vscodium: changes to settings do not persist (whitelisting issue)

[ikokostya]

Description

Codium doesn't save settings when used with default firejail profile.

Steps to Reproduce

1. Run in bash LC_ALL=C firejail codium
2. Change some settings (e.g. color theme from dark to light)
3. Close editor
4. Run in bash LC_ALL=C firejail codium

Expected behavior

Codium should apply last settings.

Actual behavior

Codium uses default settings.

Behavior without a profile

All previous settings are applied.

Additional context

I use official VSCodium debian package:

$ apt show codium 
Package: codium
Version: 1.67.2-1652920338
Priority: optional
Section: devel
Maintainer: VSCodium Team https://github.com/VSCodium/vscodium/graphs/contributors
Installed-Size: 337 MB
Provides: visual-studio-codium
Depends: libnss3 (>= 2:3.26), gnupg, apt, libxkbfile1, libsecret-1-0, libgtk-3-0 (>= 3.10.0), libxss1, libgbm1
Conflicts: visual-studio-codium
Replaces: visual-studio-codium
Homepage: https://vscodium.com/
Download-Size: 84,3 MB
APT-Manual-Installed: yes
APT-Sources: https://download.vscodium.com/debs vscodium/main amd64 Packages
Description: Code editing. Redefined.
 VSCodium is a new choice of tool that combines the simplicity of
 a code editor with what developers need for the core edit-build-debug cycle.
 See https://vscodium.com/docs/setup/linux for installation
 instructions and FAQ.

Environment

• Linux distribution and version: Ubuntu 20.04.4 LTS
• Firejail version

  
  firejail version 0.9.68

Compile time support:

• always force nonewprivs support is disabled
• AppArmor support is enabled
• AppImage support is enabled
• chroot support is enabled
• D-BUS proxy support is enabled
• file transfer support is enabled
• firetunnel support is enabled
• networking support is enabled
• output logging is enabled
• overlayfs support is disabled
• private-home support is enabled
• private-cache and tmpfs as user enabled
• SELinux support is enabled
• user namespace support is enabled
• X11 sandboxing support is enabled

### Checklist

<!--
Note: Items are checked with an "x", like so:

- [x] This is a checked item.
-->

- [x] The issues is caused by firejail (i.e. running the program by path (e.g. `/usr/bin/vlc`) "fixes" it).
- [x] I can reproduce the issue without custom modifications (e.g. globals.local).
- [x] The program has a profile. (If not, request one in `https://github.com/netblue30/firejail/issues/1139`)
- [x] The profile (and redirect profile if exists) hasn't already been fixed [upstream](https://github.com/netblue30/firejail/tree/master/etc).
- [x] I have performed a short search for similar issues (to avoid opening a duplicate).
  - [x] I'm aware of `browser-allow-drm yes`/`browser-disable-u2f no` in `firejail.config` to allow DRM/U2F in browsers.
- [x] I used `--profile=PROFILENAME` to set the right profile. (Only relevant for AppImages)

### Log

<details>
<summary>Output of <code>LC_ALL=C firejail codium</code></summary>
<p>

Reading profile /etc/firejail/codium.profile Reading profile /etc/firejail/vscodium.profile Reading profile /etc/firejail/code.profile Reading profile /etc/firejail/allow-common-devel.inc Reading profile /etc/firejail/electron.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-programs.inc Warning: networking feature is disabled in Firejail configuration file Parent pid 18311, child pid 18312 Warning: cleaning all supplementary groups Warning: cleaning all supplementary groups Warning: cleaning all supplementary groups Warning: cleaning all supplementary groups Child process initialized in 77.57 ms

</p>
</details>

<details>
<summary>Output of <code>LC_ALL=C firejail --debug codium</code></summary>
<p>

