Bug#987045: skypeforlinux fails to start using supplied profile
Hi Phil, On Wed, May 05, 2021 at 03:41:43PM +0200, phil.night...@gmail.com wrote: > Disable /var/cache/home/nightowl/chromium (requested > /home/nightowl/.cache/chromium) > Disable /var/cache/home/nightowl/keepassxc (requested > /home/nightowl/.cache/keepassxc) > Disable /var/cache/home/nightowl/mozilla (requested > /home/nightowl/.cache/mozilla) > Error: tmpfs outside $HOME is only available for root > Error: proc 7050 cannot sync with peer: unexpected EOF > Peer 7051 unexpectedly exited with status 1 the problem seems to be related to your specific setup. Somehow your ~/.cache/ is inside /var/cache (by using symlinks?)? The skypeforlinux profile includes the electron profile, which has the line: private-cache This asks firejail to create a private cache (~/.cache) directory, which is implemented by mounting a tmpfs directory over the original .cache directory. But as your .cache directory is not actually inside your home directory, firejail refuses to do that, because non-root users are not allowed to mount tmpfs directories outside their home. To keep your cache setup you can try the following: Create a file /etc/firejail/skypeforlinux.local and add the following line into it: ignore private-cache This will ask firejail while reading the profiles to ignore the "private-cache" setting. It should then no longer try to mount a tmpfs over it. (This will also cause your cache to be no longer private, i.e. skypeforlinux could read other cached files.) Kind regards, Reiner signature.asc Description: PGP signature
Bug#987045: skypeforlinux fails to start using supplied profile
Control: found -1 0.9.64.4-1 Hi Phil, On Fri, Apr 16, 2021 at 01:03:16PM +0200, Phil Nightowl wrote: > Launching skypeforlinux version 8.71.0.36 using supplied profile fails with > the following error: > > Error: tmpfs outside $HOME is only available for root > Error: proc 13576 cannot sync with peer: unexpected EOF > > Downgrading skype to 8.67.0.87 does not help, earlier versions are not > available any longer. > > I also tried disabling AppArmor as suggested in upstream's issue #2933 > (https://github.com/netblue30/firejail/issues/2933) by creating > /etc/firejail/skypeforlinux.local containing > > ignore apparmor > > This did not help for me, as in fact expected, since the errors mentioned > in that issue are different. > > I assume this has to be fixed upstream anyway. I'm not sure why it tries to use tmpfs outside home. Can you please show the output of "firejail --debug skypeforlinux"? Kind regards, Reiner signature.asc Description: PGP signature
Bug#987045: skypeforlinux fails to start using supplied profile
Package: firejail-profiles Version: 0.9.64.4-1~bpo10+1 Launching skypeforlinux version 8.71.0.36 using supplied profile fails with the following error: Error: tmpfs outside $HOME is only available for root Error: proc 13576 cannot sync with peer: unexpected EOF Downgrading skype to 8.67.0.87 does not help, earlier versions are not available any longer. I also tried disabling AppArmor as suggested in upstream's issue #2933 (https://github.com/netblue30/firejail/issues/2933) by creating /etc/firejail/skypeforlinux.local containing ignore apparmor This did not help for me, as in fact expected, since the errors mentioned in that issue are different. I assume this has to be fixed upstream anyway. Best regards, Phil
