Günther Noack
Günther Noack
I am also affected (Lego 4.14.2 - the current version). I have solved this through "a lot of retries" from my side in the past, but that has usually taken...
Hello @sm1ling-knight -- just for coordination; did you start working on this bug already?
Such a `GroupRules` meta-rule requires a bit of refactoring... I have been considering the following options: ## Option A - fully compatible Make the PathOpt struct be able to compose...
I am strongly leaning towards C, but will let it sink a little bit before committing.
Work is happening on the `options` branch https://github.com/landlock-lsm/go-landlock/commits/options
FYI the `TIOCLINUX` patch is in the Linux 6.7 stable release now. Thank you for documenting the issue so well here!
Just a note on the side, I think this bug would be very useful, because there is a [whole bouquet of socket types and associated network protocols](https://man7.org/linux/man-pages/man2/socket.2.html#DESCRIPTION) which are permitted...
https://lore.kernel.org/all/[email protected]/
Remark - it could have been used here as well: https://github.com/capnspacehook/whalewall/blob/master/cmd/whalewall/main.go#L150
...and add a FAQ or similar where some topics are discussed: - Why no builder pattern (can be replicated by constructing the argument list in Go)