parser: Add support for CAP_CHECKPOINT_RESTORE

Linux 5.9 added CAP_CHECKPOINT_RESTORE add it to the set of supported capabilities. MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/654 Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com>
2025-03-04 00:14:44 +01:00 · 2020-10-13 19:19:10 -07:00 · 2020-10-13 19:19:10 -07:00 · 644a473971
commit 644a473971
parent 71a51fcb18
2 changed files with 6 additions and 0 deletions
--- a/parser/base_cap_names.h
+++ b/parser/base_cap_names.h
@ -8,6 +8,8 @@

 {"bpf", CAP_BPF, CAP_SYS_ADMIN, CAPFLAG_BASE_FEATURE},

+{"checkpoint_restore", CAP_CHECKPOINT_RESTORE, CAP_SYS_ADMIN, CAPFLAG_BASE_FEATURE},
+
 {"chown", CAP_CHOWN, NO_BACKMAP_CAP, CAPFLAG_BASE_FEATURE},

 {"dac_override", CAP_DAC_OVERRIDE, NO_BACKMAP_CAP, CAPFLAG_BASE_FEATURE},
--- a/parser/capability.h
+++ b/parser/capability.h
@ -29,6 +29,10 @@
 #define CAP_BPF 39
 #endif

+#ifndef CAP_CHECKPOINT_RESTORE
+#define CAP_CHECKPOINT_RESTORE 40
+#endif
+
 typedef enum capability_flags {
 	CAPFLAGS_CLEAR = 0,
 	CAPFLAG_BASE_FEATURE = 1,