[GH-ISSUE #11] --overlay not working for me on Arch Linux #12

New issue

Closed

opened 2026-05-05 04:43:56 -06:00 by gitea-mirror · 8 comments

gitea-mirror commented 2026-05-05 04:43:56 -06:00

Owner

Copy link

Originally created by @tbu- on GitHub (Aug 10, 2015).
Original GitHub issue: https://github.com/netblue30/firejail/issues/11

Starting with --overlay:

$ firejail --overlay 
Parent pid 32340, child pid 32341
Warning: /var/lock not mounted
Error mounting /var/tmp:fs_var_tmp(302): No such file or directory
Error: cannot establish communication with the parent, exiting...

$ uname -r
4.1.4-1-ARCH

Originally created by @tbu- on GitHub (Aug 10, 2015). Original GitHub issue: https://github.com/netblue30/firejail/issues/11 Starting with `--overlay`: ``` $ firejail --overlay Parent pid 32340, child pid 32341 Warning: /var/lock not mounted Error mounting /var/tmp:fs_var_tmp(302): No such file or directory Error: cannot establish communication with the parent, exiting... ``` ``` $ uname -r 4.1.4-1-ARCH ```

gitea-mirror 2026-05-05 04:43:56 -06:00

• closed this issue
• added the
  bug
  label

gitea-mirror commented 2026-05-05 04:44:04 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 11, 2015):

Can you please run "firejail --debug --overlay" and print the output here? Thanks!

<!-- gh-comment-id:129843676 --> @netblue30 commented on GitHub (Aug 11, 2015): Can you please run "firejail --debug --overlay" and print the output here? Thanks!

gitea-mirror commented 2026-05-05 04:44:06 -06:00

Author

Owner

Copy link

@tbu- commented on GitHub (Aug 11, 2015):

I get:

$ firejail --debug --overlay
Command name #bash#
Using the local network stack
Parent pid 24836, child pid 24838
Initializing child process
PID namespace installed
Linux kernel version 4.1
Mounting tmpfs on /tmp/firejail/mnt directory
Mounting OverlayFS
Mounting /dev
Warning: /var/lock not mounted
Mounting tmpfs on /var/tmp
Error mounting /var/tmp:fs_var_tmp(302): No such file or directory
Error: cannot establish communication with the parent, exiting...

<!-- gh-comment-id:129846267 --> @tbu- commented on GitHub (Aug 11, 2015): I get: ``` $ firejail --debug --overlay Command name #bash# Using the local network stack Parent pid 24836, child pid 24838 Initializing child process PID namespace installed Linux kernel version 4.1 Mounting tmpfs on /tmp/firejail/mnt directory Mounting OverlayFS Mounting /dev Warning: /var/lock not mounted Mounting tmpfs on /var/tmp Error mounting /var/tmp:fs_var_tmp(302): No such file or directory Error: cannot establish communication with the parent, exiting... ```

gitea-mirror commented 2026-05-05 04:44:09 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 11, 2015):

I'll have to install Arch here and take a look. Thanks for the bug!

<!-- gh-comment-id:129850418 --> @netblue30 commented on GitHub (Aug 11, 2015): I'll have to install Arch here and take a look. Thanks for the bug!

gitea-mirror commented 2026-05-05 04:44:12 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 11, 2015):

I've modified something in the code, it might fix the problem. Give it a try! Thanks.

<!-- gh-comment-id:129853612 --> @netblue30 commented on GitHub (Aug 11, 2015): I've modified something in the code, it might fix the problem. Give it a try! Thanks.

gitea-mirror commented 2026-05-05 04:44:15 -06:00

Author

Owner

Copy link

@tbu- commented on GitHub (Aug 11, 2015):

It partially works. It somehow doesn't mount my home directory though...

