| /linux-6.6.21/security/safesetid/ |
| D | lsm.c | 46 } else if (policy->type == GID) { in _setid_policy_lookup()
74 else if (new_type == GID) in setid_policy_lookup()
127 if (setid_policy_lookup((kid_t){.gid = cred->gid}, INVALID_ID, GID) == SIDPOL_DEFAULT) in safesetid_security_capable()
156 } else if (new_type == GID){ in id_permitted_for_cred()
175 } else if (new_type == GID) { in id_permitted_for_cred()
220 if (setid_policy_lookup((kid_t){.gid = old->gid}, INVALID_ID, GID) == SIDPOL_DEFAULT) in safesetid_task_fix_setgid()
223 if (id_permitted_for_cred(old, (kid_t){.gid = new->gid}, GID) && in safesetid_task_fix_setgid()
224 id_permitted_for_cred(old, (kid_t){.gid = new->egid}, GID) && in safesetid_task_fix_setgid()
225 id_permitted_for_cred(old, (kid_t){.gid = new->sgid}, GID) && in safesetid_task_fix_setgid()
226 id_permitted_for_cred(old, (kid_t){.gid = new->fsgid}, GID)) in safesetid_task_fix_setgid()
[all …]
|
| D | securityfs.c | 58 } else if (rule->type == GID){ in parse_policy_line()
92 else if (pol->type == GID) in insert_rule()
110 } else if (pol->type == GID) { in verify_ruleset()
131 nrule->type = GID; in verify_ruleset()
216 } else if (policy_type == GID) { in handle_policy_update()
260 return handle_policy_update(file, buf, len, GID); in safesetid_gid_file_write()
|
| D | Kconfig | 9 restrict UID/GID transitions from a given UID/GID to only those
|
| D | lsm.h | 37 GID enumerator
|
| /linux-6.6.21/Documentation/admin-guide/LSM/ |
| D | SafeSetID.rst | 5 UID/GID transitions from a given UID/GID to only those approved by a
8 allowing a user to set up user namespace UID/GID mappings.
57 to do process spawning and UID/GID transitions). Unfortunately, there are a
70 programs in the tree could change to any desired UID/GID in the context of their
103 mounted. The format for adding a policy is '<UID>:<UID>' or '<GID>:<GID>',
106 for a UID/GID will prevent that UID/GID from obtaining auxiliary setid
107 privileges, such as allowing a user to set up user namespace UID/GID mappings.
109 Note on GID policies and setgroups()
115 support in a future release for restricting setgroups() calls, these GID
117 once we have the policy checking code in place, which will rely on GID policy
|
| /linux-6.6.21/Documentation/admin-guide/ |
| D | highuid.rst | 18 maximum UID/GID. They are limited by the maximum file size on the
27 (currently, the old 16-bit UID and GID are still written to disk, and
29 GID)
|
| /linux-6.6.21/Documentation/ABI/stable/ |
| D | sysfs-driver-ib_srp | 18 destination GID.
118 Description: InfiniBand destination GID used for communication with the SRP
153 Description: InfiniBand destination GID specified in the parameters
182 Description: InfiniBand GID of the source port used for communication with
|
| D | sysfs-class-infiniband | 223 Description: The net-device's name associated with the GID resides
230 Description: The RoCE type of the associated GID resides at index <gid-index>.
345 entry in the port's P_Key or GID table respectively. For
361 <m>/gid_idx/0: (RO) Display the GID mapping m = 1..2
|
| /linux-6.6.21/tools/perf/trace/beauty/ |
| D | statx.c | 60 P_FLAG(GID); in syscall_arg__scnprintf_statx_mask()
|
| /linux-6.6.21/Documentation/admin-guide/nfs/ |
| D | nfs-idmapper.rst | 42 gid: Find the GID for the given group
44 group: Find the group name for the given GID
|
| /linux-6.6.21/drivers/net/ethernet/renesas/ |
| D | ravb_ptp.c | 199 ravb_write(ndev, GID_PTCD, GID); in ravb_ptp_extts()
265 ravb_write(ndev, GID_PTMD0, GID); in ravb_ptp_perout()
|
| D | ravb.h | 174 GID = 0x03D0, /* R-Car Gen3 only */ enumerator
|
| /linux-6.6.21/Documentation/security/ |
| D | credentials.rst | 45 defined by the UID and the GID marked on the inode.
72 from the real UID and GID that normally form the objective context of the
132 The UID and GID are carried by most, if not all, Linux objects, even if in
142 EUID/EGID/GROUPS will be used as the subjective context, and real UID/GID
234 * UNIX UID, GID, mode;
320 gid_t current_gid(void) Current's real GID
322 gid_t current_egid(void) Current's effective GID
324 gid_t current_fsgid(void) Current's file access GID
|
| D | IMA-templates.rst | 15 the inode UID/GID or the LSM labels either of the inode and of the process
80 - 'igid': the inode GID;
|
| /linux-6.6.21/Documentation/admin-guide/perf/ |
| D | cxl.rst | 64 $# perf stat -a -e cxl_pmu_mem0.0/vid=VID,gid=GID,mask=MASK/
|
| /linux-6.6.21/Documentation/filesystems/ext4/ |
| D | inodes.rst | 79 - Lower 16-bits of GID.
206 - S_ISGID (Set GID)
395 - Upper 16-bits of the GID.
430 - Upper 16-bits of the GID.
|
| /linux-6.6.21/Documentation/filesystems/ |
| D | quota.rst | 48 - UID/GID (depends on quota type) of user / group whose limit
|
| D | hpfs.rst | 84 attributes with keys "UID", "GID" or "MODE" and 2-byte values are created. Only
95 that if somebody (I don't know who?) has set "UID", "GID", "MODE" or "DEV"
|
| /linux-6.6.21/drivers/infiniband/ |
| D | Kconfig | 74 This allows the user to config the default GID type that the CM
|
| /linux-6.6.21/Documentation/security/keys/ |
| D | request-key.rst | 108 UID, GID, groups and security info of process A as if it was process A,
129 of them, and (b) it requires the same UID/GID/Groups all the way through.
|
| /linux-6.6.21/Documentation/filesystems/nfs/ |
| D | rpc-cache.rst | 25 - mappings between local UID/GID and remote UID/GID for sites that
|
| /linux-6.6.21/security/keys/ |
| D | Kconfig | 19 to five standard keyrings: UID-specific, GID-specific, session,
|
| /linux-6.6.21/Documentation/ABI/testing/ |
| D | sysfs-class-rnbd-client | 43 gid:<GID>
|
| /linux-6.6.21/Documentation/admin-guide/sysctl/ |
| D | fs.rst | 142 with writes enabled, any UID or GID that would exceed 65535 is translated
145 These sysctls allow you to change the value of the fixed UID and GID.
|
| /linux-6.6.21/usr/ |
| D | Kconfig | 50 If INITRAMFS_SOURCE points to a directory, files owned by this GID
|