Main index | Section 3 | Options |
#include <capsicum_helpers.h>
The caph_enter_casper is equivalent to the caph_enter it returns success when the system is built without Casper support.
The capsicum are a set of a inline functions which simplify modifying programs to use Capsicum. The goal is to reduce duplicated code patterns. The capsicum are part of libcapsicum but there is no need to link to the library.
caph_limit_stream() restricts capabilities on fd to only those needed by POSIX stream objects (that is, FILEs).
These flags can be provided:
CAPH_IGNORE_EBADF | |
Do not return an error if file descriptor is invalid. | |
CAPH_READ | Set CAP_READ on limited descriptor. |
CAPH_WRITE | Set CAP_WRITE on limited descriptor. |
caph_limit_stdin(), caph_limit_stderr() and caph_limit_stdout() limit standard descriptors using the caph_limit_stream function.
caph_limit_stdio() limits stdin, stderr and stdout.
caph_stream_rights may be used to initialize rights with the same rights that a stream would be limited to, as if caph_limit_stream() had been invoked using the same flags.
caph_cache_tzdata() precaches all timezone data needed to use libc local time functions.
caph_cache_catpages() caches Native Language Support (NLS) data. NLS data is used for localized error printing by strerror(3) and err(3), among others.
CAPSICUM_HELPERS (3) | January 2, 2020 |
Main index | Section 3 | Options |
Please direct any comments about this manual page service to Ben Bullock. Privacy policy.
“ | The wonderful thing about standards is that there are so many of them to choose from. | ” |
— Grace Murray Hopper |