Merge branch 'origin' into devel-stable

Conflicts: arch/arm/mach-mx2/devices.c arch/arm/mach-mx2/devices.h sound/soc/pxa/pxa-ssp.c
author: Russell King <rmk+kernel@arm.linux.org.uk> 2010-03-08 20:21:04 +0000
committer: Russell King <rmk+kernel@arm.linux.org.uk> 2010-03-08 20:21:04 +0000
commit: 988addf82e4c03739375279de73929580a2d4a6a (patch)
tree: 989ae1cd4e264bbad80c65f04480486246e7b9f3 /security/commoncap.c
parent: 004c1c7096659d352b83047a7593e91d8a30e3c5 (diff)
parent: 25cf84cf377c0aae5dbcf937ea89bc7893db5176 (diff)
1 files changed, 7 insertions, 2 deletions
diff --git a/security/commoncap.c b/security/commoncap.c
index f800fdb3de9..61669730da9 100644
--- a/security/commoncap.c
+++ b/security/commoncap.c
@@ -27,6 +27,7 @@
 #include <linux/sched.h>
 #include <linux/prctl.h>
 #include <linux/securebits.h>
+#include <linux/syslog.h>
 
 /*
  * If a non-root user executes a setuid-root binary in
@@ -888,13 +889,17 @@ error:
 /**
  * cap_syslog - Determine whether syslog function is permitted
  * @type: Function requested
+ * @from_file: Whether this request came from an open file (i.e. /proc)
  *
  * Determine whether the current process is permitted to use a particular
  * syslog function, returning 0 if permission is granted, -ve if not.
  */
-int cap_syslog(int type)
+int cap_syslog(int type, bool from_file)
 {
-	if ((type != 3 && type != 10) && !capable(CAP_SYS_ADMIN))
+	if (type != SYSLOG_ACTION_OPEN && from_file)
+		return 0;
+	if ((type != SYSLOG_ACTION_READ_ALL &&
+	     type != SYSLOG_ACTION_SIZE_BUFFER) && !capable(CAP_SYS_ADMIN))
 		return -EPERM;
 	return 0;
 }
author	Russell King <rmk+kernel@arm.linux.org.uk>	2010-03-08 20:21:04 +0000
committer	Russell King <rmk+kernel@arm.linux.org.uk>	2010-03-08 20:21:04 +0000
commit	988addf82e4c03739375279de73929580a2d4a6a (patch)
tree	989ae1cd4e264bbad80c65f04480486246e7b9f3 /security/commoncap.c
parent	004c1c7096659d352b83047a7593e91d8a30e3c5 (diff)
parent	25cf84cf377c0aae5dbcf937ea89bc7893db5176 (diff)