Home
last modified time | relevance | path

Searched refs:ruleset_fd (Results 1 - 7 of 7) sorted by relevance

/kernel/linux/linux-6.6/tools/testing/selftests/landlock/
H A Dfs_test.c439 int ruleset_fd; in TEST_F_FORK() local
445 ruleset_fd = open(dir_s1d1, O_PATH | O_DIRECTORY | O_CLOEXEC); in TEST_F_FORK()
446 ASSERT_LE(0, ruleset_fd); in TEST_F_FORK()
447 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST_F_FORK()
449 /* Returns EBADF because ruleset_fd is not a landlock-ruleset FD. */ in TEST_F_FORK()
451 ASSERT_EQ(0, close(ruleset_fd)); in TEST_F_FORK()
453 ruleset_fd = open(dir_s1d1, O_DIRECTORY | O_CLOEXEC); in TEST_F_FORK()
454 ASSERT_LE(0, ruleset_fd); in TEST_F_FORK()
455 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST_F_FORK()
457 /* Returns EBADFD because ruleset_fd i in TEST_F_FORK()
559 const int ruleset_fd = TEST_F_FORK() local
610 add_path_beneath(struct __test_metadata *const _metadata, const int ruleset_fd, const __u64 allowed_access, const char *const path) add_path_beneath() argument
654 int ruleset_fd, i; create_ruleset() local
682 enforce_ruleset(struct __test_metadata *const _metadata, const int ruleset_fd) enforce_ruleset() argument
703 const int ruleset_fd = create_ruleset( TEST_F_FORK() local
750 int ruleset_fd; TEST_F_FORK() local
778 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
832 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RO, rules); TEST_F_FORK() local
865 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
921 int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, layer1); TEST_F_FORK() local
1013 int ruleset_fd; TEST_F_FORK() local
1137 int ruleset_fd; TEST_F_FORK() local
1241 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1357 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1395 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1412 int ruleset_fd; TEST_F_FORK() local
1457 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1486 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1514 int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1544 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1564 int ruleset_fd; TEST_F_FORK() local
1592 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1615 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1657 const int ruleset_fd = create_ruleset(_metadata, ACCESS_RW, rules); TEST_F_FORK() local
1706 int dirfd, ruleset_fd; test_relative_path() local
1878 const int ruleset_fd = TEST_F_FORK() local
1918 int ruleset_fd = create_ruleset(_metadata, layer1[0].access, layer1); TEST_F_FORK() local
1984 const int ruleset_fd = TEST_F_FORK() local
2066 const int ruleset_fd = TEST_F_FORK() local
2130 int ruleset_fd = TEST_F_FORK() local
2165 int ruleset_fd; refer_denied_by_default() local
2289 const int ruleset_fd = create_ruleset( TEST_F_FORK() local
2367 const int ruleset_fd = create_ruleset( TEST_F_FORK() local
2513 const int ruleset_fd = create_ruleset( reparent_exdev_layers_enforce1() local
2536 const int ruleset_fd = reparent_exdev_layers_enforce2() local
2810 const int ruleset_fd = create_ruleset( TEST_F_FORK() local
2882 int ruleset_fd = create_ruleset(_metadata, TEST_F_FORK() local
2955 const int ruleset_fd = TEST_F_FORK() local
2992 const int ruleset_fd = TEST_F_FORK() local
3018 const int ruleset_fd = create_ruleset(_metadata, access, rules); test_make_file() local
3106 const int ruleset_fd = TEST_F_FORK() local
3151 const int ruleset_fd = TEST_F_FORK() local
3192 const int ruleset_fd = create_ruleset( TEST_F_FORK() local
3236 const int ruleset_fd = TEST_F_FORK() local
3333 int ruleset_fd; TEST_F_FORK() local
3416 int ruleset_fd; TEST_F_FORK() local
3523 int fd_layer0, fd_layer1, fd_layer2, fd_layer3, ruleset_fd; TEST_F_FORK() local
3643 int fd, ruleset_fd; TEST_F_FORK() local
3684 int fd, ruleset_fd; TEST_F_FORK() local
3864 int ruleset_fd; TEST_F_FORK() local
3965 int ruleset_fd = create_ruleset( TEST_F_FORK() local
4358 int ruleset_fd; TEST_F_FORK() local
4672 int ruleset_fd; layer3_fs_tag_inode() local
4736 int ruleset_fd; TEST_F_FORK() local
[all...]
H A Dbase_test.c105 int ruleset_fd; in TEST() local
137 ruleset_fd = in TEST()
139 ASSERT_LE(0, ruleset_fd); in TEST()
140 ASSERT_EQ(0, close(ruleset_fd)); in TEST()
153 const int ruleset_fd = in TEST() local
156 ASSERT_LE(0, ruleset_fd); in TEST()
167 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, 0, NULL, 0)); in TEST()
171 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
176 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
184 ASSERT_EQ(0, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEAT in TEST()
200 const int ruleset_fd = TEST() local
240 int ruleset_fd; TEST() local
[all...]
H A Dptrace_test.c30 int ruleset_fd; in create_domain() local
35 ruleset_fd = in create_domain()
37 EXPECT_LE(0, ruleset_fd) in create_domain()
42 EXPECT_EQ(0, landlock_restrict_self(ruleset_fd, 0)); in create_domain()
43 EXPECT_EQ(0, close(ruleset_fd)); in create_domain()
H A Dcommon.h92 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
97 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
103 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
106 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
/kernel/linux/linux-6.6/samples/landlock/
H A Dsandboxer.c34 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
39 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
45 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
48 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
84 static int populate_ruleset(const char *const env_var, const int ruleset_fd, in populate_ruleset() argument
128 if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in populate_ruleset()
175 int ruleset_fd, abi; in main() local
277 ruleset_fd = in main()
279 if (ruleset_fd < 0) { in main()
283 if (populate_ruleset(ENV_FS_RO_NAME, ruleset_fd, access_fs_r in main()
[all...]
/kernel/linux/linux-6.6/security/landlock/
H A Dsyscalls.c175 int err, ruleset_fd; in SYSCALL_DEFINE3() local
209 ruleset_fd = anon_inode_getfd("[landlock-ruleset]", &ruleset_fops, in SYSCALL_DEFINE3()
211 if (ruleset_fd < 0) in SYSCALL_DEFINE3()
213 return ruleset_fd; in SYSCALL_DEFINE3()
292 * @ruleset_fd: File descriptor tied to the ruleset that should be extended
310 * - %EBADF: @ruleset_fd is not a file descriptor for the current thread, or a
312 * - %EBADFD: @ruleset_fd is not a ruleset file descriptor, or a member of
314 * - %EPERM: @ruleset_fd has no write access to the underlying ruleset;
317 SYSCALL_DEFINE4(landlock_add_rule, const int, ruleset_fd, in SYSCALL_DEFINE4()
334 ruleset = get_ruleset_from_fd(ruleset_fd, FMODE_CAN_WRIT in SYSCALL_DEFINE4()
[all...]
/kernel/linux/linux-6.6/include/linux/
H A Dsyscalls.h933 asmlinkage long sys_landlock_add_rule(int ruleset_fd, enum landlock_rule_type rule_type,
935 asmlinkage long sys_landlock_restrict_self(int ruleset_fd, __u32 flags);

Completed in 7 milliseconds