1 files changed, 6 insertions, 1 deletions
diff --git a/src/firejail/firejail.h b/src/firejail/firejail.h
index 821a8e003..333cd92f4 100644
--- a/src/firejail/firejail.h
+++ b/src/firejail/firejail.h
@@ -136,6 +136,7 @@ typedef struct config_t {
        char *bin_private_keep; // keep list for private bin directory
        char *cwd;              // current working directory
        char *overlay_dir;
+   char *private_template; // template dir for tmpfs home
        // networking
        char *name;             // sandbox name
@@ -212,6 +213,7 @@ static inline int any_interface_configured(void) {
 void clear_run_files(pid_t pid);
 extern int arg_private;         // mount private /home
+extern int arg_private_template; // private /home template
 extern int arg_debug;           // print debug messages
 extern int arg_debug_check_filename;            // print debug messages for filename checking
 extern int arg_debug_blacklists;        // print debug messages for blacklists
@@ -417,9 +419,12 @@ void fs_dev_disable_sound();
 void fs_private(void);
 // private mode (--private=homedir)
 void fs_private_homedir(void);
+// private template (--private-template=templatedir)
+void fs_private_template(void);
 // check new private home directory (--private= option) - exit if it fails
 void fs_check_private_dir(void);
+// check new private template home directory (--private-template= option) exit if it fails
+void fs_check_private_template(void);
 // seccomp.c
 int seccomp_filter_drop(int enforce_seccomp);

diff --git a/src/firejail/firejail.h b/src/firejail/firejail.h index 821a8e003..333cd92f4 100644 --- a/src/firejail/firejail.h +++ b/src/firejail/firejail.h
@@ -136,6 +136,7 @@ typedef struct config_t {
136	char *bin_private_keep; // keep list for private bin directory	136	char *bin_private_keep; // keep list for private bin directory
137	char *cwd; // current working directory	137	char *cwd; // current working directory
138	char *overlay_dir;	138	char *overlay_dir;
		139	char *private_template; // template dir for tmpfs home
139		140
140	// networking	141	// networking
141	char *name; // sandbox name	142	char *name; // sandbox name
@@ -212,6 +213,7 @@ static inline int any_interface_configured(void) {
212	void clear_run_files(pid_t pid);	213	void clear_run_files(pid_t pid);
213		214
214	extern int arg_private; // mount private /home	215	extern int arg_private; // mount private /home
		216	extern int arg_private_template; // private /home template
215	extern int arg_debug; // print debug messages	217	extern int arg_debug; // print debug messages
216	extern int arg_debug_check_filename; // print debug messages for filename checking	218	extern int arg_debug_check_filename; // print debug messages for filename checking
217	extern int arg_debug_blacklists; // print debug messages for blacklists	219	extern int arg_debug_blacklists; // print debug messages for blacklists
@@ -417,9 +419,12 @@ void fs_dev_disable_sound();
417	void fs_private(void);	419	void fs_private(void);
418	// private mode (--private=homedir)	420	// private mode (--private=homedir)
419	void fs_private_homedir(void);	421	void fs_private_homedir(void);
		422	// private template (--private-template=templatedir)
		423	void fs_private_template(void);
420	// check new private home directory (--private= option) - exit if it fails	424	// check new private home directory (--private= option) - exit if it fails
421	void fs_check_private_dir(void);	425	void fs_check_private_dir(void);
422		426	// check new private template home directory (--private-template= option) exit if it fails
		427	void fs_check_private_template(void);
423		428
424	// seccomp.c	429	// seccomp.c
425	int seccomp_filter_drop(int enforce_seccomp);	430	int seccomp_filter_drop(int enforce_seccomp);