[GH-ISSUE #5532] audacity: error while loading shared libraries: lib-project-rate.so (private-bin) #3024

New issue

Open

opened 2026-05-05 09:40:31 -06:00 by gitea-mirror · 7 comments

gitea-mirror commented 2026-05-05 09:40:31 -06:00

Owner

Copy link

Originally created by @anomalocaris452 on GitHub (Dec 19, 2022).
Original GitHub issue: https://github.com/netblue30/firejail/issues/5532

Manjaro
Audacity 3.2.2
firejail 0.9.70

Reading profile /etc/firejail/audacity.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-exec.inc
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/disable-shell.inc
Reading profile /etc/firejail/disable-xdg.inc
Reading profile /etc/firejail/whitelist-var-common.inc
Parent pid 130485, child pid 130486
1 program installed in 186.67 ms
Warning: /sbin directory link was not blacklisted
Warning: /usr/sbin directory link was not blacklisted
Warning: not remounting /run/user/1000/doc
Warning: not remounting /run/user/1000/gvfs
Blacklist violations are logged to syslog
Warning: Cannot confine the application using AppArmor.
Maybe firejail-default AppArmor profile is not loaded into the kernel.
As root, run "aa-enforce firejail-default" to load it.
Child process initialized in 676.32 ms
audacity: error while loading shared libraries: lib-project-rate.so: cannot open shared object file: No such file or directory       

Parent is shutting down, bye...

Originally created by @anomalocaris452 on GitHub (Dec 19, 2022). Original GitHub issue: https://github.com/netblue30/firejail/issues/5532 Manjaro Audacity 3.2.2 firejail 0.9.70 ``` Reading profile /etc/firejail/audacity.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-exec.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/disable-shell.inc Reading profile /etc/firejail/disable-xdg.inc Reading profile /etc/firejail/whitelist-var-common.inc Parent pid 130485, child pid 130486 1 program installed in 186.67 ms Warning: /sbin directory link was not blacklisted Warning: /usr/sbin directory link was not blacklisted Warning: not remounting /run/user/1000/doc Warning: not remounting /run/user/1000/gvfs Blacklist violations are logged to syslog Warning: Cannot confine the application using AppArmor. Maybe firejail-default AppArmor profile is not loaded into the kernel. As root, run "aa-enforce firejail-default" to load it. Child process initialized in 676.32 ms audacity: error while loading shared libraries: lib-project-rate.so: cannot open shared object file: No such file or directory Parent is shutting down, bye... ```

gitea-mirror added the

needinfo

label 2026-05-05 09:40:31 -06:00

gitea-mirror commented 2026-05-05 09:40:32 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Dec 19, 2022):

Can you check if 72eac26725 fixed that too.

<!-- gh-comment-id:1357952806 --> @rusty-snake commented on GitHub (Dec 19, 2022): Can you check if https://github.com/netblue30/firejail/commit/72eac267253543dd00e802d01123c4af5add33a3 fixed that too.

gitea-mirror commented 2026-05-05 09:40:33 -06:00

Author

Owner

Copy link

@rusty-snake commented on GitHub (Dec 19, 2022):

Also consider to format your posts and provided information requested in the bug report template.

<!-- gh-comment-id:1357954013 --> @rusty-snake commented on GitHub (Dec 19, 2022): Also consider to format your posts and provided information requested in the bug report template.

gitea-mirror commented 2026-05-05 09:40:34 -06:00

Author

Owner

Copy link

@anomalocaris452 commented on GitHub (Dec 19, 2022):

@rusty-snake disabling apparmor aint helps (new eerrors)

firejail audacity
Reading profile /etc/firejail/audacity.profile
Reading profile /etc/firejail/disable-common.inc
Reading profile /etc/firejail/disable-devel.inc
Reading profile /etc/firejail/disable-exec.inc
Reading profile /etc/firejail/disable-interpreters.inc
Reading profile /etc/firejail/disable-programs.inc
Reading profile /etc/firejail/disable-shell.inc
Reading profile /etc/firejail/disable-xdg.inc
Reading profile /etc/firejail/whitelist-var-common.inc
Parent pid 4973, child pid 4974
1 program installed in 1224.26 ms
Warning: /sbin directory link was not blacklisted
Warning: /usr/sbin directory link was not blacklisted
Warning: not remounting /run/user/1000/doc
Warning: not remounting /run/user/1000/gvfs
Blacklist violations are logged to syslog
Child process initialized in 1512.63 ms
audacity: error while loading shared libraries: lib-project-rate.so: cannot open shared object file: No such file or directory

Parent is shutting down, bye...

