AppImage is Problematic under Dev Mode with AppArmor on Ubuntu 24.04 / 23.10 #6
Description
After building the electron app on Ubuntu 24.04 ARM, we're getting:
Running npm run electron
> My-App-Title@1.0.0 electron
> electron .
[77996:0908/150845.938417:FATAL:sandbox/linux/suid/client/setuid_sandbox_host.cc:166] The SUID sandbox helper binary was found, but is not configured correctly. Rather than run without sandboxing I'm aborting now. You need to make sure that /home/parallels/shinyelectron/converted-app/electron-app/node_modules/electron/dist/chrome-sandbox is owned by root and has mode 4755.
/home/parallels/shinyelectron/converted-app/electron-app/node_modules/electron/dist/electron exited with signal SIGTRAPHowever, if we go to where the distribution is made and double-click on the AppImage, we get a working copy of the application:
So, possible, we could:
--no-sandboxwhen running under dev mode on Ubuntu- Try a workaround proposed by netron via afterPack.js
- Add to the
install_nodejs_dependencies()a step related to platform such that we modify behavior on linux:
sudo chown root:root node_modules/electron/dist/chrome-sandbox
sudo chmod 4755 node_modules/electron/dist/chrome-sandbox- Recommend to disable on Ubuntu as this is an edge case:
sudo sysctl -w kernel.apparmor_restrict_unprivileged_unconfined=0
sudo sysctl -w kernel.apparmor_restrict_unprivileged_userns=0Official post on AppArmor changes in 23.10:
https://ubuntu.com/blog/ubuntu-23-10-restricted-unprivileged-user-namespaces
Relevant SO suggesting a custom AppArmor entry:
https://askubuntu.com/a/1528215
Relevant Electron Builder Issue ticket:
New MWE Issue ticket: