We use cookies to ensure you get the best experience on our website
首頁 探索 說明
註冊 登入
0ct0pu5
/
ente
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
瀏覽代碼

--no-sandbox does not prevent the SUID abort when added from JS

From https://github.com/toeverything/AFFiNE/issues/6722#issuecomment-2081805954

> Disable sandboxing entirely by launching with --no-sandbox. Adding this
  argument from JS is unfortunately insufficient, as the GPU process is launched
  before the main process JS is run.

Ref:
* https://github.com/electron/electron/issues/17972
Manav Rathi 1 年之前
父節點
3ba7bcbf06
當前提交
644e67f648
共有 2 個文件被更改,包括 32 次插入21 次删除
統一視圖 顯示文件統計
  1. 0 10
      desktop/src/main.ts
  2. 32 11
      docs/docs/photos/troubleshooting/desktop-install/index.md

+ 0 - 10
desktop/src/main.ts
查看文件 

@@ -133,15 +133,6 @@ const registerPrivilegedSchemes = () => {
 
     ]);
 
     ]);
 
 };
 
 };
 
 
 
-/**
 
- * The Chromium sandbox causes the app to fail to run on various Linux
 
- * distributions. Reproducible on Ubuntu 24.
 
- *
 
- * See: https://github.com/electron/electron/issues/17972
 
- */
 
-const suidWorkaroundOnLinux = () =>
 
-    process.platform == "linux" && app.commandLine.appendSwitch("no-sandbox");
 
-
 
 /**
 
 /**
 
  * Create an return the {@link BrowserWindow} that will form our app's UI.
 
  * Create an return the {@link BrowserWindow} that will form our app's UI.
 
  *
 
  *
 
@@ -365,7 +356,6 @@ const main = () => {
 
 
 
     initLogging();
 
     initLogging();
 
     logStartupBanner();
 
     logStartupBanner();
 
-    suidWorkaroundOnLinux();
 
     // The order of the next two calls is important
 
     // The order of the next two calls is important
 
     setupRendererServer();
 
     setupRendererServer();
 
     registerPrivilegedSchemes();
 
     registerPrivilegedSchemes();

+ 32 - 11
docs/docs/photos/troubleshooting/desktop-install/index.md
查看文件 

@@ -9,6 +9,19 @@ The latest version of the Ente Photos desktop app can be downloaded from
 
 [ente.io/download](https://ente.io/download). If you're having trouble, please
 
 [ente.io/download](https://ente.io/download). If you're having trouble, please
 
 see if any of the following cases apply.
 
 see if any of the following cases apply.
 
 
 
+## Windows
 
+
 
+If the app stops with an "A JavaScript error occurred in the main process - The
 
+specified module could not be found" error on your Windows machine when you
 
+start it, then you might need to install the VC++ runtime from Microsoft.
 
+
 
+This is what the error looks like:
 
+
 
+![Error when VC++ runtime is not installed](windows-vc.png){width=500px}
 
+
 
+You can install the Microsoft VC++ redistributable runtime from here:<br/>
 
+https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist?view=msvc-170#latest-microsoft-visual-c-redistributable-version
 
+
 
 ## AppImages on ARM64 Linux
 
 ## AppImages on ARM64 Linux
 
 
 
 If you're on an ARM64 machine running Linux, and the AppImages doesn't do
 
 If you're on an ARM64 machine running Linux, and the AppImages doesn't do
 
@@ -21,13 +34,13 @@ sudo ln -s /usr/lib/aarch64-linux-gnu/libz.so{.1,}
 
 
 
 It is possible that the exact path might be different on your machine. Briefly,
 
 It is possible that the exact path might be different on your machine. Briefly,
 
 what we need to do is create `libz.so` as an alias for `libz.so.1`. For more
 
 what we need to do is create `libz.so` as an alias for `libz.so.1`. For more
 
-details, see the following bugs in upstream repositories:
 
+details, see the following upstream issues:
 
 
 
 -   libz.so cannot open shared object file on ARM64 -
 
 -   libz.so cannot open shared object file on ARM64 -
 
-    [/github.com/AppImage/AppImageKit/issues/1092](https://github.com/AppImage/AppImageKit/issues/1092)
 
+    [AppImage/AppImageKit/issues/1092](https://github.com/AppImage/AppImageKit/issues/1092)
 
 
 
 -   libz.so: cannot open shared object file with Ubuntu arm64 -
 
 -   libz.so: cannot open shared object file with Ubuntu arm64 -
 
-    [github.com/electron-userland/electron-builder/issues/7835](https://github.com/electron-userland/electron-builder/issues/7835)
 
+    [electron-userland/electron-builder/issues/7835](https://github.com/electron-userland/electron-builder/issues/7835)
 
 
 
 ## AppImage says it requires FUSE
 
 ## AppImage says it requires FUSE
 
 
 
@@ -40,15 +53,23 @@ tl;dr; for example, on Ubuntu,
 
 sudo apt install libfuse2
 
 sudo apt install libfuse2
 
 ```
 
 ```
 
 
 
-## Windows
 
+## Linux SUID error
 
 
 
-If the app stops with an "A JavaScript error occurred in the main process - The
 
-specified module could not be found" error on your Windows machine when you
 
-start it, then you might need to install the VC++ runtime from Microsoft.
 
+On some Linux distributions, if you run the AppImage from the CLI, it might fail
 
+with the following error:
 
 
 
-This is what the error looks like:
 
+> The SUID sandbox helper binary was found, but is not configured correctly.
 
 
 
-![Error when VC++ runtime is not installed](windows-vc.png){width=500px}
 
+This happens when you try to run the AppImage from the command line. If you
 
+instead double click on the AppImage in your Files browser, then it should start
 
+properly.
 
 
 
-You can install the Microsoft VC++ redistributable runtime from here:<br/>
 
-https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist?view=msvc-170#latest-microsoft-visual-c-redistributable-version
 
+If you do want to run it from the command line, you can do so by passing the
 
+`--no-sandbox` flag when executing the AppImage. e.g.
 
+
 
+```sh
 
+./ente.AppImage --no-sandbox
 
+```
 
+
 
+For more details, see this upstream issue on
 
+[electron](https://github.com/electron/electron/issues/17972).

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5