diff options
author | Sergey Senozhatsky <sergey.senozhatsky@gmail.com> | 2011-01-13 18:23:10 +0200 |
---|---|---|
committer | Jorge Lucangeli Obes <jorgelo@google.com> | 2015-09-03 14:13:03 -0700 |
commit | 08fa09b44a008edb940752206e9ae851f8d945fb (patch) | |
tree | c2053ed7ae4869a2d391b324ae20de1271abd0e2 | |
parent | 2e4cf44d440261f866d13eb40e6ec1525787b8b2 (diff) | |
download | libcap-08fa09b44a008edb940752206e9ae851f8d945fb.tar.gz |
libcap: introduce CAP_SYSLOG
Since commit 38ef4c2e437d11b5922723504b62824e96761459 syslog
operations require CAP_SYSLOG capability (intoriduced by commit
ce6ada35bdf710d16582cc4869c26722547e6f11), not CAP_SYS_ADMIN.
Patch introduces CAP_SYSLOG capability.
Signed-off-by: Sergey Senozhatsky <sergey.senozhatsky@gmail.com>
-rw-r--r-- | libcap/include/linux/capability.h | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/libcap/include/linux/capability.h b/libcap/include/linux/capability.h index 39e5ff5..4924f2a 100644 --- a/libcap/include/linux/capability.h +++ b/libcap/include/linux/capability.h @@ -355,7 +355,12 @@ struct cpu_vfs_cap_data { #define CAP_MAC_ADMIN 33 -#define CAP_LAST_CAP CAP_MAC_ADMIN + +/* Privileged syslog operations currently require CAP_SYSLOG. + CAP_SYS_ADMIN is not acceptable anymore. */ +#define CAP_SYSLOG 34 + +#define CAP_LAST_CAP CAP_SYSLOG #define cap_valid(x) ((x) >= 0 && (x) <= CAP_LAST_CAP) |