local qutebrowser profile issues since last update

[aleprovencio]

Description

I have been using a firejail's' local profile for qutebrowser in order to support nvim configured as my editor.command for it.

However, since firejail's last update (0.9.68) nvim launched from qutebrowser throws an error.

Steps to Reproduce

Steps to reproduce the behavior

1. configure qutebrowser with: editor.command = ["alacritty", "-t", "qute_dialog", "-e", "nvim", "{file}"]

2. use the following as firejail/qutebrowser.local:

   include allow-lua.inc
   noblacklist ${HOME}/.config/alacritty
   whitelist ${HOME}/.cache/wal
   whitelist ${HOME}/.config/alacritty
   whitelist ${HOME}/.config/fish
   whitelist ${HOME}/.cache/nvim
   whitelist ${HOME}/.config/nvim
   whitelist ${HOME}/.local/share/nvim

3. firejail qutebrowser (with above profile)

4. edit something with editor.command

Expected behavior

No errors

Actual behavior

Neovim throws this error:

E886: System error while opening ShaDa file /home/aleprovencio/.local/sh
are/nvim/shada/main.shada for reading: permission denied
E303: Unable to create directory "/home/aleprovencio/.local/share/nvim/s
wap" for swap file, recovery impossible: permission denied
E303: Impossível abrir arquivo de troca para "/tmp/qutebrowser-editor-ec
7sjayp", recuperação impossível
E886: System error while opening ShaDa file /home/aleprovencio/.local/sh
are/nvim/shada/main.shada for reading: permission denied
Aperte ENTER ou digite um comando para continuar

Behavior without a profile

No errors

Environment

• Archlinux
• Firejail 0.9.68

Checklist

• [x] The issues is caused by firejail (i.e. running the program by path (e.g. /usr/bin/vlc) "fixes" it).
• [x] I can reproduce the issue without custom modifications (e.g. globals.local).
• [x] The program has a profile. (If not, request one in https://github.com/netblue30/firejail/issues/1139)
• [x] The profile (and redirect profile if exists) hasn't already been fixed upstream.
• [x] I have performed a short search for similar issues (to avoid opening a duplicate).
• [x] I'm aware of browser-allow-drm yes/browser-disable-u2f no in firejail.config to allow DRM/U2F in browsers.
• [x] I used --profile=PROFILENAME to set the right profile. (Only relevant for AppImages)

Log

Output of LC_ALL=C firejail qutebrowser

``` Reading profile /etc/firejail/qutebrowser.profile Reading profile /home/aleprovencio/.config/firejail/qutebrowser.local Reading profile /etc/firejail/allow-lua.inc Reading profile /etc/firejail/allow-python2.inc Reading profile /etc/firejail/allow-python3.inc Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/whitelist-common.inc Reading profile /home/aleprovencio/.config/firejail/whitelist-common.local Seccomp list in: !chroot,!name_to_handle_at, check list: @default-keep, prelist: unknown,unknown, Parent pid 591982, child pid 591983 Warning: cleaning all supplementary groups Warning: /sbin directory link was not blacklisted Warning: /usr/sbin directory link was not blacklisted Warning: cleaning all supplementary groups Seccomp list in: !chroot,!name_to_handle_at, check list: @default-keep, prelist: unknown,unknown, Warning: cleaning all supplementary groups Child process initialized in 171.80 ms gpgconf: error running '/usr/bin/gpg-connect-agent': exit status 1 gpgconf: error running '/usr/bin/gpg-connect-agent NOP': General error Warning: an existing sandbox was detected. /usr/bin/qutebrowser will run without any additional sandboxing features [155:173:0211/154719.286315:ERROR:address_tracker_linux.cc(214)] Could not bind NETLINK socket: Address already in use (98) 15:47:36 WARNING: Wayland does not support QWindow::requestActivate() 15:47:36 WARNING: Wayland does not support QWindow::requestActivate() Parent is shutting down, bye... ```

Output of LC_ALL=C firejail --debug qutebrowser

