From 0983bfe3bc58ad83a0a474435a3d7f1adfdb0b71 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Wed, 6 Apr 2016 14:56:04 -0400
Subject: grsecurity: --bandwidth

---
 src/firejail/bandwidth.c | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'src')

diff --git a/src/firejail/bandwidth.c b/src/firejail/bandwidth.c
index 10032b87a..b7bfb43e6 100644
--- a/src/firejail/bandwidth.c
+++ b/src/firejail/bandwidth.c
@@ -360,7 +360,9 @@ void bandwidth_pid(pid_t pid, const char *command, const char *dev, int down, in
 	//************************
 	// verify sandbox
 	//************************
+	EUID_ROOT();
 	char *comm = pid_proc_comm(pid);
+	EUID_USER();
 	if (!comm) {
 		fprintf(stderr, "Error: cannot find sandbox\n");
 		exit(1);
@@ -374,7 +376,9 @@ void bandwidth_pid(pid_t pid, const char *command, const char *dev, int down, in
 	free(comm);
 	
 	// check network namespace
+	EUID_ROOT();
 	char *cmd = pid_proc_cmdline(pid);
+	EUID_USER();
 	if (!cmd || strstr(cmd, "--net") == NULL) {
 		fprintf(stderr, "Error: the sandbox doesn't use a new network namespace\n");
 		exit(1);
-- 
cgit v1.2.3-70-g09d2