[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

It does work for AppImages, but it is weird in that they don't have an install location, so that has to be adjusted for where they are placed on the system, or we have to set a security xattr on the executable at the time it is chmoded to +x Admittedly orcaslicer doesn't use unprivileged user

[Bug 1950959] Re: [SRU] Missing dependency in libqt5gstreamer-dev

debdiff for Focal attached. ** Patch added: "qt-gstreamer_focal.debdiff" https://bugs.launchpad.net/ubuntu/+source/qtcreator/+bug/1950959/+attachment/5730799/+files/qt-gstreamer_focal.debdiff ** Description changed: [ Impact ] The package libqt5gstreamer-dev is mostly unusable for

[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

Nice! This works with AppImages? If so, I think we have a perfect solution. -- You received this bug notification because you are a member of Kubuntu Bugs, which is subscribed to digikam in Ubuntu. https://bugs.launchpad.net/bugs/2046844 Title: AppArmor user namespace creation restrictions

[Bug 1950959] Re: Missing dependency in libqt5gstreamer-dev

debdiff attached for Jammy. ** Changed in: qtcreator (Ubuntu) Status: New => Fix Released ** Changed in: qtcreator (Ubuntu Focal) Status: New => In Progress ** Changed in: qtcreator (Ubuntu Focal) Assignee: (unassigned) => Sudip Mukherjee (sudipmuk) ** Changed in: qtcreator

[Bug 1950959] Re: Missing dependency in libqt5gstreamer-dev

** Also affects: qtcreator (Ubuntu Focal) Importance: Undecided Status: New ** Also affects: qtcreator (Ubuntu Jammy) Importance: Undecided Status: New -- You received this bug notification because you are a member of Kubuntu Bugs, which is subscribed to qtcreator in Ubuntu.

[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

Yes it is known that Electron based apps are broken by this, it is unfortunate but there is no getting around it if we are going to tighten security around unprivileged user namespaces. As for apps that we don't specifically support (Electron or otherwise), we are still adding profiles for as

[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

Thanks! I'll be on the hunt for any more that act like this and add them to the report. I'm also happy to help prep uploads (I'm not an MOTU yet so I can't upload on my own, but I can prep the packaging). -- You received this bug notification because you are a member of Kubuntu Bugs, which is

[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

Hey Aaron, yes there are many packages that now require an apparmor profile. There is a shortcut, in between profile that can be used atm so that a full profile doesn't need to be developed to get applications that require unprivileged user namespaces working. I will get a patch together to add

[Bug 2046844] Re: AppArmor user namespace creation restrictions cause many applications to crash with SIGTRAP

This bug also breaks Electron-based AppImages, such as Balena Etcher. While we specifically don't support these apps, I find it very likely that Ubuntu has potentially hundreds of thousands of users of these kinds of apps. -- You received this bug notification because you are a member of Kubuntu

[Bug 2046844] Re: Epiphany browser does not launch on Ubuntu 24.04: core dumped

This is affecting Falkon and qutebrowser as well. Just now me and a couple of the Lubuntu devs did a deep debugging session and found the issue. About four days ago, an upload was made in AppArmor that no longer allows unprivileged programs to create user namespaces. See