Konstantin Meskhidze

Having this format of Landlock rules I think is enough (like @kailun-qin suggested)  1. Go LibLandlock is already implemented by Günther Noack https://github.com/gnoack/golandlock. It can be used in runc....

I suggest using a simplified version of a file/dir access rules like RW, RO. In this case, we could use RODirs()...RwFiles() restrict path options from the golandlock library https://github.com/gnoack/golandlock and...

Thanks for the reply. And sorry for the delay. 1. I got your point about future library updating. That makes sense. 2. About update notifications, I'm not sure that about...

Hi @l0kod. @sm1ling-knight he is my colleague and he works on this now. I will give him a hand.

Hi everyone. Thanks to @sm1ling-knight for this patch!!

Hi guys!!! I have drafted runc landlock version based on https://github.com/opencontainers/runtime-spec/pull/1111 commits by @kailun-qin for runtime-spec. I wonder if I can send it here for the discussion? Or @kailun-qin has...

> Hi @BoardzMaster, I've proposed my drafted version of PR here: #3194. See if you have anything to add/converge or any thoughts. I would be happy to add co-authors. >...

Hi everyone. https://lore.kernel.org/all/[email protected]/