pkgs/development/libraries/webkitgtk/fix-bubblewrap-paths.patch at master · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

nixpkgs / pkgs / development / libraries / webkitgtk / fix-bubblewrap-paths.patch

at master 1.0 kB view raw

 1diff --git a/Source/WebKit/UIProcess/Launcher/glib/BubblewrapLauncher.cpp b/Source/WebKit/UIProcess/Launcher/glib/BubblewrapLauncher.cpp
 2index 0a201fe176..fa3690c12a 100644
 3--- a/Source/WebKit/UIProcess/Launcher/glib/BubblewrapLauncher.cpp
 4+++ b/Source/WebKit/UIProcess/Launcher/glib/BubblewrapLauncher.cpp
 5@@ -819,6 +819,12 @@ GRefPtr<GSubprocess> bubblewrapSpawn(GSubprocessLauncher* launcher, const Proces
 6         sandboxArgs.append("--unshare-ipc");
 7     }
 8 
 9+    // Nix Directories
10+    sandboxArgs.appendVector(Vector<CString>({ "--ro-bind", "@storeDir@", "@storeDir@" }));
11+    sandboxArgs.appendVector(Vector<CString>({ "--ro-bind-try", "/run/current-system", "/run/current-system" }));
12+    sandboxArgs.appendVector(Vector<CString>({ "--ro-bind-try", "@driverLink@/lib", "@driverLink@/lib" }));
13+    sandboxArgs.appendVector(Vector<CString>({ "--ro-bind-try", "@driverLink@/share", "@driverLink@/share" }));
14+
15 #if ENABLE(DEVELOPER_MODE)
16     const char* execDirectory = g_getenv("WEBKIT_EXEC_PATH");
17     if (execDirectory) {