``` ❯ LC_ALL=C firejail --debug qutebrowser Autoselecting /usr/bin/fish as shell Building quoted command line: 'qutebrowser' Command name #qutebrowser# Found qutebrowser.profile profile in /etc/firejail directory Reading profile /etc/firejail/qutebrowser.profile Found qutebrowser.local profile in /home/aleprovencio/.config/firejail directory Reading profile /home/aleprovencio/.config/firejail/qutebrowser.local Found allow-lua.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-lua.inc Found allow-python2.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python2.inc Found allow-python3.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-python3.inc Found disable-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-common.inc Found disable-devel.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-devel.inc Found disable-interpreters.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-interpreters.inc Found disable-programs.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-programs.inc Found whitelist-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/whitelist-common.inc Found whitelist-common.local profile in /home/aleprovencio/.config/firejail directory Reading profile /home/aleprovencio/.config/firejail/whitelist-common.local [profile] combined protocol list: "unix,inet,inet6,netlink" Seccomp list in: !chroot,!name_to_handle_at, check list: @default-keep, prelist: unknown,unknown, DISPLAY=:0 parsed as 0 Using the local network stack Parent pid 594227, child pid 594258 Initializing child process Host network configured PID namespace installed Mounting tmpfs on /run/firejail/mnt directory Creating empty /run/firejail/mnt/seccomp directory Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file Build protocol filter: unix,inet,inet6,netlink sbox run: /run/firejail/lib/fseccomp protocol build unix,inet,inet6,netlink /run/firejail/mnt/seccomp/seccomp.protocol Dropping all capabilities Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 1 No supplementary groups Mounting /proc filesystem representing the PID namespace Basic read-only filesystem: Mounting read-only /etc 831 802 254:2 /etc /etc ro,relatime master:1 - ext4 /dev/mapper/MyStorage-root rw mountid=831 fsname=/etc dir=/etc fstype=ext4 Mounting noexec /etc 832 831 254:2 /etc /etc ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/mapper/MyStorage-root rw mountid=832 fsname=/etc dir=/etc fstype=ext4 Mounting read-only /var 833 802 254:2 /var /var ro,relatime master:1 - ext4 /dev/mapper/MyStorage-root rw mountid=833 fsname=/var dir=/var fstype=ext4 Mounting noexec /var 834 833 254:2 /var /var ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/mapper/MyStorage-root rw mountid=834 fsname=/var dir=/var fstype=ext4 Mounting read-only /usr 835 802 254:2 /usr /usr ro,relatime master:1 - ext4 /dev/mapper/MyStorage-root rw mountid=835 fsname=/usr dir=/usr fstype=ext4 Mounting tmpfs on /var/lock Mounting tmpfs on /var/tmp Mounting tmpfs on /var/log Create the new utmp file Mount the new utmp file Cleaning /home directory Cleaning /run/user directory Sanitizing /etc/passwd, UID_MIN 1000 Sanitizing /etc/group, GID_MIN 1000 Disable /home/aleprovencio/.config/firejail Disable /run/firejail/network Disable /run/firejail/bandwidth Disable /run/firejail/name Disable /run/firejail/profile Disable /run/firejail/x11 blacklist /run/firejail/dbus Mounting read-only /proc/sys Remounting /sys directory Disable /sys/firmware Disable /sys/hypervisor Disable /sys/power Disable /sys/kernel/debug Disable /sys/kernel/vmcoreinfo Disable /proc/sys/fs/binfmt_misc Disable /proc/sys/kernel/core_pattern Disable /proc/sys/kernel/modprobe Disable /proc/sysrq-trigger Disable /proc/sys/vm/panic_on_oom Disable /proc/irq Disable /proc/bus Disable /proc/timer_list Disable /proc/kcore Disable /proc/kallsyms Disable /usr/lib/modules (requested /lib/modules) Disable /boot Disable /dev/port Disable /run/user/1000/gnupg Disable /run/user/1000/systemd Disable /dev/kmsg Disable /proc/kmsg Debug 558: whitelist ${HOME}/.cache/wal Debug 579: expanded: /home/aleprovencio/.cache/wal Debug 590: new_name: /home/aleprovencio/.cache/wal Debug 604: dir: /home/aleprovencio Adding whitelist top level directory /home/aleprovencio Debug 558: whitelist ${HOME}/.config/alacritty Debug 579: expanded: /home/aleprovencio/.config/alacritty Debug 590: new_name: /home/aleprovencio/.config/alacritty Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/fish Debug 579: expanded: /home/aleprovencio/.config/fish Debug 590: new_name: /home/aleprovencio/.config/fish Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.cache/nvim Debug 579: expanded: /home/aleprovencio/.cache/nvim Debug 590: new_name: /home/aleprovencio/.cache/nvim Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/nvim Debug 579: expanded: /home/aleprovencio/.config/nvim Debug 590: new_name: /home/aleprovencio/.config/nvim Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.local/share/nvim Debug 579: expanded: /home/aleprovencio/.local/share/nvim Debug 590: new_name: /home/aleprovencio/.local/share/nvim Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/mpv Debug 579: expanded: /home/aleprovencio/.config/mpv Debug 590: new_name: /home/aleprovencio/.config/mpv Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/yt-dlp Debug 579: expanded: /home/aleprovencio/.config/yt-dlp Debug 590: new_name: /home/aleprovencio/.config/yt-dlp Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/yt-dlp new_name: /home/aleprovencio/.config/yt-dlp realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.cache/yt-dlp Debug 579: expanded: /home/aleprovencio/.cache/yt-dlp Debug 590: new_name: /home/aleprovencio/.cache/yt-dlp Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/zathura Debug 579: expanded: /home/aleprovencio/.config/zathura Debug 590: new_name: /home/aleprovencio/.config/zathura Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.local/share/zathura Debug 579: expanded: /home/aleprovencio/.local/share/zathura Debug 590: new_name: /home/aleprovencio/.local/share/zathura Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${DOWNLOADS} Directory ${DOWNLOADS} resolved as Downloads Debug 579: expanded: /home/aleprovencio/Downloads Debug 590: new_name: /home/aleprovencio/Downloads Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.cache/qutebrowser Debug 579: expanded: /home/aleprovencio/.cache/qutebrowser Debug 590: new_name: /home/aleprovencio/.cache/qutebrowser Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/qutebrowser Debug 579: expanded: /home/aleprovencio/.config/qutebrowser Debug 590: new_name: /home/aleprovencio/.config/qutebrowser Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.local/share/qutebrowser Debug 579: expanded: /home/aleprovencio/.local/share/qutebrowser Debug 590: new_name: /home/aleprovencio/.local/share/qutebrowser Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.local/share/code Debug 579: expanded: /home/aleprovencio/.local/share/code Debug 590: new_name: /home/aleprovencio/.local/share/code Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.XCompose Debug 579: expanded: /home/aleprovencio/.XCompose Debug 590: new_name: /home/aleprovencio/.XCompose Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.XCompose new_name: /home/aleprovencio/.XCompose realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.alsaequal.bin Debug 579: expanded: /home/aleprovencio/.alsaequal.bin Debug 590: new_name: /home/aleprovencio/.alsaequal.bin Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.alsaequal.bin new_name: /home/aleprovencio/.alsaequal.bin realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.asoundrc Debug 579: expanded: /home/aleprovencio/.asoundrc Debug 590: new_name: /home/aleprovencio/.asoundrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.asoundrc new_name: /home/aleprovencio/.asoundrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/ibus Debug 579: expanded: /home/aleprovencio/.config/ibus Debug 590: new_name: /home/aleprovencio/.config/ibus Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/mimeapps.list Debug 579: expanded: /home/aleprovencio/.config/mimeapps.list Debug 590: new_name: /home/aleprovencio/.config/mimeapps.list Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/pkcs11 Debug 579: expanded: /home/aleprovencio/.config/pkcs11 Debug 590: new_name: /home/aleprovencio/.config/pkcs11 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/pkcs11 new_name: /home/aleprovencio/.config/pkcs11 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/user-dirs.dirs Debug 579: expanded: /home/aleprovencio/.config/user-dirs.dirs Debug 590: new_name: /home/aleprovencio/.config/user-dirs.dirs Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/user-dirs.locale Debug 579: expanded: /home/aleprovencio/.config/user-dirs.locale Debug 590: new_name: /home/aleprovencio/.config/user-dirs.locale Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.drirc Debug 579: expanded: /home/aleprovencio/.drirc Debug 590: new_name: /home/aleprovencio/.drirc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.drirc new_name: /home/aleprovencio/.drirc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.icons Debug 579: expanded: /home/aleprovencio/.icons Debug 590: new_name: /home/aleprovencio/.icons Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.icons new_name: /home/aleprovencio/.icons realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.local/share/applications Debug 579: expanded: /home/aleprovencio/.local/share/applications Debug 590: new_name: /home/aleprovencio/.local/share/applications Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.local/share/icons Debug 579: expanded: /home/aleprovencio/.local/share/icons Debug 590: new_name: /home/aleprovencio/.local/share/icons Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.local/share/icons new_name: /home/aleprovencio/.local/share/icons realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.local/share/mime Debug 579: expanded: /home/aleprovencio/.local/share/mime Debug 590: new_name: /home/aleprovencio/.local/share/mime Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.local/share/mime new_name: /home/aleprovencio/.local/share/mime realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.mime.types Debug 579: expanded: /home/aleprovencio/.mime.types Debug 590: new_name: /home/aleprovencio/.mime.types Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.mime.types new_name: /home/aleprovencio/.mime.types realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.sndio/cookie Debug 579: expanded: /home/aleprovencio/.sndio/cookie Debug 590: new_name: /home/aleprovencio/.sndio/cookie Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.sndio/cookie new_name: /home/aleprovencio/.sndio/cookie realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.uim.d Debug 579: expanded: /home/aleprovencio/.uim.d Debug 590: new_name: /home/aleprovencio/.uim.d Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.uim.d new_name: /home/aleprovencio/.uim.d realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/dconf Debug 579: expanded: /home/aleprovencio/.config/dconf Debug 590: new_name: /home/aleprovencio/.config/dconf Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.cache/fontconfig Debug 579: expanded: /home/aleprovencio/.cache/fontconfig Debug 590: new_name: /home/aleprovencio/.cache/fontconfig Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/fontconfig Debug 579: expanded: /home/aleprovencio/.config/fontconfig Debug 590: new_name: /home/aleprovencio/.config/fontconfig Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.fontconfig Debug 579: expanded: /home/aleprovencio/.fontconfig Debug 590: new_name: /home/aleprovencio/.fontconfig Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.fontconfig new_name: /home/aleprovencio/.fontconfig realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.fonts Debug 579: expanded: /home/aleprovencio/.fonts Debug 590: new_name: /home/aleprovencio/.fonts Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.fonts new_name: /home/aleprovencio/.fonts realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.fonts.conf Debug 579: expanded: /home/aleprovencio/.fonts.conf