github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

[GH-ISSUE #3473] zathura and mpv (maybe others as well) "fstat: fs.c:497 fs_remount_simple" #2182

New issue
Closed
opened 2026-05-05 08:51:51 -06:00 by gitea-mirror · 1 comment
gitea-mirror commented 2026-05-05 08:51:51 -06:00
Owner
Copy link

Originally created by @diepfote on GitHub (Jun 21, 2020).
Original GitHub issue: https://github.com/netblue30/firejail/issues/3473

Write clear, concise and in textual form.

Bug and expected behavior

  • Describe the bug.
    zathura refuses to open with firejail:
Error fstat: fs.c:497 fs_remount_simple: Transport endpoint is not connected
Error: proc 89389 cannot sync with peer: unexpected EOF
Peer 89412 unexpectedly exited with status 1
  • What did you expect to happen?
    Zathura should display a pdf

No profile or disabling firejail

  • What changed calling firejail --noprofile PROGRAM in a shell?
    No errors.
  • What changed calling the program by path=without firejail (check whereis PROGRAM, firejail --list, stat $programpath)?
    No errors.

Reproduce
Steps to reproduce the behavior:

  1. See debug command (or just open a file)

Environment

  • Linux distribution and version (ie output of lsb_release -a)
  • Firejail version (output of firejail --version) exclusive or used git commit (git rev-parse HEAD)
    1a47e5b
  • What other programs interact with the affected program for the functionality?
  • Are these listed in the profile?

Additional context
It's not just zathura, I checked mpv as well, firefox appears to be fine though.
I do not have a zathura.local.

debug output 
$ firejail --debug /usr/bin/zathura 6_Gradient\ descent_modified.pdf > /tmp/debug 2>&1

Reading profile /etc/firejail/zathura.profile
Autoselecting /usr/bin/fish as shell
Building quoted command line: '/usr/bin/zathura' '6_Gradient descent_modified.pdf' 
Command name #zathura#
Found zathura.profile profile in /etc/firejail directory
Reading profile /etc/firejail/disable-common.inc
Found disable-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-devel.inc
Found disable-devel.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-exec.inc
Found disable-exec.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-interpreters.inc
Found disable-interpreters.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-passwdmgr.inc
Found disable-passwdmgr.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-programs.inc
Found disable-programs.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-shell.inc
Found disable-shell.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-xdg.inc
Found disable-xdg.inc profile in /etc/firejail directory
Reading profile /etc/firejail/whitelist-usr-share-common.inc
Found whitelist-usr-share-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/whitelist-var-common.inc
Found whitelist-var-common.inc profile in /etc/firejail directory
DISPLAY=:0 parsed as 0
Parent pid 80574, child pid 80597
Enabling IPC namespace
1 program installed in 1.56 ms
Enabling IPC namespace
Initializing child process
PID namespace installed
Mounting tmpfs on /run/firejail/mnt directory
Creating empty /run/firejail/mnt/seccomp directory
Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file
sbox run: /run/firejail/lib/fnet ifup lo 
Network namespace enabled, only loopback interface available
Build protocol filter: unix
sbox run: /run/firejail/lib/fseccomp protocol build unix /run/firejail/mnt/seccomp/seccomp.protocol 
Mounting /proc filesystem representing the PID namespace
Basic read-only filesystem:
Mounting read-only /etc
1410 1354 254:11 /etc /etc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1410 fsname=/etc dir=/etc fstype=ext4
Mounting noexec /etc
1411 1410 254:11 /etc /etc ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1411 fsname=/etc dir=/etc fstype=ext4
Mounting read-only /var
1415 1412 0:49 / /var/tmp rw,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700
mountid=1415 fsname=/ dir=/var/tmp fstype=tmpfs
Mounting read-only /var/lib/containers
1416 1413 0:47 / /var/lib/containers ro,nosuid,nodev,noexec,relatime master:71 - tmpfs tmpfs rw,nr_inodes=5120,mode=700
mountid=1416 fsname=/ dir=/var/lib/containers fstype=tmpfs
Mounting read-only /var/lib/docker
1417 1414 0:48 / /var/lib/docker ro,nosuid,nodev,noexec,relatime master:73 - tmpfs tmpfs rw,nr_inodes=5120,mode=700
mountid=1417 fsname=/ dir=/var/lib/docker fstype=tmpfs
Mounting read-only /var/tmp
1418 1415 0:49 / /var/tmp ro,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700
mountid=1418 fsname=/ dir=/var/tmp fstype=tmpfs
Mounting noexec /var
1427 1426 0:49 / /var/tmp ro,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700
mountid=1427 fsname=/ dir=/var/tmp fstype=tmpfs
Mounting read-only /usr
1428 1354 254:11 /usr /usr ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1428 fsname=/usr dir=/usr fstype=ext4
Mounting tmpfs on /var/lock
Mounting tmpfs on /var/tmp
Mounting tmpfs on /var/log
Create the new utmp file
Mount the new utmp file
Generating a new machine-id
installing a new /etc/machine-id
Cleaning /home directory
Cleaning /run/user directory
Sanitizing /etc/passwd, UID_MIN 1000
Sanitizing /etc/group, GID_MIN 1000
Disable /run/firejail/network
Disable /run/firejail/bandwidth
Disable /run/firejail/name
Disable /run/firejail/profile
Disable /run/firejail/x11
Mounting tmpfs on /dev
mounting /run/firejail/mnt/dev/dri directory
Process /dev/shm directory
Copying files in the new bin directory
Checking /usr/local/bin/zathura
firejail exec symlink detected
Checking /usr/bin/zathura
sbox run: /run/firejail/lib/fcopy /usr/bin/zathura /run/firejail/mnt/bin 
Mount-bind /run/firejail/mnt/bin on top of /usr/local/bin
Mount-bind /run/firejail/mnt/bin on top of /usr/bin
Mount-bind /run/firejail/mnt/bin on top of /bin
Mount-bind /run/firejail/mnt/bin on top of /usr/local/games
Mount-bind /run/firejail/mnt/bin on top of /usr/local/sbin
Mount-bind /run/firejail/mnt/bin on top of /usr/sbin
Mount-bind /run/firejail/mnt/bin on top of /sbin
Warning: file /etc/alternatives not found.
Warning: skipping alternatives for private /etc
Private /etc installed in 7.64 ms
Mounting tmpfs on /home/foo/.cache
1478 1441 0:97 / /home/foo/.cache rw,nosuid,nodev,relatime - tmpfs tmpfs rw,mode=700,uid=1000,gid=1000
mountid=1478 fsname=/ dir=/home/foo/.cache fstype=tmpfs
Generate private-tmp whitelist commands
Creating empty /run/firejail/mnt/dbus directory
Creating empty /run/firejail/mnt/dbus/user file
Creating empty /run/firejail/mnt/dbus/system file
blacklist /run/user/1000/bus
blacklist /run/dbus/system_bus_socket
blacklist /run/firejail/dbus
Mounting read-only /proc/sys
Remounting /sys directory
Disable /sys/firmware
Disable /sys/hypervisor
Disable /sys/power
Disable /sys/kernel/debug
Disable /proc/sys/fs/binfmt_misc
Disable /proc/sys/kernel/core_pattern
Disable /proc/sys/kernel/modprobe
Disable /proc/sysrq-trigger
Disable /proc/sys/vm/panic_on_oom
Disable /proc/irq
Disable /proc/bus
Disable /proc/sched_debug
Disable /proc/timer_list
Disable /proc/kallsyms
Disable /usr/lib/modules (requested /lib/modules)
Disable /boot
Disable /run/user/1000/gnupg
Disable /run/user/1000/systemd
Disable /proc/kmsg
Copying files in the new /etc directory:
copying /etc/fonts to private /etc
Creating empty /run/firejail/mnt/etc/fonts directory
sbox run: /run/firejail/lib/fcopy /etc/fonts /run/firejail/mnt/etc/fonts 
copying /etc/ld.so.cache to private /etc
sbox run: /run/firejail/lib/fcopy /etc/ld.so.cache /run/firejail/mnt/etc 
copying /etc/ld.so.conf to private /etc
sbox run: /run/firejail/lib/fcopy /etc/ld.so.conf /run/firejail/mnt/etc 
copying /etc/ld.so.conf.d to private /etc
Creating empty /run/firejail/mnt/etc/ld.so.conf.d directory
sbox run: /run/firejail/lib/fcopy /etc/ld.so.conf.d /run/firejail/mnt/etc/ld.so.conf.d 
copying /etc/ld.so.preload to private /etc
sbox run: /run/firejail/lib/fcopy /etc/ld.so.preload /run/firejail/mnt/etc 
copying /etc/machine-id to private /etc
sbox run: /run/firejail/lib/fcopy /etc/machine-id /run/firejail/mnt/etc 
Mount-bind /run/firejail/mnt/etc on top of /etc
Warning: file /usr/etc/alternatives not found.
Warning: skipping alternatives for private /usr/etc
Warning: file /usr/etc/fonts not found.
Warning: skipping fonts for private /usr/etc
Warning: file /usr/etc/ld.so.cache not found.
Warning: skipping ld.so.cache for private /usr/etc
Warning: file /usr/etc/ld.so.conf not found.
Warning: skipping ld.so.conf for private /usr/etc
Warning: file /usr/etc/ld.so.conf.d not found.
Warning: skipping ld.so.conf.d for private /usr/etc
Warning: file /usr/etc/ld.so.preload not found.
Warning: skipping ld.so.preload for private /usr/etc
Warning: file /usr/etc/machine-id not found.
Warning: skipping machine-id for private /usr/etc
Private /usr/etc installed in 0.09 ms
Copying files in the new /usr/etc directory:
Mount-bind /run/firejail/mnt/usretc on top of /usr/etc
Debug 456: new_name #/usr/share/doc#, whitelist
Debug 456: new_name #/usr/share/zathura#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/zathura
	expanded: /usr/share/zathura
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/alsa#, whitelist
Debug 456: new_name #/usr/share/applications#, whitelist
Debug 456: new_name #/usr/share/ca-certificates#, whitelist
Debug 456: new_name #/usr/share/crypto-policies#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/crypto-policies
	expanded: /usr/share/crypto-policies
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/cursors#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/cursors
	expanded: /usr/share/cursors
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/dconf#, whitelist
Debug 456: new_name #/usr/share/distro-info#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/distro-info
	expanded: /usr/share/distro-info
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/drirc.d#, whitelist
Debug 456: new_name #/usr/share/enchant#, whitelist
Debug 456: new_name #/usr/share/enchant-2#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/enchant-2
	expanded: /usr/share/enchant-2
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/file#, whitelist
Debug 456: new_name #/usr/share/fontconfig#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/fontconfig
	expanded: /usr/share/fontconfig
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/fonts#, whitelist
Debug 456: new_name #/usr/share/gir-1.0#, whitelist
Debug 456: new_name #/usr/share/gjs-1.0#, whitelist
Debug 456: new_name #/usr/share/glib-2.0#, whitelist
Debug 456: new_name #/usr/share/glvnd#, whitelist
Debug 456: new_name #/usr/share/gtk-2.0#, whitelist
Debug 456: new_name #/usr/share/gtk-3.0#, whitelist
Debug 456: new_name #/usr/share/gtk-engines#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/gtk-engines
	expanded: /usr/share/gtk-engines
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/gtksourceview-3.0#, whitelist
Debug 456: new_name #/usr/share/gtksourceview-4#, whitelist
Debug 456: new_name #/usr/share/hunspell#, whitelist
Debug 456: new_name #/usr/share/hwdata#, whitelist
Debug 456: new_name #/usr/share/icons#, whitelist
Debug 456: new_name #/usr/share/icu#, whitelist
Debug 456: new_name #/usr/share/knotifications5#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/knotifications5
	expanded: /usr/share/knotifications5
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/kservices5#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/kservices5
