github-starred/firejail

Fork 0

mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00

[GH-ISSUE #6652] Add a profile for betterbird 2 #3327

New issue

Closed

opened 2026-05-05 09:54:48 -06:00 by gitea-mirror · 2 comments

gitea-mirror commented

2026-05-05 09:54:48 -06:00

Owner

Originally created by @PWungsten on GitHub (Feb 19, 2025).
Original GitHub issue: https://github.com/netblue30/firejail/issues/6652

Description

I am trying to run betterbird in firejail. The automatically-built profile does not work.

Steps to Reproduce

If necessary, install firejail
If necessary, install betterbird from (https://www.betterbird.eu/downloads/index.php) or your repository.
Ensure there is no betterbird profile in $HOME/.config/firejail
Find the path for the betterbird executable. For me, it is /usr/local/bin/betterbird/betterbird.
If necessary, amend the path below.
Run /usr/bin/firejail --build=betterbird.profile /usr/local/bin/betterbird/betterbird &
When betterbird exits, the file betterbird.profile is created.
Move betterbird.profile to $HOME/.config/firejail
Run /usr/bin/firejail /usr/local/bin/betterbird/betterbird.

Result

The new profile fails to start betterbird, reporting

Reading profile /home/ME/.config/firejail/betterbird.profile
Reading profile /etc/firejail/whitelist-common.inc
Reading profile /etc/firejail/whitelist-run-common.inc
Reading profile /etc/firejail/whitelist-runuser-common.inc
Reading profile /etc/firejail/whitelist-usr-share-common.inc
Reading profile /etc/firejail/whitelist-var-common.inc
Warning: networking feature is disabled in Firejail configuration file
Warning: networking feature is disabled in Firejail configuration file
Warning: "shell none" command in the profile file is done by default; the command will be deprecated
Seccomp list in: !chroot, check list: @default-keep, prelist: unknown,
Parent pid 5647, child pid 5648
4 programs installed in 6.20 ms
Warning: skipping drirc for private /etc
Private /etc installed in 27.52 ms
Private /usr/etc installed in 0.00 ms
Warning: cleaning all supplementary groups
Warning: cleaning all supplementary groups
Seccomp list in: !chroot, check list: @default-keep, prelist: unknown,
Warning: cleaning all supplementary groups
Child process initialized in 107.37 ms
Error: no suitable /usr/local/bin/betterbird/betterbird executable found

Why does the automatically-built profile not work?

Additional context

Here is the automatically-created profile (comments and commented-out lines deleted)

include disable-common.inc
include disable-programs.inc
whitelist ${HOME}/.mozilla/firefox
whitelist ${HOME}/.mozilla/firefox/Crash Reports
whitelist ${HOME}/.cache/thumbnails
whitelist ${HOME}/.hidden
whitelist ${HOME}/.mozilla/extensions
whitelist ${HOME}/.mailcap
whitelist ${HOME}/.local/bin
whitelist ${HOME}/bin
whitelist ${HOME}/.local/share/glib-2.0/schemas
whitelist ${HOME}/.cache/mesa_shader_cache_db
whitelist ${HOME}/Downloads
whitelist ${HOME}/.cache/thunderbird
whitelist ${HOME}/.thunderbird
whitelist ${HOME}/.Xdefaults-peter-AS23
include whitelist-common.inc
whitelist /run/dconf/user/1000
include whitelist-run-common.inc
whitelist ${RUNUSER}/flatpak-info
whitelist ${RUNUSER}/gvfsd
whitelist ${RUNUSER}/pulse
whitelist ${RUNUSER}/at-spi/bus_0
include whitelist-runuser-common.inc
whitelist /usr/share/mozilla
whitelist /usr/share/gnome
whitelist /usr/share/cinnamon
include whitelist-usr-share-common.inc
whitelist /var/db/zoneinfo
include whitelist-var-common.inc
caps.drop all
ipc-namespace
netfilter
nonewprivs
noroot
protocol unix,inet,inet6,netlink,
netfilter
seccomp !chroot # allowing chroot, just in case this is an Electron app
shell none
private-bin dash,betterbird/glxtest,betterbird/betterbird-bin,betterbird/betterbird,
private-dev
private-etc hosts,ld.so.conf.d,ld.so.conf,firefox,login.defs,mailcap,localtime,timezone,machine-id,mime.types,dconf,fonts,drirc,os-release,thunderbird,xdg,gtk-3.0,selinux,

There is a file /usr/local/bin/betterbird/betterbird which I can run without firejail, so I think firejail has created a virtual /usr.

