policycoreutils: setsebool should inform users they need to be root Add a different error message when setsebool is unable to run because the user is not root. This just helps people who try to change booleans based on setroubleshoot output and don't know what went wrong. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Dan Walsh <dwalsh@redhat.com>

commit: 4c63498a4ce04e36398d332cc793dd43dd48fb30 [log] [tgz]
author: Eric Paris <eparis@redhat.com> Thu Jul 07 15:03:51 2011 +0200
committer: Eric Paris <eparis@redhat.com> Wed Aug 03 18:02:36 2011 -0400
tree: 044a4f5ccd2597977d75c27bffbd0454f7dbf223
parent: 98dcd2497613cd9d79d67ce7df669e36d6cfd1e6 [diff]
diff --git a/policycoreutils/setsebool/setsebool.c b/policycoreutils/setsebool/setsebool.c
index dc037dd..d6c041b 100644
--- a/policycoreutils/setsebool/setsebool.c
+++ b/policycoreutils/setsebool/setsebool.c

@@ -82,8 +82,13 @@
 		if (errno == ENOENT)
 			fprintf(stderr, "Could not change active booleans: "
 				"Invalid boolean\n");
-		else if (errno)
-			perror("Could not change active booleans");
+		else if (errno) {
+			if (getuid() == 0) {
+				perror("Could not change active booleans");
+			} else {
+				perror("Could not change active booleans. Please try as root");
+			}
+		}
 
 		return -1;
 	}
@@ -115,8 +120,13 @@
 		goto err;
 
 	} else if (managed == 0) {
-		fprintf(stderr,
-			"Cannot set persistent booleans without managed policy.\n");
+		if (getuid() == 0) {
+			fprintf(stderr,
+				"Cannot set persistent booleans without managed policy.\n");
+		} else {
+			fprintf(stderr,
+				"Cannot set persistent booleans, please try as root.\n");
+		}
 		goto err;
 	}
commit	4c63498a4ce04e36398d332cc793dd43dd48fb30	[log] [tgz]
author	Eric Paris <eparis@redhat.com>	Thu Jul 07 15:03:51 2011 +0200
committer	Eric Paris <eparis@redhat.com>	Wed Aug 03 18:02:36 2011 -0400
tree	044a4f5ccd2597977d75c27bffbd0454f7dbf223
parent	98dcd2497613cd9d79d67ce7df669e36d6cfd1e6 [diff]