Debug 590: new_name: /home/aleprovencio/.fonts.conf Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.fonts.conf new_name: /home/aleprovencio/.fonts.conf realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.fonts.conf.d Debug 579: expanded: /home/aleprovencio/.fonts.conf.d Debug 590: new_name: /home/aleprovencio/.fonts.conf.d Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.fonts.conf.d new_name: /home/aleprovencio/.fonts.conf.d realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.fonts.d Debug 579: expanded: /home/aleprovencio/.fonts.d Debug 590: new_name: /home/aleprovencio/.fonts.d Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.fonts.d new_name: /home/aleprovencio/.fonts.d realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.local/share/fonts Debug 579: expanded: /home/aleprovencio/.local/share/fonts Debug 590: new_name: /home/aleprovencio/.local/share/fonts Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.local/share/fonts new_name: /home/aleprovencio/.local/share/fonts realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.pangorc Debug 579: expanded: /home/aleprovencio/.pangorc Debug 590: new_name: /home/aleprovencio/.pangorc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.pangorc new_name: /home/aleprovencio/.pangorc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/gtk-2.0 Debug 579: expanded: /home/aleprovencio/.config/gtk-2.0 Debug 590: new_name: /home/aleprovencio/.config/gtk-2.0 Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/gtk-3.0 Debug 579: expanded: /home/aleprovencio/.config/gtk-3.0 Debug 590: new_name: /home/aleprovencio/.config/gtk-3.0 Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/gtk-4.0 Debug 579: expanded: /home/aleprovencio/.config/gtk-4.0 Debug 590: new_name: /home/aleprovencio/.config/gtk-4.0 Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/gtkrc Debug 579: expanded: /home/aleprovencio/.config/gtkrc Debug 590: new_name: /home/aleprovencio/.config/gtkrc Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/gtkrc-2.0 Debug 579: expanded: /home/aleprovencio/.config/gtkrc-2.0 Debug 590: new_name: /home/aleprovencio/.config/gtkrc-2.0 Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.gnome2 Debug 579: expanded: /home/aleprovencio/.gnome2 Debug 590: new_name: /home/aleprovencio/.gnome2 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.gnome2 new_name: /home/aleprovencio/.gnome2 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.gnome2-private Debug 579: expanded: /home/aleprovencio/.gnome2-private Debug 590: new_name: /home/aleprovencio/.gnome2-private Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.gnome2-private new_name: /home/aleprovencio/.gnome2-private realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.gtk-2.0 Debug 579: expanded: /home/aleprovencio/.gtk-2.0 Debug 590: new_name: /home/aleprovencio/.gtk-2.0 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.gtk-2.0 new_name: /home/aleprovencio/.gtk-2.0 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.gtkrc Debug 579: expanded: /home/aleprovencio/.gtkrc Debug 590: new_name: /home/aleprovencio/.gtkrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.gtkrc new_name: /home/aleprovencio/.gtkrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.gtkrc-2.0 Debug 579: expanded: /home/aleprovencio/.gtkrc-2.0 Debug 590: new_name: /home/aleprovencio/.gtkrc-2.0 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.gtkrc-2.0 new_name: /home/aleprovencio/.gtkrc-2.0 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/gtkrc Debug 579: expanded: /home/aleprovencio/.kde/share/config/gtkrc Debug 590: new_name: /home/aleprovencio/.kde/share/config/gtkrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/gtkrc new_name: /home/aleprovencio/.kde/share/config/gtkrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/gtkrc-2.0 Debug 579: expanded: /home/aleprovencio/.kde/share/config/gtkrc-2.0 Debug 590: new_name: /home/aleprovencio/.kde/share/config/gtkrc-2.0 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/gtkrc-2.0 new_name: /home/aleprovencio/.kde/share/config/gtkrc-2.0 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/gtkrc Debug 579: expanded: /home/aleprovencio/.kde4/share/config/gtkrc Debug 590: new_name: /home/aleprovencio/.kde4/share/config/gtkrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/gtkrc new_name: /home/aleprovencio/.kde4/share/config/gtkrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/gtkrc-2.0 Debug 579: expanded: /home/aleprovencio/.kde4/share/config/gtkrc-2.0 Debug 590: new_name: /home/aleprovencio/.kde4/share/config/gtkrc-2.0 Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/gtkrc-2.0 new_name: /home/aleprovencio/.kde4/share/config/gtkrc-2.0 realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.local/share/themes Debug 579: expanded: /home/aleprovencio/.local/share/themes Debug 590: new_name: /home/aleprovencio/.local/share/themes Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.local/share/themes new_name: /home/aleprovencio/.local/share/themes realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.themes Debug 579: expanded: /home/aleprovencio/.themes Debug 590: new_name: /home/aleprovencio/.themes Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.themes new_name: /home/aleprovencio/.themes realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.cache/kioexec/krun Debug 579: expanded: /home/aleprovencio/.cache/kioexec/krun Debug 590: new_name: /home/aleprovencio/.cache/kioexec/krun Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/Kvantum Debug 579: expanded: /home/aleprovencio/.config/Kvantum Debug 590: new_name: /home/aleprovencio/.config/Kvantum Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/Kvantum new_name: /home/aleprovencio/.config/Kvantum realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/Trolltech.conf Debug 579: expanded: /home/aleprovencio/.config/Trolltech.conf Debug 590: new_name: /home/aleprovencio/.config/Trolltech.conf Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/QtProject.conf Debug 579: expanded: /home/aleprovencio/.config/QtProject.conf Debug 590: new_name: /home/aleprovencio/.config/QtProject.conf Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/kdeglobals Debug 579: expanded: /home/aleprovencio/.config/kdeglobals Debug 590: new_name: /home/aleprovencio/.config/kdeglobals Debug 604: dir: /home/aleprovencio Debug 558: whitelist ${HOME}/.config/kio_httprc Debug 579: expanded: /home/aleprovencio/.config/kio_httprc Debug 590: new_name: /home/aleprovencio/.config/kio_httprc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/kio_httprc new_name: /home/aleprovencio/.config/kio_httprc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/kioslaverc Debug 579: expanded: /home/aleprovencio/.config/kioslaverc Debug 590: new_name: /home/aleprovencio/.config/kioslaverc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/kioslaverc new_name: /home/aleprovencio/.config/kioslaverc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/ksslcablacklist Debug 579: expanded: /home/aleprovencio/.config/ksslcablacklist Debug 590: new_name: /home/aleprovencio/.config/ksslcablacklist Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/ksslcablacklist new_name: /home/aleprovencio/.config/ksslcablacklist realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/qt5ct Debug 579: expanded: /home/aleprovencio/.config/qt5ct Debug 590: new_name: /home/aleprovencio/.config/qt5ct Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/qt5ct new_name: /home/aleprovencio/.config/qt5ct realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.config/qtcurve Debug 579: expanded: /home/aleprovencio/.config/qtcurve Debug 590: new_name: /home/aleprovencio/.config/qtcurve Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.config/qtcurve new_name: /home/aleprovencio/.config/qtcurve realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/kdeglobals Debug 579: expanded: /home/aleprovencio/.kde/share/config/kdeglobals Debug 590: new_name: /home/aleprovencio/.kde/share/config/kdeglobals Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/kdeglobals new_name: /home/aleprovencio/.kde/share/config/kdeglobals realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/kio_httprc Debug 579: expanded: /home/aleprovencio/.kde/share/config/kio_httprc Debug 590: new_name: /home/aleprovencio/.kde/share/config/kio_httprc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/kio_httprc new_name: /home/aleprovencio/.kde/share/config/kio_httprc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/kioslaverc Debug 579: expanded: /home/aleprovencio/.kde/share/config/kioslaverc Debug 590: new_name: /home/aleprovencio/.kde/share/config/kioslaverc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/kioslaverc new_name: /home/aleprovencio/.kde/share/config/kioslaverc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/ksslcablacklist Debug 579: expanded: /home/aleprovencio/.kde/share/config/ksslcablacklist Debug 590: new_name: /home/aleprovencio/.kde/share/config/ksslcablacklist Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/ksslcablacklist new_name: /home/aleprovencio/.kde/share/config/ksslcablacklist realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/config/oxygenrc Debug 579: expanded: /home/aleprovencio/.kde/share/config/oxygenrc Debug 590: new_name: /home/aleprovencio/.kde/share/config/oxygenrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/config/oxygenrc new_name: /home/aleprovencio/.kde/share/config/oxygenrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde/share/icons Debug 579: expanded: /home/aleprovencio/.kde/share/icons Debug 590: new_name: /home/aleprovencio/.kde/share/icons Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde/share/icons new_name: /home/aleprovencio/.kde/share/icons realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/kdeglobals Debug 579: expanded: /home/aleprovencio/.kde4/share/config/kdeglobals Debug 590: new_name: /home/aleprovencio/.kde4/share/config/kdeglobals Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/kdeglobals new_name: /home/aleprovencio/.kde4/share/config/kdeglobals realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/kio_httprc Debug 579: expanded: /home/aleprovencio/.kde4/share/config/kio_httprc Debug 590: new_name: /home/aleprovencio/.kde4/share/config/kio_httprc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/kio_httprc new_name: /home/aleprovencio/.kde4/share/config/kio_httprc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/kioslaverc Debug 579: expanded: /home/aleprovencio/.kde4/share/config/kioslaverc Debug 590: new_name: /home/aleprovencio/.kde4/share/config/kioslaverc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/kioslaverc new_name: /home/aleprovencio/.kde4/share/config/kioslaverc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/ksslcablacklist Debug 579: expanded: /home/aleprovencio/.kde4/share/config/ksslcablacklist Debug 590: new_name: /home/aleprovencio/.kde4/share/config/ksslcablacklist Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/ksslcablacklist new_name: /home/aleprovencio/.kde4/share/config/ksslcablacklist realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/config/oxygenrc Debug 579: expanded: /home/aleprovencio/.kde4/share/config/oxygenrc Debug 590: new_name: /home/aleprovencio/.kde4/share/config/oxygenrc Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/config/oxygenrc new_name: /home/aleprovencio/.kde4/share/config/oxygenrc realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.kde4/share/icons Debug 579: expanded: /home/aleprovencio/.kde4/share/icons Debug 590: new_name: /home/aleprovencio/.kde4/share/icons Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.kde4/share/icons new_name: /home/aleprovencio/.kde4/share/icons realpath: (null) No such file or directory Debug 558: whitelist ${HOME}/.local/share/qt5ct Debug 579: expanded: /home/aleprovencio/.local/share/qt5ct Debug 590: new_name: /home/aleprovencio/.local/share/qt5ct Debug 604: dir: /home/aleprovencio Removed path: whitelist ${HOME}/.local/share/qt5ct new_name: /home/aleprovencio/.local/share/qt5ct realpath: (null) No such file or directory Mounting a new /root directory Mounting a new /home directory Create a new user directory Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 0 Warning: cleaning all supplementary groups Debug 739: file: /home/aleprovencio/.cache/wal; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/wal Whitelisting /home/aleprovencio/.cache/wal 873 872 254:3 /aleprovencio/.cache/wal /home/aleprovencio/.cache/wal rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=873 fsname=/aleprovencio/.cache/wal dir=/home/aleprovencio/.cache/wal fstype=ext4 Debug 739: file: /home/aleprovencio/.config/alacritty; dirfd: 4; topdir: /home/aleprovencio; rel: .config/alacritty Whitelisting /home/aleprovencio/.config/alacritty 874 872 254:3 /aleprovencio/.config/alacritty /home/aleprovencio/.config/alacritty rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=874 fsname=/aleprovencio/.config/alacritty dir=/home/aleprovencio/.config/alacritty fstype=ext4 Debug 739: file: /home/aleprovencio/.config/fish; dirfd: 4; topdir: /home/aleprovencio; rel: .config/fish Whitelisting /home/aleprovencio/.config/fish 875 872 254:3 /aleprovencio/.config/fish /home/aleprovencio/.config/fish rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=875 fsname=/aleprovencio/.config/fish dir=/home/aleprovencio/.config/fish fstype=ext4 Debug 739: file: /home/aleprovencio/.cache/nvim; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/nvim Whitelisting /home/aleprovencio/.cache/nvim 876 872 254:3 /aleprovencio/.cache/nvim /home/aleprovencio/.cache/nvim rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=876 fsname=/aleprovencio/.cache/nvim dir=/home/aleprovencio/.cache/nvim fstype=ext4 Debug 739: file: /home/aleprovencio/.config/nvim; dirfd: 4; topdir: /home/aleprovencio; rel: .config/nvim Whitelisting /home/aleprovencio/.config/nvim 877 872 254:3 /aleprovencio/.config/nvim /home/aleprovencio/.config/nvim rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=877 fsname=/aleprovencio/.config/nvim dir=/home/aleprovencio/.config/nvim fstype=ext4 Debug 739: file: /home/aleprovencio/.local/share/nvim; dirfd: 4; topdir: /home/aleprovencio; rel: .local/share/nvim Whitelisting /home/aleprovencio/.local/share/nvim 878 872 254:3 /aleprovencio/.local/share/nvim /home/aleprovencio/.local/share/nvim rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=878 fsname=/aleprovencio/.local/share/nvim dir=/home/aleprovencio/.local/share/nvim fstype=ext4 Debug 739: file: /home/aleprovencio/.config/mpv; dirfd: 4; topdir: /home/aleprovencio; rel: .config/mpv Whitelisting /home/aleprovencio/.config/mpv 879 872 254:3 /aleprovencio/.config/mpv /home/aleprovencio/.config/mpv rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=879 fsname=/aleprovencio/.config/mpv dir=/home/aleprovencio/.config/mpv fstype=ext4 Debug 739: file: /home/aleprovencio/.cache/yt-dlp; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/yt-dlp Whitelisting /home/aleprovencio/.cache/yt-dlp 880 872 254:3 /aleprovencio/.cache/yt-dlp /home/aleprovencio/.cache/yt-dlp rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=880 fsname=/aleprovencio/.cache/yt-dlp dir=/home/aleprovencio/.cache/yt-dlp fstype=ext4 Debug 739: file: /home/aleprovencio/.config/zathura; dirfd: 4; topdir: /home/aleprovencio; rel: .config/zathura Whitelisting /home/aleprovencio/.config/zathura 881 872 254:3 /aleprovencio/.config/zathura /home/aleprovencio/.config/zathura rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=881 fsname=/aleprovencio/.config/zathura dir=/home/aleprovencio/.config/zathura fstype=ext4 Debug 739: file: /home/aleprovencio/.local/share/zathura; dirfd: 4; topdir: /home/aleprovencio; rel: .local/share/zathura Whitelisting /home/aleprovencio/.local/share/zathura 882 872 254:3 /aleprovencio/.local/share/zathura /home/aleprovencio/.local/share/zathura rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=882 fsname=/aleprovencio/.local/share/zathura dir=/home/aleprovencio/.local/share/zathura fstype=ext4 Debug 739: file: /home/aleprovencio/Downloads; dirfd: 4; topdir: /home/aleprovencio; rel: Downloads Whitelisting /home/aleprovencio/Downloads 883 872 254:3 /aleprovencio/Downloads /home/aleprovencio/Downloads rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=883 fsname=/aleprovencio/Downloads dir=/home/aleprovencio/Downloads fstype=ext4 Debug 739: file: /home/aleprovencio/.cache/qutebrowser; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/qutebrowser Whitelisting /home/aleprovencio/.cache/qutebrowser 884 872 254:3 /aleprovencio/.cache/qutebrowser /home/aleprovencio/.cache/qutebrowser rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=884 fsname=/aleprovencio/.cache/qutebrowser dir=/home/aleprovencio/.cache/qutebrowser fstype=ext4 Debug 739: file: /home/aleprovencio/.config/qutebrowser; dirfd: 4; topdir: /home/aleprovencio; rel: .config/qutebrowser Whitelisting /home/aleprovencio/.config/qutebrowser 885 872 254:3 /aleprovencio/.config/qutebrowser /home/aleprovencio/.config/qutebrowser rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=885 fsname=/aleprovencio/.config/qutebrowser dir=/home/aleprovencio/.config/qutebrowser fstype=ext4 Debug 739: file: /home/aleprovencio/.local/share/qutebrowser; dirfd: 4; topdir: /home/aleprovencio; rel: .local/share/qutebrowser Whitelisting /home/aleprovencio/.local/share/qutebrowser 886 872 254:3 /aleprovencio/.local/share/qutebrowser /home/aleprovencio/.local/share/qutebrowser rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=886 fsname=/aleprovencio/.local/share/qutebrowser dir=/home/aleprovencio/.local/share/qutebrowser fstype=ext4 Debug 739: file: /home/aleprovencio/.local/share/code; dirfd: 4; topdir: /home/aleprovencio; rel: .local/share/code Whitelisting /home/aleprovencio/.local/share/code 887 872 254:3 /aleprovencio/.local/share/code /home/aleprovencio/.local/share/code rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=887 fsname=/aleprovencio/.local/share/code dir=/home/aleprovencio/.local/share/code fstype=ext4 Debug 739: file: /home/aleprovencio/.config/ibus; dirfd: 4; topdir: /home/aleprovencio; rel: .config/ibus Whitelisting /home/aleprovencio/.config/ibus 888 872 254:3 /aleprovencio/.config/ibus /home/aleprovencio/.config/ibus rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=888 fsname=/aleprovencio/.config/ibus dir=/home/aleprovencio/.config/ibus fstype=ext4 Debug 739: file: /home/aleprovencio/.config/mimeapps.list; dirfd: 4; topdir: /home/aleprovencio; rel: .config/mimeapps.list Whitelisting /home/aleprovencio/.config/mimeapps.list 889 872 254:3 /aleprovencio/.config/mimeapps.list /home/aleprovencio/.config/mimeapps.list rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=889 fsname=/aleprovencio/.config/mimeapps.list dir=/home/aleprovencio/.config/mimeapps.list fstype=ext4 Debug 739: file: /home/aleprovencio/.config/user-dirs.dirs; dirfd: 4; topdir: /home/aleprovencio; rel: .config/user-dirs.dirs Whitelisting /home/aleprovencio/.config/user-dirs.dirs 890 872 254:3 /aleprovencio/.config/user-dirs.dirs /home/aleprovencio/.config/user-dirs.dirs rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=890 fsname=/aleprovencio/.config/user-dirs.dirs dir=/home/aleprovencio/.config/user-dirs.dirs fstype=ext4 Debug 739: file: /home/aleprovencio/.config/user-dirs.locale; dirfd: 4; topdir: /home/aleprovencio; rel: .config/user-dirs.locale Whitelisting /home/aleprovencio/.config/user-dirs.locale 891 872 254:3 /aleprovencio/.config/user-dirs.locale /home/aleprovencio/.config/user-dirs.locale rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=891 fsname=/aleprovencio/.config/user-dirs.locale dir=/home/aleprovencio/.config/user-dirs.locale fstype=ext4 Debug 739: file: /home/aleprovencio/.local/share/applications; dirfd: 4; topdir: /home/aleprovencio; rel: .local/share/applications Whitelisting /home/aleprovencio/.local/share/applications 892 872 254:3 /aleprovencio/.local/share/applications /home/aleprovencio/.local/share/applications rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=892 fsname=/aleprovencio/.local/share/applications dir=/home/aleprovencio/.local/share/applications fstype=ext4 Debug 739: file: /home/aleprovencio/.config/dconf; dirfd: 4; topdir: /home/aleprovencio; rel: .config/dconf Whitelisting /home/aleprovencio/.config/dconf 893 872 254:3 /aleprovencio/.config/dconf /home/aleprovencio/.config/dconf rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=893 fsname=/aleprovencio/.config/dconf dir=/home/aleprovencio/.config/dconf fstype=ext4 Debug 739: file: /home/aleprovencio/.cache/fontconfig; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/fontconfig Whitelisting /home/aleprovencio/.cache/fontconfig 894 872 254:3 /aleprovencio/.cache/fontconfig /home/aleprovencio/.cache/fontconfig rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=894 fsname=/aleprovencio/.cache/fontconfig dir=/home/aleprovencio/.cache/fontconfig fstype=ext4 Debug 739: file: /home/aleprovencio/.config/fontconfig; dirfd: 4; topdir: /home/aleprovencio; rel: .config/fontconfig Whitelisting /home/aleprovencio/.config/fontconfig 895 872 254:3 /aleprovencio/.config/fontconfig /home/aleprovencio/.config/fontconfig rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=895 fsname=/aleprovencio/.config/fontconfig dir=/home/aleprovencio/.config/fontconfig fstype=ext4 Debug 739: file: /home/aleprovencio/.config/gtk-2.0; dirfd: 4; topdir: /home/aleprovencio; rel: .config/gtk-2.0 Whitelisting /home/aleprovencio/.config/gtk-2.0 896 872 254:3 /aleprovencio/.config/gtk-2.0 /home/aleprovencio/.config/gtk-2.0 rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=896 fsname=/aleprovencio/.config/gtk-2.0 dir=/home/aleprovencio/.config/gtk-2.0 fstype=ext4 Debug 739: file: /home/aleprovencio/.config/gtk-3.0; dirfd: 4; topdir: /home/aleprovencio; rel: .config/gtk-3.0 Whitelisting /home/aleprovencio/.config/gtk-3.0 897 872 254:3 /aleprovencio/.config/gtk-3.0 /home/aleprovencio/.config/gtk-3.0 rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=897 fsname=/aleprovencio/.config/gtk-3.0 dir=/home/aleprovencio/.config/gtk-3.0 fstype=ext4 Debug 739: file: /home/aleprovencio/.config/gtk-4.0; dirfd: 4; topdir: /home/aleprovencio; rel: .config/gtk-4.0 Whitelisting /home/aleprovencio/.config/gtk-4.0 898 872 254:3 /aleprovencio/.config/gtk-4.0 /home/aleprovencio/.config/gtk-4.0 rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=898 fsname=/aleprovencio/.config/gtk-4.0 dir=/home/aleprovencio/.config/gtk-4.0 fstype=ext4 Debug 739: file: /home/aleprovencio/.config/gtkrc; dirfd: 4; topdir: /home/aleprovencio; rel: .config/gtkrc Whitelisting /home/aleprovencio/.config/gtkrc 899 872 254:3 /aleprovencio/.config/gtkrc /home/aleprovencio/.config/gtkrc rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=899 fsname=/aleprovencio/.config/gtkrc dir=/home/aleprovencio/.config/gtkrc fstype=ext4 Debug 739: file: /home/aleprovencio/.config/gtkrc-2.0; dirfd: 4; topdir: /home/aleprovencio; rel: .config/gtkrc-2.0 Whitelisting /home/aleprovencio/.config/gtkrc-2.0 900 872 254:3 /aleprovencio/.config/gtkrc-2.0 /home/aleprovencio/.config/gtkrc-2.0 rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=900 fsname=/aleprovencio/.config/gtkrc-2.0 dir=/home/aleprovencio/.config/gtkrc-2.0 fstype=ext4 Debug 739: file: /home/aleprovencio/.cache/kioexec/krun; dirfd: 4; topdir: /home/aleprovencio; rel: .cache/kioexec/krun Whitelisting /home/aleprovencio/.cache/kioexec/krun 901 872 254:3 /aleprovencio/.cache/kioexec/krun /home/aleprovencio/.cache/kioexec/krun rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=901 fsname=/aleprovencio/.cache/kioexec/krun dir=/home/aleprovencio/.cache/kioexec/krun fstype=ext4 Debug 739: file: /home/aleprovencio/.config/Trolltech.conf; dirfd: 4; topdir: /home/aleprovencio; rel: .config/Trolltech.conf Whitelisting /home/aleprovencio/.config/Trolltech.conf 902 872 254:3 /aleprovencio/.config/Trolltech.conf /home/aleprovencio/.config/Trolltech.conf rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=902 fsname=/aleprovencio/.config/Trolltech.conf dir=/home/aleprovencio/.config/Trolltech.conf fstype=ext4 Debug 739: file: /home/aleprovencio/.config/QtProject.conf; dirfd: 4; topdir: /home/aleprovencio; rel: .config/QtProject.conf Whitelisting /home/aleprovencio/.config/QtProject.conf 903 872 254:3 /aleprovencio/.config/QtProject.conf /home/aleprovencio/.config/QtProject.conf rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=903 fsname=/aleprovencio/.config/QtProject.conf dir=/home/aleprovencio/.config/QtProject.conf fstype=ext4 Debug 739: file: /home/aleprovencio/.config/kdeglobals; dirfd: 4; topdir: /home/aleprovencio; rel: .config/kdeglobals Whitelisting /home/aleprovencio/.config/kdeglobals 904 872 254:3 /aleprovencio/.config/kdeglobals /home/aleprovencio/.config/kdeglobals rw,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=904 fsname=/aleprovencio/.config/kdeglobals dir=/home/aleprovencio/.config/kdeglobals fstype=ext4 Disable /home/aleprovencio/.local/share/nvim Disable /etc/xdg/autostart Mounting read-only /home/aleprovencio/.config/kdeglobals 907 904 254:3 /aleprovencio/.config/kdeglobals /home/aleprovencio/.config/kdeglobals ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=907 fsname=/aleprovencio/.config/kdeglobals dir=/home/aleprovencio/.config/kdeglobals fstype=ext4 Mounting read-only /home/aleprovencio/.config/dconf 908 893 254:3 /aleprovencio/.config/dconf /home/aleprovencio/.config/dconf ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=908 fsname=/aleprovencio/.config/dconf dir=/home/aleprovencio/.config/dconf fstype=ext4 Disable /usr/bin/systemctl Disable /usr/bin/systemd-run Disable /run/user/1000/systemd Disable /etc/systemd/network Disable /etc/systemd/system Disable /var/lib/systemd Disable /etc/init.d Disable /var/cache/libvirt Disable /var/lib/libvirt Disable /var/log/libvirt Disable /var/cache/pacman Disable /var/lib/pacman Disable /var/lib/upower Disable /var/spool/mail (requested /var/mail) Disable /var/opt Disable /run/docker.sock (requested /var/run/docker.sock) Disable /var/spool/mail Disable /etc/apparmor Disable /etc/apparmor.d Disable /etc/default Disable /etc/kernel Disable /etc/logrotate.d Disable /etc/logrotate.conf Disable /etc/modules-load.d Disable /etc/profile.d Mounting read-only /home/aleprovencio/.bashrc 934 872 0:71 /aleprovencio/.bashrc /home/aleprovencio/.bashrc ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=934 fsname=/aleprovencio/.bashrc dir=/home/aleprovencio/.bashrc fstype=tmpfs Mounting read-only /home/aleprovencio/.config/fish 935 875 254:3 /aleprovencio/.config/fish /home/aleprovencio/.config/fish ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=935 fsname=/aleprovencio/.config/fish dir=/home/aleprovencio/.config/fish fstype=ext4 Mounting read-only /home/aleprovencio/.config/nvim 936 877 254:3 /aleprovencio/.config/nvim /home/aleprovencio/.config/nvim ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=936 fsname=/aleprovencio/.config/nvim dir=/home/aleprovencio/.config/nvim fstype=ext4 Mounting read-only /home/aleprovencio/.local/share/nvim 937 905 0:22 /firejail/firejail.ro.dir /home/aleprovencio/.local/share/nvim ro,nosuid,nodev,relatime master:12 - tmpfs run rw,mode=755,inode64 mountid=937 fsname=/firejail/firejail.ro.dir dir=/home/aleprovencio/.local/share/nvim fstype=tmpfs Mounting read-only /home/aleprovencio/.local/share/applications 938 892 254:3 /aleprovencio/.local/share/applications /home/aleprovencio/.local/share/applications ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=938 fsname=/aleprovencio/.local/share/applications dir=/home/aleprovencio/.local/share/applications fstype=ext4 Mounting read-only /home/aleprovencio/.config/mimeapps.list 939 889 254:3 /aleprovencio/.config/mimeapps.list /home/aleprovencio/.config/mimeapps.list ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=939 fsname=/aleprovencio/.config/mimeapps.list dir=/home/aleprovencio/.config/mimeapps.list fstype=ext4 Mounting read-only /home/aleprovencio/.config/user-dirs.dirs 940 890 254:3 /aleprovencio/.config/user-dirs.dirs /home/aleprovencio/.config/user-dirs.dirs ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=940 fsname=/aleprovencio/.config/user-dirs.dirs dir=/home/aleprovencio/.config/user-dirs.dirs fstype=ext4 Mounting read-only /home/aleprovencio/.config/user-dirs.locale 941 891 254:3 /aleprovencio/.config/user-dirs.locale /home/aleprovencio/.config/user-dirs.locale ro,relatime master:46 - ext4 /dev/mapper/MyStorage-home rw mountid=941 fsname=/aleprovencio/.config/user-dirs.locale dir=/home/aleprovencio/.config/user-dirs.locale fstype=ext4 Disable /etc/group- Disable /etc/gshadow Disable /etc/gshadow- Disable /etc/passwd- Disable /etc/shadow Disable /etc/shadow- Disable /etc/ssh Warning (blacklisting): cannot open /etc/ssh/*: Permission denied Warning: /sbin directory link was not blacklisted Disable /usr/local/sbin Warning: /usr/sbin directory link was not blacklisted Warning (blacklisting): cannot open /usr/local/sbin/at: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/busybox: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/chage: Permission denied Disable /usr/bin/chage Warning (blacklisting): cannot open /usr/local/sbin/chfn: Permission denied Disable /usr/bin/chfn Warning (blacklisting): cannot open /usr/local/sbin/chsh: Permission denied Disable /usr/bin/chsh Warning (blacklisting): cannot open /usr/local/sbin/crontab: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/evtest: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/expiry: Permission denied Disable /usr/bin/expiry Warning (blacklisting): cannot open /usr/local/sbin/fusermount: Permission denied Disable /usr/bin/fusermount Warning (blacklisting): cannot open /usr/local/sbin/gksu: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gksudo: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gpasswd: Permission denied Disable /usr/bin/gpasswd Warning (blacklisting): cannot open /usr/local/sbin/kdesudo: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ksu: Permission denied Disable /usr/bin/ksu Warning (blacklisting): cannot open /usr/local/sbin/mount: Permission denied Disable /usr/bin/mount Warning (blacklisting): cannot open /usr/local/sbin/mount.ecryptfs_private: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/nc: Permission denied Disable /usr/bin/netcat (requested /usr/bin/nc) Warning (blacklisting): cannot open /usr/local/sbin/ncat: Permission denied Disable /usr/bin/ncat Warning (blacklisting): cannot open /usr/local/sbin/nmap: Permission denied Disable /usr/bin/nmap Warning (blacklisting): cannot open /usr/local/sbin/newgidmap: Permission denied Disable /usr/bin/newgidmap Warning (blacklisting): cannot open /usr/local/sbin/newgrp: Permission denied Disable /usr/bin/newgrp Warning (blacklisting): cannot open /usr/local/sbin/newuidmap: Permission denied Disable /usr/bin/newuidmap Warning (blacklisting): cannot open /usr/local/sbin/ntfs-3g: Permission denied Disable /usr/bin/ntfs-3g Warning (blacklisting): cannot open /usr/local/sbin/pkexec: Permission denied Disable /usr/bin/pkexec Warning (blacklisting): cannot open /usr/local/sbin/procmail: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/sg: Permission denied Disable /usr/bin/sg Warning (blacklisting): cannot open /usr/local/sbin/strace: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/su: Permission denied Disable /usr/bin/su Warning (blacklisting): cannot open /usr/local/sbin/sudo: Permission denied Disable /usr/bin/sudo Warning (blacklisting): cannot open /usr/local/sbin/tcpdump: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/umount: Permission denied Disable /usr/bin/umount Warning (blacklisting): cannot open /usr/local/sbin/unix_chkpwd: Permission denied Disable /usr/bin/unix_chkpwd Warning (blacklisting): cannot open /usr/local/sbin/xev: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xinput: Permission denied Disable /usr/lib/ssh Warning (blacklisting): cannot open /usr/local/sbin/passwd: Permission denied Disable /usr/bin/passwd Disable /usr/lib/dbus-1.0/dbus-daemon-launch-helper Disable /usr/lib/chromium/chrome-sandbox Warning (blacklisting): cannot open /usr/local/sbin/suexec: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/slock: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/physlock: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/schroot: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/wshowkeys: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pmount: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pumount: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/bmon: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/fping: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/fping6: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/hostname: Permission denied Disable /usr/bin/hostname Warning (blacklisting): cannot open /usr/local/sbin/mtr: Permission denied Disable /usr/bin/mtr Warning (blacklisting): cannot open /usr/local/sbin/mtr-packet: Permission denied Disable /usr/bin/mtr-packet Warning (blacklisting): cannot open /usr/local/sbin/netstat: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/nm-online: Permission denied Disable /usr/bin/nm-online Warning (blacklisting): cannot open /usr/local/sbin/nmcli: Permission denied Disable /usr/bin/nmcli Warning (blacklisting): cannot open /usr/local/sbin/nmtui: Permission denied Disable /usr/bin/nmtui Warning (blacklisting): cannot open /usr/local/sbin/nmtui-connect: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-connect) Warning (blacklisting): cannot open /usr/local/sbin/nmtui-edit: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-edit) Warning (blacklisting): cannot open /usr/local/sbin/nmtui-hostname: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-hostname) Warning (blacklisting): cannot open /usr/local/sbin/networkctl: Permission denied Disable /usr/bin/networkctl Warning (blacklisting): cannot open /usr/local/sbin/ss: Permission denied Disable /usr/bin/ss Warning (blacklisting): cannot open /usr/local/sbin/traceroute: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gnome-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gnome-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/lilyterm: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/lxterminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/mate-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/mate-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pantheon-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/roxterm: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/roxterm-config: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/terminix: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/tilix: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/urxvtc: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/urxvtcd: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xfce4-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xfce4-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/bwrap: Permission denied Disable /usr/bin/bwrap Warning (blacklisting): cannot stat /run/user/1000/doc: Permission denied Disable /proc/config.gz Warning (blacklisting): cannot open /usr/local/sbin/dig: Permission denied Disable /usr/bin/dig Warning (blacklisting): cannot open /usr/local/sbin/dlint: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/dns2tcp: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/dnssec-*: Permission denied Disable /usr/bin/dnssec-cds Disable /usr/bin/dnssec-coverage Disable /usr/bin/dnssec-verify Disable /usr/bin/dnssec-checkds Disable /usr/bin/dnssec-dsfromkey Disable /usr/bin/dnssec-keyfromlabel Disable /usr/bin/dnssec-keymgr Disable /usr/bin/dnssec-revoke Disable /usr/bin/dnssec-signzone Disable /usr/bin/dnssec-importkey Disable /usr/bin/dnssec-keygen Disable /usr/bin/dnssec-settime Warning (blacklisting): cannot open /usr/local/sbin/dnswalk: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/drill: Permission denied Disable /usr/bin/drill Warning (blacklisting): cannot open /usr/local/sbin/host: Permission denied Disable /usr/bin/host Warning (blacklisting): cannot open /usr/local/sbin/iodine: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/kdig: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/khost: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/knsupdate: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ldns-*: Permission denied Disable /usr/bin/ldns-mx