	expanded: /usr/share/kservices5
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/Kvantum#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/Kvantum
	expanded: /usr/share/Kvantum
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/kxmlgui5#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/kxmlgui5
	expanded: /usr/share/kxmlgui5
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/libdrm#, whitelist
Debug 456: new_name #/usr/share/libthai#, whitelist
Debug 456: new_name #/usr/share/locale#, whitelist
Debug 456: new_name #/usr/share/mime#, whitelist
Debug 456: new_name #/usr/share/misc#, whitelist
Debug 456: new_name #/usr/share/Modules#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/Modules
	expanded: /usr/share/Modules
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/myspell#, whitelist
Debug 456: new_name #/usr/share/p11-kit#, whitelist
Debug 456: new_name #/usr/share/pixmaps#, whitelist
Debug 456: new_name #/usr/share/pki#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/pki
	expanded: /usr/share/pki
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/plasma#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/plasma
	expanded: /usr/share/plasma
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/publicsuffix#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/publicsuffix
	expanded: /usr/share/publicsuffix
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/qt#, whitelist
Debug 456: new_name #/usr/share/qt4#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/qt4
	expanded: /usr/share/qt4
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/qt5#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/qt5
	expanded: /usr/share/qt5
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/qt5ct#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/qt5ct
	expanded: /usr/share/qt5ct
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/sounds#, whitelist
Debug 456: new_name #/usr/share/tcl8.6#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/tcl8.6
	expanded: /usr/share/tcl8.6
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/tcltk#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/tcltk
	expanded: /usr/share/tcltk
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/terminfo#, whitelist
Debug 456: new_name #/usr/share/texlive#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/texlive
	expanded: /usr/share/texlive
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/texmf#, whitelist
Debug 456: new_name #/usr/share/themes#, whitelist
Debug 456: new_name #/usr/share/thumbnail.so#, whitelist
Removed whitelist/nowhitelist path: whitelist /usr/share/thumbnail.so
	expanded: /usr/share/thumbnail.so
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/usr/share/X11#, whitelist
Debug 456: new_name #/usr/share/xml#, whitelist
Debug 456: new_name #/usr/share/zoneinfo#, whitelist
Debug 456: new_name #/var/lib/dbus#, whitelist
Debug 456: new_name #/var/lib/menu-xdg#, whitelist
Removed whitelist/nowhitelist path: whitelist /var/lib/menu-xdg
	expanded: /var/lib/menu-xdg
	real path: (null)
	realpath: No such file or directory
Debug 456: new_name #/var/cache/fontconfig#, whitelist
Debug 456: new_name #/var/tmp#, whitelist
Debug 456: new_name #/var/run#, whitelist
Debug 456: new_name #/var/lock#, whitelist
Debug 456: new_name #/tmp/.X11-unix#, whitelist
Replaced whitelist path: whitelist /run
Replaced whitelist path: whitelist /run/lock
Mounting tmpfs on /tmp directory
Mounting tmpfs on /var directory
Mounting tmpfs on /usr/share directory
Whitelisting /usr/share/doc
1500 1499 254:11 /usr/share/doc /usr/share/doc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1500 fsname=/usr/share/doc dir=/usr/share/doc fstype=ext4
Whitelisting /usr/share/alsa
1501 1499 254:11 /usr/share/alsa /usr/share/alsa ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1501 fsname=/usr/share/alsa dir=/usr/share/alsa fstype=ext4
Whitelisting /usr/share/applications
1502 1499 254:11 /usr/share/applications /usr/share/applications ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1502 fsname=/usr/share/applications dir=/usr/share/applications fstype=ext4
Whitelisting /usr/share/ca-certificates
1503 1499 254:11 /usr/share/ca-certificates /usr/share/ca-certificates ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1503 fsname=/usr/share/ca-certificates dir=/usr/share/ca-certificates fstype=ext4
Whitelisting /usr/share/dconf
1504 1499 254:11 /usr/share/dconf /usr/share/dconf ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1504 fsname=/usr/share/dconf dir=/usr/share/dconf fstype=ext4
Whitelisting /usr/share/drirc.d
1505 1499 254:11 /usr/share/drirc.d /usr/share/drirc.d ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1505 fsname=/usr/share/drirc.d dir=/usr/share/drirc.d fstype=ext4
Whitelisting /usr/share/enchant
1506 1499 254:11 /usr/share/enchant /usr/share/enchant ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1506 fsname=/usr/share/enchant dir=/usr/share/enchant fstype=ext4
Whitelisting /usr/share/file
1507 1499 254:11 /usr/share/file /usr/share/file ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1507 fsname=/usr/share/file dir=/usr/share/file fstype=ext4
Whitelisting /usr/share/fonts
1508 1499 254:11 /usr/share/fonts /usr/share/fonts ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1508 fsname=/usr/share/fonts dir=/usr/share/fonts fstype=ext4
Whitelisting /usr/share/gir-1.0
1509 1499 254:11 /usr/share/gir-1.0 /usr/share/gir-1.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1509 fsname=/usr/share/gir-1.0 dir=/usr/share/gir-1.0 fstype=ext4
Whitelisting /usr/share/gjs-1.0
1510 1499 254:11 /usr/share/gjs-1.0 /usr/share/gjs-1.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1510 fsname=/usr/share/gjs-1.0 dir=/usr/share/gjs-1.0 fstype=ext4
Whitelisting /usr/share/glib-2.0
1511 1499 254:11 /usr/share/glib-2.0 /usr/share/glib-2.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1511 fsname=/usr/share/glib-2.0 dir=/usr/share/glib-2.0 fstype=ext4
Whitelisting /usr/share/glvnd
1512 1499 254:11 /usr/share/glvnd /usr/share/glvnd ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1512 fsname=/usr/share/glvnd dir=/usr/share/glvnd fstype=ext4
Whitelisting /usr/share/gtk-2.0
1513 1499 254:11 /usr/share/gtk-2.0 /usr/share/gtk-2.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1513 fsname=/usr/share/gtk-2.0 dir=/usr/share/gtk-2.0 fstype=ext4
Whitelisting /usr/share/gtk-3.0
1514 1499 254:11 /usr/share/gtk-3.0 /usr/share/gtk-3.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1514 fsname=/usr/share/gtk-3.0 dir=/usr/share/gtk-3.0 fstype=ext4
Whitelisting /usr/share/gtksourceview-3.0
1515 1499 254:11 /usr/share/gtksourceview-3.0 /usr/share/gtksourceview-3.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1515 fsname=/usr/share/gtksourceview-3.0 dir=/usr/share/gtksourceview-3.0 fstype=ext4
Whitelisting /usr/share/gtksourceview-4
1516 1499 254:11 /usr/share/gtksourceview-4 /usr/share/gtksourceview-4 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1516 fsname=/usr/share/gtksourceview-4 dir=/usr/share/gtksourceview-4 fstype=ext4
Whitelisting /usr/share/hunspell
1517 1499 254:11 /usr/share/hunspell /usr/share/hunspell ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1517 fsname=/usr/share/hunspell dir=/usr/share/hunspell fstype=ext4
Whitelisting /usr/share/hwdata
1518 1499 254:11 /usr/share/hwdata /usr/share/hwdata ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1518 fsname=/usr/share/hwdata dir=/usr/share/hwdata fstype=ext4
Whitelisting /usr/share/icons
1519 1499 254:11 /usr/share/icons /usr/share/icons ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1519 fsname=/usr/share/icons dir=/usr/share/icons fstype=ext4
Whitelisting /usr/share/icu
1520 1499 254:11 /usr/share/icu /usr/share/icu ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1520 fsname=/usr/share/icu dir=/usr/share/icu fstype=ext4
Whitelisting /usr/share/libdrm
1521 1499 254:11 /usr/share/libdrm /usr/share/libdrm ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1521 fsname=/usr/share/libdrm dir=/usr/share/libdrm fstype=ext4
Whitelisting /usr/share/libthai
1522 1499 254:11 /usr/share/libthai /usr/share/libthai ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1522 fsname=/usr/share/libthai dir=/usr/share/libthai fstype=ext4
Whitelisting /usr/share/locale
1523 1499 254:11 /usr/share/locale /usr/share/locale ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1523 fsname=/usr/share/locale dir=/usr/share/locale fstype=ext4
Whitelisting /usr/share/mime
1524 1499 254:11 /usr/share/mime /usr/share/mime ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1524 fsname=/usr/share/mime dir=/usr/share/mime fstype=ext4
Whitelisting /usr/share/misc
1525 1499 254:11 /usr/share/misc /usr/share/misc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1525 fsname=/usr/share/misc dir=/usr/share/misc fstype=ext4
Whitelisting /usr/share/myspell
1526 1499 254:11 /usr/share/myspell /usr/share/myspell ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1526 fsname=/usr/share/myspell dir=/usr/share/myspell fstype=ext4
Whitelisting /usr/share/p11-kit
1527 1499 254:11 /usr/share/p11-kit /usr/share/p11-kit ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1527 fsname=/usr/share/p11-kit dir=/usr/share/p11-kit fstype=ext4
Whitelisting /usr/share/pixmaps
1528 1499 254:11 /usr/share/pixmaps /usr/share/pixmaps ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1528 fsname=/usr/share/pixmaps dir=/usr/share/pixmaps fstype=ext4
Whitelisting /usr/share/qt
1529 1499 254:11 /usr/share/qt /usr/share/qt ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1529 fsname=/usr/share/qt dir=/usr/share/qt fstype=ext4
