diff options
author | Stephen Smalley <sds@tycho.nsa.gov> | 2008-02-07 17:21:04 +0100 |
---|---|---|
committer | James Morris <jmorris@namei.org> | 2008-02-11 10:30:02 +0100 |
commit | b68e418c445e8a468634d0a7ca2fb63bbaa74028 (patch) | |
tree | e49b4a94ef28a9288ed6735a994387205b7cc5bd /security/selinux/include/av_permissions.h | |
parent | Linux 2.6.25-rc1 (diff) | |
download | linux-b68e418c445e8a468634d0a7ca2fb63bbaa74028.tar.xz linux-b68e418c445e8a468634d0a7ca2fb63bbaa74028.zip |
selinux: support 64-bit capabilities
Fix SELinux to handle 64-bit capabilities correctly, and to catch
future extensions of capabilities beyond 64 bits to ensure that SELinux
is properly updated.
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/include/av_permissions.h')
-rw-r--r-- | security/selinux/include/av_permissions.h | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/security/selinux/include/av_permissions.h b/security/selinux/include/av_permissions.h index 84c9abc80978..75b41311ab86 100644 --- a/security/selinux/include/av_permissions.h +++ b/security/selinux/include/av_permissions.h @@ -533,6 +533,9 @@ #define CAPABILITY__LEASE 0x10000000UL #define CAPABILITY__AUDIT_WRITE 0x20000000UL #define CAPABILITY__AUDIT_CONTROL 0x40000000UL +#define CAPABILITY__SETFCAP 0x80000000UL +#define CAPABILITY2__MAC_OVERRIDE 0x00000001UL +#define CAPABILITY2__MAC_ADMIN 0x00000002UL #define NETLINK_ROUTE_SOCKET__IOCTL 0x00000001UL #define NETLINK_ROUTE_SOCKET__READ 0x00000002UL #define NETLINK_ROUTE_SOCKET__WRITE 0x00000004UL |