Symbol: cap_rights_limit
crypto/openssh/sandbox-capsicum.c
102
if (cap_rights_limit(box->m_log_sendfd, &rights) < 0 &&
crypto/openssh/sandbox-capsicum.c
90
if (cap_rights_limit(STDIN_FILENO, &rights) < 0 && errno != ENOSYS)
crypto/openssh/sandbox-capsicum.c
92
if (cap_rights_limit(STDOUT_FILENO, &rights) < 0 && errno != ENOSYS)
crypto/openssh/sandbox-capsicum.c
94
if (cap_rights_limit(STDERR_FILENO, &rights) < 0 && errno != ENOSYS)
crypto/openssh/sandbox-capsicum.c
98
if (cap_rights_limit(box->m_recvfd, &rights) < 0 &&
lib/libcapsicum/capsicum_helpers.h
170
if (cap_rights_limit(fd, rights) < 0 && errno != ENOSYS)
lib/libcapsicum/capsicum_helpers.h
84
if (cap_rights_limit(fd, &rights) < 0 && errno != ENOSYS) {
lib/libcasper/services/cap_fileargs/cap_fileargs.c
521
if (cap_rights_limit(fd, caprightsp) < 0 && errno != ENOSYS) {
lib/libutil/pidfile.c
201
if (cap_rights_limit(dirfd,
lib/libutil/pidfile.c
206
if (cap_rights_limit(fd, cap_rights_init(&caprights, CAP_PWRITE,
libexec/pkg-serve/pkg-serve.c
64
if (cap_rights_limit(fd, &rights) < 0 && errno != ENOSYS)
sbin/hastd/subr.c
241
if (cap_rights_limit(res->hr_localfd, &rights) == -1) {
sbin/hastd/subr.c
260
if (cap_rights_limit(res->hr_ggatefd, &rights) == -1) {
sys/sys/capsicum.h
510
int cap_rights_limit(int fd, const cap_rights_t *rights);
tests/sys/capsicum/bindat_connectat.c
184
ATF_REQUIRE(cap_rights_limit(s, rights) >= 0);
tests/sys/capsicum/bindat_connectat.c
188
ATF_REQUIRE(cap_rights_limit(s,
tests/sys/capsicum/capability-fd-pair.cc
24
EXPECT_OK(cap_rights_limit(cap_in_ro, &r_rs));
tests/sys/capsicum/capability-fd-pair.cc
27
EXPECT_OK(cap_rights_limit(cap_in_wo, &r_ws));
tests/sys/capsicum/capability-fd-pair.cc
30
EXPECT_OK(cap_rights_limit(cap_out_ro, &r_rs));
tests/sys/capsicum/capability-fd-pair.cc
33
EXPECT_OK(cap_rights_limit(cap_out_wo, &r_ws));
tests/sys/capsicum/capability-fd.cc
1011
EXPECT_OK(cap_rights_limit(cap_fd, &r_rs));
tests/sys/capsicum/capability-fd.cc
1062
EXPECT_OK(cap_rights_limit(cap_dfd_all, &r_all));
tests/sys/capsicum/capability-fd.cc
1065
EXPECT_OK(cap_rights_limit(cap_dfd_no_unlink, &r_no_unlink));
tests/sys/capsicum/capability-fd.cc
1068
EXPECT_OK(cap_rights_limit(cap_dfd_no_mkdir, &r_no_mkdir));
tests/sys/capsicum/capability-fd.cc
1071
EXPECT_OK(cap_rights_limit(cap_dfd_no_mkfifo, &r_no_mkfifo));
tests/sys/capsicum/capability-fd.cc
1074
EXPECT_OK(cap_rights_limit(cap_dfd_create, &r_create));
tests/sys/capsicum/capability-fd.cc
1077
EXPECT_OK(cap_rights_limit(cap_dfd_bind, &r_bind));
tests/sys/capsicum/capability-fd.cc
1124
EXPECT_OK(cap_rights_limit(cap_dfd_all, &r_all));
tests/sys/capsicum/capability-fd.cc
1127
EXPECT_OK(cap_rights_limit(cap_dfd_no_mkfifo, &r_no_mkfifo));
tests/sys/capsicum/capability-fd.cc
1130
EXPECT_OK(cap_rights_limit(cap_dfd_no_mknod, &r_no_mknod));
tests/sys/capsicum/capability-fd.cc
1178
EXPECT_OK(cap_rights_limit(cap, &r_rws));
tests/sys/capsicum/capability-fd.cc
1181
EXPECT_OK(cap_rights_limit(cap_xlist, &r_xlist));
tests/sys/capsicum/capability-fd.cc
1184
EXPECT_OK(cap_rights_limit(cap_xget, &r_xget));
tests/sys/capsicum/capability-fd.cc
1187
