On Thu, Mar 27, 2025 at 09:38:05PM +, Tingmao Wang wrote:
> Hi Mickaël,
Hi, thanks for the report.
>
> On 3/20/25 19:06, Mickaël Salaün wrote:
> [...]
> > +static struct landlock_hierarchy *
> > +get_hierarchy(const struct landlock_ruleset *const domain, const size_t
> > layer)
> > +{
> > +
Hi Mickaël,
On 3/20/25 19:06, Mickaël Salaün wrote:
[...]
> +static struct landlock_hierarchy *
> +get_hierarchy(const struct landlock_ruleset *const domain, const size_t
> layer)
> +{
> + struct landlock_hierarchy *hierarchy = domain->hierarchy;
> + ssize_t i;
> +
> + if (WARN_ON_ONC
Add a new AUDIT_LANDLOCK_ACCESS record type dedicated to an access
request denied by a Landlock domain. AUDIT_LANDLOCK_ACCESS indicates
that something unexpected happened.
For now, only denied access are logged, which means that any
AUDIT_LANDLOCK_ACCESS record is always followed by a SYSCALL rec
