diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2020-10-29 17:39:07 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2020-11-17 21:49:55 -0300 |
commit | 6be0964fd549be2ea9aec94e7fa2d870497b3996 (patch) | |
tree | d00568e3318db0be3caafe8c863fcfb84651330b /etc | |
parent | Merge pull request #3757 from rusty-snake/overrides2upstream (diff) | |
download | firejail-6be0964fd549be2ea9aec94e7fa2d870497b3996.tar.gz firejail-6be0964fd549be2ea9aec94e7fa2d870497b3996.tar.zst firejail-6be0964fd549be2ea9aec94e7fa2d870497b3996.zip |
keepassxc.profile: Fix hang due to seccomp
With the current profile, keepassxc hangs on startup, before showing the
main window:
$ uname -r -m
5.9.1-artix1-1 x86_64
$ firejail --version | head -n 1
firejail version 0.9.64
$ firejail --quiet keepassxc --version
KeePassXC 2.6.2
$ firejail --quiet keepassxc
# (nothing happens)
^C
Seccomp debugging as explained on etc/templates/syscalls.txt:
$ sudo grep -Eo 'keepassxc.* syscall=[0-9]+' /var/log/messages.log | tail -n 1
keepassxc" exe="/usr/bin/keepassxc" sig=31 arch=c000003e syscall=303
$ firejail --debug-syscalls | grep 303
303 - name_to_handle_at
So allow the name_to_handle_at syscall.
Relates to #3549.
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-a-l/keepassxc.profile | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/profile-a-l/keepassxc.profile b/etc/profile-a-l/keepassxc.profile index 58db056b2..6a3b29c9d 100644 --- a/etc/profile-a-l/keepassxc.profile +++ b/etc/profile-a-l/keepassxc.profile | |||
@@ -54,7 +54,7 @@ notv | |||
54 | nou2f | 54 | nou2f |
55 | novideo | 55 | novideo |
56 | protocol unix,netlink | 56 | protocol unix,netlink |
57 | seccomp | 57 | seccomp !name_to_handle_at |
58 | seccomp.block-secondary | 58 | seccomp.block-secondary |
59 | shell none | 59 | shell none |
60 | tracelog | 60 | tracelog |