[GH-ISSUE #3546] Error mounting appimage: No such device #2229

New issue

Closed

opened 2026-05-05 08:54:54 -06:00 by gitea-mirror · 11 comments

gitea-mirror commented 2026-05-05 08:54:54 -06:00

Owner

Copy link

Originally created by @tjerry on GitHub (Jul 24, 2020).
Original GitHub issue: https://github.com/netblue30/firejail/issues/3546

We use ClickUp at work. They have a desktop client. But I'd like to cut it's access to my home directory.

$ firejail --appimage --private=/home/user/Temp/private_home/clickup ~/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage
Mounting appimage type 2
Error mounting appimage: appimage.c:122 appimage_set: No such device

$ firejail --private=/home/user/Temp/private_home/clickup ~/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage
Reading profile /etc/firejail/default.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc

** Note: you can use --noprofile to disable default.profile **

Parent pid 28648, child pid 28649
Child process initialized in 14.28 ms
/bin/bash: /home/user/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage: No such file or directory

Parent is shutting down, bye...

This one is interesting. First time it started. Subsequent runs end up with the following error.

$ firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage
Parent pid 28677, child pid 28678
Child process initialized in 1.92 ms
/bin/bash: /home/user/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage: No such file or directory

Parent is shutting down, bye...

I'm new to firejail, but so far I have been able to run only spotify, which is installed in the system.
All other local apps failed to start - AppImage or simple binaries.
Could someone help me debug this?

Originally created by @tjerry on GitHub (Jul 24, 2020). Original GitHub issue: https://github.com/netblue30/firejail/issues/3546 We use ClickUp at work. They have a desktop client. But I'd like to cut it's access to my home directory. ``` $ firejail --appimage --private=/home/user/Temp/private_home/clickup ~/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage Mounting appimage type 2 Error mounting appimage: appimage.c:122 appimage_set: No such device ``` ``` $ firejail --private=/home/user/Temp/private_home/clickup ~/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage Reading profile /etc/firejail/default.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc ** Note: you can use --noprofile to disable default.profile ** Parent pid 28648, child pid 28649 Child process initialized in 14.28 ms /bin/bash: /home/user/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage: No such file or directory Parent is shutting down, bye... ``` This one is interesting. First time it started. Subsequent runs end up with the following error. ``` $ firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage Parent pid 28677, child pid 28678 Child process initialized in 1.92 ms /bin/bash: /home/user/Temp/private_home/clickup/clickup-desktop-2.0.13-x86_64.AppImage: No such file or directory Parent is shutting down, bye... ``` I'm new to firejail, but so far I have been able to run only spotify, which is installed in the system. All other local apps failed to start - AppImage or simple binaries. Could someone help me debug this?

gitea-mirror closed this issue 2026-05-05 08:54:54 -06:00

gitea-mirror commented 2026-05-05 08:54:57 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 24, 2020):

--appimage has to be the last firejail argument.

<!-- gh-comment-id:663533811 --> @rusty-snake commented on GitHub (Jul 24, 2020): `--appimage` has to be the last firejail argument.

gitea-mirror commented 2026-05-05 08:54:58 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 24, 2020):

firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage

Does it work w/o --private? (You need to use private-cwd)

<!-- gh-comment-id:663535065 --> @rusty-snake commented on GitHub (Jul 24, 2020): > firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage Does it work w/o `--private`? (You need to use `private-cwd`)

gitea-mirror commented 2026-05-05 08:55:00 -06:00

Author

Owner

Copy link

@tjerry commented on GitHub (Jul 24, 2020):

--appimage has to be the last firejail argument.

$ cd ~/Temp/private_home/clickup
$ firejail --private=/home/static/Temp/private_home/clickup --appimage clickup-desktop-2.0.13-x86_64.AppImage
Error: cannot access AppImage file

$ firejail --private=/home/static/Temp/private_home/clickup --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage
Mounting appimage type 2
Error mounting appimage: appimage.c:122 appimage_set: No such device

firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage

Does it work w/o --private? (You need to use private-cwd)

This one works.

$ firejail --noprofile ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage

$ firejail --private=/home/static/Temp/private_home/clickup --private-cwd --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage
Mounting appimage type 2
Error mounting appimage: appimage.c:122 appimage_set: No such device

$ firejail --noprofile --private=/home/static/Temp/private_home/clickup --private-cwd --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage
Mounting appimage type 2
Error mounting appimage: appimage.c:122 appimage_set: No such device

$ firejail --noprofile --private=/home/static/Temp/private_home/clickup --private-cwd ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage
Parent pid 7730, child pid 7731
Child process initialized in 1.86 ms
/bin/bash: /home/static/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage: No such file or directory

Parent is shutting down, bye...

