From 966bff2660a13c82b70a1e1ac4f1a48bb33d7f7e Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Sun, 1 Jun 2014 08:49:33 +0200
Subject: timesyncd: split privilege dropping code out of timesyncd so that we
 can make use of it from other daemons too

This is preparation to make networkd work as unpriviliged user.
---
 src/shared/capability.h | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/shared/capability.h')

diff --git a/src/shared/capability.h b/src/shared/capability.h
index 64f86410ab..3e6d9995f5 100644
--- a/src/shared/capability.h
+++ b/src/shared/capability.h
@@ -32,6 +32,8 @@ int have_effective_cap(int value);
 int capability_bounding_set_drop(uint64_t drop, bool right_now);
 int capability_bounding_set_drop_usermode(uint64_t drop);
 
+int drop_privileges(uid_t uid, gid_t gid, uint64_t keep_capabilites);
+
 DEFINE_TRIVIAL_CLEANUP_FUNC(cap_t, cap_free);
 #define _cleanup_cap_free_ _cleanup_(cap_freep)
 
-- 
cgit v1.2.3-54-g00ecf