Disable /usr/bin/ldns-chaos Disable /usr/bin/ldns-read-zone Disable /usr/bin/ldns-walk Disable /usr/bin/ldns-key2ds Disable /usr/bin/ldns-verify-zone Disable /usr/bin/ldns-compare-zones Disable /usr/bin/ldns-keyfetcher Disable /usr/bin/ldns-test-edns Disable /usr/bin/ldns-signzone Disable /usr/bin/ldns-zcat Disable /usr/bin/ldns-dane Disable /usr/bin/ldns-rrsig Disable /usr/bin/ldns-notify Disable /usr/bin/ldns-update Disable /usr/bin/ldns-version Disable /usr/bin/ldns-revoke Disable /usr/bin/ldns-keygen Disable /usr/bin/ldns-resolver Disable /usr/bin/ldns-testns Disable /usr/bin/ldns-config Disable /usr/bin/ldns-dpa Disable /usr/bin/ldns-gen-zone Disable /usr/bin/ldns-nsec3-hash Disable /usr/bin/ldns-zsplit Warning (blacklisting): cannot open /usr/local/sbin/ldnsd: Permission denied Disable /usr/bin/ldnsd Warning (blacklisting): cannot open /usr/local/sbin/nslookup: Permission denied Disable /usr/bin/nslookup Warning (blacklisting): cannot open /usr/local/sbin/resolvectl: Permission denied Disable /usr/bin/resolvectl Warning (blacklisting): cannot open /usr/local/sbin/unbound-host: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ftp: Permission denied Disable /usr/bin/ftp Warning (blacklisting): cannot open /usr/local/sbin/ssh: Permission denied Disable /usr/bin/ssh Warning (blacklisting): cannot open /usr/local/sbin/telnet: Permission denied Disable /usr/bin/telnet Disable /run/user/1000/wayland-1.lock Disable /run/user/1000/pipewire-0.lock Warning (blacklisting): cannot open /usr/local/sbin/clang*: Permission denied Disable /usr/bin/clang-13 Disable /usr/bin/clang-tidy Disable /usr/bin/clang-rename Disable /usr/bin/clang-offload-wrapper Disable /usr/bin/clang-apply-replacements Disable /usr/bin/clang-check Disable /usr/bin/clang-include-fixer Disable /usr/bin/clang-offload-bundler Disable /usr/bin/clang-move Disable /usr/bin/clang-format Disable /usr/bin/clang-13 (requested /usr/bin/clang-cpp) Disable /usr/bin/clang-13 (requested /usr/bin/clang-cl) Disable /usr/bin/clang-repl Disable /usr/bin/clang-change-namespace Disable /usr/bin/clang-query Disable /usr/bin/clang-reorder-fields Disable /usr/bin/clangd Disable /usr/bin/clang-refactor Disable /usr/bin/clang-13 (requested /usr/bin/clang) Disable /usr/bin/clang-extdef-mapping Disable /usr/bin/clang-doc Disable /usr/bin/clang-scan-deps Disable /usr/bin/clang-13 (requested /usr/bin/clang++) Warning (blacklisting): cannot open /usr/local/sbin/lldb*: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/llvm*: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/as: Permission denied Disable /usr/bin/as Warning (blacklisting): cannot open /usr/local/sbin/cc: Permission denied Disable /usr/bin/gcc (requested /usr/bin/cc) Warning (blacklisting): cannot open /usr/local/sbin/c++*: Permission denied Disable /usr/bin/c++filt Disable /usr/bin/c++ Warning (blacklisting): cannot open /usr/local/sbin/c8*: Permission denied Disable /usr/bin/c89 Warning (blacklisting): cannot open /usr/local/sbin/c9*: Permission denied Disable /usr/bin/c99 Warning (blacklisting): cannot open /usr/local/sbin/cpp*: Permission denied Disable /usr/bin/cpp Disable /usr/bin/cpp2html Warning (blacklisting): cannot open /usr/local/sbin/g++*: Permission denied Disable /usr/bin/g++ Warning (blacklisting): cannot open /usr/local/sbin/gcc*: Permission denied Disable /usr/bin/gcc-ar Disable /usr/bin/gcc-ranlib Disable /usr/bin/gcc Disable /usr/bin/gcc-nm Warning (blacklisting): cannot open /usr/local/sbin/gdb: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ld: Permission denied Disable /usr/bin/ld Warning (blacklisting): cannot open /usr/local/sbin/*-gcc*: Permission denied Disable /usr/bin/x86_64-pc-linux-gnu-gcc-nm Disable /usr/bin/x86_64-pc-linux-gnu-gcc-ar Disable /usr/bin/x86_64-pc-linux-gnu-gcc Disable /usr/bin/x86_64-pc-linux-gnu-gcc-11.1.0 Disable /usr/bin/x86_64-pc-linux-gnu-gcc-ranlib Warning (blacklisting): cannot open /usr/local/sbin/*-g++*: Permission denied Disable /usr/bin/x86_64-pc-linux-gnu-g++ Warning (blacklisting): cannot open /usr/local/sbin/*-gcc*: Permission denied Disable /usr/bin/x86_64-pc-linux-gnu-gcc-nm Disable /usr/bin/x86_64-pc-linux-gnu-gcc-ar Disable /usr/bin/x86_64-pc-linux-gnu-gcc Disable /usr/bin/x86_64-pc-linux-gnu-gcc-11.1.0 Disable /usr/bin/x86_64-pc-linux-gnu-gcc-ranlib Warning (blacklisting): cannot open /usr/local/sbin/*-g++*: Permission denied Disable /usr/bin/x86_64-pc-linux-gnu-g++ Warning (blacklisting): cannot open /usr/local/sbin/gccgo: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/go: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gofmt: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/java: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/javac: Permission denied Disable /usr/share/java Warning (blacklisting): cannot open /usr/local/sbin/openssl: Permission denied Disable /usr/bin/openssl Warning (blacklisting): cannot open /usr/local/sbin/openssl-1.0: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/rust-gdb: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/rust-lldb: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/rustc: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/tcc: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/x86_64-tcc: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/valgrind*: Permission denied Disable /usr/src Disable /usr/local/src Not blacklist /usr/include Disable /usr/local/include Warning (blacklisting): cannot open /usr/local/sbin/gjs: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gjs-console: Permission denied Not blacklist /home/aleprovencio/.local/bin/lua* Not blacklist /home/aleprovencio/.local/share/npm/bin/lua* Not blacklist /usr/local/sbin/lua* Not blacklist /usr/local/bin/lua* Not blacklist /usr/bin/luajithbtex Not blacklist /usr/bin/lua-format Not blacklist /usr/bin/luatools Not blacklist /usr/bin/lua Not blacklist /usr/bin/luajit-2.1.0-beta3 Not blacklist /usr/bin/lualatex Not blacklist /usr/bin/luatex Not blacklist /usr/bin/luajit Not blacklist /usr/bin/lua5.4 Not blacklist /usr/bin/luaotfload-tool Not blacklist /usr/bin/luac Not blacklist /usr/bin/luahbtex Not blacklist /usr/bin/luac5.4 Not blacklist /usr/bin/luac5.2 Not blacklist /usr/bin/lua5.2 Not blacklist /usr/bin/luajittex Not blacklist /usr/bin/luac5.3 Not blacklist /usr/bin/lua5.3 Not blacklist /usr/bin/site_perl/lua* Not blacklist /usr/bin/vendor_perl/lua* Not blacklist /usr/bin/core_perl/lua* Disable /usr/include/lua.h Disable /usr/include/luaconf.h Disable /usr/include/lua.hpp Disable /usr/include/lualib.h Disable /usr/include/luajit-2.1 Disable /usr/include/lua5.2 Disable /usr/include/lua5.3 Not blacklist /usr/lib/liblua.so.5.3 Not blacklist /usr/lib/liblua5.2.so.5.2.4 Not blacklist /usr/lib/liblua.so.5.3.6 Not blacklist /usr/lib/libluajit-5.1.so.2 Not blacklist /usr/lib/liblua5.2.so.5.2 Not blacklist /usr/lib/liblua.so.5.2.4 Not blacklist /usr/lib/liblua.so.5.4.4 Not blacklist /usr/lib/libluajit-5.1.so.2.1.0 Not blacklist /usr/lib/liblua5.2.so Not blacklist /usr/lib/liblua5.3.so Not blacklist /usr/lib/liblua.so.5.2 Not blacklist /usr/lib/liblua5.3.so.5.3.6 Not blacklist /usr/lib/libluajit-5.1.so Not blacklist /usr/lib/liblua.so Not blacklist /usr/lib/liblua5.3.so.5.3 Not blacklist /usr/lib/liblua.so.5.4 Not blacklist /usr/lib/liblua5.4.so Not blacklist /usr/lib/lua Not blacklist /usr/lib64/liblua.so.5.3 Not blacklist /usr/lib64/liblua5.2.so.5.2.4 Not blacklist /usr/lib64/liblua.so.5.3.6 Not blacklist /usr/lib64/libluajit-5.1.so.2 Not blacklist /usr/lib64/liblua5.2.so.5.2 Not blacklist /usr/lib64/liblua.so.5.2.4 Not blacklist /usr/lib64/liblua.so.5.4.4 Not blacklist /usr/lib64/libluajit-5.1.so.2.1.0 Not blacklist /usr/lib64/liblua5.2.so Not blacklist /usr/lib64/liblua5.3.so Not blacklist /usr/lib64/liblua.so.5.2 Not blacklist /usr/lib64/liblua5.3.so.5.3.6 Not blacklist /usr/lib64/libluajit-5.1.so Not blacklist /usr/lib64/liblua.so Not blacklist /usr/lib64/liblua5.3.so.5.3 Not blacklist /usr/lib64/liblua.so.5.4 Not blacklist /usr/lib64/liblua5.4.so Not blacklist /usr/lib64/lua Not blacklist /usr/share/lua Not blacklist /usr/share/luajit-2.1.0-beta3 Disable /usr/lib/libmozjs-78.so Disable /usr/lib/libmozjs-78.so (requested /usr/lib64/libmozjs-78.so) Warning (blacklisting): cannot open /usr/local/sbin/node: Permission denied Disable /usr/bin/node Disable /usr/include/node Warning (blacklisting): cannot open /usr/local/sbin/core_perl: Permission denied Disable /usr/bin/core_perl Warning (blacklisting): cannot open /usr/bin/core_perl/core_perl: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/cpan*: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/cpan*: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/perl: Permission denied Disable /usr/bin/perl Warning (blacklisting): cannot open /usr/bin/core_perl/perl: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/site_perl: Permission denied Disable /usr/bin/site_perl Warning (blacklisting): cannot open /usr/bin/site_perl/site_perl: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/site_perl: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/vendor_perl: Permission denied Disable /usr/bin/vendor_perl Warning (blacklisting): cannot open /usr/bin/site_perl/vendor_perl: Permission denied Warning (blacklisting): cannot open /usr/bin/vendor_perl/vendor_perl: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/vendor_perl: Permission denied Disable /usr/lib/perl5 Disable /usr/lib/perl5 (requested /usr/lib64/perl5) Disable /usr/share/perl5 Warning (blacklisting): cannot open /usr/local/sbin/rxvt: Permission denied Warning (blacklisting): cannot open /usr/bin/site_perl/rxvt: Permission denied Warning (blacklisting): cannot open /usr/bin/vendor_perl/rxvt: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/rxvt: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/php*: Permission denied Warning (blacklisting): cannot open /usr/bin/site_perl/php*: Permission denied Warning (blacklisting): cannot open /usr/bin/vendor_perl/php*: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/php*: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ruby: Permission denied Warning (blacklisting): cannot open /usr/bin/site_perl/ruby: Permission denied Warning (blacklisting): cannot open /usr/bin/vendor_perl/ruby: Permission denied Warning (blacklisting): cannot open /usr/bin/core_perl/ruby: Permission denied Disable /usr/lib/ruby Disable /usr/lib/ruby (requested /usr/lib64/ruby) Not blacklist /home/aleprovencio/.local/bin/python2* Not blacklist /home/aleprovencio/.local/share/npm/bin/python2* Not blacklist /usr/local/sbin/python2* Not blacklist /usr/local/bin/python2* Not blacklist /usr/bin/python2* Not blacklist /usr/bin/site_perl/python2* Not blacklist /usr/bin/vendor_perl/python2* Not blacklist /usr/bin/core_perl/python2* Not blacklist /usr/include/python2* Not blacklist /usr/lib/python2* Not blacklist /usr/local/lib/python2* Not blacklist /usr/share/python2* Not blacklist /home/aleprovencio/.local/bin/python3* Not blacklist /home/aleprovencio/.local/share/npm/bin/python3* Not blacklist /usr/local/sbin/python3* Not blacklist /usr/local/bin/python3* Not blacklist /usr/bin/python3.10-config Not blacklist /usr/bin/python3-config Not blacklist /usr/bin/python3 Not blacklist /usr/bin/python3.10 Not blacklist /usr/bin/site_perl/python3* Not blacklist /usr/bin/vendor_perl/python3* Not blacklist /usr/bin/core_perl/python3* Not blacklist /usr/include/python3.10 Not blacklist /usr/lib/python3.8 Not blacklist /usr/lib/python3.9 Not blacklist /usr/lib/python3.10 Not blacklist /usr/lib64/python3.8 Not blacklist /usr/lib64/python3.9 Not blacklist /usr/lib64/python3.10 Not blacklist /usr/local/lib/python3* Not blacklist /usr/share/python3* Disable /home/aleprovencio/.cache/nvim Not blacklist /home/aleprovencio/.cache/qutebrowser Not blacklist /home/aleprovencio/.cache/yt-dlp Not blacklist /home/aleprovencio/.config/alacritty Not blacklist /home/aleprovencio/.config/mpv Disable /home/aleprovencio/.config/nvim Not blacklist /home/aleprovencio/.config/qutebrowser Not blacklist /home/aleprovencio/.config/yt-dlp Not blacklist /home/aleprovencio/.config/zathura Disable /home/aleprovencio/.local/share/nvim Not blacklist /home/aleprovencio/.local/share/qutebrowser