[Libreoffice-commits] online.git: loolwsd/LOOLBroker.cpp

Henry Castro Sun, 14 Feb 2016 11:12:56 -0800

 loolwsd/LOOLBroker.cpp |   10 ++++++++++
 1 file changed, 10 insertions(+)


New commits:
commit cdcb32f01337b51db097f3abea5165d2d2d14172
Author: Henry Castro <hcas...@collabora.com>
Date:   Sun Feb 14 14:54:04 2016 -0400

    loolwsd: loolbroker drop capabilities

diff --git a/loolwsd/LOOLBroker.cpp b/loolwsd/LOOLBroker.cpp
index bd35210..5d81486 100644
--- a/loolwsd/LOOLBroker.cpp
+++ b/loolwsd/LOOLBroker.cpp
@@ -761,6 +761,16 @@ int main(int argc, char** argv)
     if (numPreSpawnedChildren > 1)
         forkCounter = numPreSpawnedChildren - 1;
 
+    if (!sharePages)
+    {
+#ifdef __linux
+        dropCapability(CAP_SYS_CHROOT);
+        dropCapability(CAP_MKNOD);
+        dropCapability(CAP_FOWNER);
+#else
+        dropCapability();
+#endif
+    }
 
     PipeRunnable pipeHandler;
     Poco::Thread aPipe;
_______________________________________________
Libreoffice-commits mailing list
libreoffice-comm...@lists.freedesktop.org
https://lists.freedesktop.org/mailman/listinfo/libreoffice-commits

[Libreoffice-commits] online.git: loolwsd/LOOLBroker.cpp

Reply via email to