FireJail + TBB alpha breaks it

Steps to produce it:

Testing environment: Debian

Install: FireJail

apt install firejail

Download: TBB alpha 8.0a10

commands to use:

(inside TBB launcher path)

firejail ./start-tor-browser.desktop    

(in case you are inside whonix)

firejail torbrowser    

(in case you download it from torbrowser-downloader)

firejail torbrowser-launcher         

Trac:
Username: bo0od

added component::applications/tor browser owner::tbb-team priority::high reporter::bo0od resolution::not a bug severity::normal status::closed type::defect labels

Trac:
Username: bo0od

Trac:
Username: bo0od

Does this happen with our first release candidate for 8.0 as well? (https://people.torproject.org/~boklm/builds/8.0-build2/)

Firefox 60.1.0esr works fine with FireJail? (You can test it by downloading a bundle from https://www.mozilla.org/en-US/firefox/organizations/all/)

Trac:
Status: new to needs_information
Severity: Blocker to Normal

Replying to gk:

Does this happen with our first release candidate for 8.0 as well? (https://people.torproject.org/~boklm/builds/8.0-build2/)

Firefox 60.1.0esr works fine with FireJail? (You can test it by downloading a bundle from https://www.mozilla.org/en-US/firefox/organizations/all/)

Both of them confirmed the same issue as above.

Trac:
Username: bo0od

Replying to bo0od:

What does "breaks it" mean?

What does it print on the commandline?

Is this related to https://github.com/netblue30/firejail/issues/2027

Replying to cypherpunks3:

Replying to bo0od:

What does "breaks it" mean?

What does it print on the commandline?

Is this related to https://github.com/netblue30/firejail/issues/2027

i dont think its related. here is the commandline text:

user@user:~/Downloads/tor-browser-linux64-8.0a10_en-US/tor-browser_en-US$ firejail ./start-tor-browser.desktop 
Reading profile /etc/firejail/default.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/disable-passwdmgr.inc

** Note: you can use --noprofile to disable default.profile **

Parent pid 3042, child pid 3043
Child process initialized
Launching './Browser/start-tor-browser --detach'...

and dont forget to check the uploaded image.

Trac:
Username: bo0od

Replying to bo0od:

Replying to gk:

Does this happen with our first release candidate for 8.0 as well? (https://people.torproject.org/~boklm/builds/8.0-build2/)

Firefox 60.1.0esr works fine with FireJail? (You can test it by downloading a bundle from https://www.mozilla.org/en-US/firefox/organizations/all/)

Both of them confirmed the same issue as above.

That's a Firefox bug then. Or maybe it's not even that. Could you file an upstream bug at Mozilla's bug tracker (https://bugzilla.mozilla.org) linking back to it in this ticket? Does setting security.sandbox.content.level to something lower fix the problem?

Replying to gk:

Replying to bo0od:

Replying to gk:

Does this happen with our first release candidate for 8.0 as well? (https://people.torproject.org/~boklm/builds/8.0-build2/)

Firefox 60.1.0esr works fine with FireJail? (You can test it by downloading a bundle from https://www.mozilla.org/en-US/firefox/organizations/all/)

Both of them confirmed the same issue as above.

That's a Firefox bug then. Or maybe it's not even that. Could you file an upstream bug at Mozilla's bug tracker (https://bugzilla.mozilla.org) linking back to it in this ticket? Does setting security.sandbox.content.level to something lower fix the problem?

Alright here you go:

https://bugzilla.mozilla.org/show_bug.cgi?id=1488078

Trac:
Username: bo0od

Tried to reproduce it with build2 but only see Tor Launcher with the "Tor unexpectedly exited." message without any message in the Clipboard. Output in the terminal is the same as in comment:4.

fuck this is even gone worst , now tbb 60 gone to the stable phase.

every default firejail profiles will break tbb.

Trac:
Username: bo0od

according to FireJail upstream: firejail 0.9.54 fixed that issue.

https://github.com/netblue30/firejail/issues/2110

Trac:
Username: bo0od

alright this is getting ugly , TBB SPECIFIC issue with firejail because even the new version couldnt fix TBB problem while FireFox works fine with the new firejail.(sadly it breaks every TBB stable&alpha)

in order to test new firejail new profiles, just install it from debian backports:

sudo su -c "echo -e 'deb http://http.debian.net/debian stretch-backports main contrib non-free' > /etc/apt/sources.list.d/backports.list"
sudo apt update
sudo apt -t stretch-backports install firejail

then run firejail according to the suitable platform environment as i mentioned in my topic.

if you want to remove firejail+debian backports:

sudo apt remove --purge firejail
sudo rm /etc/apt/sources.list.d/backports.list

Trac:
Username: bo0od

according to the upstream they said to:

Fixes for tor browser aren't part of 0.9.54, they will be in 0.9.56. For now you may copy profiles manually:
https://github.com/netblue30/firejail/blob/master/etc/start-tor-browser.profile
https://github.com/netblue30/firejail/blob/master/etc/torbrowser-launcher.profile

Trac:
Username: bo0od

New Ticket to fix FireJail with TBB 8.0.2:

https://github.com/netblue30/firejail/issues/2136

Trac:
Username: bo0od

I don't think this is a bug in Tor Browser land.

Trac:
Status: needs_information to closed
Resolution: N/A to not a bug

closed

moved to tpo/applications/tor-browser#27407 (closed)