[PATCH v6 3/9] landlock: Control pathname UNIX domain socket resolution by path
Sebastian Andrzej Siewior
bigeasy at linutronix.de
Wed Mar 18 15:05:59 UTC 2026
On 2026-03-18 10:14:52 [-0400], Justin Suess wrote:
> Sebastian,
Justin,
> In short: dom_other is a pointer to a landlock-owned refcounted struct.
…
>
> But we copy the domain pointer, which points to a landlock allocated
> and controlled object.
and this is not going away while we are here and preempted after
dropping the lock? (if the landlock policy is updated/ changed/ …)
>
> Justin
Sebastian
More information about the Linux-security-module-archive
mailing list