lockc-project / lockc

Making containers more secure with eBPF and Linux Security Modules (LSM)
https://lockc-project.github.io/
Apache License 2.0
218 stars 19 forks source link

bpf(file_open): Hide whole /sys except cgroup, devices and kernel/mm #210

Closed vadorovsky closed 2 years ago

vadorovsky commented 2 years ago

Signed-off-by: Michal Rostecki vadorovsky@gmail.com