Not blacklist /home/aleprovencio/.local/share/zathura Disable /sys/fs Disable /sys/module Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 0 Warning: cleaning all supplementary groups Creating empty /home/aleprovencio/.config/pulse directory Mounting noexec /run/firejail/mnt/pulse 1115 828 0:63 /pulse /run/firejail/mnt/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=1115 fsname=/pulse dir=/run/firejail/mnt/pulse fstype=tmpfs Mounting /run/firejail/mnt/pulse on /home/aleprovencio/.config/pulse 1116 872 0:63 /pulse /home/aleprovencio/.config/pulse rw,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755,inode64 mountid=1116 fsname=/pulse dir=/home/aleprovencio/.config/pulse fstype=tmpfs rebuilding /etc directory Creating empty /run/firejail/mnt/dns-etc/bluetooth directory Creating empty /run/firejail/mnt/dns-etc/healthd.conf file Creating empty /run/firejail/mnt/dns-etc/resolvconf.conf file Creating empty /run/firejail/mnt/dns-etc/opt directory Creating empty /run/firejail/mnt/dns-etc/netconfig file Creating empty /run/firejail/mnt/dns-etc/gtk-3.0 directory Creating empty /run/firejail/mnt/dns-etc/bindresvport.blacklist file Creating empty /run/firejail/mnt/dns-etc/security directory Creating empty /run/firejail/mnt/dns-etc/lynx.cfg file Creating empty /run/firejail/mnt/dns-etc/sudoers file Creating empty /run/firejail/mnt/dns-etc/securetty file Creating empty /run/firejail/mnt/dns-etc/i3status.conf file Creating empty /run/firejail/mnt/dns-etc/libaudit.conf file Creating empty /run/firejail/mnt/dns-etc/xml directory Creating empty /run/firejail/mnt/dns-etc/skel directory Creating empty /run/firejail/mnt/dns-etc/rsyncd.conf file Creating empty /run/firejail/mnt/dns-etc/hosts file Creating empty /run/firejail/mnt/dns-etc/geoclue directory Creating empty /run/firejail/mnt/dns-etc/vconsole.conf file Creating empty /run/firejail/mnt/dns-etc/tigrc file Creating empty /run/firejail/mnt/dns-etc/nscd.conf file Creating empty /run/firejail/mnt/dns-etc/mdadm.conf file Creating empty /run/firejail/mnt/dns-etc/iptables directory Creating empty /run/firejail/mnt/dns-etc/nfsmount.conf file Creating empty /run/firejail/mnt/dns-etc/e2scrub.conf file Creating empty /run/firejail/mnt/dns-etc/docker directory Creating empty /run/firejail/mnt/dns-etc/gimp directory Creating empty /run/firejail/mnt/dns-etc/passwd.OLD file Creating empty /run/firejail/mnt/dns-etc/wpa_supplicant directory Creating empty /run/firejail/mnt/dns-etc/tmpfiles.d directory Creating empty /run/firejail/mnt/dns-etc/audit directory Creating empty /run/firejail/mnt/dns-etc/binfmt.d directory Creating empty /run/firejail/mnt/dns-etc/group file Creating empty /run/firejail/mnt/dns-etc/request-key.d directory Creating empty /run/firejail/mnt/dns-etc/reader.conf.d directory Creating empty /run/firejail/mnt/dns-etc/wireguard directory Creating empty /run/firejail/mnt/dns-etc/xattr.conf file Creating empty /run/firejail/mnt/dns-etc/libblockdev directory Creating empty /run/firejail/mnt/dns-etc/daxctl.conf.d directory Creating empty /run/firejail/mnt/dns-etc/tor directory Creating empty /run/firejail/mnt/dns-etc/ts.conf file Creating empty /run/firejail/mnt/dns-etc/initcpio directory Creating empty /run/firejail/mnt/dns-etc/usbguard directory Creating empty /run/firejail/mnt/dns-etc/ndctl.conf.d directory Creating empty /run/firejail/mnt/dns-etc/libpaper.d directory Creating empty /run/firejail/mnt/dns-etc/host.conf file Creating empty /run/firejail/mnt/dns-etc/passwd file Creating empty /run/firejail/mnt/dns-etc/environment file Creating empty /run/firejail/mnt/dns-etc/libva.conf file Creating empty /run/firejail/mnt/dns-etc/mpd.conf file Creating empty /run/firejail/mnt/dns-etc/sbupdate.conf file Creating empty /run/firejail/mnt/dns-etc/bind.keys file Creating empty /run/firejail/mnt/dns-etc/bash.bashrc file Creating empty /run/firejail/mnt/dns-etc/lvm directory Creating empty /run/firejail/mnt/dns-etc/libnl directory Creating empty /run/firejail/mnt/dns-etc/polkit-1 directory Creating empty /run/firejail/mnt/dns-etc/mkinitcpio.d directory Creating empty /run/firejail/mnt/dns-etc/X11 directory Creating empty /run/firejail/mnt/dns-etc/.updated file Creating empty /run/firejail/mnt/dns-etc/papersize file Creating empty /run/firejail/mnt/dns-etc/whois.conf file Creating empty /run/firejail/mnt/dns-etc/ld.so.preload file Creating empty /run/firejail/mnt/dns-etc/alsa directory Creating empty /run/firejail/mnt/dns-etc/mime.types file Creating empty /run/firejail/mnt/dns-etc/fuse.conf file Creating empty /run/firejail/mnt/dns-etc/resolv.conf file Creating empty /run/firejail/mnt/dns-etc/inputrc file Creating empty /run/firejail/mnt/dns-etc/ld.so.conf.d directory Creating empty /run/firejail/mnt/dns-etc/iproute2 directory Creating empty /run/firejail/mnt/dns-etc/tlp.d directory Creating empty /run/firejail/mnt/dns-etc/mtools.conf file Creating empty /run/firejail/mnt/dns-etc/shells file Creating empty /run/firejail/mnt/dns-etc/dnsmasq.conf file Creating empty /run/firejail/mnt/dns-etc/gss directory Creating empty /run/firejail/mnt/dns-etc/nginx directory Creating empty /run/firejail/mnt/dns-etc/arptables.conf file Creating empty /run/firejail/mnt/dns-etc/ifplugd directory Creating empty /run/firejail/mnt/dns-etc/openmpi directory Creating empty /run/firejail/mnt/dns-etc/locale.gen file Creating empty /run/firejail/mnt/dns-etc/mpv directory Creating empty /run/firejail/mnt/dns-etc/sddm.conf.d directory Creating empty /run/firejail/mnt/dns-etc/pam.d directory Creating empty /run/firejail/mnt/dns-etc/request-key.conf file Creating empty /run/firejail/mnt/dns-etc/brltty.conf file Creating empty /run/firejail/mnt/dns-etc/makepkg.conf file Creating empty /run/firejail/mnt/dns-etc/idmapd.conf file Creating empty /run/firejail/mnt/dns-etc/sudo_logsrvd.conf file Creating empty /run/firejail/mnt/dns-etc/appstream.conf file Creating empty /run/firejail/mnt/dns-etc/nfs.conf file Creating empty /run/firejail/mnt/dns-etc/ld.so.cache file Creating empty /run/firejail/mnt/dns-etc/depmod.d directory Creating empty /run/firejail/mnt/dns-etc/adjtime file Creating empty /run/firejail/mnt/dns-etc/vde2 directory Creating empty /run/firejail/mnt/dns-etc/sysctl.d directory Creating empty /run/firejail/mnt/dns-etc/brlapi.key file Creating empty /run/firejail/mnt/dns-etc/ndctl directory Creating empty /run/firejail/mnt/dns-etc/cups directory Creating empty /run/firejail/mnt/dns-etc/rpc file Creating empty /run/firejail/mnt/dns-etc/login.defs file Creating empty /run/firejail/mnt/dns-etc/exports.d directory Creating empty /run/firejail/mnt/dns-etc/NetworkManager directory Creating empty /run/firejail/mnt/dns-etc/ca-certificates directory Creating empty /run/firejail/mnt/dns-etc/sway directory Creating empty /run/firejail/mnt/dns-etc/paru.conf file Creating empty /run/firejail/mnt/dns-etc/libreoffice directory Creating empty /run/firejail/mnt/dns-etc/resolv.conf.bak file Creating empty /run/firejail/mnt/dns-etc/arch-release file Creating empty /run/firejail/mnt/dns-etc/pdnsd.conf file Creating empty /run/firejail/mnt/dns-etc/pacman.conf file Creating empty /run/firejail/mnt/dns-etc/modprobe.d directory Creating empty /run/firejail/mnt/dns-etc/lynx.lss file Creating empty /run/firejail/mnt/dns-etc/machine-id file Creating empty /run/firejail/mnt/dns-etc/vdpau_wrapper.cfg file Creating empty /run/firejail/mnt/dns-etc/bash.bash_logout file Creating empty /run/firejail/mnt/dns-etc/mailcap file Creating empty /run/firejail/mnt/dns-etc/udev directory Creating empty /run/firejail/mnt/dns-etc/named.conf file Creating empty /run/firejail/mnt/dns-etc/hostname file Creating empty /run/firejail/mnt/dns-etc/libvirt directory Creating empty /run/firejail/mnt/dns-etc/mkinitcpio.conf file Creating empty /run/firejail/mnt/dns-etc/signond.conf file Creating empty /run/firejail/mnt/dns-etc/sudoers.d directory Creating empty /run/firejail/mnt/dns-etc/gai.conf file Creating empty /run/firejail/mnt/dns-etc/xdg directory Creating empty /run/firejail/mnt/dns-etc/.pwd.lock file Creating empty /run/firejail/mnt/dns-etc/ld.so.conf file Creating empty /run/firejail/mnt/dns-etc/arch-audit directory Creating empty /run/firejail/mnt/dns-etc/UPower directory Creating empty /run/firejail/mnt/dns-etc/texmf directory Creating empty /run/firejail/mnt/dns-etc/pinentry directory Creating empty /run/firejail/mnt/dns-etc/imv_config file Creating empty /run/firejail/mnt/dns-etc/sddm.conf file Creating empty /run/firejail/mnt/dns-etc/firejail directory Creating empty /run/firejail/mnt/dns-etc/gssproxy directory Creating empty /run/firejail/mnt/dns-etc/services file Creating empty /run/firejail/mnt/dns-etc/rc_maps.cfg file Creating empty /run/firejail/mnt/dns-etc/conf.d directory Creating empty /run/firejail/mnt/dns-etc/sudo.conf file Creating empty /run/firejail/mnt/dns-etc/netctl directory Creating empty /run/firejail/mnt/dns-etc/dconf directory Creating empty /run/firejail/mnt/dns-etc/chromium directory Creating empty /run/firejail/mnt/dns-etc/avahi directory Creating empty /run/firejail/mnt/dns-etc/keyutils directory Creating empty /run/firejail/mnt/dns-etc/neomuttrc file Creating empty /run/firejail/mnt/dns-etc/nsswitch.conf file Creating empty /run/firejail/mnt/dns-etc/libccid_Info.plist file Creating empty /run/firejail/mnt/dns-etc/man_db.conf file Creating empty /run/firejail/mnt/dns-etc/R directory Creating empty /run/firejail/mnt/dns-etc/fstab file Creating empty /run/firejail/mnt/dns-etc/krb5.conf file Creating empty /run/firejail/mnt/dns-etc/gtk-2.0 directory Creating empty /run/firejail/mnt/dns-etc/efi-keys directory Creating empty /run/firejail/mnt/dns-etc/issue file Creating empty /run/firejail/mnt/dns-etc/jack directory Creating empty /run/firejail/mnt/dns-etc/sasl2 directory Creating empty /run/firejail/mnt/dns-etc/dnscrypt-proxy directory Creating empty /run/firejail/mnt/dns-etc/init directory Creating empty /run/firejail/mnt/dns-etc/locale.conf file Creating empty /run/firejail/mnt/dns-etc/pacman.d directory Creating empty /run/firejail/mnt/dns-etc/libinput directory Creating empty /run/firejail/mnt/dns-etc/grc.conf file Creating empty /run/firejail/mnt/dns-etc/pkcs11 directory Creating empty /run/firejail/mnt/dns-etc/mke2fs.conf file Creating empty /run/firejail/mnt/dns-etc/protocols file Creating empty /run/firejail/mnt/dns-etc/fonts directory Creating empty /run/firejail/mnt/dns-etc/mail.rc file Creating empty /run/firejail/mnt/dns-etc/udisks2 directory Creating empty /run/firejail/mnt/dns-etc/ImageMagick-7 directory Creating empty /run/firejail/mnt/dns-etc/profile file Creating empty /run/firejail/mnt/dns-etc/systemd directory Creating empty /run/firejail/mnt/dns-etc/nftables.conf file Creating empty /run/firejail/mnt/dns-etc/sensors.d directory Creating empty /run/firejail/mnt/dns-etc/ssl directory Creating empty /run/firejail/mnt/dns-etc/grc.fish file Creating empty /run/firejail/mnt/dns-etc/ethertypes file Creating empty /run/firejail/mnt/dns-etc/updatedb.conf file Creating empty /run/firejail/mnt/dns-etc/crypttab file Creating empty /run/firejail/mnt/dns-etc/cifs-utils directory Creating empty /run/firejail/mnt/dns-etc/rc_keymaps directory Creating empty /run/firejail/mnt/dns-etc/fish directory Creating empty /run/firejail/mnt/dns-etc/pulse directory Creating empty /run/firejail/mnt/dns-etc/xinetd.d directory Creating empty /run/firejail/mnt/dns-etc/ebtables.conf file Creating empty /run/firejail/mnt/dns-etc/nanorc file Creating empty /run/firejail/mnt/dns-etc/vde directory Creating empty /run/firejail/mnt/dns-etc/libao.conf file Creating empty /run/firejail/mnt/dns-etc/printcap file Creating empty /run/firejail/mnt/dns-etc/tlp.conf file Creating empty /run/firejail/mnt/dns-etc/sensors3.conf file Creating empty /run/firejail/mnt/dns-etc/exports file Creating empty /run/firejail/mnt/dns-etc/slsh.rc file Creating empty /run/firejail/mnt/dns-etc/highlight directory Creating empty /run/firejail/mnt/dns-etc/openldap directory Creating empty /run/firejail/mnt/dns-etc/trusted-key.key file Creating empty /run/firejail/mnt/dns-etc/grc.zsh file Creating empty /run/firejail/mnt/dns-etc/hotplug directory Creating empty /run/firejail/mnt/dns-etc/dhcpcd.conf file