github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

[GH-ISSUE #6911] playonlinux: Cannot start application: Permission denied #3417

New issue
Closed
opened 2026-05-05 09:59:16 -06:00 by gitea-mirror · 3 comments
gitea-mirror commented 2026-05-05 09:59:16 -06:00
Owner
Copy link

Originally created by @davew-fj on GitHub (Sep 26, 2025).
Original GitHub issue: https://github.com/netblue30/firejail/issues/6911

Description

playonlinux: Cannot start application in firejail. Permission denied.

Steps to Reproduce

Steps to reproduce the behavior

  1. Run in bash LC_ALL=C firejail playonlinux

  2. See error `Permission denied'

  3. Run in bash LC_ALL=C firejail /usr/bin/playonlinux

  4. See error 'No such file or directory'
    This Path was identified by 'which' query. Note: This is a symlink which leads to the following 'exec' path:

  5. Run in bash LC_ALL=C firejail /usr/share/playonlinux/playonlinux

  6. See error 'No such file or directory'

Expected behavior

PlayOnLinux GUI should open, to allow installation and operation of programs.

Actual behavior

Error messages received (as noted above). 'Parent is shutting down, bye...'

Behavior without a profile

What changed calling LC_ALL=C firejail --noprofile /path/to/program in a
terminal? The program comes up and functions normally (with all of the above paths to program).

Additional context

_NOTE: The behavior described in this first post was affected by "playonlinux.local" in which I had experimentally whitelisted several directories, as follows: (I will attempt to add a second post, showing results without playonlinux.local)

whitelist /usr/bin/nc
whitelist /usr/lib/firejail/seccomp.debug32
whitelist ${HOME}/.PlayOnLinux
whitelist ${HOME}/~PlayOnLinux's virtual drives

whitelist /usr/bin/playonlinux
whitelist /usr/bin/playonlinux-pkg
whitelist /usr/share/wine
whitelist /usr/share/applications

whitelist /usr/share/playonlinux/playonlinux
whitelist /usr/bin/python3

Environment

  • Name/version/arch of the Linux kernel (uname -srm):
    Tried 2 kernels. The problem is the same with either:
    Linux 5.10.224-antix.1-amd64.smp
    Linux 6.1.105-antix.1-amd64.smp
  • Name/version of the Linux distribution: "antiX23.2" 64bit, Debian bookworm based, no systemD
  • Name/version of the relevant program(s)/package(s)
    PlayOnLinux 4.3.4
  • Version of Firejail: 0.9.74
  • If you use a development version of firejail, also the commit from which it
    was compiled (git rev-parse HEAD): Not applicable

Checklist

  • The issues is caused by firejail (i.e. running the program by path (e.g. /usr/bin/vlc) "fixes" it).
  • I can reproduce the issue without custom modifications (e.g. globals.local).
  • The program has a profile. (If not, request one in https://github.com/netblue30/firejail/issues/1139)
  • The profile (and redirect profile if exists) hasn't already been fixed upstream.
  • I have performed a short search for similar issues (to avoid opening a duplicate).
    • I'm aware of browser-allow-drm yes/browser-disable-u2f no in firejail.config to allow DRM/U2F in browsers.
  • I used --profile=PROFILENAME to set the right profile. (Only relevant for AppImages)

Log

Output of LC_ALL=C firejail /path/to/program 

 LC_ALL=C firejail playonlinux
Reading profile /etc/firejail/playonlinux.profile
Reading profile /home/my3epc/.config/firejail/playonlinux.local
Reading profile /etc/firejail/allow-perl.inc
Reading profile /etc/firejail/allow-python2.inc
Reading profile /etc/firejail/allow-python3.inc
Reading profile /etc/firejail/wine.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/whitelist-var-common.inc
firejail version 0.9.74

Parent pid 4521, child pid 4522
Base filesystem installed in 40.03 ms
Child process initialized in 101.65 ms
Cannot start application: Permission denied
Parent is shutting down, bye...

Output of LC_ALL=C firejail --debug /path/to/program 

$ firejail --debug playonlinux
Looking for kernel processes
Found kthreadd process, we are not running in a sandbox
pid=3451: locking /run/firejail/firejail-run.lock ...
pid=3451: locked /run/firejail/firejail-run.lock
pid=3451: unlocking /run/firejail/firejail-run.lock ...
pid=3451: unlocked /run/firejail/firejail-run.lock
Building quoted command line: 'playonlinux' 
Command name #playonlinux#
Found playonlinux.profile profile in /etc/firejail directory
Reading profile /etc/firejail/playonlinux.profile
Found playonlinux.local profile in /home/my3epc/.config/firejail directory
Reading profile /home/my3epc/.config/firejail/playonlinux.local
Found allow-perl.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-perl.inc
Cannot access .local file allow-perl.local: No such file or directory, skipping...
Found allow-python2.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-python2.inc
Cannot access .local file allow-python2.local: No such file or directory, skipping...
Found allow-python3.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-python3.inc
Cannot access .local file allow-python3.local: No such file or directory, skipping...
Found wine.profile profile in /etc/firejail directory
Reading profile /etc/firejail/wine.profile
Cannot access .local file wine.local: No such file or directory, skipping...
Cannot access .local file globals.local: No such file or directory, skipping...
Found disable-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-common.inc
Cannot access .local file disable-common.local: No such file or directory, skipping...
Found disable-devel.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-devel.inc
Cannot access .local file disable-devel.local: No such file or directory, skipping...
Found disable-interpreters.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-interpreters.inc
Cannot access .local file disable-interpreters.local: No such file or directory, skipping...
Found disable-programs.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-programs.inc
Cannot access .local file disable-programs.local: No such file or directory, skipping...
Found whitelist-var-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/whitelist-var-common.inc
Cannot access .local file whitelist-var-common.local: No such file or directory, skipping...
firejail version 0.9.74

pid=3451: locking /run/firejail/firejail-run.lock ...
pid=3451: locked /run/firejail/firejail-run.lock
DISPLAY=:0.0 parsed as 0
pid=3451: unlocking /run/firejail/firejail-run.lock ...
pid=3451: unlocked /run/firejail/firejail-run.lock
Using the local network stack
Parent pid 3451, child pid 3452
Initializing child process
Host network configured
PID namespace installed
Mounting tmpfs on /run/firejail/mnt directory
Creating empty /run/firejail/mnt/seccomp directory
Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file
Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Mounting /proc filesystem representing the PID namespace
Basic read-only filesystem:
Mounting read-only /etc
52 35 8:3 /etc /etc ro,noatime - ext4 /dev/sda3 rw,discard
mountid=52 fsname=/etc dir=/etc fstype=ext4
Mounting noexec /etc
53 52 8:3 /etc /etc ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=53 fsname=/etc dir=/etc fstype=ext4
Mounting read-only /var
54 35 8:3 /var /var ro,noatime - ext4 /dev/sda3 rw,discard
mountid=54 fsname=/var dir=/var fstype=ext4
Mounting noexec /var
55 54 8:3 /var /var ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=55 fsname=/var dir=/var fstype=ext4
Mounting read-only /usr
56 35 8:3 /usr /usr ro,noatime - ext4 /dev/sda3 rw,discard
mountid=56 fsname=/usr dir=/usr fstype=ext4
Mounting tmpfs on /var/lock
Mounting tmpfs on /var/tmp
Mounting tmpfs on /var/log
Mounting tmpfs on /var/lib/dhcp
Mounting tmpfs on /var/lib/snmp
Mounting tmpfs on /var/lib/sudo
Create the new utmp file
Mount the new utmp file
Cleaning /home directory
Cleaning /run/user directory
Cannot open /run/user/1000 directory
Sanitizing /etc/passwd, UID_MIN 1000
Sanitizing /etc/group, GID_MIN 1000
Disable /home/my3epc/.config/firejail
Disable /run/firejail/sandbox
Disable /run/firejail/network
Disable /run/firejail/bandwidth
Disable /run/firejail/name
Disable /run/firejail/profile
Disable /run/firejail/x11
Mounting tmpfs on /dev
mounting /run/firejail/mnt/dev/snd directory
mounting /run/firejail/mnt/dev/dri directory
mounting /run/firejail/mnt/dev/video0 file
mounting /run/firejail/mnt/dev/video1 file
Process /dev/shm directory
blacklist /run/firejail/dbus
Creating a new /etc/hostname file
Creating empty /run/firejail/mnt/hostname file
Creating a new /etc/hosts file
Loading user hosts file
Mounting read-only /proc/sys
Remounting /sys directory
Disable /sys/firmware
Disable /sys/power
Disable /sys/kernel/debug
Disable /sys/kernel/vmcoreinfo
Disable /sys/kernel/uevent_helper
Disable /proc/sys/fs/binfmt_misc
Disable /proc/sys/kernel/core_pattern
Disable /proc/sys/kernel/modprobe
Disable /proc/sysrq-trigger
Disable /proc/sys/kernel/hotplug
Disable /proc/sys/vm/panic_on_oom
Disable /proc/irq
Disable /proc/bus
Disable /proc/timer_list
Disable /proc/kcore
Disable /proc/kallsyms
Disable /proc/kmsg
Debug 588: whitelist /usr/bin/nc
Debug 609: expanded: /usr/bin/nc
Debug 620: new_name: /usr/bin/nc
Debug 630: dir: /usr/bin
Adding whitelist top level directory /usr/bin
Debug 588: whitelist /usr/lib/firejail/seccomp.debug32
Debug 609: expanded: /usr/lib/firejail/seccomp.debug32
Debug 620: new_name: /usr/lib/firejail/seccomp.debug32
Debug 630: dir: /usr/lib
Adding whitelist top level directory /usr/lib
Debug 588: whitelist ${HOME}/.PlayOnLinux
Debug 609: expanded: /home/my3epc/.PlayOnLinux
Debug 620: new_name: /home/my3epc/.PlayOnLinux
Debug 630: dir: /home/my3epc
Adding whitelist top level directory /home/my3epc
Debug 588: whitelist ${HOME}/~PlayOnLinux's virtual drives
Debug 609: expanded: /home/my3epc/~PlayOnLinux's virtual drives
Debug 620: new_name: /home/my3epc/~PlayOnLinux's virtual drives
Debug 630: dir: /home/my3epc
Removed path: whitelist ${HOME}/~PlayOnLinux's virtual drives
	new_name: /home/my3epc/~PlayOnLinux's virtual drives
	realpath: (null)
	No such file or directory
Debug 588: whitelist /usr/bin/playonlinux
Debug 609: expanded: /usr/bin/playonlinux
Debug 620: new_name: /usr/bin/playonlinux
Debug 630: dir: /usr/bin
Debug 588: whitelist /usr/bin/playonlinux-pkg
Debug 609: expanded: /usr/bin/playonlinux-pkg
Debug 620: new_name: /usr/bin/playonlinux-pkg
Debug 630: dir: /usr/bin
Debug 588: whitelist /usr/share/wine
Debug 609: expanded: /usr/share/wine
Debug 620: new_name: /usr/share/wine
Debug 630: dir: /usr/share
Adding whitelist top level directory /usr/share
Debug 588: whitelist /usr/share/applications
Debug 609: expanded: /usr/share/applications
Debug 620: new_name: /usr/share/applications
Debug 630: dir: /usr/share
Debug 588: whitelist /usr/share/playonlinux/playonlinux
Debug 609: expanded: /usr/share/playonlinux/playonlinux
Debug 620: new_name: /usr/share/playonlinux/playonlinux
Debug 630: dir: /usr/share
Debug 588: whitelist /usr/bin/python3
Debug 609: expanded: /usr/bin/python3
Debug 620: new_name: /usr/bin/python3
Debug 630: dir: /usr/bin
Debug 588: whitelist /var/lib/aspell
Debug 609: expanded: /var/lib/aspell
Debug 620: new_name: /var/lib/aspell
Debug 630: dir: /var
Adding whitelist top level directory /var
Debug 588: whitelist /var/lib/ca-certificates
Debug 609: expanded: /var/lib/ca-certificates
Debug 620: new_name: /var/lib/ca-certificates
Debug 630: dir: /var
Removed path: whitelist /var/lib/ca-certificates
	new_name: /var/lib/ca-certificates
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/lib/dbus
Debug 609: expanded: /var/lib/dbus
Debug 620: new_name: /var/lib/dbus
Debug 630: dir: /var
Debug 588: whitelist /var/lib/menu-xdg
Debug 609: expanded: /var/lib/menu-xdg
Debug 620: new_name: /var/lib/menu-xdg
Debug 630: dir: /var
Removed path: whitelist /var/lib/menu-xdg
	new_name: /var/lib/menu-xdg
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/lib/uim
Debug 609: expanded: /var/lib/uim
Debug 620: new_name: /var/lib/uim
Debug 630: dir: /var
Removed path: whitelist /var/lib/uim
	new_name: /var/lib/uim
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/cache/fontconfig
Debug 609: expanded: /var/cache/fontconfig
Debug 620: new_name: /var/cache/fontconfig
Debug 630: dir: /var
Debug 588: whitelist /var/tmp
Debug 609: expanded: /var/tmp
Debug 620: new_name: /var/tmp
Debug 630: dir: /var
Debug 588: whitelist /var/run
Debug 609: expanded: /var/run
Debug 620: new_name: /var/run
Debug 630: dir: /var
Debug 588: whitelist /var/lock
Debug 609: expanded: /var/lock
Debug 620: new_name: /var/lock
Debug 630: dir: /var
Debug 588: whitelist /var/games
Debug 609: expanded: /var/games
Debug 620: new_name: /var/games
Debug 630: dir: /var
Removed path: whitelist /var/games
	new_name: /var/games
	realpath: (null)
	No such file or directory
Mounting tmpfs on /usr/bin, check owner: no
106 56 0:38 / /usr/bin rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64
mountid=106 fsname=/ dir=/usr/bin fstype=tmpfs
Mounting tmpfs on /usr/lib, check owner: no
107 56 0:39 / /usr/lib rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64
mountid=107 fsname=/ dir=/usr/lib fstype=tmpfs
Mounting tmpfs on /usr/share, check owner: no
108 56 0:40 / /usr/share rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64
mountid=108 fsname=/ dir=/usr/share fstype=tmpfs
Mounting tmpfs on /var, check owner: no
109 55 0:41 / /var rw,nosuid,nodev,noexec,noatime - tmpfs tmpfs rw,mode=755,inode64
mountid=109 fsname=/ dir=/var fstype=tmpfs
Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Mounting a new /root directory
Mounting a new /home directory
Create a new user directory
Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Drop privileges: pid 5, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Whitelisting /usr/bin/nc.traditional
112 106 8:3 /usr/bin/nc.traditional /usr/bin/nc.traditional ro,noatime - ext4 /dev/sda3 rw,discard
mountid=112 fsname=/usr/bin/nc.traditional dir=/usr/bin/nc.traditional fstype=ext4
Created symbolic link /usr/bin/nc -> /usr/bin/nc.traditional
Whitelisting /usr/lib/firejail/seccomp.debug32
113 107 8:3 /usr/lib/firejail/seccomp.debug32 /usr/lib/firejail/seccomp.debug32 ro,noatime - ext4 /dev/sda3 rw,discard
mountid=113 fsname=/usr/lib/firejail/seccomp.debug32 dir=/usr/lib/firejail/seccomp.debug32 fstype=ext4
Whitelisting /home/my3epc/.PlayOnLinux
114 111 8:3 /home/my3epc/.PlayOnLinux /home/my3epc/.PlayOnLinux rw,noatime - ext4 /dev/sda3 rw,discard
mountid=114 fsname=/home/my3epc/.PlayOnLinux dir=/home/my3epc/.PlayOnLinux fstype=ext4
Whitelisting /usr/bin/playonlinux
115 106 8:3 /usr/bin/playonlinux /usr/bin/playonlinux ro,noatime - ext4 /dev/sda3 rw,discard
mountid=115 fsname=/usr/bin/playonlinux dir=/usr/bin/playonlinux fstype=ext4
Whitelisting /usr/bin/playonlinux-pkg
116 106 8:3 /usr/bin/playonlinux-pkg /usr/bin/playonlinux-pkg ro,noatime - ext4 /dev/sda3 rw,discard
mountid=116 fsname=/usr/bin/playonlinux-pkg dir=/usr/bin/playonlinux-pkg fstype=ext4
Whitelisting /usr/share/wine
117 108 8:3 /usr/share/wine /usr/share/wine ro,noatime - ext4 /dev/sda3 rw,discard
mountid=117 fsname=/usr/share/wine dir=/usr/share/wine fstype=ext4
Whitelisting /usr/share/applications
118 108 8:3 /usr/share/applications /usr/share/applications ro,noatime - ext4 /dev/sda3 rw,discard
mountid=118 fsname=/usr/share/applications dir=/usr/share/applications fstype=ext4
Whitelisting /usr/share/playonlinux/playonlinux
119 108 8:3 /usr/share/playonlinux/playonlinux /usr/share/playonlinux/playonlinux ro,noatime - ext4 /dev/sda3 rw,discard
mountid=119 fsname=/usr/share/playonlinux/playonlinux dir=/usr/share/playonlinux/playonlinux fstype=ext4
Whitelisting /usr/bin/python3.11
120 106 8:3 /usr/bin/python3.11 /usr/bin/python3.11 ro,noatime - ext4 /dev/sda3 rw,discard
mountid=120 fsname=/usr/bin/python3.11 dir=/usr/bin/python3.11 fstype=ext4
Created symbolic link /usr/bin/python3 -> /usr/bin/python3.11
Whitelisting /var/lib/aspell
121 109 8:3 /var/lib/aspell /var/lib/aspell ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=121 fsname=/var/lib/aspell dir=/var/lib/aspell fstype=ext4
Whitelisting /var/lib/dbus
122 109 8:3 /var/lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=122 fsname=/var/lib/dbus dir=/var/lib/dbus fstype=ext4
Whitelisting /var/cache/fontconfig
123 109 8:3 /var/cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=123 fsname=/var/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4
Whitelisting /var/tmp
124 109 0:30 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw,inode64
mountid=124 fsname=/ dir=/var/tmp fstype=tmpfs
Created symbolic link /var/run -> /run
Created symbolic link /var/lock -> /run/lock
Add path entry /usr/local/bin
Add path entry /usr/bin
Add path entry /usr/local/games
Add path entry /usr/games
Add path entry /sbin
Add path entry /usr/sbin
Number of path entries: 6
Disable /etc/X11/Xsession.d
Disable /etc/xdg/autostart
Mounting read-only /home/my3epc/.Xauthority
127 111 0:43 /my3epc/.Xauthority /home/my3epc/.Xauthority ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=127 fsname=/my3epc/.Xauthority dir=/home/my3epc/.Xauthority fstype=tmpfs
Disable /etc/systemd/system
Disable /etc/init.d
Disable /run/acpid.socket (requested /var/run/acpid.socket)
Disable /run/rpcbind.sock (requested /var/run/rpcbind.sock)
Disable /etc/adduser.conf
Disable /etc/anacrontab
Disable /etc/apparmor.d
Disable /etc/cron.hourly
Disable /etc/crontab
Disable /etc/cron.monthly
Disable /etc/cron.daily
Disable /etc/cron.d
Disable /etc/cron.yearly
Disable /etc/cron.weekly
Disable /etc/default
Disable /etc/dkms
Disable /etc/grub.d
Disable /etc/kernel
Disable /etc/logrotate.d
Disable /etc/logrotate.conf
Disable /etc/modules
Disable /etc/modules-load.d
Disable /etc/rc.local
Disable /etc/rc2.d
Disable /etc/rc5.d
Disable /etc/rc1.d
Disable /etc/rc4.d
Disable /etc/rc3.d
Disable /etc/rc6.d
Disable /etc/rc0.d
Disable /etc/rcS.d
Disable /etc/logcheck
Mounting read-only /home/my3epc/.bashrc
160 111 0:43 /my3epc/.bashrc /home/my3epc/.bashrc ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=160 fsname=/my3epc/.bashrc dir=/home/my3epc/.bashrc fstype=tmpfs
Disable /etc/group-
Disable /etc/gshadow
Disable /etc/gshadow-
Disable /etc/shadow
Disable /etc/ssh
Disable /etc/sudo_logsrvd.conf
Disable /etc/sudo.conf
Disable /etc/sudoers
Disable /etc/sudoers.d
Disable /usr/sbin (requested /sbin)
Disable /usr/local/sbin
Disable /usr/sbin
Not blacklist /usr/local/bin/nc
Not blacklist /usr/bin/nc
Not blacklist /usr/local/games/nc
Not blacklist /usr/games/nc
Not blacklist /sbin/nc
Not blacklist /usr/sbin/nc
Disable /usr/bin/nc.traditional
Disable /usr/include
Disable /usr/local/include
Disable /usr/local/src
Disable /usr/src
Not blacklist /usr/local/bin/core_perl
Not blacklist /usr/bin/core_perl
Not blacklist /usr/local/games/core_perl
Not blacklist /usr/games/core_perl
Not blacklist /sbin/core_perl
Not blacklist /usr/sbin/core_perl
Not blacklist /usr/local/bin/cpan*
Not blacklist /usr/bin/cpan*
Not blacklist /usr/local/games/cpan*
Not blacklist /usr/games/cpan*
Not blacklist /sbin/cpan*
Not blacklist /usr/sbin/cpan*
Not blacklist /usr/local/bin/perl
Not blacklist /usr/bin/perl
Not blacklist /usr/local/games/perl
Not blacklist /usr/games/perl
Not blacklist /sbin/perl
Not blacklist /usr/sbin/perl
Not blacklist /usr/local/bin/site_perl
Not blacklist /usr/bin/site_perl
Not blacklist /usr/local/games/site_perl
Not blacklist /usr/games/site_perl
Not blacklist /sbin/site_perl
Not blacklist /usr/sbin/site_perl
Not blacklist /usr/local/bin/vendor_perl
Not blacklist /usr/bin/vendor_perl
Not blacklist /usr/local/games/vendor_perl
Not blacklist /usr/games/vendor_perl
Not blacklist /sbin/vendor_perl
Not blacklist /usr/sbin/vendor_perl
Not blacklist /usr/lib/perl*
Not blacklist /usr/lib64/perl*
Not blacklist /usr/share/perl*
Not blacklist /usr/local/bin/rxvt
Not blacklist /usr/bin/rxvt
Not blacklist /usr/local/games/rxvt
Not blacklist /usr/games/rxvt
Not blacklist /sbin/rxvt
Not blacklist /usr/sbin/rxvt
Not blacklist /home/my3epc/.local/lib/python2*
Not blacklist /usr/local/bin/python2*
Not blacklist /usr/bin/python2*
Not blacklist /usr/local/games/python2*
Not blacklist /usr/games/python2*
Not blacklist /sbin/python2*
Not blacklist /usr/sbin/python2*
Not blacklist /usr/include/python2*
Not blacklist /usr/lib/python2*
Not blacklist /usr/local/lib/python2*
Not blacklist /usr/share/python2*
Not blacklist /home/my3epc/.local/lib/python3*
Not blacklist /usr/local/bin/python3*
Not blacklist /usr/bin/python3
Not blacklist /usr/bin/python3.11
Not blacklist /usr/local/games/python3*
Not blacklist /usr/games/python3*
Not blacklist /sbin/python3*
Not blacklist /usr/sbin/python3*
Not blacklist /usr/include/python3*
Not blacklist /usr/lib/python3*
Not blacklist /usr/lib64/python3*
Not blacklist /usr/local/lib/python3.11
Not blacklist /usr/share/python3*
Not blacklist /home/my3epc/.PlayOnLinux
Not blacklist /home/my3epc/.Steam
Not blacklist /home/my3epc/.cache/wine
Not blacklist /home/my3epc/.cache/winetricks
Not blacklist /home/my3epc/.local/share/Steam
Not blacklist /home/my3epc/.local/share/steam
Not blacklist /home/my3epc/.steam
Not blacklist /home/my3epc/.wine
Not blacklist /tmp/.wine-*
Disable /sys/fs
Disable /sys/module
Base filesystem installed in 34.82 ms
Drop privileges: pid 6, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Creating empty /home/my3epc/.config directory
Drop privileges: pid 7, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Creating empty /home/my3epc/.config/pulse directory
Mounting noexec /run/firejail/mnt/pulse
180 49 0:27 /pulse /run/firejail/mnt/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=180 fsname=/pulse dir=/run/firejail/mnt/pulse fstype=tmpfs
Mounting /run/firejail/mnt/pulse on /home/my3epc/.config/pulse
181 111 0:27 /pulse /home/my3epc/.config/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=181 fsname=/pulse dir=/home/my3epc/.config/pulse fstype=tmpfs
Current directory: /home/my3epc
DISPLAY=:0.0 parsed as 0
configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp.32
sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.32 
Dropping all capabilities
Drop privileges: pid 8, uid 1000, gid 1000, force_nogroups 1
No supplementary groups
fexecve: No such file or directory
Error: failed to run /run/firejail/lib/fsec-print, exiting...
Error: proc 3451 cannot sync with peer: unexpected EOF
Peer 3452 unexpectedly exited with status 1

