[GH-ISSUE #1492] Xonotic doesn't launch with firejail #998

New issue

Closed

opened 2026-05-05 07:17:04 -06:00 by gitea-mirror · 14 comments

gitea-mirror commented 2026-05-05 07:17:04 -06:00

Owner

Copy link

Originally created by @pizzadude on GitHub (Aug 24, 2017).
Original GitHub issue: https://github.com/netblue30/firejail/issues/1492

I run Ubuntu MATE 17.04 with the latest firejail built from git.

I have Xonotic installed from playdeb, but I had the same issue with the "regular" version from Xonotic's website.

If I do "locate xonotic" it resides in:
/usr/bin/xonotic
/usr/games/xonotic
/usr/lib/games/xonotic
/usr/share/games/xonotic

I tried adding "noblacklist /usr/share/games/xonotic" to the firejail profile but that didn't do anything.
I also tried adding "xonotic" to private-bin.

This is the output of "firejail xonotic"
`Reading profile /etc/firejail/xonotic.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-passwdmgr.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/whitelist-common.inc
Parent pid 32521, child pid 32522
Warning: skipping asound.conf for private /etc
Child process initialized in 200.18 ms

Parent is shutting down, bye...
`

And here's the output with the --debug flag.
http://paste.ubuntu.com/25380452/

I tried disabling seccomp for the xonotic profile, that did nothing.

Any ideas?

Originally created by @pizzadude on GitHub (Aug 24, 2017). Original GitHub issue: https://github.com/netblue30/firejail/issues/1492 I run Ubuntu MATE 17.04 with the latest firejail built from git. I have Xonotic installed from playdeb, but I had the same issue with the "regular" version from Xonotic's website. If I do "locate xonotic" it resides in: /usr/bin/xonotic /usr/games/xonotic /usr/lib/games/xonotic /usr/share/games/xonotic I tried adding "noblacklist /usr/share/games/xonotic" to the firejail profile but that didn't do anything. I also tried adding "xonotic" to private-bin. This is the output of "firejail xonotic" `Reading profile /etc/firejail/xonotic.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-passwdmgr.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/whitelist-common.inc Parent pid 32521, child pid 32522 Warning: skipping asound.conf for private /etc Child process initialized in 200.18 ms Parent is shutting down, bye... ` And here's the output with the --debug flag. http://paste.ubuntu.com/25380452/ I tried disabling seccomp for the xonotic profile, that did nothing. Any ideas?

gitea-mirror closed this issue 2026-05-05 07:17:05 -06:00

gitea-mirror commented 2026-05-05 07:17:07 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

@SpotComms I tried what you suggested and it works.

<!-- gh-comment-id:324523557 --> @pizzadude commented on GitHub (Aug 24, 2017): @SpotComms I tried what you suggested and it works.

gitea-mirror commented 2026-05-05 07:17:09 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

The culprit is private-bin.

<!-- gh-comment-id:324524197 --> @pizzadude commented on GitHub (Aug 24, 2017): The culprit is private-bin.

gitea-mirror commented 2026-05-05 07:17:10 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

Nope.

<!-- gh-comment-id:324524768 --> @pizzadude commented on GitHub (Aug 24, 2017): Nope.

gitea-mirror commented 2026-05-05 07:17:12 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

I also added darkplaces-glx and darkplaces-sdl to that and it didn't make a difference.

<!-- gh-comment-id:324524974 --> @pizzadude commented on GitHub (Aug 24, 2017): I also added darkplaces-glx and darkplaces-sdl to that and it didn't make a difference.

gitea-mirror commented 2026-05-05 07:17:13 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

Yeah, I noticed you edited it, so I added the edited version, but it didn't make a difference.

<!-- gh-comment-id:324525880 --> @pizzadude commented on GitHub (Aug 24, 2017): Yeah, I noticed you edited it, so I added the edited version, but it didn't make a difference.

gitea-mirror commented 2026-05-05 07:17:15 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

Hmmm, for some weird reason /usr/bin/xonotic doesn't exist. It showed up in a "whereis" though.

This is /usr/games/xonotic:

#!/bin/sh
cd /usr/share/games/xonotic
./xonotic-linux-glx.sh $@ -xonotic

And this is xonotic-linux-glx.sh

https://gist.github.com/pizzadude/20f9f873c0a685a1a4bab15a862d5268

<!-- gh-comment-id:324526230 --> @pizzadude commented on GitHub (Aug 24, 2017): Hmmm, for some weird reason /usr/bin/xonotic doesn't exist. It showed up in a "whereis" though. This is /usr/games/xonotic: #!/bin/sh cd /usr/share/games/xonotic ./xonotic-linux-glx.sh $@ -xonotic And this is xonotic-linux-glx.sh https://gist.github.com/pizzadude/20f9f873c0a685a1a4bab15a862d5268

gitea-mirror commented 2026-05-05 07:17:16 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

No dice.

<!-- gh-comment-id:324526537 --> @pizzadude commented on GitHub (Aug 24, 2017): No dice.

gitea-mirror commented 2026-05-05 07:17:17 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

It might be because of the contents on xonotic-linux-glx.sh

<!-- gh-comment-id:324526726 --> @pizzadude commented on GitHub (Aug 24, 2017): It might be because of the contents on xonotic-linux-glx.sh

gitea-mirror commented 2026-05-05 07:17:17 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

It works now but there's no audio.

<!-- gh-comment-id:324530756 --> @pizzadude commented on GitHub (Aug 24, 2017): It works now but there's no audio.

gitea-mirror commented 2026-05-05 07:17:18 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

Yes.

<!-- gh-comment-id:324531157 --> @pizzadude commented on GitHub (Aug 24, 2017): Yes.

gitea-mirror commented 2026-05-05 07:17:19 -06:00

Author

Owner

Copy link

@SkewedZeppelin commented on GitHub (Aug 24, 2017):

Append ,group,passwd to private-etc

<!-- gh-comment-id:324532032 --> @SkewedZeppelin commented on GitHub (Aug 24, 2017): Append `,group,passwd` to private-etc

gitea-mirror commented 2026-05-05 07:17:21 -06:00

Author

Owner

Copy link

@pizzadude commented on GitHub (Aug 24, 2017):

That doesn't solve it.

Also, thanks for putting up with this issue for so long 👍

<!-- gh-comment-id:324532758 --> @pizzadude commented on GitHub (Aug 24, 2017): That doesn't solve it. Also, thanks for putting up with this issue for so long 👍

gitea-mirror commented 2026-05-05 07:17:22 -06:00

Author

Owner

Copy link

@netblue30 commented on GitHub (Aug 25, 2017):

Thanks @SpotComms, all merged.

<!-- gh-comment-id:324893253 --> @netblue30 commented on GitHub (Aug 25, 2017): Thanks @SpotComms, all merged.

gitea-mirror commented 2026-05-05 07:17:23 -06:00

Author

Owner

Copy link

@SkewedZeppelin commented on GitHub (Aug 25, 2017):

@netblue30 audio is still partially broken on some systems, we might just need to comment private-etc

<!-- gh-comment-id:324997010 --> @SkewedZeppelin commented on GitHub (Aug 25, 2017): @netblue30 audio is still partially broken on some systems, we might just need to comment private-etc

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#998

No description provided.