Crate capctl

source ·
Expand description

§capctl

A library for manipulating Linux capabilities and making prctl() calls.

§Potential Pitfalls

§Handling of capabilities not supported by the kernel

When a binary using this library is running on an older kernel that does not support a few newly-added capabilities, here is how this library will handle them:

§Handling of newly-added capabilities

Conversely, when a binary using this library is running on a newer kernel that has added one or more new capabilities, issues can arise. Here is how this library will handle those capabilities:

As a result, if you are trying to clear the ambient and/or bounding capability sets, you must call the clear() or clear_unknown() function for whichever set you want to clear.

Re-exports§

Modules§

  • Interfaces to Linux capabilities.
  • Interfaces to prctl() commands that don’t deal with capabilities.

Macros§

  • A helper macro to statically construct a CapSet from a list of capabilities.

Structs§

  • Represents an OS error encountered when performing an operation.

Type Aliases§