Skip to content
Snippets Groups Projects
Commit 8e553a41 authored by Nick Kralevich's avatar Nick Kralevich
Browse files

runas: don't allow capabilities other than setuid/setgid 

Add a compile time assertion that capabilities other than setuid
and setgid are never granted to run-as.

This is a compile time assertion only. No new capabilities are granted
or removed.

Change-Id: Ie86d651b539cdfb6f3eaafef0d5d3b716610a220
parent 21186a1f
No related branches found
No related tags found
Show whitespace changes
Inline Side-by-side
Showing
with 8 additions and 0 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment