/usr/lib/perl5/Linux/Prctl/Securebits.pm is in liblinux-prctl-perl 1.5.0-1build1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 | package Linux::Prctl::Securebits;
use strict;
use warnings;
use Linux::Prctl;
use Tie::Hash;
use Carp qw(croak);
use vars qw(@ISA);
@ISA = qw(Tie::StdHash);
sub TIEHASH {
my ($class) = @_;
my $self = {};
return bless($self, $class);
}
sub bit {
my ($self, $bit) = @_;
croak("Unknown secbit: $bit") unless $bit =~ /^(keep_caps|noroot|no_setuid_fixup)(_locked)?/;
my ($error, $val) = Linux::Prctl::constant('SECBIT_' . uc($bit));
if ($error) { croak $error; }
return $val
}
sub set_securebits {
shift;
return Linux::Prctl->can('set_securebits')->(@_);
}
sub get_securebits {
shift;
return Linux::Prctl->can('get_securebits')->(@_);
}
sub STORE {
my ($self, $key, $value) = @_;
$key = $self->bit($key);
my $nbits = $self->get_securebits();
$nbits |= $key if $value;
$nbits ^= $key if (($nbits & $key) && !$value);
$self->set_securebits($nbits);
}
sub FETCH {
my ($self, $key) = @_;
$key = $self->bit($key);
return ($self->get_securebits() & $key) ? 1 : 0;
}
1;
|