Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux-2.6 into for-rmk

author: Ben Dooks <ben-linux@fluff.org> 2008-07-15 20:19:14 +0100
committer: Ben Dooks <ben-linux@fluff.org> 2008-07-15 20:19:14 +0100
commit: 0c17e4ceedd35c78b1c7413dbd16279a350be6bc (patch)
tree: 313b3b9ca04727f3704464e01d8dd97da1dd534b /kernel/capability.c
parent: 19c1d6a34abf73d0baf8e325d018c920fa78dddc (diff)
parent: b9d2252c1e44fa83a4e65fdc9eb93db6297c55af (diff)
1 files changed, 21 insertions, 0 deletions
diff --git a/kernel/capability.c b/kernel/capability.c
index cfbe4429948..901e0fdc3ff 100644
--- a/kernel/capability.c
+++ b/kernel/capability.c
@@ -121,6 +121,27 @@ static int cap_validate_magic(cap_user_header_t header, unsigned *tocopy)
  * uninteresting and/or not to be changed.
  */
 
+/*
+ * Atomically modify the effective capabilities returning the original
+ * value. No permission check is performed here - it is assumed that the
+ * caller is permitted to set the desired effective capabilities.
+ */
+kernel_cap_t cap_set_effective(const kernel_cap_t pE_new)
+{
+	kernel_cap_t pE_old;
+
+	spin_lock(&task_capability_lock);
+
+	pE_old = current->cap_effective;
+	current->cap_effective = pE_new;
+
+	spin_unlock(&task_capability_lock);
+
+	return pE_old;
+}
+
+EXPORT_SYMBOL(cap_set_effective);
+
 /**
  * sys_capget - get the capabilities of a given process.
  * @header: pointer to struct that contains capability version and
author	Ben Dooks <ben-linux@fluff.org>	2008-07-15 20:19:14 +0100
committer	Ben Dooks <ben-linux@fluff.org>	2008-07-15 20:19:14 +0100
commit	0c17e4ceedd35c78b1c7413dbd16279a350be6bc (patch)
tree	313b3b9ca04727f3704464e01d8dd97da1dd534b /kernel/capability.c
parent	19c1d6a34abf73d0baf8e325d018c920fa78dddc (diff)
parent	b9d2252c1e44fa83a4e65fdc9eb93db6297c55af (diff)