diff options
| author |  Kelvin M. Klann <kmk3.code@protonmail.com> | 2024-02-05 07:44:09 +0000 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2024-02-05 07:44:09 +0000 |
| commit | e488eb3605735eb05676921da5a2d20179bdcc64 (patch) | |
| tree | c35ec56313950b1cf56fd3d9e2ce3276af267220 /etc | |
| parent | build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 (diff) | |
| parent | landlock: split .special into .makeipc and .makedev (diff) | |
| download | firejail-e488eb3605735eb05676921da5a2d20179bdcc64.tar.gz firejail-e488eb3605735eb05676921da5a2d20179bdcc64.tar.zst firejail-e488eb3605735eb05676921da5a2d20179bdcc64.zip | |
Merge pull request #6187 from kmk3/landlock-add-dev
landlock: split .special into .makeipc and .makedev
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/inc/landlock-common.inc | 2 | ||||
| -rw-r--r-- | etc/templates/profile.template | 3 |
2 files changed, 3 insertions, 2 deletions
diff --git a/etc/inc/landlock-common.inc b/etc/inc/landlock-common.inc index ebe9f98dc..694d447b5 100644 --- a/etc/inc/landlock-common.inc +++ b/etc/inc/landlock-common.inc | |||
| @@ -4,7 +4,7 @@ include landlock-common.local | |||
| 4 | 4 | ||
| 5 | landlock.read / # whole system read | 5 | landlock.read / # whole system read |
| 6 | landlock.read /proc | 6 | landlock.read /proc |
| 7 | landlock.special / # sockets etc. | 7 | landlock.makeipc / # sockets etc. |
| 8 | 8 | ||
| 9 | # write access | 9 | # write access |
| 10 | landlock.write ${HOME} | 10 | landlock.write ${HOME} |
diff --git a/etc/templates/profile.template b/etc/templates/profile.template index 8882c9012..0e6a5734e 100644 --- a/etc/templates/profile.template +++ b/etc/templates/profile.template | |||
| @@ -140,7 +140,8 @@ include globals.local | |||
| 140 | # Landlock commands | 140 | # Landlock commands |
| 141 | ##landlock.read PATH | 141 | ##landlock.read PATH |
| 142 | ##landlock.write PATH | 142 | ##landlock.write PATH |
| 143 | ##landlock.special PATH | 143 | ##landlock.makeipc PATH |
| 144 | ##landlock.makedev PATH | ||
| 144 | ##landlock.execute PATH | 145 | ##landlock.execute PATH |
| 145 | #include landlock-common.inc | 146 | #include landlock-common.inc |
| 146 | 147 | ||