commoncap.c - OpenGrok cross reference for /linux/security/commoncap.c

Lines Matching full:capability
2 /* Common capabilities, needed by capability.o.
5 #include <linux/capability.h>
31 #include <trace/events/capability.h>
57  * capability.
61  * @cap: The capability to check for
63  * Determine whether the nominated task has the specified capability amongst
75 	/* See if cred has the capability in the target user namespace
99 		 * If you have a capability in a parent user ns, then you have
109  * cap_capable - Determine whether a task has a particular effective capability
112  * @cap: The capability to check for
115  * Determine whether the nominated task has the specified capability amongst
120  * a capability, while the kernel's capable(), has_ns_capability(),
157  * If we have the ptrace capability to the target user_ns, then ptrace
194  * If parent has the ptrace capability to current's user_ns, then ptrace
221  * cap_capget - Retrieve a task's capability sets
222  * @target: The task from which to retrieve the capability sets
235 	/* Derived from kernel/capability.c:sys_capget. */
252 	 * capability
269  * process's capability sets.  The changes are made to the proposed new
323  * Return: 1 if security.capability has a value, meaning inode_killpriv()
425 	if (strcmp(name, "capability") != 0)
489 	/* This comes from a parent namespace.  Return as a v2 capability */
548  * User requested a write of security.capability.  If needed, update the
613  * Calculate the new process capability sets from the capability sets attached
657  * Extract the on-exec-apply capability sets for an executable file.
749  * Attempt to get the on-exec apply capability sets for an executable file from
769 	 * explicit that capability bits are limited to s_user_ns and its
827 	 * If the legacy file capability is set, then don't set privs
838 	 * capability sets for the file.
1067 		/* security.capability gets namespaced */
1257  * Implement PR_CAPBSET_DROP.  Attempt to remove the specified capability from
1323 	 * capability-based-privilege environment.
1455  * capability security module.
1476 	.name = "capability",
1507 DEFINE_LSM(capability) = {
1508 	.name = "capability",