github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

[GH-ISSUE #380] Programs start without sandbox if /proc is mounted with hidepid #273

New issue
Closed
opened 2026-05-05 05:28:42 -06:00 by gitea-mirror · 14 comments
gitea-mirror commented 2026-05-05 05:28:42 -06:00
Owner
Copy link

Originally created by @ghost on GitHub (Mar 24, 2016).
Original GitHub issue: https://github.com/netblue30/firejail/issues/380

If the /proc file system is mounted with hidepid=1 or hidepid=2, firejail reports to have detected an existing sandbox (as it can't see the kernel processes), starting the program in a normal /bin/sh shell. While this can be avoided using --force, it looks like a security problem to me as the warning can't be seen unless firejail is started in a terminal, making it seem like the program is sandboxed when it really isn't.

  1. Would it be possible to detect an existing sandbox without checking for kernel processes?
  2. Instead of starting programs in an insecure /bin/sh shell, the default behavior in my opinion should be not to start the program unless a special command-line flag is used. Otherwise, people might restrict access to kernel processes, not realizing that their sandbox isn't being used anymore.
Originally created by @ghost on GitHub (Mar 24, 2016). Original GitHub issue: https://github.com/netblue30/firejail/issues/380 If the `/proc` file system is mounted with `hidepid=1` or `hidepid=2`, firejail reports to have detected an existing sandbox (as it can't see the kernel processes), starting the program in a normal `/bin/sh` shell. While this can be avoided using `--force`, it looks like a security problem to me as the warning can't be seen unless firejail is started in a terminal, making it seem like the program is sandboxed when it really isn't. 1. Would it be possible to detect an existing sandbox without checking for kernel processes? 2. Instead of starting programs in an insecure `/bin/sh` shell, the default behavior in my opinion should be not to start the program unless a special command-line flag is used. Otherwise, people might restrict access to kernel processes, not realizing that their sandbox isn't being used anymore.
gitea-mirror 2026-05-05 05:28:42 -06:00
  • closed this issue
  • added the
    bug
         label
gitea-mirror commented 2026-05-05 05:28:47 -06:00
Author
Owner
Copy link

@ghost commented on GitHub (Mar 26, 2016):

Would you accept a pull request that changes the default behavior to require an --allow-no-sandbox option (or similar) for firejail to use an insecure /bin/sh shell, so that, when an existing sandbox is detected:

  • --allow-no-sandbox uses a normal, insecure /bin/sh shell
  • --force uses a sandbox (no change necessary)
  • Both options given: use a sandbox (--force takes precedence)
  • None of the options given: show an error message asking the user to specify one of the options; then exit
<!-- gh-comment-id:201759964 --> @ghost commented on GitHub (Mar 26, 2016): Would you accept a pull request that changes the default behavior to require an `--allow-no-sandbox` option (or similar) for firejail to use an insecure `/bin/sh` shell, so that, when an existing sandbox is detected: - **`--allow-no-sandbox`** uses a normal, insecure `/bin/sh` shell - **`--force`** uses a sandbox (no change necessary) - **Both options given**: use a sandbox (`--force` takes precedence) - **None of the options given**: show an error message asking the user to specify one of the options; then exit
gitea-mirror commented 2026-05-05 05:28:50 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Mar 28, 2016):

I would leave it as is for now, probably there will be more changes in the future.

The question is this: you are in a sandbox, and you try to start another sandbox, what should happen? For Mozilla Thunderbird users this happens every time when they click a link in an email. So far the only idea I had was to start Firefox in the existing sandbox.

<!-- gh-comment-id:202365458 --> @netblue30 commented on GitHub (Mar 28, 2016): I would leave it as is for now, probably there will be more changes in the future. The question is this: you are in a sandbox, and you try to start another sandbox, what should happen? For Mozilla Thunderbird users this happens every time when they click a link in an email. So far the only idea I had was to start Firefox in the existing sandbox.
gitea-mirror commented 2026-05-05 05:28:52 -06:00
Author
Owner
Copy link

@ghost commented on GitHub (Mar 28, 2016):

You're right, I didn't think about that.
Do you have any idea how a sandbox could be detected other than by kernel processes? If not, let's close this issue?

<!-- gh-comment-id:202485008 --> @ghost commented on GitHub (Mar 28, 2016): You're right, I didn't think about that. Do you have any idea how a sandbox could be detected other than by kernel processes? If not, let's close this issue?
gitea-mirror commented 2026-05-05 05:28:54 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Mar 28, 2016):

Probably there are other ways. The kernel gives out some inode numbers in /proc/self/ns, you can compare these numbers with a regular process and detect the namespaces.

<!-- gh-comment-id:202575069 --> @netblue30 commented on GitHub (Mar 28, 2016): Probably there are other ways. The kernel gives out some inode numbers in /proc/self/ns, you can compare these numbers with a regular process and detect the namespaces.
gitea-mirror commented 2026-05-05 05:28:56 -06:00
Author
Owner
Copy link

@Sidnioulz commented on GitHub (May 30, 2016):

@netblue30 not sure what exactly is the mechanics behind the Thunderbird situation, but on my fork I expect all my Xfce apps to use libxfce4ui's spawning function, and that function will detect if it is in a sandbox and then run "unsandboxed" (as in, not prepend firejail to the arguments being executed, resulting in the newly executed app being in the same container as its parent).

Assuming that you refer to Thunderbird running a .desktop file that does "firejail firefox", then the issue is that the .desktop file should embed that information another way (.desktop files have a special key in my fork indicating that Xfce should sandbox them) and the spawning utility used should be compatible (so that the initial run of the .desktop file in an unsandboxed environment properly runs it in a sandbox, and runs inside existing sandboxes put the new app inside that existing sandbox).

This is reliable and, as I see it, allows legitimate use of program helpers without raising security issues. But then again I have window decorations that clearly indicate the domain in which a windowed program is, you'd need that too to avoid user errors (using Thunderbird's firefox rather than another sandboxed firefox, when both are running).

<!-- gh-comment-id:222499169 --> @Sidnioulz commented on GitHub (May 30, 2016): @netblue30 not sure what exactly is the mechanics behind the Thunderbird situation, but on my fork I expect all my Xfce apps to use libxfce4ui's spawning function, and that function will detect if it is in a sandbox and then run "unsandboxed" (as in, not prepend firejail to the arguments being executed, resulting in the newly executed app being in the same container as its parent). Assuming that you refer to Thunderbird running a .desktop file that does "firejail firefox", then the issue is that the .desktop file should embed that information another way (.desktop files have a special key in my fork indicating that Xfce should sandbox them) and the spawning utility used should be compatible (so that the initial run of the .desktop file in an unsandboxed environment properly runs it in a sandbox, and runs inside existing sandboxes put the new app inside that existing sandbox). This is reliable and, as I see it, allows legitimate use of program helpers without raising security issues. But then again I have window decorations that clearly indicate the domain in which a windowed program is, you'd need that too to avoid user errors (using Thunderbird's firefox rather than another sandboxed firefox, when both are running).
gitea-mirror commented 2026-05-05 05:28:58 -06:00
Author
Owner
Copy link

@deathtrip commented on GitHub (Jul 31, 2016):

I have /proc mounted with hidepid=2, and when i start a sandboxed program from the terminal, everything seems ok.
No report of an existing sandbox.
However no sandbox can be seen by using "firemon --list" or by firetools.

<!-- gh-comment-id:236425097 --> @deathtrip commented on GitHub (Jul 31, 2016): I have /proc mounted with hidepid=2, and when i start a sandboxed program from the terminal, everything seems ok. No report of an existing sandbox. However no sandbox can be seen by using "firemon --list" or by firetools.
gitea-mirror commented 2026-05-05 05:29:01 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Jul 31, 2016):

How do you mount /proc with hidepid=2?

<!-- gh-comment-id:236432524 --> @netblue30 commented on GitHub (Jul 31, 2016): How do you mount /proc with hidepid=2?
gitea-mirror commented 2026-05-05 05:29:03 -06:00
Author
Owner
Copy link

@deathtrip commented on GitHub (Jul 31, 2016):

here's the fstab entry:
proc /proc procfs hidepid=2,gid=proc 0 0

and the group file entry:
proc26:polkitd

<!-- gh-comment-id:236436262 --> @deathtrip commented on GitHub (Jul 31, 2016): here's the fstab entry: proc /proc procfs hidepid=2,gid=proc 0 0 and the group file entry: proc:x:26:polkitd
gitea-mirror commented 2026-05-05 05:29:05 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Aug 1, 2016):

I'll give it a try, thanks.

<!-- gh-comment-id:236560979 --> @netblue30 commented on GitHub (Aug 1, 2016): I'll give it a try, thanks.
gitea-mirror commented 2026-05-05 05:29:07 -06:00
Author
Owner
Copy link

@deathtrip commented on GitHub (Nov 9, 2016):

any progress on this?

<!-- gh-comment-id:259306877 --> @deathtrip commented on GitHub (Nov 9, 2016): any progress on this?
gitea-mirror commented 2026-05-05 05:29:09 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Nov 9, 2016):

However no sandbox can be seen by using "firemon --list" or by firetools

Are you talking about this?

<!-- gh-comment-id:259440133 --> @netblue30 commented on GitHub (Nov 9, 2016): > However no sandbox can be seen by using "firemon --list" or by firetools Are you talking about this?
gitea-mirror commented 2026-05-05 05:29:13 -06:00
Author
Owner
Copy link

@deathtrip commented on GitHub (Nov 9, 2016):

Yes.

<!-- gh-comment-id:259471390 --> @deathtrip commented on GitHub (Nov 9, 2016): Yes.
gitea-mirror commented 2026-05-05 05:29:16 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Nov 10, 2016):

I'll try to bring in a fix.

<!-- gh-comment-id:259697366 --> @netblue30 commented on GitHub (Nov 10, 2016): I'll try to bring in a fix.
gitea-mirror commented 2026-05-05 05:29:17 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Nov 12, 2016):

Fixed!

<!-- gh-comment-id:260120877 --> @netblue30 commented on GitHub (Nov 12, 2016): Fixed!
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
serialize_remounts_v2
landlock_v4
landlock
release-0.9.64
release-0.9.62
gitlab_ci
LTSbase
fred_ctests
docs
0.9.80
0.9.80-rc1
0.9.78
0.9.76
0.9.76-rc4
0.9.76-rc3
0.9.76-rc2
0.9.76-rc1
0.9.74
landlock-split
0.9.72
0.9.72rc1
0.9.70
0.9.68
0.9.68rc1
0.9.66
0.9.66rc1
0.9.64.4
0.9.64.2
0.9.64
0.9.64rc1
0.9.62.4
0.9.62.2
0.9.62
0.9.56.2-LTS
0.9.60
0.9.60-rc1
0.9.58.2
0.9.58
0.9.58-rc1
0.9.56-LTS-release
0.9.56-LTS
0.9.56
0.9.56-rc1
0.9.54
0.9.54-rc2
0.9.54-rc1
0.9.52
0.9.38.12
0.9.50
0.9.50-rc1
0.9.48
0.9.46
0.9.46-rc1
0.9.44.10
0.9.44.8
0.9.44.6
0.9.38.10
0.9.44.4
0.9.38.8
0.9.44.2
0.9.44
0.9.44-rc1
0.9.38.4
0.9.42
0.9.42-rc2
0.9.38.2
0.9.42-rc1
disable-globalcfg
0.9.40
0.9.40-rc1
0.9.38
0.9.38-rc1
0.9.36
0.9.36-rc1
0.9.34
0.9.34-rc1
0.9.32
0.9.32-rc1
0.9.30
0.9.30-rc1
Labels
Clear labels   
LTS merge

   
LTS merge

   
bug

   
bug

   
converted-to-discussion

   
doc-todo

   
documentation

   
duplicate

   
enhancement

   
file-transfer

   
firecfg

   
firejail-in-firejail

   
firetools

   
graphics

   
help wanted

   
information_old

   
installation

   
invalid

   
modif

   
moved

   
needinfo

   
networking

   
notabug

   
notourbug

   
old-version

   
overlayfs

   
packaging

   
profile-request

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question_old

   
removal

   
runtime-permissions

   
sandbox-ipc

   
security

   
stale

   
wiki

   
wiki

   
wontfix

   
wordpress

   
workaround
No labels
LTS merge
LTS merge
bug
bug
converted-to-discussion
doc-todo
documentation
duplicate
enhancement
file-transfer
firecfg
firejail-in-firejail
firetools
graphics
help wanted
information_old
installation
invalid
modif
moved
needinfo
networking
notabug
notourbug
old-version
overlayfs
packaging
profile-request
pull-request
question
question_old
removal
runtime-permissions
sandbox-ipc
security
stale
wiki
wiki
wontfix
wordpress
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#273
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?