Lines Matching refs:uid
39 hash_for_each_possible(policy->rules, rule, next, __kuid_val(src.uid)) {
40 if (!uid_eq(rule->src_id.uid, src.uid))
42 if (uid_eq(rule->dst_id.uid, dst.uid))
113 if (setid_policy_lookup((kid_t){.uid = cred->uid}, INVALID_ID, UID) == SIDPOL_DEFAULT)
117 * set*uid() (e.g. setting up userns uid mappings).
119 pr_warn("Operation requires CAP_SETUID, which is not available to UID %u for operations besides approved set*uid transitions\n",
120 __kuid_val(cred->uid));
153 if (uid_eq(new_id.uid, old->uid) || uid_eq(new_id.uid, old->euid) ||
154 uid_eq(new_id.uid, old->suid))
168 setid_policy_lookup((kid_t){.uid = old->uid}, new_id, new_type) != SIDPOL_CONSTRAINED;
173 __kuid_val(old->uid), __kuid_val(old->euid),
174 __kuid_val(old->suid), __kuid_val(new_id.uid));
187 * set*uid to user under new cred struct, or the UID transition is allowed (by
188 * Linux set*uid rules) even without CAP_SETUID.
196 if (setid_policy_lookup((kid_t){.uid = old->uid}, INVALID_ID, UID) == SIDPOL_DEFAULT)
199 if (id_permitted_for_cred(old, (kid_t){.uid = new->uid}, UID) &&
200 id_permitted_for_cred(old, (kid_t){.uid = new->euid}, UID) &&
201 id_permitted_for_cred(old, (kid_t){.uid = new->suid}, UID) &&
202 id_permitted_for_cred(old, (kid_t){.uid = new->fsuid}, UID))