Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://grapheneos.social/users/GrapheneOS/statuses/113944274343547438">GrapheneOS (grapheneos@grapheneos.social)'s status on Tuesday, 04-Feb-2025 15:55:04 JST</a><a href="https://grapheneos.social/@GrapheneOS" title="grapheneos@grapheneos.social"><img src="https://gnusocial.jp/avatar/99224-48-20240219114657.webp" width="48" height="48" alt="GrapheneOS" style="position: absolute; left: 0; top: 0;">GrapheneOS</a><div><a href="https://hachyderm.io/@dalias/113944234116073142" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/209694" title="lispi314@udongein.xyz">LisPi</a></li></ul></div></section><article><p><a href="https://hachyderm.io/@dalias">@dalias</a> <a href="https://udongein.xyz/users/lispi314">@lispi314</a> Seccomp-bpf can't inspect strings including paths. That's why they came up with landlock, which was initially trivial to bypass but should work properly now. Android does heavily police access to devices, procfs, sysfs and ioctls via SELinux. Linux kernel has very limited capabilities for doing a lot of that itself without an LSM.</p><p>POSIX DAC doesn't really forbid access, just directly opening, and more importantly the policy is very dynamic and spread out in a bunch of places.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4504772#notice-8821078">In conversation</a><time datetime="2025-02-04T15:55:04+09:00" title="Tuesday, 04-Feb-2025 15:55:04 JST">about 18 days ago</time> <span>from <span><a href="https://grapheneos.social/@GrapheneOS/113944274343547438" rel="external" title="Sent from grapheneos.social via ActivityPub">grapheneos.social</a></span></span><a href="https://grapheneos.social/@GrapheneOS/113944274343547438">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
GrapheneOS (grapheneos@grapheneos.social)'s status on Tuesday, 04-Feb-2025 15:55:04 JSTGrapheneOS
in reply to
- Rich Felker
- LisPi
@dalias @lispi314 Seccomp-bpf can't inspect strings including paths. That's why they came up with landlock, which was initially trivial to bypass but should work properly now. Android does heavily police access to devices, procfs, sysfs and ioctls via SELinux. Linux kernel has very limited capabilities for doing a lot of that itself without an LSM.
POSIX DAC doesn't really forbid access, just directly opening, and more importantly the policy is very dynamic and spread out in a bunch of places.
In conversationabout 18 days ago from grapheneos.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice