diff options
author | netblue30 <netblue30@protonmail.com> | 2023-10-24 12:43:46 -0400 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2023-11-07 17:55:13 -0300 |
commit | 13b2c566df883269b55f77757bb50a5d2890ec20 (patch) | |
tree | 5c7ccc9d00886b93c4429a91671161fa6464f1f9 /contrib | |
parent | cleanup (diff) | |
download | firejail-13b2c566df883269b55f77757bb50a5d2890ec20.tar.gz firejail-13b2c566df883269b55f77757bb50a5d2890ec20.tar.zst firejail-13b2c566df883269b55f77757bb50a5d2890ec20.zip |
feature: add Landlock support
Based on 5315 by ChrysoliteAzalea.
It is based on the same underlying structure, but with a lot of
refactoring/simplification and with bugfixes and improvements.
Co-authored-by: Kelvin M. Klann <kmk3.code@protonmail.com>
Co-authored-by: Азалия Смарагдова <charming.flurry@yandex.ru>
Diffstat (limited to 'contrib')
-rw-r--r-- | contrib/syntax/lists/profile_commands_arg0.list | 1 | ||||
-rw-r--r-- | contrib/syntax/lists/profile_commands_arg1.list | 5 |
2 files changed, 6 insertions, 0 deletions
diff --git a/contrib/syntax/lists/profile_commands_arg0.list b/contrib/syntax/lists/profile_commands_arg0.list index e7fecef4b..4d49e96d9 100644 --- a/contrib/syntax/lists/profile_commands_arg0.list +++ b/contrib/syntax/lists/profile_commands_arg0.list | |||
@@ -12,6 +12,7 @@ keep-config-pulse | |||
12 | keep-dev-shm | 12 | keep-dev-shm |
13 | keep-shell-rc | 13 | keep-shell-rc |
14 | keep-var-tmp | 14 | keep-var-tmp |
15 | landlock | ||
15 | machine-id | 16 | machine-id |
16 | memory-deny-write-execute | 17 | memory-deny-write-execute |
17 | netfilter | 18 | netfilter |
diff --git a/contrib/syntax/lists/profile_commands_arg1.list b/contrib/syntax/lists/profile_commands_arg1.list index 5862f16ac..cce37efa0 100644 --- a/contrib/syntax/lists/profile_commands_arg1.list +++ b/contrib/syntax/lists/profile_commands_arg1.list | |||
@@ -29,6 +29,11 @@ ip6 | |||
29 | iprange | 29 | iprange |
30 | join-or-start | 30 | join-or-start |
31 | keep-fd | 31 | keep-fd |
32 | landlock.execute | ||
33 | landlock.proc | ||
34 | landlock.read | ||
35 | landlock.special | ||
36 | landlock.write | ||
32 | mac | 37 | mac |
33 | mkdir | 38 | mkdir |
34 | mkfile | 39 | mkfile |