From a8dc9a5926beedccfd79b62cd4719277c1a9f6ca Mon Sep 17 00:00:00 2001
From: startx2017 <vradu.startx@yandex.com>
Date: Fri, 7 Jul 2017 06:55:37 -0400
Subject: bugfix: fix --allusers when running as root

---
 src/firejail/fs_home.c | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'src')

diff --git a/src/firejail/fs_home.c b/src/firejail/fs_home.c
index e5e068583..9e3678c33 100644
--- a/src/firejail/fs_home.c
+++ b/src/firejail/fs_home.c
@@ -284,9 +284,13 @@ void fs_private(void) {
 	// mask /home
 	if (arg_debug)
 		printf("Mounting a new /home directory\n");
-	if (mount("tmpfs", "/home", "tmpfs", MS_NOSUID | MS_NODEV | MS_NOEXEC | MS_STRICTATIME | MS_REC,  "mode=755,gid=0") < 0)
-		errExit("mounting home directory");
-	fs_logger("tmpfs /home");
+	if (u == 0 && arg_allusers) // allow --allusers when starting the sandbox as root
+		;
+	else {
+		if (mount("tmpfs", "/home", "tmpfs", MS_NOSUID | MS_NODEV | MS_NOEXEC | MS_STRICTATIME | MS_REC,  "mode=755,gid=0") < 0)
+			errExit("mounting home directory");
+		fs_logger("tmpfs /home");
+	}
 
 	// mask /root
 	if (arg_debug)
-- 
cgit v1.2.3-70-g09d2