Add i386 specific modify_ldt syscall to default seccomp filter

This syscall is used by Go on i386 binaries, although not by libc.

Signed-off-by: Justin Cormack <justin.cormack@unikernel.com>
Upstream-commit: 13a9d4e8993997b2bf9be7e96a8d7978a73d0b9b
Component: engine

components/engine/daemon/execdriver/native/seccomp_default.go

@@ -1564,5 +1564,11 @@ var defaultSeccompProfile = &configs.Seccomp{
 			Action: configs.Allow,
 			Args:   []*configs.Arg{},
 		},
+		// i386 specific syscalls
+		{
+			Name:   "modify_ldt",
+			Action: configs.Allow,
+			Args:   []*configs.Arg{},
+		},
 	},
 }