EXPECT_OK(cap_rights_limit(cap_xset, &r_xset));
tests/sys/capsicum/capability-fd.cc
1190
EXPECT_OK(cap_rights_limit(cap_xdel, &r_xdel));
tests/sys/capsicum/capability-fd.cc
1236
EXPECT_OK(cap_rights_limit(fds[0], &rights));
tests/sys/capsicum/capability-fd.cc
1243
EXPECT_OK(cap_rights_limit(fds[0], &rights));
tests/sys/capsicum/capability-fd.cc
1259
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/capability-fd.cc
193
EXPECT_OK(cap_rights_limit(cap_fd, &r_rws));
tests/sys/capsicum/capability-fd.cc
225
EXPECT_NOTCAPABLE(cap_rights_limit(cap_cap_fd, &r_rsmapchmod));
tests/sys/capsicum/capability-fd.cc
243
EXPECT_OK(cap_rights_limit(cap_fd, &r_0));
tests/sys/capsicum/capability-fd.cc
256
EXPECT_OK(cap_rights_limit(cap_fd2, &r_ws));
tests/sys/capsicum/capability-fd.cc
303
EXPECT_OK(cap_rights_limit(cap_fd, &r_rsstat));
tests/sys/capsicum/capability-fd.cc
306
EXPECT_OK(cap_rights_limit(cap_cap_fd, &r_rsstat));
tests/sys/capsicum/capability-fd.cc
340
EXPECT_OK(cap_rights_limit(cap_dir, &r_rl));
tests/sys/capsicum/capability-fd.cc
428
EXPECT_OK(cap_rights_limit(cap_none, &r_0));
tests/sys/capsicum/capability-fd.cc
431
EXPECT_OK(cap_rights_limit(cap_mmap, &r_mmap));
tests/sys/capsicum/capability-fd.cc
434
EXPECT_OK(cap_rights_limit(cap_read, &r_r));
tests/sys/capsicum/capability-fd.cc
437
EXPECT_OK(cap_rights_limit(cap_both, &r_rmmap));
tests/sys/capsicum/capability-fd.cc
469
EXPECT_OK(cap_rights_limit(cap_fd, &rights));
tests/sys/capsicum/capability-fd.cc
478
EXPECT_OK(cap_rights_limit(cap_cap_fd, &rights));
tests/sys/capsicum/capability-fd.cc
644
EXPECT_OK(cap_rights_limit(dfd_cap, &rights));
tests/sys/capsicum/copy_file_range.cc
58
EXPECT_OK(cap_rights_limit(fd, rights));
tests/sys/capsicum/copy_file_range.cc
64
EXPECT_OK(cap_rights_limit(fd, rights));
tests/sys/capsicum/fcntl.cc
159
EXPECT_OK(cap_rights_limit(caps[ii], &(fcntl_rights[ii])));
tests/sys/capsicum/fcntl.cc
162
EXPECT_OK(cap_rights_limit(sock_caps[ii], &(fcntl_rights[ii])));
tests/sys/capsicum/fcntl.cc
215
EXPECT_OK(cap_rights_limit(cap, &rights));
tests/sys/capsicum/fcntl.cc
287
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/fcntl.cc
299
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/fcntl.cc
305
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/fcntl.cc
320
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/fcntl.cc
361
EXPECT_OK(cap_rights_limit(sock, &rights));
tests/sys/capsicum/fcntl.cc
48
EXPECT_OK(cap_rights_limit(caps[key], &rights));
tests/sys/capsicum/fcntl.cc
64
EXPECT_OK(cap_rights_limit(cap, &r_ro)) << " on " << ii->first;
tests/sys/capsicum/fexecve.cc
110
EXPECT_OK(cap_rights_limit(cap_fd, &rights));
tests/sys/capsicum/fexecve.cc
160
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/fexecve.cc
97
EXPECT_OK(cap_rights_limit(cap_fd, &rights));
tests/sys/capsicum/ioctl.cc
100
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/ioctl.cc
122
EXPECT_OK(cap_rights_limit(fd, &rights_ioctl));
tests/sys/capsicum/ioctl.cc
199
EXPECT_OK(cap_rights_limit(fd, &rights_ioctl));
tests/sys/capsicum/ioctl.cc
23
EXPECT_OK(cap_rights_limit(fd, &rights_ioctl));
tests/sys/capsicum/ioctl.cc
