Summary: | gui-apps/swaylock-1.7.2 refuses to work with USE=" filecaps -pam" | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Bruno <bonbons> |
Component: | Current packages | Assignee: | Matthew Thode ( prometheanfire ) <prometheanfire> |
Status: | UNCONFIRMED --- | ||
Severity: | normal | CC: | jstein, speedjack95 |
Priority: | Normal | Keywords: | PATCH |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | Patch to make swaylock with with file capabilities |
Description
Bruno
2024-01-07 18:56:34 UTC
Created attachment 881655 [details, diff]
Patch to make swaylock with with file capabilities
This patch uses direct syscall to check/clear capabilities and verifies ability to read /etc/shadow rather than just looking at uid.
An alternative would be linking to libcap or libcap-ng and using cap_set_proc/cap_get_proc instead of the syscalls and thus being less Linux-specific.
|