Home
last modified time | relevance | path

Searched refs:ruleset_fd (Results 1 – 8 of 8) sorted by relevance

/openbmc/linux/tools/testing/selftests/landlock/
H A Dfs_test.c439 int ruleset_fd; in TEST_F_FORK() local
445 ruleset_fd = open(dir_s1d1, O_PATH | O_DIRECTORY | O_CLOEXEC); in TEST_F_FORK()
446 ASSERT_LE(0, ruleset_fd); in TEST_F_FORK()
447 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST_F_FORK()
451 ASSERT_EQ(0, close(ruleset_fd)); in TEST_F_FORK()
453 ruleset_fd = open(dir_s1d1, O_DIRECTORY | O_CLOEXEC); in TEST_F_FORK()
454 ASSERT_LE(0, ruleset_fd); in TEST_F_FORK()
455 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST_F_FORK()
459 ASSERT_EQ(0, close(ruleset_fd)); in TEST_F_FORK()
462 ruleset_fd = in TEST_F_FORK()
[all …]
H A Dbase_test.c106 int ruleset_fd; in TEST() local
138 ruleset_fd = in TEST()
140 ASSERT_LE(0, ruleset_fd); in TEST()
141 ASSERT_EQ(0, close(ruleset_fd)); in TEST()
154 const int ruleset_fd = in TEST() local
157 ASSERT_LE(0, ruleset_fd); in TEST()
168 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, 0, NULL, 0)); in TEST()
172 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
177 ASSERT_EQ(-1, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
185 ASSERT_EQ(0, landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in TEST()
[all …]
H A Dptrace_test.c30 int ruleset_fd; in create_domain() local
35 ruleset_fd = in create_domain()
37 EXPECT_LE(0, ruleset_fd) in create_domain()
42 EXPECT_EQ(0, landlock_restrict_self(ruleset_fd, 0)); in create_domain()
43 EXPECT_EQ(0, close(ruleset_fd)); in create_domain()
H A Dcommon.h92 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
97 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
103 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
106 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
/openbmc/linux/samples/landlock/
H A Dsandboxer.c34 static inline int landlock_add_rule(const int ruleset_fd, in landlock_add_rule() argument
39 return syscall(__NR_landlock_add_rule, ruleset_fd, rule_type, rule_attr, in landlock_add_rule()
45 static inline int landlock_restrict_self(const int ruleset_fd, in landlock_restrict_self() argument
48 return syscall(__NR_landlock_restrict_self, ruleset_fd, flags); in landlock_restrict_self()
87 static int populate_ruleset(const char *const env_var, const int ruleset_fd, in populate_ruleset() argument
135 if (landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH, in populate_ruleset()
182 int ruleset_fd, abi; in main() local
284 ruleset_fd = in main()
286 if (ruleset_fd < 0) { in main()
290 if (populate_ruleset(ENV_FS_RO_NAME, ruleset_fd, access_fs_ro)) { in main()
[all …]
/openbmc/linux/security/landlock/
H A Dsyscalls.c175 int err, ruleset_fd; in SYSCALL_DEFINE3() local
209 ruleset_fd = anon_inode_getfd("[landlock-ruleset]", &ruleset_fops, in SYSCALL_DEFINE3()
211 if (ruleset_fd < 0) in SYSCALL_DEFINE3()
213 return ruleset_fd; in SYSCALL_DEFINE3()
317 SYSCALL_DEFINE4(landlock_add_rule, const int, ruleset_fd, in SYSCALL_DEFINE4() argument
334 ruleset = get_ruleset_from_fd(ruleset_fd, FMODE_CAN_WRITE); in SYSCALL_DEFINE4()
409 SYSCALL_DEFINE2(landlock_restrict_self, const int, ruleset_fd, const __u32, in SYSCALL_DEFINE2() argument
433 ruleset = get_ruleset_from_fd(ruleset_fd, FMODE_CAN_READ); in SYSCALL_DEFINE2()
/openbmc/linux/Documentation/userspace-api/
H A Dlandlock.rst101 int ruleset_fd;
103 ruleset_fd = landlock_create_ruleset(&ruleset_attr, sizeof(ruleset_attr), 0);
104 if (ruleset_fd < 0) {
129 close(ruleset_fd);
132 err = landlock_add_rule(ruleset_fd, LANDLOCK_RULE_PATH_BENEATH,
137 close(ruleset_fd);
155 close(ruleset_fd);
163 if (landlock_restrict_self(ruleset_fd, 0)) {
165 close(ruleset_fd);
168 close(ruleset_fd);
/openbmc/linux/include/linux/
H A Dsyscalls.h939 asmlinkage long sys_landlock_add_rule(int ruleset_fd, enum landlock_rule_type rule_type,
941 asmlinkage long sys_landlock_restrict_self(int ruleset_fd, __u32 flags);