Open CocoR55 opened 2 years ago
CocoR55
commented
2 years ago With the same hard, with Linux Mint 20.3 Cinnamon or Mate, there is no problem with the menu. If I make difference between the two profiles. At menulibre.profile for XFCE, there are more object. ld.so.cache,ld.so.preload for XFCE and not for Cinnamon in opposite, Cinnamon has include disable-passwdmgr..inc while XFCE there is not.
CocoR55
commented
2 years ago I copied that I saw in Various profiles #3561 so, menulibre.profile becomes:
# Firejail profile for menulibre
# Description: Create desktop and menu launchers easily
# This file is overwritten after every install/update
# Persistent local customizations
include menulibre.local
# Persistent global definitions
include globals.local
ignore read-only ${HOME}/.local/share/applications
ignore read-only ${HOME}/.config/menus
noblacklist ${HOME}/.gnome/apps
# Allow python (blacklisted by disable-interpreters.inc)
include allow-python2.inc
include allow-python3.inc
include disable-common.inc
include disable-devel.inc
include disable-exec.inc
include disable-interpreters.inc
include disable-programs.inc
include disable-xdg.inc
#include disable-passwdmgr.inc
# Whitelist your system icon directory,varies by distro
whitelist /usr/share/app-info
whitelist /usr/share/desktop-directories
whitelist /usr/share/icons
whitelist /usr/share/menulibre
whitelist /var/lib/app-info/icons
whitelist /var/lib/flatpak/exports/share/applications
whitelist /var/lib/flatpak/exports/share/icons
include whitelist-runuser-common.inc
include whitelist-usr-share-common.inc
include whitelist-var-common.inc
apparmor
caps.drop all
machine-id
net none
nodvd
no3d
nogroups
noinput
nonewprivs
noroot
nosound
notv
nou2f
novideo
protocol unix
seccomp
seccomp.block-secondary
shell none
tracelog
disable-mnt
private-cache
private-dev
private-etc alternatives,dconf,fonts,gtk-3.0,ld.so.cache,ld.so.preload,locale.alias,locale.conf,mime.types,nsswitch.conf,passwd,pki,selinux,X11,xdg
private-tmp
dbus-user none
dbus-system none
read-write ${HOME}/.config/menus
read-write ${HOME}/.gnome/apps
read-write ${HOME}/.local/share/applications
read-write ${HOME}/.local/share/flatpak/exportsI need to comment include disable-passwdmgr.inc else menulibre does not start. I don't understand why menulibre.profile starts with:
ignore read-only ${HOME}/.local/share/applications
ignore read-only ${HOME}/.config/menusand finishes with:
ignore read-only ${HOME}/.local/share/applications
ignore read-only ${HOME}/.config/menusfinishes with: (sorry for confusion)
read-write ${HOME}/.local/share/applications
read-write ${HOME}/.local/share/flatpak/exportsIssue is still present. applications/gdebi.desktop Exec 'gdebi-gk %f was not found in the tree applications/gparted.desktop Exec '/usr/sbin/gparted %f was not found in the tree etc...
kmk3
commented
2 years ago (Offtopic)
@CocoR55 On future comments, please put code (and profile contents) inside code blocks to make it more readable and to prevent it from being parsed as markdown.
Example:
```
# Allow python (blacklisted by disable-interpreters.inc)
include allow-python2.inc
include allow-python3.inc
```Result:
# Allow python (blacklisted by disable-interpreters.inc)
include allow-python2.inc
include allow-python3.incDocumentation:
CocoR55
commented
2 years ago OK I will do
Description
This problem occurs with Linux Mint XFCE 20.3 and Menulibre under Firejail version 0.9.68.
Process to reproduce the issue
Right-click on the Menu icon and then edit the applications An orange band is present in front of the menu. Click for more details
If menulibre is commented in /etc/firejail/firecfg.config, there is no problem. If menulibre is not commented in /etc/firejail/firecfg.config, problems reported in the window are present as:
applications/gdebi.desktop Exec 'gdebi-gk %f was not found in the tree applications/gparted.desktop Exec '/usr/sbin/gparted %f was not found in the tree etc...