sys/linux: add the Landlock network rule type and access rights

Add the new lanlock_net_port_attr struct and related LANDLOCK_ACCESS_NET_{BIND,CONNECT}_TCP flags for TCP access control. Add landlock_ruleset_attr's handled_access_net field and fix handled_access_fs name. Update tests with the new landlock_ruleset_attr's handled_access_net field. Signed-off-by: Mickaël Salaün <mic@linux.microsoft.com>
author: Mickaël Salaün <mic@linux.microsoft.com> 2023-10-10 18:28:59 +0200
committer: Aleksandr Nogikh <nogikh@google.com> 2023-10-13 13:15:32 +0000
commit: 2f3c16ff202947ee7671f5b36c2cd294449ff26f (patch)
tree: 34284618dc5d7d58c946c2eae031cb80f3766651 /sys/linux/test/landlock_ptrace
parent: 6388bc36373b7e4e4dbac9101b34007e839a74bd (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/sys/linux/test/landlock_ptrace b/sys/linux/test/landlock_ptrace
index ad63f3e5c..aca5afa79 100644
--- a/sys/linux/test/landlock_ptrace
+++ b/sys/linux/test/landlock_ptrace
@@ -11,7 +11,7 @@ r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
 ptrace(0x10, r0)
 ptrace(0x11, r0)
 
-r1 = landlock_create_ruleset(&AUTO={0x100}, AUTO, 0x0)
+r1 = landlock_create_ruleset(&AUTO={0x100, 0x0}, AUTO, 0x0)
 landlock_restrict_self(r1, 0x0)
 
 r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
@@ -22,7 +22,7 @@ ptrace(0x11, r0)
 ptrace(0x10, r2)
 ptrace(0x11, r2)
 
-r3 = landlock_create_ruleset(&AUTO={0x100}, AUTO, 0x0)
+r3 = landlock_create_ruleset(&AUTO={0x100, 0x0}, AUTO, 0x0)
 landlock_restrict_self(r3, 0x0)
 
 ptrace(0x10, r0)
author	Mickaël Salaün <mic@linux.microsoft.com>	2023-10-10 18:28:59 +0200
committer	Aleksandr Nogikh <nogikh@google.com>	2023-10-13 13:15:32 +0000
commit	2f3c16ff202947ee7671f5b36c2cd294449ff26f (patch)
tree	34284618dc5d7d58c946c2eae031cb80f3766651 /sys/linux/test/landlock_ptrace
parent	6388bc36373b7e4e4dbac9101b34007e839a74bd (diff)