BUT disabling private-bin WORKS well!!
Thanks

<!-- gh-comment-id:1358611713 --> @anomalocaris452 commented on GitHub (Dec 19, 2022): @rusty-snake disabling apparmor aint helps (new eerrors) ``` firejail audacity Reading profile /etc/firejail/audacity.profile Reading profile /etc/firejail/disable-common.inc Reading profile /etc/firejail/disable-devel.inc Reading profile /etc/firejail/disable-exec.inc Reading profile /etc/firejail/disable-interpreters.inc Reading profile /etc/firejail/disable-programs.inc Reading profile /etc/firejail/disable-shell.inc Reading profile /etc/firejail/disable-xdg.inc Reading profile /etc/firejail/whitelist-var-common.inc Parent pid 4973, child pid 4974 1 program installed in 1224.26 ms Warning: /sbin directory link was not blacklisted Warning: /usr/sbin directory link was not blacklisted Warning: not remounting /run/user/1000/doc Warning: not remounting /run/user/1000/gvfs Blacklist violations are logged to syslog Child process initialized in 1512.63 ms audacity: error while loading shared libraries: lib-project-rate.so: cannot open shared object file: No such file or directory Parent is shutting down, bye... ``` **BUT disabling private-bin WORKS well!!** Thanks

gitea-mirror commented 2026-05-05 09:40:34 -06:00

Author

Owner

Copy link

@kmk3 commented on GitHub (Dec 19, 2022):

(Offtopic)

@anomalocaris452

Please see the following links for how to format code blocks in markdown:

• https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks
• https://github.github.com/gfm/#fenced-code-blocks

<!-- gh-comment-id:1358633873 --> @kmk3 commented on GitHub (Dec 19, 2022): (Offtopic) @anomalocaris452 Please see the following links for how to format code blocks in markdown: * <https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks> * <https://github.github.com/gfm/#fenced-code-blocks>

gitea-mirror commented 2026-05-05 09:40:35 -06:00

Author

Owner

Copy link

@ghost commented on GitHub (Dec 20, 2022):

Can you check if 72eac26 fixed that too.

@rusty-snake IMO it is related (cfr. the discussion in #5281). I normally don't use audacity but have installed it to test all this. Will need some time. But I can already confirm having apparmor + private-bin works flawlessly on Arch Linux. But we might need to loosen up the profile to support distro's where private-bin might be causing issues.

@anomalocaris452 What distro are you running? And do you actually use AppArmor?

On another note, Audacity 3.2.2 apparently now supports XDG_CONFIG_HOME. It no longer uses ${HOME/.audacity-data by default. I'll be opening a PR for this shortly, as that's something we can do right now without breaking things.

<!-- gh-comment-id:1358762030 --> @ghost commented on GitHub (Dec 20, 2022): > Can you check if 72eac26 fixed that too. @rusty-snake IMO it is related (cfr. the discussion in #5281). I normally don't use audacity but have installed it to test all this. Will need some time. But I can already confirm having apparmor + private-bin works flawlessly on Arch Linux. But we might need to loosen up the profile to support distro's where private-bin might be causing issues. @anomalocaris452 What distro are you running? And do you actually use AppArmor? On another note, Audacity 3.2.2 apparently now supports XDG_CONFIG_HOME. It no longer uses ${HOME/.audacity-data by default. I'll be opening a PR for this shortly, as that's something we can do right now without breaking things.

gitea-mirror commented 2026-05-05 09:40:35 -06:00

Author

Owner

Copy link

@anomalocaris452 commented on GitHub (Dec 23, 2022):

@glitsj16 manjaro

<!-- gh-comment-id:1363531296 --> @anomalocaris452 commented on GitHub (Dec 23, 2022): @glitsj16 manjaro

gitea-mirror commented 2026-05-05 09:40:36 -06:00

Author

Owner

Copy link

@ghost commented on GitHub (Dec 23, 2022):

@glitsj16 manjaro

Fine, thanks. I assume Manjaro packages Audacity in the same way Arch Linux does, but I'll check up on that.

