github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

[GH-ISSUE #1187] Add missing negator instructions #815

New issue
Closed
opened 2026-05-05 06:53:56 -06:00 by gitea-mirror · 2 comments
gitea-mirror commented 2026-05-05 06:53:56 -06:00
Owner
Copy link

Originally created by @cryzed on GitHub (Mar 31, 2017).
Original GitHub issue: https://github.com/netblue30/firejail/issues/1187

Currently blacklist and its counterpart noblacklist exist, which are really useful to create modular profiles which can inherit from each other. It would be quite useful if this concept could be generalized to all other instructions where this is not currently possible. Maybe let me explain my use case:

I'm currently (and mostly successfully) attempting to use Firejail to sandbox (i.e. --private=...) all programs that handle untrusted data: for example Firefox, mpv, my image viewer, music player etc. To do this I created a custom profile based on the restrictive default profile (/etc/firejail/default.profile) which includes all blacklist instructions for absolute paths (i.e. system paths), but ignores all others blacklisting directories in the user's home directory, since it's running in a private home anyways. To that end I actually created a small Python script which attempts to parse the default profile and keep my custom "sandbox" profile up-to-date: it's probably not perfect, but it works.

Of course simply sandboxing all applications without a "bridge" to my real data would be pretty useless in most cases, so I further bind mounted my XDG directories in my home folder to a matching folder in /mnt/home-data/ and "whitelist" those directories using noblacklist instructions in the application's profile. I'm explaining all this to make clear that the system has become slightly complex, but adding additional instructions to overwrite/negate previously parsed ones would allow me to keep it at this complexity and modularity.

One use case where this creates issues currently is the following: I have the following _sandbox.profile (created by the script) which is included by all "sandboxed" applications profiles. This works for most applications, however for VirtualBox the following profile is an issue, as you can imagine.

include ~/.config/firejail/_whitelist-documents.profile
include ~/.config/firejail/_whitelist-end.profile
include ~/.config/firejail/_sandbox.profile
  • _whitelist-documents.profile:
noblacklist /mnt/home-data
noblacklist /mnt/home-data/Documents
  • _whitelist-end.profile:
blacklist /mnt/home-data/*

According to the default VirtualBox profile, I can only pretty much specify caps.drop all without running into errors. Now I would prefer to not simply include the complete contents of the sandbox profile and modify it accordingly -- it would be much neater if I could overwrite/disable previous instructions just like I can with blacklist/noblacklist. I hope this makes the use-case clear, even for less complex scenarios.

This would also be ideal to design for example a 100% restrictive profile allowing the application to do basically nothing except print to stdout/stderr and access the libraries and CPU which one could then weaken step by step through those negators, instead of doing it the other way around: i.e. more of a whitelist instead of blacklist approach.

PS: If I'm doing something completely insane I would also appreciate some feedback.

Originally created by @cryzed on GitHub (Mar 31, 2017). Original GitHub issue: https://github.com/netblue30/firejail/issues/1187 Currently `blacklist` and its counterpart `noblacklist` exist, which are really useful to create modular profiles which can inherit from each other. It would be quite useful if this concept could be generalized to all other instructions where this is not currently possible. Maybe let me explain my use case: I'm currently (and mostly successfully) attempting to use Firejail to sandbox (i.e. `--private=...`) all programs that handle untrusted data: for example Firefox, mpv, my image viewer, music player etc. To do this I created a custom profile based on the restrictive default profile (`/etc/firejail/default.profile`) which includes all blacklist instructions for absolute paths (i.e. system paths), but ignores all others blacklisting directories in the user's home directory, since it's running in a private home anyways. To that end I actually created a small [Python script](https://gist.github.com/cryzed/22463ffdc2b5ee68ae65b24d701f399b#file-firejail-sandbox-py-L81) which attempts to parse the default profile and keep my custom "sandbox" profile up-to-date: it's probably not perfect, but it works. Of course simply sandboxing all applications without a "bridge" to my real data would be pretty useless in most cases, so I further bind mounted my XDG directories in my home folder to a matching folder in `/mnt/home-data/` and "whitelist" those directories using `noblacklist` instructions in the application's profile. I'm explaining all this to make clear that the system has become slightly complex, but adding additional instructions to overwrite/negate previously parsed ones would allow me to keep it at this complexity and modularity. One use case where this creates issues currently is the following: I have the following [_sandbox.profile](https://gist.github.com/cryzed/47985ed58c890816063a30fad0b66f79) (created by the script) which is included by all "sandboxed" applications profiles. This works for most applications, however for VirtualBox the following profile is an issue, as you can imagine. ``` include ~/.config/firejail/_whitelist-documents.profile include ~/.config/firejail/_whitelist-end.profile include ~/.config/firejail/_sandbox.profile ``` * `_whitelist-documents.profile`: ``` noblacklist /mnt/home-data noblacklist /mnt/home-data/Documents ``` * `_whitelist-end.profile`: ``` blacklist /mnt/home-data/* ``` According to the default VirtualBox profile, I can only pretty much specify `caps.drop all` without running into errors. Now I would prefer to not simply include the complete contents of the sandbox profile and modify it accordingly -- it would be much neater if I could overwrite/disable previous instructions just like I can with `blacklist`/`noblacklist`. I hope this makes the use-case clear, even for less complex scenarios. This would also be ideal to design for example a 100% restrictive profile allowing the application to do basically nothing except print to stdout/stderr and access the libraries and CPU which one could then weaken step by step through those negators, instead of doing it the other way around: i.e. more of a whitelist instead of blacklist approach. PS: If I'm doing something completely insane I would also appreciate some feedback.
gitea-mirror 2026-05-05 06:53:56 -06:00
gitea-mirror commented 2026-05-05 06:54:03 -06:00
Author
Owner
Copy link

