Displaying 2 results from an estimated 2 matches for "capabilities_h".
2008 Nov 21
2
[PATCH] drop root privileges on solaris, request for testing
...bilities-posix.c \
+ capabilities-solaris.c \
child-process.c \
dict-process.c \
dup2-array.c \
diff -r 8f41c9f3f392 src/master/capabilities.h
--- a/src/master/capabilities.h Wed Nov 19 16:11:01 2008 +0200
+++ b/src/master/capabilities.h Wed Nov 19 14:18:38 2008 +0000
@@ -1,7 +1,7 @@
#ifndef CAPABILITIES_H
#define CAPABILITIES_H
-#if defined(HAVE_LIBCAP)
+#if defined(HAVE_LIBCAP) || defined(HAVE_SETPPRIV)
void drop_capabilities(void);
diff -r 8f41c9f3f392 src/master/capabilities-solaris.c
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/src/master/capabilities-solaris.c Wed Nov 19 14:18:39...
2011 Jul 19
4
[PATCH v1 0/2] Support dropping of capabilities from early userspace.
This patchset applies to klibc mainline. As is it will probably collide
with Maximilian's recent patch to rename run-init to switch_root posted
last week.
To boot an untrusted environment with certain capabilities locked out,
we'd like to be able to drop the capabilities up front from early
userspace, before we actually transition onto the root volume.
This patchset implements this by