From 5b921120a3615534b8cfce39090224c1e22edb47 Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Tue, 8 Jun 2021 16:00:19 +0200
Subject: add more EUID switching

always access files under control of the user
with effective user id of the user
---
 src/firejail/fs_dev.c | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/firejail/fs_dev.c')

diff --git a/src/firejail/fs_dev.c b/src/firejail/fs_dev.c
index 8c2870a4d..8cc3ecc62 100644
--- a/src/firejail/fs_dev.c
+++ b/src/firejail/fs_dev.c
@@ -187,8 +187,10 @@ static void mount_dev_shm(void) {
 static void process_dev_shm(void) {
 	// Jack audio keeps an Unix socket under (/dev/shm/jack_default_1000_0 or /dev/shm/jack/...)
 	// looking for jack socket
+	EUID_USER();
 	glob_t globbuf;
 	int globerr = glob(RUN_DEV_DIR "/shm/jack*", GLOB_NOSORT, NULL, &globbuf);
+	EUID_ROOT();
 	if (globerr && !arg_keep_dev_shm) {
 		empty_dev_shm();
 		return;
-- 
cgit v1.2.3-54-g00ecf