Originally created by @davew-fj on GitHub (Sep 26, 2025). Original GitHub issue: https://github.com/netblue30/firejail/issues/6911 <!-- See the following links for help with formatting: https://guides.github.com/features/mastering-markdown/ https://docs.github.com/en/github/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax --> ### Description playonlinux: Cannot start application in firejail. Permission denied. ### Steps to Reproduce _Steps to reproduce the behavior_ 1. Run in bash `LC_ALL=C firejail playonlinux` 2. See error `Permission denied' 1. Run in bash `LC_ALL=C firejail /usr/bin/playonlinux` 2. See error 'No such file or directory' This Path was identified by 'which' query. Note: This is a symlink which leads to the following 'exec' path: 1. Run in bash `LC_ALL=C firejail /usr/share/playonlinux/playonlinux` 2. See error 'No such file or directory' ### Expected behavior PlayOnLinux GUI should open, to allow installation and operation of programs. ### Actual behavior Error messages received (as noted above). 'Parent is shutting down, bye...' ### Behavior without a profile _What changed calling `LC_ALL=C firejail --noprofile /path/to/program` in a terminal?_ The program comes up and functions normally (with all of the above paths to program). ### Additional context _NOTE: The behavior described in this first post was affected by "playonlinux.local" in which I had experimentally whitelisted several directories, as follows: (I will attempt to add a second post, showing results without playonlinux.local) ``` whitelist /usr/bin/nc whitelist /usr/lib/firejail/seccomp.debug32 whitelist ${HOME}/.PlayOnLinux whitelist ${HOME}/~PlayOnLinux's virtual drives whitelist /usr/bin/playonlinux whitelist /usr/bin/playonlinux-pkg whitelist /usr/share/wine whitelist /usr/share/applications whitelist /usr/share/playonlinux/playonlinux whitelist /usr/bin/python3 ``` ### Environment - Name/version/arch of the Linux kernel (`uname -srm`): Tried 2 kernels. The problem is the same with either: Linux 5.10.224-antix.1-amd64.smp Linux 6.1.105-antix.1-amd64.smp - Name/version of the Linux distribution: "antiX23.2" 64bit, Debian bookworm based, no systemD - Name/version of the relevant program(s)/package(s) PlayOnLinux 4.3.4 - Version of Firejail: 0.9.74 - If you use a development version of firejail, also the commit from which it was compiled (`git rev-parse HEAD`): Not applicable ### Checklist <!-- Note: Items are checked with an "x", like so: - [x] This is a checked item. --> - [x] The issues is caused by firejail (i.e. running the program by path (e.g. `/usr/bin/vlc`) "fixes" it). - [x] I can reproduce the issue without custom modifications (e.g. globals.local). - [x] The program has a profile. (If not, request one in `https://github.com/netblue30/firejail/issues/1139`) - [x] The profile (and redirect profile if exists) hasn't already been fixed [upstream](https://github.com/netblue30/firejail/tree/master/etc). - [x] I have performed a short search for similar issues (to avoid opening a duplicate). - [ ] I'm aware of `browser-allow-drm yes`/`browser-disable-u2f no` in `firejail.config` to allow DRM/U2F in browsers. - [ ] I used `--profile=PROFILENAME` to set the right profile. (Only relevant for AppImages) ### Log <details> <summary>Output of <code>LC_ALL=C firejail /path/to/program</code></summary> <p> ``` LC_ALL=C firejail playonlinux Reading profile /etc/firejail/playonlinux.profile Reading profile /home/my3epc/.config/firejail/playonlinux.local Reading profile /etc/firejail/allow-perl.inc Reading profile /etc/firejail/allow-python2.inc Reading profile /etc/firejail/allow-python3.inc Reading profile /etc/firejail/wine.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/whitelist-var-common.inc firejail version 0.9.74 Parent pid 4521, child pid 4522 Base filesystem installed in 40.03 ms Child process initialized in 101.65 ms Cannot start application: Permission denied Parent is shutting down, bye... ``` </p> </details> <details> <summary>Output of <code>LC_ALL=C firejail --debug /path/to/program</code></summary> <p> ``` $ firejail --debug playonlinux Looking for kernel processes Found kthreadd process, we are not running in a sandbox pid=3451: locking /run/firejail/firejail-run.lock ... pid=3451: locked /run/firejail/firejail-run.lock pid=3451: unlocking /run/firejail/firejail-run.lock ... pid=3451: unlocked /run/firejail/firejail-run.lock Building quoted command line: 'playonlinux' Command name #playonlinux# Found playonlinux.profile profile in /etc/firejail directory Reading profile /etc/firejail/playonlinux.profile Found playonlinux.local profile in /home/my3epc/.config/firejail directory Reading profile /home/my3epc/.config/firejail/playonlinux.local Found allow-perl.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-perl.inc Cannot access .local file allow-perl.local: No such file or directory, skipping... Found allow-python2.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python2.inc Cannot access .local file allow-python2.local: No such file or directory, skipping... Found allow-python3.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python3.inc Cannot access .local file allow-python3.local: No such file or directory, skipping... Found wine.profile profile in /etc/firejail directory Reading profile /etc/firejail/wine.profile Cannot access .local file wine.local: No such file or directory, skipping... Cannot access .local file globals.local: No such file or directory, skipping... Found disable-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-common.inc Cannot access .local file disable-common.local: No such file or directory, skipping... Found disable-devel.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-devel.inc Cannot access .local file disable-devel.local: No such file or directory, skipping... Found disable-interpreters.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-interpreters.inc Cannot access .local file disable-interpreters.local: No such file or directory, skipping... Found disable-programs.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-programs.inc Cannot access .local file disable-programs.local: No such file or directory, skipping... Found whitelist-var-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/whitelist-var-common.inc Cannot access .local file whitelist-var-common.local: No such file or directory, skipping... firejail version 0.9.74 pid=3451: locking /run/firejail/firejail-run.lock ... pid=3451: locked /run/firejail/firejail-run.lock DISPLAY=:0.0 parsed as 0 pid=3451: unlocking /run/firejail/firejail-run.lock ... pid=3451: unlocked /run/firejail/firejail-run.lock Using the local network stack Parent pid 3451, child pid 3452 Initializing child process Host network configured PID namespace installed Mounting tmpfs on /run/firejail/mnt directory Creating empty /run/firejail/mnt/seccomp directory Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Mounting /proc filesystem representing the PID namespace Basic read-only filesystem: Mounting read-only /etc 52 35 8:3 /etc /etc ro,noatime - ext4 /dev/sda3 rw,discard mountid=52 fsname=/etc dir=/etc fstype=ext4 Mounting noexec /etc 53 52 8:3 /etc /etc ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=53 fsname=/etc dir=/etc fstype=ext4 Mounting read-only /var 54 35 8:3 /var /var ro,noatime - ext4 /dev/sda3 rw,discard mountid=54 fsname=/var dir=/var fstype=ext4 Mounting noexec /var 55 54 8:3 /var /var ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=55 fsname=/var dir=/var fstype=ext4 Mounting read-only /usr 56 35 8:3 /usr /usr ro,noatime - ext4 /dev/sda3 rw,discard mountid=56 fsname=/usr dir=/usr fstype=ext4 Mounting tmpfs on /var/lock Mounting tmpfs on /var/tmp Mounting tmpfs on /var/log Mounting tmpfs on /var/lib/dhcp Mounting tmpfs on /var/lib/snmp Mounting tmpfs on /var/lib/sudo Create the new utmp file Mount the new utmp file Cleaning /home directory Cleaning /run/user directory Cannot open /run/user/1000 directory Sanitizing /etc/passwd, UID_MIN 1000 Sanitizing /etc/group, GID_MIN 1000 Disable /home/my3epc/.config/firejail Disable /run/firejail/sandbox Disable /run/firejail/network Disable /run/firejail/bandwidth Disable /run/firejail/name Disable /run/firejail/profile Disable /run/firejail/x11 Mounting tmpfs on /dev mounting /run/firejail/mnt/dev/snd directory mounting /run/firejail/mnt/dev/dri directory mounting /run/firejail/mnt/dev/video0 file mounting /run/firejail/mnt/dev/video1 file Process /dev/shm directory blacklist /run/firejail/dbus Creating a new /etc/hostname file Creating empty /run/firejail/mnt/hostname file Creating a new /etc/hosts file Loading user hosts file Mounting read-only /proc/sys Remounting /sys directory Disable /sys/firmware Disable /sys/power Disable /sys/kernel/debug Disable /sys/kernel/vmcoreinfo Disable /sys/kernel/uevent_helper Disable /proc/sys/fs/binfmt_misc Disable /proc/sys/kernel/core_pattern Disable /proc/sys/kernel/modprobe Disable /proc/sysrq-trigger Disable /proc/sys/kernel/hotplug Disable /proc/sys/vm/panic_on_oom Disable /proc/irq Disable /proc/bus Disable /proc/timer_list Disable /proc/kcore Disable /proc/kallsyms Disable /proc/kmsg Debug 588: whitelist /usr/bin/nc Debug 609: expanded: /usr/bin/nc Debug 620: new_name: /usr/bin/nc Debug 630: dir: /usr/bin Adding whitelist top level directory /usr/bin Debug 588: whitelist /usr/lib/firejail/seccomp.debug32 Debug 609: expanded: /usr/lib/firejail/seccomp.debug32 Debug 620: new_name: /usr/lib/firejail/seccomp.debug32 Debug 630: dir: /usr/lib Adding whitelist top level directory /usr/lib Debug 588: whitelist ${HOME}/.PlayOnLinux Debug 609: expanded: /home/my3epc/.PlayOnLinux Debug 620: new_name: /home/my3epc/.PlayOnLinux Debug 630: dir: /home/my3epc Adding whitelist top level directory /home/my3epc Debug 588: whitelist ${HOME}/~PlayOnLinux's virtual drives Debug 609: expanded: /home/my3epc/~PlayOnLinux's virtual drives Debug 620: new_name: /home/my3epc/~PlayOnLinux's virtual drives Debug 630: dir: /home/my3epc Removed path: whitelist ${HOME}/~PlayOnLinux's virtual drives new_name: /home/my3epc/~PlayOnLinux's virtual drives realpath: (null) No such file or directory Debug 588: whitelist /usr/bin/playonlinux Debug 609: expanded: /usr/bin/playonlinux Debug 620: new_name: /usr/bin/playonlinux Debug 630: dir: /usr/bin Debug 588: whitelist /usr/bin/playonlinux-pkg Debug 609: expanded: /usr/bin/playonlinux-pkg Debug 620: new_name: /usr/bin/playonlinux-pkg Debug 630: dir: /usr/bin Debug 588: whitelist /usr/share/wine Debug 609: expanded: /usr/share/wine Debug 620: new_name: /usr/share/wine Debug 630: dir: /usr/share Adding whitelist top level directory /usr/share Debug 588: whitelist /usr/share/applications Debug 609: expanded: /usr/share/applications Debug 620: new_name: /usr/share/applications Debug 630: dir: /usr/share Debug 588: whitelist /usr/share/playonlinux/playonlinux Debug 609: expanded: /usr/share/playonlinux/playonlinux Debug 620: new_name: /usr/share/playonlinux/playonlinux Debug 630: dir: /usr/share Debug 588: whitelist /usr/bin/python3 Debug 609: expanded: /usr/bin/python3 Debug 620: new_name: /usr/bin/python3 Debug 630: dir: /usr/bin Debug 588: whitelist /var/lib/aspell Debug 609: expanded: /var/lib/aspell Debug 620: new_name: /var/lib/aspell Debug 630: dir: /var Adding whitelist top level directory /var Debug 588: whitelist /var/lib/ca-certificates Debug 609: expanded: /var/lib/ca-certificates Debug 620: new_name: /var/lib/ca-certificates Debug 630: dir: /var Removed path: whitelist /var/lib/ca-certificates new_name: /var/lib/ca-certificates realpath: (null) No such file or directory Debug 588: whitelist /var/lib/dbus Debug 609: expanded: /var/lib/dbus Debug 620: new_name: /var/lib/dbus Debug 630: dir: /var Debug 588: whitelist /var/lib/menu-xdg Debug 609: expanded: /var/lib/menu-xdg Debug 620: new_name: /var/lib/menu-xdg Debug 630: dir: /var Removed path: whitelist /var/lib/menu-xdg new_name: /var/lib/menu-xdg realpath: (null) No such file or directory Debug 588: whitelist /var/lib/uim Debug 609: expanded: /var/lib/uim Debug 620: new_name: /var/lib/uim Debug 630: dir: /var Removed path: whitelist /var/lib/uim new_name: /var/lib/uim realpath: (null) No such file or directory Debug 588: whitelist /var/cache/fontconfig Debug 609: expanded: /var/cache/fontconfig Debug 620: new_name: /var/cache/fontconfig Debug 630: dir: /var Debug 588: whitelist /var/tmp Debug 609: expanded: /var/tmp Debug 620: new_name: /var/tmp Debug 630: dir: /var Debug 588: whitelist /var/run Debug 609: expanded: /var/run Debug 620: new_name: /var/run Debug 630: dir: /var Debug 588: whitelist /var/lock Debug 609: expanded: /var/lock Debug 620: new_name: /var/lock Debug 630: dir: /var Debug 588: whitelist /var/games Debug 609: expanded: /var/games Debug 620: new_name: /var/games Debug 630: dir: /var Removed path: whitelist /var/games new_name: /var/games realpath: (null) No such file or directory Mounting tmpfs on /usr/bin, check owner: no 106 56 0:38 / /usr/bin rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64 mountid=106 fsname=/ dir=/usr/bin fstype=tmpfs Mounting tmpfs on /usr/lib, check owner: no 107 56 0:39 / /usr/lib rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64 mountid=107 fsname=/ dir=/usr/lib fstype=tmpfs Mounting tmpfs on /usr/share, check owner: no 108 56 0:40 / /usr/share rw,nosuid,nodev,noatime - tmpfs tmpfs rw,mode=755,inode64 mountid=108 fsname=/ dir=/usr/share fstype=tmpfs Mounting tmpfs on /var, check owner: no 109 55 0:41 / /var rw,nosuid,nodev,noexec,noatime - tmpfs tmpfs rw,mode=755,inode64 mountid=109 fsname=/ dir=/var fstype=tmpfs Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Mounting a new /root directory Mounting a new /home directory Create a new user directory Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Drop privileges: pid 5, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Whitelisting /usr/bin/nc.traditional 112 106 8:3 /usr/bin/nc.traditional /usr/bin/nc.traditional ro,noatime - ext4 /dev/sda3 rw,discard mountid=112 fsname=/usr/bin/nc.traditional dir=/usr/bin/nc.traditional fstype=ext4 Created symbolic link /usr/bin/nc -> /usr/bin/nc.traditional Whitelisting /usr/lib/firejail/seccomp.debug32 113 107 8:3 /usr/lib/firejail/seccomp.debug32 /usr/lib/firejail/seccomp.debug32 ro,noatime - ext4 /dev/sda3 rw,discard mountid=113 fsname=/usr/lib/firejail/seccomp.debug32 dir=/usr/lib/firejail/seccomp.debug32 fstype=ext4 Whitelisting /home/my3epc/.PlayOnLinux 114 111 8:3 /home/my3epc/.PlayOnLinux /home/my3epc/.PlayOnLinux rw,noatime - ext4 /dev/sda3 rw,discard mountid=114 fsname=/home/my3epc/.PlayOnLinux dir=/home/my3epc/.PlayOnLinux fstype=ext4 Whitelisting /usr/bin/playonlinux 115 106 8:3 /usr/bin/playonlinux /usr/bin/playonlinux ro,noatime - ext4 /dev/sda3 rw,discard mountid=115 fsname=/usr/bin/playonlinux dir=/usr/bin/playonlinux fstype=ext4 Whitelisting /usr/bin/playonlinux-pkg 116 106 8:3 /usr/bin/playonlinux-pkg /usr/bin/playonlinux-pkg ro,noatime - ext4 /dev/sda3 rw,discard mountid=116 fsname=/usr/bin/playonlinux-pkg dir=/usr/bin/playonlinux-pkg fstype=ext4 Whitelisting /usr/share/wine 117 108 8:3 /usr/share/wine /usr/share/wine ro,noatime - ext4 /dev/sda3 rw,discard mountid=117 fsname=/usr/share/wine dir=/usr/share/wine fstype=ext4 Whitelisting /usr/share/applications 118 108 8:3 /usr/share/applications /usr/share/applications ro,noatime - ext4 /dev/sda3 rw,discard mountid=118 fsname=/usr/share/applications dir=/usr/share/applications fstype=ext4 Whitelisting /usr/share/playonlinux/playonlinux 119 108 8:3 /usr/share/playonlinux/playonlinux /usr/share/playonlinux/playonlinux ro,noatime - ext4 /dev/sda3 rw,discard mountid=119 fsname=/usr/share/playonlinux/playonlinux dir=/usr/share/playonlinux/playonlinux fstype=ext4 Whitelisting /usr/bin/python3.11 120 106 8:3 /usr/bin/python3.11 /usr/bin/python3.11 ro,noatime - ext4 /dev/sda3 rw,discard mountid=120 fsname=/usr/bin/python3.11 dir=/usr/bin/python3.11 fstype=ext4 Created symbolic link /usr/bin/python3 -> /usr/bin/python3.11 Whitelisting /var/lib/aspell 121 109 8:3 /var/lib/aspell /var/lib/aspell ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=121 fsname=/var/lib/aspell dir=/var/lib/aspell fstype=ext4 Whitelisting /var/lib/dbus 122 109 8:3 /var/lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=122 fsname=/var/lib/dbus dir=/var/lib/dbus fstype=ext4 Whitelisting /var/cache/fontconfig 123 109 8:3 /var/cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=123 fsname=/var/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4 Whitelisting /var/tmp 124 109 0:30 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw,inode64 mountid=124 fsname=/ dir=/var/tmp fstype=tmpfs Created symbolic link /var/run -> /run Created symbolic link /var/lock -> /run/lock Add path entry /usr/local/bin Add path entry /usr/bin Add path entry /usr/local/games Add path entry /usr/games Add path entry /sbin Add path entry /usr/sbin Number of path entries: 6 Disable /etc/X11/Xsession.d Disable /etc/xdg/autostart Mounting read-only /home/my3epc/.Xauthority 127 111 0:43 /my3epc/.Xauthority /home/my3epc/.Xauthority ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=127 fsname=/my3epc/.Xauthority dir=/home/my3epc/.Xauthority fstype=tmpfs Disable /etc/systemd/system Disable /etc/init.d Disable /run/acpid.socket (requested /var/run/acpid.socket) Disable /run/rpcbind.sock (requested /var/run/rpcbind.sock) Disable /etc/adduser.conf Disable /etc/anacrontab Disable /etc/apparmor.d Disable /etc/cron.hourly Disable /etc/crontab Disable /etc/cron.monthly Disable /etc/cron.daily Disable /etc/cron.d Disable /etc/cron.yearly Disable /etc/cron.weekly Disable /etc/default Disable /etc/dkms Disable /etc/grub.d Disable /etc/kernel Disable /etc/logrotate.d Disable /etc/logrotate.conf Disable /etc/modules Disable /etc/modules-load.d Disable /etc/rc.local Disable /etc/rc2.d Disable /etc/rc5.d Disable /etc/rc1.d Disable /etc/rc4.d Disable /etc/rc3.d Disable /etc/rc6.d Disable /etc/rc0.d Disable /etc/rcS.d Disable /etc/logcheck Mounting read-only /home/my3epc/.bashrc 160 111 0:43 /my3epc/.bashrc /home/my3epc/.bashrc ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=160 fsname=/my3epc/.bashrc dir=/home/my3epc/.bashrc fstype=tmpfs Disable /etc/group- Disable /etc/gshadow Disable /etc/gshadow- Disable /etc/shadow Disable /etc/ssh Disable /etc/sudo_logsrvd.conf Disable /etc/sudo.conf Disable /etc/sudoers Disable /etc/sudoers.d Disable /usr/sbin (requested /sbin) Disable /usr/local/sbin Disable /usr/sbin Not blacklist /usr/local/bin/nc Not blacklist /usr/bin/nc Not blacklist /usr/local/games/nc Not blacklist /usr/games/nc Not blacklist /sbin/nc Not blacklist /usr/sbin/nc Disable /usr/bin/nc.traditional Disable /usr/include Disable /usr/local/include Disable /usr/local/src Disable /usr/src Not blacklist /usr/local/bin/core_perl Not blacklist /usr/bin/core_perl Not blacklist /usr/local/games/core_perl Not blacklist /usr/games/core_perl Not blacklist /sbin/core_perl Not blacklist /usr/sbin/core_perl Not blacklist /usr/local/bin/cpan* Not blacklist /usr/bin/cpan* Not blacklist /usr/local/games/cpan* Not blacklist /usr/games/cpan* Not blacklist /sbin/cpan* Not blacklist /usr/sbin/cpan* Not blacklist /usr/local/bin/perl Not blacklist /usr/bin/perl Not blacklist /usr/local/games/perl Not blacklist /usr/games/perl Not blacklist /sbin/perl Not blacklist /usr/sbin/perl Not blacklist /usr/local/bin/site_perl Not blacklist /usr/bin/site_perl Not blacklist /usr/local/games/site_perl Not blacklist /usr/games/site_perl Not blacklist /sbin/site_perl Not blacklist /usr/sbin/site_perl Not blacklist /usr/local/bin/vendor_perl Not blacklist /usr/bin/vendor_perl Not blacklist /usr/local/games/vendor_perl Not blacklist /usr/games/vendor_perl Not blacklist /sbin/vendor_perl Not blacklist /usr/sbin/vendor_perl Not blacklist /usr/lib/perl* Not blacklist /usr/lib64/perl* Not blacklist /usr/share/perl* Not blacklist /usr/local/bin/rxvt Not blacklist /usr/bin/rxvt Not blacklist /usr/local/games/rxvt Not blacklist /usr/games/rxvt Not blacklist /sbin/rxvt Not blacklist /usr/sbin/rxvt Not blacklist /home/my3epc/.local/lib/python2* Not blacklist /usr/local/bin/python2* Not blacklist /usr/bin/python2* Not blacklist /usr/local/games/python2* Not blacklist /usr/games/python2* Not blacklist /sbin/python2* Not blacklist /usr/sbin/python2* Not blacklist /usr/include/python2* Not blacklist /usr/lib/python2* Not blacklist /usr/local/lib/python2* Not blacklist /usr/share/python2* Not blacklist /home/my3epc/.local/lib/python3* Not blacklist /usr/local/bin/python3* Not blacklist /usr/bin/python3 Not blacklist /usr/bin/python3.11 Not blacklist /usr/local/games/python3* Not blacklist /usr/games/python3* Not blacklist /sbin/python3* Not blacklist /usr/sbin/python3* Not blacklist /usr/include/python3* Not blacklist /usr/lib/python3* Not blacklist /usr/lib64/python3* Not blacklist /usr/local/lib/python3.11 Not blacklist /usr/share/python3* Not blacklist /home/my3epc/.PlayOnLinux Not blacklist /home/my3epc/.Steam Not blacklist /home/my3epc/.cache/wine Not blacklist /home/my3epc/.cache/winetricks Not blacklist /home/my3epc/.local/share/Steam Not blacklist /home/my3epc/.local/share/steam Not blacklist /home/my3epc/.steam Not blacklist /home/my3epc/.wine Not blacklist /tmp/.wine-* Disable /sys/fs Disable /sys/module Base filesystem installed in 34.82 ms Drop privileges: pid 6, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Creating empty /home/my3epc/.config directory Drop privileges: pid 7, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Creating empty /home/my3epc/.config/pulse directory Mounting noexec /run/firejail/mnt/pulse 180 49 0:27 /pulse /run/firejail/mnt/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=180 fsname=/pulse dir=/run/firejail/mnt/pulse fstype=tmpfs Mounting /run/firejail/mnt/pulse on /home/my3epc/.config/pulse 181 111 0:27 /pulse /home/my3epc/.config/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=181 fsname=/pulse dir=/home/my3epc/.config/pulse fstype=tmpfs Current directory: /home/my3epc DISPLAY=:0.0 parsed as 0 configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp.32 sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.32 Dropping all capabilities Drop privileges: pid 8, uid 1000, gid 1000, force_nogroups 1 No supplementary groups fexecve: No such file or directory Error: failed to run /run/firejail/lib/fsec-print, exiting... Error: proc 3451 cannot sync with peer: unexpected EOF Peer 3452 unexpectedly exited with status 1 ``` </p> </details>
gitea-mirror 2026-05-05 09:59:16 -06:00
  • closed this issue
  • added the
    bug
         label
gitea-mirror commented 2026-05-05 09:59:19 -06:00
Author
Owner
Copy link

@davew-fj commented on GitHub (Sep 26, 2025):

As noted in my edited post above, I accidentally reported the issue with "playonlinux.local" active. See "Additional context" section in above post. Here is what happens without "playonlinux.local".

Description

playonlinux: Cannot start application in firejail. "Playonlinux cannot find nc (NetCat). You need to install it to continue."

Steps to Reproduce

Steps to reproduce the behavior

  1. Run in bash LC_ALL=C firejail playonlinux
  2. Error: a text box pops up saying`Playonlinux cannot find nc (NetCat). You need to install it to continue.'

Expected behavior

PlayOnLinux GUI should open, to allow installation and operation of programs.

Actual behavior

Error message received (as noted above).
After clicking okay in Error text box, terminal reports: 'Parent is shutting down, bye...'

Behavior without a profile

What changed calling LC_ALL=C firejail --noprofile playonlinux in a
terminal? The program comes up and functions normally.

Additional context

This is the behavior without an active "playonlinux.local" file.
See the "Additional Context" section of my first post.

Environment

  • Name/version/arch of the Linux kernel (uname -srm):
    Tried 2 kernels. The problem is the same with either:
    Linux 5.10.224-antix.1-amd64.smp
    Linux 6.1.105-antix.1-amd64.smp
  • Name/version of the Linux distribution: "antiX23.2" 64bit, Debian bookworm based, no systemD
  • Name/version of the relevant program(s)/package(s)
    PlayOnLinux 4.3.4
  • Version of Firejail: 0.9.74
  • If you use a development version of firejail, also the commit from which it
    was compiled (git rev-parse HEAD): Not applicable

Checklist

  • The issues is caused by firejail (i.e. running the program by path (e.g. /usr/bin/vlc) "fixes" it).
  • I can reproduce the issue without custom modifications (e.g. globals.local).
  • The program has a profile. (If not, request one in https://github.com/netblue30/firejail/issues/1139)
  • The profile (and redirect profile if exists) hasn't already been fixed upstream.
  • I have performed a short search for similar issues (to avoid opening a duplicate).
    • I'm aware of browser-allow-drm yes/browser-disable-u2f no in firejail.config to allow DRM/U2F in browsers.
  • I used --profile=PROFILENAME to set the right profile. (Only relevant for AppImages)

Log

Output of LC_ALL=C firejail /path/to/program 

$ LC_ALL=C firejail playonlinux
Reading profile /etc/firejail/playonlinux.profile
Reading profile /etc/firejail/allow-perl.inc
Reading profile /etc/firejail/allow-python2.inc
Reading profile /etc/firejail/allow-python3.inc
Reading profile /etc/firejail/wine.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/whitelist-var-common.inc
firejail version 0.9.74

Parent pid 6593, child pid 6594
Base filesystem installed in 73.93 ms
Child process initialized in 130.25 ms
Looking for python3... 3.11.2 - selected
1.0
[main] Message: PlayOnLinux (4.3.4) is starting
[clean_tmp] Message: Cleaning temp directory
[Check_OpenGL] Warning: check_dd_x86 missing, test skipped
[Check_OpenGL] Warning: check_dd_amd64 missing, test skipped
[POL_System_CheckFS] Message: Checking filesystem for /home/my3epc/.PlayOnLinux/
[main] Message: Filesystem is compatible

Parent is shutting down, bye...

Output of LC_ALL=C firejail --debug /path/to/program 

$ LC_ALL=C firejail --debug playonlinux
Looking for kernel processes
Found kthreadd process, we are not running in a sandbox
pid=8401: locking /run/firejail/firejail-run.lock ...
pid=8401: locked /run/firejail/firejail-run.lock
pid=8401: unlocking /run/firejail/firejail-run.lock ...
pid=8401: unlocked /run/firejail/firejail-run.lock
Building quoted command line: 'playonlinux' 
Command name #playonlinux#
Found playonlinux.profile profile in /etc/firejail directory
Reading profile /etc/firejail/playonlinux.profile
Cannot access .local file playonlinux.local: No such file or directory, skipping...
Found allow-perl.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-perl.inc
Cannot access .local file allow-perl.local: No such file or directory, skipping...
Found allow-python2.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-python2.inc
Cannot access .local file allow-python2.local: No such file or directory, skipping...
Found allow-python3.inc profile in /etc/firejail directory
Reading profile /etc/firejail/allow-python3.inc
Cannot access .local file allow-python3.local: No such file or directory, skipping...
Found wine.profile profile in /etc/firejail directory
Reading profile /etc/firejail/wine.profile
Cannot access .local file wine.local: No such file or directory, skipping...
Cannot access .local file globals.local: No such file or directory, skipping...
Found disable-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-common.inc
Cannot access .local file disable-common.local: No such file or directory, skipping...
Found disable-devel.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-devel.inc
Cannot access .local file disable-devel.local: No such file or directory, skipping...
Found disable-interpreters.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-interpreters.inc
Cannot access .local file disable-interpreters.local: No such file or directory, skipping...
Found disable-programs.inc profile in /etc/firejail directory
Reading profile /etc/firejail/disable-programs.inc
Cannot access .local file disable-programs.local: No such file or directory, skipping...
Found whitelist-var-common.inc profile in /etc/firejail directory
Reading profile /etc/firejail/whitelist-var-common.inc
Cannot access .local file whitelist-var-common.local: No such file or directory, skipping...
firejail version 0.9.74

