Searched refs:ambient (Results 1 – 7 of 7) sorted by relevance
408 ambient_supported = q->ambient != UINT64_MAX; in capability_quintet_mangle()410 combined |= q->ambient; in capability_quintet_mangle()431 q->ambient &= ~drop; in capability_quintet_mangle()440 if (q->ambient != UINT64_MAX) { in capability_quintet_enforce()454 if ((q->ambient & m) == 0) in capability_quintet_enforce()477 r = capability_ambient_set_apply(q->ambient, false); in capability_quintet_enforce()
58 uint64_t ambient; member70 q->ambient != UINT64_MAX; in capability_quintet_is_set()
2719 if (q.ambient == UINT64_MAX && ambient_capabilities_supported()) in drop_capabilities()2720 q.ambient = arg_caps_ambient; in drop_capabilities()2731 .ambient = ambient_capabilities_supported() ? arg_caps_ambient : UINT64_MAX, in drop_capabilities()4351 uint64_t ambient; in merge_settings() local4385 ambient = settings->ambient_capability; in merge_settings()4386 if (!arg_settings_trusted && ambient != 0) in merge_settings()4389 arg_caps_ambient |= ambient; in merge_settings()
326 …ambient", JSON_VARIANT_ARRAY, oci_capability_array, offsetof(CapabilityQuintet, ambient) }, in oci_capabilities()
34 ≥ 4.3 for ambient capabilities
185 * drop support for kernels that lack ambient capabilities support (i.e. make664 * userdb: add field for ambient caps, so that a user can have CAP_WAKE_ALARM665 for example. And add code that resets ambient caps for all services by
2310 * systemd-nspawn gained a new --ambient-capability= setting2311 (AmbientCapability= in .nspawn files) to configure ambient6863 systems that support ambient capabilities. This is useful to write6864 unit files that work with ambient capabilities where possible but