diff options
| author | Kees Cook <kees.cook@canonical.com> | 2010-02-03 18:37:13 -0500 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2010-02-03 22:20:41 -0500 |
| commit | d78ca3cd733d8a2c3dcd88471beb1a15d973eed8 (patch) | |
| tree | a27ccf86f5f7df3cc987d0203ed0bff2db46db57 /security/commoncap.c | |
| parent | 002345925e6c45861f60db6f4fc6236713fd8847 (diff) | |
syslog: use defined constants instead of raw numbers
Right now the syslog "type" action are just raw numbers which makes
the source difficult to follow. This patch replaces the raw numbers
with defined constants for some level of sanity.
Signed-off-by: Kees Cook <kees.cook@canonical.com>
Acked-by: John Johansen <john.johansen@canonical.com>
Acked-by: Serge Hallyn <serue@us.ibm.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/commoncap.c')
| -rw-r--r-- | security/commoncap.c | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/security/commoncap.c b/security/commoncap.c index 677fad9d5cba..cf01b2eebb60 100644 --- a/security/commoncap.c +++ b/security/commoncap.c | |||
| @@ -897,9 +897,10 @@ error: | |||
| 897 | int cap_syslog(int type, bool from_file) | 897 | int cap_syslog(int type, bool from_file) |
| 898 | { | 898 | { |
| 899 | /* /proc/kmsg can open be opened by CAP_SYS_ADMIN */ | 899 | /* /proc/kmsg can open be opened by CAP_SYS_ADMIN */ |
| 900 | if (type != 1 && from_file) | 900 | if (type != SYSLOG_ACTION_OPEN && from_file) |
| 901 | return 0; | 901 | return 0; |
| 902 | if ((type != 3 && type != 10) && !capable(CAP_SYS_ADMIN)) | 902 | if ((type != SYSLOG_ACTION_READ_ALL && |
| 903 | type != SYSLOG_ACTION_SIZE_BUFFER) && !capable(CAP_SYS_ADMIN)) | ||
| 903 | return -EPERM; | 904 | return -EPERM; |
| 904 | return 0; | 905 | return 0; |
| 905 | } | 906 | } |