capng_apply_caps_fd - Man Page

write file-based capabilities to extended attributes

Synopsis

#include <cap-ng.h>

int capng_apply_caps_fd(int fd);

Description

This function will write the file based capabilities to the extended attributes of the file that the descriptor was opened against. The bounding set is not included in file based capabilities operations. Note that this function will only work if compiled on a kernel that supports file based capabilities such as 2.6.2 6 and later.

Return Value

This returns 0 on success, -1 if something besides a regular file is passed, and -2 if a non-root namespace id is being used for rootid.

See Also

capng_get_caps_fd(3), capabilities(7)

Author

Steve Grubb

Info

Sept 2020 Red Hat Libcap-ng API