24
EXPECT_OK(cap_rights_limit(fd_no, &rights_many));
tests/sys/capsicum/ioctl.cc
76
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/ioctl.cc
92
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/ioctls_test.c
95
ATF_REQUIRE(cap_rights_limit(s[0], &rights) == 0);
tests/sys/capsicum/linux.cc
1079
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/linux.cc
1126
EXPECT_OK(cap_rights_limit(cap_ro, &r_rs));
tests/sys/capsicum/linux.cc
1130
EXPECT_OK(cap_rights_limit(cap_wo, &r_ws));
tests/sys/capsicum/linux.cc
1134
EXPECT_OK(cap_rights_limit(cap_all, &r_rwssync));
tests/sys/capsicum/linux.cc
1208
EXPECT_OK(cap_rights_limit(fd, &rights));
tests/sys/capsicum/linux.cc
1231
EXPECT_OK(cap_rights_limit(cap, &rights));
tests/sys/capsicum/linux.cc
1241
EXPECT_OK(cap_rights_limit(proccap, &rights));
tests/sys/capsicum/linux.cc
1298
EXPECT_OK(cap_rights_limit(fd_all, &r_all));
tests/sys/capsicum/linux.cc
1302
EXPECT_OK(cap_rights_limit(fd_rw, &r_rw));
tests/sys/capsicum/linux.cc
135
EXPECT_OK(cap_rights_limit(cap_fd_none, &r_ws));
tests/sys/capsicum/linux.cc
138
EXPECT_OK(cap_rights_limit(cap_fd_read, &r_rs));
tests/sys/capsicum/linux.cc
141
EXPECT_OK(cap_rights_limit(cap_fd_sig, &r_sig));
tests/sys/capsicum/linux.cc
1436
EXPECT_OK(cap_rights_limit(memfd_ro, cap_rights_init(&rights, CAP_MMAP_R, CAP_FSTAT)));
tests/sys/capsicum/linux.cc
1437
EXPECT_OK(cap_rights_limit(memfd_rw, cap_rights_init(&rights, CAP_MMAP_RW, CAP_FCHMOD)));
tests/sys/capsicum/linux.cc
144
EXPECT_OK(cap_rights_limit(cap_fd_sig_read, &r_rssig));
tests/sys/capsicum/linux.cc
147
EXPECT_OK(cap_rights_limit(cap_fd_all, &r_rssig_poll));
tests/sys/capsicum/linux.cc
1489
EXPECT_OK(cap_rights_limit(memfd_rw, cap_rights_init(&rights, CAP_MMAP_RW)));
tests/sys/capsicum/linux.cc
201
EXPECT_OK(cap_rights_limit(cap_ro, &r_rs));
tests/sys/capsicum/linux.cc
204
EXPECT_OK(cap_rights_limit(cap_wo, &r_ws));
tests/sys/capsicum/linux.cc
207
EXPECT_OK(cap_rights_limit(cap_rw, &r_rws));
tests/sys/capsicum/linux.cc
210
EXPECT_OK(cap_rights_limit(cap_all, &r_rwspoll));
tests/sys/capsicum/linux.cc
279
EXPECT_OK(cap_rights_limit(cap_epoll_wo, &r_ws));
tests/sys/capsicum/linux.cc
282
EXPECT_OK(cap_rights_limit(cap_epoll_ro, &r_rs));
tests/sys/capsicum/linux.cc
285
EXPECT_OK(cap_rights_limit(cap_epoll_rw, &r_rws));
tests/sys/capsicum/linux.cc
288
EXPECT_OK(cap_rights_limit(cap_epoll_poll, &r_rwspoll));
tests/sys/capsicum/linux.cc
291
EXPECT_OK(cap_rights_limit(cap_epoll_ctl, &r_epoll));
tests/sys/capsicum/linux.cc
338
EXPECT_OK(cap_rights_limit(cap_rf, cap_rights_init(&rights, CAP_READ, CAP_FSTAT)));
tests/sys/capsicum/linux.cc
341
EXPECT_OK(cap_rights_limit(cap_ro, cap_rights_init(&rights, CAP_READ)));
tests/sys/capsicum/linux.cc
356
EXPECT_OK(cap_rights_limit(dir_rf, cap_rights_init(&rights, CAP_READ, CAP_FSTAT)));
tests/sys/capsicum/linux.cc
359
EXPECT_OK(cap_rights_limit(dir_ro, cap_rights_init(&rights, CAP_READ)));
tests/sys/capsicum/linux.cc
399
EXPECT_OK(cap_rights_limit(cap_fd_ro, &r_rs));
tests/sys/capsicum/linux.cc
402
EXPECT_OK(cap_rights_limit(cap_fd_wo, &r_ws));
tests/sys/capsicum/linux.cc
405
