diff options
author | netblue30 <netblue30@yahoo.com> | 2016-08-30 20:47:12 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2016-08-30 20:47:12 -0400 |
commit | 5adafe44026aba6d37deef04c3229fca9704d118 (patch) | |
tree | c32e2f7e78f44edee264f760b7e21087e706cfec /src | |
parent | Arch Linux fix: setegid error (diff) | |
download | firejail-5adafe44026aba6d37deef04c3229fca9704d118.tar.gz firejail-5adafe44026aba6d37deef04c3229fca9704d118.tar.zst firejail-5adafe44026aba6d37deef04c3229fca9704d118.zip |
fix join caps
Diffstat (limited to 'src')
-rw-r--r-- | src/firejail/join.c | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/src/firejail/join.c b/src/firejail/join.c index 948c7ef71..414b899ce 100644 --- a/src/firejail/join.c +++ b/src/firejail/join.c | |||
@@ -309,14 +309,15 @@ void join(pid_t pid, int argc, char **argv, int index) { | |||
309 | printf("Joining user namespace\n"); | 309 | printf("Joining user namespace\n"); |
310 | if (join_namespace(1, "user")) | 310 | if (join_namespace(1, "user")) |
311 | exit(1); | 311 | exit(1); |
312 | |||
313 | // user namespace resets capabilities | ||
314 | // set caps filter | ||
315 | if (apply_caps == 1) // not available for uid 0 | ||
316 | caps_set(caps); | ||
312 | } | 317 | } |
313 | else | 318 | else |
314 | drop_privs(arg_nogroups); // nogroups not available for uid 0 | 319 | drop_privs(arg_nogroups); // nogroups not available for uid 0 |
315 | 320 | ||
316 | // user namespace resets capabilities | ||
317 | // set caps filter | ||
318 | if (apply_caps == 1) // not available for uid 0 | ||
319 | caps_set(caps); | ||
320 | 321 | ||
321 | // set prompt color to green | 322 | // set prompt color to green |
322 | char *prompt = getenv("FIREJAIL_PROMPT"); | 323 | char *prompt = getenv("FIREJAIL_PROMPT"); |