[GH-ISSUE #2018] Cannot run Geary 0.12.2-1 #1357

New issue

Closed

opened 2026-05-05 07:55:31 -06:00 by gitea-mirror · 7 comments

gitea-mirror commented 2026-05-05 07:55:31 -06:00

Owner

Copy link

Originally created by @Bundy01 on GitHub (Jun 30, 2018).
Original GitHub issue: https://github.com/netblue30/firejail/issues/2018

Hi,
I can't launch Geary with Firejail:

Reading profile /etc/firejail/geary.profile
Reading profile /etc/firejail/whitelist-common.inc
Reading profile /etc/firejail/firefox.profile
Reading profile /etc/firejail/firefox-common.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/whitelist-common.inc
Reading profile /etc/firejail/whitelist-var-common.inc
Parent pid 5039, child pid 5040
Warning: An abstract unix socket for session D-BUS might still be available. Use --net or remove unix from --protocol set.
Warning: /sbin directory link was not blacklisted
Warning: /usr/sbin directory link was not blacklisted
Post-exec seccomp protector enabled
Warning fseccomp: syscall "ni_syscall" not available on this platform
Warning fseccomp: syscall "umount" not available on this platform
Seccomp list in: @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice, check list: @default-keep, prelist: adjtimex,clock_adjtime,clock_settime,settimeofday,modify_ldt,lookup_dcookie,perf_event_open,process_vm_writev,delete_module,finit_module,init_module,_sysctl,afs_syscall,create_module,get_kernel_syms,getpmsg,putpmsg,query_module,security,sysfs,tuxcall,uselib,ustat,vserver,ioperm,iopl,kexec_load,kexec_file_load,reboot,set_mempolicy,migrate_pages,move_pages,mbind,swapon,swapoff,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount2,userfaultfd,vhangup,vmsplice,
Child process initialized in 167.34 ms

(geary:9): GLib-GIO-CRITICAL **: 23:41:27.086: g_dbus_proxy_new_sync: assertion 'G_IS_DBUS_CONNECTION (connection)' failed

(geary:9): libnotify-WARNING **: 23:41:27.429: Failed to connect to proxy.

Do you know the proxy management file to add for Firejail?
Thanks.

Originally created by @Bundy01 on GitHub (Jun 30, 2018). Original GitHub issue: https://github.com/netblue30/firejail/issues/2018 Hi, I can't launch Geary with Firejail: ``` Reading profile /etc/firejail/geary.profile Reading profile /etc/firejail/whitelist-common.inc Reading profile /etc/firejail/firefox.profile Reading profile /etc/firejail/firefox-common.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/whitelist-common.inc Reading profile /etc/firejail/whitelist-var-common.inc Parent pid 5039, child pid 5040 Warning: An abstract unix socket for session D-BUS might still be available. Use --net or remove unix from --protocol set. Warning: /sbin directory link was not blacklisted Warning: /usr/sbin directory link was not blacklisted Post-exec seccomp protector enabled Warning fseccomp: syscall "ni_syscall" not available on this platform Warning fseccomp: syscall "umount" not available on this platform Seccomp list in: @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice, check list: @default-keep, prelist: adjtimex,clock_adjtime,clock_settime,settimeofday,modify_ldt,lookup_dcookie,perf_event_open,process_vm_writev,delete_module,finit_module,init_module,_sysctl,afs_syscall,create_module,get_kernel_syms,getpmsg,putpmsg,query_module,security,sysfs,tuxcall,uselib,ustat,vserver,ioperm,iopl,kexec_load,kexec_file_load,reboot,set_mempolicy,migrate_pages,move_pages,mbind,swapon,swapoff,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount2,userfaultfd,vhangup,vmsplice, Child process initialized in 167.34 ms (geary:9): GLib-GIO-CRITICAL **: 23:41:27.086: g_dbus_proxy_new_sync: assertion 'G_IS_DBUS_CONNECTION (connection)' failed (geary:9): libnotify-WARNING **: 23:41:27.429: Failed to connect to proxy. ``` Do you know the proxy management file to add for Firejail? Thanks.

gitea-mirror closed this issue 2026-05-05 07:55:33 -06:00

gitea-mirror commented 2026-05-05 07:55:35 -06:00

Author

Owner

Copy link

@Bundy01 commented on GitHub (Jun 30, 2018):

I modified the geary profile by adding ~/.config/geary, but it still doesn't work :(

# Firejail profile for geary
# This file is overwritten after every install/update
# Persistent local customizations
include /etc/firejail/geary.local
# Persistent global definitions
include /etc/firejail/globals.local

