[libvirt] [PATCH 12/15] util: drop capabilities immediately after changing uid/gid of child

Eric Blake eblake at redhat.com
Fri Feb 8 18:53:37 UTC 2013


On 02/07/2013 02:37 PM, Laine Stump wrote:
> This is an interim measure to make sure everything still works in this
> order. The next step will be to perform capabilities drop and
> setuid/gid as a single operation (which is the only way to keep any
> capabilities when switching to a non-root uid).
> ---
>  src/util/vircommand.c | 12 ++++++------
>  1 file changed, 6 insertions(+), 6 deletions(-)

ACK.

-- 
Eric Blake   eblake redhat com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 621 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20130208/ded0d3d5/attachment-0001.sig>


More information about the libvir-list mailing list