Whitelisting /usr/share/sounds
1530 1499 254:11 /usr/share/sounds /usr/share/sounds ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1530 fsname=/usr/share/sounds dir=/usr/share/sounds fstype=ext4
Whitelisting /usr/share/terminfo
1531 1499 254:11 /usr/share/terminfo /usr/share/terminfo ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1531 fsname=/usr/share/terminfo dir=/usr/share/terminfo fstype=ext4
Whitelisting /usr/share/texmf
1532 1499 254:11 /usr/share/texmf /usr/share/texmf ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1532 fsname=/usr/share/texmf dir=/usr/share/texmf fstype=ext4
Whitelisting /usr/share/themes
1533 1499 254:11 /usr/share/themes /usr/share/themes ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1533 fsname=/usr/share/themes dir=/usr/share/themes fstype=ext4
Whitelisting /usr/share/X11
1534 1499 254:11 /usr/share/X11 /usr/share/X11 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1534 fsname=/usr/share/X11 dir=/usr/share/X11 fstype=ext4
Whitelisting /usr/share/xml
1535 1499 254:11 /usr/share/xml /usr/share/xml ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1535 fsname=/usr/share/xml dir=/usr/share/xml fstype=ext4
Whitelisting /usr/share/zoneinfo
1536 1499 254:11 /usr/share/zoneinfo /usr/share/zoneinfo ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761
mountid=1536 fsname=/usr/share/zoneinfo dir=/usr/share/zoneinfo fstype=ext4
Whitelisting /var/lib/dbus
1537 1497 254:14 /lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,relatime master:69 - ext4 /dev/mapper/VolGroup00-var rw
mountid=1537 fsname=/lib/dbus dir=/var/lib/dbus fstype=ext4
Whitelisting /var/cache/fontconfig
1538 1497 254:14 /cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,relatime master:69 - ext4 /dev/mapper/VolGroup00-var rw
mountid=1538 fsname=/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4
Whitelisting /var/tmp
1539 1497 0:89 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw
mountid=1539 fsname=/ dir=/var/tmp fstype=tmpfs
Created symbolic link /var/run -> /run
Created symbolic link /var/lock -> /run/lock
Whitelisting /tmp/.X11-unix
1540 1487 0:46 /.X11-unix /tmp/.X11-unix rw,nosuid,nodev master:65 - tmpfs tmpfs rw
mountid=1540 fsname=/.X11-unix dir=/tmp/.X11-unix fstype=tmpfs
Directory ${DOCUMENTS} resolved as Documents
Disable /home/foo/.local/share/Trash
Disable /home/foo/.python_history
Disable /home/foo/.bash_history
Disable /home/foo/.kamene_history
Disable /home/foo/.gdb_history
Disable /home/foo/.sqlite_history
Disable /home/foo/.scapy_history
Disable /home/foo/.zsh_history
Disable /home/foo/.local/share/fish/fish_history
Disable /home/foo/.python_history
Disable /home/foo/.lesshst
Disable /home/foo/.config/autostart
Disable /home/foo/.local/share/gnome-shell
Mounting read-only /home/foo/.config/dconf
1557 1441 254:6 /foo/.config/dconf /home/flo/.config/dconf ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1557 fsname=/foo/.config/dconf dir=/home/flo/.config/dconf fstype=ext4
Disable /run/user/1000/gnome-session-leader-fifo
Disable /run/user/1000/gnome-shell
Disable /home/foo/.config/systemd
Disable /run/user/1000/systemd
Disable /home/foo/.config/VirtualBox
Disable /home/foo/VirtualBox VMs
Mounting read-only /home/foo/.bash_logout
1564 1441 254:6 /foo/.bash_logout /home/flo/.bash_logout ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1564 fsname=/foo/.bash_logout dir=/home/flo/.bash_logout fstype=ext4
Mounting read-only /home/foo/.bash_profile
1565 1441 254:6 /foo/.bash_profile /home/flo/.bash_profile ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1565 fsname=/foo/.bash_profile dir=/home/flo/.bash_profile fstype=ext4
Mounting read-only /home/foo/.bashrc
1566 1441 254:6 /foo/.bashrc /home/flo/.bashrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1566 fsname=/foo/.bashrc dir=/home/flo/.bashrc fstype=ext4
Mounting read-only /home/foo/.config/fish
1567 1441 254:6 /foo/.config/fish /home/flo/.config/fish ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1567 fsname=/foo/.config/fish dir=/home/flo/.config/fish fstype=ext4
Mounting read-only /home/foo/.local/share/fish
1569 1568 0:23 /firejail/firejail.ro.file /home/foo/.local/share/fish/fish_history rw,nosuid,nodev,relatime master:13 - tmpfs run rw,mode=755
mountid=1569 fsname=/firejail/firejail.ro.file dir=/home/foo/.local/share/fish/fish_history fstype=tmpfs
Mounting read-only /home/foo/.zshrc
1570 1441 254:6 /foo/.zshrc /home/flo/.zshrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1570 fsname=/foo/.zshrc dir=/home/flo/.zshrc fstype=ext4
Mounting read-only /home/foo/.ssh/authorized_keys
1571 1441 254:6 /foo/.ssh/authorized_keys /home/flo/.ssh/authorized_keys ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1571 fsname=/foo/.ssh/authorized_keys dir=/home/flo/.ssh/authorized_keys fstype=ext4
Mounting read-only /home/foo/.tmuWarning: /sbin directory link was not blacklisted
Warning: /usr/sbin directory link was not blacklisted
Error fstat: fs.c:497 fs_remount_simple: Transport endpoint is not connected
x.conf
1572 1441 254:6 /foo/.tmux.conf /home/flo/.tmux.conf ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1572 fsname=/foo/.tmux.conf dir=/home/flo/.tmux.conf fstype=ext4
Mounting read-only /home/foo/.vim
1573 1441 254:6 /foo/.vim /home/flo/.vim ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1573 fsname=/foo/.vim dir=/home/flo/.vim fstype=ext4
Mounting read-only /home/foo/.vimrc
1574 1441 254:6 /foo/.vimrc /home/flo/.vimrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1574 fsname=/foo/.vimrc dir=/home/flo/.vimrc fstype=ext4
Mounting read-only /home/foo/.config/menus
1575 1441 254:6 /foo/.config/menus /home/flo/.config/menus ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1575 fsname=/foo/.config/menus dir=/home/flo/.config/menus fstype=ext4
Mounting read-only /home/foo/.gnome/apps
1576 1441 254:6 /foo/.gnome/apps /home/flo/.gnome/apps ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1576 fsname=/foo/.gnome/apps dir=/home/flo/.gnome/apps fstype=ext4
Mounting read-only /home/foo/.local/share/applications
1577 1441 254:6 /foo/.local/share/applications /home/flo/.local/share/applications ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1577 fsname=/foo/.local/share/applications dir=/home/flo/.local/share/applications fstype=ext4
Mounting read-only /home/foo/.config/mimeapps.list
1578 1441 254:6 /foo/.config/mimeapps.list /home/flo/.config/mimeapps.list ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1578 fsname=/foo/.config/mimeapps.list dir=/home/flo/.config/mimeapps.list fstype=ext4
Mounting read-only /home/foo/.config/user-dirs.dirs
1579 1441 254:6 /foo/.config/user-dirs.dirs /home/flo/.config/user-dirs.dirs ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1579 fsname=/foo/.config/user-dirs.dirs dir=/home/flo/.config/user-dirs.dirs fstype=ext4
Mounting read-only /home/foo/.config/user-dirs.locale
1580 1441 254:6 /foo/.config/user-dirs.locale /home/flo/.config/user-dirs.locale ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1580 fsname=/foo/.config/user-dirs.locale dir=/home/flo/.config/user-dirs.locale fstype=ext4
Mounting read-only /home/foo/.local/share/mime
1581 1441 254:6 /foo/.local/share/mime /home/flo/.local/share/mime ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw
mountid=1581 fsname=/foo/.local/share/mime dir=/home/flo/.local/share/mime fstype=ext4
Disable /home/foo/.cert
Disable /home/foo/.config/keybase
Disable /home/foo/.gnupg
Disable /home/foo/.local/share/keyrings
Disable /home/foo/.pki
Disable /home/foo/.local/share/pki
Disable /home/foo/.ssh
Disable /usr/local/sbin
Disable /usr/lib/virtualbox
Disable /usr/lib/virtualbox (requested /usr/lib64/virtualbox)
Disable /proc/config.gz
Disable /run/user/1000/wayland-0.lock
Disable /run/user/1000/inaccessible
Disable /usr/src
Disable /usr/local/src
Disable /usr/include
Disable /usr/local/include
Mounting noexec /home/flo
1646 1599 0:23 /firejail/firejail.ro.dir /home/foo/.ssh rw,nosuid,nodev,relatime master:13 - tmpfs run rw,mode=755
mountid=1646 fsname=/firejail/firejail.ro.dir dir=/home/foo/.ssh fstype=tmpfs
Mounting noexec /home/foo/.local/share/containers
1647 1600 254:17 / /home/foo/.local/share/containers rw,nosuid,nodev,noexec,relatime master:79 - ext4 /dev/mapper/VolGroup00-local_share_containers rw
mountid=1647 fsname=/ dir=/home/foo/.local/share/containers fstype=ext4
Mounting noexec /home/foo/Videos
1648 1601 254:18 / /home/foo/Videos rw,nosuid,nodev,noexec,relatime master:81 - ext4 /dev/mapper/VolGroup00-Videos rw
mountid=1648 fsname=/ dir=/home/foo/Videos fstype=ext4
Mounting noexec /home/foo/VirtualBox_VMs
1649 1602 254:16 / /home/foo/VirtualBox_VMs rw,nosuid,nodev,noexec,relatime master:83 - ext4 /dev/mapper/VolGroup00-VirtualBox_VMs rw
mountid=1649 fsname=/ dir=/home/foo/VirtualBox_VMs fstype=ext4
Error: proc 80574 cannot sync with peer: unexpected EOF
Peer 80597 unexpectedly exited with status 1
