From 5ed3c033ed421926435abd63128c33f540594e3c Mon Sep 17 00:00:00 2001
From: Robert Swiecki <robert@swiecki.net>
Date: Wed, 5 Jul 2017 17:34:56 +0200
Subject: [PATCH] caps: more debugging

---
 caps.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/caps.c b/caps.c
index c73a0ec..5b7a8f0 100644
--- a/caps.c
+++ b/caps.c
@@ -158,6 +158,8 @@ bool capsInitNs(struct nsjconf_t *nsjconf)
 	if (nsjconf->keep_caps) {
 		for (size_t i = 0; i < ARRAYSIZE(capNames); i++) {
 			if (capsGetCap(cap_orig, capNames[i].val, CAP_PERMITTED) == CAP_SET) {
+				LOG_D("Adding '%s' capability to the inheritable set",
+				      capNames[i].name);
 				capsSetCap(cap_new, capNames[i].val, CAP_INHERITABLE);
 			} else {
 				capsClrFlag(cap_new, capNames[i].val, CAP_INHERITABLE);
@@ -174,6 +176,8 @@ bool capsInitNs(struct nsjconf_t *nsjconf)
 				capsFree(cap_new);
 				return false;
 			}
+			LOG_D("Adding '%s' capability to the inheritable set",
+			      capsValToStr(p->val));
 			capsSetCap(cap_new, p->val, CAP_INHERITABLE);
 		}
 	}
@@ -192,6 +196,7 @@ bool capsInitNs(struct nsjconf_t *nsjconf)
 			if (capsGetCap(cap_orig, capNames[i].val, CAP_PERMITTED) != CAP_SET) {
 				continue;
 			}
+			LOG_D("Adding '%s' capability to the ambient set", capNames[i].name);
 			if (prctl
 			    (PR_CAP_AMBIENT, PR_CAP_AMBIENT_RAISE, (unsigned long)capNames[i].val,
 			     0UL, 0UL) == -1) {
@@ -202,6 +207,7 @@ bool capsInitNs(struct nsjconf_t *nsjconf)
 	} else {
 		struct ints_t *p;
 		TAILQ_FOREACH(p, &nsjconf->caps, pointers) {
+			LOG_D("Adding '%s' capability to the ambient set", capsValToStr(p->val));
 			if (prctl
 			    (PR_CAP_AMBIENT, PR_CAP_AMBIENT_RAISE, (unsigned long)p->val, 0UL,
 			     0UL) == -1) {