Home
last modified time | relevance | path

Searched refs:CAP_SYS_PTRACE (Results 1 – 11 of 11) sorted by relevance

/Linux-v5.10/security/yama/
Dyama_lsm.c371 !ns_capable(__task_cred(child)->user_ns, CAP_SYS_PTRACE)) in yama_ptrace_access_check()
377 if (!ns_capable(__task_cred(child)->user_ns, CAP_SYS_PTRACE)) in yama_ptrace_access_check()
407 if (!has_ns_capability(parent, current_user_ns(), CAP_SYS_PTRACE)) in yama_ptrace_traceme()
437 if (write && !capable(CAP_SYS_PTRACE)) in yama_dointvec_minmax()
/Linux-v5.10/Documentation/admin-guide/LSM/
DYama.rst34 work), or with ``CAP_SYS_PTRACE`` (i.e. "gdb --pid=PID", and "strace -p PID"
49 The sysctl settings (writable only with ``CAP_SYS_PTRACE``) are:
68 only processes with ``CAP_SYS_PTRACE`` may use ptrace, either with
DSmack.rst299 ``PTRACE_READ`` is not affected. Can be overridden with ``CAP_SYS_PTRACE``.
303 exception that it can't be overridden with ``CAP_SYS_PTRACE``.
/Linux-v5.10/include/uapi/linux/
Dcapability.h235 #define CAP_SYS_PTRACE 19 macro
/Linux-v5.10/security/apparmor/
Dipc.c104 aad(sa)->error = aa_capable(&tracer->label, CAP_SYS_PTRACE, in profile_tracer_perm()
/Linux-v5.10/kernel/
Dcapability.c526 ret = security_capable(cred, ns, CAP_SYS_PTRACE, in ptracer_capable()
Dptrace.c270 return ns_capable_noaudit(ns, CAP_SYS_PTRACE); in ptrace_has_cap()
271 return ns_capable(ns, CAP_SYS_PTRACE); in ptrace_has_cap()
/Linux-v5.10/security/
Dcommoncap.c149 if (ns_capable(child_cred->user_ns, CAP_SYS_PTRACE)) in cap_ptrace_access_check()
181 if (has_ns_capability(parent, child_cred->user_ns, CAP_SYS_PTRACE)) in cap_ptrace_traceme()
/Linux-v5.10/fs/
Duserfaultfd.c1850 if ((features & UFFD_FEATURE_EVENT_FORK) && !capable(CAP_SYS_PTRACE)) in userfaultfd_api()
1962 if (!sysctl_unprivileged_userfaultfd && !capable(CAP_SYS_PTRACE)) in SYSCALL_DEFINE1()
/Linux-v5.10/Documentation/admin-guide/
Dperf-security.rst90 processes provided with CAP_SYS_PTRACE capability are effectively
/Linux-v5.10/security/smack/
Dsmack_lsm.c443 else if (smack_privileged_cred(CAP_SYS_PTRACE, tracercred)) in smk_ptrace_rule_check()