Home
last modified time | relevance | path

Searched refs:ruleset_fd (Results 1 – 12 of 12) sorted by relevance

/linux/tools/testing/selftests/landlock/
H A Dnet_test.c653 int ruleset_fd; in TEST_F() local
655 ruleset_fd = landlock_create_ruleset(&ruleset_attr, in TEST_F()
657 ASSERT_LE(0, ruleset_fd); in TEST_F()
661 landlock_add_rule(ruleset_fd, LANDLOCK_RULE_NET_PORT, in TEST_F()
666 landlock_add_rule(ruleset_fd, LANDLOCK_RULE_NET_PORT, in TEST_F()
669 enforce_ruleset(_metadata, ruleset_fd); in TEST_F()
670 EXPECT_EQ(0, close(ruleset_fd)); in TEST_F()
703 int ruleset_fd; in TEST_F() local
705 ruleset_fd = landlock_create_ruleset(&ruleset_attr, in TEST_F()
707 ASSERT_LE(0, ruleset_fd); in TEST_F()
[all …]
H A Dbase_test.c106 int ruleset_fd; in TEST() local
138 ruleset_fd = in TEST()
140 ASSERT_LE(0, ruleset_fd); in TEST()
141 ASSERT_EQ(0, close(ruleset_fd)); in TEST()
154 const int ruleset_fd = in TEST() local
157 ASSERT_LE(0, ruleset_fd); in TEST()
168 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, 0, NULL, 0)); in TEST()
172 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
177 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
185 ASSERT_EQ(0, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
[all …]
H A Dscoped_common.h15 int ruleset_fd; in create_scoped_domain() local
20 ruleset_fd = in create_scoped_domain()
22 ASSERT_LE(0, ruleset_fd) in create_scoped_domain()
26 enforce_ruleset(_metadata, ruleset_fd); in create_scoped_domain()
27 EXPECT_EQ(0, close(ruleset_fd)); in create_scoped_domain()
H A Dsandbox-and-launch.c24 int pipe_child, pipe_parent, ruleset_fd; in main() local
39 ruleset_fd = in main()
41 if (ruleset_fd < 0) { in main()
51 if (landlock_restrict_self(ruleset_fd, 0)) { in main()
56 if (close(ruleset_fd)) { in main()
H A Dwrappers.h26 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
31 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
37 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
40 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
H A Dptrace_test.c28 int ruleset_fd; in create_domain() local
33 ruleset_fd = in create_domain()
35 EXPECT_LE(0, ruleset_fd) in create_domain()
40 EXPECT_EQ(0, landlock_restrict_self(ruleset_fd, 0)); in create_domain()
41 EXPECT_EQ(0, close(ruleset_fd)); in create_domain()
H A Dcommon.h198 enforce_ruleset(struct __test_metadata *const _metadata, const int ruleset_fd) in enforce_ruleset() argument
201 ASSERT_EQ(0, landlock_restrict_self(ruleset_fd, 0)) in enforce_ruleset()
H A Dscoped_abstract_unix_test.c31 int ruleset_fd; in create_fs_domain() local
36 ruleset_fd = in create_fs_domain()
38 EXPECT_LE(0, ruleset_fd) in create_fs_domain()
43 EXPECT_EQ(0, landlock_restrict_self(ruleset_fd, 0)); in create_fs_domain()
44 EXPECT_EQ(0, close(ruleset_fd)); in create_fs_domain()
/linux/samples/landlock/
H A Dsandboxer.c38 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
43 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
49 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
52 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
114 static int populate_ruleset_fs(const char *const env_var, const int ruleset_fd, in populate_ruleset_fs() argument
164 if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in populate_ruleset_fs()
182 static int populate_ruleset_net(const char *const env_var, const int ruleset_fd, in populate_ruleset_net() argument
210 if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_NET_PORT, in populate_ruleset_net()
342 int ruleset_fd, abi; in main() local
459 ruleset_fd = in main()
[all …]
/linux/security/landlock/
H A Dsyscalls.c186 int err, ruleset_fd; in SYSCALL_DEFINE3() local
231 ruleset_fd = anon_inode_getfd("[landlock-ruleset]", &ruleset_fops, in SYSCALL_DEFINE3()
233 if (ruleset_fd < 0) in SYSCALL_DEFINE3()
235 return ruleset_fd; in SYSCALL_DEFINE3()
398 SYSCALL_DEFINE4(landlock_add_rule, const int, ruleset_fd, in SYSCALL_DEFINE4() argument
412 ruleset = get_ruleset_from_fd(ruleset_fd, FMODE_CAN_WRITE); in SYSCALL_DEFINE4()
451 SYSCALL_DEFINE2(landlock_restrict_self, const int, ruleset_fd, const __u32, in SYSCALL_DEFINE2() argument
475 ruleset = get_ruleset_from_fd(ruleset_fd, FMODE_CAN_READ); in SYSCALL_DEFINE2()
/linux/Documentation/userspace-api/
H A Dlandlock.rst136 int ruleset_fd;
138 ruleset_fd = landlock_create_ruleset(&ruleset_attr, sizeof(ruleset_attr), 0);
139 if (ruleset_fd < 0) {
164 close(ruleset_fd);
167 err = landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH,
172 close(ruleset_fd);
191 err = landlock_add_rule(ruleset_fd, LANDLOCK_RULE_NET_PORT,
203 close(ruleset_fd);
211 if (landlock_restrict_self(ruleset_fd, 0)) {
213 close(ruleset_fd);
[all …]
/linux/include/linux/
H A Dsyscalls.h971 asmlinkage long sys_landlock_add_rule(int ruleset_fd, enum landlock_rule_type rule_type,
973 asmlinkage long sys_landlock_restrict_self(int ruleset_fd, __u32 flags);