DWS/chrony
1
0
Fork 0
mirror of https://gitlab.com/chrony/chrony.git synced 2025-12-04 16:05:07 -05:00
Code Issues Packages Projects Releases Wiki Activity

sys: keep cap_net_bind_service capability

Browse Source 
This will be needed to allow opening of NTP server socket after root
privileges are dropped.
This commit is contained in:
Miroslav Lichvar
2015-01-06 11:17:47 +01:00
parent 6d1dda0fad
commit 40bbe2539b
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
sys_linux.c
View File

@@ -397,7 +397,7 @@ SYS_Linux_DropRoot(char *user)
LOG_FATAL(LOGF_SysLinux, "setuid(%d) failed", pw->pw_uid); LOG_FATAL(LOGF_SysLinux, "setuid(%d) failed", pw->pw_uid);
} }
if ((cap = cap_from_text("cap_sys_time=ep")) == NULL) { if ((cap = cap_from_text("cap_net_bind_service,cap_sys_time=ep")) == NULL) {
LOG_FATAL(LOGF_SysLinux, "cap_from_text() failed"); LOG_FATAL(LOGF_SysLinux, "cap_from_text() failed");
} }