-
-
Notifications
You must be signed in to change notification settings - Fork 46
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
dconf-write, games, vulkan-strict abstractions #577
Comments
In general, bottle is a mess to confine (it support handle sanbox with bwrap) so you might need something similar to what I did with steam. Regarding this profile, you should try to split it in two:
Can you precise more the value of:
Not directly in the abstraction. Ideally this folder should be in read only in the game profile. The general idea (in steam, but that could apply in bottles too) is that steam handle game update and install so that the game file can be fully in RO in the game profile.
Not in the abstraction, that is set in the calling profile if needed (see the steam games profile as example).
Removing
This is the purpose of the
I did not tested gamescope and mangohud so I don't know, however, I do agree with the general idea to create abstraction for it (and wine). |
Thanks for the reply!
Things like:
|
Regarding dconf-write, it should have write permissions to @{user_config_dirs}/glib-2.0/ and settings directories, because these are not created by default at least in Arch
About vulkan-strict, some games want to write to
owner @{user_cache_dirs}/radv_builtin_shaders*
.About the games abstraction:
I believe that it should have rw in
@{user_games_dirs}/*/
because of installers.owner @{user_games_dirs}/*/** rwlk,
should havem
. tooalso consider adding
/mnt/ r,
@{MOUNTS}/ r,
to the profile, asowner @{HOME}/ r,
is already grantedconsider removing
rpx
transitions from the profile as that breaks profiles with no new privs that include the game abstractionshould wine things like
owner /tmp/.wine-@{uid}/
also be included in the profile? Maybe we should create an abstraction for it.If so, I'm thinking that maybe we should also create an abstraction for gamescope?
What about mangohud configuration?
For reference here's the profile I've been working on, maybe some other stuff that I included in it should be moved to abstractions:
The text was updated successfully, but these errors were encountered: