karmic evince apparmor profile is too strict -- can't start on clean install
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evince (Ubuntu) |
Invalid
|
Low
|
Ubuntu Desktop Bugs |
Bug Description
Binary package hint: evince
I have a fairly fresh karmic install (originally around alpha5, updated to the latest), and with a clean new home directory, evince won't start... it shows:
(evince:23877): EvinceDocument-
and exits, and the kernel log has:
[73533.671209] type=1503 audit(125744505
This is because .gnome2/evince is created by evince on the first run by a user. I can work around this by doing "mkdir ~/.gnome2/evince" but of course someone who doesn't understand the cryptic message is just going to be stuck. So I think the evince profile should be updated to allow creating this directory.
ProblemType: Bug
Architecture: amd64
Date: Thu Nov 5 10:17:40 2009
DistroRelease: Ubuntu 9.10
Package: evince 2.28.1-0ubuntu1
ProcEnviron:
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
ProcVersionSign
SourcePackage: evince
Uname: Linux 2.6.31-14-generic x86_64
By the way, even after creating ~/.gnome2/evince, apparmor is still breaking a few more minor things with evince... it works and is able to view documents, but:
[73811.496586] type=1503 audit(125744533 0.292:94) : operation="open" pid=23890 parent=11875 profile= "/usr/bin/ evince" requested_ mask="r: :" denied_mask="r::" fsuid=33217 ouid=33217 name="/ users/rdreier/ .ICEauthority" 0.362:95) : operation="open" pid=23890 parent=11875 profile= "/usr/bin/ evince" requested_ mask="r: :" denied_mask="r::" fsuid=33217 ouid=33217 name="/ users/rdreier/ .recently- used.xbel" 0.401:96) : operation="mknod" pid=23890 parent=11875 profile= "/usr/bin/ evince" requested_ mask="w: :" denied_mask="w::" fsuid=33217 ouid=33217 name="/ users/rdreier/ .gnome2/ evince/ evince- crashed. 95T02U"
[73811.566182] type=1503 audit(125744533
[73811.609963] type=1503 audit(125744533
which lead to:
(evince:23905): EggSMClient-WARNING **: Failed to connect to the session manager: None of the authentication protocols specified are supported
(evince:23905): Gtk-WARNING **: Attempting to read the recently used resources file at `/users/ rdreier/ .recently- used.xbel' , but the parser failed: Failed to open file '/users/ rdreier/ .recently- used.xbel' : Permission denied.
** (evince:23905): WARNING **: Failed to create file '/users/ rdreier/ .gnome2/ evince/ evince- crashed. Z2S72U' : Permission denied