Skip to content

L
lxc
Unverified Commit ad9a0d33 by Christian Brauner
Options

confile: set_config_no_new_privs()

Signed-off-by: 's avatarChristian Brauner <christian.brauner@ubuntu.com>
parent b8a0e944
Showing with 5 additions and 3 deletions
src/lxc/confile.c
...@@ -3480,6 +3480,7 @@ static int set_config_log_syslog(const char *key, const char *value, ...@@ -3480,6 +3480,7 @@ static int set_config_log_syslog(const char *key, const char *value,
static int set_config_no_new_privs(const char *key, const char *value, static int set_config_no_new_privs(const char *key, const char *value,
struct lxc_conf *lxc_conf, void *data) struct lxc_conf *lxc_conf, void *data)
{ {
int ret;
unsigned int v; unsigned int v;
if (lxc_config_value_empty(value)) { if (lxc_config_value_empty(value)) {
...@@ -3487,11 +3488,12 @@ static int set_config_no_new_privs(const char *key, const char *value, ...@@ -3487,11 +3488,12 @@ static int set_config_no_new_privs(const char *key, const char *value,
return 0; return 0;
} }
if (lxc_safe_uint(value, &v) < 0) ret = lxc_safe_uint(value, &v);
return -1; if (ret < 0)
return ret;
if (v > 1) if (v > 1)
return -1; return ret_errno(EINVAL);
lxc_conf->no_new_privs = v ? true : false; lxc_conf->no_new_privs = v ? true : false;
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment