Home
last modified time | relevance | path

Searched refs:file_ns_capable (Results 1 – 14 of 14) sorted by relevance

/linux/security/ipe/
H A Dfs.c38 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in setaudit()
86 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in setenforce()
144 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in new_policy()
H A Dpolicy_fs.c211 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in setactive()
295 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in update_policy()
338 if (!file_ns_capable(f, &init_user_ns, CAP_MAC_ADMIN)) in delete_policy()
/linux/kernel/
H A Dcapability.c438 * file_ns_capable - Determine if the file's opener had a capability in effect
449 bool file_ns_capable(const struct file *file, struct user_namespace *ns,
461 EXPORT_SYMBOL(file_ns_capable); in file_ns_capable()
453 bool file_ns_capable(const struct file *file, struct user_namespace *ns, file_ns_capable() function
H A Duser_namespace.c915 if (!file_ns_capable(file, map_ns->parent, CAP_SETFCAP)) in verify_root_map()
976 if (cap_valid(cap_setid) && !file_ns_capable(file, map_ns, CAP_SYS_ADMIN)) in map_write()
1198 file_ns_capable(file, ns->parent, cap_setid)) in new_idmap_permitted()
H A Dresource.c130 if (file_ns_capable(m->file, &init_user_ns, CAP_SYS_ADMIN)) { in r_show()
H A Dseccomp.c2515 if (!file_ns_capable(m->file, &init_user_ns, CAP_SYS_ADMIN)) in proc_pid_seccomp_cache()
/linux/include/linux/
H A Dcapability.h193 extern bool file_ns_capable(const struct file *file, struct user_namespace *ns, int cap);
/linux/kernel/time/
H A Dnamespace.c393 if (!file_ns_capable(file, time_ns->user_ns, CAP_SYS_TIME)) { in proc_timens_set_offset()
/linux/kernel/cgroup/
H A Dcgroup-v1.c564 !file_ns_capable(of->file, &init_user_ns, CAP_SYS_ADMIN)) in cgroup_release_agent_write()
/linux/net/netlink/
H A Daf_netlink.c853 file_ns_capable(nsp->sk->sk_socket->file, user_ns, cap)) && in __netlink_ns_capable()
1430 if (!file_ns_capable(sk->sk_socket->file, p->net->user_ns, in do_one_broadcast()
/linux/fs/proc/
H A Dtask_mmu.c1973 pm.show_pfn = file_ns_capable(file, &init_user_ns, CAP_SYS_ADMIN); in pagemap_read()
H A Dbase.c480 if (!file_ns_capable(m->file, &init_user_ns, CAP_SYS_ADMIN)) in proc_pid_stack()
/linux/net/core/
H A Dsock.c172 return file_ns_capable(sk->sk_socket->file, user_ns, cap) && in sk_ns_capable()
H A Dskbuff.c5424 file_ns_capable(sk->sk_socket->file, &init_user_ns, CAP_NET_RAW); in skb_may_tx_timestamp()