diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2020-12-03 13:33:46 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2020-12-04 12:53:00 +0100 |
commit | 3cfb9e4b3e40e0fef18383dd865bb083f9168e95 (patch) | |
tree | 779b86fbd20552127128460f2d87bde273ab1632 /src/libnftables.c | |
parent | 6975c6d39366e0a086a43fa984392e2231c1b193 (diff) |
src: report EPERM for non-root users
$ /usr/sbin/nft list ruleset
Operation not permitted (you must be root)
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1372
Acked-by: Arturo Borrero Gonzalez <arturo@netfilter.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/libnftables.c')
-rw-r--r-- | src/libnftables.c | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/src/libnftables.c b/src/libnftables.c index a180a9a3..04436591 100644 --- a/src/libnftables.c +++ b/src/libnftables.c @@ -463,8 +463,13 @@ int nft_run_cmd_from_buffer(struct nft_ctx *nft, const char *buf) parser_rc = rc; rc = nft_evaluate(nft, &msgs, &cmds); - if (rc < 0) + if (rc < 0) { + if (errno == EPERM) { + fprintf(stderr, "%s (you must be root)\n", + strerror(errno)); + } goto err; + } if (parser_rc) { rc = parser_rc; |