[PATCH] SElinux interface for reporting size of printk buffer

From: Olaf Dabrunz <od@suse.de> Add the necessary hooks so that a SELinux-enabled kernel will allow the new "report the size of the printk buffer" query to work.

[PATCH] SElinux interface for reporting size of printk buffer
From: Olaf Dabrunz <od@suse.de> Add the necessary hooks so that a SELinux-enabled kernel will allow the new "report the size of the printk buffer" query to work.
19e12876 · Andrew Morton · Linus Torvalds · 110eecfb · 19e12876 · 19e12876
Commit 19e12876 authored May 10, 2004 by Andrew Morton Committed by Linus Torvalds May 10, 2004
Show whitespace changes
Inline Side-by-side

Showing with 3 additions and 2 deletions

security/commoncap.c security/commoncap.c +1 -1

security/dummy.c security/dummy.c +1 -1

security/selinux/hooks.c security/selinux/hooks.c +1 -0

No files found.
--- a/security/commoncap.c
+++ b/security/commoncap.c
@@ -289,7 +289,7 @@ void cap_task_reparent_to_init (struct task_struct *p)
 int cap_syslog (int type)
 {
-	if ((type != 3) && !capable(CAP_SYS_ADMIN))
+	if ((type != 3 && type != 10) && !capable(CAP_SYS_ADMIN))
 		return -EPERM;
 	return 0;
 }

--- a/security/dummy.c
+++ b/security/dummy.c
@@ -99,7 +99,7 @@ static int dummy_quota_on (struct file *f)
 static int dummy_syslog (int type)
 {
-	if ((type != 3) && current->euid)
+	if ((type != 3 && type != 10) && current->euid)
 		return -EPERM;
 	return 0;
 }

--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -1476,6 +1476,7 @@ static int selinux_syslog(int type)
 	switch (type) {
 		case 3:         /* Read last kernel messages */
+		case 10:        /* Return size of the log buffer */
 			rc = task_has_system(current, SYSTEM__SYSLOG_READ);
 			break;
 		case 6:         /* Disable logging to console */