pid=8401: locking /run/firejail/firejail-run.lock ...
pid=8401: locked /run/firejail/firejail-run.lock
DISPLAY=:0.0 parsed as 0
pid=8401: unlocking /run/firejail/firejail-run.lock ...
pid=8401: unlocked /run/firejail/firejail-run.lock
Using the local network stack
Parent pid 8401, child pid 8402
Initializing child process
Host network configured
PID namespace installed
Mounting tmpfs on /run/firejail/mnt directory
Creating empty /run/firejail/mnt/seccomp directory
Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file
Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file
Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Mounting /proc filesystem representing the PID namespace
Basic read-only filesystem:
Mounting read-only /etc
55 37 8:3 /etc /etc ro,noatime - ext4 /dev/sda3 rw,discard
mountid=55 fsname=/etc dir=/etc fstype=ext4
Mounting noexec /etc
56 55 8:3 /etc /etc ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=56 fsname=/etc dir=/etc fstype=ext4
Mounting read-only /var
57 37 8:3 /var /var ro,noatime - ext4 /dev/sda3 rw,discard
mountid=57 fsname=/var dir=/var fstype=ext4
Mounting noexec /var
58 57 8:3 /var /var ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=58 fsname=/var dir=/var fstype=ext4
Mounting read-only /usr
59 37 8:3 /usr /usr ro,noatime - ext4 /dev/sda3 rw,discard
mountid=59 fsname=/usr dir=/usr fstype=ext4
Mounting tmpfs on /var/lock
Mounting tmpfs on /var/tmp
Mounting tmpfs on /var/log
Mounting tmpfs on /var/lib/dhcp
Mounting tmpfs on /var/lib/snmp
Mounting tmpfs on /var/lib/sudo
Create the new utmp file
Mount the new utmp file
Cleaning /home directory
Cleaning /run/user directory
Cannot open /run/user/1000 directory
Sanitizing /etc/passwd, UID_MIN 1000
Sanitizing /etc/group, GID_MIN 1000
Disable /home/my3epc/.config/firejail
Disable /run/firejail/sandbox
Disable /run/firejail/network
Disable /run/firejail/bandwidth
Disable /run/firejail/name
Disable /run/firejail/profile
Disable /run/firejail/x11
Mounting tmpfs on /dev
mounting /run/firejail/mnt/dev/snd directory
mounting /run/firejail/mnt/dev/dri directory
mounting /run/firejail/mnt/dev/video0 file
mounting /run/firejail/mnt/dev/video1 file
Process /dev/shm directory
blacklist /run/firejail/dbus
Creating a new /etc/hostname file
Creating empty /run/firejail/mnt/hostname file
Creating a new /etc/hosts file
Loading user hosts file
Mounting read-only /proc/sys
Remounting /sys directory
Disable /sys/firmware
Disable /sys/power
Disable /sys/kernel/debug
Disable /sys/kernel/vmcoreinfo
Disable /sys/kernel/uevent_helper
Disable /proc/sys/fs/binfmt_misc
Disable /proc/sys/kernel/core_pattern
Disable /proc/sys/kernel/modprobe
Disable /proc/sysrq-trigger
Disable /proc/sys/kernel/hotplug
Disable /proc/sys/vm/panic_on_oom
Disable /proc/irq
Disable /proc/bus
Disable /proc/timer_list
Disable /proc/kcore
Disable /proc/kallsyms
Disable /proc/kmsg
Debug 588: whitelist /var/lib/aspell
Debug 609: expanded: /var/lib/aspell
Debug 620: new_name: /var/lib/aspell
Debug 630: dir: /var
Adding whitelist top level directory /var
Debug 588: whitelist /var/lib/ca-certificates
Debug 609: expanded: /var/lib/ca-certificates
Debug 620: new_name: /var/lib/ca-certificates
Debug 630: dir: /var
Removed path: whitelist /var/lib/ca-certificates
	new_name: /var/lib/ca-certificates
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/lib/dbus
Debug 609: expanded: /var/lib/dbus
Debug 620: new_name: /var/lib/dbus
Debug 630: dir: /var
Debug 588: whitelist /var/lib/menu-xdg
Debug 609: expanded: /var/lib/menu-xdg
Debug 620: new_name: /var/lib/menu-xdg
Debug 630: dir: /var
Removed path: whitelist /var/lib/menu-xdg
	new_name: /var/lib/menu-xdg
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/lib/uim
Debug 609: expanded: /var/lib/uim
Debug 620: new_name: /var/lib/uim
Debug 630: dir: /var
Removed path: whitelist /var/lib/uim
	new_name: /var/lib/uim
	realpath: (null)
	No such file or directory
Debug 588: whitelist /var/cache/fontconfig
Debug 609: expanded: /var/cache/fontconfig
Debug 620: new_name: /var/cache/fontconfig
Debug 630: dir: /var
Debug 588: whitelist /var/tmp
Debug 609: expanded: /var/tmp
Debug 620: new_name: /var/tmp
Debug 630: dir: /var
Debug 588: whitelist /var/run
Debug 609: expanded: /var/run
Debug 620: new_name: /var/run
Debug 630: dir: /var
Debug 588: whitelist /var/lock
Debug 609: expanded: /var/lock
Debug 620: new_name: /var/lock
Debug 630: dir: /var
Debug 588: whitelist /var/games
Debug 609: expanded: /var/games
Debug 620: new_name: /var/games
Debug 630: dir: /var
Removed path: whitelist /var/games
	new_name: /var/games
	realpath: (null)
	No such file or directory
Mounting tmpfs on /var, check owner: no
117 58 0:47 / /var rw,nosuid,nodev,noexec,noatime - tmpfs tmpfs rw,mode=755,inode64
mountid=117 fsname=/ dir=/var fstype=tmpfs
Whitelisting /var/lib/aspell
118 117 8:3 /var/lib/aspell /var/lib/aspell ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=118 fsname=/var/lib/aspell dir=/var/lib/aspell fstype=ext4
Whitelisting /var/lib/dbus
119 117 8:3 /var/lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=119 fsname=/var/lib/dbus dir=/var/lib/dbus fstype=ext4
Whitelisting /var/cache/fontconfig
120 117 8:3 /var/cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard
mountid=120 fsname=/var/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4
Whitelisting /var/tmp
121 117 0:31 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw,inode64
mountid=121 fsname=/ dir=/var/tmp fstype=tmpfs
Created symbolic link /var/run -> /run
Created symbolic link /var/lock -> /run/lock
Add path entry /usr/local/bin
Add path entry /usr/bin
Add path entry /usr/local/games
Add path entry /usr/games
Add path entry /sbin
Add path entry /usr/sbin
Number of path entries: 6
Disable /home/my3epc/.local/share/Trash
Disable /home/my3epc/.bash_history
Disable /home/my3epc/.config/autostart
Disable /home/my3epc/.fluxbox
Disable /etc/X11/Xsession.d
Disable /etc/xdg/autostart
Mounting read-only /home/my3epc/.Xauthority
128 69 8:3 /home/my3epc/.Xauthority /home/my3epc/.Xauthority ro,noatime - ext4 /dev/sda3 rw,discard
mountid=128 fsname=/home/my3epc/.Xauthority dir=/home/my3epc/.Xauthority fstype=ext4
Mounting read-only /home/my3epc/.config/dconf
129 69 8:3 /home/my3epc/.config/dconf /home/my3epc/.config/dconf ro,noatime - ext4 /dev/sda3 rw,discard
mountid=129 fsname=/home/my3epc/.config/dconf dir=/home/my3epc/.config/dconf fstype=ext4
Disable /etc/systemd/system
Disable /etc/init.d
Disable /run/acpid.socket (requested /var/run/acpid.socket)
Disable /run/rpcbind.sock (requested /var/run/rpcbind.sock)
Disable /etc/adduser.conf
Disable /etc/anacrontab
Disable /etc/apparmor.d
Disable /etc/cron.hourly
Disable /etc/crontab
Disable /etc/cron.monthly
Disable /etc/cron.daily
Disable /etc/cron.d
Disable /etc/cron.yearly
Disable /etc/cron.weekly
Disable /etc/default
Disable /etc/dkms
Disable /etc/grub.d
Disable /etc/kernel
Disable /etc/logrotate.d
Disable /etc/logrotate.conf
Disable /etc/modules
Disable /etc/modules-load.d
Disable /etc/rc.local
Disable /etc/rc2.d
Disable /etc/rc5.d
Disable /etc/rc1.d
Disable /etc/rc4.d
Disable /etc/rc3.d
Disable /etc/rc6.d
Disable /etc/rc0.d
Disable /etc/rcS.d
Disable /etc/logcheck
Mounting read-only /home/my3epc/.bash_logout
162 69 8:3 /home/my3epc/.bash_logout /home/my3epc/.bash_logout ro,noatime - ext4 /dev/sda3 rw,discard
mountid=162 fsname=/home/my3epc/.bash_logout dir=/home/my3epc/.bash_logout fstype=ext4
Mounting read-only /home/my3epc/.bashrc
163 69 8:3 /home/my3epc/.bashrc /home/my3epc/.bashrc ro,noatime - ext4 /dev/sda3 rw,discard
mountid=163 fsname=/home/my3epc/.bashrc dir=/home/my3epc/.bashrc fstype=ext4
Mounting read-only /home/my3epc/.profile
164 69 8:3 /home/my3epc/.profile /home/my3epc/.profile ro,noatime - ext4 /dev/sda3 rw,discard
mountid=164 fsname=/home/my3epc/.profile dir=/home/my3epc/.profile fstype=ext4
Mounting read-only /home/my3epc/.mozilla/firefox/profiles.ini
165 69 8:3 /home/my3epc/.mozilla/firefox/profiles.ini /home/my3epc/.mozilla/firefox/profiles.ini ro,noatime - ext4 /dev/sda3 rw,discard
mountid=165 fsname=/home/my3epc/.mozilla/firefox/profiles.ini dir=/home/my3epc/.mozilla/firefox/profiles.ini fstype=ext4
Mounting read-only /home/my3epc/.nanorc
166 69 8:3 /home/my3epc/.nanorc /home/my3epc/.nanorc ro,noatime - ext4 /dev/sda3 rw,discard
mountid=166 fsname=/home/my3epc/.nanorc dir=/home/my3epc/.nanorc fstype=ext4
Mounting read-only /home/my3epc/.local/share/applications
167 69 8:3 /home/my3epc/.local/share/applications /home/my3epc/.local/share/applications ro,noatime - ext4 /dev/sda3 rw,discard
mountid=167 fsname=/home/my3epc/.local/share/applications dir=/home/my3epc/.local/share/applications fstype=ext4
Mounting read-only /home/my3epc/.config/mimeapps.list
168 69 8:3 /home/my3epc/.config/mimeapps.list /home/my3epc/.config/mimeapps.list ro,noatime - ext4 /dev/sda3 rw,discard
mountid=168 fsname=/home/my3epc/.config/mimeapps.list dir=/home/my3epc/.config/mimeapps.list fstype=ext4
Mounting read-only /home/my3epc/.config/user-dirs.dirs
169 69 8:3 /home/my3epc/.config/user-dirs.dirs /home/my3epc/.config/user-dirs.dirs ro,noatime - ext4 /dev/sda3 rw,discard
mountid=169 fsname=/home/my3epc/.config/user-dirs.dirs dir=/home/my3epc/.config/user-dirs.dirs fstype=ext4
Mounting read-only /home/my3epc/.config/user-dirs.locale
170 69 8:3 /home/my3epc/.config/user-dirs.locale /home/my3epc/.config/user-dirs.locale ro,noatime - ext4 /dev/sda3 rw,discard
mountid=170 fsname=/home/my3epc/.config/user-dirs.locale dir=/home/my3epc/.config/user-dirs.locale fstype=ext4
Disable /etc/group-
Disable /etc/gshadow
Disable /etc/gshadow-
Disable /etc/shadow
Disable /etc/ssh
Disable /etc/sudo_logsrvd.conf
Disable /etc/sudo.conf
Disable /etc/sudoers
Disable /etc/sudoers.d
Disable /home/my3epc/Private
Disable /home/my3epc/.Private
Disable /home/my3epc/.ecryptfs
Disable /home/my3epc/.gnupg
Disable /home/my3epc/.local/share/pki
Disable /home/my3epc/.pki
Disable /usr/sbin (requested /sbin)
Disable /usr/local/sbin
Disable /usr/sbin
Disable /usr/bin/busybox
Disable /usr/bin/chage
Disable /usr/bin/chfn
Disable /usr/bin/chsh
Disable /usr/bin/crontab
Disable /usr/bin/expiry
Disable /usr/bin/fusermount3 (requested /usr/bin/fusermount)
Disable /usr/bin/fusermount3
Disable /usr/bin/gksu
Disable /usr/bin/gksu (requested /usr/bin/gksudo)
Disable /usr/bin/gpasswd
Disable /usr/bin/hostname
Disable /usr/bin/mount
Disable /usr/bin/mountpoint
Not blacklist /usr/local/bin/nc
Not blacklist /usr/bin/nc
Not blacklist /usr/local/games/nc
Not blacklist /usr/games/nc
Not blacklist /sbin/nc
Not blacklist /usr/sbin/nc
Disable /usr/bin/nc.traditional
Disable /usr/bin/netstat
Disable /usr/bin/newgrp
Disable /usr/bin/ntfs-3g
Disable /usr/bin/passwd
Disable /usr/bin/plocate
Disable /usr/bin/pmount
Disable /usr/bin/pumount
Disable /usr/bin/newgrp (requested /usr/bin/sg)
Disable /usr/bin/slock
Disable /usr/bin/ss
Disable /usr/bin/strace
Disable /usr/bin/su
Disable /usr/bin/sudo
Disable /usr/bin/umount
Disable /usr/bin/wall
Disable /usr/bin/write
Disable /usr/bin/xev
Disable /usr/bin/xinput
Disable /usr/lib/dbus-1.0/dbus-daemon-launch-helper
Disable /usr/lib/openssh
Disable /usr/lib/polkit-1/polkit-agent-helper-1 (requested /usr/lib/policykit-1/polkit-agent-helper-1)
Disable /usr/bin/dpkg-statoverride
Disable /usr/bin/dpkg-deb
Disable /usr/bin/dpkg-parsechangelog
Disable /usr/bin/dpkg-shlibdeps
Disable /usr/bin/dpkg-gencontrol
Disable /usr/bin/dpkg-gensymbols
Disable /usr/bin/dpkg-scansources
Disable /usr/bin/dpkg-buildpackage
Disable /usr/bin/dpkg-maintscript-helper
Disable /usr/bin/dpkg-divert
Disable /usr/bin/dpkg-checkbuilddeps
Disable /usr/bin/dpkg-distaddfile
Disable /usr/bin/dpkg-trigger
Disable /usr/bin/dpkg-mergechangelogs
Disable /usr/bin/dpkg-genchanges
Disable /usr/bin/dpkg-split
Disable /usr/bin/dpkg-buildflags
Disable /usr/bin/dpkg-genbuildinfo
Disable /usr/bin/dpkg
Disable /usr/bin/dpkg-query
Disable /usr/bin/dpkg-scanpackages
Disable /usr/bin/dpkg-source
Disable /usr/bin/dpkg-realpath
Disable /usr/bin/dpkg-architecture
Disable /usr/bin/dpkg-name
Disable /usr/bin/dpkg-vendor
Disable /usr/bin/apt-show-versions
Disable /usr/bin/apt-mark
Disable /usr/bin/apt-get
Disable /usr/bin/aptitude-run-state-bundle
Disable /usr/bin/apt-cdrom
Disable /usr/bin/apt
Disable /usr/bin/apt-ftparchive
Disable /usr/bin/apt-extracttemplates
Disable /usr/bin/apt-config
Disable /usr/bin/aptitude-curses (requested /usr/bin/aptitude)
Disable /usr/bin/aptitude-changelog-parser
Disable /usr/bin/aptitude-create-state-bundle
Disable /usr/bin/aptitude-curses
Disable /usr/bin/apt-cache
Disable /usr/bin/apt-sortpkgs
Disable /usr/bin/apt-key
Disable /usr/bin/efibootdump
Disable /usr/bin/efibootmgr
Disable /usr/bin/airscan-discover
Disable /usr/bin/dbus-daemon
Disable /usr/bin/dbus-launch
Disable /usr/bin/dbus-send
Disable /usr/bin/dbus-uuidgen
Disable /usr/bin/dbus-update-activation-environment
Disable /usr/bin/dbus-run-session
Disable /usr/bin/dbus-cleanup-sockets
Disable /usr/bin/dbus-monitor
Disable /usr/bin/debconf-escape
Disable /usr/bin/debconf-updatepo
Disable /usr/bin/debconf-apt-progress
Disable /usr/bin/debconf-getlang
Disable /usr/bin/debconf
Disable /usr/bin/debconf-set-selections
Disable /usr/bin/debconf-copydb
Disable /usr/bin/debconf-show
Disable /usr/bin/debconf-communicate
Disable /usr/bin/debconf-loadtemplate
Disable /usr/bin/debconf-gettextize
Disable /usr/bin/debconf-get-selections
Disable /usr/bin/debconf-mergetemplate
Disable /usr/bin/grub-editenv
Disable /usr/bin/grub-mkimage
Disable /usr/bin/grub-mkrelpath
Disable /usr/bin/grub-mkstandalone
Disable /usr/bin/grub-render-label
Disable /usr/lib/grub/i386-pc/grub-ntldr-img (requested /usr/bin/grub-ntldr-img)
Disable /usr/bin/grub-file
Disable /usr/bin/grub-mkrescue
Disable /usr/bin/grub-kbdcomp
Disable /usr/bin/grub-fstest
Disable /usr/bin/grub-mknetdir
Disable /usr/bin/grub-menulst2cfg
Disable /usr/bin/grub-mount
Disable /usr/bin/grub-script-check
Disable /usr/bin/grub-mkpasswd-pbkdf2
Disable /usr/bin/grub-glue-efi
Disable /usr/bin/grub-mklayout
Disable /usr/bin/grub-mkfont
Disable /usr/bin/grub-syslinux2cfg
Disable /usr/bin/firemon
Disable /usr/bin/firecfg
Disable /usr/bin/jailcheck
Disable /usr/bin/firetools
Disable /usr/bin/roxterm
Disable /usr/bin/roxterm-config
Disable /usr/bin/urxvtc
Disable /usr/bin/urxvtcd
Disable /usr/bin/nstat
Disable /usr/bin/sshfs
Disable /usr/bin/ssh-agent
Disable /usr/bin/ssh
Disable /usr/bin/ssh-copy-id
Disable /usr/bin/ssh-argv0
Disable /usr/bin/ssh-add
Disable /usr/libexec/ssh-askpass/x11-ssh-askpass (requested /usr/bin/ssh-askpass)
Disable /usr/bin/ssh-keyscan
Disable /usr/bin/ssh-keygen
Disable /usr/bin/x86_64-linux-gnu-elfedit (requested /usr/bin/elfedit)
Disable /usr/bin/patch
Disable /usr/bin/dh_python3-ply
Disable /usr/bin/dh_installxmlcatalogs
Disable /usr/bin/dh_numpy3
Disable /usr/bin/dh_perl_openssl
Disable /usr/bin/dh_bash-completion
Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/x86_64-linux-gnu-g++)
Disable /usr/bin/x86_64-linux-gnu-g++-12
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ranlib)
Disable /usr/bin/c99-gcc
Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/x86_64-linux-gnu-gcc)
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/x86_64-linux-gnu-gcc-nm)
Disable /usr/bin/c89-gcc
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12
Disable /usr/bin/x86_64-linux-gnu-gcc-12
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ar)
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12
Disable /usr/bin/x86_64-linux-gnu-as (requested /usr/bin/as)
Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/c++)
Disable /usr/bin/x86_64-linux-gnu-c++filt (requested /usr/bin/c++filt)
Disable /usr/bin/c89-gcc
Disable /usr/bin/c89-gcc (requested /usr/bin/c89)
Disable /usr/bin/c99-gcc
Disable /usr/bin/c99-gcc (requested /usr/bin/c99)
Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/cc)
Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/cpp)
Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/cpp-12)
Disable /usr/bin/x86_64-linux-gnu-elfedit (requested /usr/bin/elfedit)
Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/g++-12)
Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/g++)
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/gcc-nm-12)
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/gcc-ar-12)
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/gcc-nm)
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/gcc-ranlib)
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/gcc-ar)
Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/gcc-12)
Disable /usr/bin/gccmakedep
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/gcc-ranlib-12)
Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/gcc)
Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/gcov-tool)
Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/gcov-dump)
Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/gcov-tool-12)
Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/gcov-dump-12)
Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/gcov-12)
Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/gcov)
Disable /usr/bin/make (requested /usr/bin/gmake)
Disable /usr/bin/x86_64-linux-gnu-ld.bfd (requested /usr/bin/ld)
Disable /usr/bin/make
Disable /usr/bin/make-first-existing-target
Disable /usr/bin/x86_64-linux-gnu-nm
Disable /usr/bin/x86_64-linux-gnu-ar
Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/x86_64-linux-gnu-g++)
Disable /usr/bin/x86_64-linux-gnu-gprofng
Disable /usr/bin/x86_64-linux-gnu-ld.bfd
Disable /usr/bin/x86_64-linux-gnu-g++-12
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12
Disable /usr/bin/x86_64-linux-gnu-elfedit
Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ranlib)
Disable /usr/bin/x86_64-linux-gnu-python3.11-config (requested /usr/bin/x86_64-linux-gnu-python3-config)
Disable /usr/bin/x86_64-linux-gnu-cpp-12
Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12
Disable /usr/bin/x86_64-linux-gnu-as
Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/x86_64-linux-gnu-cpp)
Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/x86_64-linux-gnu-gcc)
Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12
Disable /usr/bin/x86_64-linux-gnu-lto-dump-12 (requested /usr/bin/x86_64-linux-gnu-lto-dump)
Disable /usr/bin/x86_64-linux-gnu-gp-display-src
Disable /usr/bin/x86_64-linux-gnu-objcopy
Disable /usr/bin/x86_64-linux-gnu-ld.bfd (requested /usr/bin/x86_64-linux-gnu-ld)
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/x86_64-linux-gnu-gcc-nm)
Disable /usr/bin/x86_64-linux-gnu-ld.gold
Disable /usr/bin/x86_64-linux-gnu-size
Disable /usr/bin/x86_64-linux-gnu-lto-dump-12
Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/x86_64-linux-gnu-gcov)
Disable /usr/bin/x86_64-linux-gnu-gp-display-html
Disable /usr/bin/x86_64-linux-gnu-dwp
Disable /usr/bin/x86_64-linux-gnu-objdump
Disable /usr/bin/x86_64-linux-gnu-python3.11-config
Disable /usr/bin/x86_64-linux-gnu-addr2line
Disable /usr/bin/x86_64-linux-gnu-ld.gold (requested /usr/bin/x86_64-linux-gnu-gold)
Disable /usr/bin/x86_64-linux-gnu-strip
Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/x86_64-linux-gnu-gcov-dump)
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12