Autoselecting /bin/bash as shell Building quoted command line: 'codium' Command name #codium# Found codium.profile profile in /etc/firejail directory Reading profile /etc/firejail/codium.profile Found codium.local profile in /home/kostya/.config/firejail directory Found vscodium.profile profile in /etc/firejail directory Reading profile /etc/firejail/vscodium.profile Found code.profile profile in /etc/firejail directory Reading profile /etc/firejail/code.profile Found allow-common-devel.inc profile in /etc/firejail directory Reading profile /etc/firejail/allow-common-devel.inc Found electron.profile profile in /etc/firejail directory Reading profile /etc/firejail/electron.profile Found disable-common.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-common.inc Found disable-programs.inc profile in /etc/firejail directory Reading profile /etc/firejail/disable-programs.inc Warning: networking feature is disabled in Firejail configuration file DISPLAY=:0 parsed as 0 Using the local network stack Parent pid 18583, child pid 18584 Initializing child process Host network configured PID namespace installed Mounting tmpfs on /run/firejail/mnt directory Creating empty /run/firejail/mnt/seccomp directory Creating empty /run/firejail/mnt/seccomp/seccomp.protocol file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec file Creating empty /run/firejail/mnt/seccomp/seccomp.postexec32 file IBUS_ADDRESS=unix:abstract=/home/kostya/.cache/ibus/dbus-RCC9nhVA,guid=7b2606ca620b876da9236d6d62951783 IBUS_DAEMON_PID=2346 Mounting /proc filesystem representing the PID namespace Basic read-only filesystem: Mounting read-only /etc 1989 1921 259:1 /etc /etc ro,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=1989 fsname=/etc dir=/etc fstype=ext4 Mounting noexec /etc 1990 1989 259:1 /etc /etc ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=1990 fsname=/etc dir=/etc fstype=ext4 Mounting read-only /var 1991 1921 259:1 /var /var ro,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=1991 fsname=/var dir=/var fstype=ext4 Mounting noexec /var 1992 1991 259:1 /var /var ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=1992 fsname=/var dir=/var fstype=ext4 Mounting read-only /usr 1993 1921 259:1 /usr /usr ro,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=1993 fsname=/usr dir=/usr fstype=ext4 Mounting tmpfs on /var/lock Mounting tmpfs on /var/tmp Mounting tmpfs on /var/log Mounting tmpfs on /var/lib/dhcp Mounting tmpfs on /var/lib/snmp Mounting tmpfs on /var/lib/sudo Create the new utmp file Mount the new utmp file Cleaning /home directory Cleaning /run/user directory Sanitizing /etc/passwd, UID_MIN 1000 Sanitizing /etc/group, GID_MIN 1000 Disable /home/kostya/.config/firejail Disable /run/firejail/network Disable /run/firejail/bandwidth Disable /run/firejail/name Disable /run/firejail/profile Disable /run/firejail/x11 Mounting tmpfs on /dev mounting /run/firejail/mnt/dev/dri directory Process /dev/shm directory Generate private-tmp whitelist commands blacklist /run/firejail/dbus Mounting read-only /proc/sys Remounting /sys directory Disable /sys/firmware Disable /sys/hypervisor Disable /sys/power Disable /sys/kernel/debug Disable /sys/kernel/vmcoreinfo Disable /sys/kernel/uevent_helper Disable /proc/sys/fs/binfmt_misc Disable /proc/sys/kernel/core_pattern Disable /proc/sys/kernel/modprobe Disable /proc/sysrq-trigger Disable /proc/sys/kernel/hotplug Disable /proc/sys/vm/panic_on_oom Disable /proc/irq Disable /proc/bus Disable /proc/sched_debug Disable /proc/timer_list Disable /proc/kcore Disable /proc/kallsyms Disable /usr/lib/modules (requested /lib/modules) Disable /usr/lib/debug Disable /boot Disable /run/user/1000/gnupg Disable /run/user/1000/systemd Disable /proc/kmsg Debug 558: whitelist ${HOME}/.config/Electron Debug 579: expanded: /home/kostya/.config/Electron Debug 590: new_name: /home/kostya/.config/Electron Debug 604: dir: /home/kostya Adding whitelist top level directory /home/kostya Debug 558: whitelist ${HOME}/.config/electron-flag.conf Debug 579: expanded: /home/kostya/.config/electron-flag.conf Debug 590: new_name: /home/kostya/.config/electron-flag.conf Debug 604: dir: /home/kostya Removed path: whitelist ${HOME}/.config/electron-flag.conf new_name: /home/kostya/.config/electron-flag.conf realpath: (null) No such file or directory Debug 558: whitelist /tmp/.X11-unix Debug 579: expanded: /tmp/.X11-unix Debug 590: new_name: /tmp/.X11-unix Debug 604: dir: /tmp Adding whitelist top level directory /tmp Debug 558: whitelist /tmp/sndio Debug 579: expanded: /tmp/sndio Debug 590: new_name: /tmp/sndio Debug 604: dir: /tmp Removed path: whitelist /tmp/sndio new_name: /tmp/sndio realpath: (null) No such file or directory Mounting tmpfs on /tmp, check owner: no 2034 1921 0:114 / /tmp rw,nosuid,nodev,relatime - tmpfs tmpfs rw mountid=2034 fsname=/ dir=/tmp fstype=tmpfs Drop privileges: pid 2, uid 1000, gid 1000, force_nogroups 0 nogroups command not ignored Warning: cleaning all supplementary groups Mounting a new /root directory Mounting a new /home directory Create a new user directory Drop privileges: pid 3, uid 1000, gid 1000, force_nogroups 0 nogroups command not ignored Warning: cleaning all supplementary groups Drop privileges: pid 4, uid 1000, gid 1000, force_nogroups 0 nogroups command not ignored Warning: cleaning all supplementary groups Debug 739: file: /home/kostya/.config/Electron; dirfd: 4; topdir: /home/kostya; rel: .config/Electron Whitelisting /home/kostya/.config/Electron 2037 2036 259:3 /kostya/.config/Electron /home/kostya/.config/Electron rw,relatime master:113 - ext4 /dev/nvme0n1p3 rw mountid=2037 fsname=/kostya/.config/Electron dir=/home/kostya/.config/Electron fstype=ext4 Debug 739: file: /tmp/.X11-unix; dirfd: 7; topdir: /tmp; rel: .X11-unix Whitelisting /tmp/.X11-unix 2038 2034 259:1 /tmp/.X11-unix /tmp/.X11-unix rw,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=2038 fsname=/tmp/.X11-unix dir=/tmp/.X11-unix fstype=ext4 Mounting noexec /tmp 2040 2039 259:1 /tmp/.X11-unix /tmp/.X11-unix rw,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=2040 fsname=/tmp/.X11-unix dir=/tmp/.X11-unix fstype=ext4 Mounting noexec /tmp/.X11-unix 2041 2040 259:1 /tmp/.X11-unix /tmp/.X11-unix rw,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=2041 fsname=/tmp/.X11-unix dir=/tmp/.X11-unix fstype=ext4 Not blacklist /home/kostya/.python-history Not blacklist /home/kostya/.python_history Not blacklist /home/kostya/.pythonhist Disable /etc/X11/Xsession.d Disable /etc/xdg/autostart Mounting read-only /home/kostya/.Xauthority 2044 2036 0:116 /kostya/.Xauthority /home/kostya/.Xauthority ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755 mountid=2044 fsname=/kostya/.Xauthority dir=/home/kostya/.Xauthority fstype=tmpfs Disable /usr/bin/systemctl Disable /usr/bin/systemctl (requested /bin/systemctl) Disable /usr/bin/systemd-run Disable /usr/bin/systemd-run (requested /bin/systemd-run) Disable /run/user/1000/systemd Disable /etc/systemd/network Disable /etc/systemd/system Disable /var/lib/systemd Disable /etc/init.d Disable /var/cache/apt Disable /var/lib/apt Disable /var/lib/dkms Disable /var/lib/upower Disable /var/mail Disable /var/opt Disable /run/acpid.socket (requested /var/run/acpid.socket) Disable /run/docker.sock (requested /var/run/docker.sock) Disable /var/spool/anacron Disable /var/spool/cron Disable /var/mail (requested /var/spool/mail) Disable /etc/adduser.conf Disable /etc/anacrontab Disable /etc/apparmor Disable /etc/apparmor.d Disable /etc/crontab Disable /etc/cron.daily Disable /etc/cron.monthly Disable /etc/cron.d Disable /etc/cron.hourly Disable /etc/cron.weekly Disable /etc/default Disable /etc/dkms Disable /etc/grub.d Disable /etc/kernel-img.conf Disable /etc/kerneloops.conf Disable /etc/kernel Disable /etc/logrotate.conf Disable /etc/logrotate.d Disable /etc/modules Disable /etc/modules-load.d Disable /etc/profile.d Disable /etc/rc5.d Disable /etc/rc0.d Disable /etc/rcS.d Disable /etc/rc4.d Disable /etc/rc6.d Disable /etc/rc3.d Disable /etc/rc2.d Disable /etc/rc1.d Disable /etc/logcheck Mounting read-only /home/kostya/.bashrc 2096 2036 0:116 /kostya/.bashrc /home/kostya/.bashrc ro,nosuid,nodev,noexec - tmpfs tmpfs rw,mode=755 mountid=2096 fsname=/kostya/.bashrc dir=/home/kostya/.bashrc fstype=tmpfs Disable /etc/group- Disable /etc/gshadow Disable /etc/gshadow- Disable /etc/passwd- Disable /etc/shadow Disable /etc/shadow- Disable /etc/ssh Warning (blacklisting): cannot open /etc/ssh/: Permission denied Not blacklist /home/kostya/.git-credentials Disable /usr/sbin (requested /sbin) Disable /usr/local/sbin Disable /usr/sbin Warning (blacklisting): cannot open /usr/local/sbin/at: Permission denied Warning (blacklisting): cannot open /usr/sbin/at: Permission denied Disable /usr/bin/at Warning (blacklisting): cannot open /sbin/at: Permission denied Disable /usr/bin/at (requested /bin/at) Warning (blacklisting): cannot open /usr/local/sbin/busybox: Permission denied Warning (blacklisting): cannot open /usr/sbin/busybox: Permission denied Disable /usr/bin/busybox Warning (blacklisting): cannot open /sbin/busybox: Permission denied Disable /usr/bin/busybox (requested /bin/busybox) Warning (blacklisting): cannot open /usr/local/sbin/chage: Permission denied Warning (blacklisting): cannot open /usr/sbin/chage: Permission denied Disable /usr/bin/chage Warning (blacklisting): cannot open /sbin/chage: Permission denied Disable /usr/bin/chage (requested /bin/chage) Warning (blacklisting): cannot open /usr/local/sbin/chfn: Permission denied Warning (blacklisting): cannot open /usr/sbin/chfn: Permission denied Disable /usr/bin/chfn Warning (blacklisting): cannot open /sbin/chfn: Permission denied Disable /usr/bin/chfn (requested /bin/chfn) Warning (blacklisting): cannot open /usr/local/sbin/chsh: Permission denied Warning (blacklisting): cannot open /usr/sbin/chsh: Permission denied Disable /usr/bin/chsh Warning (blacklisting): cannot open /sbin/chsh: Permission denied Disable /usr/bin/chsh (requested /bin/chsh) Warning (blacklisting): cannot open /usr/local/sbin/crontab: Permission denied Warning (blacklisting): cannot open /usr/sbin/crontab: Permission denied Disable /usr/bin/crontab Warning (blacklisting): cannot open /sbin/crontab: Permission denied Disable /usr/bin/crontab (requested /bin/crontab) Warning (blacklisting): cannot open /usr/local/sbin/evtest: Permission denied Warning (blacklisting): cannot open /usr/sbin/evtest: Permission denied Warning (blacklisting): cannot open /sbin/evtest: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/expiry: Permission denied Warning (blacklisting): cannot open /usr/sbin/expiry: Permission denied Disable /usr/bin/expiry Warning (blacklisting): cannot open /sbin/expiry: Permission denied Disable /usr/bin/expiry (requested /bin/expiry) Warning (blacklisting): cannot open /usr/local/sbin/fusermount: Permission denied Warning (blacklisting): cannot open /usr/sbin/fusermount: Permission denied Disable /usr/bin/fusermount Warning (blacklisting): cannot open /sbin/fusermount: Permission denied Disable /usr/bin/fusermount (requested /bin/fusermount) Warning (blacklisting): cannot open /usr/local/sbin/gksu: Permission denied Warning (blacklisting): cannot open /usr/sbin/gksu: Permission denied Warning (blacklisting): cannot open /sbin/gksu: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gksudo: Permission denied Warning (blacklisting): cannot open /usr/sbin/gksudo: Permission denied Warning (blacklisting): cannot open /sbin/gksudo: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/gpasswd: Permission denied Warning (blacklisting): cannot open /usr/sbin/gpasswd: Permission denied Disable /usr/bin/gpasswd Warning (blacklisting): cannot open /sbin/gpasswd: Permission denied Disable /usr/bin/gpasswd (requested /bin/gpasswd) Warning (blacklisting): cannot open /usr/local/sbin/kdesudo: Permission denied Warning (blacklisting): cannot open /usr/sbin/kdesudo: Permission denied Warning (blacklisting): cannot open /sbin/kdesudo: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ksu: Permission denied Warning (blacklisting): cannot open /usr/sbin/ksu: Permission denied Warning (blacklisting): cannot open /sbin/ksu: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/mount: Permission denied Warning (blacklisting): cannot open /usr/sbin/mount: Permission denied Disable /usr/bin/mount Warning (blacklisting): cannot open /sbin/mount: Permission denied Disable /usr/bin/mount (requested /bin/mount) Warning (blacklisting): cannot open /usr/local/sbin/mount.ecryptfs_private: Permission denied Warning (blacklisting): cannot open /usr/sbin/mount.ecryptfs_private: Permission denied Warning (blacklisting): cannot open /sbin/mount.ecryptfs_private: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/nc: Permission denied Warning (blacklisting): cannot open /usr/sbin/nc: Permission denied Disable /usr/bin/nc.openbsd (requested /usr/bin/nc) Warning (blacklisting): cannot open /sbin/nc: Permission denied Disable /usr/bin/nc.openbsd (requested /bin/nc) Warning (blacklisting): cannot open /usr/local/sbin/ncat: Permission denied Warning (blacklisting): cannot open /usr/sbin/ncat: Permission denied Warning (blacklisting): cannot open /sbin/ncat: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/nmap: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmap: Permission denied Warning (blacklisting): cannot open /sbin/nmap: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/newgidmap: Permission denied Warning (blacklisting): cannot open /usr/sbin/newgidmap: Permission denied Warning (blacklisting): cannot open /sbin/newgidmap: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/newgrp: Permission denied Warning (blacklisting): cannot open /usr/sbin/newgrp: Permission denied Disable /usr/bin/newgrp Warning (blacklisting): cannot open /sbin/newgrp: Permission denied Disable /usr/bin/newgrp (requested /bin/newgrp) Warning (blacklisting): cannot open /usr/local/sbin/newuidmap: Permission denied Warning (blacklisting): cannot open /usr/sbin/newuidmap: Permission denied Warning (blacklisting): cannot open /sbin/newuidmap: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ntfs-3g: Permission denied Warning (blacklisting): cannot open /usr/sbin/ntfs-3g: Permission denied Disable /usr/bin/ntfs-3g Warning (blacklisting): cannot open /sbin/ntfs-3g: Permission denied Disable /usr/bin/ntfs-3g (requested /bin/ntfs-3g) Warning (blacklisting): cannot open /usr/local/sbin/pkexec: Permission denied Warning (blacklisting): cannot open /usr/sbin/pkexec: Permission denied Disable /usr/bin/pkexec Warning (blacklisting): cannot open /sbin/pkexec: Permission denied Disable /usr/bin/pkexec (requested /bin/pkexec) Warning (blacklisting): cannot open /usr/local/sbin/procmail: Permission denied Warning (blacklisting): cannot open /usr/sbin/procmail: Permission denied Warning (blacklisting): cannot open /sbin/procmail: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/sg: Permission denied Warning (blacklisting): cannot open /usr/sbin/sg: Permission denied Disable /usr/bin/newgrp (requested /usr/bin/sg) Warning (blacklisting): cannot open /sbin/sg: Permission denied Disable /usr/bin/newgrp (requested /bin/sg) Warning (blacklisting): cannot open /usr/local/sbin/strace: Permission denied Warning (blacklisting): cannot open /usr/sbin/strace: Permission denied Disable /usr/bin/strace Warning (blacklisting): cannot open /sbin/strace: Permission denied Disable /usr/bin/strace (requested /bin/strace) Warning (blacklisting): cannot open /usr/local/sbin/su: Permission denied Warning (blacklisting): cannot open /usr/sbin/su: Permission denied Disable /usr/bin/su Warning (blacklisting): cannot open /sbin/su: Permission denied Disable /usr/bin/su (requested /bin/su) Warning (blacklisting): cannot open /usr/local/sbin/sudo: Permission denied Warning (blacklisting): cannot open /usr/sbin/sudo: Permission denied Disable /usr/bin/sudo Warning (blacklisting): cannot open /sbin/sudo: Permission denied Disable /usr/bin/sudo (requested /bin/sudo) Warning (blacklisting): cannot open /usr/local/sbin/tcpdump: Permission denied Warning (blacklisting): cannot open /usr/sbin/tcpdump: Permission denied Warning (blacklisting): cannot open /sbin/tcpdump: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/umount: Permission denied Warning (blacklisting): cannot open /usr/sbin/umount: Permission denied Disable /usr/bin/umount Warning (blacklisting): cannot open /sbin/umount: Permission denied Disable /usr/bin/umount (requested /bin/umount) Warning (blacklisting): cannot open /usr/local/sbin/unix_chkpwd: Permission denied Warning (blacklisting): cannot open /usr/sbin/unix_chkpwd: Permission denied Warning (blacklisting): cannot open /sbin/unix_chkpwd: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xev: Permission denied Warning (blacklisting): cannot open /usr/sbin/xev: Permission denied Disable /usr/bin/xev Warning (blacklisting): cannot open /sbin/xev: Permission denied Disable /usr/bin/xev (requested /bin/xev) Warning (blacklisting): cannot open /usr/local/sbin/xinput: Permission denied Warning (blacklisting): cannot open /usr/sbin/xinput: Permission denied Disable /usr/bin/xinput Warning (blacklisting): cannot open /sbin/xinput: Permission denied Disable /usr/bin/xinput (requested /bin/xinput) Disable /usr/lib/openssh Warning (blacklisting): cannot open /usr/local/sbin/passwd: Permission denied Warning (blacklisting): cannot open /usr/sbin/passwd: Permission denied Disable /usr/bin/passwd Warning (blacklisting): cannot open /sbin/passwd: Permission denied Disable /usr/bin/passwd (requested /bin/passwd) Disable /usr/lib/xorg/Xorg.wrap Disable /usr/lib/policykit-1/polkit-agent-helper-1 Disable /usr/lib/dbus-1.0/dbus-daemon-launch-helper Disable /usr/lib/eject/dmcrypt-get-device Warning (blacklisting): cannot open /usr/local/sbin/suexec: Permission denied Warning (blacklisting): cannot open /usr/sbin/suexec: Permission denied Warning (blacklisting): cannot open /sbin/suexec: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/slock: Permission denied Warning (blacklisting): cannot open /usr/sbin/slock: Permission denied Disable /usr/bin/slock Warning (blacklisting): cannot open /sbin/slock: Permission denied Disable /usr/bin/slock (requested /bin/slock) Warning (blacklisting): cannot open /usr/local/sbin/physlock: Permission denied Warning (blacklisting): cannot open /usr/sbin/physlock: Permission denied Warning (blacklisting): cannot open /sbin/physlock: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/schroot: Permission denied Warning (blacklisting): cannot open /usr/sbin/schroot: Permission denied Warning (blacklisting): cannot open /sbin/schroot: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/wshowkeys: Permission denied Warning (blacklisting): cannot open /usr/sbin/wshowkeys: Permission denied Warning (blacklisting): cannot open /sbin/wshowkeys: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pmount: Permission denied Warning (blacklisting): cannot open /usr/sbin/pmount: Permission denied Warning (blacklisting): cannot open /sbin/pmount: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pumount: Permission denied Warning (blacklisting): cannot open /usr/sbin/pumount: Permission denied Warning (blacklisting): cannot open /sbin/pumount: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/bmon: Permission denied Warning (blacklisting): cannot open /usr/sbin/bmon: Permission denied Warning (blacklisting): cannot open /sbin/bmon: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/fping: Permission denied Warning (blacklisting): cannot open /usr/sbin/fping: Permission denied Warning (blacklisting): cannot open /sbin/fping: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/fping6: Permission denied Warning (blacklisting): cannot open /usr/sbin/fping6: Permission denied Warning (blacklisting): cannot open /sbin/fping6: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/hostname: Permission denied Warning (blacklisting): cannot open /usr/sbin/hostname: Permission denied Disable /usr/bin/hostname Warning (blacklisting): cannot open /sbin/hostname: Permission denied Disable /usr/bin/hostname (requested /bin/hostname) Warning (blacklisting): cannot open /usr/local/sbin/mtr: Permission denied Warning (blacklisting): cannot open /usr/sbin/mtr: Permission denied Disable /usr/bin/mtr Warning (blacklisting): cannot open /sbin/mtr: Permission denied Disable /usr/bin/mtr (requested /bin/mtr) Warning (blacklisting): cannot open /usr/local/sbin/mtr-packet: Permission denied Warning (blacklisting): cannot open /usr/sbin/mtr-packet: Permission denied Disable /usr/bin/mtr-packet Warning (blacklisting): cannot open /sbin/mtr-packet: Permission denied Disable /usr/bin/mtr-packet (requested /bin/mtr-packet) Warning (blacklisting): cannot open /usr/local/sbin/netstat: Permission denied Warning (blacklisting): cannot open /usr/sbin/netstat: Permission denied Disable /usr/bin/netstat Warning (blacklisting): cannot open /sbin/netstat: Permission denied Disable /usr/bin/netstat (requested /bin/netstat) Warning (blacklisting): cannot open /usr/local/sbin/nm-online: Permission denied Warning (blacklisting): cannot open /usr/sbin/nm-online: Permission denied Disable /usr/bin/nm-online Warning (blacklisting): cannot open /sbin/nm-online: Permission denied Disable /usr/bin/nm-online (requested /bin/nm-online) Warning (blacklisting): cannot open /usr/local/sbin/nmcli: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmcli: Permission denied Disable /usr/bin/nmcli Warning (blacklisting): cannot open /sbin/nmcli: Permission denied Disable /usr/bin/nmcli (requested /bin/nmcli) Warning (blacklisting): cannot open /usr/local/sbin/nmtui: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmtui: Permission denied Disable /usr/bin/nmtui Warning (blacklisting): cannot open /sbin/nmtui: Permission denied Disable /usr/bin/nmtui (requested /bin/nmtui) Warning (blacklisting): cannot open /usr/local/sbin/nmtui-connect: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmtui-connect: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-connect) Warning (blacklisting): cannot open /sbin/nmtui-connect: Permission denied Disable /usr/bin/nmtui (requested /bin/nmtui-connect) Warning (blacklisting): cannot open /usr/local/sbin/nmtui-edit: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmtui-edit: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-edit) Warning (blacklisting): cannot open /sbin/nmtui-edit: Permission denied Disable /usr/bin/nmtui (requested /bin/nmtui-edit) Warning (blacklisting): cannot open /usr/local/sbin/nmtui-hostname: Permission denied Warning (blacklisting): cannot open /usr/sbin/nmtui-hostname: Permission denied Disable /usr/bin/nmtui (requested /usr/bin/nmtui-hostname) Warning (blacklisting): cannot open /sbin/nmtui-hostname: Permission denied Disable /usr/bin/nmtui (requested /bin/nmtui-hostname) Warning (blacklisting): cannot open /usr/local/sbin/networkctl: Permission denied Warning (blacklisting): cannot open /usr/sbin/networkctl: Permission denied Disable /usr/bin/networkctl Warning (blacklisting): cannot open /sbin/networkctl: Permission denied Disable /usr/bin/networkctl (requested /bin/networkctl) Warning (blacklisting): cannot open /usr/local/sbin/ss: Permission denied Warning (blacklisting): cannot open /usr/sbin/ss: Permission denied Disable /usr/bin/ss Warning (blacklisting): cannot open /sbin/ss: Permission denied Disable /usr/bin/ss (requested /bin/ss) Warning (blacklisting): cannot open /usr/local/sbin/traceroute: Permission denied Warning (blacklisting): cannot open /usr/sbin/traceroute: Permission denied Warning (blacklisting): cannot open /sbin/traceroute: Permission denied Disable /usr/lib/virtualbox Warning (blacklisting): cannot open /usr/local/sbin/gnome-terminal: Permission denied Warning (blacklisting): cannot open /usr/sbin/gnome-terminal: Permission denied Disable /usr/bin/gnome-terminal Warning (blacklisting): cannot open /sbin/gnome-terminal: Permission denied Disable /usr/bin/gnome-terminal (requested /bin/gnome-terminal) Warning (blacklisting): cannot open /usr/local/sbin/gnome-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/sbin/gnome-terminal.wrapper: Permission denied Disable /usr/bin/gnome-terminal.wrapper Warning (blacklisting): cannot open /sbin/gnome-terminal.wrapper: Permission denied Disable /usr/bin/gnome-terminal.wrapper (requested /bin/gnome-terminal.wrapper) Warning (blacklisting): cannot open /usr/local/sbin/lilyterm: Permission denied Warning (blacklisting): cannot open /usr/sbin/lilyterm: Permission denied Warning (blacklisting): cannot open /sbin/lilyterm: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/lxterminal: Permission denied Warning (blacklisting): cannot open /usr/sbin/lxterminal: Permission denied Warning (blacklisting): cannot open /sbin/lxterminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/mate-terminal: Permission denied Warning (blacklisting): cannot open /usr/sbin/mate-terminal: Permission denied Warning (blacklisting): cannot open /sbin/mate-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/mate-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/sbin/mate-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /sbin/mate-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/pantheon-terminal: Permission denied Warning (blacklisting): cannot open /usr/sbin/pantheon-terminal: Permission denied Warning (blacklisting): cannot open /sbin/pantheon-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/roxterm: Permission denied Warning (blacklisting): cannot open /usr/sbin/roxterm: Permission denied Warning (blacklisting): cannot open /sbin/roxterm: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/roxterm-config: Permission denied Warning (blacklisting): cannot open /usr/sbin/roxterm-config: Permission denied Warning (blacklisting): cannot open /sbin/roxterm-config: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/terminix: Permission denied Warning (blacklisting): cannot open /usr/sbin/terminix: Permission denied Warning (blacklisting): cannot open /sbin/terminix: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/tilix: Permission denied Warning (blacklisting): cannot open /usr/sbin/tilix: Permission denied Warning (blacklisting): cannot open /sbin/tilix: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/urxvtc: Permission denied Warning (blacklisting): cannot open /usr/sbin/urxvtc: Permission denied Warning (blacklisting): cannot open /sbin/urxvtc: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/urxvtcd: Permission denied Warning (blacklisting): cannot open /usr/sbin/urxvtcd: Permission denied Warning (blacklisting): cannot open /sbin/urxvtcd: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xfce4-terminal: Permission denied Warning (blacklisting): cannot open /usr/sbin/xfce4-terminal: Permission denied Warning (blacklisting): cannot open /sbin/xfce4-terminal: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/xfce4-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/sbin/xfce4-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /sbin/xfce4-terminal.wrapper: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/bwrap: Permission denied Warning (blacklisting): cannot open /usr/sbin/bwrap: Permission denied Disable /usr/bin/bwrap Warning (blacklisting): cannot open /sbin/bwrap: Permission denied Disable /usr/bin/bwrap (requested /bin/bwrap) Disable /run/user/1000/doc Disable /run/user/1000/snapd-session-agent.socket Warning (blacklisting): cannot open /usr/local/sbin/dig: Permission denied Warning (blacklisting): cannot open /usr/sbin/dig: Permission denied Disable /usr/bin/dig Warning (blacklisting): cannot open /sbin/dig: Permission denied Disable /usr/bin/dig (requested /bin/dig) Warning (blacklisting): cannot open /usr/local/sbin/dlint: Permission denied Warning (blacklisting): cannot open /usr/sbin/dlint: Permission denied Warning (blacklisting): cannot open /sbin/dlint: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/dns2tcp: Permission denied Warning (blacklisting): cannot open /usr/sbin/dns2tcp: Permission denied Warning (blacklisting): cannot open /sbin/dns2tcp: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/dnssec-: Permission denied Warning (blacklisting): cannot open /usr/sbin/dnssec-: Permission denied Warning (blacklisting): cannot open /sbin/dnssec-: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/dnswalk: Permission denied Warning (blacklisting): cannot open /usr/sbin/dnswalk: Permission denied Warning (blacklisting): cannot open /sbin/dnswalk: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/drill: Permission denied Warning (blacklisting): cannot open /usr/sbin/drill: Permission denied Warning (blacklisting): cannot open /sbin/drill: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/host: Permission denied Warning (blacklisting): cannot open /usr/sbin/host: Permission denied Disable /usr/bin/host Warning (blacklisting): cannot open /sbin/host: Permission denied Disable /usr/bin/host (requested /bin/host) Warning (blacklisting): cannot open /usr/local/sbin/iodine: Permission denied Warning (blacklisting): cannot open /usr/sbin/iodine: Permission denied Warning (blacklisting): cannot open /sbin/iodine: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/kdig: Permission denied Warning (blacklisting): cannot open /usr/sbin/kdig: Permission denied Warning (blacklisting): cannot open /sbin/kdig: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/khost: Permission denied Warning (blacklisting): cannot open /usr/sbin/khost: Permission denied Warning (blacklisting): cannot open /sbin/khost: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/knsupdate: Permission denied Warning (blacklisting): cannot open /usr/sbin/knsupdate: Permission denied Warning (blacklisting): cannot open /sbin/knsupdate: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ldns-: Permission denied Warning (blacklisting): cannot open /usr/sbin/ldns-: Permission denied Warning (blacklisting): cannot open /sbin/ldns-: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ldnsd: Permission denied Warning (blacklisting): cannot open /usr/sbin/ldnsd: Permission denied Warning (blacklisting): cannot open /sbin/ldnsd: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/nslookup: Permission denied Warning (blacklisting): cannot open /usr/sbin/nslookup: Permission denied Disable /usr/bin/nslookup Warning (blacklisting): cannot open /sbin/nslookup: Permission denied Disable /usr/bin/nslookup (requested /bin/nslookup) Warning (blacklisting): cannot open /usr/local/sbin/resolvectl: Permission denied Warning (blacklisting): cannot open /usr/sbin/resolvectl: Permission denied Disable /usr/bin/resolvectl Warning (blacklisting): cannot open /sbin/resolvectl: Permission denied Disable /usr/bin/resolvectl (requested /bin/resolvectl) Warning (blacklisting): cannot open /usr/local/sbin/unbound-host: Permission denied Warning (blacklisting): cannot open /usr/sbin/unbound-host: Permission denied Warning (blacklisting): cannot open /sbin/unbound-host: Permission denied Warning (blacklisting): cannot open /usr/local/sbin/ftp: Permission denied Warning (blacklisting): cannot open /usr/sbin/ftp: Permission denied Disable /usr/bin/netkit-ftp (requested /usr/bin/ftp) Warning (blacklisting): cannot open /sbin/ftp: Permission denied Disable /usr/bin/netkit-ftp (requested /bin/ftp) Warning (blacklisting): cannot open /usr/local/sbin/ssh: Permission denied Warning (blacklisting): cannot open /usr/sbin/ssh: Permission denied Disable /usr/bin/ssh Warning (blacklisting): cannot open /sbin/ssh: Permission denied Disable /usr/bin/ssh (requested /bin/ssh) Warning (blacklisting): cannot open /usr/local/sbin/telnet: Permission denied Warning (blacklisting): cannot open /usr/sbin/telnet: Permission denied Disable /usr/bin/telnet.netkit (requested /usr/bin/telnet) Warning (blacklisting): cannot open /sbin/telnet: Permission denied Disable /usr/bin/telnet.netkit (requested /bin/telnet) Disable /run/user/1000/inaccessible Disable /run/user/1000/pk-debconf-socket Disable /run/user/1000/update-notifier.pid Not blacklist /home/kostya/.VSCodium Not blacklist /home/kostya/.bundle Not blacklist /home/kostya/.cargo Not blacklist /home/kostya/.config/Code Not blacklist /home/kostya/.config/Code - OSS Not blacklist /home/kostya/.config/Electron Not blacklist /home/kostya/.config/VSCodium Not blacklist /home/kostya/.config/electron-flag*.conf Not blacklist /home/kostya/.config/git Not blacklist /home/kostya/.gitconfig Not blacklist /home/kostya/.gradle Not blacklist /home/kostya/.java Not blacklist /home/kostya/.node-gyp Not blacklist /home/kostya/.npm Not blacklist /home/kostya/.npmrc Not blacklist /home/kostya/.nvm Not blacklist /home/kostya/.pylint.d Not blacklist /home/kostya/.vscode Not blacklist /home/kostya/.vscode-oss Not blacklist /home/kostya/.yarn Not blacklist /home/kostya/.yarn-config Not blacklist /home/kostya/.yarncache Not blacklist /home/kostya/.yarnrc Mounting read-only /tmp/.X11-unix 3193 2041 259:1 /tmp/.X11-unix /tmp/.X11-unix ro,nosuid,nodev,noexec,relatime master:1 - ext4 /dev/nvme0n1p1 rw,errors=remount-ro mountid=3193 fsname=/tmp/.X11-unix dir=/tmp/.X11-unix fstype=ext4 Disable /sys/fs Disable /sys/module disable pulseaudio blacklist /run/user/1000/pulse/native blacklist /run/user/1000/pulse disable pipewire rebuilding /etc directory Creating empty /run/firejail/mnt/dns-etc/apport directory Creating empty /run/firejail/mnt/dns-etc/vulkan directory Creating empty /run/firejail/mnt/dns-etc/ltrace.conf file Creating empty /run/firejail/mnt/dns-etc/ca-certificates.conf.dpkg-old file Creating empty /run/firejail/mnt/dns-etc/docker directory Creating empty /run/firejail/mnt/dns-etc/group file Creating empty /run/firejail/mnt/dns-etc/fuse.conf file Creating empty /run/firejail/mnt/dns-etc/ldap directory Creating empty /run/firejail/mnt/dns-etc/nanorc file Creating empty /run/firejail/mnt/dns-etc/sysstat directory Creating empty /run/firejail/mnt/dns-etc/doc-base directory Creating empty /run/firejail/mnt/dns-etc/bash_completion.d directory Creating empty /run/firejail/mnt/dns-etc/menu directory Creating empty /run/firejail/mnt/dns-etc/initramfs-tools directory Creating empty /run/firejail/mnt/dns-etc/brltty.conf file Creating empty /run/firejail/mnt/dns-etc/PackageKit directory Creating empty /run/firejail/mnt/dns-etc/vim directory Creating empty /run/firejail/mnt/dns-etc/ImageMagick-6 directory Creating empty /run/firejail/mnt/dns-etc/crypttab file Creating empty /run/firejail/mnt/dns-etc/binfmt.d directory Creating empty /run/firejail/mnt/dns-etc/su-to-rootrc file Creating empty /run/firejail/mnt/dns-etc/lightdm directory Creating empty /run/firejail/mnt/dns-etc/brltty directory Creating empty /run/firejail/mnt/dns-etc/sane.d directory Creating empty /run/firejail/mnt/dns-etc/usb_modeswitch.d directory Creating empty /run/firejail/mnt/dns-etc/xattr.conf file Creating empty /run/firejail/mnt/dns-etc/machine-id file Creating empty /run/firejail/mnt/dns-etc/X11 