From a7607e423f3336f67daf2ec296414d55c6740f84 Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Mon, 21 Dec 2020 01:23:41 +0100
Subject: noroot option: don't drop firejail supplementary group

see suggested setup in man 5 firejail-users
also related to issue #3604
---
 src/firejail/util.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/firejail/util.c b/src/firejail/util.c
index e8b35a64b..6cc1bc720 100644
--- a/src/firejail/util.c
+++ b/src/firejail/util.c
@@ -75,10 +75,11 @@ static void clean_supplementary_groups(gid_t gid) {
 		goto clean_all;
 
 	// clean supplementary group list
-	// allow only tty, audio, video, games
+	// allow only firejail, tty, audio, video, games
 	gid_t new_groups[MAX_GROUPS];
 	int new_ngroups = 0;
 	char *allowed[] = {
+		"firejail",
 		"tty",
 		"audio",
 		"video",
-- 
cgit v1.2.3-70-g09d2