deviloric
/
bubblewrap-scripts
mirror of https://github.com/valoq/bwscripts.git
0
0
Fork 0
Code Releases Activity

minor enhancements

This commit is contained in:
valoq 2022-09-15 21:52:25 +02:00
parent b4fabbf7e2
commit 4ae07be221
No known key found for this signature in database
GPG Key ID: 19F09A0FB865CBD8
2 changed files with 12 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
profiles/firefox
View File

@ -40,13 +40,15 @@ set -euo pipefail
--ro-bind /etc/gtk-3.0 /etc/gtk-3.0 \
--ro-bind /etc/fonts /etc/fonts \
--ro-bind /etc/mime.types /etc/mime.types \
--ro-bind /etc/pulse /etc/pulse \
--ro-bind /etc/asound.conf /etc/asound.conf \
--ro-bind-try /etc/alsa /etc/alsa \
--ro-bind-try /etc/pulse /etc/pulse \
--ro-bind-try /etc/pipewire /etc/pipewire \
--tmpfs /run \
--ro-bind /run/user/"$(id -u)"/wayland-1 /run/user/"$(id -u)"/wayland-1 \
--bind ~/Downloads ~/Downloads \
--bind ~/.mozilla ~/.mozilla \
--bind ~/.cache/mozilla ~/.cache/mozilla \
--ro-bind-try /run/user/"$(id -u)"/pipewire-0 /run/user/"$(id -u)"/pipewire-0 \
--bind-try ~/Downloads ~/Downloads \
--bind-try ~/.mozilla ~/.mozilla \
--bind-try ~/.cache/mozilla ~/.cache/mozilla \
--chdir ~/ \
--unsetenv DBUS_SESSION_BUS_ADDRESS \
--setenv MOZ_ENABLE_WAYLAND 1 \
@ -61,11 +63,9 @@ set -euo pipefail
/usr/lib/firefox/firefox
)
# note: For the sandbox to be effective, run on wayland environments only (instead of X11)
# note: This profile requires an execution environement with available wayland and pipewire services.
# in case firefox was build without the --enable-alsa flag, change to script to run with apulse like this:
# --ro-bind /usr/bin/apulse /usr/bin/apulse \
# apulse /usr/lib/firefox/firefox
# -ro-bind /etc/alsa /etc/alsa \

5
profiles/vlc
View File

@ -10,7 +10,8 @@ set -euo pipefail
--symlink /usr/bin /bin \
--proc /proc \
--dev-bind /dev /dev \
--ro-bind /tmp/.X11-unix /tmp/.X11-unix \
--ro-bind /run/user/"$(id -u)"/wayland-1 /run/user/"$(id -u)"/wayland-1 \
--ro-bind-try /run/user/"$(id -u)"/pipewire-0 /run/user/"$(id -u)"/pipewire-0 \
--ro-bind /etc /etc \
--ro-bind ~/.config/vlc ~/.config/vlc \
--ro-bind "${@: -1}" ~/"$(basename "${@: -1}")" \
@ -27,4 +28,4 @@ set -euo pipefail
/usr/bin/vlc "$(basename "${@: -1}")"
)
# warning: still uses read-only X11 socket
## requires qt5-wayland to run on wayland