From a56660f54236fe993ac0787c5d57f0db93cf6c24 Mon Sep 17 00:00:00 2001
From: Chris Kennelly <ckennelly@google.com>
Date: Mon, 8 Jan 2024 07:56:48 -0800
Subject: [PATCH] Allow restartable sequences' mmaps to name their VMAs.

PiperOrigin-RevId: 596593499
Change-Id: Ice231b633758667947ec31da5c22f146847e6c6f
---
 sandboxed_api/sandbox2/policybuilder.cc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/sandboxed_api/sandbox2/policybuilder.cc b/sandboxed_api/sandbox2/policybuilder.cc
index e7c1ac8..9198f97 100644
--- a/sandboxed_api/sandbox2/policybuilder.cc
+++ b/sandboxed_api/sandbox2/policybuilder.cc
@@ -773,6 +773,7 @@ PolicyBuilder& PolicyBuilder::AllowRestartableSequences(
                                               ARG_32(0),
                                               JEQ32(SIG_SETMASK, ALLOW),
                                           });
+  AllowPrctlSetVma();
   if (cpu_fence_mode == kAllowSlowFences) {
     AllowSyscall(__NR_sched_getaffinity);
     AllowSyscall(__NR_sched_setaffinity);