net: Add variants of capable for use on netlink messages netlink_net_capable - The common case use, for operations that are safe on a network namespace netlink_capable - For operations that are only known to be safe for the global root netlink_ns_capable - The general case of capable used to handle special cases __netlink_ns_capable - Same as netlink_ns_capable except taking a netlink_skb_parms instead of the skbuff of a netlink message. Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: aa4cf9452f469f16cea8c96283b641b4576d4a7b [log] [tgz]
author: Eric W. Biederman <ebiederm@xmission.com> Wed Apr 23 14:28:03 2014 -0700
committer: David S. Miller <davem@davemloft.net> Thu Apr 24 13:44:54 2014 -0400
tree: ef5ed02e14599013bed85144cb9b57653c2f59c3
parent: a3b299da869d6e78cf42ae0b1b41797bcb8c5e4b [diff] [blame]
diff --git a/include/linux/netlink.h b/include/linux/netlink.h
index aad8eea..f64b017 100644
--- a/include/linux/netlink.h
+++ b/include/linux/netlink.h

@@ -169,4 +169,11 @@
 extern int netlink_add_tap(struct netlink_tap *nt);
 extern int netlink_remove_tap(struct netlink_tap *nt);
 
+bool __netlink_ns_capable(const struct netlink_skb_parms *nsp,
+			  struct user_namespace *ns, int cap);
+bool netlink_ns_capable(const struct sk_buff *skb,
+			struct user_namespace *ns, int cap);
+bool netlink_capable(const struct sk_buff *skb, int cap);
+bool netlink_net_capable(const struct sk_buff *skb, int cap);
+
 #endif	/* __LINUX_NETLINK_H */
commit	aa4cf9452f469f16cea8c96283b641b4576d4a7b	[log] [tgz]
author	Eric W. Biederman <ebiederm@xmission.com>	Wed Apr 23 14:28:03 2014 -0700
committer	David S. Miller <davem@davemloft.net>	Thu Apr 24 13:44:54 2014 -0400
tree	ef5ed02e14599013bed85144cb9b57653c2f59c3
parent	a3b299da869d6e78cf42ae0b1b41797bcb8c5e4b [diff] [blame]