mirror of
https://github.com/aaddrick/claude-desktop-debian.git
synced 2026-05-17 00:26:21 +03:00
3c843244b3
* fix: diagnose AppArmor userns block on bwrap probe (#351) Ubuntu 24.04+ ships apparmor_restrict_unprivileged_userns=1 by default, which blocks the user namespace bwrap needs to start. The daemon's probe then fails, auto-detect silently falls through to KVM, and KVM hangs waiting for a rootfs the user hasn't set up — leaving Cowork stuck in a retry loop with no clear error. - Classify the probe failure (classifyBwrapProbeError) so the daemon can distinguish AppArmor/userns blocks from generic failures and log a pointer to the TROUBLESHOOTING.md remediation. - Stop falling through to KVM when bwrap is installed but blocked; drop to host-direct instead so users see a working (if unsandboxed) Cowork and the reason bwrap didn't engage. Users who actually want KVM can still set COWORK_VM_BACKEND=kvm. - Mirror the probe + diagnosis in `--doctor` so misconfigured systems get the same actionable output without waiting for a daemon log. - Document the AppArmor profile workaround in TROUBLESHOOTING.md. - Credit @hfyeh for the diagnosis and profile snippet. Co-Authored-By: Claude <claude@anthropic.com> * refactor: simplify PR #434 per cdd-code-simplifier Drop redundant `-n` guard around the COWORK_VM_BACKEND case in `--doctor`: the `${VAR,,}` expansion is already safe on an unset var (no `set -u` in this script) and the `kvm|host` arms simply don't match an empty string. Co-Authored-By: Claude <claude@anthropic.com> --------- Co-authored-by: Claude <claude@anthropic.com>