Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

firejail Error: invalid --overlay-tmpfs command line option
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo
View previous topic :: View next topic  
Author Message
gangstervano
Tux's lil' helper
Tux's lil' helper


Joined: 15 Aug 2016
Posts: 80
PostPosted: Fri Jul 02, 2021 12:48 am    Post subject: firejail Error: invalid --overlay-tmpfs command line option Reply with quote
Hi,

When I try run
Code:

firejail --noprofile --overlay-tmpfs


I get an error message

Code:
Error: invalid --overlay-tmpfs command line option


What is the problem?
Code:
firejail --version
firejail version 0.9.64.4

Compile time support:
        - AppArmor support is disabled
        - AppImage support is enabled
        - chroot support is enabled
        - D-BUS proxy support is enabled
        - file and directory whitelisting support is enabled
        - file transfer support is enabled
        - firetunnel support is disabled
        - networking support is enabled
        - overlayfs support is disabled
        - private-home support is enabled
        - private-cache and tmpfs as user enabled
        - SELinux support is disabled
        - user namespace support is enabled
        - X11 sandboxing support is enabled


Why overlayfs support is disabled? How can I make it enable?
Back to top
View user's profile Send private message
Jaglover
Watchman
Watchman


Joined: 29 May 2005
Posts: 8291
Location: Saint Amant, Acadiana
PostPosted: Fri Jul 02, 2021 1:32 am    Post subject: Reply with quote
You could use EXTRA_ECONF variable or file a bug with feature request.
_________________
My Gentoo installation notes.
Please learn how to denote units correctly!
Back to top
View user's profile Send private message
Hu
Administrator
Administrator


Joined: 06 Mar 2007
Posts: 22162
PostPosted: Fri Jul 02, 2021 1:35 am    Post subject: Reply with quote
The immediate workaround for <sys-apps/firejail-0.9.64.4: root privilege escalation (CVE-2021-26910) was that upstream forcibly disabled overlayfs support. As I read their current configure.ac, they never reverted that, so overlayfs remains locked out. You could locally revert that if you do not care about the root privilege escalation security bug, or wait for upstream to issue a proper fix.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy