Proposal: add Landlock LSM support

Linux kernel 5.13 adds [support](https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=17ae69aba89dbfa2139b7f8024b757ab3cc42f59) for Landlock Linux Security Module (LSM).

This allows unprivileged processes to create safe security sandboxes that can securely restrict the ambient rights (e.g. global filesystem access) for themselves.

Please kindly refer to the landlock [userspace-api](https://landlock.io/linux-doc/landlock-v34/userspace-api/landlock.html), [kernel doc](https://landlock.io/linux-doc/landlock-v34/security/landlock.html), [website](https://landlock.io) and the [feature request in runc](https://github.com/opencontainers/runc/issues/2859) for details.



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Proposal: add Landlock LSM support #1110

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Proposal: add Landlock LSM support #1110

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions