tr1pd 0.3.1

tamper resistant audit log
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40

use caps::{self, CapSet, Capability};

mod errors {
    use caps;

    error_chain! {
        foreign_links {
            Caps(caps::errors::Error);
        }
    }
}
pub use self::errors::{Result, Error, ErrorKind};


#[inline]
pub fn log_permitted_caps() -> Result<()> {
    let cur = caps::read(None, CapSet::Permitted)?;
    debug!("caps: permitted caps: {:?}.", cur);
    Ok(())
}

#[inline]
pub fn can_chroot() -> Result<bool> {
    log_permitted_caps()?;

    let perm_chroot = caps::has_cap(None, CapSet::Permitted, Capability::CAP_SYS_CHROOT)?;
    info!("caps: can chroot: {:?}", perm_chroot);

    Ok(perm_chroot)
}

#[inline]
pub fn drop() -> Result<()> {
    caps::clear(None, CapSet::Permitted)?;
    info!("caps: permitted caps cleared");

    log_permitted_caps()?;

    Ok(())
}