Lines Matching defs:Capability
207 pub enum Capability {
212 /// Excluding DAC access covered by [`Capability::LinuxImmutable`].
216 /// by [`Capability::LinuxImmutable`].
219 /// equal to the user ID, except where [`Capability::FileSetID`] is applicable.
255 /// address for transparent proxying (also via [`Capability::NetRaw`]). Allow setting TOS
261 /// transparent proxying (also via [`Capability::NetAdmin`]).
284 /// Used instead of [`Capability::ChangeOwnership`] to "chown" IPC message queues, semaphores
296 /// [`Capability::BerkeleyPacketFilters`] and [`Capability::PerformanceMonitoring`] for backward
362 /// [`Capability::PerformanceMonitoring`] relaxes the verifier checks further:
368 /// [`Capability::SystemAdmin`] is required to use bpf_probe_write_user.
370 /// [`Capability::SystemAdmin`] is required to iterate system wide loaded
373 /// [`Capability::PerformanceMonitoring`] and [`Capability::BerkeleyPacketFilters`] are required
375 /// [`Capability::NetAdmin`] and [`Capability::BerkeleyPacketFilters`] are required to load
390 pub fn is_in_capability_bounding_set(capability: Capability) -> io::Result<bool> {
396 /// If the calling thread has the [`Capability::SetPermittedCapabilities`] capability within its
404 pub fn remove_capability_from_capability_bounding_set(capability: Capability) -> io::Result<()> {
591 pub fn capability_is_in_ambient_capability_set(capability: Capability) -> io::Result<bool> {
620 capability: Capability,