+    AllowSyscall(f, 85);  // __NR_readlink
+
     // arm32-on-arm64 only filter - autogenerated from bionic syscall usage
     for (size_t i = 0; i < arm_filter_size; ++i)
         f.push_back(arm_filter[i]);