aboutsummaryrefslogtreecommitdiffstats
path: root/src/charon/processing/thread_pool.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/charon/processing/thread_pool.c')
-rw-r--r--src/charon/processing/thread_pool.c5
1 files changed, 4 insertions, 1 deletions
diff --git a/src/charon/processing/thread_pool.c b/src/charon/processing/thread_pool.c
index effa30a2d..e78e378ac 100644
--- a/src/charon/processing/thread_pool.c
+++ b/src/charon/processing/thread_pool.c
@@ -57,7 +57,7 @@ struct private_thread_pool_t {
* Array of thread ids.
*/
pthread_t *threads;
-} ;
+};
/**
* Implementation of private_thread_pool_t.process_jobs.
@@ -73,6 +73,9 @@ static void process_jobs(private_thread_pool_t *this)
DBG1(DBG_JOB, "worker thread running, thread_ID: %06u",
(int)pthread_self());
+ /* drop threads capabilities, except CAP_NET_ADMIN */
+ charon->drop_capabilities(charon, TRUE, FALSE);
+
while (TRUE)
{
/* TODO: should be atomic, but is not mission critical */
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-19 23:03:18 +0000