diff options
author | netblue30 <netblue30@yahoo.com> | 2016-10-23 10:59:06 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-10-23 10:59:06 -0400 |
commit | 2399e09e66e94ca473c13a10e45f50bd38594bbe (patch) | |
tree | 77301d2261a110bf14873f6273d94f91c58837a2 | |
parent | appimage type 2 support (diff) | |
download | firejail-2399e09e66e94ca473c13a10e45f50bd38594bbe.tar.gz firejail-2399e09e66e94ca473c13a10e45f50bd38594bbe.tar.zst firejail-2399e09e66e94ca473c13a10e45f50bd38594bbe.zip |
appimage fixes
-rw-r--r-- | src/firejail/appimage.c | 2 | ||||
-rw-r--r-- | src/firejail/sandbox.c | 7 |
2 files changed, 8 insertions, 1 deletions
diff --git a/src/firejail/appimage.c b/src/firejail/appimage.c index 3f03c28bf..09b242964 100644 --- a/src/firejail/appimage.c +++ b/src/firejail/appimage.c | |||
@@ -96,7 +96,7 @@ void appimage_set(const char *appimage_path) { | |||
96 | EUID_USER(); | 96 | EUID_USER(); |
97 | 97 | ||
98 | // creates appimage mount point perms 0700 | 98 | // creates appimage mount point perms 0700 |
99 | if (asprintf(&mntdir, "%s/appimage-%u", RUN_FIREJAIL_APPIMAGE_DIR, getpid()) == -1) | 99 | if (asprintf(&mntdir, "%s/.appimage-%u", RUN_FIREJAIL_APPIMAGE_DIR, getpid()) == -1) |
100 | errExit("asprintf"); | 100 | errExit("asprintf"); |
101 | EUID_ROOT(); | 101 | EUID_ROOT(); |
102 | if (mkdir(mntdir, 0700) == -1) { | 102 | if (mkdir(mntdir, 0700) == -1) { |
diff --git a/src/firejail/sandbox.c b/src/firejail/sandbox.c index 8021ce9a3..f5cca7494 100644 --- a/src/firejail/sandbox.c +++ b/src/firejail/sandbox.c | |||
@@ -488,6 +488,13 @@ int sandbox(void* sandbox_arg) { | |||
488 | #ifdef HAVE_SECCOMP | 488 | #ifdef HAVE_SECCOMP |
489 | int enforce_seccomp = 0; | 489 | int enforce_seccomp = 0; |
490 | #endif | 490 | #endif |
491 | if (arg_appimage) { | ||
492 | enforce_filters(); | ||
493 | #ifdef HAVE_SECCOMP | ||
494 | enforce_seccomp = 1; | ||
495 | #endif | ||
496 | } | ||
497 | |||
491 | #ifdef HAVE_CHROOT | 498 | #ifdef HAVE_CHROOT |
492 | if (cfg.chrootdir) { | 499 | if (cfg.chrootdir) { |
493 | fs_chroot(cfg.chrootdir); | 500 | fs_chroot(cfg.chrootdir); |