This is the mail archive of the libc-hacker@cygnus.com mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: capget/capset in Linux 2.2 and glibc

To: Andreas Jaeger <aj@arthur.rhein-neckar.de>
Subject: Re: capget/capset in Linux 2.2 and glibc
From: Andrew Morgan <morgan@transmeta.com>
Date: Thu, 04 Mar 1999 21:36:13 -0800
CC: libc-hacker@cygnus.com, Alexander Kjeldaas <astor@guardian.no>
Organization: Transmeta Corporation
References: <u8pv6p8ylw.fsf@arthur.rhein-neckar.de>

I sort of recommend against this until filesystem support for
capabilities is added to the kernel. I believe there will be a bit of a
delta in the kernel API at that time.

In the meantime there is a library that provides the (now defunct)
POSIX.1e interface to process capabilities here. Its license is either
BSD-like or GNU GPL (your choice) so I believe it should be useable by
all:

 ftp://ftp.kernel.org/pub/linux/libs/security/linux-privs/kernel-2.2/

There's also some stuff (including a FAQ here):

 ftp://ftp.guardian.no/pub/free/linux/capabilities/

Cheers

Andrew

Andreas Jaeger wrote:
> 
> Linux 2.2 has now initial capabilities support using the functions
> capget and capset.  The kernel include file is <linux/capability.h>.
> 
> So far there's no glibc support for capabilities.  Shouldn't we add
> this?  Or has something like this done already or decided how to do
> it?
> 
> Andreas
> --
>  Andreas Jaeger   aj@arthur.rhein-neckar.de    jaeger@informatik.uni-kl.de
>   for pgp-key finger ajaeger@aixd1.rhrk.uni-kl.de

References:
- capget/capset in Linux 2.2 and glibc
  - From: Andreas Jaeger <aj@arthur.rhein-neckar.de>

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]