$ firejail --overlay
Parent pid 31836, child pid 31837
Warning: /var/lock not mounted
Warning: /var/tmp not mounted
Warning: cannot mount tmpfs in top of /var/log
Warning: cannot find /var/run/utmp
Warning: failed to unmount /sys
Child process initialized
$ ls ~
ls: cannot access /home/user: No such file or directory

<!-- gh-comment-id:129858020 --> @tbu- commented on GitHub (Aug 11, 2015): It partially works. It somehow doesn't mount my home directory though... ``` $ firejail --overlay Parent pid 31836, child pid 31837 Warning: /var/lock not mounted Warning: /var/tmp not mounted Warning: cannot mount tmpfs in top of /var/log Warning: cannot find /var/run/utmp Warning: failed to unmount /sys Child process initialized $ ls ~ ls: cannot access /home/user: No such file or directory ```

gitea-mirror commented 2026-05-05 04:44:18 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 11, 2015):

It looks like I still have to install Arch. It will take a couple of days.

<!-- gh-comment-id:129858338 --> @netblue30 commented on GitHub (Aug 11, 2015): It looks like I still have to install Arch. It will take a couple of days.

gitea-mirror commented 2026-05-05 04:44:20 -06:00

Author

Owner

Copy link

@ghost commented on GitHub (Aug 23, 2015):

I'm using Parabola (Arch derivative) and I'm able to recreate this issue. I can also confirm that I do not have the same issue with either Ubuntu 14.04 or 15.04.

I've created a stub of firejail's functions, basically only mounting the overlay and chroot. I cannot see anything in /home even in this stripped version.
http://pastebin.com/frDpxiNZ

% ls -la /home
total 48
drwxr-xr-x  7 root     root      4096 Aug 22 21:25 .
drwxr-xr-x 17 root     root      4096 Aug 20 21:55 ..
drwxr-xr-x  3 root     root      4096 Aug 13 05:13 .ecryptfs
drwx------  2 root     root     16384 Mar 20 22:50 lost+found
drwx------ 43 username username 12288 Aug 23 09:49 username
drwx------ 36 username username  4096 Aug 13 05:11 username.8vIxxhr6
drwx------  2 tester   tester    4096 Aug 22 21:27 tester
% fj-stub
% ls -la /home
total 8
drwxr-xr-x 2 root root 4096 Feb 13  2015 .
drwxr-xr-x 1 root root 4096 Aug 23 06:54 ..
% exit
% sudo fj-stub
% ls -la /home
total 8
drwxr-xr-x 2 root root 4096 Feb 13  2015 .
drwxr-xr-x 1 root root 4096 Aug 23 06:54 ..

There seems to be some fundamental difference on how overlayfs/chroot is working on either 1) Arch or 2) the newest kernel version.

<!-- gh-comment-id:133852081 --> @ghost commented on GitHub (Aug 23, 2015): I'm using Parabola (Arch derivative) and I'm able to recreate this issue. I can also confirm that I do not have the same issue with either Ubuntu 14.04 or 15.04. I've created a stub of firejail's functions, basically only mounting the overlay and chroot. I cannot see anything in /home even in this stripped version. http://pastebin.com/frDpxiNZ ``` % ls -la /home total 48 drwxr-xr-x 7 root root 4096 Aug 22 21:25 . drwxr-xr-x 17 root root 4096 Aug 20 21:55 .. drwxr-xr-x 3 root root 4096 Aug 13 05:13 .ecryptfs drwx------ 2 root root 16384 Mar 20 22:50 lost+found drwx------ 43 username username 12288 Aug 23 09:49 username drwx------ 36 username username 4096 Aug 13 05:11 username.8vIxxhr6 drwx------ 2 tester tester 4096 Aug 22 21:27 tester % fj-stub % ls -la /home total 8 drwxr-xr-x 2 root root 4096 Feb 13 2015 . drwxr-xr-x 1 root root 4096 Aug 23 06:54 .. % exit % sudo fj-stub % ls -la /home total 8 drwxr-xr-x 2 root root 4096 Feb 13 2015 . drwxr-xr-x 1 root root 4096 Aug 23 06:54 .. ``` There seems to be some fundamental difference on how overlayfs/chroot is working on either 1) Arch or 2) the newest kernel version.

gitea-mirror commented 2026-05-05 04:44:23 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 26, 2015):

Fixed, thank you for all your input.

<!-- gh-comment-id:134982547 --> @netblue30 commented on GitHub (Aug 26, 2015): Fixed, thank you for all your input.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#12

No description provided.