Searched refs:scoped (Results 1 – 17 of 17) sorted by relevance
| /linux/samples/landlock/ |
| H A D | sandboxer.c | 200 if (!(ruleset_attr->scoped & in check_ruleset_scope()
231 ruleset_attr->scoped &= ~LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET; in check_ruleset_scope()
233 ruleset_attr->scoped &= ~LANDLOCK_SCOPE_SIGNAL; in check_ruleset_scope()
278 .scoped = LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET | in main()
390 ruleset_attr.scoped &= ~(LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET | in main()
|
| /linux/security/landlock/ |
| H A D | syscalls.c | 100 ruleset_size += sizeof(ruleset_attr.scoped); in build_check_abi()
219 if ((ruleset_attr.scoped | LANDLOCK_MASK_SCOPE) != LANDLOCK_MASK_SCOPE) in SYSCALL_DEFINE3()
225 ruleset_attr.scoped); in SYSCALL_DEFINE3()
|
| /linux/Documentation/userspace-api/ |
| H A D | landlock.rst | 84 .scoped =
128 ruleset_attr.scoped &= ~(LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET |
321 interactions between sandboxes. Each Landlock domain can be explicitly scoped
331 not scoped. If a process's domain is scoped, it can only connect to sockets
333 Moreover, If a process is scoped to send signal to a non-scoped process, it can
337 scoped, meaning if the domain is scoped after the socket is connected , it can
342 A process with a scoped domain can inherit a socket created by a non-scoped
343 process. The process cannot connect to this socket since it has a scoped
346 IPC scoping does not support exceptions, so if a domain is scoped, no rules can
589 ``LANDLOCK_SCOPE_ABSTRACT_UNIX_SOCKET`` to the ``scoped`` ruleset attribute.
[all …]
|
| /linux/tools/testing/selftests/landlock/ |
| H A D | scoped_test.c | 24 .scoped = scoped_mask, in TEST()
|
| H A D | scoped_common.h | 17 .scoped = scope, in create_scoped_domain()
|
| /linux/include/uapi/linux/ |
| H A D | landlock.h | 52 __u64 scoped; member
|
| /linux/net/ipv4/ |
| H A D | ping.c | 343 int addr_type, scoped, has_addr; in ping_check_bind_addr() local
356 scoped = __ipv6_addr_needs_scope_id(addr_type); in ping_check_bind_addr()
359 (scoped && !addr->sin6_scope_id)) in ping_check_bind_addr()
379 scoped); in ping_check_bind_addr()
386 if (scoped) in ping_check_bind_addr()
|
| /linux/Documentation/security/ |
| H A D | landlock.rst | 12 Landlock's goal is to create scoped access-control (i.e. sandboxing). To
45 sandboxed process shall retain their scoped accesses (at the time of resource
|
| /linux/Documentation/virt/kvm/arm/ |
| H A D | vcpu-features.rst | 27 system. The ID register values may be VM-scoped in KVM, meaning that the
|
| /linux/Documentation/networking/devlink/ |
| H A D | devlink-region.rst | 17 Snapshot identifiers are scoped to the devlink instance, not a region.
|
| /linux/Documentation/arch/powerpc/ |
| H A D | kvm-nested.rst | 190 L2 wide is the timebase offset or process scoped page table
241 L2 wide is the timebase offset or process scoped page table
405 the partition like the timebase offset and partition scoped page
425 | 0x0005 | 0x18 | RW | G |Partition scoped page tbl info: |
|
| H A D | ultravisor.rst | 305 scoped page table. But the Hypervisor can provide a hint to the
372 partition-scoped page-table of the SVM. If `dest_gpa` is not shared,
488 scoped page tables for the Hypervisor as well as each of the
490 operates in partition 0 and its partition-scoped page tables
494 scoped and process-scoped page table entries for the Hypervisor
|
| /linux/Documentation/arch/arm64/ |
| H A D | tagged-address-abi.rst | 87 The ABI properties described above are thread-scoped, inherited on
|
| /linux/Documentation/arch/x86/ |
| H A D | sva.rst | 67 A new thread-scoped MSR (IA32_PASID) provides the connection between
|
| /linux/Documentation/process/ |
| H A D | maintainer-netdev.rst | 392 APIs and helpers, especially scoped iterators. However, direct use of
|
| /linux/Documentation/networking/ |
| H A D | l2tp.rst | 684 scoped by the tunnel, the Linux implementation has historically
|
| /linux/Documentation/admin-guide/pm/ |
| H A D | intel-speed-select.rst | 385 The scope of this enable is per package or die scoped when a package contains
|