diff options
author | Sergey Senozhatsky <sergey.senozhatsky@gmail.com> | 2011-01-13 18:23:10 +0200 |
---|---|---|
committer | Andrew G. Morgan <morgan@kernel.org> | 2011-01-18 21:00:55 -0800 |
commit | 684f811b55a6d71d7ee56c58826a4b1fbf4f9bab (patch) | |
tree | c2053ed7ae4869a2d391b324ae20de1271abd0e2 | |
parent | 85748f41a73ea18241a7291a8d4a29e06377cd79 (diff) | |
download | libcap2-684f811b55a6d71d7ee56c58826a4b1fbf4f9bab.tar.gz |
libcap: introduce CAP_SYSLOG
Since commit 38ef4c2e437d11b5922723504b62824e96761459 syslog
operations require CAP_SYSLOG capability (intoriduced by commit
ce6ada35bdf710d16582cc4869c26722547e6f11), not CAP_SYS_ADMIN.
Patch introduces CAP_SYSLOG capability.
Signed-off-by: Sergey Senozhatsky <sergey.senozhatsky@gmail.com>
-rw-r--r-- | libcap/include/linux/capability.h | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/libcap/include/linux/capability.h b/libcap/include/linux/capability.h index 39e5ff5..4924f2a 100644 --- a/libcap/include/linux/capability.h +++ b/libcap/include/linux/capability.h @@ -355,7 +355,12 @@ struct cpu_vfs_cap_data { #define CAP_MAC_ADMIN 33 -#define CAP_LAST_CAP CAP_MAC_ADMIN + +/* Privileged syslog operations currently require CAP_SYSLOG. + CAP_SYS_ADMIN is not acceptable anymore. */ +#define CAP_SYSLOG 34 + +#define CAP_LAST_CAP CAP_SYSLOG #define cap_valid(x) ((x) >= 0 && (x) <= CAP_LAST_CAP) |