]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
projects / thirdparty / kernel / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a46e32d) | patch
samples/landlock: Add support for named UNIX domain socket restrictions
authorGünther Noack <gnoack3000@gmail.com>
Fri, 27 Mar 2026 16:48:31 +0000 (17:48 +0100)
committerMickaël Salaün <mic@digikod.net>
Tue, 7 Apr 2026 16:51:07 +0000 (18:51 +0200)
commita92cb5d7c6c988f304df355f4b5afcc379428f07
treedcfc100bd4d754bb2d5a8dd58269ce2b5c240ad9tree | snapshot
parenta46e32db1fb7acac49a35773345d4bcf343847f5commit | diff
samples/landlock: Add support for named UNIX domain socket restrictions

The access right for UNIX domain socket lookups is grouped with the
read-write rights in the sample tool.  Rationale: In the general case,
any operations are possible through a UNIX domain socket, including
data-mutating operations.

Cc: Justin Suess <utilityemal77@gmail.com>
Cc: Mickaël Salaün <mic@digikod.net>
Signed-off-by: Günther Noack <gnoack3000@gmail.com>
Link: https://lore.kernel.org/r/20260327164838.38231-7-gnoack3000@gmail.com
Signed-off-by: Mickaël Salaün <mic@digikod.net>
samples/landlock/sandboxer.c diff | blob | blame | history
A mirror of Linus' kernel repository