| /* system.h |
| * Copyright (C) 2017 The Android Open Source Project |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| * |
| * Wrappers for system functionality. |
| */ |
| |
| #ifndef _SYSTEM_H_ |
| #define _SYSTEM_H_ |
| |
| #include <stdbool.h> |
| #include <sys/capability.h> |
| #include <sys/prctl.h> |
| #include <sys/types.h> |
| |
| #ifdef __cplusplus |
| extern "C" { |
| #endif |
| |
| /* Control the ambient capability set. */ |
| #ifndef PR_CAP_AMBIENT |
| #define PR_CAP_AMBIENT 47 |
| #endif |
| |
| #ifndef PR_CAP_AMBIENT_IS_SET |
| #define PR_CAP_AMBIENT_IS_SET 1 |
| #endif |
| |
| #ifndef PR_CAP_AMBIENT_RAISE |
| #define PR_CAP_AMBIENT_RAISE 2 |
| #endif |
| |
| #ifndef PR_CAP_AMBIENT_LOWER |
| #define PR_CAP_AMBIENT_LOWER 3 |
| #endif |
| |
| #ifndef PR_CAP_AMBIENT_CLEAR_ALL |
| #define PR_CAP_AMBIENT_CLEAR_ALL 4 |
| #endif |
| |
| int lock_securebits(uint64_t skip_mask); |
| |
| unsigned int get_last_valid_cap(void); |
| int cap_ambient_supported(void); |
| |
| int config_net_loopback(void); |
| |
| int setup_pipe_end(int fds[2], size_t index); |
| int setup_and_dupe_pipe_end(int fds[2], size_t index, int fd); |
| |
| int write_pid_to_path(pid_t pid, const char *path); |
| int write_proc_file(pid_t pid, const char *content, const char *basename); |
| |
| int setup_mount_destination(const char *source, const char *dest, uid_t uid, |
| uid_t gid, bool bind); |
| |
| #ifdef __cplusplus |
| }; /* extern "C" */ |
| #endif |
| |
| #endif /* _SYSTEM_H_ */ |