From 78e772fe13a2ecd79be8cf196afd819a7a517a10 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Tue, 27 Sep 2016 13:29:39 -0400
Subject: allow-debuggers fix

---
 src/firejail/fs.c | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

(limited to 'src')

diff --git a/src/firejail/fs.c b/src/firejail/fs.c
index e38f128ea..3dbfe3909 100644
--- a/src/firejail/fs.c
+++ b/src/firejail/fs.c
@@ -674,11 +674,13 @@ void fs_proc_sys_dev_boot(void) {
 	disable_file(BLACKLIST_FILE, "/proc/kmem");
 	
 	// remove kernel symbol information
-	disable_file(BLACKLIST_FILE, "/usr/src/linux");
-	disable_file(BLACKLIST_FILE, "/lib/modules");
-	disable_file(BLACKLIST_FILE, "/usr/lib/debug");
-	disable_file(BLACKLIST_FILE, "/boot");
-	
+	if (!arg_allow_debuggers) {
+		disable_file(BLACKLIST_FILE, "/usr/src/linux");
+		disable_file(BLACKLIST_FILE, "/lib/modules");
+		disable_file(BLACKLIST_FILE, "/usr/lib/debug");
+		disable_file(BLACKLIST_FILE, "/boot");
+	}
+		
 	// disable /selinux
 	disable_file(BLACKLIST_FILE, "/selinux");
 	
-- 
cgit v1.2.3-70-g09d2