Disable /usr/bin/x86_64-linux-gnu-gprof
Disable /usr/bin/x86_64-linux-gnu-c++filt
Disable /usr/bin/x86_64-linux-gnu-gp-collect-app
Disable /usr/bin/x86_64-linux-gnu-gcc-12
Disable /usr/bin/x86_64-linux-gnu-ranlib
Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ar)
Disable /usr/bin/x86_64-linux-gnu-gp-display-text
Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12
Disable /usr/bin/x86_64-linux-gnu-gp-archive
Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/x86_64-linux-gnu-gcov-tool)
Disable /usr/bin/x86_64-linux-gnu-readelf
Disable /usr/bin/x86_64-linux-gnu-strings
Disable /usr/bin/x86_64-linux-gnu-gcov-12
Disable /usr/share/java
Disable /usr/bin/openssl
Disable /usr/lib/valgrind
Disable /usr/include
Disable /usr/local/include
Disable /usr/local/src
Disable /usr/src
Not blacklist /usr/local/bin/core_perl
Not blacklist /usr/bin/core_perl
Not blacklist /usr/local/games/core_perl
Not blacklist /usr/games/core_perl
Not blacklist /sbin/core_perl
Not blacklist /usr/sbin/core_perl
Not blacklist /usr/local/bin/cpan*
Not blacklist /usr/bin/cpan5.36-x86_64-linux-gnu
Not blacklist /usr/bin/cpan
Not blacklist /usr/local/games/cpan*
Not blacklist /usr/games/cpan*
Not blacklist /sbin/cpan*
Not blacklist /usr/sbin/cpan*
Not blacklist /usr/local/bin/perl
Not blacklist /usr/bin/perl
Not blacklist /usr/local/games/perl
Not blacklist /usr/games/perl
Not blacklist /sbin/perl
Not blacklist /usr/sbin/perl
Not blacklist /usr/local/bin/site_perl
Not blacklist /usr/bin/site_perl
Not blacklist /usr/local/games/site_perl
Not blacklist /usr/games/site_perl
Not blacklist /sbin/site_perl
Not blacklist /usr/sbin/site_perl
Not blacklist /usr/local/bin/vendor_perl
Not blacklist /usr/bin/vendor_perl
Not blacklist /usr/local/games/vendor_perl
Not blacklist /usr/games/vendor_perl
Not blacklist /sbin/vendor_perl
Not blacklist /usr/sbin/vendor_perl
Not blacklist /usr/lib/perl*
Not blacklist /usr/lib64/perl*
Not blacklist /usr/share/perl
Not blacklist /usr/share/perl5
Not blacklist /usr/share/perl-openssl-defaults
Not blacklist /usr/local/bin/rxvt
Not blacklist /usr/bin/rxvt
Not blacklist /usr/local/games/rxvt
Not blacklist /usr/games/rxvt
Not blacklist /sbin/rxvt
Not blacklist /usr/sbin/rxvt
Not blacklist /home/my3epc/.local/lib/python2*
Not blacklist /usr/local/bin/python2*
Not blacklist /usr/bin/python2*
Not blacklist /usr/local/games/python2*
Not blacklist /usr/games/python2*
Not blacklist /sbin/python2*
Not blacklist /usr/sbin/python2*
Not blacklist /usr/include/python2*
Not blacklist /usr/lib/python2*
Not blacklist /usr/local/lib/python2*
Not blacklist /usr/share/python2*
Not blacklist /home/my3epc/.local/lib/python3*
Not blacklist /usr/local/bin/python3*
Not blacklist /usr/bin/python3-config
Not blacklist /usr/bin/python3.11-config
Not blacklist /usr/bin/python3.11
Not blacklist /usr/bin/python3
Not blacklist /usr/local/games/python3*
Not blacklist /usr/games/python3*
Not blacklist /sbin/python3*
Not blacklist /usr/sbin/python3*
Not blacklist /usr/include/python3*
Not blacklist /usr/lib/python3.11
Not blacklist /usr/lib/python3
Not blacklist /usr/lib64/python3*
Not blacklist /usr/local/lib/python3.11
Not blacklist /usr/share/python3
Not blacklist /home/my3epc/.PlayOnLinux
Not blacklist /home/my3epc/.Steam
Disable /home/my3epc/.arduino15
Disable /home/my3epc/.cache/librewolf
Disable /home/my3epc/.cache/mozilla
Disable /home/my3epc/.cache/thunderbird
Not blacklist /home/my3epc/.cache/wine
Not blacklist /home/my3epc/.cache/winetricks
Disable /home/my3epc/.config/clipit
Disable /home/my3epc/.config/filezilla
Disable /home/my3epc/.config/geany
Disable /home/my3epc/.dosbox
Disable /home/my3epc/.fltk
Disable /home/my3epc/.librewolf
Not blacklist /home/my3epc/.local/share/Steam
Not blacklist /home/my3epc/.local/share/steam
Disable /home/my3epc/.mozilla
Disable /home/my3epc/.nanorc
Disable /home/my3epc/.newsboat
Not blacklist /home/my3epc/.steam
Disable /home/my3epc/.thunderbird
Not blacklist /home/my3epc/.wine
Disable /home/my3epc/.xmms
Disable /home/my3epc/Arduino
Not blacklist /tmp/.wine-*
Disable /sys/fs
Disable /sys/module
Base filesystem installed in 78.82 ms
Mounting noexec /run/firejail/mnt/pulse
451 52 0:28 /pulse /run/firejail/mnt/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=451 fsname=/pulse dir=/run/firejail/mnt/pulse fstype=tmpfs
Mounting /run/firejail/mnt/pulse on /home/my3epc/.config/pulse
452 69 0:28 /pulse /home/my3epc/.config/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64
mountid=452 fsname=/pulse dir=/home/my3epc/.config/pulse fstype=tmpfs
Current directory: /home/my3epc
DISPLAY=:0.0 parsed as 0
configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp.32
sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.32 
Dropping all capabilities
Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 1
No supplementary groups
 line  OP JT JF    K
=================================
 0000: 20 00 00 00000004   ld  data.architecture
 0001: 15 01 00 c000003e   jeq ARCH_64 0003 (false 0002)
 0002: 06 00 00 7fff0000   ret ALLOW
 0003: 20 00 00 00000000   ld  data.syscall-number
 0004: 35 01 00 40000000   jge X32_ABI 0006 (false 0005)
 0005: 35 01 00 00000000   jge read 0007 (false 0006)
 0006: 06 00 00 00050001   ret ERRNO(1)
 0007: 15 44 00 0000009f   jeq adjtimex 004c (false 0008)
 0008: 15 43 00 00000131   jeq clock_adjtime 004c (false 0009)
 0009: 15 42 00 000000e3   jeq clock_settime 004c (false 000a)
 000a: 15 41 00 000000a4   jeq settimeofday 004c (false 000b)
 000b: 15 40 00 0000009a   jeq modify_ldt 004c (false 000c)
 000c: 15 3f 00 000000d4   jeq lookup_dcookie 004c (false 000d)
 000d: 15 3e 00 0000012a   jeq perf_event_open 004c (false 000e)
 000e: 15 3d 00 000001b6   jeq pidfd_getfd 004c (false 000f)
 000f: 15 3c 00 00000137   jeq process_vm_writev 004c (false 0010)
 0010: 15 3b 00 000000b0   jeq delete_module 004c (false 0011)
 0011: 15 3a 00 00000139   jeq finit_module 004c (false 0012)
 0012: 15 39 00 000000af   jeq init_module 004c (false 0013)
 0013: 15 38 00 000000a1   jeq chroot 004c (false 0014)
 0014: 15 37 00 000001af   jeq fsconfig 004c (false 0015)
 0015: 15 36 00 000001b0   jeq fsmount 004c (false 0016)
 0016: 15 35 00 000001ae   jeq fsopen 004c (false 0017)
 0017: 15 34 00 000001b1   jeq fspick 004c (false 0018)
 0018: 15 33 00 000000a5   jeq mount 004c (false 0019)
 0019: 15 32 00 000001ad   jeq move_mount 004c (false 001a)
 001a: 15 31 00 000001ac   jeq open_tree 004c (false 001b)
 001b: 15 30 00 0000009b   jeq pivot_root 004c (false 001c)
 001c: 15 2f 00 000000a6   jeq umount2 004c (false 001d)
 001d: 15 2e 00 0000009c   jeq _sysctl 004c (false 001e)
 001e: 15 2d 00 000000b7   jeq afs_syscall 004c (false 001f)
 001f: 15 2c 00 000000ae   jeq create_module 004c (false 0020)
 0020: 15 2b 00 000000b1   jeq get_kernel_syms 004c (false 0021)
 0021: 15 2a 00 000000b5   jeq getpmsg 004c (false 0022)
 0022: 15 29 00 000000b6   jeq putpmsg 004c (false 0023)
 0023: 15 28 00 000000b2   jeq query_module 004c (false 0024)
 0024: 15 27 00 000000b9   jeq security 004c (false 0025)
 0025: 15 26 00 0000008b   jeq sysfs 004c (false 0026)
 0026: 15 25 00 000000b8   jeq tuxcall 004c (false 0027)
 0027: 15 24 00 00000086   jeq uselib 004c (false 0028)
 0028: 15 23 00 00000088   jeq ustat 004c (false 0029)
 0029: 15 22 00 000000ec   jeq vserver 004c (false 002a)
 002a: 15 21 00 000000ad   jeq ioperm 004c (false 002b)
 002b: 15 20 00 000000ac   jeq iopl 004c (false 002c)
 002c: 15 1f 00 000000f6   jeq kexec_load 004c (false 002d)
 002d: 15 1e 00 00000140   jeq kexec_file_load 004c (false 002e)
 002e: 15 1d 00 000000a9   jeq reboot 004c (false 002f)
 002f: 15 1c 00 000000a7   jeq swapon 004c (false 0030)
 0030: 15 1b 00 000000a8   jeq swapoff 004c (false 0031)
 0031: 15 1a 00 00000130   jeq open_by_handle_at 004c (false 0032)
 0032: 15 19 00 0000012f   jeq name_to_handle_at 004c (false 0033)
 0033: 15 18 00 000000fb   jeq ioprio_set 004c (false 0034)
 0034: 15 17 00 00000067   jeq syslog 004c (false 0035)
 0035: 15 16 00 0000012c   jeq fanotify_init 004c (false 0036)
 0036: 15 15 00 000000f8   jeq add_key 004c (false 0037)
 0037: 15 14 00 000000f9   jeq request_key 004c (false 0038)
 0038: 15 13 00 000000ed   jeq mbind 004c (false 0039)
 0039: 15 12 00 00000100   jeq migrate_pages 004c (false 003a)
 003a: 15 11 00 00000117   jeq move_pages 004c (false 003b)
 003b: 15 10 00 000000fa   jeq keyctl 004c (false 003c)
 003c: 15 0f 00 000000ce   jeq io_setup 004c (false 003d)
 003d: 15 0e 00 000000cf   jeq io_destroy 004c (false 003e)
 003e: 15 0d 00 000000d0   jeq io_getevents 004c (false 003f)
 003f: 15 0c 00 000000d1   jeq io_submit 004c (false 0040)
 0040: 15 0b 00 000000d2   jeq io_cancel 004c (false 0041)
 0041: 15 0a 00 000000d8   jeq remap_file_pages 004c (false 0042)
 0042: 15 09 00 000000ee   jeq set_mempolicy 004c (false 0043)
 0043: 15 08 00 00000116   jeq vmsplice 004c (false 0044)
 0044: 15 07 00 00000143   jeq userfaultfd 004c (false 0045)
 0045: 15 06 00 000000a3   jeq acct 004c (false 0046)
 0046: 15 05 00 00000141   jeq bpf 004c (false 0047)
 0047: 15 04 00 000000b4   jeq nfsservctl 004c (false 0048)
 0048: 15 03 00 000000ab   jeq setdomainname 004c (false 0049)
 0049: 15 02 00 000000aa   jeq sethostname 004c (false 004a)
 004a: 15 01 00 00000099   jeq vhangup 004c (false 004b)
 004b: 06 00 00 7fff0000   ret ALLOW
 004c: 06 00 00 00050001   ret ERRNO(1)
Dual 32/64 bit seccomp filter configured
configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp
sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp 
Dropping all capabilities
Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 1
No supplementary groups
 line  OP JT JF    K
=================================
 0000: 20 00 00 00000004   ld  data.architecture
 0001: 15 01 00 c000003e   jeq ARCH_64 0003 (false 0002)
 0002: 06 00 00 7fff0000   ret ALLOW
 0003: 20 00 00 00000000   ld  data.syscall-number
 0004: 35 01 00 40000000   jge X32_ABI 0006 (false 0005)
 0005: 35 01 00 00000000   jge read 0007 (false 0006)
 0006: 06 00 00 00050001   ret ERRNO(1)
 0007: 15 44 00 0000009f   jeq adjtimex 004c (false 0008)
 0008: 15 43 00 00000131   jeq clock_adjtime 004c (false 0009)
 0009: 15 42 00 000000e3   jeq clock_settime 004c (false 000a)
 000a: 15 41 00 000000a4   jeq settimeofday 004c (false 000b)
 000b: 15 40 00 0000009a   jeq modify_ldt 004c (false 000c)
 000c: 15 3f 00 000000d4   jeq lookup_dcookie 004c (false 000d)
 000d: 15 3e 00 0000012a   jeq perf_event_open 004c (false 000e)
 000e: 15 3d 00 000001b6   jeq pidfd_getfd 004c (false 000f)
 000f: 15 3c 00 00000137   jeq process_vm_writev 004c (false 0010)
 0010: 15 3b 00 000000b0   jeq delete_module 004c (false 0011)
 0011: 15 3a 00 00000139   jeq finit_module 004c (false 0012)
 0012: 15 39 00 000000af   jeq init_module 004c (false 0013)
 0013: 15 38 00 000000a1   jeq chroot 004c (false 0014)
 0014: 15 37 00 000001af   jeq fsconfig 004c (false 0015)
 0015: 15 36 00 000001b0   jeq fsmount 004c (false 0016)
 0016: 15 35 00 000001ae   jeq fsopen 004c (false 0017)
 0017: 15 34 00 000001b1   jeq fspick 004c (false 0018)
 0018: 15 33 00 000000a5   jeq mount 004c (false 0019)
 0019: 15 32 00 000001ad   jeq move_mount 004c (false 001a)
 001a: 15 31 00 000001ac   jeq open_tree 004c (false 001b)
 001b: 15 30 00 0000009b   jeq pivot_root 004c (false 001c)
 001c: 15 2f 00 000000a6   jeq umount2 004c (false 001d)
 001d: 15 2e 00 0000009c   jeq _sysctl 004c (false 001e)
 001e: 15 2d 00 000000b7   jeq afs_syscall 004c (false 001f)
 001f: 15 2c 00 000000ae   jeq create_module 004c (false 0020)
 0020: 15 2b 00 000000b1   jeq get_kernel_syms 004c (false 0021)
 0021: 15 2a 00 000000b5   jeq getpmsg 004c (false 0022)
 0022: 15 29 00 000000b6   jeq putpmsg 004c (false 0023)
 0023: 15 28 00 000000b2   jeq query_module 004c (false 0024)
 0024: 15 27 00 000000b9   jeq security 004c (false 0025)
 0025: 15 26 00 0000008b   jeq sysfs 004c (false 0026)
 0026: 15 25 00 000000b8   jeq tuxcall 004c (false 0027)
 0027: 15 24 00 00000086   jeq uselib 004c (false 0028)
 0028: 15 23 00 00000088   jeq ustat 004c (false 0029)
 0029: 15 22 00 000000ec   jeq vserver 004c (false 002a)
 002a: 15 21 00 000000ad   jeq ioperm 004c (false 002b)
 002b: 15 20 00 000000ac   jeq iopl 004c (false 002c)
 002c: 15 1f 00 000000f6   jeq kexec_load 004c (false 002d)
 002d: 15 1e 00 00000140   jeq kexec_file_load 004c (false 002e)
 002e: 15 1d 00 000000a9   jeq reboot 004c (false 002f)
 002f: 15 1c 00 000000a7   jeq swapon 004c (false 0030)
 0030: 15 1b 00 000000a8   jeq swapoff 004c (false 0031)
 0031: 15 1a 00 00000130   jeq open_by_handle_at 004c (false 0032)
 0032: 15 19 00 0000012f   jeq name_to_handle_at 004c (false 0033)
 0033: 15 18 00 000000fb   jeq ioprio_set 004c (false 0034)
 0034: 15 17 00 00000067   jeq syslog 004c (false 0035)
 0035: 15 16 00 0000012c   jeq fanotify_init 004c (false 0036)
 0036: 15 15 00 000000f8   jeq add_key 004c (false 0037)
 0037: 15 14 00 000000f9   jeq request_key 004c (false 0038)
 0038: 15 13 00 000000ed   jeq mbind 004c (false 0039)
 0039: 15 12 00 00000100   jeq migrate_pages 004c (false 003a)
 003a: 15 11 00 00000117   jeq move_pages 004c (false 003b)
 003b: 15 10 00 000000fa   jeq keyctl 004c (false 003c)
 003c: 15 0f 00 000000ce   jeq io_setup 004c (false 003d)
 003d: 15 0e 00 000000cf   jeq io_destroy 004c (false 003e)
 003e: 15 0d 00 000000d0   jeq io_getevents 004c (false 003f)
 003f: 15 0c 00 000000d1   jeq io_submit 004c (false 0040)
 0040: 15 0b 00 000000d2   jeq io_cancel 004c (false 0041)
 0041: 15 0a 00 000000d8   jeq remap_file_pages 004c (false 0042)
 0042: 15 09 00 000000ee   jeq set_mempolicy 004c (false 0043)
 0043: 15 08 00 00000116   jeq vmsplice 004c (false 0044)
 0044: 15 07 00 00000143   jeq userfaultfd 004c (false 0045)
 0045: 15 06 00 000000a3   jeq acct 004c (false 0046)
 0046: 15 05 00 00000141   jeq bpf 004c (false 0047)
 0047: 15 04 00 000000b4   jeq nfsservctl 004c (false 0048)
 0048: 15 03 00 000000ab   jeq setdomainname 004c (false 0049)
 0049: 15 02 00 000000aa   jeq sethostname 004c (false 004a)
 004a: 15 01 00 00000099   jeq vhangup 004c (false 004b)
 004b: 06 00 00 7fff0000   ret ALLOW
 004c: 06 00 00 00050001   ret ERRNO(1)
seccomp filter configured
Install namespaces filter
configuring 26 seccomp entries in /run/firejail/mnt/seccomp/seccomp.namespaces
sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.namespaces 
Dropping all capabilities
Drop privileges: pid 5, uid 1000, gid 1000, force_nogroups 1
No supplementary groups
 line  OP JT JF    K
=================================
 0000: 20 00 00 00000004   ld  data.architecture
 0001: 15 01 00 c000003e   jeq ARCH_64 0003 (false 0002)
 0002: 06 00 00 7fff0000   ret ALLOW
 0003: 20 00 00 00000000   ld  data.syscall-number
 0004: 35 01 00 40000000   jge X32_ABI 0006 (false 0005)
 0005: 35 01 00 00000000   jge read 0007 (false 0006)
 0006: 06 00 00 00050001   ret ERRNO(1)
 0007: 15 00 04 00000038   jeq clone 0008 (false 000c)
 0008: 20 00 00 00000010   ld  data.args[0]
 0009: 45 00 01 7e020000   jset 7e020000 000a (false 000b)
 000a: 06 00 00 00050001   ret ERRNO(1)
 000b: 06 00 00 7fff0000   ret ALLOW
 000c: 15 00 01 000001b3   jeq 1b3 000d (false 000e)
 000d: 06 00 00 00050026   ret ERRNO(38)
 000e: 15 00 04 00000110   jeq 110 000f (false 0013)
 000f: 20 00 00 00000010   ld  data.args[0]
 0010: 45 00 01 7e020080   jset 7e020080 0011 (false 0012)
 0011: 06 00 00 00050001   ret ERRNO(1)
 0012: 06 00 00 7fff0000   ret ALLOW
 0013: 15 00 04 00000134   jeq 134 0014 (false 0018)
 0014: 20 00 00 00000018   ld  data.args[8]
 0015: 15 01 00 00000000   jeq 0 0017 (false 0016)
 0016: 45 00 01 7e020080   jset 7e020080 0017 (false 0018)
 0017: 06 00 00 00050001   ret ERRNO(1)
 0018: 06 00 00 7fff0000   ret ALLOW
 0019: 06 00 00 7fff0000   ret ALLOW
configuring 26 seccomp entries in /run/firejail/mnt/seccomp/seccomp.namespaces.32
sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.namespaces.32 
Dropping all capabilities
Drop privileges: pid 6, uid 1000, gid 1000, force_nogroups 1
No supplementary groups
 line  OP JT JF    K
=================================
 0000: 20 00 00 00000004   ld  data.architecture
 0001: 15 01 00 c000003e   jeq ARCH_64 0003 (false 0002)
 0002: 06 00 00 7fff0000   ret ALLOW
 0003: 20 00 00 00000000   ld  data.syscall-number
 0004: 35 01 00 40000000   jge X32_ABI 0006 (false 0005)
 0005: 35 01 00 00000000   jge read 0007 (false 0006)
 0006: 06 00 00 00050001   ret ERRNO(1)
 0007: 15 00 04 00000038   jeq clone 0008 (false 000c)
 0008: 20 00 00 00000010   ld  data.args[0]
 0009: 45 00 01 7e020000   jset 7e020000 000a (false 000b)
 000a: 06 00 00 00050001   ret ERRNO(1)
 000b: 06 00 00 7fff0000   ret ALLOW
 000c: 15 00 01 000001b3   jeq 1b3 000d (false 000e)
 000d: 06 00 00 00050026   ret ERRNO(38)
 000e: 15 00 04 00000110   jeq 110 000f (false 0013)
 000f: 20 00 00 00000010   ld  data.args[0]
 0010: 45 00 01 7e020080   jset 7e020080 0011 (false 0012)
 0011: 06 00 00 00050001   ret ERRNO(1)
 0012: 06 00 00 7fff0000   ret ALLOW
 0013: 15 00 04 00000134   jeq 134 0014 (false 0018)
 0014: 20 00 00 00000018   ld  data.args[8]
 0015: 15 01 00 00000000   jeq 0 0017 (false 0016)
 0016: 45 00 01 7e020080   jset 7e020080 0017 (false 0018)
 0017: 06 00 00 00050001   ret ERRNO(1)
 0018: 06 00 00 7fff0000   ret ALLOW
 0019: 06 00 00 7fff0000   ret ALLOW
Mounting read-only /run/firejail/mnt/seccomp
454 52 0:28 /seccomp /run/firejail/mnt/seccomp ro,nosuid - tmpfs tmpfs rw,mode=755,inode64
mountid=454 fsname=/seccomp dir=/run/firejail/mnt/seccomp fstype=tmpfs
Seccomp directory:
ls /run/firejail/mnt/seccomp
drwxr-xr-x root     root             180 .
drwxr-xr-x root     root             280 ..
-rw-r--r-- my3epc   my3epc           616 seccomp
-rw-r--r-- my3epc   my3epc           616 seccomp.32
-rw-r--r-- my3epc   my3epc           164 seccomp.list
-rw-r--r-- my3epc   my3epc           208 seccomp.namespaces
-rw-r--r-- my3epc   my3epc           208 seccomp.namespaces.32
-rw-r--r-- my3epc   my3epc             0 seccomp.postexec
-rw-r--r-- my3epc   my3epc             0 seccomp.postexec32
Active seccomp files:
cat /run/firejail/mnt/seccomp/seccomp.list
/run/firejail/mnt/seccomp/seccomp.32
/run/firejail/mnt/seccomp/seccomp
/run/firejail/mnt/seccomp/seccomp.namespaces
/run/firejail/mnt/seccomp/seccomp.namespaces.32
Dropping all capabilities
pid=8401: unlocking /run/firejail/firejail-network.lock ...
noroot user namespace installed
pid=8401: already unlocked /run/firejail/firejail-network.lock
Dropping all capabilities
NO_NEW_PRIVS set
Drop privileges: pid 1, uid 1000, gid 1000, force_nogroups 0
Supplementary groups: 29 44 7 46 
Closing non-standard file descriptors
Starting application
LD_PRELOAD=(null)
Not enforcing Landlock
execvp argument 0: playonlinux
Child process initialized in 148.26 ms
Searching $PATH for playonlinux
trying #/usr/local/bin/playonlinux#
trying #/usr/bin/playonlinux#
Installing /run/firejail/mnt/seccomp/seccomp.namespaces.32 seccomp filter
Installing /run/firejail/mnt/seccomp/seccomp.namespaces seccomp filter
Installing /run/firejail/mnt/seccomp/seccomp seccomp filter
Installing /run/firejail/mnt/seccomp/seccomp.32 seccomp filter
Looking for python3... 3.11.2 - monitoring pid 7

