rwDirs and rwFiles enforces the file hierarchies to be write-only, not read-write

landlock-lsm / go-landlock

A Go library for the Linux Landlock sandboxing feature

MIT License

105 stars 7 forks source link

Closed gnoack closed 3 years ago

gnoack commented 3 years ago

Restrict is passing the wrong flags to Landlock - the rwDirs and rwFiles should also be readable, according to their name.

gnoack commented 3 years ago

Fixed.