EXPECT_OK(cap_rights_limit(cap_fd_rw, &r_rws));
tests/sys/capsicum/linux.cc
408
EXPECT_OK(cap_rights_limit(cap_fd_poll, &r_rwspoll));
tests/sys/capsicum/linux.cc
411
EXPECT_OK(cap_rights_limit(cap_fd_not, &r_rwsnotify));
tests/sys/capsicum/linux.cc
421
EXPECT_OK(cap_rights_limit(cap_dfd, &r_rslstat));
tests/sys/capsicum/linux.cc
425
EXPECT_OK(cap_rights_limit(cap_dfd_rs, &r_rs));
tests/sys/capsicum/linux.cc
429
EXPECT_OK(cap_rights_limit(cap_dfd_rsstat, &r_rsstat));
tests/sys/capsicum/linux.cc
433
EXPECT_OK(cap_rights_limit(cap_dfd_rsl, &r_rsl));
tests/sys/capsicum/linux.cc
45
EXPECT_OK(cap_rights_limit(cap_fd_ro, &r_ro));
tests/sys/capsicum/linux.cc
48
EXPECT_OK(cap_rights_limit(cap_fd_wo, &r_wo));
tests/sys/capsicum/linux.cc
51
EXPECT_OK(cap_rights_limit(cap_fd_rw, &r_rw));
tests/sys/capsicum/linux.cc
54
EXPECT_OK(cap_rights_limit(cap_fd_all, &r_rwpoll));
tests/sys/capsicum/linux.cc
540
EXPECT_OK(cap_rights_limit(cap_fd_ro, &r_rs));
tests/sys/capsicum/linux.cc
543
EXPECT_OK(cap_rights_limit(cap_fd_wo, &r_ws));
tests/sys/capsicum/linux.cc
546
EXPECT_OK(cap_rights_limit(cap_fd_rw, &r_rws));
tests/sys/capsicum/linux.cc
549
EXPECT_OK(cap_rights_limit(cap_fd_all, &r_rwsnotify));
tests/sys/capsicum/linux.cc
636
EXPECT_OK(cap_rights_limit(cap_fd, &r_rwlstat));
tests/sys/capsicum/linux.cc
639
EXPECT_OK(cap_rights_limit(cap_fd_setns, &r_rwlstatns));
tests/sys/capsicum/mqueue.cc
49
EXPECT_OK(cap_rights_limit(cap_read_mq, &r_read));
tests/sys/capsicum/mqueue.cc
52
EXPECT_OK(cap_rights_limit(cap_write_mq, &r_write));
tests/sys/capsicum/mqueue.cc
55
EXPECT_OK(cap_rights_limit(cap_poll_mq, &r_poll));
tests/sys/capsicum/openat.cc
313
EXPECT_OK(cap_rights_limit(dir_fd_, &r_rl));
tests/sys/capsicum/openat.cc
314
EXPECT_OK(cap_rights_limit(sub_fd_, &r_rl));
tests/sys/capsicum/openat.cc
53
EXPECT_OK(cap_rights_limit(etc_cap, &r_ro));
tests/sys/capsicum/openat.cc
56
EXPECT_OK(cap_rights_limit(etc_cap_ro, &r_rl));
tests/sys/capsicum/openat.cc
59
EXPECT_OK(cap_rights_limit(etc_cap_base, &r_base));
tests/sys/capsicum/procdesc.cc
952
EXPECT_OK(cap_rights_limit(cap_incapable, &r_ro));
tests/sys/capsicum/procdesc.cc
957
EXPECT_OK(cap_rights_limit(cap_capable, &r_pdall));
tests/sys/capsicum/sctp.cc
29
EXPECT_OK(cap_rights_limit(cap_sock_ro, &r_rw));
tests/sys/capsicum/sctp.cc
32
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/sctp.cc
35
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/sctp.cc
78
EXPECT_OK(cap_rights_limit(cap_sock_wo, &r_wo));
tests/sys/capsicum/sctp.cc
81
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/sctp.cc
84
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/sctp.cc
87
EXPECT_OK(cap_rights_limit(cap_sock_all_nopeel, &r_all_nopeel));
tests/sys/capsicum/select.cc
110
EXPECT_OK(cap_rights_limit(cap_fd[ii].fd, &r_poll));
tests/sys/capsicum/select.cc
119
EXPECT_OK(cap_rights_limit(cap_rw, &r_rw));
tests/sys/capsicum/select.cc
43
EXPECT_OK(cap_rights_limit(cap_fd[ii], &r_poll));
tests/sys/capsicum/select.cc
49
EXPECT_OK(cap_rights_limit(cap_rw, &r_rw));
tests/sys/capsicum/smoketest.c
33
int rc = cap_rights_limit(cap_fd, &r_rws);
tests/sys/capsicum/socket.cc