<!-- gh-comment-id:663549007 --> @tjerry commented on GitHub (Jul 24, 2020): > `--appimage` has to be the last firejail argument. ``` $ cd ~/Temp/private_home/clickup $ firejail --private=/home/static/Temp/private_home/clickup --appimage clickup-desktop-2.0.13-x86_64.AppImage Error: cannot access AppImage file ``` ``` $ firejail --private=/home/static/Temp/private_home/clickup --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage Mounting appimage type 2 Error mounting appimage: appimage.c:122 appimage_set: No such device ``` > > firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage > > Does it work w/o `--private`? (You need to use `private-cwd`) This one works. ``` $ firejail --noprofile ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage ``` ``` $ firejail --private=/home/static/Temp/private_home/clickup --private-cwd --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage Mounting appimage type 2 Error mounting appimage: appimage.c:122 appimage_set: No such device ``` ``` $ firejail --noprofile --private=/home/static/Temp/private_home/clickup --private-cwd --appimage ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage Mounting appimage type 2 Error mounting appimage: appimage.c:122 appimage_set: No such device ``` ``` $ firejail --noprofile --private=/home/static/Temp/private_home/clickup --private-cwd ~/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage Parent pid 7730, child pid 7731 Child process initialized in 1.86 ms /bin/bash: /home/static/Temp/private_home/clickup/clickup-desktop-2.0.14-x86_64.AppImage: No such file or directory Parent is shutting down, bye... ```

gitea-mirror commented 2026-05-05 08:55:01 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 26, 2020):

firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage

In which dir is the AI?

<!-- gh-comment-id:664032305 --> @rusty-snake commented on GitHub (Jul 26, 2020): > firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage In which dir is the AI?

gitea-mirror commented 2026-05-05 08:55:02 -06:00

Author

Owner

Copy link

@tjerry commented on GitHub (Jul 28, 2020):

firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage

In which dir is the AI?

The AI is in the private dir, which is ~/Temp/private_home/clickup.

If I run it like this, it works.
$ cd ~/Temp/private_home/clickup
$ firejail --noprofile --private=~/Temp/private_home/clickup ./clickup-desktop-2.0.14-x86_64.AppImage

Without --noprofile, there is an error.

$ firejail --private=~/Temp/private_home/clickup ./clickup-desktop-2.0.14-x86_64.AppImage
Reading profile /etc/firejail/default.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc

** Note: you can use --noprofile to disable default.profile **

Parent pid 14585, child pid 14586
Child process initialized in 13.52 ms
execv error: No such file or directory

Parent is shutting down, bye...

<!-- gh-comment-id:664947192 --> @tjerry commented on GitHub (Jul 28, 2020): > > firejail --noprofile --private=/home/user/Temp/private_home/clickup ./clickup-desktop-2.0.13-x86_64.AppImage > > In which dir is the AI? The AI is in the private dir, which is ~/Temp/private_home/clickup. If I run it like this, it works. `$ cd ~/Temp/private_home/clickup` `$ firejail --noprofile --private=~/Temp/private_home/clickup ./clickup-desktop-2.0.14-x86_64.AppImage` Without `--noprofile`, there is an error. ``` $ firejail --private=~/Temp/private_home/clickup ./clickup-desktop-2.0.14-x86_64.AppImage Reading profile /etc/firejail/default.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc ** Note: you can use --noprofile to disable default.profile ** Parent pid 14585, child pid 14586 Child process initialized in 13.52 ms execv error: No such file or directory Parent is shutting down, bye... ```

gitea-mirror commented 2026-05-05 08:55:03 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 28, 2020):

Then you must write a profile for it or request one in #1139.

<!-- gh-comment-id:664999026 --> @rusty-snake commented on GitHub (Jul 28, 2020): Then you must write a profile for it or request one in #1139.

gitea-mirror commented 2026-05-05 08:55:05 -06:00

Author

Owner

Copy link

@tjerry commented on GitHub (Jul 29, 2020):

OK, I think I've got it now.
The app didn't start, because the default profile was too restrictive.

I've created a simple profile in ~/.config/firejail/clickup.profile.

#include disable-common.inc
#include disable-devel.inc
#include disable-exec.inc
include disable-interpreters.inc
include disable-passwdmgr.inc
include disable-programs.inc

disable-mnt
private ~/[my private dir]
#private-cwd

#seccomp
#nonewprivs

The appimage file has to be inside private directory.
And I run it like this:
$ firejail --profile=clickup ./clickup.AppImage

I would mark this thread as solved, however:

1. I'm wandering why the --appimage switch doesn't work?

The following two commands end in an error.
$ firejail --profile=clickup --appimage ./clickup.AppImage
or
$ firejail --profile=clickup --appimage clickup.AppImage

Reading profile /home/static/.config/firejail/clickup.profile
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc
Error: cannot access AppImage file

2. And what difference does the --appimage switch make.? Except for what is mentioned in the man page - "If the sandbox is started as a regular user, nonewprivs and a default capabilities filter are enabled".

<!-- gh-comment-id:665538735 --> @tjerry commented on GitHub (Jul 29, 2020): OK, I think I've got it now. The app didn't start, because the default profile was too restrictive. I've created a simple profile in `~/.config/firejail/clickup.profile`. ``` #include disable-common.inc #include disable-devel.inc #include disable-exec.inc include disable-interpreters.inc include disable-passwdmgr.inc include disable-programs.inc disable-mnt private ~/[my private dir] #private-cwd #seccomp #nonewprivs ``` The appimage file has to be inside private directory. And I run it like this: `$ firejail --profile=clickup ./clickup.AppImage` I would mark this thread as solved, however: 1) I'm wandering why the `--appimage` switch doesn't work? The following two commands end in an error. `$ firejail --profile=clickup --appimage ./clickup.AppImage` or `$ firejail --profile=clickup --appimage clickup.AppImage` ``` Reading profile /home/static/.config/firejail/clickup.profile Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc Error: cannot access AppImage file ``` 2) And what difference does the `--appimage` switch make.? Except for what is mentioned in the man page - "_If the sandbox is started as a regular user, nonewprivs and a default capabilities filter are enabled_".

gitea-mirror commented 2026-05-05 08:55:06 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 29, 2020):

1. Because clickup.AppImage is not in ., you need to give it the full path.

<!-- gh-comment-id:665543110 --> @rusty-snake commented on GitHub (Jul 29, 2020): 1. Because clickup.AppImage is not in `.`, you need to give it the full path.

gitea-mirror commented 2026-05-05 08:55:07 -06:00

Author

Owner

Copy link

@tjerry commented on GitHub (Jul 29, 2020):

1. Because clickup.AppImage is not in `.`, you need to give it the full path.

Full private path:

$ firejail --profile=clickup --appimage /home/static/clickup.AppImage
Reading profile /home/static/.config/firejail/clickup.profile
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc
Error: cannot access AppImage file

Full real path:

$ firejail --profile=clickup --appimage /home/static/Temp/private_home/clickup/clickup.AppIage
Reading profile /home/static/.config/firejail/clickup.profile
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc
Mounting appimage type 2
Error mounting appimage: appimage.c:122 appimage_set: No such device

<!-- gh-comment-id:665562692 --> @tjerry commented on GitHub (Jul 29, 2020): > 1. Because clickup.AppImage is not in `.`, you need to give it the full path. Full private path: ``` $ firejail --profile=clickup --appimage /home/static/clickup.AppImage Reading profile /home/static/.config/firejail/clickup.profile Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc Error: cannot access AppImage file ``` Full real path: ``` $ firejail --profile=clickup --appimage /home/static/Temp/private_home/clickup/clickup.AppIage Reading profile /home/static/.config/firejail/clickup.profile Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc Mounting appimage type 2 Error mounting appimage: appimage.c:122 appimage_set: No such device ```

gitea-mirror commented 2026-05-05 08:55:08 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Jul 29, 2020):

Full real path:
Error mounting appimage: appimage.c:122 appimage_set: No such device

Can you try an other AI. If this happens with the other AI too, it is something with your systemconfig (modprobe blacklist?).

<!-- gh-comment-id:665564928 --> @rusty-snake commented on GitHub (Jul 29, 2020): > Full real path: > Error mounting appimage: appimage.c:122 appimage_set: No such device Can you try an other AI. If this happens with the other AI too, it is something with your systemconfig (modprobe blacklist?).

gitea-mirror commented 2026-05-05 08:55:08 -06:00

Author

Owner

Copy link

@tjerry commented on GitHub (Jul 30, 2020):

Full real path:
Error mounting appimage: appimage.c:122 appimage_set: No such device

Can you try an other AI. If this happens with the other AI too, it is something with your systemconfig (modprobe blacklist?).

I had no squashfs compiled into the kernel and firejail was unable to mount the images.
Problem solved.
Thank you.

<!-- gh-comment-id:666258250 --> @tjerry commented on GitHub (Jul 30, 2020): > > Full real path: > > Error mounting appimage: appimage.c:122 appimage_set: No such device > > Can you try an other AI. If this happens with the other AI too, it is something with your systemconfig (modprobe blacklist?). I had no squashfs compiled into the kernel and firejail was unable to mount the images. Problem solved. Thank you.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#2229

No description provided.