Home
last modified time | relevance | path

Searched refs:capability_bounding_set (Results 1 – 7 of 7) sorted by relevance

/systemd-251/src/test/
Dtest-load-fragment.c616 uint64_t capability_bounding_set = 0; in TEST() local
620 &capability_bounding_set, NULL); in TEST()
622 assert_se(capability_bounding_set == make_cap(CAP_NET_RAW)); in TEST()
626 &capability_bounding_set, NULL); in TEST()
628 assert_se(capability_bounding_set == (make_cap(CAP_NET_RAW) | make_cap(CAP_NET_ADMIN))); in TEST()
632 &capability_bounding_set, NULL); in TEST()
634 assert_se(capability_bounding_set == make_cap(CAP_NET_RAW)); in TEST()
638 &capability_bounding_set, NULL); in TEST()
640 assert_se(capability_bounding_set == UINT64_C(0)); in TEST()
644 &capability_bounding_set, NULL); in TEST()
[all …]
/systemd-251/src/analyze/
Danalyze-security.c49 uint64_t capability_bounding_set; member
140 .capability_bounding_set = UINT64_MAX, in security_info_new()
363 *ret_badness = !!(info->capability_bounding_set & a->parameter); in assess_capability_bounding_set()
2300 … NULL, offsetof(SecurityInfo, capability_bounding_set) }, in acquire_security_info()
2404 info->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYS_MODULE); in acquire_security_info()
2407 info->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYSLOG); in acquire_security_info()
2410 info->capability_bounding_set &= ~((UINT64_C(1) << CAP_SYS_TIME) | in acquire_security_info()
2414 info->capability_bounding_set &= ~((UINT64_C(1) << CAP_MKNOD) | in acquire_security_info()
2490 info->capability_bounding_set = c->capability_bounding_set; in get_security_info()
/systemd-251/src/core/
Dexecute.h278 uint64_t capability_bounding_set; member
Dunit.c4086 … ec->capability_bounding_set &= ~((UINT64_C(1) << CAP_MKNOD) | (UINT64_C(1) << CAP_SYS_RAWIO)); in unit_patch_contexts()
4089 ec->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYS_MODULE); in unit_patch_contexts()
4092 ec->capability_bounding_set &= ~(UINT64_C(1) << CAP_SYSLOG); in unit_patch_contexts()
4095 … ec->capability_bounding_set &= ~((UINT64_C(1) << CAP_SYS_TIME) | (UINT64_C(1) << CAP_WAKE_ALARM)); in unit_patch_contexts()
Dexecute.c4871 bset = context->capability_bounding_set; in exec_child()
5313 c->capability_bounding_set = CAP_ALL; in exec_context_init()
6010 if (c->capability_bounding_set != CAP_ALL) { in exec_context_dump()
6013 r = capability_set_to_string_alloc(c->capability_bounding_set, &str); in exec_context_dump()
Dload-fragment-gperf.gperf.in57 … 0, offsetof({{type}}, exec_context.capability_bounding_set)
Ddbus-execute.c1230 …OPERTY("CapabilityBoundingSet", "t", NULL, offsetof(ExecContext, capability_bounding_set), SD_BUS_…
1975 … return bus_set_transient_capability(u, name, &c->capability_bounding_set, message, flags, error); in bus_exec_context_set_transient_property()