From ee76cf4d42027c22df639554bad4a48adcc4c3e7 Mon Sep 17 00:00:00 2001 From: "Kelvin M. Klann" Date: Sun, 23 Feb 2025 09:05:45 -0300 Subject: [PATCH] keep-dev-ntsync: sort in profiles & add to lutris and steam --- etc/profile-a-l/lutris.profile | 1 + etc/profile-m-z/steam.profile | 1 + etc/profile-m-z/wine.profile | 2 +- etc/templates/profile.template | 3 +-- 4 files changed, 4 insertions(+), 3 deletions(-) diff --git a/etc/profile-a-l/lutris.profile b/etc/profile-a-l/lutris.profile index 1255bd8e40..e1353d64d9 100644 --- a/etc/profile-a-l/lutris.profile +++ b/etc/profile-a-l/lutris.profile @@ -79,6 +79,7 @@ protocol unix,inet,inet6,netlink seccomp !clone3,!modify_ldt,!process_vm_readv,!ptrace seccomp.32 !modify_ldt +keep-dev-ntsync # Add the next line to your lutris.local if you do not need controller support. #private-dev private-tmp diff --git a/etc/profile-m-z/steam.profile b/etc/profile-m-z/steam.profile index 6f71cf684b..e697ffead8 100644 --- a/etc/profile-m-z/steam.profile +++ b/etc/profile-m-z/steam.profile @@ -185,6 +185,7 @@ seccomp.32 !process_vm_readv # To view screenshots add the next line to your steam.local. #private-bin eog,eom,gthumb,pix,viewnior,xviewer +keep-dev-ntsync private-dev # private-etc breaks a small selection of games on some systems. Add 'ignore private-etc' # to your steam.local to support those. diff --git a/etc/profile-m-z/wine.profile b/etc/profile-m-z/wine.profile index 036f9e7f51..18be773e96 100644 --- a/etc/profile-m-z/wine.profile +++ b/etc/profile-m-z/wine.profile @@ -39,7 +39,7 @@ notv #novideo seccomp -private-dev keep-dev-ntsync +private-dev restrict-namespaces diff --git a/etc/templates/profile.template b/etc/templates/profile.template index cb20672529..9182f7dfe6 100644 --- a/etc/templates/profile.template +++ b/etc/templates/profile.template @@ -195,13 +195,12 @@ include globals.local ##x11 none #disable-mnt +##keep-dev-ntsync ##private # It's common practice to refer to the python executable(s) in private-bin with `python*`, which covers both v2 and v3 #private-bin PROGRAMS #private-cache #private-dev -# By default private-dev prevents access to /dev/ntsync (which is used by wine), you can change that behaviour by using keep-dev-ntsync -##keep-dev-ntsync #private-etc FILES # private-etc templates (see also #1734, #2093) # Common: alternatives,ld.so.cache,ld.so.conf,ld.so.conf.d,ld.so.preload,locale,locale.alias,locale.conf,localtime,mime.types,xdg