Lines Matching refs:caps
95 int caps:1;
123 uint64_t caps;
345 j->caps = capmask;
346 j->flags.caps = 1;
1206 cap_t caps = cap_get_proc();
1210 if (!caps)
1211 die("can't get process caps");
1212 if (cap_clear_flag(caps, CAP_INHERITABLE))
1213 die("can't clear inheritable caps");
1214 if (cap_clear_flag(caps, CAP_EFFECTIVE))
1215 die("can't clear effective caps");
1216 if (cap_clear_flag(caps, CAP_PERMITTED))
1217 die("can't clear permitted caps");
1218 for (i = 0; i < sizeof(j->caps) * 8 && i <= last_valid_cap; ++i) {
1220 if (i != CAP_SETPCAP && !(j->caps & (one << i)))
1223 if (cap_set_flag(caps, CAP_EFFECTIVE, 1, flag, CAP_SET))
1225 if (cap_set_flag(caps, CAP_PERMITTED, 1, flag, CAP_SET))
1227 if (cap_set_flag(caps, CAP_INHERITABLE, 1, flag, CAP_SET))
1230 if (cap_set_proc(caps))
1239 for (i = 0; i < sizeof(j->caps) * 8 && i <= last_valid_cap; ++i) {
1240 if (j->caps & (one << i))
1247 if ((j->caps & (one << CAP_SETPCAP)) == 0) {
1249 if (cap_set_flag(caps, CAP_EFFECTIVE, 1, flag, CAP_CLEAR))
1251 if (cap_set_flag(caps, CAP_PERMITTED, 1, flag, CAP_CLEAR))
1253 if (cap_set_flag(caps, CAP_INHERITABLE, 1, flag, CAP_CLEAR))
1257 if (cap_set_proc(caps))
1260 cap_free(caps);
1317 * If we're dropping caps, get the last valid cap from /proc now,
1321 if (j->flags.caps)
1374 if (j->flags.caps) {
1378 * below will fail. Hang on to root caps across setuid(), then
1395 if (j->flags.caps)
1405 * capget()/capset()/prctl() for dropping caps.
1410 if (j->flags.caps)
1653 if (j->flags.caps)
