| /linux-6.12.1/security/apparmor/include/ |
| D | perms.h | 71 u32 deny; /* explicit deny, or conflict if allow also set */ member
110 accum->deny |= addend->deny; in aa_perms_accum_raw()
111 accum->allow &= addend->allow & ~addend->deny; in aa_perms_accum_raw()
115 accum->complain |= addend->complain & ~addend->allow & ~addend->deny; in aa_perms_accum_raw()
116 accum->cond |= addend->cond & ~addend->allow & ~addend->deny; in aa_perms_accum_raw()
118 accum->prompt |= addend->prompt & ~addend->allow & ~addend->deny; in aa_perms_accum_raw()
119 accum->subtree |= addend->subtree & ~addend->deny; in aa_perms_accum_raw()
137 accum->deny |= addend->deny; in aa_perms_accum()
138 accum->allow &= addend->allow & ~accum->deny; in aa_perms_accum()
142 accum->complain |= addend->complain & ~accum->allow & ~accum->deny; in aa_perms_accum()
[all …]
|
| D | net.h | 88 u8 deny; member
|
| /linux-6.12.1/fs/nfsd/ |
| D | nfs4acl.c | 239 unsigned short deny; in _posix_to_nfsv4_one() local
250 deny = ~pas.owner; in _posix_to_nfsv4_one()
255 deny &= pas.users | pas.group | pas.groups | pas.other; in _posix_to_nfsv4_one()
256 if (deny) { in _posix_to_nfsv4_one()
259 ace->access_mask = deny_mask_from_posix(deny, flags); in _posix_to_nfsv4_one()
274 deny = ~(pa->e_perm & pas.mask); in _posix_to_nfsv4_one()
275 deny &= pas.groups | pas.group | pas.other; in _posix_to_nfsv4_one()
276 if (deny) { in _posix_to_nfsv4_one()
279 ace->access_mask = deny_mask_from_posix(deny, flags); in _posix_to_nfsv4_one()
327 deny = ~pas.group & pas.other; in _posix_to_nfsv4_one()
[all …]
|
| D | nfs4state.c | 474 set_deny(u32 deny, struct nfs4_ol_stateid *stp) in set_deny() argument
476 unsigned char mask = 1 << deny; in set_deny()
478 WARN_ON_ONCE(deny > NFS4_SHARE_DENY_BOTH); in set_deny()
484 clear_deny(u32 deny, struct nfs4_ol_stateid *stp) in clear_deny() argument
486 unsigned char mask = 1 << deny; in clear_deny()
488 WARN_ON_ONCE(deny > NFS4_SHARE_DENY_BOTH); in clear_deny()
494 test_deny(u32 deny, struct nfs4_ol_stateid *stp) in test_deny() argument
496 unsigned char mask = 1 << deny; in test_deny()
800 static __be32 nfs4_file_check_deny(struct nfs4_file *fp, u32 deny) in nfs4_file_check_deny() argument
803 if (deny) { in nfs4_file_check_deny()
[all …]
|
| /linux-6.12.1/drivers/gpu/drm/xe/ |
| D | xe_reg_whitelist.c | 123 bool deny; in xe_reg_whitelist_print_entry() local
125 deny = val & RING_FORCE_TO_NONPRIV_DENY; in xe_reg_whitelist_print_entry()
156 deny ? "deny" : "allow", in xe_reg_whitelist_print_entry()
|
| /linux-6.12.1/Documentation/admin-guide/cgroup-v1/ |
| D | devices.rst | 25 devices.deny. For instance::
32 echo a > /sys/fs/cgroup/1/devices.deny
62 a cgroup's devices.deny file, all its children will have that entry removed
75 B deny "c 1:3 rwm", "c 116:2 rwm", "b 3:* rwm"
79 # echo "c 116:* r" > A/devices.deny
120 Allowing or denying all by writing 'a' to devices.allow or devices.deny will
|
| /linux-6.12.1/security/apparmor/ |
