chore: Update seccomp filters

We need to add fstat/newfstatat to the seccomp filter list due to the
call to File::metadata() in snapshot_memory_to_file.

Signed-off-by: Patrick Roy <[email protected]>

Author: roypat

resources/seccomp/aarch64-unknown-linux-musl.json

@@ -3,6 +3,10 @@
         "default_action": "trap",
         "filter_action": "allow",
         "filter": [
+            {
+                "syscall": "newfstatat",
+                "comment": "Used when creating snapshots in vmm:persist::snapshot_memory_to_file through std::fs::File::metadata"
+            },
             {
                 "syscall": "epoll_ctl"
             },

resources/seccomp/x86_64-unknown-linux-musl.json

@@ -3,6 +3,10 @@
         "default_action": "trap",
         "filter_action": "allow",
         "filter": [
+            {
+                "syscall": "stat",
+                "comment": "Used when creating snapshots in vmm:persist::snapshot_memory_to_file through std::fs::File::metadata"
+            },
             {
                 "syscall": "epoll_ctl"
             },