This is the mail archive of the
libc-hacker@cygnus.com
mailing list for the glibc project.
Re: capget/capset in Linux 2.2 and glibc
- To: Andreas Jaeger <aj@arthur.rhein-neckar.de>
- Subject: Re: capget/capset in Linux 2.2 and glibc
- From: Andrew Morgan <morgan@transmeta.com>
- Date: Thu, 04 Mar 1999 21:36:13 -0800
- CC: libc-hacker@cygnus.com, Alexander Kjeldaas <astor@guardian.no>
- Organization: Transmeta Corporation
- References: <u8pv6p8ylw.fsf@arthur.rhein-neckar.de>
I sort of recommend against this until filesystem support for
capabilities is added to the kernel. I believe there will be a bit of a
delta in the kernel API at that time.
In the meantime there is a library that provides the (now defunct)
POSIX.1e interface to process capabilities here. Its license is either
BSD-like or GNU GPL (your choice) so I believe it should be useable by
all:
ftp://ftp.kernel.org/pub/linux/libs/security/linux-privs/kernel-2.2/
There's also some stuff (including a FAQ here):
ftp://ftp.guardian.no/pub/free/linux/capabilities/
Cheers
Andrew
Andreas Jaeger wrote:
>
> Linux 2.2 has now initial capabilities support using the functions
> capget and capset. The kernel include file is <linux/capability.h>.
>
> So far there's no glibc support for capabilities. Shouldn't we add
> this? Or has something like this done already or decided how to do
> it?
>
> Andreas
> --
> Andreas Jaeger aj@arthur.rhein-neckar.de jaeger@informatik.uni-kl.de
> for pgp-key finger ajaeger@aixd1.rhrk.uni-kl.de