diff options
author | Lennart Poettering <lennart@poettering.net> | 2014-06-01 08:49:33 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2014-06-01 08:49:33 +0200 |
commit | 966bff2660a13c82b70a1e1ac4f1a48bb33d7f7e (patch) | |
tree | 46d0b3f2ab28b507665ff70b81ea6c33af88ac16 /src/shared/capability.h | |
parent | 267b3e41df5a2181f2911433539f81de2fa1511a (diff) |
timesyncd: split privilege dropping code out of timesyncd so that we can make use of it from other daemons too
This is preparation to make networkd work as unpriviliged user.
Diffstat (limited to 'src/shared/capability.h')
-rw-r--r-- | src/shared/capability.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/shared/capability.h b/src/shared/capability.h index 64f86410ab..3e6d9995f5 100644 --- a/src/shared/capability.h +++ b/src/shared/capability.h @@ -32,6 +32,8 @@ int have_effective_cap(int value); int capability_bounding_set_drop(uint64_t drop, bool right_now); int capability_bounding_set_drop_usermode(uint64_t drop); +int drop_privileges(uid_t uid, gid_t gid, uint64_t keep_capabilites); + DEFINE_TRIVIAL_CLEANUP_FUNC(cap_t, cap_free); #define _cleanup_cap_free_ _cleanup_(cap_freep) |