From d349f2e7440006662e047c23f95710062cd34e86 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Sat, 26 Sep 2015 09:45:51 -0400
Subject: ./configure --enable-fatal-warnings

---
 src/firejail/errno.c    | 270 ++++++++++++++++++++++++------------------------
 src/firejail/firejail.h |   3 +-
 src/firejail/seccomp.c  |   2 +
 src/firejail/veth.c     |   2 +-
 4 files changed, 140 insertions(+), 137 deletions(-)

(limited to 'src')

diff --git a/src/firejail/errno.c b/src/firejail/errno.c
index fd3ccf23b..75a6518fb 100644
--- a/src/firejail/errno.c
+++ b/src/firejail/errno.c
@@ -32,142 +32,142 @@ static ErrnoEntry errnolist[] = {
 //
 // code generated using tools/extract-errnos
 //
-	"EPERM", EPERM,
-	"ENOENT", ENOENT,
-	"ESRCH", ESRCH,
-	"EINTR", EINTR,
-	"EIO", EIO,
-	"ENXIO", ENXIO,
-	"E2BIG", E2BIG,
-	"ENOEXEC", ENOEXEC,
-	"EBADF", EBADF,
-	"ECHILD", ECHILD,
-	"EAGAIN", EAGAIN,
-	"ENOMEM", ENOMEM,
-	"EACCES", EACCES,
-	"EFAULT", EFAULT,
-	"ENOTBLK", ENOTBLK,
-	"EBUSY", EBUSY,
-	"EEXIST", EEXIST,
-	"EXDEV", EXDEV,
-	"ENODEV", ENODEV,
-	"ENOTDIR", ENOTDIR,
-	"EISDIR", EISDIR,
-	"EINVAL", EINVAL,
-	"ENFILE", ENFILE,
-	"EMFILE", EMFILE,
-	"ENOTTY", ENOTTY,
-	"ETXTBSY", ETXTBSY,
-	"EFBIG", EFBIG,
-	"ENOSPC", ENOSPC,
-	"ESPIPE", ESPIPE,
-	"EROFS", EROFS,
-	"EMLINK", EMLINK,
-	"EPIPE", EPIPE,
-	"EDOM", EDOM,
-	"ERANGE", ERANGE,
-	"EDEADLK", EDEADLK,
-	"ENAMETOOLONG", ENAMETOOLONG,
-	"ENOLCK", ENOLCK,
-	"ENOSYS", ENOSYS,
-	"ENOTEMPTY", ENOTEMPTY,
-	"ELOOP", ELOOP,
-	"EWOULDBLOCK", EWOULDBLOCK,
-	"ENOMSG", ENOMSG,
-	"EIDRM", EIDRM,
-	"ECHRNG", ECHRNG,
-	"EL2NSYNC", EL2NSYNC,
-	"EL3HLT", EL3HLT,
-	"EL3RST", EL3RST,
-	"ELNRNG", ELNRNG,
-	"EUNATCH", EUNATCH,
-	"ENOCSI", ENOCSI,
-	"EL2HLT", EL2HLT,
-	"EBADE", EBADE,
-	"EBADR", EBADR,
-	"EXFULL", EXFULL,
-	"ENOANO", ENOANO,
-	"EBADRQC", EBADRQC,
-	"EBADSLT", EBADSLT,
-	"EDEADLOCK", EDEADLOCK,
-	"EBFONT", EBFONT,
-	"ENOSTR", ENOSTR,
-	"ENODATA", ENODATA,
-	"ETIME", ETIME,
-	"ENOSR", ENOSR,
-	"ENONET", ENONET,
-	"ENOPKG", ENOPKG,
-	"EREMOTE", EREMOTE,
-	"ENOLINK", ENOLINK,
-	"EADV", EADV,
-	"ESRMNT", ESRMNT,
-	"ECOMM", ECOMM,
-	"EPROTO", EPROTO,
-	"EMULTIHOP", EMULTIHOP,
-	"EDOTDOT", EDOTDOT,
-	"EBADMSG", EBADMSG,
-	"EOVERFLOW", EOVERFLOW,
-	"ENOTUNIQ", ENOTUNIQ,
-	"EBADFD", EBADFD,
-	"EREMCHG", EREMCHG,
-	"ELIBACC", ELIBACC,
-	"ELIBBAD", ELIBBAD,
-	"ELIBSCN", ELIBSCN,
-	"ELIBMAX", ELIBMAX,
-	"ELIBEXEC", ELIBEXEC,
