Landlock runtime detection #21

Closed
opened 2021-11-20 20:53:16 +01:00 by crtxcr · 0 comments
Owner

Ubuntu 21.10 enable Landlock in the kernel, but does not ship it as a stackable LSM. So it cannot be used without intervention (https://www.mail-archive.com/ubuntu-bugs@lists.ubuntu.com/msg5974032.html)

Probably at some point in the future this will be improved, but who knows how other distros (will) handle this.

We may not be able to avoid runtime detection unfortunately.

Ubuntu 21.10 enable Landlock in the kernel, but does not ship it as a stackable LSM. So it cannot be used without intervention (https://www.mail-archive.com/ubuntu-bugs@lists.ubuntu.com/msg5974032.html) Probably at some point in the future this will be improved, but who knows how other distros (will) handle this. We may not be able to avoid runtime detection unfortunately.
crtxcr added the
enhancement
label 2021-11-20 20:53:16 +01:00
Sign in to join this conversation.
No Milestone
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: crtxcr/exile.h#21
No description provided.