diff options
Diffstat (limited to 'src/firejail/checkcfg.c')
| -rw-r--r-- | src/firejail/checkcfg.c | 13 |
1 files changed, 8 insertions, 5 deletions
diff --git a/src/firejail/checkcfg.c b/src/firejail/checkcfg.c index cb087d395..f3ab0a6d8 100644 --- a/src/firejail/checkcfg.c +++ b/src/firejail/checkcfg.c | |||
| @@ -110,10 +110,14 @@ int checkcfg(int val) { | |||
| 110 | PARSE_YESNO(CFG_RESTRICTED_NETWORK, "restricted-network") | 110 | PARSE_YESNO(CFG_RESTRICTED_NETWORK, "restricted-network") |
| 111 | PARSE_YESNO(CFG_XEPHYR_WINDOW_TITLE, "xephyr-window-title") | 111 | PARSE_YESNO(CFG_XEPHYR_WINDOW_TITLE, "xephyr-window-title") |
| 112 | PARSE_YESNO(CFG_OVERLAYFS, "overlayfs") | 112 | PARSE_YESNO(CFG_OVERLAYFS, "overlayfs") |
| 113 | PARSE_YESNO(CFG_PRIVATE_HOME, "private-home") | 113 | PARSE_YESNO(CFG_PRIVATE_BIN, "private-bin") |
| 114 | PARSE_YESNO(CFG_PRIVATE_BIN_NO_LOCAL, "private-bin-no-local") | ||
| 114 | PARSE_YESNO(CFG_PRIVATE_CACHE, "private-cache") | 115 | PARSE_YESNO(CFG_PRIVATE_CACHE, "private-cache") |
| 116 | PARSE_YESNO(CFG_PRIVATE_ETC, "private-etc") | ||
| 117 | PARSE_YESNO(CFG_PRIVATE_HOME, "private-home") | ||
| 115 | PARSE_YESNO(CFG_PRIVATE_LIB, "private-lib") | 118 | PARSE_YESNO(CFG_PRIVATE_LIB, "private-lib") |
| 116 | PARSE_YESNO(CFG_PRIVATE_BIN_NO_LOCAL, "private-bin-no-local") | 119 | PARSE_YESNO(CFG_PRIVATE_OPT, "private-opt") |
| 120 | PARSE_YESNO(CFG_PRIVATE_SRV, "private-srv") | ||
| 117 | PARSE_YESNO(CFG_DISABLE_MNT, "disable-mnt") | 121 | PARSE_YESNO(CFG_DISABLE_MNT, "disable-mnt") |
| 118 | PARSE_YESNO(CFG_XPRA_ATTACH, "xpra-attach") | 122 | PARSE_YESNO(CFG_XPRA_ATTACH, "xpra-attach") |
| 119 | PARSE_YESNO(CFG_BROWSER_DISABLE_U2F, "browser-disable-u2f") | 123 | PARSE_YESNO(CFG_BROWSER_DISABLE_U2F, "browser-disable-u2f") |
| @@ -130,8 +134,7 @@ int checkcfg(int val) { | |||
| 130 | *end = '\0'; | 134 | *end = '\0'; |
| 131 | 135 | ||
| 132 | // is the file present? | 136 | // is the file present? |
| 133 | struct stat s; | 137 | if (access(fname, F_OK) == -1) { |
| 134 | if (stat(fname, &s) == -1) { | ||
| 135 | fprintf(stderr, "Error: netfilter-default file %s not available\n", fname); | 138 | fprintf(stderr, "Error: netfilter-default file %s not available\n", fname); |
| 136 | exit(1); | 139 | exit(1); |
| 137 | } | 140 | } |
| @@ -294,7 +297,7 @@ errout: | |||
| 294 | 297 | ||
| 295 | void print_compiletime_support(void) { | 298 | void print_compiletime_support(void) { |
| 296 | printf("Compile time support:\n"); | 299 | printf("Compile time support:\n"); |
| 297 | printf("\t- Always force nonewprivs support is %s\n", | 300 | printf("\t- always force nonewprivs support is %s\n", |
| 298 | #ifdef HAVE_FORCE_NONEWPRIVS | 301 | #ifdef HAVE_FORCE_NONEWPRIVS |
| 299 | "enabled" | 302 | "enabled" |
| 300 | #else | 303 | #else |