From 3813d1c47e6ac48b23c2a401e65b7a412f5de5f6 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Thu, 13 Apr 2017 07:02:44 -0400
Subject: fix /sys handling for overlayfs and chroot

---
 src/firejail/fs.c | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

(limited to 'src')

diff --git a/src/firejail/fs.c b/src/firejail/fs.c
index 71cefffe0..f6aba7048 100644
--- a/src/firejail/fs.c
+++ b/src/firejail/fs.c
@@ -502,12 +502,10 @@ void fs_proc_sys_dev_boot(void) {
 		printf("Remounting /sys directory\n");
 	if (umount2("/sys", MNT_DETACH) < 0)
 		fprintf(stderr, "Warning: failed to unmount /sys\n");
-	else {
-		if (mount("sysfs", "/sys", "sysfs", MS_RDONLY|MS_NOSUID|MS_NOEXEC|MS_NODEV|MS_REC, NULL) < 0)
-			fprintf(stderr, "Warning: failed to mount /sys\n");
-		else
-			fs_logger("remount /sys");
-	}
+	if (mount("sysfs", "/sys", "sysfs", MS_RDONLY|MS_NOSUID|MS_NOEXEC|MS_NODEV|MS_REC, NULL) < 0)
+		fprintf(stderr, "Warning: failed to mount /sys\n");
+	else
+		fs_logger("remount /sys");
 		
 	disable_file(BLACKLIST_FILE, "/sys/firmware");
 	disable_file(BLACKLIST_FILE, "/sys/hypervisor");
-- 
cgit v1.2.3-70-g09d2