libexec & co. with AppArmor #4690

New issue

Closed

opened 2026-05-05 10:24:47 -06:00 by gitea-mirror · 0 comments

gitea-mirror commented

2026-05-05 10:24:47 -06:00

Owner

📋 Pull Request Information

Original PR: https://github.com/netblue30/firejail/pull/3234
Author: @laomaiweng
Created: 2/22/2020
Status: ✅ Merged
Merged: 2/22/2020
Merged by: @Vincent43

Base: master ← Head: apparmor-libexec-exec

📝 Commits (1)

99644fe Allow exec from /usr/libexec & co. with AppArmor

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 etc/firejail-default (+1 -1)

📄 Description

With AppArmor enabled and the firejail-default profile, execution is not allowed from /usr/libexec. On my machine (Gentoo), Git stores its helpers in /usr/libexec/git-core/, so Firejail's git.profile (which has AppArmor enabled) prevents it from executing these helpers (which are needed for e.g. cloning a repo over HTTPS).

This PR adds /usr/libexec and friends to the paths where execution is allowed in Firejail's AppArmor profile.

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/netblue30/firejail/pull/3234 **Author:** [@laomaiweng](https://github.com/laomaiweng) **Created:** 2/22/2020 **Status:** ✅ Merged **Merged:** 2/22/2020 **Merged by:** [@Vincent43](https://github.com/Vincent43) **Base:** `master` ← **Head:** `apparmor-libexec-exec` --- ### 📝 Commits (1) - [`99644fe`](https://github.com/netblue30/firejail/commit/99644fe1c44cb78dc5360e06df87f44cb5e506fb) Allow exec from /usr/libexec & co. with AppArmor ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `etc/firejail-default` (+1 -1) </details> ### 📄 Description With AppArmor enabled and the `firejail-default` profile, execution is not allowed from `/usr/libexec`. On my machine (Gentoo), Git stores its helpers in `/usr/libexec/git-core/`, so Firejail's `git.profile` (which has AppArmor enabled) prevents it from executing these helpers (which are needed for e.g. cloning a repo over HTTPS). This PR adds `/usr/libexec` and friends to the paths where execution is allowed in Firejail's AppArmor profile. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>

gitea-mirror

2026-05-05 10:24:47 -06:00

closed this issue
added the
pull-request
label

gitea-mirror referenced this issue

2026-05-05 10:34:32 -06:00

[PR #4690] [MERGED] Fix inconsistent descriptions of machine-id option #5226

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#4690

No description provided.

Rows
Columns