On Fri, 22 Jul 2016, Jafar Al-Gharaibeh wrote:
If do create a patch to drop this as a config/compile for corner cases like
the situation I have, would it be useful to upstream?
Sure.
I was going to write that you can just add a 'null' privs module, but
seems I already allowed for that in the existing code. If the zprivs
struct passed to zprivs_init has null group, user and caps, then it
should just install a null privilege handler.
So, just arrange for that to happen. Or else, make it so zprivs_init
(NULL) installs the null handler (rather than exit) and arrange for that
somehow.
Or perhaps better, as it'd be nice to still support dropping
capabilities generally, modify it so zprivs_init can be told to not do
any user/uid lookups but still try do its caps stuff.
regards,
--
Paul Jakma | [email protected] | @pjakma | Key ID: 0xD86BF79464A2FF6A
Fortune:
"An organization dries up if you don't challenge it with growth."
-- Mark Shepherd, former President and CEO of Texas Instruments
_______________________________________________
Quagga-dev mailing list
[email protected]
https://lists.quagga.net/mailman/listinfo/quagga-dev
