[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#39127] [PATCH] fixing icecat's multimedia
From: |
Julien Lepiller |
Subject: |
[bug#39127] [PATCH] fixing icecat's multimedia |
Date: |
Tue, 14 Jan 2020 01:58:19 +0100 |
From IRC yesterday, I found that icecat was still missing something to
properly read multimedia streams, like mp3/mp4. In the current version,
it now tries to open ffmpeg's library dynamically, by looking in the
store, instead of standard locations (/usr/lib etc). But this is not
enough: even if icecat can properly find the library, it cannot load it
because it uses a sandboxing feature that only allows it to read and
write files from/to specific locations. /gnu/store is not part of them.
Since icecat has access to /lib and /usr/lib, I think we can also give
it read access (not write) to /gnu/store. This patch attempts to do
just that, but I couldn't build icecat because of a lack of space. It
sets the default security.sandbox.content.read_path_whitelist to
/gnu/store/, the leading / meaning "and everything under it,
recursively").
Wdyt?
0001-gnu-icecat-Give-access-to-the-store-to-the-sandbox.patch
Description: Text Data
- [bug#39127] [PATCH] fixing icecat's multimedia,
Julien Lepiller <=