No usable sandbox! SUID sandbox kernel error


#1

Hi!

I am on Ubuntu 16.04 with kernel:

$ uname -r
4.16.0-rc4+

Things worked fine under kernel 4.13. I decided to upgrade in hopes of it magically solving a CPU scheduling problem I had (it didn’t), so I probably ought to just switch back to my old kernel.
I leaned out the new kernel a lot, but probably cut out something I needed…

The error message (typed instead of copy+paste, so possible typos):

[3159:3195:0307.212718.338175:FATAL:zygote_host_impl_linux.cc(126) No usable sandbox! Update your kernel or see https://chromium.googlesource.com/chromium/src/+/master/docs/linux_suid_sandbox_development.md for more information on developing with the SUID sandbox. If you want to live dangerously and need an immediate workaround, you can try using --no-sandbox.
Aborted.

I followed the instructions here:

I can:

$ cat /etc/sysctl.d/00-local-userns.conf
kernel.unprivileged_userns_clone=1
$ service procps restart
$ brave
[3159:3195:0307.212718.338175:FATAL:zygote_host_impl_linux.cc(126) No usable
sandbox! Update your kernel or see https://chromium.googlesource.com/chromium/sr
c/+/master/docs/linux_suid_sandbox_development.md for more information on develo
ping with the SUID sandbox. If you want to live dangerously and need an immediat
e workaround, you can try using --no-sandbox.
Aborted.

So no luck.

I saw this:


But in menuconfig instead of as in the above link:

General setup —>
     -*- Namespaces support —>
         [*] PID Namespaces
         [*] Network namespace

I have:

General setup —>
     - - - Namespaces support

Maybe I need to hund down dependencies to turn this option on?
Now, online I also see things suggesting that a sandbox may no longer be necessary for Chromium:

But if that’s not the case yet, I’d rather revert to the old kernel than live dangerously.
[Especially because “revert” just means “pick a different option in the grub boot menu”.]

Any suggestions on probable fixes?

$ brave --no-sandbox
[14545:14545:0308/045842.220296:ERROR:gl_implementation.cc(292)] Failed to load /usr/lib/brave/swiftshader/libGLESv2.so: /usr/lib/brave/swiftshader/libGLESv2.so: cannot open shared object file: No such file or directory
[14545:14545:0308/045842.222859:ERROR:viz_main_impl.cc(196)] Exiting GPU process due to errors during initialization
[14553:14553:0308/045842.247801:ERROR:gl_implementation.cc(292)] Failed to load /usr/lib/brave/swiftshader/libGLESv2.so: /usr/lib/brave/swiftshader/libGLESv2.so: cannot open shared object file: No such file or directory
[14553:14553:0308/045842.249239:ERROR:viz_main_impl.cc(196)] Exiting GPU process due to errors during initialization
[14561:14561:0308/045842.282270:ERROR:gl_implementation.cc(292)] Failed to load /usr/lib/brave/swiftshader/libGLESv2.so: /usr/lib/brave/swiftshader/libGLESv2.so: cannot open shared object file: No such file or directory
[14561:14561:0308/045842.283717:ERROR:viz_main_impl.cc(196)] Exiting GPU process due to errors during initialization
[14569:14569:0308/045842.312716:ERROR:gl_implementation.cc(292)] Failed to load /usr/lib/brave/swiftshader/libGLESv2.so: /usr/lib/brave/swiftshader/libGLESv2.so: cannot open shared object file: No such file or directory
[14569:14569:0308/045842.314063:ERROR:viz_main_impl.cc(196)] Exiting GPU process due to errors during initialization
[14515:14537:0308/045842.317247:ERROR:browser_gpu_channel_host_factory.cc(121)] Failed to launch GPU process.
Crash reporting enabled
[14515:14537:0308/045843.145150:ERROR:browser_gpu_channel_host_factory.cc(121)] Failed to launch GPU process.
[14515:14515:0308/045843.156261:ERROR:gpu_process_transport_factory.cc(1009)] Lost UI shared context.
[14515:14515:0308/045843.580735:ERROR:CONSOLE(1)] "(node) warning: possible EventEmitter memory leak detected. %d listeners added. Use emitter.setMaxListeners() to increase limit.", source: chrome://brave/usr/lib/brave/resources/app.asar/app/extensions/brave/gen/app.entry.js (1)
[14515:14515:0308/045843.580782:ERROR:CONSOLE(1)] "(node) warning: possible EventEmitter memory leak detected. %d listeners added. Use emitter.setMaxListeners() to increase limit.", source: chrome://brave/usr/lib/brave/resources/app.asar/app/extensions/brave/gen/app.entry.js (1)
[14515:14515:0308/045844.558989:ERROR:CONSOLE(1)] "(node) warning: possible EventEmitter memory leak detected. %d listeners added. Use emitter.setMaxListeners() to increase limit.", source: chrome://brave/usr/lib/brave/resources/app.asar/app/extensions/brave/gen/app.entry.js (1)
[14515:14515:0308/045844.559025:ERROR:CONSOLE(1)] "(node) warning: possible EventEmitter memory leak detected. %d listeners added. Use emitter.setMaxListeners() to increase limit.", source: chrome://brave/usr/lib/brave/resources/app.asar/app/extensions/brave/gen/app.entry.js (1)

but it does run. My GPU isn’t supported under 4.16 (but it is under 4.13 via non-mainlined dkms), so that’s another reason to switch anyway. Thought I’d try this first.


#2

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.