[apparmor] Weird problem with LD_LIBRARY_PATH
Hi, I'm trying to setup a chromium profile that is installed in a different location, % cat /opt/chromium/chromium/chromium.sh #!/bin/bash export LD_LIBRARY_PATH=/opt/chromium/libs/ /opt/chromium/chromium/chromium $@ When I enforce the opt.chromium.chromium.chromium.sh policy, it says: (No problem running it if aa is diabled) % /opt/chromium/chromium/chromium.sh /opt/chromium/chromium/chromium: error while loading shared libraries: libicui18n.so.52: cannot open shared object file: No such file or directory But I already have: /opt/chromium/libs/* rm, in that profile, anything wrong? That profile is for /opt/chromium/chromium/chromium, not the script though -- Best Regards, Aaron Lewis - PGP: 0x13714D33 - http://pgp.mit.edu/ Finger Print: 9F67 391B B770 8FF6 99DC D92D 87F6 2602 1371 4D33 -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
Re: [apparmor] Weird problem with LD_LIBRARY_PATH
Oops, When I enforce the opt.chromium.chromium.chromium.sh policy should be When I enforce the opt.chromium.chromium.chromium policy On Tue, May 6, 2014 at 8:40 AM, Aaron Lewis the.warl0ck.1...@gmail.com wrote: Hi, I'm trying to setup a chromium profile that is installed in a different location, % cat /opt/chromium/chromium/chromium.sh #!/bin/bash export LD_LIBRARY_PATH=/opt/chromium/libs/ /opt/chromium/chromium/chromium $@ When I enforce the opt.chromium.chromium.chromium.sh policy, it says: (No problem running it if aa is diabled) % /opt/chromium/chromium/chromium.sh /opt/chromium/chromium/chromium: error while loading shared libraries: libicui18n.so.52: cannot open shared object file: No such file or directory But I already have: /opt/chromium/libs/* rm, in that profile, anything wrong? That profile is for /opt/chromium/chromium/chromium, not the script though -- Best Regards, Aaron Lewis - PGP: 0x13714D33 - http://pgp.mit.edu/ Finger Print: 9F67 391B B770 8FF6 99DC D92D 87F6 2602 1371 4D33 -- Best Regards, Aaron Lewis - PGP: 0x13714D33 - http://pgp.mit.edu/ Finger Print: 9F67 391B B770 8FF6 99DC D92D 87F6 2602 1371 4D33 -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
Re: [apparmor] Weird problem with LD_LIBRARY_PATH
On 05/05/2014 05:40 PM, Aaron Lewis wrote: Oops, When I enforce the opt.chromium.chromium.chromium.sh policy should be When I enforce the opt.chromium.chromium.chromium policy On Tue, May 6, 2014 at 8:40 AM, Aaron Lewis the.warl0ck.1...@gmail.com wrote: Hi, I'm trying to setup a chromium profile that is installed in a different location, % cat /opt/chromium/chromium/chromium.sh #!/bin/bash export LD_LIBRARY_PATH=/opt/chromium/libs/ /opt/chromium/chromium/chromium $@ When I enforce the opt.chromium.chromium.chromium.sh policy, it says: (No problem running it if aa is diabled) % /opt/chromium/chromium/chromium.sh /opt/chromium/chromium/chromium: error while loading shared libraries: libicui18n.so.52: cannot open shared object file: No such file or directory But I already have: /opt/chromium/libs/* rm, in that profile, anything wrong? That profile is for /opt/chromium/chromium/chromium, not the script though Can you provide some more info? What distro/release or version of apparmor and kernel Is there a denied message logged? If not is there a deny causing the logging to be suppressed? You can turn off deny suppressing the audit message by doing (as root) echo -n noquiet /sys/module/apparmor/parameters/audit Does it work in complain mode but not enforce? Or visa versa? -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
Re: [apparmor] Weird problem with LD_LIBRARY_PATH
On Tue, May 06, 2014 at 08:40:09AM +0800, Aaron Lewis wrote: % cat /opt/chromium/chromium/chromium.sh #!/bin/bash export LD_LIBRARY_PATH=/opt/chromium/libs/ /opt/chromium/chromium/chromium $@ When I enforce the opt.chromium.chromium.chromium.sh policy, it says: (No problem running it if aa is diabled) % /opt/chromium/chromium/chromium.sh /opt/chromium/chromium/chromium: error while loading shared libraries: libicui18n.so.52: cannot open shared object file: No such file or directory But I already have: /opt/chromium/libs/* rm, in that profile, anything wrong? That profile is for /opt/chromium/chromium/chromium, not the script though LD_LIBRARY_PATH adds to the library path, it doesn't replace it entirely; on my system, this library is in /usr/lib/x86_64-linux-gnu/libicui18n.so.52.1 Does this library exist in /opt/chromium/libs/ or elsewhere in a path referenced via /etc/ld.so.conf or one of ld.so's defaults? Does your profile allow 'rm' access to this library? Hopefully your system logs will contain more information; if not in /var/log/syslog then perhaps in /var/log/audit/audit.log. Thanks signature.asc Description: Digital signature -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
