[DAEMON-168] [daemon][jsvc] Handling of capabilities should use libcap - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.0.2
Fix Version/s: 1.0.3
Component/s: Jsvc
Labels:
None
Environment:

Debian Unstable

Description

Hi,

[For full story, please see here : http://bugs.debian.org/412690]

As 1.0.2 release, jsvc component use a syscall to handle capabilities settings.
Here is an example in src/native/unix/native/jsvc-unix.c:
if (syscall(__NR_capset, &caphead, &cap) < 0) {

It's not recommended usage of capabilities since ABI/API can change at each kernel release.
And in fact, it's already changed and kernel handle some backward compat layer like described here :
http://marc.info/?l=linux-kernel&m=120883245227970&w=2

For now, I'm forced to patch jsvc to force usage of the backward compatibility layer.
(see attached patch)

Cheers,
–
Damien Raude-Morvan

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

old_capabilities.diff
28/Jul/10 17:33
1.0 kB
Damien Raude-Morvan

Activity

People

Assignee:: Unassigned

Reporter:: Damien Raude-Morvan

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 28/Jul/10 17:32

Updated:: 02/Aug/10 19:53

Resolved:: 29/Jul/10 17:34