timesyncd: split privilege dropping code out of timesyncd so that we can make use of it from other daemons too

This is preparation to make networkd work as unpriviliged user.
author: Lennart Poettering <lennart@poettering.net> 2014-06-01 08:49:33 +0200
committer: Lennart Poettering <lennart@poettering.net> 2014-06-01 08:49:33 +0200
commit: 966bff2660a13c82b70a1e1ac4f1a48bb33d7f7e (patch)
tree: 46d0b3f2ab28b507665ff70b81ea6c33af88ac16 /src/shared/capability.h
parent: 267b3e41df5a2181f2911433539f81de2fa1511a (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/src/shared/capability.h b/src/shared/capability.h
index 64f86410ab..3e6d9995f5 100644
--- a/src/shared/capability.h
+++ b/src/shared/capability.h
@@ -32,6 +32,8 @@ int have_effective_cap(int value);
 int capability_bounding_set_drop(uint64_t drop, bool right_now);
 int capability_bounding_set_drop_usermode(uint64_t drop);
 
+int drop_privileges(uid_t uid, gid_t gid, uint64_t keep_capabilites);
+
 DEFINE_TRIVIAL_CLEANUP_FUNC(cap_t, cap_free);
 #define _cleanup_cap_free_ _cleanup_(cap_freep)
author	Lennart Poettering <lennart@poettering.net>	2014-06-01 08:49:33 +0200
committer	Lennart Poettering <lennart@poettering.net>	2014-06-01 08:49:33 +0200
commit	966bff2660a13c82b70a1e1ac4f1a48bb33d7f7e (patch)
tree	46d0b3f2ab28b507665ff70b81ea6c33af88ac16 /src/shared/capability.h
parent	267b3e41df5a2181f2911433539f81de2fa1511a (diff)