Add ability to keep the CAP_NET_BIND_SERVICE capability on Linux

This feature allows us to bind low ports when starting as root and switching UIDs. Based on code by David Goulet. Implement feature 8195
author: Nick Mathewson <nickm@torproject.org> 2015-11-06 13:12:44 -0500
committer: Nick Mathewson <nickm@torproject.org> 2015-12-15 13:10:57 -0500
commit: e8cc839e41adc4975a61fee62abe7f6664fd0c0e (patch)
tree: e1a5bc14b66ae047858e24fe2fc4d8903a5a7a0f /src/or/or.h
parent: af80d472f7d6cb32370176d4dd02b5194adf0f3d (diff)
download: tor-e8cc839e41adc4975a61fee62abe7f6664fd0c0e.tar.gz
tor-e8cc839e41adc4975a61fee62abe7f6664fd0c0e.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/src/or/or.h b/src/or/or.h
index 651d8bed0c..b07130325f 100644
--- a/src/or/or.h
+++ b/src/or/or.h
@@ -4317,6 +4317,9 @@ typedef struct {
   int keygen_passphrase_fd;
   int change_key_passphrase;
   char *master_key_fname;
+
+  /** Autobool: Do we try to retain capabilities if we can? */
+  int KeepCapabilities;
 } or_options_t;
 
 /** Persistent state for an onion router, as saved to disk. */
author	Nick Mathewson <nickm@torproject.org>	2015-11-06 13:12:44 -0500
committer	Nick Mathewson <nickm@torproject.org>	2015-12-15 13:10:57 -0500
commit	e8cc839e41adc4975a61fee62abe7f6664fd0c0e (patch)
tree	e1a5bc14b66ae047858e24fe2fc4d8903a5a7a0f /src/or/or.h
parent	af80d472f7d6cb32370176d4dd02b5194adf0f3d (diff)
download	tor-e8cc839e41adc4975a61fee62abe7f6664fd0c0e.tar.gz tor-e8cc839e41adc4975a61fee62abe7f6664fd0c0e.zip