diff options
-rw-r--r-- | src/firejail/fs_whitelist.c | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/src/firejail/fs_whitelist.c b/src/firejail/fs_whitelist.c index 2b63d949d..60bb0f6ed 100644 --- a/src/firejail/fs_whitelist.c +++ b/src/firejail/fs_whitelist.c | |||
@@ -37,6 +37,7 @@ static char *dentry[] = { | |||
37 | #define EMPTY_STRING ("") | 37 | #define EMPTY_STRING ("") |
38 | #define MAXBUF 4098 | 38 | #define MAXBUF 4098 |
39 | static char *resolve_downloads(int nowhitelist_flag) { | 39 | static char *resolve_downloads(int nowhitelist_flag) { |
40 | EUID_ASSERT(); | ||
40 | char *fname; | 41 | char *fname; |
41 | struct stat s; | 42 | struct stat s; |
42 | 43 | ||
@@ -362,6 +363,7 @@ void fs_whitelist(void) { | |||
362 | errExit("failed allocating memory for nowhitelist entries"); | 363 | errExit("failed allocating memory for nowhitelist entries"); |
363 | 364 | ||
364 | // verify whitelist files, extract symbolic links, etc. | 365 | // verify whitelist files, extract symbolic links, etc. |
366 | EUID_USER(); | ||
365 | while (entry) { | 367 | while (entry) { |
366 | int nowhitelist_flag = 0; | 368 | int nowhitelist_flag = 0; |
367 | 369 | ||
@@ -653,6 +655,7 @@ void fs_whitelist(void) { | |||
653 | assert(nowhitelist); | 655 | assert(nowhitelist); |
654 | free(nowhitelist); | 656 | free(nowhitelist); |
655 | 657 | ||
658 | EUID_ROOT(); | ||
656 | // /home/user | 659 | // /home/user |
657 | if (home_dir) { | 660 | if (home_dir) { |
658 | // keep a copy of real home dir in RUN_WHITELIST_HOME_USER_DIR | 661 | // keep a copy of real home dir in RUN_WHITELIST_HOME_USER_DIR |