| /linux/samples/landlock/ |
| H A D | sandboxer.c | 239 if (!(ruleset_attr->scoped & in check_ruleset_scope()
270 ruleset_attr->scoped &= ~LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET; in check_ruleset_scope()
272 ruleset_attr->scoped &= ~LANDLOCK_SCOPE_SIGNAL; in check_ruleset_scope()
358 .scoped = LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET | in main()
432 ruleset_attr.scoped &= ~(LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET | in main()
|
| /linux/rust/kernel/ |
| H A D | debugfs.rs | 372 let scoped = self.scoped_dir(name); in scope() localVariable
373 init(data, &scoped); in scope()
374 scoped.into_entry() in scope()
471 let scoped = ScopedDir::new(name); in dir() localVariable
472 init(data, &scoped); in dir()
473 scoped.into_entry() in dir()
|
| /linux/security/landlock/ |
| H A D | syscalls.c | 104 ruleset_size += sizeof(ruleset_attr.scoped); in build_check_abi()
241 if ((ruleset_attr.scoped | LANDLOCK_MASK_SCOPE) != LANDLOCK_MASK_SCOPE) in SYSCALL_DEFINE3()
247 ruleset_attr.scoped); in SYSCALL_DEFINE3()
|
| /linux/tools/testing/selftests/landlock/ |
| H A D | scoped_test.c | 24 .scoped = scoped_mask, in TEST()
|
| H A D | scoped_common.h | 17 .scoped = scope, in create_scoped_domain()
|
| H A D | audit_test.c | 76 .scoped = LANDLOCK_SCOPE_SIGNAL, in TEST_F()
222 .scoped = LANDLOCK_SCOPE_SIGNAL, in TEST_F()
364 .scoped = LANDLOCK_SCOPE_SIGNAL, in TEST_F()
557 .scoped = LANDLOCK_SCOPE_SIGNAL, in TEST_F()
|
| H A D | sandbox-and-launch.c | 22 .scoped = LANDLOCK_SCOPE_SIGNAL, in main()
|
| /linux/include/uapi/linux/ |
| H A D | landlock.h | 53 __u64 scoped; member
|
| /linux/Documentation/virt/kvm/arm/ |
| H A D | vcpu-features.rst | 27 system. The ID register values may be VM-scoped in KVM, meaning that the
|
| /linux/Documentation/security/ |
| H A D | landlock.rst | 12 Landlock's goal is to create scoped access-control (i.e. sandboxing). To
45 sandboxed process shall retain their scoped accesses (at the time of resource
|
| /linux/Documentation/userspace-api/ |
| H A D | landlock.rst | 84 .scoped =
128 ruleset_attr.scoped &= ~(LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET |
325 The operations which can be scoped are:
344 If an operation is scoped within a domain, no rules can be added to allow access
588 ``LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET`` to the ``scoped`` ruleset attribute.
595 ``scoped`` ruleset attribute.
|
| /linux/Documentation/networking/devlink/ |
| H A D | devlink-region.rst | 17 Snapshot identifiers are scoped to the devlink instance, not a region.
|
| /linux/Documentation/arch/powerpc/ |
| H A D | ultravisor.rst | 305 scoped page table. But the Hypervisor can provide a hint to the
372 partition-scoped page-table of the SVM. If `dest_gpa` is not shared,
488 scoped page tables for the Hypervisor as well as each of the
490 operates in partition 0 and its partition-scoped page tables
494 scoped and process-scoped page table entries for the Hypervisor
|
| /linux/Documentation/arch/arm64/ |
| H A D | tagged-address-abi.rst | 87 The ABI properties described above are thread-scoped, inherited on
|
| /linux/Documentation/arch/x86/ |
| H A D | sva.rst | 67 A new thread-scoped MSR (IA32_PASID) provides the connection between
|
| /linux/Documentation/networking/ |
| H A D | l2tp.rst | 684 scoped by the tunnel, the Linux implementation has historically
|
| /linux/Documentation/admin-guide/pm/ |
| H A D | intel-speed-select.rst | 385 The scope of this enable is per package or die scoped when a package contains
|
| /linux/init/ |
| H A D | Kconfig | 108 # Detect clang (< v17) scoped label issues
|
| /linux/Documentation/virt/kvm/ |
| H A D | api.rst | 8716 scoped, meaning that the same set of values are presented on all vCPUs in a
|