selected
1.0
[main] Message: PlayOnLinux (4.3.4) is starting
[clean_tmp] Message: Cleaning temp directory
[Check_OpenGL] Warning: check_dd_x86 missing, test skipped
[Check_OpenGL] Warning: check_dd_amd64 missing, test skipped
[POL_System_CheckFS] Message: Checking filesystem for /home/my3epc/.PlayOnLinux/
[main] Message: Filesystem is compatible
Sandbox monitor: waitpid 7 retval 7 status 0

Parent is shutting down, bye...
<!-- gh-comment-id:3340141900 --> @davew-fj commented on GitHub (Sep 26, 2025): As noted in my edited post above, I accidentally reported the issue with "playonlinux.local" active. See "Additional context" section in above post. Here is what happens without "playonlinux.local". ### Description playonlinux: Cannot start application in firejail. "Playonlinux cannot find nc (NetCat). You need to install it to continue." ### Steps to Reproduce _Steps to reproduce the behavior_ 1. Run in bash `LC_ALL=C firejail playonlinux` 2. Error: a text box pops up saying`Playonlinux cannot find nc (NetCat). You need to install it to continue.' ### Expected behavior PlayOnLinux GUI should open, to allow installation and operation of programs. ### Actual behavior Error message received (as noted above). After clicking okay in Error text box, terminal reports: 'Parent is shutting down, bye...' ### Behavior without a profile _What changed calling `LC_ALL=C firejail --noprofile playonlinux` in a terminal?_ The program comes up and functions normally. ### Additional context This is the behavior without an active "playonlinux.local" file. See the "Additional Context" section of my first post. ### Environment - Name/version/arch of the Linux kernel (`uname -srm`): Tried 2 kernels. The problem is the same with either: Linux 5.10.224-antix.1-amd64.smp Linux 6.1.105-antix.1-amd64.smp - Name/version of the Linux distribution: "antiX23.2" 64bit, Debian bookworm based, no systemD - Name/version of the relevant program(s)/package(s) PlayOnLinux 4.3.4 - Version of Firejail: 0.9.74 - If you use a development version of firejail, also the commit from which it was compiled (`git rev-parse HEAD`): Not applicable ### Checklist <!-- Note: Items are checked with an "x", like so: - [x] This is a checked item. --> - [x] The issues is caused by firejail (i.e. running the program by path (e.g. `/usr/bin/vlc`) "fixes" it). - [x] I can reproduce the issue without custom modifications (e.g. globals.local). - [x] The program has a profile. (If not, request one in `https://github.com/netblue30/firejail/issues/1139`) - [x] The profile (and redirect profile if exists) hasn't already been fixed [upstream](https://github.com/netblue30/firejail/tree/master/etc). - [x] I have performed a short search for similar issues (to avoid opening a duplicate). - [ ] I'm aware of `browser-allow-drm yes`/`browser-disable-u2f no` in `firejail.config` to allow DRM/U2F in browsers. - [ ] I used `--profile=PROFILENAME` to set the right profile. (Only relevant for AppImages) ### Log <details> <summary>Output of <code>LC_ALL=C firejail /path/to/program</code></summary> <p> ``` $ LC_ALL=C firejail playonlinux Reading profile /etc/firejail/playonlinux.profile Reading profile /etc/firejail/allow-perl.inc Reading profile /etc/firejail/allow-python2.inc Reading profile /etc/firejail/allow-python3.inc Reading profile /etc/firejail/wine.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/whitelist-var-common.inc firejail version 0.9.74 Parent pid 6593, child pid 6594 Base filesystem installed in 73.93 ms Child process initialized in 130.25 ms Looking for python3... 3.11.2 - selected 1.0 [main] Message: PlayOnLinux (4.3.4) is starting [clean_tmp] Message: Cleaning temp directory [Check_OpenGL] Warning: check_dd_x86 missing, test skipped [Check_OpenGL] Warning: check_dd_amd64 missing, test skipped [POL_System_CheckFS] Message: Checking filesystem for /home/my3epc/.PlayOnLinux/ [main] Message: Filesystem is compatible Parent is shutting down, bye... ``` </p> </details> <details> <summary>Output of <code>LC_ALL=C firejail --debug /path/to/program</code></summary> <p> ``` $ LC_ALL=C firejail --debug playonlinux Looking for kernel processes Found kthreadd process, we are not running in a sandbox pid=8401: locking /run/firejail/firejail-run.lock ... pid=8401: locked /run/firejail/firejail-run.lock pid=8401: unlocking /run/firejail/firejail-run.lock ... pid=8401: unlocked /run/firejail/firejail-run.lock Building quoted command line: 'playonlinux' Command name #playonlinux# Found playonlinux.profile profile in /etc/firejail directory Reading profile /etc/firejail/playonlinux.profile Cannot access .local file playonlinux.local: No such file or directory, skipping... Found allow-perl.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-perl.inc Cannot access .local file allow-perl.local: No such file or directory, skipping... Found allow-python2.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python2.inc Cannot access .local file allow-python2.local: No such file or directory, skipping... Found allow-python3.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python3.inc Cannot access .local file allow-python3.local: No such file or directory, skipping... Found wine.profile profile in /etc/firejail directory Reading profile /etc/firejail/wine.profile Cannot access .local file wine.local: No such file or directory, skipping... Cannot access .local file globals.local: No such file or directory, skipping... Found disable-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-common.inc Cannot access .local file disable-common.local: No such file or directory, skipping... Found disable-devel.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-devel.inc Cannot access .local file disable-devel.local: No such file or directory, skipping... Found disable-interpreters.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-interpreters.inc Cannot access .local file disable-interpreters.local: No such file or directory, skipping... Found disable-programs.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-programs.inc Cannot access .local file disable-programs.local: No such file or directory, skipping... Found whitelist-var-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/whitelist-var-common.inc Cannot access .local file whitelist-var-common.local: No such file or directory, skipping... firejail version 0.9.74 pid=8401: locking /run/firejail/firejail-run.lock ... pid=8401: locked /run/firejail/firejail-run.lock DISPLAY=:0.0 parsed as 0 pid=8401: unlocking /run/firejail/firejail-run.lock ... pid=8401: unlocked /run/firejail/firejail-run.lock Using the local network stack Parent pid 8401, child pid 8402 Initializing child process Host network configured PID namespace installed Mounting tmpfs on /run/firejail/mnt directory Creating empty /run/firejail/mnt/seccomp directory Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Mounting /proc filesystem representing the PID namespace Basic read-only filesystem: Mounting read-only /etc 55 37 8:3 /etc /etc ro,noatime - ext4 /dev/sda3 rw,discard mountid=55 fsname=/etc dir=/etc fstype=ext4 Mounting noexec /etc 56 55 8:3 /etc /etc ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=56 fsname=/etc dir=/etc fstype=ext4 Mounting read-only /var 57 37 8:3 /var /var ro,noatime - ext4 /dev/sda3 rw,discard mountid=57 fsname=/var dir=/var fstype=ext4 Mounting noexec /var 58 57 8:3 /var /var ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=58 fsname=/var dir=/var fstype=ext4 Mounting read-only /usr 59 37 8:3 /usr /usr ro,noatime - ext4 /dev/sda3 rw,discard mountid=59 fsname=/usr dir=/usr fstype=ext4 Mounting tmpfs on /var/lock Mounting tmpfs on /var/tmp Mounting tmpfs on /var/log Mounting tmpfs on /var/lib/dhcp Mounting tmpfs on /var/lib/snmp Mounting tmpfs on /var/lib/sudo Create the new utmp file Mount the new utmp file Cleaning /home directory Cleaning /run/user directory Cannot open /run/user/1000 directory Sanitizing /etc/passwd, UID_MIN 1000 Sanitizing /etc/group, GID_MIN 1000 Disable /home/my3epc/.config/firejail Disable /run/firejail/sandbox Disable /run/firejail/network Disable /run/firejail/bandwidth Disable /run/firejail/name Disable /run/firejail/profile Disable /run/firejail/x11 Mounting tmpfs on /dev mounting /run/firejail/mnt/dev/snd directory mounting /run/firejail/mnt/dev/dri directory mounting /run/firejail/mnt/dev/video0 file mounting /run/firejail/mnt/dev/video1 file Process /dev/shm directory blacklist /run/firejail/dbus Creating a new /etc/hostname file Creating empty /run/firejail/mnt/hostname file Creating a new /etc/hosts file Loading user hosts file Mounting read-only /proc/sys Remounting /sys directory Disable /sys/firmware Disable /sys/power Disable /sys/kernel/debug Disable /sys/kernel/vmcoreinfo Disable /sys/kernel/uevent_helper Disable /proc/sys/fs/binfmt_misc Disable /proc/sys/kernel/core_pattern Disable /proc/sys/kernel/modprobe Disable /proc/sysrq-trigger Disable /proc/sys/kernel/hotplug Disable /proc/sys/vm/panic_on_oom Disable /proc/irq Disable /proc/bus Disable /proc/timer_list Disable /proc/kcore Disable /proc/kallsyms Disable /proc/kmsg Debug 588: whitelist /var/lib/aspell Debug 609: expanded: /var/lib/aspell Debug 620: new_name: /var/lib/aspell Debug 630: dir: /var Adding whitelist top level directory /var Debug 588: whitelist /var/lib/ca-certificates Debug 609: expanded: /var/lib/ca-certificates Debug 620: new_name: /var/lib/ca-certificates Debug 630: dir: /var Removed path: whitelist /var/lib/ca-certificates new_name: /var/lib/ca-certificates realpath: (null) No such file or directory Debug 588: whitelist /var/lib/dbus Debug 609: expanded: /var/lib/dbus Debug 620: new_name: /var/lib/dbus Debug 630: dir: /var Debug 588: whitelist /var/lib/menu-xdg Debug 609: expanded: /var/lib/menu-xdg Debug 620: new_name: /var/lib/menu-xdg Debug 630: dir: /var Removed path: whitelist /var/lib/menu-xdg new_name: /var/lib/menu-xdg realpath: (null) No such file or directory Debug 588: whitelist /var/lib/uim Debug 609: expanded: /var/lib/uim Debug 620: new_name: /var/lib/uim Debug 630: dir: /var Removed path: whitelist /var/lib/uim new_name: /var/lib/uim realpath: (null) No such file or directory Debug 588: whitelist /var/cache/fontconfig Debug 609: expanded: /var/cache/fontconfig Debug 620: new_name: /var/cache/fontconfig Debug 630: dir: /var Debug 588: whitelist /var/tmp Debug 609: expanded: /var/tmp Debug 620: new_name: /var/tmp Debug 630: dir: /var Debug 588: whitelist /var/run Debug 609: expanded: /var/run Debug 620: new_name: /var/run Debug 630: dir: /var Debug 588: whitelist /var/lock Debug 609: expanded: /var/lock Debug 620: new_name: /var/lock Debug 630: dir: /var Debug 588: whitelist /var/games Debug 609: expanded: /var/games Debug 620: new_name: /var/games Debug 630: dir: /var Removed path: whitelist /var/games new_name: /var/games realpath: (null) No such file or directory Mounting tmpfs on /var, check owner: no 117 58 0:47 / /var rw,nosuid,nodev,noexec,noatime - tmpfs tmpfs rw,mode=755,inode64 mountid=117 fsname=/ dir=/var fstype=tmpfs Whitelisting /var/lib/aspell 118 117 8:3 /var/lib/aspell /var/lib/aspell ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=118 fsname=/var/lib/aspell dir=/var/lib/aspell fstype=ext4 Whitelisting /var/lib/dbus 119 117 8:3 /var/lib/dbus /var/lib/dbus ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=119 fsname=/var/lib/dbus dir=/var/lib/dbus fstype=ext4 Whitelisting /var/cache/fontconfig 120 117 8:3 /var/cache/fontconfig /var/cache/fontconfig ro,nosuid,nodev,noexec,noatime - ext4 /dev/sda3 rw,discard mountid=120 fsname=/var/cache/fontconfig dir=/var/cache/fontconfig fstype=ext4 Whitelisting /var/tmp 121 117 0:31 / /var/tmp rw,nosuid,nodev,noexec - tmpfs tmpfs rw,inode64 mountid=121 fsname=/ dir=/var/tmp fstype=tmpfs Created symbolic link /var/run -> /run Created symbolic link /var/lock -> /run/lock Add path entry /usr/local/bin Add path entry /usr/bin Add path entry /usr/local/games Add path entry /usr/games Add path entry /sbin Add path entry /usr/sbin Number of path entries: 6 Disable /home/my3epc/.local/share/Trash Disable /home/my3epc/.bash_history Disable /home/my3epc/.config/autostart Disable /home/my3epc/.fluxbox Disable /etc/X11/Xsession.d Disable /etc/xdg/autostart Mounting read-only /home/my3epc/.Xauthority 128 69 8:3 /home/my3epc/.Xauthority /home/my3epc/.Xauthority ro,noatime - ext4 /dev/sda3 rw,discard mountid=128 fsname=/home/my3epc/.Xauthority dir=/home/my3epc/.Xauthority fstype=ext4 Mounting read-only /home/my3epc/.config/dconf 129 69 8:3 /home/my3epc/.config/dconf /home/my3epc/.config/dconf ro,noatime - ext4 /dev/sda3 rw,discard mountid=129 fsname=/home/my3epc/.config/dconf dir=/home/my3epc/.config/dconf fstype=ext4 Disable /etc/systemd/system Disable /etc/init.d Disable /run/acpid.socket (requested /var/run/acpid.socket) Disable /run/rpcbind.sock (requested /var/run/rpcbind.sock) Disable /etc/adduser.conf Disable /etc/anacrontab Disable /etc/apparmor.d Disable /etc/cron.hourly Disable /etc/crontab Disable /etc/cron.monthly Disable /etc/cron.daily Disable /etc/cron.d Disable /etc/cron.yearly Disable /etc/cron.weekly Disable /etc/default Disable /etc/dkms Disable /etc/grub.d Disable /etc/kernel Disable /etc/logrotate.d Disable /etc/logrotate.conf Disable /etc/modules Disable /etc/modules-load.d Disable /etc/rc.local Disable /etc/rc2.d Disable /etc/rc5.d Disable /etc/rc1.d Disable /etc/rc4.d Disable /etc/rc3.d Disable /etc/rc6.d Disable /etc/rc0.d Disable /etc/rcS.d Disable /etc/logcheck Mounting read-only /home/my3epc/.bash_logout 162 69 8:3 /home/my3epc/.bash_logout /home/my3epc/.bash_logout ro,noatime - ext4 /dev/sda3 rw,discard mountid=162 fsname=/home/my3epc/.bash_logout dir=/home/my3epc/.bash_logout fstype=ext4 Mounting read-only /home/my3epc/.bashrc 163 69 8:3 /home/my3epc/.bashrc /home/my3epc/.bashrc ro,noatime - ext4 /dev/sda3 rw,discard mountid=163 fsname=/home/my3epc/.bashrc dir=/home/my3epc/.bashrc fstype=ext4 Mounting read-only /home/my3epc/.profile 164 69 8:3 /home/my3epc/.profile /home/my3epc/.profile ro,noatime - ext4 /dev/sda3 rw,discard mountid=164 fsname=/home/my3epc/.profile dir=/home/my3epc/.profile fstype=ext4 Mounting read-only /home/my3epc/.mozilla/firefox/profiles.ini 165 69 8:3 /home/my3epc/.mozilla/firefox/profiles.ini /home/my3epc/.mozilla/firefox/profiles.ini ro,noatime - ext4 /dev/sda3 rw,discard mountid=165 fsname=/home/my3epc/.mozilla/firefox/profiles.ini dir=/home/my3epc/.mozilla/firefox/profiles.ini fstype=ext4 Mounting read-only /home/my3epc/.nanorc 166 69 8:3 /home/my3epc/.nanorc /home/my3epc/.nanorc ro,noatime - ext4 /dev/sda3 rw,discard mountid=166 fsname=/home/my3epc/.nanorc dir=/home/my3epc/.nanorc fstype=ext4 Mounting read-only /home/my3epc/.local/share/applications 167 69 8:3 /home/my3epc/.local/share/applications /home/my3epc/.local/share/applications ro,noatime - ext4 /dev/sda3 rw,discard mountid=167 fsname=/home/my3epc/.local/share/applications dir=/home/my3epc/.local/share/applications fstype=ext4 Mounting read-only /home/my3epc/.config/mimeapps.list 168 69 8:3 /home/my3epc/.config/mimeapps.list /home/my3epc/.config/mimeapps.list ro,noatime - ext4 /dev/sda3 rw,discard mountid=168 fsname=/home/my3epc/.config/mimeapps.list dir=/home/my3epc/.config/mimeapps.list fstype=ext4 Mounting read-only /home/my3epc/.config/user-dirs.dirs 169 69 8:3 /home/my3epc/.config/user-dirs.dirs /home/my3epc/.config/user-dirs.dirs ro,noatime - ext4 /dev/sda3 rw,discard mountid=169 fsname=/home/my3epc/.config/user-dirs.dirs dir=/home/my3epc/.config/user-dirs.dirs fstype=ext4 Mounting read-only /home/my3epc/.config/user-dirs.locale 170 69 8:3 /home/my3epc/.config/user-dirs.locale /home/my3epc/.config/user-dirs.locale ro,noatime - ext4 /dev/sda3 rw,discard mountid=170 fsname=/home/my3epc/.config/user-dirs.locale dir=/home/my3epc/.config/user-dirs.locale fstype=ext4 Disable /etc/group- Disable /etc/gshadow Disable /etc/gshadow- Disable /etc/shadow Disable /etc/ssh Disable /etc/sudo_logsrvd.conf Disable /etc/sudo.conf Disable /etc/sudoers Disable /etc/sudoers.d Disable /home/my3epc/Private Disable /home/my3epc/.Private Disable /home/my3epc/.ecryptfs Disable /home/my3epc/.gnupg Disable /home/my3epc/.local/share/pki Disable /home/my3epc/.pki Disable /usr/sbin (requested /sbin) Disable /usr/local/sbin Disable /usr/sbin Disable /usr/bin/busybox Disable /usr/bin/chage Disable /usr/bin/chfn Disable /usr/bin/chsh Disable /usr/bin/crontab Disable /usr/bin/expiry Disable /usr/bin/fusermount3 (requested /usr/bin/fusermount) Disable /usr/bin/fusermount3 Disable /usr/bin/gksu Disable /usr/bin/gksu (requested /usr/bin/gksudo) Disable /usr/bin/gpasswd Disable /usr/bin/hostname Disable /usr/bin/mount Disable /usr/bin/mountpoint Not blacklist /usr/local/bin/nc Not blacklist /usr/bin/nc Not blacklist /usr/local/games/nc Not blacklist /usr/games/nc Not blacklist /sbin/nc Not blacklist /usr/sbin/nc Disable /usr/bin/nc.traditional Disable /usr/bin/netstat Disable /usr/bin/newgrp Disable /usr/bin/ntfs-3g Disable /usr/bin/passwd Disable /usr/bin/plocate Disable /usr/bin/pmount Disable /usr/bin/pumount Disable /usr/bin/newgrp (requested /usr/bin/sg) Disable /usr/bin/slock Disable /usr/bin/ss Disable /usr/bin/strace Disable /usr/bin/su Disable /usr/bin/sudo Disable /usr/bin/umount Disable /usr/bin/wall Disable /usr/bin/write Disable /usr/bin/xev Disable /usr/bin/xinput Disable /usr/lib/dbus-1.0/dbus-daemon-launch-helper Disable /usr/lib/openssh Disable /usr/lib/polkit-1/polkit-agent-helper-1 (requested /usr/lib/policykit-1/polkit-agent-helper-1) Disable /usr/bin/dpkg-statoverride Disable /usr/bin/dpkg-deb Disable /usr/bin/dpkg-parsechangelog Disable /usr/bin/dpkg-shlibdeps Disable /usr/bin/dpkg-gencontrol Disable /usr/bin/dpkg-gensymbols Disable /usr/bin/dpkg-scansources Disable /usr/bin/dpkg-buildpackage Disable /usr/bin/dpkg-maintscript-helper Disable /usr/bin/dpkg-divert Disable /usr/bin/dpkg-checkbuilddeps Disable /usr/bin/dpkg-distaddfile Disable /usr/bin/dpkg-trigger Disable /usr/bin/dpkg-mergechangelogs Disable /usr/bin/dpkg-genchanges Disable /usr/bin/dpkg-split Disable /usr/bin/dpkg-buildflags Disable /usr/bin/dpkg-genbuildinfo Disable /usr/bin/dpkg Disable /usr/bin/dpkg-query Disable /usr/bin/dpkg-scanpackages Disable /usr/bin/dpkg-source Disable /usr/bin/dpkg-realpath Disable /usr/bin/dpkg-architecture Disable /usr/bin/dpkg-name Disable /usr/bin/dpkg-vendor Disable /usr/bin/apt-show-versions Disable /usr/bin/apt-mark Disable /usr/bin/apt-get Disable /usr/bin/aptitude-run-state-bundle Disable /usr/bin/apt-cdrom Disable /usr/bin/apt Disable /usr/bin/apt-ftparchive Disable /usr/bin/apt-extracttemplates Disable /usr/bin/apt-config Disable /usr/bin/aptitude-curses (requested /usr/bin/aptitude) Disable /usr/bin/aptitude-changelog-parser Disable /usr/bin/aptitude-create-state-bundle Disable /usr/bin/aptitude-curses Disable /usr/bin/apt-cache Disable /usr/bin/apt-sortpkgs Disable /usr/bin/apt-key Disable /usr/bin/efibootdump Disable /usr/bin/efibootmgr Disable /usr/bin/airscan-discover Disable /usr/bin/dbus-daemon Disable /usr/bin/dbus-launch Disable /usr/bin/dbus-send Disable /usr/bin/dbus-uuidgen Disable /usr/bin/dbus-update-activation-environment Disable /usr/bin/dbus-run-session Disable /usr/bin/dbus-cleanup-sockets Disable /usr/bin/dbus-monitor Disable /usr/bin/debconf-escape Disable /usr/bin/debconf-updatepo Disable /usr/bin/debconf-apt-progress Disable /usr/bin/debconf-getlang Disable /usr/bin/debconf Disable /usr/bin/debconf-set-selections Disable /usr/bin/debconf-copydb Disable /usr/bin/debconf-show Disable /usr/bin/debconf-communicate Disable /usr/bin/debconf-loadtemplate Disable /usr/bin/debconf-gettextize Disable /usr/bin/debconf-get-selections Disable /usr/bin/debconf-mergetemplate Disable /usr/bin/grub-editenv Disable /usr/bin/grub-mkimage Disable /usr/bin/grub-mkrelpath Disable /usr/bin/grub-mkstandalone Disable /usr/bin/grub-render-label Disable /usr/lib/grub/i386-pc/grub-ntldr-img (requested /usr/bin/grub-ntldr-img) Disable /usr/bin/grub-file Disable /usr/bin/grub-mkrescue Disable /usr/bin/grub-kbdcomp Disable /usr/bin/grub-fstest Disable /usr/bin/grub-mknetdir Disable /usr/bin/grub-menulst2cfg Disable /usr/bin/grub-mount Disable /usr/bin/grub-script-check Disable /usr/bin/grub-mkpasswd-pbkdf2 Disable /usr/bin/grub-glue-efi Disable /usr/bin/grub-mklayout Disable /usr/bin/grub-mkfont Disable /usr/bin/grub-syslinux2cfg Disable /usr/bin/firemon Disable /usr/bin/firecfg Disable /usr/bin/jailcheck Disable /usr/bin/firetools Disable /usr/bin/roxterm Disable /usr/bin/roxterm-config Disable /usr/bin/urxvtc Disable /usr/bin/urxvtcd Disable /usr/bin/nstat Disable /usr/bin/sshfs Disable /usr/bin/ssh-agent Disable /usr/bin/ssh Disable /usr/bin/ssh-copy-id Disable /usr/bin/ssh-argv0 Disable /usr/bin/ssh-add Disable /usr/libexec/ssh-askpass/x11-ssh-askpass (requested /usr/bin/ssh-askpass) Disable /usr/bin/ssh-keyscan Disable /usr/bin/ssh-keygen Disable /usr/bin/x86_64-linux-gnu-elfedit (requested /usr/bin/elfedit) Disable /usr/bin/patch Disable /usr/bin/dh_python3-ply Disable /usr/bin/dh_installxmlcatalogs Disable /usr/bin/dh_numpy3 Disable /usr/bin/dh_perl_openssl Disable /usr/bin/dh_bash-completion Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/x86_64-linux-gnu-g++) Disable /usr/bin/x86_64-linux-gnu-g++-12 Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ranlib) Disable /usr/bin/c99-gcc Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/x86_64-linux-gnu-gcc) Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/x86_64-linux-gnu-gcc-nm) Disable /usr/bin/c89-gcc Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 Disable /usr/bin/x86_64-linux-gnu-gcc-12 Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ar) Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 Disable /usr/bin/x86_64-linux-gnu-as (requested /usr/bin/as) Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/c++) Disable /usr/bin/x86_64-linux-gnu-c++filt (requested /usr/bin/c++filt) Disable /usr/bin/c89-gcc Disable /usr/bin/c89-gcc (requested /usr/bin/c89) Disable /usr/bin/c99-gcc Disable /usr/bin/c99-gcc (requested /usr/bin/c99) Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/cc) Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/cpp) Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/cpp-12) Disable /usr/bin/x86_64-linux-gnu-elfedit (requested /usr/bin/elfedit) Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/g++-12) Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/g++) Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/gcc-nm-12) Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/gcc-ar-12) Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/gcc-nm) Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/gcc-ranlib) Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/gcc-ar) Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/gcc-12) Disable /usr/bin/gccmakedep Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/gcc-ranlib-12) Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/gcc) Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/gcov-tool) Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/gcov-dump) Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/gcov-tool-12) Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/gcov-dump-12) Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/gcov-12) Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/gcov) Disable /usr/bin/make (requested /usr/bin/gmake) Disable /usr/bin/x86_64-linux-gnu-ld.bfd (requested /usr/bin/ld) Disable /usr/bin/make Disable /usr/bin/make-first-existing-target Disable /usr/bin/x86_64-linux-gnu-nm Disable /usr/bin/x86_64-linux-gnu-ar Disable /usr/bin/x86_64-linux-gnu-g++-12 (requested /usr/bin/x86_64-linux-gnu-g++) Disable /usr/bin/x86_64-linux-gnu-gprofng Disable /usr/bin/x86_64-linux-gnu-ld.bfd Disable /usr/bin/x86_64-linux-gnu-g++-12 Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 Disable /usr/bin/x86_64-linux-gnu-elfedit Disable /usr/bin/x86_64-linux-gnu-gcc-ranlib-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ranlib) Disable /usr/bin/x86_64-linux-gnu-python3.11-config (requested /usr/bin/x86_64-linux-gnu-python3-config) Disable /usr/bin/x86_64-linux-gnu-cpp-12 Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 Disable /usr/bin/x86_64-linux-gnu-as Disable /usr/bin/x86_64-linux-gnu-cpp-12 (requested /usr/bin/x86_64-linux-gnu-cpp) Disable /usr/bin/x86_64-linux-gnu-gcc-12 (requested /usr/bin/x86_64-linux-gnu-gcc) Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 Disable /usr/bin/x86_64-linux-gnu-lto-dump-12 (requested /usr/bin/x86_64-linux-gnu-lto-dump) Disable /usr/bin/x86_64-linux-gnu-gp-display-src Disable /usr/bin/x86_64-linux-gnu-objcopy Disable /usr/bin/x86_64-linux-gnu-ld.bfd (requested /usr/bin/x86_64-linux-gnu-ld) Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 (requested /usr/bin/x86_64-linux-gnu-gcc-nm) Disable /usr/bin/x86_64-linux-gnu-ld.gold Disable /usr/bin/x86_64-linux-gnu-size Disable /usr/bin/x86_64-linux-gnu-lto-dump-12 Disable /usr/bin/x86_64-linux-gnu-gcov-12 (requested /usr/bin/x86_64-linux-gnu-gcov) Disable /usr/bin/x86_64-linux-gnu-gp-display-html Disable /usr/bin/x86_64-linux-gnu-dwp Disable /usr/bin/x86_64-linux-gnu-objdump Disable /usr/bin/x86_64-linux-gnu-python3.11-config Disable /usr/bin/x86_64-linux-gnu-addr2line Disable /usr/bin/x86_64-linux-gnu-ld.gold (requested /usr/bin/x86_64-linux-gnu-gold) Disable /usr/bin/x86_64-linux-gnu-strip Disable /usr/bin/x86_64-linux-gnu-gcov-dump-12 (requested /usr/bin/x86_64-linux-gnu-gcov-dump) Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 Disable /usr/bin/x86_64-linux-gnu-gprof Disable /usr/bin/x86_64-linux-gnu-c++filt Disable /usr/bin/x86_64-linux-gnu-gp-collect-app Disable /usr/bin/x86_64-linux-gnu-gcc-12 Disable /usr/bin/x86_64-linux-gnu-ranlib Disable /usr/bin/x86_64-linux-gnu-gcc-ar-12 (requested /usr/bin/x86_64-linux-gnu-gcc-ar) Disable /usr/bin/x86_64-linux-gnu-gp-display-text Disable /usr/bin/x86_64-linux-gnu-gcc-nm-12 Disable /usr/bin/x86_64-linux-gnu-gp-archive Disable /usr/bin/x86_64-linux-gnu-gcov-tool-12 (requested /usr/bin/x86_64-linux-gnu-gcov-tool) Disable /usr/bin/x86_64-linux-gnu-readelf Disable /usr/bin/x86_64-linux-gnu-strings Disable /usr/bin/x86_64-linux-gnu-gcov-12 Disable /usr/share/java Disable /usr/bin/openssl Disable /usr/lib/valgrind Disable /usr/include Disable /usr/local/include Disable /usr/local/src Disable /usr/src Not blacklist /usr/local/bin/core_perl Not blacklist /usr/bin/core_perl Not blacklist /usr/local/games/core_perl Not blacklist /usr/games/core_perl Not blacklist /sbin/core_perl Not blacklist /usr/sbin/core_perl Not blacklist /usr/local/bin/cpan* Not blacklist /usr/bin/cpan5.36-x86_64-linux-gnu Not blacklist /usr/bin/cpan Not blacklist /usr/local/games/cpan* Not blacklist /usr/games/cpan* Not blacklist /sbin/cpan* Not blacklist /usr/sbin/cpan* Not blacklist /usr/local/bin/perl Not blacklist /usr/bin/perl Not blacklist /usr/local/games/perl Not blacklist /usr/games/perl Not blacklist /sbin/perl Not blacklist /usr/sbin/perl Not blacklist /usr/local/bin/site_perl Not blacklist /usr/bin/site_perl Not blacklist /usr/local/games/site_perl Not blacklist /usr/games/site_perl Not blacklist /sbin/site_perl Not blacklist /usr/sbin/site_perl Not blacklist /usr/local/bin/vendor_perl Not blacklist /usr/bin/vendor_perl Not blacklist /usr/local/games/vendor_perl Not blacklist /usr/games/vendor_perl Not blacklist /sbin/vendor_perl Not blacklist /usr/sbin/vendor_perl Not blacklist /usr/lib/perl* Not blacklist /usr/lib64/perl* Not blacklist /usr/share/perl Not blacklist /usr/share/perl5 Not blacklist /usr/share/perl-openssl-defaults Not blacklist /usr/local/bin/rxvt Not blacklist /usr/bin/rxvt Not blacklist /usr/local/games/rxvt Not blacklist /usr/games/rxvt Not blacklist /sbin/rxvt Not blacklist /usr/sbin/rxvt Not blacklist /home/my3epc/.local/lib/python2* Not blacklist /usr/local/bin/python2* Not blacklist /usr/bin/python2* Not blacklist /usr/local/games/python2* Not blacklist /usr/games/python2* Not blacklist /sbin/python2* Not blacklist /usr/sbin/python2* Not blacklist /usr/include/python2* Not blacklist /usr/lib/python2* Not blacklist /usr/local/lib/python2* Not blacklist /usr/share/python2* Not blacklist /home/my3epc/.local/lib/python3* Not blacklist /usr/local/bin/python3* Not blacklist /usr/bin/python3-config Not blacklist /usr/bin/python3.11-config Not blacklist /usr/bin/python3.11 Not blacklist /usr/bin/python3 Not blacklist /usr/local/games/python3* Not blacklist /usr/games/python3* Not blacklist /sbin/python3* Not blacklist /usr/sbin/python3* Not blacklist /usr/include/python3* Not blacklist /usr/lib/python3.11 Not blacklist /usr/lib/python3 Not blacklist /usr/lib64/python3* Not blacklist /usr/local/lib/python3.11 Not blacklist /usr/share/python3 Not blacklist /home/my3epc/.PlayOnLinux Not blacklist /home/my3epc/.Steam Disable /home/my3epc/.arduino15 Disable /home/my3epc/.cache/librewolf Disable /home/my3epc/.cache/mozilla Disable /home/my3epc/.cache/thunderbird Not blacklist /home/my3epc/.cache/wine Not blacklist /home/my3epc/.cache/winetricks Disable /home/my3epc/.config/clipit Disable /home/my3epc/.config/filezilla Disable /home/my3epc/.config/geany Disable /home/my3epc/.dosbox Disable /home/my3epc/.fltk Disable /home/my3epc/.librewolf Not blacklist /home/my3epc/.local/share/Steam Not blacklist /home/my3epc/.local/share/steam Disable /home/my3epc/.mozilla Disable /home/my3epc/.nanorc Disable /home/my3epc/.newsboat Not blacklist /home/my3epc/.steam Disable /home/my3epc/.thunderbird Not blacklist /home/my3epc/.wine Disable /home/my3epc/.xmms Disable /home/my3epc/Arduino Not blacklist /tmp/.wine-* Disable /sys/fs Disable /sys/module Base filesystem installed in 78.82 ms Mounting noexec /run/firejail/mnt/pulse 451 52 0:28 /pulse /run/firejail/mnt/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=451 fsname=/pulse dir=/run/firejail/mnt/pulse fstype=tmpfs Mounting /run/firejail/mnt/pulse on /home/my3epc/.config/pulse 452 69 0:28 /pulse /home/my3epc/.config/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=452 fsname=/pulse dir=/home/my3epc/.config/pulse fstype=tmpfs Current directory: /home/my3epc DISPLAY=:0.0 parsed as 0 configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp.32 sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.32 Dropping all capabilities Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 c000003e jeq ARCH_64 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 35 01 00 40000000 jge X32_ABI 0006 (false 0005) 0005: 35 01 00 00000000 jge read 0007 (false 0006) 0006: 06 00 00 00050001 ret ERRNO(1) 0007: 15 44 00 0000009f jeq adjtimex 004c (false 0008) 0008: 15 43 00 00000131 jeq clock_adjtime 004c (false 0009) 0009: 15 42 00 000000e3 jeq clock_settime 004c (false 000a) 000a: 15 41 00 000000a4 jeq settimeofday 004c (false 000b) 000b: 15 40 00 0000009a jeq modify_ldt 004c (false 000c) 000c: 15 3f 00 000000d4 jeq lookup_dcookie 004c (false 000d) 000d: 15 3e 00 0000012a jeq perf_event_open 004c (false 000e) 000e: 15 3d 00 000001b6 jeq pidfd_getfd 004c (false 000f) 000f: 15 3c 00 00000137 jeq process_vm_writev 004c (false 0010) 0010: 15 3b 00 000000b0 jeq delete_module 004c (false 0011) 0011: 15 3a 00 00000139 jeq finit_module 004c (false 0012) 0012: 15 39 00 000000af jeq init_module 004c (false 0013) 0013: 15 38 00 000000a1 jeq chroot 004c (false 0014) 0014: 15 37 00 000001af jeq fsconfig 004c (false 0015) 0015: 15 36 00 000001b0 jeq fsmount 004c (false 0016) 0016: 15 35 00 000001ae jeq fsopen 004c (false 0017) 0017: 15 34 00 000001b1 jeq fspick 004c (false 0018) 0018: 15 33 00 000000a5 jeq mount 004c (false 0019) 0019: 15 32 00 000001ad jeq move_mount 004c (false 001a) 001a: 15 31 00 000001ac jeq open_tree 004c (false 001b) 001b: 15 30 00 0000009b jeq pivot_root 004c (false 001c) 001c: 15 2f 00 000000a6 jeq umount2 004c (false 001d) 001d: 15 2e 00 0000009c jeq _sysctl 004c (false 001e) 001e: 15 2d 00 000000b7 jeq afs_syscall 004c (false 001f) 001f: 15 2c 00 000000ae jeq create_module 004c (false 0020) 0020: 15 2b 00 000000b1 jeq get_kernel_syms 004c (false 0021) 0021: 15 2a 00 000000b5 jeq getpmsg 004c (false 0022) 0022: 15 29 00 000000b6 jeq putpmsg 004c (false 0023) 0023: 15 28 00 000000b2 jeq query_module 004c (false 0024) 0024: 15 27 00 000000b9 jeq security 004c (false 0025) 0025: 15 26 00 0000008b jeq sysfs 004c (false 0026) 0026: 15 25 00 000000b8 jeq tuxcall 004c (false 0027) 0027: 15 24 00 00000086 jeq uselib 004c (false 0028) 0028: 15 23 00 00000088 jeq ustat 004c (false 0029) 0029: 15 22 00 000000ec jeq vserver 004c (false 002a) 002a: 15 21 00 000000ad jeq ioperm 004c (false 002b) 002b: 15 20 00 000000ac jeq iopl 004c (false 002c) 002c: 15 1f 00 000000f6 jeq kexec_load 004c (false 002d) 002d: 15 1e 00 00000140 jeq kexec_file_load 004c (false 002e) 002e: 15 1d 00 000000a9 jeq reboot 004c (false 002f) 002f: 15 1c 00 000000a7 jeq swapon 004c (false 0030) 0030: 15 1b 00 000000a8 jeq swapoff 004c (false 0031) 0031: 15 1a 00 00000130 jeq open_by_handle_at 004c (false 0032) 0032: 15 19 00 0000012f jeq name_to_handle_at 004c (false 0033) 0033: 15 18 00 000000fb jeq ioprio_set 004c (false 0034) 0034: 15 17 00 00000067 jeq syslog 004c (false 0035) 0035: 15 16 00 0000012c jeq fanotify_init 004c (false 0036) 0036: 15 15 00 000000f8 jeq add_key 004c (false 0037) 0037: 15 14 00 000000f9 jeq request_key 004c (false 0038) 0038: 15 13 00 000000ed jeq mbind 004c (false 0039) 0039: 15 12 00 00000100 jeq migrate_pages 004c (false 003a) 003a: 15 11 00 00000117 jeq move_pages 004c (false 003b) 003b: 15 10 00 000000fa jeq keyctl 004c (false 003c) 003c: 15 0f 00 000000ce jeq io_setup 004c (false 003d) 003d: 15 0e 00 000000cf jeq io_destroy 004c (false 003e) 003e: 15 0d 00 000000d0 jeq io_getevents 004c (false 003f) 003f: 15 0c 00 000000d1 jeq io_submit 004c (false 0040) 0040: 15 0b 00 000000d2 jeq io_cancel 004c (false 0041) 0041: 15 0a 00 000000d8 jeq remap_file_pages 004c (false 0042) 0042: 15 09 00 000000ee jeq set_mempolicy 004c (false 0043) 0043: 15 08 00 00000116 jeq vmsplice 004c (false 0044) 0044: 15 07 00 00000143 jeq userfaultfd 004c (false 0045) 0045: 15 06 00 000000a3 jeq acct 004c (false 0046) 0046: 15 05 00 00000141 jeq bpf 004c (false 0047) 0047: 15 04 00 000000b4 jeq nfsservctl 004c (false 0048) 0048: 15 03 00 000000ab jeq setdomainname 004c (false 0049) 0049: 15 02 00 000000aa jeq sethostname 004c (false 004a) 004a: 15 01 00 00000099 jeq vhangup 004c (false 004b) 004b: 06 00 00 7fff0000 ret ALLOW 004c: 06 00 00 00050001 ret ERRNO(1) Dual 32/64 bit seccomp filter configured configuring 77 seccomp entries in /run/firejail/mnt/seccomp/seccomp sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp Dropping all capabilities Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 c000003e jeq ARCH_64 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 35 01 00 40000000 jge X32_ABI 0006 (false 0005) 0005: 35 01 00 00000000 jge read 0007 (false 0006) 0006: 06 00 00 00050001 ret ERRNO(1) 0007: 15 44 00 0000009f jeq adjtimex 004c (false 0008) 0008: 15 43 00 00000131 jeq clock_adjtime 004c (false 0009) 0009: 15 42 00 000000e3 jeq clock_settime 004c (false 000a) 000a: 15 41 00 000000a4 jeq settimeofday 004c (false 000b) 000b: 15 40 00 0000009a jeq modify_ldt 004c (false 000c) 000c: 15 3f 00 000000d4 jeq lookup_dcookie 004c (false 000d) 000d: 15 3e 00 0000012a jeq perf_event_open 004c (false 000e) 000e: 15 3d 00 000001b6 jeq pidfd_getfd 004c (false 000f) 000f: 15 3c 00 00000137 jeq process_vm_writev 004c (false 0010) 0010: 15 3b 00 000000b0 jeq delete_module 004c (false 0011) 0011: 15 3a 00 00000139 jeq finit_module 004c (false 0012) 0012: 15 39 00 000000af jeq init_module 004c (false 0013) 0013: 15 38 00 000000a1 jeq chroot 004c (false 0014) 0014: 15 37 00 000001af jeq fsconfig 004c (false 0015) 0015: 15 36 00 000001b0 jeq fsmount 004c (false 0016) 0016: 15 35 00 000001ae jeq fsopen 004c (false 0017) 0017: 15 34 00 000001b1 jeq fspick 004c (false 0018) 0018: 15 33 00 000000a5 jeq mount 004c (false 0019) 0019: 15 32 00 000001ad jeq move_mount 004c (false 001a) 001a: 15 31 00 000001ac jeq open_tree 004c (false 001b) 001b: 15 30 00 0000009b jeq pivot_root 004c (false 001c) 001c: 15 2f 00 000000a6 jeq umount2 004c (false 001d) 001d: 15 2e 00 0000009c jeq _sysctl 004c (false 001e) 001e: 15 2d 00 000000b7 jeq afs_syscall 004c (false 001f) 001f: 15 2c 00 000000ae jeq create_module 004c (false 0020) 0020: 15 2b 00 000000b1 jeq get_kernel_syms 004c (false 0021) 0021: 15 2a 00 000000b5 jeq getpmsg 004c (false 0022) 0022: 15 29 00 000000b6 jeq putpmsg 004c (false 0023) 0023: 15 28 00 000000b2 jeq query_module 004c (false 0024) 0024: 15 27 00 000000b9 jeq security 004c (false 0025) 0025: 15 26 00 0000008b jeq sysfs 004c (false 0026) 0026: 15 25 00 000000b8 jeq tuxcall 004c (false 0027) 0027: 15 24 00 00000086 jeq uselib 004c (false 0028) 0028: 15 23 00 00000088 jeq ustat 004c (false 0029) 0029: 15 22 00 000000ec jeq vserver 004c (false 002a) 002a: 15 21 00 000000ad jeq ioperm 004c (false 002b) 002b: 15 20 00 000000ac jeq iopl 004c (false 002c) 002c: 15 1f 00 000000f6 jeq kexec_load 004c (false 002d) 002d: 15 1e 00 00000140 jeq kexec_file_load 004c (false 002e) 002e: 15 1d 00 000000a9 jeq reboot 004c (false 002f) 002f: 15 1c 00 000000a7 jeq swapon 004c (false 0030) 0030: 15 1b 00 000000a8 jeq swapoff 004c (false 0031) 0031: 15 1a 00 00000130 jeq open_by_handle_at 004c (false 0032) 0032: 15 19 00 0000012f jeq name_to_handle_at 004c (false 0033) 0033: 15 18 00 000000fb jeq ioprio_set 004c (false 0034) 0034: 15 17 00 00000067 jeq syslog 004c (false 0035) 0035: 15 16 00 0000012c jeq fanotify_init 004c (false 0036) 0036: 15 15 00 000000f8 jeq add_key 004c (false 0037) 0037: 15 14 00 000000f9 jeq request_key 004c (false 0038) 0038: 15 13 00 000000ed jeq mbind 004c (false 0039) 0039: 15 12 00 00000100 jeq migrate_pages 004c (false 003a) 003a: 15 11 00 00000117 jeq move_pages 004c (false 003b) 003b: 15 10 00 000000fa jeq keyctl 004c (false 003c) 003c: 15 0f 00 000000ce jeq io_setup 004c (false 003d) 003d: 15 0e 00 000000cf jeq io_destroy 004c (false 003e) 003e: 15 0d 00 000000d0 jeq io_getevents 004c (false 003f) 003f: 15 0c 00 000000d1 jeq io_submit 004c (false 0040) 0040: 15 0b 00 000000d2 jeq io_cancel 004c (false 0041) 0041: 15 0a 00 000000d8 jeq remap_file_pages 004c (false 0042) 0042: 15 09 00 000000ee jeq set_mempolicy 004c (false 0043) 0043: 15 08 00 00000116 jeq vmsplice 004c (false 0044) 0044: 15 07 00 00000143 jeq userfaultfd 004c (false 0045) 0045: 15 06 00 000000a3 jeq acct 004c (false 0046) 0046: 15 05 00 00000141 jeq bpf 004c (false 0047) 0047: 15 04 00 000000b4 jeq nfsservctl 004c (false 0048) 0048: 15 03 00 000000ab jeq setdomainname 004c (false 0049) 0049: 15 02 00 000000aa jeq sethostname 004c (false 004a) 004a: 15 01 00 00000099 jeq vhangup 004c (false 004b) 004b: 06 00 00 7fff0000 ret ALLOW 004c: 06 00 00 00050001 ret ERRNO(1) seccomp filter configured Install namespaces filter configuring 26 seccomp entries in /run/firejail/mnt/seccomp/seccomp.namespaces sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.namespaces Dropping all capabilities Drop privileges: pid 5, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 c000003e jeq ARCH_64 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 35 01 00 40000000 jge X32_ABI 0006 (false 0005) 0005: 35 01 00 00000000 jge read 0007 (false 0006) 0006: 06 00 00 00050001 ret ERRNO(1) 0007: 15 00 04 00000038 jeq clone 0008 (false 000c) 0008: 20 00 00 00000010 ld data.args[0] 0009: 45 00 01 7e020000 jset 7e020000 000a (false 000b) 000a: 06 00 00 00050001 ret ERRNO(1) 000b: 06 00 00 7fff0000 ret ALLOW 000c: 15 00 01 000001b3 jeq 1b3 000d (false 000e) 000d: 06 00 00 00050026 ret ERRNO(38) 000e: 15 00 04 00000110 jeq 110 000f (false 0013) 000f: 20 00 00 00000010 ld data.args[0] 0010: 45 00 01 7e020080 jset 7e020080 0011 (false 0012) 0011: 06 00 00 00050001 ret ERRNO(1) 0012: 06 00 00 7fff0000 ret ALLOW 0013: 15 00 04 00000134 jeq 134 0014 (false 0018) 0014: 20 00 00 00000018 ld data.args[8] 0015: 15 01 00 00000000 jeq 0 0017 (false 0016) 0016: 45 00 01 7e020080 jset 7e020080 0017 (false 0018) 0017: 06 00 00 00050001 ret ERRNO(1) 0018: 06 00 00 7fff0000 ret ALLOW 0019: 06 00 00 7fff0000 ret ALLOW configuring 26 seccomp entries in /run/firejail/mnt/seccomp/seccomp.namespaces.32 sbox run: /run/firejail/lib/fsec-print /run/firejail/mnt/seccomp/seccomp.namespaces.32 Dropping all capabilities Drop privileges: pid 6, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 c000003e jeq ARCH_64 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 35 01 00 40000000 jge X32_ABI 0006 (false 0005) 0005: 35 01 00 00000000 jge read 0007 (false 0006) 0006: 06 00 00 00050001 ret ERRNO(1) 0007: 15 00 04 00000038 jeq clone 0008 (false 000c) 0008: 20 00 00 00000010 ld data.args[0] 0009: 45 00 01 7e020000 jset 7e020000 000a (false 000b) 000a: 06 00 00 00050001 ret ERRNO(1) 000b: 06 00 00 7fff0000 ret ALLOW 000c: 15 00 01 000001b3 jeq 1b3 000d (false 000e) 000d: 06 00 00 00050026 ret ERRNO(38) 000e: 15 00 04 00000110 jeq 110 000f (false 0013) 000f: 20 00 00 00000010 ld data.args[0] 0010: 45 00 01 7e020080 jset 7e020080 0011 (false 0012) 0011: 06 00 00 00050001 ret ERRNO(1) 0012: 06 00 00 7fff0000 ret ALLOW 0013: 15 00 04 00000134 jeq 134 0014 (false 0018) 0014: 20 00 00 00000018 ld data.args[8] 0015: 15 01 00 00000000 jeq 0 0017 (false 0016) 0016: 45 00 01 7e020080 jset 7e020080 0017 (false 0018) 0017: 06 00 00 00050001 ret ERRNO(1) 0018: 06 00 00 7fff0000 ret ALLOW 0019: 06 00 00 7fff0000 ret ALLOW Mounting read-only /run/firejail/mnt/seccomp 454 52 0:28 /seccomp /run/firejail/mnt/seccomp ro,nosuid - tmpfs tmpfs rw,mode=755,inode64 mountid=454 fsname=/seccomp dir=/run/firejail/mnt/seccomp fstype=tmpfs Seccomp directory: ls /run/firejail/mnt/seccomp drwxr-xr-x root root 180 . drwxr-xr-x root root 280 .. -rw-r--r-- my3epc my3epc 616 seccomp -rw-r--r-- my3epc my3epc 616 seccomp.32 -rw-r--r-- my3epc my3epc 164 seccomp.list -rw-r--r-- my3epc my3epc 208 seccomp.namespaces -rw-r--r-- my3epc my3epc 208 seccomp.namespaces.32 -rw-r--r-- my3epc my3epc 0 seccomp.postexec -rw-r--r-- my3epc my3epc 0 seccomp.postexec32 Active seccomp files: cat /run/firejail/mnt/seccomp/seccomp.list /run/firejail/mnt/seccomp/seccomp.32 /run/firejail/mnt/seccomp/seccomp /run/firejail/mnt/seccomp/seccomp.namespaces /run/firejail/mnt/seccomp/seccomp.namespaces.32 Dropping all capabilities pid=8401: unlocking /run/firejail/firejail-network.lock ... noroot user namespace installed pid=8401: already unlocked /run/firejail/firejail-network.lock Dropping all capabilities NO_NEW_PRIVS set Drop privileges: pid 1, uid 1000, gid 1000, force_nogroups 0 Supplementary groups: 29 44 7 46 Closing non-standard file descriptors Starting application LD_PRELOAD=(null) Not enforcing Landlock execvp argument 0: playonlinux Child process initialized in 148.26 ms Searching $PATH for playonlinux trying #/usr/local/bin/playonlinux# trying #/usr/bin/playonlinux# Installing /run/firejail/mnt/seccomp/seccomp.namespaces.32 seccomp filter Installing /run/firejail/mnt/seccomp/seccomp.namespaces seccomp filter Installing /run/firejail/mnt/seccomp/seccomp seccomp filter Installing /run/firejail/mnt/seccomp/seccomp.32 seccomp filter Looking for python3... 3.11.2 - monitoring pid 7 selected 1.0 [main] Message: PlayOnLinux (4.3.4) is starting [clean_tmp] Message: Cleaning temp directory [Check_OpenGL] Warning: check_dd_x86 missing, test skipped [Check_OpenGL] Warning: check_dd_amd64 missing, test skipped [POL_System_CheckFS] Message: Checking filesystem for /home/my3epc/.PlayOnLinux/ [main] Message: Filesystem is compatible Sandbox monitor: waitpid 7 retval 7 status 0 Parent is shutting down, bye... ```
gitea-mirror commented 2026-05-05 09:59:21 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Feb 3, 2026):

