aboutsummaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2017-06-12 07:24:43 -0400
committerLibravatar netblue30 <netblue30@yahoo.com>2017-06-12 07:24:43 -0400
commit5be1d138e54f9497703c2126c2ad087e960caad0 (patch)
tree20fe2d46775b09d04b8fb2487084407003144b55 /src
parentnovideo fixes (diff)
downloadfirejail-5be1d138e54f9497703c2126c2ad087e960caad0.tar.gz
firejail-5be1d138e54f9497703c2126c2ad087e960caad0.tar.zst
firejail-5be1d138e54f9497703c2126c2ad087e960caad0.zip
0.9.48 testing
Diffstat (limited to 'src')
-rw-r--r--src/firejail/appimage.c4
-rw-r--r--src/firejail/fs_dev.c2
-rw-r--r--src/firejail/sandbox.c1
3 files changed, 4 insertions, 3 deletions
diff --git a/src/firejail/appimage.c b/src/firejail/appimage.c
index 976750f8f..0f7ab40ff 100644
--- a/src/firejail/appimage.c
+++ b/src/firejail/appimage.c
@@ -31,17 +31,19 @@
31static char *devloop = NULL; // device file 31static char *devloop = NULL; // device file
32static char *mntdir = NULL; // mount point in /tmp directory 32static char *mntdir = NULL; // mount point in /tmp directory
33 33
34#ifdef LOOP_CTL_GET_FREE // test for older kernels; this definition is found in /usr/include/linux/loop.h
34static void err_loop(void) { 35static void err_loop(void) {
35 fprintf(stderr, "Error: cannot configure loopback device\n"); 36 fprintf(stderr, "Error: cannot configure loopback device\n");
36 exit(1); 37 exit(1);
37} 38}
39#endif
38 40
39void appimage_set(const char *appimage) { 41void appimage_set(const char *appimage) {
40 assert(appimage); 42 assert(appimage);
41 assert(devloop == NULL); // don't call this twice! 43 assert(devloop == NULL); // don't call this twice!
42 EUID_ASSERT(); 44 EUID_ASSERT();
43 45
44#ifdef LOOP_CTL_GET_FREE // test for older kernels; this definition is found in /usr/include/linux/loop.h 46#ifdef LOOP_CTL_GET_FREE
45 // check appimage file 47 // check appimage file
46 invalid_filename(appimage); 48 invalid_filename(appimage);
47 if (access(appimage, R_OK) == -1) { 49 if (access(appimage, R_OK) == -1) {
diff --git a/src/firejail/fs_dev.c b/src/firejail/fs_dev.c
index 8ab176961..fdaa0b355 100644
--- a/src/firejail/fs_dev.c
+++ b/src/firejail/fs_dev.c
@@ -52,7 +52,7 @@ static DevEntry dev[] = {
52 {"/dev/nvidia7", RUN_DEV_DIR "/nvidia7", 0, 1, 0}, 52 {"/dev/nvidia7", RUN_DEV_DIR "/nvidia7", 0, 1, 0},
53 {"/dev/nvidia8", RUN_DEV_DIR "/nvidia8", 0, 1, 0}, 53 {"/dev/nvidia8", RUN_DEV_DIR "/nvidia8", 0, 1, 0},
54 {"/dev/nvidia9", RUN_DEV_DIR "/nvidia9", 0, 1, 0}, 54 {"/dev/nvidia9", RUN_DEV_DIR "/nvidia9", 0, 1, 0},
55 {"/dev/nvidiactl", RUN_DEV_DIR "/nvidiactl", 0, 1}, 55 {"/dev/nvidiactl", RUN_DEV_DIR "/nvidiactl", 0, 1, 0},
56 {"/dev/nvidia-modeset", RUN_DEV_DIR "/nvidia-modeset", 0, 1, 0}, 56 {"/dev/nvidia-modeset", RUN_DEV_DIR "/nvidia-modeset", 0, 1, 0},
57 {"/dev/nvidia-uvm", RUN_DEV_DIR "/nvidia-uvm", 0, 1, 0}, 57 {"/dev/nvidia-uvm", RUN_DEV_DIR "/nvidia-uvm", 0, 1, 0},
58 {"/dev/video0", RUN_DEV_DIR "/video0", 0, 0, 1}, // video camera devices 58 {"/dev/video0", RUN_DEV_DIR "/video0", 0, 0, 1}, // video camera devices
diff --git a/src/firejail/sandbox.c b/src/firejail/sandbox.c
index 7489e7b6d..4ee05d070 100644
--- a/src/firejail/sandbox.c
+++ b/src/firejail/sandbox.c
@@ -989,7 +989,6 @@ int sandbox(void* sandbox_arg) {
989 if (app_pid == 0) { 989 if (app_pid == 0) {
990#ifdef HAVE_APPARMOR 990#ifdef HAVE_APPARMOR
991 if (arg_apparmor) { 991 if (arg_apparmor) {
992 int done = 0;
993 errno = 0; 992 errno = 0;
994 if (aa_change_onexec("firejail-default")) { 993 if (aa_change_onexec("firejail-default")) {
995 fwarning("Cannot confine the application using AppArmor.\n" 994 fwarning("Cannot confine the application using AppArmor.\n"
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-06-28 17:32:12 +0000