|
|
|
|
|
|
by l0kod
450 days ago
|
|
|
We are working on a JSON/TOML format for Landlock, with the related library, and bindings for several languages: https://github.com/landlock-lsm/landlockconfig We are working to make it part of the OCI runtime specification too. Using existing configuration format would not work because Landlock has its own unique properties: unprivileged, nested sandboxes, dedicated Linux syscalls, and a good compatibility story with opt-in and incremental features. |
|
|