Merge pull request #769 from wking/require-syscall-names

config-linux: Require at least one entry in linux.seccomp.sycalls[].names

Author: vbatts

config-linux.md

@@ -615,6 +615,7 @@ The following parameters can be specified to setup seccomp:
     Each entry has the following structure:
 
     * **`names`** *(array of strings, REQUIRED)* - the names of the syscalls.
+        `names` MUST contain at least one entry.
 
     * **`action`** *(string, REQUIRED)* - the action for seccomp rules.
         A valid list of constants as of libseccomp v2.3.2 is shown below.

schema/defs-linux.json

@@ -69,7 +69,8 @@
                     "type": "array",
                     "items": {
                         "type": "string"
-                    }
+                    },
+                    "minItems": 1
                 },
                 "action": {
                     "$ref": "#/definitions/SeccompAction"
@@ -80,7 +81,10 @@
                         "$ref": "#/definitions/SyscallArg"
                     }
                 }
-            }
+            },
+            "required": [
+                "names"
+            ]
         },
         "Capability": {
             "description": "Linux process capabilities",