mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-12-23 14:15:28 +00:00
virSetUIDGIDWithCaps: Drop redundant parenthesis around capng_apply()
After all capabilities were set (except for CAP_SETGID, CAP_SETUID and CAP_SETPCAP) and after UID:GID was changed we drop the last aforementioned capabilities (we couldn't drop them before because we needed UID:GID and capabilities change). Therefore, there's final capng_apply() call. However, it is wrapped in one layer of parenthesis more than needed. Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
This commit is contained in:
parent
cd72f0cd9f
commit
b69affe3c1
@ -1261,7 +1261,7 @@ virSetUIDGIDWithCaps(uid_t uid, gid_t gid, gid_t *groups, int ngroups,
|
||||
if (need_setpcap)
|
||||
capng_update(CAPNG_DROP, CAPNG_EFFECTIVE|CAPNG_PERMITTED, CAP_SETPCAP);
|
||||
|
||||
if (((capng_ret = capng_apply(CAPNG_SELECT_CAPS)) < 0)) {
|
||||
if ((capng_ret = capng_apply(CAPNG_SELECT_CAPS)) < 0) {
|
||||
virReportError(VIR_ERR_INTERNAL_ERROR,
|
||||
_("cannot apply process capabilities %d"), capng_ret);
|
||||
return -1;
|
||||
|
Loading…
Reference in New Issue
Block a user