Merge release-20190806.1-218-g0b02c3d (automated)

author: gVisor bot <gvisor-bot@google.com> 2019-10-01 18:53:55 +0000
committer: gVisor bot <gvisor-bot@google.com> 2019-10-01 18:53:55 +0000
commit: 211f6a505383f2467aef29bd3204a8260a1db2e6 (patch)
tree: 97adc4ecfe3322fc17c88096a294146588a44db4 /runsc/specutils
parent: a4451bf8f04dee416c0e0424d5912645e58203e9 (diff)
parent: 0b02c3d5e5bae87f5cdbf4ae20dad8344bef32c2 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/runsc/specutils/specutils.go b/runsc/specutils/specutils.go
index cb9e58dfb..591abe458 100644
--- a/runsc/specutils/specutils.go
+++ b/runsc/specutils/specutils.go
@@ -31,6 +31,7 @@ import (
 	"github.com/cenkalti/backoff"
 	specs "github.com/opencontainers/runtime-spec/specs-go"
 	"gvisor.dev/gvisor/pkg/abi/linux"
+	"gvisor.dev/gvisor/pkg/bits"
 	"gvisor.dev/gvisor/pkg/log"
 	"gvisor.dev/gvisor/pkg/sentry/kernel/auth"
 )
@@ -241,6 +242,15 @@ func AllCapabilities() *specs.LinuxCapabilities {
 	}
 }
 
+// AllCapabilitiesUint64 returns a bitmask containing all capabilities set.
+func AllCapabilitiesUint64() uint64 {
+	var rv uint64
+	for _, cap := range capFromName {
+		rv |= bits.MaskOf64(int(cap))
+	}
+	return rv
+}
+
 var capFromName = map[string]linux.Capability{
 	"CAP_CHOWN":            linux.CAP_CHOWN,
 	"CAP_DAC_OVERRIDE":     linux.CAP_DAC_OVERRIDE,
author	gVisor bot <gvisor-bot@google.com>	2019-10-01 18:53:55 +0000
committer	gVisor bot <gvisor-bot@google.com>	2019-10-01 18:53:55 +0000
commit	211f6a505383f2467aef29bd3204a8260a1db2e6 (patch)
tree	97adc4ecfe3322fc17c88096a294146588a44db4 /runsc/specutils
parent	a4451bf8f04dee416c0e0424d5912645e58203e9 (diff)
parent	0b02c3d5e5bae87f5cdbf4ae20dad8344bef32c2 (diff)