From 22a9d046d10614d8fa706ae09f9483fb1d42e6e7 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Fri, 27 May 2016 09:21:30 -0400
Subject: fixes for Debian wheezy

---
 src/firejail/sandbox.c | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/firejail/sandbox.c b/src/firejail/sandbox.c
index 843c1efe5..7518477b7 100644
--- a/src/firejail/sandbox.c
+++ b/src/firejail/sandbox.c
@@ -34,6 +34,13 @@
 #define CLONE_NEWUSER	0x10000000
 #endif
 
+#include <sys/prctl.h>
+#ifndef PR_SET_NO_NEW_PRIVS
+# define PR_SET_NO_NEW_PRIVS 38
+#endif
+
+
+
 static int monitored_pid = 0;
 static void sandbox_handler(int sig){
 	if (!arg_quiet) {
@@ -746,7 +753,7 @@ int sandbox(void* sandbox_arg) {
 			printf("noroot user namespace installed\n");
 		set_caps();
 	}
-
+	
 	//****************************************
 	// Set NO_NEW_PRIVS if desired
 	//****************************************
@@ -759,7 +766,6 @@ int sandbox(void* sandbox_arg) {
 			printf("NO_NEW_PRIVS set\n");
 	}
 
-
 	//****************************************
 	// fork the application and monitor it
 	//****************************************
-- 
cgit v1.2.3-70-g09d2