build option: support chromium/electron apps most of the time

2 files changed, 3 insertions, 3 deletions

diff --git a/src/fbuilder/build_profile.c b/src/fbuilder/build_profile.c
index 3a7a12fb3..1c1891d0b 100644
--- a/src/fbuilder/build_profile.c
+++ b/src/fbuilder/build_profile.c
@@ -52,7 +52,7 @@ void build_profile(int argc, char **argv, int index, FILE *fp) {
         cmd[curr_len++] = "--quiet";
         cmd[curr_len++] = "--noprofile";
         cmd[curr_len++] = "--caps.drop=all";
-        cmd[curr_len++] = "--seccomp";
+        cmd[curr_len++] = "--seccomp=!chroot";
         cmd[curr_len++] = "--shell=none";
         cmd[curr_len++] = output;
         if (arg_appimage)
diff --git a/src/man/firejail.txt b/src/man/firejail.txt
index e4aac6b1c..f9deaeaa4 100644
--- a/src/man/firejail.txt
+++ b/src/man/firejail.txt
@@ -185,7 +185,7 @@ $ firejail "\-\-blacklist=/home/username/My Virtual Machines"
 $ firejail \-\-blacklist=/home/username/My\\ Virtual\\ Machines
 .TP
 \fB\-\-build
-The command builds a whitelisted profile. The profile is printed on the screen. The program is run in a very relaxed sandbox, with only --caps.drop=all and --nonewprivs. Programs that raise user privileges are not supported. Chromium and Chromium-based browsers will not work.
+The command builds a whitelisted profile. The profile is printed on the screen. The program is run in a very relaxed sandbox, with only --caps.drop=all and --nonewprivs. Programs that raise user privileges are not supported.
 .br
 
 .br
@@ -195,7 +195,7 @@ $ firejail --build vlc ~/Videos/test.mp4
 .TP
 \fB\-\-build=profile-file
 The command builds a whitelisted profile, and saves it in profile-file. The program is run in a very relaxed sandbox,
-with only --caps.drop=all and --nonewprivs. Programs that raise user privileges are not supported. Chromium and Chromium-based browsers will not work.
+with only --caps.drop=all and --nonewprivs. Programs that raise user privileges are not supported.
 .br
 
 .br