Crate capctl

Source
Expand description

§capctl

A library for manipulating Linux capabilities and making prctl() calls.

§Potential Pitfalls

§Handling of capabilities not supported by the kernel

When a binary using this library is running on an older kernel that does not support a few newly-added capabilities, here is how this library will handle them:

§Handling of newly-added capabilities

Conversely, when a binary using this library is running on a newer kernel that has added one or more new capabilities, issues can arise. Here is how this library will handle those capabilities:

As a result, if you are trying to clear the ambient and/or bounding capability sets, you must call the clear() or clear_unknown() function for whichever set you want to clear.

Re-exports§

pub use caps::*;
pub use prctl::*;

Modules§

caps
Interfaces to Linux capabilities.
prctl
Interfaces to prctl() commands that don’t deal with capabilities.

Macros§

capset
A helper macro to statically construct a CapSet from a list of capabilities.

Structs§

Error
Represents an OS error encountered when performing an operation.

Type Aliases§

Result