| D | lib.c | 354 u32 request, int type, u32 *deny, in aa_profile_label_perm() argument
367 *deny |= request & perms.deny; in aa_profile_label_perm()
393 u32 denied = request & (~perms->allow | perms->deny); in aa_check_perms()
|
| D | net.c | 241 if (rules->secmark[i].deny) in aa_secmark_perm()
242 perms.deny = ALL_PERMS_MASK; in aa_secmark_perm()
|
| D | policy_unpack.c | 585 if (!unpack_u8(e, &rules->secmark[i].deny, NULL)) in unpack_secmark()
653 aa_unpack_u32(e, &perm->deny, NULL) && in unpack_perm()
1192 if (perm->allow & perm->deny) in verify_perm()
1196 if (perm->cond & (perm->allow | perm->deny)) in verify_perm()
1200 if (perm->complain & (perm->allow | perm->deny)) in verify_perm()
1202 if (perm->prompt & (perm->allow | perm->deny)) in verify_perm()
|
| /linux-6.12.1/scripts/ |
| D | check-variable-fonts.sh | 91 : ${FONTS_CONF_DENY_VF:=$HOME/deny-vf}
|
| /linux-6.12.1/tools/testing/selftests/bpf/ |
| D | DENYLIST.riscv64 | 1 # riscv64 deny list for BPF CI and local vmtest
|
| D | README.rst | 32 deny list file, located at ``tools/testing/selftests/bpf/DENYLIST.<arch>``, can
55 that deny lists are not automatically honored.
|
| /linux-6.12.1/Documentation/ABI/stable/ |
| D | o2cb | 7 and can be written into with the strings "allow", "deny", or
|
| /linux-6.12.1/Documentation/ABI/obsolete/ |
| D | o2cb | 7 and can be written into with the strings "allow", "deny", or
|
| /linux-6.12.1/tools/testing/selftests/net/tcp_ao/ |
| D | Makefile | 4 TEST_BOTH_AF += connect-deny
|
| /linux-6.12.1/fs/smb/server/ |
| D | smbacl.h | 53 u32 deny; member
|
| /linux-6.12.1/security/selinux/ |
| D | Kconfig | 34 kernel will start in permissive mode (log everything, deny nothing)
|
| /linux-6.12.1/Documentation/ |
| D | Makefile | 33 FONTS_CONF_DENY_VF ?= $(HOME)/deny-vf
|
| /linux-6.12.1/Documentation/usb/ |
| D | authorization.rst | 98 There is a similar approach to allow or deny specific USB interfaces.
|
| /linux-6.12.1/Documentation/networking/device_drivers/cable/ |
| D | sb1000.rst | 179 6. I'm getting *tons* of firewall deny messages in the /var/kern.log,
185 and/or portscanning (UDP connection attempts) attacks! Look over the deny
|
| /linux-6.12.1/Documentation/bpf/ |
| D | prog_cgroup_sysctl.rst | 100 the result to make decision whether to allow or deny access to sysctl.
|
| /linux-6.12.1/Documentation/security/ |
| D | snp-tdx-threat-model.rst | 183 The host retains full control over the CoCo guest resources, and can deny
|
| /linux-6.12.1/Documentation/admin-guide/mm/ |
| D | transhuge.rst | 362 deny
373 global settings. Conversely, the options 'force' and 'deny' are dropped,
|
| /linux-6.12.1/Documentation/filesystems/ |
| D | tmpfs.rst | 126 be used to deny huge pages on all tmpfs mounts in an emergency, or to
|
| /linux-6.12.1/Documentation/admin-guide/LSM/ |
| D | ipe.rst | 118 authorization criteria, IPE will deny its execution. Additionally, IPE
337 …e_op=EXECUTE ipe_hook=MMAP enforcing=1 pid=2241 comm="ld-linux.so" path="/deny/lib/libc.so.6" dev=…
|