Searched refs:CAP_SYS_PTRACE (Results 1 – 13 of 13) sorted by relevance
| /linux/security/yama/ |
| H A D | yama_lsm.c | 366 !ns_capable(__task_cred(child)->user_ns, CAP_SYS_PTRACE)) in yama_ptrace_access_check()
372 if (!ns_capable(__task_cred(child)->user_ns, CAP_SYS_PTRACE)) in yama_ptrace_access_check()
402 if (!has_ns_capability(parent, current_user_ns(), CAP_SYS_PTRACE)) in yama_ptrace_traceme()
437 if (write && !capable(CAP_SYS_PTRACE)) in yama_dointvec_minmax()
|
| /linux/Documentation/admin-guide/LSM/ |
| H A D | Yama.rst | 34 work), or with ``CAP_SYS_PTRACE`` (i.e. "gdb --pid=PID", and "strace -p PID"
49 The sysctl settings (writable only with ``CAP_SYS_PTRACE``) are:
68 only processes with ``CAP_SYS_PTRACE`` may use ptrace, either with
|
| H A D | Smack.rst | 299 ``PTRACE_READ`` is not affected. Can be overridden with ``CAP_SYS_PTRACE``.
303 exception that it can't be overridden with ``CAP_SYS_PTRACE``.
|
| /linux/include/uapi/linux/ |
| H A D | capability.h | 237 #define CAP_SYS_PTRACE 19 macro
|
| /linux/kernel/ |
| H A D | capability.c | 499 ret = security_capable(cred, ns, CAP_SYS_PTRACE, in ptracer_capable()
|
| H A D | ptrace.c | 271 return ns_capable_noaudit(ns, CAP_SYS_PTRACE); in ptrace_has_cap()
272 return ns_capable(ns, CAP_SYS_PTRACE); in ptrace_has_cap()
|
| /linux/security/apparmor/ |
| H A D | task.c | 273 ad->error = aa_capable(cred, &tracer->label, CAP_SYS_PTRACE, in profile_tracer_perm()
|
| /linux/security/ |
| H A D | commoncap.c | 180 if (ns_capable(child_cred->user_ns, CAP_SYS_PTRACE)) in cap_ptrace_access_check()
212 if (has_ns_capability(parent, child_cred->user_ns, CAP_SYS_PTRACE)) in cap_ptrace_traceme()
|
| /linux/Documentation/admin-guide/ |
| H A D | perf-security.rst | 90 So unprivileged processes provided with CAP_SYS_PTRACE capability are
92 CAP_SYS_PTRACE capability is not required and CAP_PERFMON is enough to
|
| /linux/Documentation/admin-guide/mm/ |
| H A D | userfaultfd.rst | 68 process needs the CAP_SYS_PTRACE capability, or the system must have
79 the same time (as e.g. granting CAP_SYS_PTRACE would do). Users who have access
|
| /linux/fs/ |
| H A D | userfaultfd.c | 1989 if ((features & UFFD_FEATURE_EVENT_FORK) && !capable(CAP_SYS_PTRACE)) in userfaultfd_api()
2179 if (capable(CAP_SYS_PTRACE)) in userfaultfd_syscall_allowed()
|
| /linux/Documentation/filesystems/ |
| H A D | proc.rst | 112 process is required to have either CAP_SYS_PTRACE capability with
116 which requires CAP_SYS_PTRACE capabilities with more elevated
|
| /linux/security/smack/ |
| H A D | smack_lsm.c | 440 else if (smack_privileged_cred(CAP_SYS_PTRACE, tracercred)) in smk_ptrace_rule_check()
|