Skip to content

Commit be06b24

Browse files
l0kodl0kod
committed
Remove unimplemented parts of the JSON schema
This will be implemented but this is not the case yet: - access bits - v6 access groups Signed-off-by: Mickaël Salaün <[email protected]>
1 parent cf4c53b commit be06b24

1 file changed

Lines changed: 39 additions & 62 deletions

File tree

schema/landlockconfig.json

Lines changed: 39 additions & 62 deletions
Original file line numberDiff line numberDiff line change
@@ -3,11 +3,6 @@
33
"description": "Landlock security policy configuration schema",
44
"type": "object",
55
"definitions": {
6-
"bit": {
7-
"type": "integer",
8-
"minimum": 0,
9-
"maximum": 63
10-
},
116
"uint64": {
127
"type": "integer",
138
"minimum": 0,
@@ -34,66 +29,48 @@
3429
]
3530
},
3631
"accessFs": {
37-
"anyOf": [
38-
{
39-
"$ref": "#/definitions/bit"
40-
},
41-
{
42-
"type": "string",
43-
"enum": [
44-
"execute",
45-
"write_file",
46-
"read_file",
47-
"read_dir",
48-
"remove_dir",
49-
"remove_file",
50-
"make_char",
51-
"make_dir",
52-
"make_reg",
53-
"make_sock",
54-
"make_fifo",
55-
"make_block",
56-
"make_sym",
57-
"v1.all",
58-
"v1.read_execute",
59-
"v1.read_write",
60-
"refer",
61-
"v2.all",
62-
"v2.read_execute",
63-
"v2.read_write",
64-
"truncate",
65-
"v3.all",
66-
"v3.read_execute",
67-
"v3.read_write",
68-
"v4.all",
69-
"v4.read_execute",
70-
"v4.read_write",
71-
"ioctl_dev",
72-
"v5.all",
73-
"v5.read_execute",
74-
"v5.read_write",
75-
"v6.all",
76-
"v6.read_execute",
77-
"v6.read_write"
78-
]
79-
}
32+
"type": "string",
33+
"enum": [
34+
"execute",
35+
"write_file",
36+
"read_file",
37+
"read_dir",
38+
"remove_dir",
39+
"remove_file",
40+
"make_char",
41+
"make_dir",
42+
"make_reg",
43+
"make_sock",
44+
"make_fifo",
45+
"make_block",
46+
"make_sym",
47+
"v1.all",
48+
"v1.read_execute",
49+
"v1.read_write",
50+
"refer",
51+
"v2.all",
52+
"v2.read_execute",
53+
"v2.read_write",
54+
"truncate",
55+
"v3.all",
56+
"v3.read_execute",
57+
"v3.read_write",
58+
"v4.all",
59+
"v4.read_execute",
60+
"v4.read_write",
61+
"ioctl_dev",
62+
"v5.all",
63+
"v5.read_execute",
64+
"v5.read_write"
8065
]
8166
},
8267
"accessNet": {
83-
"anyOf": [
84-
{
85-
"$ref": "#/definitions/bit"
86-
},
87-
{
88-
"type": "string",
89-
"enum": [
90-
"bind_tcp",
91-
"connect_tcp",
92-
"v4.all",
93-
"v5.all",
94-
"v6.all"
95-
]
96-
}
68+
"type": "string",
69+
"enum": [
70+
"bind_tcp",
71+
"connect_tcp",
72+
"v4.all",
73+
"v5.all"
9774
]
9875
}
9976
},

0 commit comments

Comments
 (0)