#pragma once #include #include #include #include #include #include #define ISOLATED_MAGIC "isolated" // CLI entries int enable_deny(); int disable_deny(); int add_list(int client); int rm_list(int client); void ls_list(int client); // Utility functions bool is_deny_target(int uid, std::string_view process); // Revert void revert_daemon(int pid, int client); void revert_unmount(int pid = -1); extern std::atomic denylist_enabled; enum : int { ENFORCE_DENY, DISABLE_DENY, ADD_LIST, RM_LIST, LS_LIST, DENY_STATUS, }; enum : int { DENY_IS_ENFORCED = DAEMON_LAST + 1, DENY_NOT_ENFORCED, DENYLIST_ITEM_EXIST, DENYLIST_ITEM_NOT_EXIST, DENYLIST_INVALID_PKG, DENY_NO_NS, };