-	"EILSEQ", EILSEQ,
-	"ERESTART", ERESTART,
-	"ESTRPIPE", ESTRPIPE,
-	"EUSERS", EUSERS,
-	"ENOTSOCK", ENOTSOCK,
-	"EDESTADDRREQ", EDESTADDRREQ,
-	"EMSGSIZE", EMSGSIZE,
-	"EPROTOTYPE", EPROTOTYPE,
-	"ENOPROTOOPT", ENOPROTOOPT,
-	"EPROTONOSUPPORT", EPROTONOSUPPORT,
-	"ESOCKTNOSUPPORT", ESOCKTNOSUPPORT,
-	"EOPNOTSUPP", EOPNOTSUPP,
-	"EPFNOSUPPORT", EPFNOSUPPORT,
-	"EAFNOSUPPORT", EAFNOSUPPORT,
-	"EADDRINUSE", EADDRINUSE,
-	"EADDRNOTAVAIL", EADDRNOTAVAIL,
-	"ENETDOWN", ENETDOWN,
-	"ENETUNREACH", ENETUNREACH,
-	"ENETRESET", ENETRESET,
-	"ECONNABORTED", ECONNABORTED,
-	"ECONNRESET", ECONNRESET,
-	"ENOBUFS", ENOBUFS,
-	"EISCONN", EISCONN,
-	"ENOTCONN", ENOTCONN,
-	"ESHUTDOWN", ESHUTDOWN,
-	"ETOOMANYREFS", ETOOMANYREFS,
-	"ETIMEDOUT", ETIMEDOUT,
-	"ECONNREFUSED", ECONNREFUSED,
-	"EHOSTDOWN", EHOSTDOWN,
-	"EHOSTUNREACH", EHOSTUNREACH,
-	"EALREADY", EALREADY,
-	"EINPROGRESS", EINPROGRESS,
-	"ESTALE", ESTALE,
-	"EUCLEAN", EUCLEAN,
-	"ENOTNAM", ENOTNAM,
-	"ENAVAIL", ENAVAIL,
-	"EISNAM", EISNAM,
-	"EREMOTEIO", EREMOTEIO,
-	"EDQUOT", EDQUOT,
-	"ENOMEDIUM", ENOMEDIUM,
-	"EMEDIUMTYPE", EMEDIUMTYPE,
-	"ECANCELED", ECANCELED,
-	"ENOKEY", ENOKEY,
-	"EKEYEXPIRED", EKEYEXPIRED,
-	"EKEYREVOKED", EKEYREVOKED,
-	"EKEYREJECTED", EKEYREJECTED,
-	"EOWNERDEAD", EOWNERDEAD,
-	"ENOTRECOVERABLE", ENOTRECOVERABLE,
-	"ERFKILL", ERFKILL,
-	"EHWPOISON", EHWPOISON,
-	"ENOTSUP", ENOTSUP,
+	{"EPERM", EPERM},
+	{"ENOENT", ENOENT},
+	{"ESRCH", ESRCH},
+	{"EINTR", EINTR},
+	{"EIO", EIO},
+	{"ENXIO", ENXIO},
+	{"E2BIG", E2BIG},
+	{"ENOEXEC", ENOEXEC},
+	{"EBADF", EBADF},
+	{"ECHILD", ECHILD},
+	{"EAGAIN", EAGAIN},
+	{"ENOMEM", ENOMEM},
+	{"EACCES", EACCES},
+	{"EFAULT", EFAULT},
+	{"ENOTBLK", ENOTBLK},
+	{"EBUSY", EBUSY},
+	{"EEXIST", EEXIST},
+	{"EXDEV", EXDEV},
+	{"ENODEV", ENODEV},
+	{"ENOTDIR", ENOTDIR},
+	{"EISDIR", EISDIR},
+	{"EINVAL", EINVAL},
+	{"ENFILE", ENFILE},
+	{"EMFILE", EMFILE},
+	{"ENOTTY", ENOTTY},
+	{"ETXTBSY", ETXTBSY},
+	{"EFBIG", EFBIG},
+	{"ENOSPC", ENOSPC},
+	{"ESPIPE", ESPIPE},
+	{"EROFS", EROFS},
+	{"EMLINK", EMLINK},
+	{"EPIPE", EPIPE},
+	{"EDOM", EDOM},
+	{"ERANGE", ERANGE},
+	{"EDEADLK", EDEADLK},
+	{"ENAMETOOLONG", ENAMETOOLONG},
+	{"ENOLCK", ENOLCK},
+	{"ENOSYS", ENOSYS},
+	{"ENOTEMPTY", ENOTEMPTY},
+	{"ELOOP", ELOOP},
+	{"EWOULDBLOCK", EWOULDBLOCK},
+	{"ENOMSG", ENOMSG},
+	{"EIDRM", EIDRM},
+	{"ECHRNG", ECHRNG},
+	{"EL2NSYNC", EL2NSYNC},
+	{"EL3HLT", EL3HLT},
+	{"EL3RST", EL3RST},
+	{"ELNRNG", ELNRNG},
+	{"EUNATCH", EUNATCH},
+	{"ENOCSI", ENOCSI},
+	{"EL2HLT", EL2HLT},
+	{"EBADE", EBADE},
+	{"EBADR", EBADR},
+	{"EXFULL", EXFULL},
+	{"ENOANO", ENOANO},
+	{"EBADRQC", EBADRQC},
+	{"EBADSLT", EBADSLT},
+	{"EDEADLOCK", EDEADLOCK},
+	{"EBFONT", EBFONT},
+	{"ENOSTR", ENOSTR},
+	{"ENODATA", ENODATA},
+	{"ETIME", ETIME},
+	{"ENOSR", ENOSR},
+	{"ENONET", ENONET},
+	{"ENOPKG", ENOPKG},
+	{"EREMOTE", EREMOTE},
+	{"ENOLINK", ENOLINK},
+	{"EADV", EADV},
+	{"ESRMNT", ESRMNT},
+	{"ECOMM", ECOMM},
+	{"EPROTO", EPROTO},
+	{"EMULTIHOP", EMULTIHOP},
+	{"EDOTDOT", EDOTDOT},
+	{"EBADMSG", EBADMSG},
+	{"EOVERFLOW", EOVERFLOW},
+	{"ENOTUNIQ", ENOTUNIQ},
+	{"EBADFD", EBADFD},
+	{"EREMCHG", EREMCHG},
+	{"ELIBACC", ELIBACC},
+	{"ELIBBAD", ELIBBAD},
+	{"ELIBSCN", ELIBSCN},
+	{"ELIBMAX", ELIBMAX},
+	{"ELIBEXEC", ELIBEXEC},
+	{"EILSEQ", EILSEQ},
+	{"ERESTART", ERESTART},
+	{"ESTRPIPE", ESTRPIPE},
+	{"EUSERS", EUSERS},
+	{"ENOTSOCK", ENOTSOCK},
+	{"EDESTADDRREQ", EDESTADDRREQ},
+	{"EMSGSIZE", EMSGSIZE},
+	{"EPROTOTYPE", EPROTOTYPE},
+	{"ENOPROTOOPT", ENOPROTOOPT},
+	{"EPROTONOSUPPORT", EPROTONOSUPPORT},
+	{"ESOCKTNOSUPPORT", ESOCKTNOSUPPORT},
+	{"EOPNOTSUPP", EOPNOTSUPP},
+	{"EPFNOSUPPORT", EPFNOSUPPORT},
+	{"EAFNOSUPPORT", EAFNOSUPPORT},
+	{"EADDRINUSE", EADDRINUSE},
+	{"EADDRNOTAVAIL", EADDRNOTAVAIL},
+	{"ENETDOWN", ENETDOWN},
+	{"ENETUNREACH", ENETUNREACH},
+	{"ENETRESET", ENETRESET},
+	{"ECONNABORTED", ECONNABORTED},
+	{"ECONNRESET", ECONNRESET},
+	{"ENOBUFS", ENOBUFS},
+	{"EISCONN", EISCONN},
+	{"ENOTCONN", ENOTCONN},
+	{"ESHUTDOWN", ESHUTDOWN},
+	{"ETOOMANYREFS", ETOOMANYREFS},
+	{"ETIMEDOUT", ETIMEDOUT},
+	{"ECONNREFUSED", ECONNREFUSED},
+	{"EHOSTDOWN", EHOSTDOWN},
+	{"EHOSTUNREACH", EHOSTUNREACH},
+	{"EALREADY", EALREADY},
+	{"EINPROGRESS", EINPROGRESS},
+	{"ESTALE", ESTALE},
+	{"EUCLEAN", EUCLEAN},
+	{"ENOTNAM", ENOTNAM},
+	{"ENAVAIL", ENAVAIL},
+	{"EISNAM", EISNAM},
+	{"EREMOTEIO", EREMOTEIO},
+	{"EDQUOT", EDQUOT},
+	{"ENOMEDIUM", ENOMEDIUM},
+	{"EMEDIUMTYPE", EMEDIUMTYPE},
+	{"ECANCELED", ECANCELED},
+	{"ENOKEY", ENOKEY},
+	{"EKEYEXPIRED", EKEYEXPIRED},
+	{"EKEYREVOKED", EKEYREVOKED},
+	{"EKEYREJECTED", EKEYREJECTED},
+	{"EOWNERDEAD", EOWNERDEAD},
+	{"ENOTRECOVERABLE", ENOTRECOVERABLE},
+	{"ERFKILL", ERFKILL},
+	{"EHWPOISON", EHWPOISON},
+	{"ENOTSUP", ENOTSUP},
 #ifdef 	ENOATTR
-	"ENOATTR", ENOATTR,
+	{"ENOATTR", ENOATTR},
 #endif	
 };
 
diff --git a/src/firejail/firejail.h b/src/firejail/firejail.h
index 589fdb42a..09631be7a 100644
--- a/src/firejail/firejail.h
+++ b/src/firejail/firejail.h
@@ -321,6 +321,7 @@ int seccomp_filter_keep(void);
 void seccomp_set(void);
 void seccomp_print_filter_name(const char *name);
 void seccomp_print_filter(pid_t pid);
+int seccomp_filter_errno(void);
 
 // caps.c
 int caps_default_filter(void);
@@ -394,7 +395,7 @@ void env_apply(void);
 void fs_whitelist(void);
 
 // errno.c
-int errno_highest_errno(void);
+int errno_highest_nr(void);
 int errno_find_name(const char *name);
 char *errno_find_nr(int nr);
 void errno_print(void);
diff --git a/src/firejail/seccomp.c b/src/firejail/seccomp.c
index 4f6b7b326..76e8fc81e 100644
--- a/src/firejail/seccomp.c
+++ b/src/firejail/seccomp.c
@@ -226,6 +226,7 @@ static void filter_realloc(void) {
 }
 
 static void filter_add_whitelist(int syscall, int arg) {
+	(void) arg;
 	assert(sfilter);
 	assert(sfilter_alloc_size);
 	assert(sfilter_index);
@@ -252,6 +253,7 @@ static void filter_add_whitelist(int syscall, int arg) {
 }
 
 static void filter_add_blacklist(int syscall, int arg) {
+	(void) arg;
 	assert(sfilter);
 	assert(sfilter_alloc_size);
 	assert(sfilter_index);
diff --git a/src/firejail/veth.c b/src/firejail/veth.c
index 45bf815aa..7797c6583 100644
--- a/src/firejail/veth.c
+++ b/src/firejail/veth.c
@@ -48,6 +48,7 @@
 #include "firejail.h"
 #include "../include/libnetlink.h"
 #include <linux/veth.h>
+#include <net/if.h>
 
 struct iplink_req
 {
@@ -182,7 +183,6 @@ int net_create_macvlan(const char *dev, const char *parent, unsigned pid) {
 // move the interface dev in namespace of program pid
 // when the interface is moved, netlink does not preserve interface configuration
 int net_move_interface(const char *dev, unsigned pid) {
-	int len;
 	struct iplink_req req;
 	if (arg_debug)
 		printf("move device %s inside the namespace\n", dev);
-- 
cgit v1.2.3-54-g00ecf