summaryrefslogtreecommitdiff
path: root/src/basic/missing_securebits.h
diff options
context:
space:
mode:
authorYu Watanabe <watanabe.yu+github@gmail.com>2018-12-04 07:49:11 +0100
committerYu Watanabe <watanabe.yu+github@gmail.com>2018-12-04 07:49:24 +0100
commit3843e8260c6df6bc00794cecfe5491eb28685da4 (patch)
tree900fb129cc1809ae70e726a9c15e46c01a327aed /src/basic/missing_securebits.h
parentb9683baffe93e76ef11299e6095441060ea7e1c5 (diff)
downloadsystemd-3843e8260c6df6bc00794cecfe5491eb28685da4.tar.gz
systemd-3843e8260c6df6bc00794cecfe5491eb28685da4.tar.bz2
systemd-3843e8260c6df6bc00794cecfe5491eb28685da4.zip
missing: rename securebits.h to missing_securebits.h
Diffstat (limited to 'src/basic/missing_securebits.h')
-rw-r--r--src/basic/missing_securebits.h17
1 files changed, 17 insertions, 0 deletions
diff --git a/src/basic/missing_securebits.h b/src/basic/missing_securebits.h
new file mode 100644
index 0000000000..40d6ec9d71
--- /dev/null
+++ b/src/basic/missing_securebits.h
@@ -0,0 +1,17 @@
+#pragma once
+
+#include <linux/securebits.h>
+
+/* 746bf6d64275be0c65b0631d8a72b16f1454cfa1 (4.3) */
+#ifndef SECURE_NO_CAP_AMBIENT_RAISE
+#define SECURE_NO_CAP_AMBIENT_RAISE 6
+#define SECURE_NO_CAP_AMBIENT_RAISE_LOCKED 7 /* make bit-6 immutable */
+#define SECBIT_NO_CAP_AMBIENT_RAISE (issecure_mask(SECURE_NO_CAP_AMBIENT_RAISE))
+#define SECBIT_NO_CAP_AMBIENT_RAISE_LOCKED (issecure_mask(SECURE_NO_CAP_AMBIENT_RAISE_LOCKED))
+
+#undef SECURE_ALL_BITS
+#define SECURE_ALL_BITS (issecure_mask(SECURE_NOROOT) | \
+ issecure_mask(SECURE_NO_SETUID_FIXUP) | \
+ issecure_mask(SECURE_KEEP_CAPS) | \
+ issecure_mask(SECURE_NO_CAP_AMBIENT_RAISE))
+#endif
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-14 05:49:30 +0000