Originally created by @diepfote on GitHub (Jun 21, 2020). Original GitHub issue: https://github.com/netblue30/firejail/issues/3473 Write clear, concise and in textual form. **Bug and expected behavior** - Describe the bug. zathura refuses to open with firejail: ``` Error fstat: fs.c:497 fs_remount_simple: Transport endpoint is not connected Error: proc 89389 cannot sync with peer: unexpected EOF Peer 89412 unexpectedly exited with status 1 ``` - What did you expect to happen? Zathura should display a pdf **No profile or disabling firejail** - What changed calling `firejail --noprofile PROGRAM` in a shell? No errors. - What changed calling the program *by path*=without firejail (check `whereis PROGRAM`, `firejail --list`, `stat $programpath`)? No errors. **Reproduce** Steps to reproduce the behavior: 1. See debug command (or just open a file) **Environment** - Linux distribution and version (ie output of `lsb_release -a`) - Firejail version (output of `firejail --version`) exclusive or used git commit (`git rev-parse HEAD`) 1a47e5b - What other programs interact with the affected program for the functionality? - Are these listed in the profile? **Additional context** It's not just zathura, I checked mpv as well, firefox appears to be fine though. I do not have a zathura.local. <details><summary> debug output </summary> ``` $ firejail --debug /usr/bin/zathura 6_Gradient\ descent_modified.pdf > /tmp/debug 2>&1 Reading profile /etc/firejail/zathura.profile Autoselecting /usr/bin/fish as shell Building quoted command line: '/usr/bin/zathura' '6_Gradient descent_modified.pdf' Command name #zathura# Found zathura.profile profile in /etc/firejail directory Reading profile /etc/firejail/disable-common.inc Found disable-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-devel.inc Found disable-devel.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-exec.inc Found disable-exec.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-interpreters.inc Found disable-interpreters.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-passwdmgr.inc Found disable-passwdmgr.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-programs.inc Found disable-programs.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-shell.inc Found disable-shell.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-xdg.inc Found disable-xdg.inc profile in /etc/firejail directory Reading profile /etc/firejail/whitelist-usr-share-common.inc Found whitelist-usr-share-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/whitelist-var-common.inc Found whitelist-var-common.inc profile in /etc/firejail directory DISPLAY=:0 parsed as 0 Parent pid 80574, child pid 80597 Enabling IPC namespace 1 program installed in 1.56 ms Enabling IPC namespace Initializing child process PID namespace installed Mounting tmpfs on /run/firejail/mnt directory Creating empty /run/firejail/mnt/seccomp directory Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file sbox run: /run/firejail/lib/fnet ifup lo Network namespace enabled, only loopback interface available Build protocol filter: unix sbox run: /run/firejail/lib/fseccomp protocol build unix /run/firejail/mnt/seccomp/seccomp.protocol Mounting /proc filesystem representing the PID namespace Basic read-only filesystem: Mounting read-only /etc 1410 1354 254:11 /etc /etc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1410 fsname=/etc dir=/etc fstype=ext4 Mounting noexec /etc 1411 1410 254:11 /etc /etc ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1411 fsname=/etc dir=/etc fstype=ext4 Mounting read-only /var 1415 1412 0:49 / /var/tmp rw,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700 mountid=1415 fsname=/ dir=/var/tmp fstype=tmpfs Mounting read-only /var/lib/containers 1416 1413 0:47 / /var/lib/containers ro,nosuid,nodev,noexec,relatime master:71 - tmpfs tmpfs rw,nr_inodes=5120,mode=700 mountid=1416 fsname=/ dir=/var/lib/containers fstype=tmpfs Mounting read-only /var/lib/docker 1417 1414 0:48 / /var/lib/docker ro,nosuid,nodev,noexec,relatime master:73 - tmpfs tmpfs rw,nr_inodes=5120,mode=700 mountid=1417 fsname=/ dir=/var/lib/docker fstype=tmpfs Mounting read-only /var/tmp 1418 1415 0:49 / /var/tmp ro,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700 mountid=1418 fsname=/ dir=/var/tmp fstype=tmpfs Mounting noexec /var 1427 1426 0:49 / /var/tmp ro,nosuid,nodev,noexec,relatime master:75 - tmpfs tmpfs rw,nr_inodes=5120,mode=700 mountid=1427 fsname=/ dir=/var/tmp fstype=tmpfs Mounting read-only /usr 1428 1354 254:11 /usr /usr ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1428 fsname=/usr dir=/usr fstype=ext4 Mounting tmpfs on /var/lock Mounting tmpfs on /var/tmp Mounting tmpfs on /var/log Create the new utmp file Mount the new utmp file Generating a new machine-id installing a new /etc/machine-id Cleaning /home directory Cleaning /run/user directory Sanitizing /etc/passwd, UID_MIN 1000 Sanitizing /etc/group, GID_MIN 1000 Disable /run/firejail/network Disable /run/firejail/bandwidth Disable /run/firejail/name Disable /run/firejail/profile Disable /run/firejail/x11 Mounting tmpfs on /dev mounting /run/firejail/mnt/dev/dri directory Process /dev/shm directory Copying files in the new bin directory Checking /usr/local/bin/zathura firejail exec symlink detected Checking /usr/bin/zathura sbox run: /run/firejail/lib/fcopy /usr/bin/zathura /run/firejail/mnt/bin Mount-bind /run/firejail/mnt/bin on top of /usr/local/bin Mount-bind /run/firejail/mnt/bin on top of /usr/bin Mount-bind /run/firejail/mnt/bin on top of /bin Mount-bind /run/firejail/mnt/bin on top of /usr/local/games Mount-bind /run/firejail/mnt/bin on top of /usr/local/sbin Mount-bind /run/firejail/mnt/bin on top of /usr/sbin Mount-bind /run/firejail/mnt/bin on top of /sbin Warning: file /etc/alternatives not found. Warning: skipping alternatives for private /etc Private /etc installed in 7.64 ms Mounting tmpfs on /home/foo/.cache 1478 1441 0:97 / /home/foo/.cache rw,nosuid,nodev,relatime - tmpfs tmpfs rw,mode=700,uid=1000,gid=1000 mountid=1478 fsname=/ dir=/home/foo/.cache fstype=tmpfs Generate private-tmp whitelist commands Creating empty /run/firejail/mnt/dbus directory Creating empty /run/firejail/mnt/dbus/user file Creating empty /run/firejail/mnt/dbus/system file blacklist /run/user/1000/bus blacklist /run/dbus/system_bus_socket blacklist /run/firejail/dbus Mounting read-only /proc/sys Remounting /sys directory Disable /sys/firmware Disable /sys/hypervisor Disable /sys/power Disable /sys/kernel/debug Disable /proc/sys/fs/binfmt_misc Disable /proc/sys/kernel/core_pattern Disable /proc/sys/kernel/modprobe Disable /proc/sysrq-trigger Disable /proc/sys/vm/panic_on_oom Disable /proc/irq Disable /proc/bus Disable /proc/sched_debug Disable /proc/timer_list Disable /proc/kallsyms Disable /usr/lib/modules (requested /lib/modules) Disable /boot Disable /run/user/1000/gnupg Disable /run/user/1000/systemd Disable /proc/kmsg Copying files in the new /etc directory: copying /etc/fonts to private /etc Creating empty /run/firejail/mnt/etc/fonts directory sbox run: /run/firejail/lib/fcopy /etc/fonts /run/firejail/mnt/etc/fonts copying /etc/ld.so.cache to private /etc sbox run: /run/firejail/lib/fcopy /etc/ld.so.cache /run/firejail/mnt/etc copying /etc/ld.so.conf to private /etc sbox run: /run/firejail/lib/fcopy /etc/ld.so.conf /run/firejail/mnt/etc copying /etc/ld.so.conf.d to private /etc Creating empty /run/firejail/mnt/etc/ld.so.conf.d directory sbox run: /run/firejail/lib/fcopy /etc/ld.so.conf.d /run/firejail/mnt/etc/ld.so.conf.d copying /etc/ld.so.preload to private /etc sbox run: /run/firejail/lib/fcopy /etc/ld.so.preload /run/firejail/mnt/etc copying /etc/machine-id to private /etc sbox run: /run/firejail/lib/fcopy /etc/machine-id /run/firejail/mnt/etc Mount-bind /run/firejail/mnt/etc on top of /etc Warning: file /usr/etc/alternatives not found. Warning: skipping alternatives for private /usr/etc Warning: file /usr/etc/fonts not found. Warning: skipping fonts for private /usr/etc Warning: file /usr/etc/ld.so.cache not found. Warning: skipping ld.so.cache for private /usr/etc Warning: file /usr/etc/ld.so.conf not found. Warning: skipping ld.so.conf for private /usr/etc Warning: file /usr/etc/ld.so.conf.d not found. Warning: skipping ld.so.conf.d for private /usr/etc Warning: file /usr/etc/ld.so.preload not found. Warning: skipping ld.so.preload for private /usr/etc Warning: file /usr/etc/machine-id not found. Warning: skipping machine-id for private /usr/etc Private /usr/etc installed in 0.09 ms Copying files in the new /usr/etc directory: Mount-bind /run/firejail/mnt/usretc on top of /usr/etc Debug 456: new_name #/usr/share/doc#, whitelist Debug 456: new_name #/usr/share/zathura#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/zathura expanded: /usr/share/zathura real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/alsa#, whitelist Debug 456: new_name #/usr/share/applications#, whitelist Debug 456: new_name #/usr/share/ca-certificates#, whitelist Debug 456: new_name #/usr/share/crypto-policies#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/crypto-policies expanded: /usr/share/crypto-policies real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/cursors#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/cursors expanded: /usr/share/cursors real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/dconf#, whitelist Debug 456: new_name #/usr/share/distro-info#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/distro-info expanded: /usr/share/distro-info real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/drirc.d#, whitelist Debug 456: new_name #/usr/share/enchant#, whitelist Debug 456: new_name #/usr/share/enchant-2#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/enchant-2 expanded: /usr/share/enchant-2 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/file#, whitelist Debug 456: new_name #/usr/share/fontconfig#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/fontconfig expanded: /usr/share/fontconfig real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/fonts#, whitelist Debug 456: new_name #/usr/share/gir-1.0#, whitelist Debug 456: new_name #/usr/share/gjs-1.0#, whitelist Debug 456: new_name #/usr/share/glib-2.0#, whitelist Debug 456: new_name #/usr/share/glvnd#, whitelist Debug 456: new_name #/usr/share/gtk-2.0#, whitelist Debug 456: new_name #/usr/share/gtk-3.0#, whitelist Debug 456: new_name #/usr/share/gtk-engines#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/gtk-engines expanded: /usr/share/gtk-engines real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/gtksourceview-3.0#, whitelist Debug 456: new_name #/usr/share/gtksourceview-4#, whitelist Debug 456: new_name #/usr/share/hunspell#, whitelist Debug 456: new_name #/usr/share/hwdata#, whitelist Debug 456: new_name #/usr/share/icons#, whitelist Debug 456: new_name #/usr/share/icu#, whitelist Debug 456: new_name #/usr/share/knotifications5#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/knotifications5 expanded: /usr/share/knotifications5 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/kservices5#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/kservices5 expanded: /usr/share/kservices5 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/Kvantum#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/Kvantum expanded: /usr/share/Kvantum real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/kxmlgui5#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/kxmlgui5 expanded: /usr/share/kxmlgui5 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/libdrm#, whitelist Debug 456: new_name #/usr/share/libthai#, whitelist Debug 456: new_name #/usr/share/locale#, whitelist Debug 456: new_name #/usr/share/mime#, whitelist Debug 456: new_name #/usr/share/misc#, whitelist Debug 456: new_name #/usr/share/Modules#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/Modules expanded: /usr/share/Modules real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/myspell#, whitelist Debug 456: new_name #/usr/share/p11-kit#, whitelist Debug 456: new_name #/usr/share/pixmaps#, whitelist Debug 456: new_name #/usr/share/pki#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/pki expanded: /usr/share/pki real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/plasma#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/plasma expanded: /usr/share/plasma real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/publicsuffix#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/publicsuffix expanded: /usr/share/publicsuffix real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/qt#, whitelist Debug 456: new_name #/usr/share/qt4#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/qt4 expanded: /usr/share/qt4 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/qt5#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/qt5 expanded: /usr/share/qt5 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/qt5ct#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/qt5ct expanded: /usr/share/qt5ct real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/sounds#, whitelist Debug 456: new_name #/usr/share/tcl8.6#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/tcl8.6 expanded: /usr/share/tcl8.6 real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/tcltk#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/tcltk expanded: /usr/share/tcltk real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/terminfo#, whitelist Debug 456: new_name #/usr/share/texlive#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/texlive expanded: /usr/share/texlive real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/texmf#, whitelist Debug 456: new_name #/usr/share/themes#, whitelist Debug 456: new_name #/usr/share/thumbnail.so#, whitelist Removed whitelist/nowhitelist path: whitelist /usr/share/thumbnail.so expanded: /usr/share/thumbnail.so real path: (null) realpath: No such file or directory Debug 456: new_name #/usr/share/X11#, whitelist Debug 456: new_name #/usr/share/xml#, whitelist Debug 456: new_name #/usr/share/zoneinfo#, whitelist Debug 456: new_name #/var/lib/dbus#, whitelist Debug 456: new_name #/var/lib/menu-xdg#, whitelist Removed whitelist/nowhitelist path: whitelist /var/lib/menu-xdg expanded: /var/lib/menu-xdg real path: (null) realpath: No such file or directory Debug 456: new_name #/var/cache/fontconfig#, whitelist Debug 456: new_name #/var/tmp#, whitelist Debug 456: new_name #/var/run#, whitelist Debug 456: new_name #/var/lock#, whitelist Debug 456: new_name #/tmp/.X11-unix#, whitelist Replaced whitelist path: whitelist /run Replaced whitelist path: whitelist /run/lock Mounting tmpfs on /tmp directory Mounting tmpfs on /var directory Mounting tmpfs on /usr/share directory Whitelisting /usr/share/doc 1500 1499 254:11 /usr/share/doc /usr/share/doc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1500 fsname=/usr/share/doc dir=/usr/share/doc fstype=ext4 Whitelisting /usr/share/alsa 1501 1499 254:11 /usr/share/alsa /usr/share/alsa ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1501 fsname=/usr/share/alsa dir=/usr/share/alsa fstype=ext4 Whitelisting /usr/share/applications 1502 1499 254:11 /usr/share/applications /usr/share/applications ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1502 fsname=/usr/share/applications dir=/usr/share/applications fstype=ext4 Whitelisting /usr/share/ca-certificates 1503 1499 254:11 /usr/share/ca-certificates /usr/share/ca-certificates ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1503 fsname=/usr/share/ca-certificates dir=/usr/share/ca-certificates fstype=ext4 Whitelisting /usr/share/dconf 1504 1499 254:11 /usr/share/dconf /usr/share/dconf ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1504 fsname=/usr/share/dconf dir=/usr/share/dconf fstype=ext4 Whitelisting /usr/share/drirc.d 1505 1499 254:11 /usr/share/drirc.d /usr/share/drirc.d ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1505 fsname=/usr/share/drirc.d dir=/usr/share/drirc.d fstype=ext4 Whitelisting /usr/share/enchant 1506 1499 254:11 /usr/share/enchant /usr/share/enchant ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1506 fsname=/usr/share/enchant dir=/usr/share/enchant fstype=ext4 Whitelisting /usr/share/file 1507 1499 254:11 /usr/share/file /usr/share/file ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1507 fsname=/usr/share/file dir=/usr/share/file fstype=ext4 Whitelisting /usr/share/fonts 1508 1499 254:11 /usr/share/fonts /usr/share/fonts ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1508 fsname=/usr/share/fonts dir=/usr/share/fonts fstype=ext4 Whitelisting /usr/share/gir-1.0 1509 1499 254:11 /usr/share/gir-1.0 /usr/share/gir-1.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1509 fsname=/usr/share/gir-1.0 dir=/usr/share/gir-1.0 fstype=ext4 Whitelisting /usr/share/gjs-1.0 1510 1499 254:11 /usr/share/gjs-1.0 /usr/share/gjs-1.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1510 fsname=/usr/share/gjs-1.0 dir=/usr/share/gjs-1.0 fstype=ext4 Whitelisting /usr/share/glib-2.0 1511 1499 254:11 /usr/share/glib-2.0 /usr/share/glib-2.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1511 fsname=/usr/share/glib-2.0 dir=/usr/share/glib-2.0 fstype=ext4 Whitelisting /usr/share/glvnd 1512 1499 254:11 /usr/share/glvnd /usr/share/glvnd ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1512 fsname=/usr/share/glvnd dir=/usr/share/glvnd fstype=ext4 Whitelisting /usr/share/gtk-2.0 1513 1499 254:11 /usr/share/gtk-2.0 /usr/share/gtk-2.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1513 fsname=/usr/share/gtk-2.0 dir=/usr/share/gtk-2.0 fstype=ext4 Whitelisting /usr/share/gtk-3.0 1514 1499 254:11 /usr/share/gtk-3.0 /usr/share/gtk-3.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1514 fsname=/usr/share/gtk-3.0 dir=/usr/share/gtk-3.0 fstype=ext4 Whitelisting /usr/share/gtksourceview-3.0 1515 1499 254:11 /usr/share/gtksourceview-3.0 /usr/share/gtksourceview-3.0 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1515 fsname=/usr/share/gtksourceview-3.0 dir=/usr/share/gtksourceview-3.0 fstype=ext4 Whitelisting /usr/share/gtksourceview-4 1516 1499 254:11 /usr/share/gtksourceview-4 /usr/share/gtksourceview-4 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1516 fsname=/usr/share/gtksourceview-4 dir=/usr/share/gtksourceview-4 fstype=ext4 Whitelisting /usr/share/hunspell 1517 1499 254:11 /usr/share/hunspell /usr/share/hunspell ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1517 fsname=/usr/share/hunspell dir=/usr/share/hunspell fstype=ext4 Whitelisting /usr/share/hwdata 1518 1499 254:11 /usr/share/hwdata /usr/share/hwdata ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1518 fsname=/usr/share/hwdata dir=/usr/share/hwdata fstype=ext4 Whitelisting /usr/share/icons 1519 1499 254:11 /usr/share/icons /usr/share/icons ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1519 fsname=/usr/share/icons dir=/usr/share/icons fstype=ext4 Whitelisting /usr/share/icu 1520 1499 254:11 /usr/share/icu /usr/share/icu ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1520 fsname=/usr/share/icu dir=/usr/share/icu fstype=ext4 Whitelisting /usr/share/libdrm 1521 1499 254:11 /usr/share/libdrm /usr/share/libdrm ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1521 fsname=/usr/share/libdrm dir=/usr/share/libdrm fstype=ext4 Whitelisting /usr/share/libthai 1522 1499 254:11 /usr/share/libthai /usr/share/libthai ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1522 fsname=/usr/share/libthai dir=/usr/share/libthai fstype=ext4 Whitelisting /usr/share/locale 1523 1499 254:11 /usr/share/locale /usr/share/locale ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1523 fsname=/usr/share/locale dir=/usr/share/locale fstype=ext4 Whitelisting /usr/share/mime 1524 1499 254:11 /usr/share/mime /usr/share/mime ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1524 fsname=/usr/share/mime dir=/usr/share/mime fstype=ext4 Whitelisting /usr/share/misc 1525 1499 254:11 /usr/share/misc /usr/share/misc ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1525 fsname=/usr/share/misc dir=/usr/share/misc fstype=ext4 Whitelisting /usr/share/myspell 1526 1499 254:11 /usr/share/myspell /usr/share/myspell ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1526 