Page MenuHomePhabricator

/etc/skel/.bashrc symlink breaks firejail
Closed, ResolvedPublic

Description

Firejail whitelisting fails because /etc/skel/.bashrc is a symlink in whonix:

user@host:~$ firejail /usr/bin/iceweasel
Reading profile /home/user/.config/firejail/iceweasel.profile
Reading profile /etc/firejail/disable-mgmt.inc
Reading profile /etc/firejail/disable-secret.inc
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/whitelist-common.inc
Parent pid 30345, child pid 30346
Error: invalid /etc/skel/.bashrc file
Error: cannot establish communication with the parent, exiting...

Workaround:
rm /etc/skel/.bashrc
cp -a /etc/skel/.bashrc.whonix /etc/skel/.bashrc

Details

Impact
Normal

Event Timeline

Symbolis created this task.Jun 5 2016, 11:11 AM
Patrick triaged this task as Normal priority.Jun 5 2016, 3:15 PM
Patrick added projects: Whonix 14, firejail, security, bug.
Patrick changed Impact from Needs Triage to Normal.
Patrick added a subscriber: HulaHoop.

Seems to me firejail should be capable to survive such a situation. Can you please report a bug against firejail? With instructions on how to reproduce this issue without having to install Whonix.

Patrick closed this task as Resolved.Jun 9 2016, 12:52 AM
Patrick claimed this task.