Lines Matching defs:ruleset_fd

38 static inline int landlock_add_rule(const int ruleset_fd,
43 	return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr,
49 static inline int landlock_restrict_self(const int ruleset_fd,
52 	return syscall(__NR_landlock_restrict_self, ruleset_fd, flags);
115 static int populate_ruleset_fs(const char *const env_var, const int ruleset_fd,
165 		if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH,
183 static int populate_ruleset_net(const char *const env_var, const int ruleset_fd,
211 		if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_NET_PORT,
346 	int ruleset_fd, abi;
490 	ruleset_fd =
492 	if (ruleset_fd < 0) {
497 	if (populate_ruleset_fs(ENV_FS_RO_NAME, ruleset_fd, access_fs_ro)) {
500 	if (populate_ruleset_fs(ENV_FS_RW_NAME, ruleset_fd, access_fs_rw)) {
504 	if (populate_ruleset_net(ENV_TCP_BIND_NAME, ruleset_fd,
508 	if (populate_ruleset_net(ENV_TCP_CONNECT_NAME, ruleset_fd,
517 	if (landlock_restrict_self(ruleset_fd, set_restrict_flags)) {
521 	close(ruleset_fd);
534 	close(ruleset_fd);