main: drop capabilities of userhelpers before ours

author Harald Hoyer <harald@redhat.com>

Fri, 30 Aug 2013 08:23:50 +0000 (10:23 +0200)

committer Harald Hoyer <harald@redhat.com>

Fri, 30 Aug 2013 08:26:49 +0000 (10:26 +0200)
author Harald Hoyer <harald@redhat.com>
Fri, 30 Aug 2013 08:23:50 +0000 (10:23 +0200)
committer Harald Hoyer <harald@redhat.com>
Fri, 30 Aug 2013 08:26:49 +0000 (10:26 +0200)
diff --git a/src/core/main.c b/src/core/main.c

index 0178f107200a300e7f38199204f2f39c5d61a00d..72bd542af01a9a0978f1f6d99328f87425a96624 100644 (file)
--- a/src/core/main.c
+++ b/src/core/main.c
@@ -1509,14 +1509,14 @@ int main(int argc, char *argv[]) {
                          log_error("Failed to adjust timer slack: %m");
  
          if (arg_capability_bounding_set_drop) {
-                r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
+                r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
                  if (r < 0) {
-                        log_error("Failed to drop capability bounding set: %s", strerror(-r));
+                        log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
                          goto finish;
                  }
-                r = capability_bounding_set_drop_usermode(arg_capability_bounding_set_drop);
+                r = capability_bounding_set_drop(arg_capability_bounding_set_drop, true);
                  if (r < 0) {
-                        log_error("Failed to drop capability bounding set of usermode helpers: %s", strerror(-r));
+                        log_error("Failed to drop capability bounding set: %s", strerror(-r));
                          goto finish;
                  }
          }
author	Harald Hoyer <harald@redhat.com>
	Fri, 30 Aug 2013 08:23:50 +0000 (10:23 +0200)
committer	Harald Hoyer <harald@redhat.com>
	Fri, 30 Aug 2013 08:26:49 +0000 (10:26 +0200)