diff options
author | netblue30 <netblue30@yahoo.com> | 2016-04-07 17:37:36 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-04-07 17:37:36 -0400 |
commit | 752c3a43a322b40c1a43012735aa797d9e3c7435 (patch) | |
tree | 0835b4d1bed77eb61cd1f6ef179541310d470881 /src/firejail/caps.c | |
parent | added dnsmasq profile (diff) | |
download | firejail-752c3a43a322b40c1a43012735aa797d9e3c7435.tar.gz firejail-752c3a43a322b40c1a43012735aa797d9e3c7435.tar.zst firejail-752c3a43a322b40c1a43012735aa797d9e3c7435.zip |
grsecurity fixes
Diffstat (limited to 'src/firejail/caps.c')
-rw-r--r-- | src/firejail/caps.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/firejail/caps.c b/src/firejail/caps.c index 6b934bda6..2d42c7d8a 100644 --- a/src/firejail/caps.c +++ b/src/firejail/caps.c | |||
@@ -247,11 +247,13 @@ void caps_print(void) { | |||
247 | // check current caps supported by the kernel | 247 | // check current caps supported by the kernel |
248 | int cnt = 0; | 248 | int cnt = 0; |
249 | unsigned long cap; | 249 | unsigned long cap; |
250 | EUID_ROOT(); // grsecurity fix | ||
250 | for (cap=0; cap <= 63; cap++) { | 251 | for (cap=0; cap <= 63; cap++) { |
251 | int code = prctl(PR_CAPBSET_DROP, cap, 0, 0, 0); | 252 | int code = prctl(PR_CAPBSET_DROP, cap, 0, 0, 0); |
252 | if (code == 0) | 253 | if (code == 0) |
253 | cnt++; | 254 | cnt++; |
254 | } | 255 | } |
256 | EUID_USER(); | ||
255 | printf("Your kernel supports %d capabilities.\n", cnt); | 257 | printf("Your kernel supports %d capabilities.\n", cnt); |
256 | 258 | ||
257 | for (i = 0; i < elems; i++) { | 259 | for (i = 0; i < elems; i++) { |