@cryzed commented on GitHub (Apr 4, 2017):

I just discovered the ignore option for the profiles, is that possibly what I'm searching for? If so, I'm sorry for creating the issue.

<!-- gh-comment-id:291569399 --> @cryzed commented on GitHub (Apr 4, 2017): I just discovered the `ignore` option for the profiles, is that possibly what I'm searching for? If so, I'm sorry for creating the issue.
gitea-mirror commented 2026-05-05 06:54:05 -06:00
Author
Owner
Copy link

@netblue30 commented on GitHub (Apr 9, 2017):

No problem, I'll close it for now.

<!-- gh-comment-id:292785302 --> @netblue30 commented on GitHub (Apr 9, 2017): No problem, I'll close it for now.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
serialize_remounts_v2
landlock_v4
landlock
release-0.9.64
release-0.9.62
gitlab_ci
LTSbase
fred_ctests
docs
0.9.80
0.9.80-rc1
0.9.78
0.9.76
0.9.76-rc4
0.9.76-rc3
0.9.76-rc2
0.9.76-rc1
0.9.74
landlock-split
0.9.72
0.9.72rc1
0.9.70
0.9.68
0.9.68rc1
0.9.66
0.9.66rc1
0.9.64.4
0.9.64.2
0.9.64
0.9.64rc1
0.9.62.4
0.9.62.2
0.9.62
0.9.56.2-LTS
0.9.60
0.9.60-rc1
0.9.58.2
0.9.58
0.9.58-rc1
0.9.56-LTS-release
0.9.56-LTS
0.9.56
0.9.56-rc1
0.9.54
0.9.54-rc2
0.9.54-rc1
0.9.52
0.9.38.12
0.9.50
0.9.50-rc1
0.9.48
0.9.46
0.9.46-rc1
0.9.44.10
0.9.44.8
0.9.44.6
0.9.38.10
0.9.44.4
0.9.38.8
0.9.44.2
0.9.44
0.9.44-rc1
0.9.38.4
0.9.42
0.9.42-rc2
0.9.38.2
0.9.42-rc1
disable-globalcfg
0.9.40
0.9.40-rc1
0.9.38
0.9.38-rc1
0.9.36
0.9.36-rc1
0.9.34
0.9.34-rc1
0.9.32
0.9.32-rc1
0.9.30
0.9.30-rc1
Labels
Clear labels   
LTS merge

   
LTS merge

   
bug

   
bug

   
converted-to-discussion

   
doc-todo

   
documentation

   
duplicate

   
enhancement

   
file-transfer

   
firecfg

   
firejail-in-firejail

   
firetools

   
graphics

   
help wanted

   
information_old

   
installation

   
invalid

   
modif

   
moved

   
needinfo

   
networking

   
notabug

   
notourbug

   
old-version

   
overlayfs

   
packaging

   
profile-request

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question_old

   
removal

   
runtime-permissions

   
sandbox-ipc

   
security

   
stale

   
wiki

   
wiki

   
wontfix

   
wordpress

   
workaround
No labels
LTS merge
LTS merge
bug
bug
converted-to-discussion
doc-todo
documentation
duplicate
enhancement
file-transfer
firecfg
firejail-in-firejail
firetools
graphics
help wanted
information_old
installation
invalid
modif
moved
needinfo
networking
notabug
notourbug
old-version
overlayfs
packaging
profile-request
pull-request
question
question_old
removal
runtime-permissions
sandbox-ipc
security
stale
wiki
wiki
wontfix
wordpress
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#815
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?