From 31a3571a779801a6bbadc9d2c38c07160a6c2ea2 Mon Sep 17 00:00:00 2001
From: Jan Beich <jbeich@FreeBSD.org>
Date: Mon, 13 Sep 2021 13:30:59 +0000
Subject: [PATCH] cage: allow running as root when not using setuid bit

---
 cage.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/cage.c b/cage.c
index 5392535..609d49d 100644
--- a/cage.c
+++ b/cage.c
@@ -145,7 +145,12 @@ cleanup_primary_client(pid_t pid)
 static bool
 drop_permissions(void)
 {
+	if (getuid() == 0 || getgid() == 0) {
+		wlr_log(WLR_INFO, "Running as root user, this is dangerous");
+		return true;
+	}
 	if (getuid() != geteuid() || getgid() != getegid()) {
+		wlr_log(WLR_INFO, "setuid/setgid bit detected, dropping permissions");
 		// Set the gid and uid in the correct order.
 		if (setgid(getgid()) != 0 || setuid(getuid()) != 0) {
 			wlr_log(WLR_ERROR, "Unable to drop root, refusing to start");