vmm: fix vsock with landlock #7334

alyssais · 2025-09-09T08:25:19Z

Without write access to the directory the socket will go in, it's not possible to create the socket.

I've tested outgoing connections from the VM, and they don't seem to need read permissions on that directory to connect to a socket on the host.

Fixes: b3e5738 ("vmm: Introduce ApplyLandlock trait")

Without write access to the directory the socket will go in, it's not possible to create the socket. I've tested outgoing connections from the VM, and they don't seem to need read permissions on that directory to connect to a socket on the host. Fixes: b3e5738 ("vmm: Introduce ApplyLandlock trait") Signed-off-by: Alyssa Ross <[email protected]>

alyssais requested a review from a team as a code owner September 9, 2025 08:25

rbradford approved these changes Sep 9, 2025

View reviewed changes

rbradford added this pull request to the merge queue Sep 9, 2025

Merged via the queue into cloud-hypervisor:main with commit 08b197b Sep 9, 2025
39 of 40 checks passed

alyssais deleted the vsock branch September 9, 2025 14:25

likebreath added this to Cloud Hypervisor Roadmap Sep 10, 2025

github-project-automation bot moved this to 🆕 New in Cloud Hypervisor Roadmap Sep 10, 2025

likebreath moved this from 🆕 New to ✅ Done in Cloud Hypervisor Roadmap Sep 10, 2025

likebreath added the bug-fix Bug fix to include in release notes label Sep 10, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

vmm: fix vsock with landlock #7334

vmm: fix vsock with landlock #7334

Uh oh!

alyssais commented Sep 9, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

vmm: fix vsock with landlock #7334

vmm: fix vsock with landlock #7334

Uh oh!

Conversation

alyssais commented Sep 9, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants