diff options
-rw-r--r-- | sway/main.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sway/main.c b/sway/main.c index 6c74aab2..7bf71b53 100644 --- a/sway/main.c +++ b/sway/main.c | |||
@@ -331,6 +331,7 @@ int main(int argc, char **argv) { | |||
331 | // Drop every cap except CAP_SYS_PTRACE | 331 | // Drop every cap except CAP_SYS_PTRACE |
332 | cap_t caps = cap_init(); | 332 | cap_t caps = cap_init(); |
333 | cap_value_t keep = CAP_SYS_PTRACE; | 333 | cap_value_t keep = CAP_SYS_PTRACE; |
334 | sway_log(L_INFO, "Dropping extra capabilities"); | ||
334 | if (cap_set_flag(caps, CAP_PERMITTED, 1, &keep, CAP_SET) || | 335 | if (cap_set_flag(caps, CAP_PERMITTED, 1, &keep, CAP_SET) || |
335 | cap_set_flag(caps, CAP_EFFECTIVE, 1, &keep, CAP_SET) || | 336 | cap_set_flag(caps, CAP_EFFECTIVE, 1, &keep, CAP_SET) || |
336 | cap_set_proc(caps)) { | 337 | cap_set_proc(caps)) { |