[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#39127] [PATCH] fixing icecat's multimedia

From: Julien Lepiller
Subject: [bug#39127] [PATCH] fixing icecat's multimedia
Date: Tue, 14 Jan 2020 01:58:19 +0100

From IRC yesterday, I found that icecat was still missing something to
properly read multimedia streams, like mp3/mp4. In the current version,
it now tries to open ffmpeg's library dynamically, by looking in the
store, instead of standard locations (/usr/lib etc). But this is not
enough: even if icecat can properly find the library, it cannot load it
because it uses a sandboxing feature that only allows it to read and
write files from/to specific locations. /gnu/store is not part of them.

Since icecat has access to /lib and /usr/lib, I think we can also give
it read access (not write) to /gnu/store. This patch attempts to do
just that, but I couldn't build icecat because of a lack of space. It
sets the default security.sandbox.content.read_path_whitelist to
/gnu/store/, the leading / meaning "and everything under it,


Attachment: 0001-gnu-icecat-Give-access-to-the-store-to-the-sandbox.patch
Description: Text Data

reply via email to

[Prev in Thread] Current Thread [Next in Thread]