# Users have Geary set to open a browser by clicking a link in an email
# We are not allowed to blacklist browser-specific directories

noblacklist ${HOME}/.gnupg
noblacklist ${HOME}/.local/share/geary
noblacklist ${HOME}/.config/geary

mkdir ${HOME}/.gnupg
mkdir ${HOME}/.config/geary
mkdir ${HOME}/.local/share/geary
whitelist ${HOME}/.gnupg
whitelist ${HOME}/.config/geary
whitelist ${HOME}/.local/share/geary
include /etc/firejail/whitelist-common.inc

ignore private-tmp

read-only ${HOME}/.config/mimeapps.list

# allow browsers
# Redirect
include /etc/firejail/firefox.profile

<!-- gh-comment-id:401569107 --> @Bundy01 commented on GitHub (Jun 30, 2018): I modified the geary profile by adding ~/.config/geary, but it still doesn't work :( ``` # Firejail profile for geary # This file is overwritten after every install/update # Persistent local customizations include /etc/firejail/geary.local # Persistent global definitions include /etc/firejail/globals.local # Users have Geary set to open a browser by clicking a link in an email # We are not allowed to blacklist browser-specific directories noblacklist ${HOME}/.gnupg noblacklist ${HOME}/.local/share/geary noblacklist ${HOME}/.config/geary mkdir ${HOME}/.gnupg mkdir ${HOME}/.config/geary mkdir ${HOME}/.local/share/geary whitelist ${HOME}/.gnupg whitelist ${HOME}/.config/geary whitelist ${HOME}/.local/share/geary include /etc/firejail/whitelist-common.inc ignore private-tmp read-only ${HOME}/.config/mimeapps.list # allow browsers # Redirect include /etc/firejail/firefox.profile ```

gitea-mirror commented 2026-05-05 07:55:37 -06:00

Author

Owner

Copy link

@Bundy01 commented on GitHub (Jul 3, 2018):

I found it :)
Just add whitelist ${HOME}/.config/geary and ignore nodbus in the profile file.

ignore nodbus: to delete the error message from my first message and run geary
whitelist ${HOME}/.config/geary: to validate my accounts, without that I have a pop-up window asking me to identify myself.

<!-- gh-comment-id:401987957 --> @Bundy01 commented on GitHub (Jul 3, 2018): I found it :) Just add `whitelist ${HOME}/.config/geary` and `ignore nodbus` in the profile file. **ignore nodbus**: to delete the error message from my first message and run geary **whitelist ${HOME}/.config/geary**: to validate my accounts, without that I have a pop-up window asking me to identify myself.

gitea-mirror commented 2026-05-05 07:55:38 -06:00

Author

Owner

Copy link

@Bundy01 commented on GitHub (Jul 3, 2018):

# Firejail profile for geary
# This file is overwritten after every install/update
# Persistent local customizations
include /etc/firejail/geary.local
# Persistent global definitions
include /etc/firejail/globals.local

# Users have Geary set to open a browser by clicking a link in an email
# We are not allowed to blacklist browser-specific directories

noblacklist ${HOME}/.gnupg
noblacklist ${HOME}/.local/share/geary

mkdir ${HOME}/.gnupg
mkdir ${HOME}/.local/share/geary

whitelist ${HOME}/.gnupg
whitelist ${HOME}/.config/geary
whitelist ${HOME}/.local/share/geary

include /etc/firejail/whitelist-common.inc

ignore nodbus
ignore private-tmp

read-only ${HOME}/.config/mimeapps.list

# allow browsers
# Redirect
include /etc/firejail/firefox.profile

<!-- gh-comment-id:401990766 --> @Bundy01 commented on GitHub (Jul 3, 2018): ``` # Firejail profile for geary # This file is overwritten after every install/update # Persistent local customizations include /etc/firejail/geary.local # Persistent global definitions include /etc/firejail/globals.local # Users have Geary set to open a browser by clicking a link in an email # We are not allowed to blacklist browser-specific directories noblacklist ${HOME}/.gnupg noblacklist ${HOME}/.local/share/geary mkdir ${HOME}/.gnupg mkdir ${HOME}/.local/share/geary whitelist ${HOME}/.gnupg whitelist ${HOME}/.config/geary whitelist ${HOME}/.local/share/geary include /etc/firejail/whitelist-common.inc ignore nodbus ignore private-tmp read-only ${HOME}/.config/mimeapps.list # allow browsers # Redirect include /etc/firejail/firefox.profile ```

gitea-mirror commented 2026-05-05 07:55:40 -06:00

Author

Owner

Copy link

@Fred-Barclay commented on GitHub (Jul 3, 2018):

@Bundy01 Thanks! What distro are you using?

<!-- gh-comment-id:401999844 --> @Fred-Barclay commented on GitHub (Jul 3, 2018): @Bundy01 Thanks! What distro are you using?

gitea-mirror commented 2026-05-05 07:55:41 -06:00

Author

Owner

Copy link

@Bundy01 commented on GitHub (Jul 3, 2018):

Archlinux

<!-- gh-comment-id:402000184 --> @Bundy01 commented on GitHub (Jul 3, 2018): Archlinux

gitea-mirror commented 2026-05-05 07:55:42 -06:00

Author

Owner

Copy link

@Fred-Barclay commented on GitHub (Jul 3, 2018):

I can launch it on Arch with the original profile -- were you able to launch it at all?

<!-- gh-comment-id:402000363 --> @Fred-Barclay commented on GitHub (Jul 3, 2018): I can launch it on Arch with the original profile -- were you able to launch it at all?

gitea-mirror commented 2026-05-05 07:55:43 -06:00

Author

Owner

Copy link

@Bundy01 commented on GitHub (Jul 3, 2018):

Not without the addition I mentioned, I had the error of post #1 extension in the terminal.

<!-- gh-comment-id:402000773 --> @Bundy01 commented on GitHub (Jul 3, 2018): Not without the addition I mentioned, I had the error of post #1 extension in the terminal.

gitea-mirror referenced this issue 2026-05-05 10:10:27 -06:00

[PR #1357] [MERGED] Add profile for Liferea #3922

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#1357

No description provided.