directory Creating empty /run/firejail/mnt/dns-etc/i3status.conf file Creating empty /run/firejail/mnt/dns-etc/appstream.conf file Creating empty /run/firejail/mnt/dns-etc/apt directory Creating empty /run/firejail/mnt/dns-etc/hosts file Creating empty /run/firejail/mnt/dns-etc/rsyslog.d directory Creating empty /run/firejail/mnt/dns-etc/python3.8 directory Creating empty /run/firejail/mnt/dns-etc/nvme directory Creating empty /run/firejail/mnt/dns-etc/bash.bashrc file Creating empty /run/firejail/mnt/dns-etc/protocols file Creating empty /run/firejail/mnt/dns-etc/mke2fs.conf file Creating empty /run/firejail/mnt/dns-etc/speech-dispatcher directory Creating empty /run/firejail/mnt/dns-etc/manpath.config file Creating empty /run/firejail/mnt/dns-etc/thermald directory Creating empty /run/firejail/mnt/dns-etc/UPower directory Creating empty /run/firejail/mnt/dns-etc/networkd-dispatcher directory Creating empty /run/firejail/mnt/dns-etc/guest-session directory Creating empty /run/firejail/mnt/dns-etc/hosts.deny file Creating empty /run/firejail/mnt/dns-etc/iproute2 directory Creating empty /run/firejail/mnt/dns-etc/fstab file Creating empty /run/firejail/mnt/dns-etc/python2.7 directory Creating empty /run/firejail/mnt/dns-etc/ld.so.preload file Creating empty /run/firejail/mnt/dns-etc/i3 directory Creating empty /run/firejail/mnt/dns-etc/legal file Creating empty /run/firejail/mnt/dns-etc/wpa_supplicant directory Creating empty /run/firejail/mnt/dns-etc/profile file Creating empty /run/firejail/mnt/dns-etc/sysctl.d directory Creating empty /run/firejail/mnt/dns-etc/e2scrub.conf file Creating empty /run/firejail/mnt/dns-etc/gdb directory Creating empty /run/firejail/mnt/dns-etc/login.defs file Creating empty /run/firejail/mnt/dns-etc/postgresql directory Creating empty /run/firejail/mnt/dns-etc/terminfo directory Creating empty /run/firejail/mnt/dns-etc/sensors.d directory Creating empty /run/firejail/mnt/dns-etc/xdg directory Creating empty /run/firejail/mnt/dns-etc/subuid file Creating empty /run/firejail/mnt/dns-etc/pnm2ppa.conf file Creating empty /run/firejail/mnt/dns-etc/systemd directory Creating empty /run/firejail/mnt/dns-etc/dnsmasq.d directory Creating empty /run/firejail/mnt/dns-etc/depmod.d directory Creating empty /run/firejail/mnt/dns-etc/compizconfig directory Creating empty /run/firejail/mnt/dns-etc/modprobe.d directory Creating empty /run/firejail/mnt/dns-etc/pulse directory Creating empty /run/firejail/mnt/dns-etc/ld.so.conf file Creating empty /run/firejail/mnt/dns-etc/vconsole.conf file Creating empty /run/firejail/mnt/dns-etc/sudoers.d directory Creating empty /run/firejail/mnt/dns-etc/cracklib directory Creating empty /run/firejail/mnt/dns-etc/ssl directory Creating empty /run/firejail/mnt/dns-etc/ubuntu-advantage directory Creating empty /run/firejail/mnt/dns-etc/environment file Creating empty /run/firejail/mnt/dns-etc/pcmcia directory Creating empty /run/firejail/mnt/dns-etc/hostid file Creating empty /run/firejail/mnt/dns-etc/udev directory Creating empty /run/firejail/mnt/dns-etc/mailcap file Creating empty /run/firejail/mnt/dns-etc/.java directory Creating empty /run/firejail/mnt/dns-etc/environment.d directory Creating empty /run/firejail/mnt/dns-etc/wgetrc file Creating empty /run/firejail/mnt/dns-etc/zsh_command_not_found file Creating empty /run/firejail/mnt/dns-etc/avahi directory Creating empty /run/firejail/mnt/dns-etc/cupshelpers directory Creating empty /run/firejail/mnt/dns-etc/qemu-ifup file Creating empty /run/firejail/mnt/dns-etc/alternatives directory Creating empty /run/firejail/mnt/dns-etc/udisks2 directory Creating empty /run/firejail/mnt/dns-etc/libpaper.d directory Creating empty /run/firejail/mnt/dns-etc/chromium directory Creating empty /run/firejail/mnt/dns-etc/ifplugd directory Creating empty /run/firejail/mnt/dns-etc/nsswitch.conf file Creating empty /run/firejail/mnt/dns-etc/brlapi.key file Creating empty /run/firejail/mnt/dns-etc/ppp directory Creating empty /run/firejail/mnt/dns-etc/subgid- file Creating empty /run/firejail/mnt/dns-etc/sudoers file Creating empty /run/firejail/mnt/dns-etc/wireshark directory Creating empty /run/firejail/mnt/dns-etc/tmpfiles.d directory Creating empty /run/firejail/mnt/dns-etc/gimp directory Creating empty /run/firejail/mnt/dns-etc/sgml directory Creating empty /run/firejail/mnt/dns-etc/rsyslog.conf file Creating empty /run/firejail/mnt/dns-etc/openal directory Creating empty /run/firejail/mnt/dns-etc/subuid- file Creating empty /run/firejail/mnt/dns-etc/mysql directory Creating empty /run/firejail/mnt/dns-etc/java-11-openjdk directory Creating empty /run/firejail/mnt/dns-etc/thunderbird directory Creating empty /run/firejail/mnt/dns-etc/libao.conf file Creating empty /run/firejail/mnt/dns-etc/libblockdev directory Creating empty /run/firejail/mnt/dns-etc/debian_version file Creating empty /run/firejail/mnt/dns-etc/networks file Creating empty /run/firejail/mnt/dns-etc/qemu-ifdown file Creating empty /run/firejail/mnt/dns-etc/ethertypes file Creating empty /run/firejail/mnt/dns-etc/timidity directory Creating empty /run/firejail/mnt/dns-etc/pam.conf file Creating empty /run/firejail/mnt/dns-etc/dictionaries-common directory Creating empty /run/firejail/mnt/dns-etc/passwd file Creating empty /run/firejail/mnt/dns-etc/gai.conf file Creating empty /run/firejail/mnt/dns-etc/sensors3.conf file Creating empty /run/firejail/mnt/dns-etc/issue file Creating empty /run/firejail/mnt/dns-etc/rpc file Creating empty /run/firejail/mnt/dns-etc/skel directory Creating empty /run/firejail/mnt/dns-etc/menu-methods directory Creating empty /run/firejail/mnt/dns-etc/locale.gen file Creating empty /run/firejail/mnt/dns-etc/usb_modeswitch.conf file Creating empty /run/firejail/mnt/dns-etc/update-motd.d directory Creating empty /run/firejail/mnt/dns-etc/emacs directory Creating empty /run/firejail/mnt/dns-etc/hostname file Creating empty /run/firejail/mnt/dns-etc/mailcap.order file Creating empty /run/firejail/mnt/dns-etc/gconf directory Creating empty /run/firejail/mnt/dns-etc/pam.d directory Creating empty /run/firejail/mnt/dns-etc/ld.so.cache file Creating empty /run/firejail/mnt/dns-etc/console-setup directory Creating empty /run/firejail/mnt/dns-etc/xml directory Creating empty /run/firejail/mnt/dns-etc/dconf directory Creating empty /run/firejail/mnt/dns-etc/mtools.conf file Creating empty /run/firejail/mnt/dns-etc/ucf.conf file Creating empty /run/firejail/mnt/dns-etc/gtk-3.0 directory Creating empty /run/firejail/mnt/dns-etc/deluser.conf file Creating empty /run/firejail/mnt/dns-etc/groff directory Creating empty /run/firejail/mnt/dns-etc/vdpau_wrapper.cfg file Creating empty /run/firejail/mnt/dns-etc/lintianrc file Creating empty /run/firejail/mnt/dns-etc/dpkg directory Creating empty /run/firejail/mnt/dns-etc/selinux directory Creating empty /run/firejail/mnt/dns-etc/gdm3 directory Creating empty /run/firejail/mnt/dns-etc/bluetooth directory Creating empty /run/firejail/mnt/dns-etc/libibverbs.d directory Creating