]> git.ipfire.org Git - thirdparty/lxc.git/commitdiff
projects / thirdparty / lxc.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d539a2b)
Add CAP_AUDIT_READ
authorChristian Brauner <christianvanbrauner@gmail.com>
Sun, 27 Sep 2015 10:16:54 +0000 (12:16 +0200)
committerStéphane Graber <stgraber@ubuntu.com>
Mon, 28 Sep 2015 19:47:22 +0000 (15:47 -0400)
CAP_AUDIT_READ (since Linux 3.16)
    Allow reading the audit log via a multicast netlink socket.

Signed-off-by: Christian Brauner <christianvanbrauner@gmail.com>
Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>
src/lxc/conf.c patch | blob | blame | history

diff --git a/src/lxc/conf.c b/src/lxc/conf.c
index 1b71795401f9999aec90ad4a5004ba57b3890d95..666554601a5b469cab3e1e480baafe1d7d9850ff 100644 (file)
--- a/src/lxc/conf.c
+++ b/src/lxc/conf.c
@@ -284,6 +284,9 @@ static struct caps_opt caps_opt[] = {
        { "sys_tty_config",    CAP_SYS_TTY_CONFIG    },
        { "mknod",             CAP_MKNOD             },
        { "lease",             CAP_LEASE             },
+#ifdef CAP_AUDIT_READ
+       { "audit_read",        CAP_AUDIT_READ        },
+#endif
 #ifdef CAP_AUDIT_WRITE
        { "audit_write",       CAP_AUDIT_WRITE       },
 #endif
Mirror of https://github.com/lxc/lxc.git