Robert Swiecki
5ef11f65a4
No need to use '== true'
2017-10-18 15:41:16 +02:00
Robert Swiecki
152d6d68ae
simplify includes, remove unneeded, add needed
2017-10-18 14:46:17 +02:00
robertswiecki
5f3b511e3f
Merge pull request #54 from VCTLabs/compat-3.x-kernel
...
Revert "caps: define CAP_AUDIT_READ if not defined"
2017-10-17 15:40:48 +02:00
Robert Swiecki
4ffec405de
Makefile: add columnt limit to the indent
2017-10-17 15:22:23 +02:00
Ron Lockwood-Childs
5ff0de7454
Revert "caps: define CAP_AUDIT_READ if not defined"
...
Restore compatibility with 3.x kernels by not requiring CAP_AUDIT_READ
if not defined in kernel header file
This reverts commit 7820553cb9
.
Conflicts:
caps.c
contain.h
2017-10-16 14:05:02 -07:00
Robert Swiecki
fe234f4830
move VALSTR_STRUCT to common.h
2017-10-08 23:06:40 +02:00
Robert Swiecki
d0afb19431
allow for indentation of more structures (now with clang-format)
2017-10-08 23:03:02 +02:00
Robert Swiecki
74b43346bd
make indent
2017-10-08 23:00:45 +02:00
Robert Swiecki
414e999787
switch indent to clang-format completely
2017-10-08 22:52:52 +02:00
Robert Swiecki
293a683b14
caps: more comments
2017-10-01 05:49:13 +02:00
Robert Swiecki
1bdd9843df
caps: call prctl(PR_CAP_AMBIENT, PR_CAP_AMBIENT_CLEAR_ALL) early
2017-10-01 05:38:26 +02:00
Robert Swiecki
c71c996143
Allow for running with --disable_newuser started as root
2017-10-01 05:32:07 +02:00
Robert Swiecki
2b797a19fd
mount: allow to use --disable_newuser for root users
2017-10-01 05:16:01 +02:00
Robert Swiecki
8aafd1b41b
Makefile: correct proto dep, plus some comments in caps.c
2017-10-01 00:06:36 +02:00
Robert Swiecki
7820553cb9
caps: define CAP_AUDIT_READ if not defined
2017-09-30 01:04:35 +02:00
Robert Swiecki
a85f5505d2
caps: missing static function declarator
2017-09-30 00:37:06 +02:00
Robert Swiecki
41e9ea52ba
caps: refactor the code to make it readable for the --keep_caps case
2017-09-30 00:36:11 +02:00
Robert Swiecki
d20aa424e0
cap: Don't use -libcap anymore, as it had problems with newer capabilities
2017-09-30 00:05:41 +02:00
Robert Swiecki
280feb1a1a
caps: dont' throw warning if CAP_AUDIT_READ is not understood by libcap during reading
2017-09-29 21:31:22 +02:00
Robert Swiecki
374f6cc4f0
config: Initial work on converting config.c to c++ protobuf lib
...
config: Initial work on converting config.c to c++ protobuf lib #2
config: Initial work on converting config.c to c++ protobuf lib #3
config: Initial work on converting config.c to c++ protobuf lib #4
config: Initial work on converting config.c to c++ protobuf lib #5
config: Initial work on converting config.c to c++ protobuf lib #6
2017-09-14 21:17:38 +02:00
Robert Swiecki
049fffb14f
caps: Bypass for systems which kernel defines CAP_AUDIT_READ but libcap doesn't understand this
2017-07-18 23:00:04 +02:00
Robert Swiecki
7153d489fd
caps: dropping caps from the bounding set
2017-07-06 14:55:27 +02:00
Robert Swiecki
074582782c
caps: shorter debug messages
2017-07-06 11:37:41 +02:00
Robert Swiecki
c9e95e7be2
make indent
2017-07-06 11:25:46 +02:00
Robert Swiecki
7d53f4ad1e
caps: simplify cap getting/setting
2017-07-06 02:21:08 +02:00
Robert Swiecki
5ed3c033ed
caps: more debugging
2017-07-05 17:34:56 +02:00
Robert Swiecki
39ce9d22a7
caps: just local caps
2017-07-05 17:29:57 +02:00
Robert Swiecki
54a522326f
caps: simplify capability operations
2017-07-05 15:57:07 +02:00
Robert Swiecki
df0119a5b0
caps: CAP_AUDIT_READ is not defined with Ubuntu 14
2017-07-05 14:19:51 +02:00
Robert Swiecki
7ba602a6ed
caps: move capability-setting code to caps.*
2017-07-05 13:03:14 +02:00