We should add support for it. Similar to dosbox, python, GPLv3: https://github.com/PlayOnLinux/POL-POM-4

<!-- gh-comment-id:3841091993 --> @netblue30 commented on GitHub (Feb 3, 2026): We should add support for it. Similar to dosbox, python, GPLv3: https://github.com/PlayOnLinux/POL-POM-4
gitea-mirror commented 2026-05-05 09:59:22 -06:00
Author
Owner
Copy link

@kmk3 commented on GitHub (Feb 10, 2026):

Version of Firejail: 0.9.74

Note that we do not maintain that version of firejail:

Versions other than the latest usually have outdated profiles and may contain
bugs and security vulnerabilities that were fixed in later versions.

See also:

What happens with the latest released version?

<!-- gh-comment-id:3879629569 --> @kmk3 commented on GitHub (Feb 10, 2026): > Version of Firejail: 0.9.74 Note that we do not maintain that version of firejail: * <https://github.com/netblue30/firejail/blob/master/SECURITY.md> Versions other than the latest usually have outdated profiles and may contain bugs and security vulnerabilities that were fixed in later versions. See also: * <https://github.com/netblue30/firejail#installing> What happens with the latest released version?
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
serialize_remounts_v2
landlock_v4
landlock
release-0.9.64
release-0.9.62
gitlab_ci
LTSbase
fred_ctests
docs
0.9.80
0.9.80-rc1
0.9.78
0.9.76
0.9.76-rc4
0.9.76-rc3
0.9.76-rc2
0.9.76-rc1
0.9.74
landlock-split
0.9.72
0.9.72rc1
0.9.70
0.9.68
0.9.68rc1
0.9.66
0.9.66rc1
0.9.64.4
0.9.64.2
0.9.64
0.9.64rc1
0.9.62.4
0.9.62.2
0.9.62
0.9.56.2-LTS
0.9.60
0.9.60-rc1
0.9.58.2
0.9.58
0.9.58-rc1
0.9.56-LTS-release
0.9.56-LTS
0.9.56
0.9.56-rc1
0.9.54
0.9.54-rc2
0.9.54-rc1
0.9.52
0.9.38.12
0.9.50
0.9.50-rc1
0.9.48
0.9.46
0.9.46-rc1
0.9.44.10
0.9.44.8
0.9.44.6
0.9.38.10
0.9.44.4
0.9.38.8
0.9.44.2
0.9.44
0.9.44-rc1
0.9.38.4
0.9.42
0.9.42-rc2
0.9.38.2
0.9.42-rc1
disable-globalcfg
0.9.40
0.9.40-rc1
0.9.38
0.9.38-rc1
0.9.36
0.9.36-rc1
0.9.34
0.9.34-rc1
0.9.32
0.9.32-rc1
0.9.30
0.9.30-rc1
Labels
Clear labels   
LTS merge

   
LTS merge

   
bug

   
bug

   
converted-to-discussion

   
doc-todo

   
documentation

   
duplicate

   
enhancement

   
file-transfer

   
firecfg

   
firejail-in-firejail

   
firetools

   
graphics

   
help wanted

   
information_old

   
installation

   
invalid

   
modif

   
moved

   
needinfo

   
networking

   
notabug

   
notourbug

   
old-version

   
overlayfs

   
packaging

   
profile-request

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question_old

   
removal

   
runtime-permissions

   
sandbox-ipc

   
security

   
stale

   
wiki

   
wiki

   
wontfix

   
wordpress

   
workaround
No labels
LTS merge
LTS merge
bug
bug
converted-to-discussion
doc-todo
documentation
duplicate
enhancement
file-transfer
firecfg
firejail-in-firejail
firetools
graphics
help wanted
information_old
installation
invalid
modif
moved
needinfo
networking
notabug
notourbug
old-version
overlayfs
packaging
profile-request
pull-request
question
question_old
removal
runtime-permissions
sandbox-ipc
security
stale
wiki
wiki
wontfix
wordpress
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#3417
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?