139
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
142
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/socket.cc
174
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
177
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/socket.cc
255
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
258
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/socket.cc
298
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
301
EXPECT_OK(cap_rights_limit(cap_sock_connect, &r_connect));
tests/sys/capsicum/socket.cc
38
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
41
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/capsicum/socket.cc
62
EXPECT_OK(cap_rights_limit(cap_sock_rw, &r_rw));
tests/sys/capsicum/socket.cc
65
EXPECT_OK(cap_rights_limit(cap_sock_all, &r_all));
tests/sys/file/path_test.c
199
if (cap_rights_limit(truefd, &rights) != 0)
tests/sys/file/path_test.c
239
ATF_REQUIRE(cap_rights_limit(pathdfd, &rights) == 0);
tests/sys/file/path_test.c
248
ATF_REQUIRE(cap_rights_limit(pathdfd, &rights) == 0);
tests/sys/file/path_test.c
260
ATF_REQUIRE(cap_rights_limit(pathfd, &rights) == 0);
tests/sys/file/path_test.c
269
ATF_REQUIRE(cap_rights_limit(pathfd, &rights) == 0);
tests/sys/file/path_test.c
277
ATF_REQUIRE(cap_rights_limit(pathfd, &rights) == 0);
tests/sys/kern/pdwait.c
209
ATF_REQUIRE_EQ_MSG(0, cap_rights_limit(fdp, &rights),
tests/sys/kern/socket_splice.c
313
error = cap_rights_limit(fd, &rights);
tests/sys/kern/socket_splice.c
371
error = cap_rights_limit(left[0],
tests/sys/vfs/lookup_cap_dotdot.c
123
ATF_REQUIRE(cap_rights_limit(dirfd, &rights) >= 0);
tests/sys/vfs/lookup_cap_dotdot.c
146
ATF_REQUIRE(cap_rights_limit(dirfd, &rights) >= 0);
tests/sys/vfs/lookup_cap_dotdot.c
224
ATF_REQUIRE(cap_rights_limit(dirfd, &rights) >= 0);
tools/regression/capsicum/syscalls/cap_fcntls_limit.c
165
CHECK(cap_rights_limit(fd, &rights) == 0);
tools/regression/capsicum/syscalls/cap_fcntls_limit.c
212
CHECK(cap_rights_limit(fd, &rights) == 0);
tools/regression/capsicum/syscalls/cap_ioctls_limit.c
142
CHECK(cap_rights_limit(fd, &rights) == 0);
tools/regression/capsicum/syscalls/cap_ioctls_limit.c
181
CHECK(cap_rights_limit(fd, &rights) == 0);
usr.bin/bsdiff/bspatch/bspatch.c
159
if (cap_rights_limit(fileno(f), &rights_ro) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
160
cap_rights_limit(fileno(cpf), &rights_ro) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
161
cap_rights_limit(fileno(dpf), &rights_ro) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
162
cap_rights_limit(fileno(epf), &rights_ro) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
163
cap_rights_limit(oldfd, &rights_ro) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
164
cap_rights_limit(newfd, &rights_wr) < 0 ||
usr.bin/bsdiff/bspatch/bspatch.c
165
cap_rights_limit(dirfd, &rights_dir) < 0)
usr.sbin/bhyve/pci_virtio_9p.c
297
if (cap_rights_limit(rootfd, &rootcap) != 0)
usr.sbin/traceroute/traceroute.c
973
if (cansandbox && cap_rights_limit(sndsock, &rights) < 0) {
usr.sbin/traceroute/traceroute.c
980
if (cansandbox && cap_rights_limit(s, &rights) < 0) {