Merge branch 'linus' into sched/core

Merge reason: update to latest upstream Signed-off-by: Ingo Molnar <mingo@elte.hu>
author: Ingo Molnar <mingo@elte.hu> 2010-04-02 20:02:55 +0200
committer: Ingo Molnar <mingo@elte.hu> 2010-04-02 20:03:08 +0200
commit: c9494727cf293ae2ec66af57547a3e79c724fec2 (patch)
tree: 44ae197b64fa7530ee695a90ad31326dda06f1e1 /security/commoncap.c
parent: 6427462bfa50f50dc6c088c07037264fcc73eca1 (diff)
parent: 42be79e37e264557f12860fa4cc84b4de3685954 (diff)
1 files changed, 7 insertions, 2 deletions
diff --git a/security/commoncap.c b/security/commoncap.c
index f800fdb3de94..61669730da98 100644
--- a/security/commoncap.c
+++ b/security/commoncap.c
@@ -27,6 +27,7 @@
 #include <linux/sched.h>
 #include <linux/prctl.h>
 #include <linux/securebits.h>
+#include <linux/syslog.h>
 
 /*
  * If a non-root user executes a setuid-root binary in
@@ -888,13 +889,17 @@ error:
 /**
  * cap_syslog - Determine whether syslog function is permitted
  * @type: Function requested
+ * @from_file: Whether this request came from an open file (i.e. /proc)
  *
  * Determine whether the current process is permitted to use a particular
  * syslog function, returning 0 if permission is granted, -ve if not.
  */
-int cap_syslog(int type)
+int cap_syslog(int type, bool from_file)
 {
-	if ((type != 3 && type != 10) && !capable(CAP_SYS_ADMIN))
+	if (type != SYSLOG_ACTION_OPEN && from_file)
+		return 0;
+	if ((type != SYSLOG_ACTION_READ_ALL &&
+	     type != SYSLOG_ACTION_SIZE_BUFFER) && !capable(CAP_SYS_ADMIN))
 		return -EPERM;
 	return 0;
 }
author	Ingo Molnar <mingo@elte.hu>	2010-04-02 20:02:55 +0200
committer	Ingo Molnar <mingo@elte.hu>	2010-04-02 20:03:08 +0200
commit	c9494727cf293ae2ec66af57547a3e79c724fec2 (patch)
tree	44ae197b64fa7530ee695a90ad31326dda06f1e1 /security/commoncap.c
parent	6427462bfa50f50dc6c088c07037264fcc73eca1 (diff)
parent	42be79e37e264557f12860fa4cc84b4de3685954 (diff)