We still would like to know if you're running with AppArmor enabled or not. Details on how to find out are on the Arch wiki. This can help us to determine how best to fix this. Currently our audacity.profile is pretty tight, and private-bin audacity is an important part of that, which we'd prefer to keep as tight as possible. Also, we just recently made a few changes to it, as Audacity 3.2.2 started to support different configuration locations:

• #5538
• #5540

If you still have a ${HOME}/.audacity-data, move that out of the way and test with the below ~/.config/firejail/audacity.profile if you can:

# Firejail profile for audacity
# Description: Fast, cross-platform audio editor
# This file is overwritten after every install/update
# Persistent local customizations
include audacity.local
# Persistent global definitions
include globals.local

# Add the below lines to your audacity.local if you need online plugins.
#ignore net none
#netfilter
#protocol inet6

noblacklist ${HOME}/.audacity-data
noblacklist ${HOME}/.cache/audacity
noblacklist ${HOME}/.config/audacity
noblacklist ${HOME}/.local/share/audacity
noblacklist ${HOME}/.local/state/audacity
noblacklist ${DOCUMENTS}
noblacklist ${MUSIC}

include disable-common.inc
include disable-devel.inc
include disable-exec.inc
include disable-interpreters.inc
include disable-programs.inc
include disable-shell.inc
include disable-xdg.inc

include whitelist-var-common.inc

# Silence blacklist violation. See #5539.
allow-debuggers
## Enabling App Armor appears to break some Fedora / Arch installs
#apparmor
caps.drop all
net none
no3d
nodvd
nogroups
noinput
nonewprivs
noroot
notv
nou2f
novideo
protocol unix,inet
seccomp
tracelog

private-bin audacity
private-dev
private-tmp

# problems on Fedora 27
# dbus-user none
# dbus-system none

<!-- gh-comment-id:1363587383 --> @ghost commented on GitHub (Dec 23, 2022): > @glitsj16 manjaro Fine, thanks. I assume Manjaro packages Audacity in the same way Arch Linux does, but I'll check up on that. We still would like to know if you're running with `AppArmor` enabled or not. Details on how to find out are on the [Arch wiki](https://wiki.archlinux.org/title/Apparmor). This can help us to determine how best to fix this. Currently our audacity.profile is pretty tight, and `private-bin audacity` is an important part of that, which we'd prefer to keep as tight as possible. Also, we just recently made a few changes to it, as Audacity 3.2.2 started to support different configuration locations: - #5538 - #5540 If you still have a ${HOME}/.audacity-data, move that out of the way and test with the below `~/.config/firejail/audacity.profile` if you can: ``` # Firejail profile for audacity # Description: Fast, cross-platform audio editor # This file is overwritten after every install/update # Persistent local customizations include audacity.local # Persistent global definitions include globals.local # Add the below lines to your audacity.local if you need online plugins. #ignore net none #netfilter #protocol inet6 noblacklist ${HOME}/.audacity-data noblacklist ${HOME}/.cache/audacity noblacklist ${HOME}/.config/audacity noblacklist ${HOME}/.local/share/audacity noblacklist ${HOME}/.local/state/audacity noblacklist ${DOCUMENTS} noblacklist ${MUSIC} include disable-common.inc include disable-devel.inc include disable-exec.inc include disable-interpreters.inc include disable-programs.inc include disable-shell.inc include disable-xdg.inc include whitelist-var-common.inc # Silence blacklist violation. See #5539. allow-debuggers ## Enabling App Armor appears to break some Fedora / Arch installs #apparmor caps.drop all net none no3d nodvd nogroups noinput nonewprivs noroot notv nou2f novideo protocol unix,inet seccomp tracelog private-bin audacity private-dev private-tmp # problems on Fedora 27 # dbus-user none # dbus-system none ```

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#3024

No description provided.