Environment

Kernel: Linux 6.8.0-53-generic x86_64
Distribution: Linux Mint 22.1
Betterbird 128.7.0esr-bb22 (64-bit)
Firejail 0.9.72

Originally created by @PWungsten on GitHub (Feb 19, 2025). Original GitHub issue: https://github.com/netblue30/firejail/issues/6652 ### Description I am trying to run betterbird in firejail. The automatically-built profile does not work. ### Steps to Reproduce 1. If necessary, install firejail 2. If necessary, install betterbird from (https://www.betterbird.eu/downloads/index.php) or your repository. 3. Ensure there is no betterbird profile in `$HOME/.config/firejail` 4. Find the path for the betterbird executable. For me, it is /usr/local/bin/betterbird/betterbird. 5. If necessary, amend the path below. 6. Run `/usr/bin/firejail --build=betterbird.profile /usr/local/bin/betterbird/betterbird &` 7. When betterbird exits, the file betterbird.profile is created. 8. Move betterbird.profile to `$HOME/.config/firejail` 9. Run `/usr/bin/firejail /usr/local/bin/betterbird/betterbird`. ### Result The new profile fails to start betterbird, reporting ``` Reading profile /home/ME/.config/firejail/betterbird.profile Reading profile /etc/firejail/whitelist-common.inc Reading profile /etc/firejail/whitelist-run-common.inc Reading profile /etc/firejail/whitelist-runuser-common.inc Reading profile /etc/firejail/whitelist-usr-share-common.inc Reading profile /etc/firejail/whitelist-var-common.inc Warning: networking feature is disabled in Firejail configuration file Warning: networking feature is disabled in Firejail configuration file Warning: "shell none" command in the profile file is done by default; the command will be deprecated Seccomp list in: !chroot, check list: @default-keep, prelist: unknown, Parent pid 5647, child pid 5648 4 programs installed in 6.20 ms Warning: skipping drirc for private /etc Private /etc installed in 27.52 ms Private /usr/etc installed in 0.00 ms Warning: cleaning all supplementary groups Warning: cleaning all supplementary groups Seccomp list in: !chroot, check list: @default-keep, prelist: unknown, Warning: cleaning all supplementary groups Child process initialized in 107.37 ms Error: no suitable /usr/local/bin/betterbird/betterbird executable found ``` Why does the automatically-built profile not work? ### Additional context Here is the automatically-created profile (comments and commented-out lines deleted) ``` include disable-common.inc include disable-programs.inc whitelist ${HOME}/.mozilla/firefox whitelist ${HOME}/.mozilla/firefox/Crash Reports whitelist ${HOME}/.cache/thumbnails whitelist ${HOME}/.hidden whitelist ${HOME}/.mozilla/extensions whitelist ${HOME}/.mailcap whitelist ${HOME}/.local/bin whitelist ${HOME}/bin whitelist ${HOME}/.local/share/glib-2.0/schemas whitelist ${HOME}/.cache/mesa_shader_cache_db whitelist ${HOME}/Downloads whitelist ${HOME}/.cache/thunderbird whitelist ${HOME}/.thunderbird whitelist ${HOME}/.Xdefaults-peter-AS23 include whitelist-common.inc whitelist /run/dconf/user/1000 include whitelist-run-common.inc whitelist ${RUNUSER}/flatpak-info whitelist ${RUNUSER}/gvfsd whitelist ${RUNUSER}/pulse whitelist ${RUNUSER}/at-spi/bus_0 include whitelist-runuser-common.inc whitelist /usr/share/mozilla whitelist /usr/share/gnome whitelist /usr/share/cinnamon include whitelist-usr-share-common.inc whitelist /var/db/zoneinfo include whitelist-var-common.inc caps.drop all ipc-namespace netfilter nonewprivs noroot protocol unix,inet,inet6,netlink, netfilter seccomp !chroot # allowing chroot, just in case this is an Electron app shell none private-bin dash,betterbird/glxtest,betterbird/betterbird-bin,betterbird/betterbird, private-dev private-etc hosts,ld.so.conf.d,ld.so.conf,firefox,login.defs,mailcap,localtime,timezone,machine-id,mime.types,dconf,fonts,drirc,os-release,thunderbird,xdg,gtk-3.0,selinux, ``` There is a file /usr/local/bin/betterbird/betterbird which I can run without firejail, so I think firejail has created a virtual /usr. ### Environment Kernel: Linux 6.8.0-53-generic x86_64 Distribution: Linux Mint 22.1 Betterbird 128.7.0esr-bb22 (64-bit) Firejail 0.9.72

gitea-mirror

2026-05-05 09:54:48 -06:00

closed this issue
added the
duplicate

profile-request
labels

gitea-mirror commented

2026-05-05 09:54:52 -06:00

Author

Owner

@kmk3 commented on GitHub (Feb 19, 2025):

Duplicate of #6651

@kmk3 commented on GitHub (Feb 19, 2025): Duplicate of #6651

gitea-mirror commented

2026-05-05 09:54:52 -06:00

Author

Owner

@kmk3 commented on GitHub (Feb 19, 2025):

(Offtopic)

Please see the following links for how to format code blocks in markdown:

@kmk3 commented on GitHub (Feb 19, 2025): (Offtopic) Please see the following links for how to format code blocks in markdown: * <https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks> * <https://github.github.com/gfm/#fenced-code-blocks>

gitea-mirror referenced this issue

2026-05-05 10:25:25 -06:00

[PR #3327] [MERGED] Add bug report template #4725

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#3327

No description provided.

Rows
Columns