Chromium: "Running without the SUID sandbox!" error

chromium
54,451

Solution 1

Download chrome-linux.zip from appropriate folder from here.

Extract the file - will get a folder called chrome-linux.

Move the folder to wherever you want - I move it to my home folder.

  • navigate to that folder

  • open a terminal there

Previous two step might be reversed.

Run these four commands individually:

sudo mv chrome_sandbox chrome-sandbox
sudo chown root chrome-sandbox
sudo chmod 4755 chrome-sandbox
./chrome-wrapper

When I do that, I am good to go.

Solution 2

Do:

$ export DISPLAY=:0.0 && ./chrome --no-sandbox

Solution 3

Development of chrome sandbox stopped early 2016 (latest version of chrome-linux (64bit) that Lyle mentioned is http://commondatastorage.googleapis.com/chromium-browser-continuous/index.html?prefix=Linux_x64/382014/ which is from March 2016, more than a year ago).

See the comment at the TOP of https://chromium.googlesource.com/chromium/src/+/master/docs/linux_suid_sandbox_development.md which refers to the discussion here: https://bugs.chromium.org/p/chromium/issues/detail?id=598454 -- a bug that was closed as Fixed on 21 June 2016.

That discussion seems to indicate that with the appropriate kernel support it is safe to run chrome with --disable-setuid-sandbox which should cause chrome to stop even looking for the sandbox, but refuse to run if your kernel hasn't got the support to safely do so.

Nevertheless, at this moment (April 2017) ubuntu Stable (Xenial) still comes with the sandbox; package chromium-browser contains: /usr/lib/chromium-browser/chrome-sandbox which is setuid root. The reason that I did got the error in the title of this question is that I was running a special version of chrome that was part of a package that came with an application (a SecondLife viewer) that found it necessary to provide their own version of the browser. Needless to say that this downloaded package wasn't installed with setuid root :p (nor would I suggest to change it to 4755, because that doesn't sound very secure to do).

Share:
54,451

Related videos on Youtube

Joe
Author by

Joe

Updated on September 18, 2022

Comments

  • Joe
    Joe almost 2 years

    I've downloaded and unpacked a fresh copy of Chromium (Linux_x64), and when I try to run the chrome binary, this happens:

    [23986:23986:0806/143027:FATAL:browser_main_loop.cc(148)] Running without the SUID sandbox! See https://code.google.com/p/chromium/wiki/LinuxSUIDSandboxDevelopment for more information on developing with the sandbox on.
Aborted (core dumped)

    It doesn't happen with Ubuntu's chromium-browser package. I can bypass the error by running Chromium with --no-sandbox but I'd rather leave the sandbox enabled.

    chrome_sandbox has permissions 4755 and is executable by chrome. Does anyone know how to fix this error?

    It might not be related, but I'm using full-disk encryption on my Ubuntu install.

    • Wilf
      Wilf over 8 years
      Try to use the version from the repos. Don't download random stuff from the net.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Vscode don't show chrome as device
Embed chromium in flutter
Chromium/Chrome out of memory crash / Aw Snap?
How do I change linux mint's default search in Chromium to normal?
android webview call use chrome Browser
Enabling Chromium to sync with Google Account
Aptana internal web browser error, Ubuntu 12.04
How to do a CEF window refresh?
How to have the minimum size possible Chromium Embedded Framework dlls
WebKit for C# 2015