Setting Linux Capabilities
Ravi Paluri (QUIC)
quic_rpaluri at quicinc.com
Tue Aug 16 04:49:30 PDT 2022
Hi Team,
We would like to set below capabilities for our process.
* CAP_NET_ADMIN
* CAP_NET_RAW
Do we need to use APIs mentioned in https://linux.die.net/man/3/cap_set_flag and https://linux.die.net/man/3/cap_set_proc to get this functionality?
On Systemd, I see that this can be achieved by writing below lines in a service file.
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_RAW
So, would like to know if there is any thing similar that can be done in procd init scripts?
Thanks,
Ravi
More information about the openwrt-devel
mailing list