libcap: introduce CAP_SYSLOG

Since commit 38ef4c2e437d11b5922723504b62824e96761459 syslog operations require CAP_SYSLOG capability (intoriduced by commit ce6ada35bdf710d16582cc4869c26722547e6f11), not CAP_SYS_ADMIN. Patch introduces CAP_SYSLOG capability. Signed-off-by: Sergey Senozhatsky <sergey.senozhatsky@gmail.com>
author: Sergey Senozhatsky <sergey.senozhatsky@gmail.com> 2011-01-13 18:23:10 +0200
committer: Jorge Lucangeli Obes <jorgelo@google.com> 2015-09-03 14:13:03 -0700
commit: 08fa09b44a008edb940752206e9ae851f8d945fb (patch)
tree: c2053ed7ae4869a2d391b324ae20de1271abd0e2
parent: 2e4cf44d440261f866d13eb40e6ec1525787b8b2 (diff)
download: libcap-08fa09b44a008edb940752206e9ae851f8d945fb.tar.gz
1 files changed, 6 insertions, 1 deletions
diff --git a/libcap/include/linux/capability.h b/libcap/include/linux/capability.h
index 39e5ff5..4924f2a 100644
--- a/libcap/include/linux/capability.h
+++ b/libcap/include/linux/capability.h
@@ -355,7 +355,12 @@ struct cpu_vfs_cap_data {
 
 #define CAP_MAC_ADMIN        33
 
-#define CAP_LAST_CAP         CAP_MAC_ADMIN
+
+/* Privileged syslog operations currently require CAP_SYSLOG.
+   CAP_SYS_ADMIN is not acceptable anymore. */
+#define CAP_SYSLOG           34
+
+#define CAP_LAST_CAP         CAP_SYSLOG
 
 #define cap_valid(x) ((x) >= 0 && (x) <= CAP_LAST_CAP)
author	Sergey Senozhatsky <sergey.senozhatsky@gmail.com>	2011-01-13 18:23:10 +0200
committer	Jorge Lucangeli Obes <jorgelo@google.com>	2015-09-03 14:13:03 -0700
commit	08fa09b44a008edb940752206e9ae851f8d945fb (patch)
tree	c2053ed7ae4869a2d391b324ae20de1271abd0e2
parent	2e4cf44d440261f866d13eb40e6ec1525787b8b2 (diff)
download	libcap-08fa09b44a008edb940752206e9ae851f8d945fb.tar.gz