fsname=/usr/share/myspell dir=/usr/share/myspell fstype=ext4 Whitelisting /usr/share/p11-kit 1527 1499 254:11 /usr/share/p11-kit /usr/share/p11-kit ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1527 fsname=/usr/share/p11-kit dir=/usr/share/p11-kit fstype=ext4 Whitelisting /usr/share/pixmaps 1528 1499 254:11 /usr/share/pixmaps /usr/share/pixmaps ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1528 fsname=/usr/share/pixmaps dir=/usr/share/pixmaps fstype=ext4 Whitelisting /usr/share/qt 1529 1499 254:11 /usr/share/qt /usr/share/qt ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1529 fsname=/usr/share/qt dir=/usr/share/qt fstype=ext4 Whitelisting /usr/share/sounds 1530 1499 254:11 /usr/share/sounds /usr/share/sounds ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1530 fsname=/usr/share/sounds dir=/usr/share/sounds fstype=ext4 Whitelisting /usr/share/terminfo 1531 1499 254:11 /usr/share/terminfo /usr/share/terminfo ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1531 fsname=/usr/share/terminfo dir=/usr/share/terminfo fstype=ext4 Whitelisting /usr/share/texmf 1532 1499 254:11 /usr/share/texmf /usr/share/texmf ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1532 fsname=/usr/share/texmf dir=/usr/share/texmf fstype=ext4 Whitelisting /usr/share/themes 1533 1499 254:11 /usr/share/themes /usr/share/themes ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1533 fsname=/usr/share/themes dir=/usr/share/themes fstype=ext4 Whitelisting /usr/share/X11 1534 1499 254:11 /usr/share/X11 /usr/share/X11 ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1534 fsname=/usr/share/X11 dir=/usr/share/X11 fstype=ext4 Whitelisting /usr/share/xml 1535 1499 254:11 /usr/share/xml /usr/share/xml ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1535 fsname=/usr/share/xml dir=/usr/share/xml fstype=ext4 Whitelisting /usr/share/zoneinfo 1536 1499 254:11 /usr/share/zoneinfo /usr/share/zoneinfo ro,relatime master:1 - ext4 /dev/mapper/VolGroup00-root rw,stripe=32761 mountid=1536 fsname=/usr/share/zoneinfo dir=/usr/share/zoneinfo fstype=ext4 Whitelisting /var/lib/dbus 1537 1497 254:14 /lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,relatime master:69 - ext4 /dev/mapper/VolGroup00-var rw mountid=1537 fsname=/lib/dbus dir=/var/lib/dbus fstype=ext4 Whitelisting /var/cache/fontconfig 1538 1497 254:14 /cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,relatime master:69 - ext4 /dev/mapper/VolGroup00-var rw mountid=1538 fsname=/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4 Whitelisting /var/tmp 1539 1497 0:89 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw mountid=1539 fsname=/ dir=/var/tmp fstype=tmpfs Created symbolic link /var/run -> /run Created symbolic link /var/lock -> /run/lock Whitelisting /tmp/.X11-unix 1540 1487 0:46 /.X11-unix /tmp/.X11-unix rw,nosuid,nodev master:65 - tmpfs tmpfs rw mountid=1540 fsname=/.X11-unix dir=/tmp/.X11-unix fstype=tmpfs Directory ${DOCUMENTS} resolved as Documents Disable /home/foo/.local/share/Trash Disable /home/foo/.python_history Disable /home/foo/.bash_history Disable /home/foo/.kamene_history Disable /home/foo/.gdb_history Disable /home/foo/.sqlite_history Disable /home/foo/.scapy_history Disable /home/foo/.zsh_history Disable /home/foo/.local/share/fish/fish_history Disable /home/foo/.python_history Disable /home/foo/.lesshst Disable /home/foo/.config/autostart Disable /home/foo/.local/share/gnome-shell Mounting read-only /home/foo/.config/dconf 1557 1441 254:6 /foo/.config/dconf /home/flo/.config/dconf ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1557 fsname=/foo/.config/dconf dir=/home/flo/.config/dconf fstype=ext4 Disable /run/user/1000/gnome-session-leader-fifo Disable /run/user/1000/gnome-shell Disable /home/foo/.config/systemd Disable /run/user/1000/systemd Disable /home/foo/.config/VirtualBox Disable /home/foo/VirtualBox VMs Mounting read-only /home/foo/.bash_logout 1564 1441 254:6 /foo/.bash_logout /home/flo/.bash_logout ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1564 fsname=/foo/.bash_logout dir=/home/flo/.bash_logout fstype=ext4 Mounting read-only /home/foo/.bash_profile 1565 1441 254:6 /foo/.bash_profile /home/flo/.bash_profile ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1565 fsname=/foo/.bash_profile dir=/home/flo/.bash_profile fstype=ext4 Mounting read-only /home/foo/.bashrc 1566 1441 254:6 /foo/.bashrc /home/flo/.bashrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1566 fsname=/foo/.bashrc dir=/home/flo/.bashrc fstype=ext4 Mounting read-only /home/foo/.config/fish 1567 1441 254:6 /foo/.config/fish /home/flo/.config/fish ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1567 fsname=/foo/.config/fish dir=/home/flo/.config/fish fstype=ext4 Mounting read-only /home/foo/.local/share/fish 1569 1568 0:23 /firejail/firejail.ro.file /home/foo/.local/share/fish/fish_history rw,nosuid,nodev,relatime master:13 - tmpfs run rw,mode=755 mountid=1569 fsname=/firejail/firejail.ro.file dir=/home/foo/.local/share/fish/fish_history fstype=tmpfs Mounting read-only /home/foo/.zshrc 1570 1441 254:6 /foo/.zshrc /home/flo/.zshrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1570 fsname=/foo/.zshrc dir=/home/flo/.zshrc fstype=ext4 Mounting read-only /home/foo/.ssh/authorized_keys 1571 1441 254:6 /foo/.ssh/authorized_keys /home/flo/.ssh/authorized_keys ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1571 fsname=/foo/.ssh/authorized_keys dir=/home/flo/.ssh/authorized_keys fstype=ext4 Mounting read-only /home/foo/.tmuWarning: /sbin directory link was not blacklisted Warning: /usr/sbin directory link was not blacklisted Error fstat: fs.c:497 fs_remount_simple: Transport endpoint is not connected x.conf 1572 1441 254:6 /foo/.tmux.conf /home/flo/.tmux.conf ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1572 fsname=/foo/.tmux.conf dir=/home/flo/.tmux.conf fstype=ext4 Mounting read-only /home/foo/.vim 1573 1441 254:6 /foo/.vim /home/flo/.vim ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1573 fsname=/foo/.vim dir=/home/flo/.vim fstype=ext4 Mounting read-only /home/foo/.vimrc 1574 1441 254:6 /foo/.vimrc /home/flo/.vimrc ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1574 fsname=/foo/.vimrc dir=/home/flo/.vimrc fstype=ext4 Mounting read-only /home/foo/.config/menus 1575 1441 254:6 /foo/.config/menus /home/flo/.config/menus ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1575 fsname=/foo/.config/menus dir=/home/flo/.config/menus fstype=ext4 Mounting read-only /home/foo/.gnome/apps 1576 1441 254:6 /foo/.gnome/apps /home/flo/.gnome/apps ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1576 fsname=/foo/.gnome/apps dir=/home/flo/.gnome/apps fstype=ext4 Mounting read-only /home/foo/.local/share/applications 1577 1441 254:6 /foo/.local/share/applications /home/flo/.local/share/applications ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1577 fsname=/foo/.local/share/applications dir=/home/flo/.local/share/applications fstype=ext4 Mounting read-only /home/foo/.config/mimeapps.list 1578 1441 254:6 /foo/.config/mimeapps.list /home/flo/.config/mimeapps.list ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1578 fsname=/foo/.config/mimeapps.list dir=/home/flo/.config/mimeapps.list fstype=ext4 Mounting read-only /home/foo/.config/user-dirs.dirs 1579 1441 254:6 /foo/.config/user-dirs.dirs /home/flo/.config/user-dirs.dirs ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1579 fsname=/foo/.config/user-dirs.dirs dir=/home/flo/.config/user-dirs.dirs fstype=ext4 Mounting read-only /home/foo/.config/user-dirs.locale 1580 1441 254:6 /foo/.config/user-dirs.locale /home/flo/.config/user-dirs.locale ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1580 fsname=/foo/.config/user-dirs.locale dir=/home/flo/.config/user-dirs.locale fstype=ext4 Mounting read-only /home/foo/.local/share/mime 1581 1441 254:6 /foo/.local/share/mime /home/flo/.local/share/mime ro,relatime master:77 - ext4 /dev/mapper/VolGroup00-home rw mountid=1581 fsname=/foo/.local/share/mime dir=/home/flo/.local/share/mime fstype=ext4 Disable /home/foo/.cert Disable /home/foo/.config/keybase Disable /home/foo/.gnupg Disable /home/foo/.local/share/keyrings Disable /home/foo/.pki Disable /home/foo/.local/share/pki Disable /home/foo/.ssh Disable /usr/local/sbin Disable /usr/lib/virtualbox Disable /usr/lib/virtualbox (requested /usr/lib64/virtualbox) Disable /proc/config.gz Disable /run/user/1000/wayland-0.lock Disable /run/user/1000/inaccessible Disable /usr/src Disable /usr/local/src Disable /usr/include Disable /usr/local/include Mounting noexec /home/flo 1646 1599 0:23 /firejail/firejail.ro.dir /home/foo/.ssh rw,nosuid,nodev,relatime master:13 - tmpfs run rw,mode=755 mountid=1646 fsname=/firejail/firejail.ro.dir dir=/home/foo/.ssh fstype=tmpfs Mounting noexec /home/foo/.local/share/containers 1647 1600 254:17 / /home/foo/.local/share/containers rw,nosuid,nodev,noexec,relatime master:79 - ext4 /dev/mapper/VolGroup00-local_share_containers rw mountid=1647 fsname=/ dir=/home/foo/.local/share/containers fstype=ext4 Mounting noexec /home/foo/Videos 1648 1601 254:18 / /home/foo/Videos rw,nosuid,nodev,noexec,relatime master:81 - ext4 /dev/mapper/VolGroup00-Videos rw mountid=1648 fsname=/ dir=/home/foo/Videos fstype=ext4 Mounting noexec /home/foo/VirtualBox_VMs 1649 1602 254:16 / /home/foo/VirtualBox_VMs rw,nosuid,nodev,noexec,relatime master:83 - ext4 /dev/mapper/VolGroup00-VirtualBox_VMs rw mountid=1649 fsname=/ dir=/home/foo/VirtualBox_VMs fstype=ext4 Error: proc 80574 cannot sync with peer: unexpected EOF Peer 80597 unexpectedly exited with status 1 ``` </details>
gitea-mirror commented 2026-05-05 08:51:54 -06:00
Author
Owner
Copy link