empty /run/firejail/mnt/dns-etc/chatscripts directory Creating empty /run/firejail/mnt/dns-etc/magic.mime file Creating empty /run/firejail/mnt/dns-etc/dput.cf file Creating empty /run/firejail/mnt/dns-etc/snmp directory Creating empty /run/firejail/mnt/dns-etc/services file Creating empty /run/firejail/mnt/dns-etc/calendar directory Creating empty /run/firejail/mnt/dns-etc/fonts directory Creating empty /run/firejail/mnt/dns-etc/libaudit.conf file Creating empty /run/firejail/mnt/dns-etc/netplan directory Creating empty /run/firejail/mnt/dns-etc/firejail directory Creating empty /run/firejail/mnt/dns-etc/insserv.conf.d directory Creating empty /run/firejail/mnt/dns-etc/lsb-release file Creating empty /run/firejail/mnt/dns-etc/ODBCDataSources directory Creating empty /run/firejail/mnt/dns-etc/python3 directory Creating empty /run/firejail/mnt/dns-etc/ld.so.conf.d directory Creating empty /run/firejail/mnt/dns-etc/inputrc file Creating empty /run/firejail/mnt/dns-etc/update-manager directory Creating empty /run/firejail/mnt/dns-etc/magic file Creating empty /run/firejail/mnt/dns-etc/cowpoke.conf file Creating empty /run/firejail/mnt/dns-etc/timezone file Creating empty /run/firejail/mnt/dns-etc/security directory Creating empty /run/firejail/mnt/dns-etc/update-notifier directory Creating empty /run/firejail/mnt/dns-etc/issue.net file Creating empty /run/firejail/mnt/dns-etc/bindresvport.blacklist file Creating empty /run/firejail/mnt/dns-etc/cups directory Creating empty /run/firejail/mnt/dns-etc/wireguard directory Creating empty /run/firejail/mnt/dns-etc/gnome directory Creating empty /run/firejail/mnt/dns-etc/dbus-1 directory Creating empty /run/firejail/mnt/dns-etc/ca-certificates.conf file Creating empty /run/firejail/mnt/dns-etc/.pwd.lock file Creating empty /run/firejail/mnt/dns-etc/geoclue directory Creating empty /run/firejail/mnt/dns-etc/apache2 directory Creating empty /run/firejail/mnt/dns-etc/debconf.conf file Creating empty /run/firejail/mnt/dns-etc/host.conf file Creating empty /run/firejail/mnt/dns-etc/bash_completion file Creating empty /run/firejail/mnt/dns-etc/gnome-system-tools directory Creating empty /run/firejail/mnt/dns-etc/mercurial directory Creating empty /run/firejail/mnt/dns-etc/resolvconf directory Creating empty /run/firejail/mnt/dns-etc/newt directory Creating empty /run/firejail/mnt/dns-etc/devscripts.conf file Creating empty /run/firejail/mnt/dns-etc/openvpn directory Creating empty /run/firejail/mnt/dns-etc/at.deny file Creating empty /run/firejail/mnt/dns-etc/alsa directory Creating empty /run/firejail/mnt/dns-etc/postgresql-common directory Creating empty /run/firejail/mnt/dns-etc/ghostscript directory Creating empty /run/firejail/mnt/dns-etc/pki directory Creating empty /run/firejail/mnt/dns-etc/fprintd.conf file Creating empty /run/firejail/mnt/dns-etc/gss directory Creating empty /run/firejail/mnt/dns-etc/ufw directory Creating empty /run/firejail/mnt/dns-etc/cni directory Creating empty /run/firejail/mnt/dns-etc/locale.alias file Creating empty /run/firejail/mnt/dns-etc/apm directory Creating empty /run/firejail/mnt/dns-etc/dictd directory Creating empty /run/firejail/mnt/dns-etc/firefox directory Creating empty /run/firejail/mnt/dns-etc/network directory Creating empty /run/firejail/mnt/dns-etc/rygel.conf file Creating empty /run/firejail/mnt/dns-etc/mpv directory Creating empty /run/firejail/mnt/dns-etc/papersize file Creating empty /run/firejail/mnt/dns-etc/hdparm.conf file Creating empty /run/firejail/mnt/dns-etc/init directory Creating empty /run/firejail/mnt/dns-etc/fwupd directory Creating empty /run/firejail/mnt/dns-etc/lighttpd directory Creating empty /run/firejail/mnt/dns-etc/polkit-1 directory Creating empty /run/firejail/mnt/dns-etc/libreoffice directory Creating empty /run/firejail/mnt/dns-etc/libnl-3 directory Creating empty /run/firejail/mnt/dns-etc/gtk-2.0 directory Creating empty /run/firejail/mnt/dns-etc/perl directory Creating empty /run/firejail/mnt/dns-etc/pm directory Creating empty /run/firejail/mnt/dns-etc/subgid file Creating empty /run/firejail/mnt/dns-etc/mime.types file Creating empty /run/firejail/mnt/dns-etc/tor directory Creating empty /run/firejail/mnt/dns-etc/acpi directory Creating empty /run/firejail/mnt/dns-etc/dhcp directory Creating empty /run/firejail/mnt/dns-etc/hosts.allow file Creating empty /run/firejail/mnt/dns-etc/sysctl.conf file Creating empty /run/firejail/mnt/dns-etc/apg.conf file Creating empty /run/firejail/mnt/dns-etc/smi.conf file Creating empty /run/firejail/mnt/dns-etc/glvnd directory Creating empty /run/firejail/mnt/dns-etc/NetworkManager directory Creating empty /run/firejail/mnt/dns-etc/shells file Creating empty /run/firejail/mnt/dns-etc/odbc.ini file Creating empty /run/firejail/mnt/dns-etc/gamemode.ini file Creating empty /run/firejail/mnt/dns-etc/ca-certificates directory Creating empty /run/firejail/mnt/dns-etc/hp directory Creating empty /run/firejail/mnt/dns-etc/popularity-contest.conf file Creating empty /run/firejail/mnt/dns-etc/opt directory Mount-bind /run/firejail/mnt/dns-etc on top of /etc Current directory: /home/kostya DISPLAY=:0 parsed as 0 Mounting read-only /run/firejail/mnt/seccomp 5318 1986 0:101 /seccomp /run/firejail/mnt/seccomp ro,nosuid - tmpfs tmpfs rw,mode=755 mountid=5318 fsname=/seccomp dir=/run/firejail/mnt/seccomp fstype=tmpfs Seccomp directory: ls /run/firejail/mnt/seccomp drwxr-xr-x root root 120 . drwxr-xr-x root root 220 .. -rw-r--r-- kostya kostya 568 seccomp -rw-r--r-- kostya kostya 432 seccomp.32 -rw-r--r-- kostya kostya 0 seccomp.postexec -rw-r--r-- kostya kostya 0 seccomp.postexec32 No active seccomp files Set caps filter 240000 Drop privileges: pid 1, uid 1000, gid 1000, force_nogroups 0 nogroups command not ignored Warning: cleaning all supplementary groups Closing non-standard file descriptors Starting application LD_PRELOAD=(null) execvp argument 0: codium Child process initialized in 108.89 ms Searching $PATH for codium trying #/home/kostya/.nvm/versions/node/v14.15.4/bin/codium# trying #/home/kostya/.local/bin/codium# trying #/home/kostya/bin/codium# trying #/usr/local/sbin/codium# trying #/usr/local/bin/codium# trying #/usr/sbin/codium# trying #/usr/bin/codium# monitoring pid 5

Sandbox monitor: waitpid 5 retval 5 status 0 Sandbox monitor: monitoring 22 monitoring pid 22

Sandbox monitor: waitpid 22 retval 22 status 0 Sandbox monitor: monitoring 25 monitoring pid 25

Sandbox monitor: waitpid 25 retval 25 status 0 Sandbox monitor: monitoring 26 monitoring pid 26

Sandbox monitor: waitpid 26 retval 26 status 0 Sandbox monitor: monitoring 171 monitoring pid 171

Sandbox monitor: waitpid 171 retval 171 status 0

Parent is shutting down, bye...

</p>
</details>

[rusty-snake]

Duplicate of #5012

[rusty-snake]

Fixed by 06dc66c8e3b1aced25d861a8b98ca2582db7f7c9

[rusty-snake]

• [x] The profile (and redirect profile if exists) hasn't already been fixed upstream.
• [x] I have performed a short search for similar issues (to avoid opening a duplicate).

?