svn commit: r258153 - head/sys/sys
Pawel Jakub Dawidek
pjd at FreeBSD.org
Thu Nov 14 23:18:33 UTC 2013
Author: pjd
Date: Thu Nov 14 23:18:32 2013
New Revision: 258153
URL: http://svnweb.freebsd.org/changeset/base/258153
Log:
The CAP_LINKAT, CAP_MKDIRAT, CAP_MKFIFOAT, CAP_MKNODAT, CAP_RENAMEAT,
CAP_SYMLINKAT and CAP_UNLINKAT capability rights make no sense without
the CAP_LOOKUP right, so include this rights.
Sponsored by: The FreeBSD Foundation
MFC after: 3 days
Modified:
head/sys/sys/capability.h
Modified: head/sys/sys/capability.h
==============================================================================
--- head/sys/sys/capability.h Thu Nov 14 23:14:25 2013 (r258152)
+++ head/sys/sys/capability.h Thu Nov 14 23:18:32 2013 (r258153)
@@ -151,22 +151,22 @@
/* Allows for futimes(2) and futimesat(2). */
#define CAP_FUTIMESAT (CAP_FUTIMES | CAP_LOOKUP)
/* Allows for linkat(2) and renameat(2) (destination directory descriptor). */
-#define CAP_LINKAT CAPRIGHT(0, 0x0000000000400000ULL)
+#define CAP_LINKAT (CAP_LOOKUP | 0x0000000000400000ULL)
/* Allows for mkdirat(2). */
-#define CAP_MKDIRAT CAPRIGHT(0, 0x0000000000800000ULL)
+#define CAP_MKDIRAT (CAP_LOOKUP | 0x0000000000800000ULL)
/* Allows for mkfifoat(2). */
-#define CAP_MKFIFOAT CAPRIGHT(0, 0x0000000001000000ULL)
+#define CAP_MKFIFOAT (CAP_LOOKUP | 0x0000000001000000ULL)
/* Allows for mknodat(2). */
-#define CAP_MKNODAT CAPRIGHT(0, 0x0000000002000000ULL)
+#define CAP_MKNODAT (CAP_LOOKUP | 0x0000000002000000ULL)
/* Allows for renameat(2). */
-#define CAP_RENAMEAT CAPRIGHT(0, 0x0000000004000000ULL)
+#define CAP_RENAMEAT (CAP_LOOKUP | 0x0000000004000000ULL)
/* Allows for symlinkat(2). */
-#define CAP_SYMLINKAT CAPRIGHT(0, 0x0000000008000000ULL)
+#define CAP_SYMLINKAT (CAP_LOOKUP | 0x0000000008000000ULL)
/*
* Allows for unlinkat(2) and renameat(2) if destination object exists and
* will be removed.
*/
-#define CAP_UNLINKAT CAPRIGHT(0, 0x0000000010000000ULL)
+#define CAP_UNLINKAT (CAP_LOOKUP | 0x0000000010000000ULL)
/* Extended attributes. */
/* Allows for extattr_delete_fd(2). */
More information about the svn-src-head
mailing list