@diepfote commented on GitHub (Jun 21, 2020):

Sorry a restart solved it for whatever reason.

<!-- gh-comment-id:647158439 --> @diepfote commented on GitHub (Jun 21, 2020): Sorry a restart solved it for whatever reason.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
serialize_remounts_v2
landlock_v4
landlock
release-0.9.64
release-0.9.62
gitlab_ci
LTSbase
fred_ctests
docs
0.9.80
0.9.80-rc1
0.9.78
0.9.76
0.9.76-rc4
0.9.76-rc3
0.9.76-rc2
0.9.76-rc1
0.9.74
landlock-split
0.9.72
0.9.72rc1
0.9.70
0.9.68
0.9.68rc1
0.9.66
0.9.66rc1
0.9.64.4
0.9.64.2
0.9.64
0.9.64rc1
0.9.62.4
0.9.62.2
0.9.62
0.9.56.2-LTS
0.9.60
0.9.60-rc1
0.9.58.2
0.9.58
0.9.58-rc1
0.9.56-LTS-release
0.9.56-LTS
0.9.56
0.9.56-rc1
0.9.54
0.9.54-rc2
0.9.54-rc1
0.9.52
0.9.38.12
0.9.50
0.9.50-rc1
0.9.48
0.9.46
0.9.46-rc1
0.9.44.10
0.9.44.8
0.9.44.6
0.9.38.10
0.9.44.4
0.9.38.8
0.9.44.2
0.9.44
0.9.44-rc1
0.9.38.4
0.9.42
0.9.42-rc2
0.9.38.2
0.9.42-rc1
disable-globalcfg
0.9.40
0.9.40-rc1
0.9.38
0.9.38-rc1
0.9.36
0.9.36-rc1
0.9.34
0.9.34-rc1
0.9.32
0.9.32-rc1
0.9.30
0.9.30-rc1
Labels
Clear labels   
LTS merge

   
LTS merge

   
bug

   
bug

   
converted-to-discussion

   
doc-todo

   
documentation

   
duplicate

   
enhancement

   
file-transfer

   
firecfg

   
firejail-in-firejail

   
firetools

   
graphics

   
help wanted

   
information_old

   
installation

   
invalid

   
modif

   
moved

   
needinfo

   
networking

   
notabug

   
notourbug

   
old-version

   
overlayfs

   
packaging

   
profile-request

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question_old

   
removal

   
runtime-permissions

   
sandbox-ipc

   
security

   
stale

   
wiki

   
wiki

   
wontfix

   
wordpress

   
workaround
No labels
LTS merge
LTS merge
bug
bug
converted-to-discussion
doc-todo
documentation
duplicate
enhancement
file-transfer
firecfg
firejail-in-firejail
firetools
graphics
help wanted
information_old
installation
invalid
modif
moved
needinfo
networking
notabug
notourbug
old-version
overlayfs
packaging
profile-request
pull-request
question
question_old
removal
runtime-permissions
sandbox-ipc
security
stale
wiki
wiki
wontfix
wordpress
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#2182
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?