NAME Landlock - unprivileged access-control DESCRIPTION Landlock is an access-control system that enables ... restrict themselves and their future children. Because Landlock is a s…NAME landlock_create_ruleset - create a new Landlock ruleset LIBRARY Standard C library ( libc ... SYNOPSIS #include <linux/landlock.h> /* Definition of LANDLOCK_* constants */ #in…NAME landlock_add_rule - add a new Landlock rule to a ruleset LIBRARY Standard ... libc , -lc ) SYNOPSIS #include <linux/landlock.h> /* Definition of LANDLOCK_* constants */ #inclu…NAME landlock_restrict_self - enforce a Landlock ruleset LIBRARY Standard C library ( libc , -lc ) SYNOPSIS ... include <linux/landlock.h> /* Definition of LANDLOCK_* constants */ …fail at AppArmor’s whim. --landlock-access access Enable landlock restrictions for a specific ... allow specific subgroups of accesses use --landlock-rule . Block all filesystem ac…keyctl (2) 2.6.10 kill (2) 1.0 landlock_add_rule (2) 5.13 landlock_create_ruleset ... landlock_restrict_self (2) 5.13 lchown (2) 1.0 See chown (2) for version details lchown32System calls for sandboxing programs ( seccomp (2), Landlock system calls, ...) @setuid System calls for changing