Mount-bind /run/firejail/mnt/dns-etc on top of /etc Current directory: /home/aleprovencio DISPLAY=:0 parsed as 0 Install protocol filter: unix,inet,inet6,netlink configuring 22 seccomp entries in /run/firejail/mnt/seccomp/seccomp.protocol sbox run: /usr/lib/firejail/fsec-print /run/firejail/mnt/seccomp/seccomp.protocol Dropping all capabilities Drop privileges: pid 5, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 04 00 c000003e jeq ARCH_64 0006 (false 0002) 0002: 20 00 00 00000000 ld data.syscall-number 0003: 15 01 00 00000167 jeq unknown 0005 (false 0004) 0004: 06 00 00 7fff0000 ret ALLOW 0005: 05 00 00 00000006 jmp 000c 0006: 20 00 00 00000004 ld data.architecture 0007: 15 01 00 c000003e jeq ARCH_64 0009 (false 0008) 0008: 06 00 00 7fff0000 ret ALLOW 0009: 20 00 00 00000000 ld data.syscall-number 000a: 15 01 00 00000029 jeq socket 000c (false 000b) 000b: 06 00 00 7fff0000 ret ALLOW 000c: 20 00 00 00000010 ld data.args[0] 000d: 15 00 01 00000001 jeq 1 000e (false 000f) 000e: 06 00 00 7fff0000 ret ALLOW 000f: 15 00 01 00000002 jeq 2 0010 (false 0011) 0010: 06 00 00 7fff0000 ret ALLOW 0011: 15 00 01 0000000a jeq a 0012 (false 0013) 0012: 06 00 00 7fff0000 ret ALLOW 0013: 15 00 01 00000010 jeq 10 0014 (false 0015) 0014: 06 00 00 7fff0000 ret ALLOW 0015: 06 00 00 0005005f ret ERRNO(95) configuring 54 seccomp entries in /run/firejail/mnt/seccomp/seccomp.32 sbox run: /usr/lib/firejail/fsec-print /run/firejail/mnt/seccomp/seccomp.32 Dropping all capabilities Drop privileges: pid 6, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 40000003 jeq ARCH_32 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 15 30 00 00000015 jeq 15 0035 (false 0005) 0005: 15 2f 00 00000034 jeq 34 0035 (false 0006) 0006: 15 2e 00 0000001a jeq 1a 0035 (false 0007) 0007: 15 2d 00 0000011b jeq 11b 0035 (false 0008) 0008: 15 2c 00 00000155 jeq 155 0035 (false 0009) 0009: 15 2b 00 00000156 jeq 156 0035 (false 000a) 000a: 15 2a 00 0000007f jeq 7f 0035 (false 000b) 000b: 15 29 00 00000080 jeq 80 0035 (false 000c) 000c: 15 28 00 0000015e jeq 15e 0035 (false 000d) 000d: 15 27 00 00000081 jeq 81 0035 (false 000e) 000e: 15 26 00 0000006e jeq 6e 0035 (false 000f) 000f: 15 25 00 00000065 jeq 65 0035 (false 0010) 0010: 15 24 00 00000121 jeq 121 0035 (false 0011) 0011: 15 23 00 00000057 jeq 57 0035 (false 0012) 0012: 15 22 00 00000073 jeq 73 0035 (false 0013) 0013: 15 21 00 00000067 jeq 67 0035 (false 0014) 0014: 15 20 00 0000015b jeq 15b 0035 (false 0015) 0015: 15 1f 00 0000015c jeq 15c 0035 (false 0016) 0016: 15 1e 00 00000087 jeq 87 0035 (false 0017) 0017: 15 1d 00 00000095 jeq 95 0035 (false 0018) 0018: 15 1c 00 0000007c jeq 7c 0035 (false 0019) 0019: 15 1b 00 00000157 jeq 157 0035 (false 001a) 001a: 15 1a 00 000000fd jeq fd 0035 (false 001b) 001b: 15 19 00 00000150 jeq 150 0035 (false 001c) 001c: 15 18 00 00000152 jeq 152 0035 (false 001d) 001d: 15 17 00 0000015d jeq 15d 0035 (false 001e) 001e: 15 16 00 0000011e jeq 11e 0035 (false 001f) 001f: 15 15 00 0000011f jeq 11f 0035 (false 0020) 0020: 15 14 00 00000120 jeq 120 0035 (false 0021) 0021: 15 13 00 00000056 jeq 56 0035 (false 0022) 0022: 15 12 00 00000033 jeq 33 0035 (false 0023) 0023: 15 11 00 0000007b jeq 7b 0035 (false 0024) 0024: 15 10 00 000000d9 jeq d9 0035 (false 0025) 0025: 15 0f 00 000000f5 jeq f5 0035 (false 0026) 0026: 15 0e 00 000000f6 jeq f6 0035 (false 0027) 0027: 15 0d 00 000000f7 jeq f7 0035 (false 0028) 0028: 15 0c 00 000000f8 jeq f8 0035 (false 0029) 0029: 15 0b 00 000000f9 jeq f9 0035 (false 002a) 002a: 15 0a 00 00000101 jeq 101 0035 (false 002b) 002b: 15 09 00 00000112 jeq 112 0035 (false 002c) 002c: 15 08 00 00000114 jeq 114 0035 (false 002d) 002d: 15 07 00 00000126 jeq 126 0035 (false 002e) 002e: 15 06 00 0000013d jeq 13d 0035 (false 002f) 002f: 15 05 00 0000013c jeq 13c 0035 (false 0030) 0030: 15 04 00 0000003d jeq 3d 0035 (false 0031) 0031: 15 03 00 00000058 jeq 58 0035 (false 0032) 0032: 15 02 00 000000a9 jeq a9 0035 (false 0033) 0033: 15 01 00 00000082 jeq 82 0035 (false 0034) 0034: 06 00 00 7fff0000 ret ALLOW 0035: 06 00 00 00050001 ret ERRNO(1) Dual 32/64 bit seccomp filter configured Build default+drop seccomp filter sbox run: /run/firejail/lib/fseccomp default drop /run/firejail/mnt/seccomp/seccomp /run/firejail/mnt/seccomp/seccomp.postexec !chroot,!name_to_handle_at Dropping all capabilities Drop privileges: pid 7, uid 1000, gid 1000, force_nogroups 1 No supplementary groups Seccomp list in: !chroot,!name_to_handle_at, check list: @default-keep, prelist: unknown,unknown, sbox run: /run/firejail/lib/fsec-optimize /run/firejail/mnt/seccomp/seccomp Dropping all capabilities Drop privileges: pid 8, uid 1000, gid 1000, force_nogroups 1 No supplementary groups configuring 75 seccomp entries in /run/firejail/mnt/seccomp/seccomp sbox run: /usr/lib/firejail/fsec-print /run/firejail/mnt/seccomp/seccomp Dropping all capabilities Drop privileges: pid 9, uid 1000, gid 1000, force_nogroups 1 No supplementary groups line OP JT JF K ================================= 0000: 20 00 00 00000004 ld data.architecture 0001: 15 01 00 c000003e jeq ARCH_64 0003 (false 0002) 0002: 06 00 00 7fff0000 ret ALLOW 0003: 20 00 00 00000000 ld data.syscall-number 0004: 35 01 00 40000000 jge X32_ABI 0006 (false 0005) 0005: 35 01 00 00000000 jge read 0007 (false 0006) 0006: 06 00 00 00050001 ret ERRNO(1) 0007: 15 00 01 000000a1 jeq chroot 0008 (false 0009) 0008: 06 00 00 7fff0000 ret ALLOW 0009: 15 00 01 0000012f jeq name_to_handle_at 000a (false 000b) 000a: 06 00 00 7fff0000 ret ALLOW 000b: 15 3e 00 0000009f jeq adjtimex 004a (false 000c) 000c: 15 3d 00 00000131 jeq clock_adjtime 004a (false 000d) 000d: 15 3c 00 000000e3 jeq clock_settime 004a (false 000e) 000e: 15 3b 00 000000a4 jeq settimeofday 004a (false 000f) 000f: 15 3a 00 0000009a jeq modify_ldt 004a (false 0010) 0010: 15 39 00 000000d4 jeq lookup_dcookie 004a (false 0011) 0011: 15 38 00 0000012a jeq perf_event_open 004a (false 0012) 0012: 15 37 00 00000137 jeq process_vm_writev 004a (false 0013) 0013: 15 36 00 000000b0 jeq delete_module 004a (false 0014) 0014: 15 35 00 00000139 jeq finit_module 004a (false 0015) 0015: 15 34 00 000000af jeq init_module 004a (false 0016) 0016: 15 33 00 000000a1 jeq chroot 004a (false 0017) 0017: 15 32 00 000000a5 jeq mount 004a (false 0018) 0018: 15 31 00 0000009b jeq pivot_root 004a (false 0019) 0019: 15 30 00 000000a6 jeq umount2 004a (false 001a) 001a: 15 2f 00 0000009c jeq _sysctl 004a (false 001b) 001b: 15 2e 00 000000b7 jeq afs_syscall 004a (false 001c) 001c: 15 2d 00 000000ae jeq create_module 004a (false 001d) 001d: 15 2c 00 000000b1 jeq get_kernel_syms 004a (false 001e) 001e: 15 2b 00 000000b5 jeq getpmsg 004a (false 001f) 001f: 15 2a 00 000000b6 jeq putpmsg 004a (false 0020) 0020: 15 29 00 000000b2 jeq query_module 004a (false 0021) 0021: 15 28 00 000000b9 jeq security 004a (false 0022) 0022: 15 27 00 0000008b jeq sysfs 004a (false 0023) 0023: 15 26 00 000000b8 jeq tuxcall 004a (false 0024) 0024: 15 25 00 00000086 jeq uselib 004a (false 0025) 0025: 15 24 00 00000088 jeq ustat 004a (false 0026) 0026: 15 23 00 000000ec jeq vserver 004a (false 0027) 0027: 15 22 00 000000ad jeq ioperm 004a (false 0028) 0028: 15 21 00 000000ac jeq iopl 004a (false 0029) 0029: 15 20 00 000000f6 jeq kexec_load 004a (false 002a) 002a: 15 1f 00 00000140 jeq kexec_file_load 004a (false 002b) 002b: 15 1e 00 000000a9 jeq reboot 004a (false 002c) 002c: 15 1d 00 000000a7 jeq swapon 004a (false 002d) 002d: 15 1c 00 000000a8 jeq swapoff 004a (false 002e) 002e: 15 1b 00 00000130 jeq open_by_handle_at 004a (false 002f) 002f: 15 1a 00 0000012f jeq name_to_handle_at 004a (false 0030) 0030: 15 19 00 000000fb jeq ioprio_set 004a (false 0031) 0031: 15 18 00 00000067 jeq syslog 004a (false 0032) 0032: 15 17 00 0000012c jeq fanotify_init 004a (false 0033) 0033: 15 16 00 000000f8 jeq add_key 004a (false 0034) 0034: 15 15 00 000000f9 jeq request_key 004a (false 0035) 0035: 15 14 00 000000ed jeq mbind 004a (false 0036) 0036: 15 13 00 00000100 jeq migrate_pages 004a (false 0037) 0037: 15 12 00 00000117 jeq move_pages 004a (false 0038) 0038: 15 11 00 000000fa jeq keyctl 004a (false 0039) 0039: 15 10 00 000000ce jeq io_setup 004a (false 003a) 003a: 15 0f 00 000000cf jeq io_destroy 004a (false 003b) 003b: 15 0e 00 000000d0 jeq io_getevents 004a (false 003c) 003c: 15 0d 00 000000d1 jeq io_submit 004a (false 003d) 003d: 15 0c 00 000000d2 jeq io_cancel 004a (false 003e) 003e: 15 0b 00 000000d8 jeq remap_file_pages 004a (false 003f) 003f: 15 0a 00 00000143 jeq userfaultfd 004a (false 0040) 0040: 15 09 00 000000a3 jeq acct 004a (false 0041) 0041: 15 08 00 00000141 jeq bpf 004a (false 0042) 0042: 15 07 00 000000b4 jeq nfsservctl 004a (false 0043) 0043: 15 06 00 000000ab jeq setdomainname 004a (false 0044) 0044: 15 05 00 000000aa jeq sethostname 004a (false 0045) 0045: 15 04 00 00000099 jeq vhangup 004a (false 0046) 0046: 15 03 00 00000065 jeq ptrace 004a (false 0047) 0047: 15 02 00 00000087 jeq personality 004a (false 0048) 0048: 15 01 00 00000136 jeq process_vm_readv 004a (false 0049) 0049: 06 00 00 7fff0000 ret ALLOW 004a: 06 00 00 00050001 ret ERRNO(1) seccomp filter configured Mounting read-only /run/firejail/mnt/seccomp 1577 828 0:63 /seccomp /run/firejail/mnt/seccomp ro,nosuid - tmpfs tmpfs rw,mode=755,inode64 mountid=1577 fsname=/seccomp dir=/run/firejail/mnt/seccomp fstype=tmpfs Seccomp directory: ls /run/firejail/mnt/seccomp drwxr-xr-x root root 160 . drwxr-xr-x root root 240 .. -rw-r--r-- aleprove aleprove 600 seccomp -rw-r--r-- aleprove aleprove 432 seccomp.32 -rw-r--r-- aleprove aleprove 114 seccomp.list -rw-r--r-- aleprove aleprove 0 seccomp.postexec -rw-r--r-- aleprove aleprove 0 seccomp.postexec32 -rw-r--r-- aleprove aleprove 176 seccomp.protocol Active seccomp files: cat /run/firejail/mnt/seccomp/seccomp.list /run/firejail/mnt/seccomp/seccomp.protocol /run/firejail/mnt/seccomp/seccomp.32 /run/firejail/mnt/seccomp/seccomp Dropping all capabilities noroot user namespace installed Dropping all capabilities NO_NEW_PRIVS set Drop privileges: pid 1, uid 1000, gid 1000, force_nogroups 0 Warning: cleaning all supplementary groups Closing non-standard file descriptors Starting application LD_PRELOAD=(null) Running 'qutebrowser' command through /usr/bin/fish execvp argument 0: /usr/bin/fish execvp argument 1: -c execvp argument 2: 'qutebrowser' Child process initialized in 895.07 ms Installing /run/firejail/mnt/seccomp/seccomp seccomp filter Installing /run/firejail/mnt/seccomp/seccomp.32 seccomp filter Installing /run/firejail/mnt/seccomp/seccomp.protocol seccomp filter monitoring pid 10 gpgconf: error running '/usr/bin/gpg-connect-agent': exit status 1 gpgconf: error running '/usr/bin/gpg-connect-agent NOP': General error Warning: an existing sandbox was detected. /usr/bin/qutebrowser will run without any additional sandboxing features 15:48:44 WARNING: Wayland does not support QWindow::requestActivate() 15:48:44 WARNING: Wayland does not support QWindow::requestActivate() Sandbox monitor: waitpid 10 retval 10 status 0 Sandbox monitor: monitoring 168 monitoring pid 168 Sandbox monitor: waitpid 168 retval 168 status 0 Sandbox monitor: monitoring 169 monitoring pid 169 Sandbox monitor: waitpid 169 retval 169 status 0 Parent is shutting down, bye... ```

[rusty-snake]

12ba3f2aaffa14b09272063de07bc2e8f55df81d

You need to noblacklist the neovim files.

[aleprovencio]

Thanks for replying @rusty-snake.

By taking a look at the mentioned commit, I've added:

noblacklist ${HOME}/.cache/nvim
noblacklist ${HOME}/.config/nvim
noblacklist ${HOME}/.local/share/nvim
read-write ${HOME}/.local/share/nvim

However, still getting a different error:

Erro detectado ao processar /home/aleprovencio/.config/nvim/init.lua:
Couldn't create parser dir /home/aleprovencio/.local/share/nvim///site//
/parser : Vim:E739: Cannot create directory /home/aleprovencio/.local/sh
are/nvim///site///parser: read-only file system
E303: Impossível abrir arquivo de troca para "/tmp/qutebrowser-editor-q7
r8iulg", recuperação impossível
Aperte ENTER ou digite um comando para continuar

[rusty-snake]

read-only/read-write have a last-win logic. In .locals you need to ignore read-only PATH instead.

[aleprovencio]

You've nailed it! Thank you so much 😃