that_leaflet

@that_leaflet@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Do AppArmor and Flatpak have any weird interactions?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Oh I understand now, you’re referring to making AppArmor profiles to target a specific app. I just did a little research and it’s possible to create AppArmor policies for binaries that are in a user’s home folder.

Rather than hardcoding a specific user’s home, you can instead say “@{HOME}”. So you could create a profile for “@{HOME}/.local/share/flatpak/app/appID/current/active/files/bin/binaryName” that would confine the app for all users.
⁨Comment⁩ on ⁨Do AppArmor and Flatpak have any weird interactions?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I don’t fully understand what you mean.

With flatpak, you have the option of installing applications on the system (/var/lib/flatpak) or for a single user (~.local/share/flatpak). And application data for each gets stored in ~/.var/app.

AppArmor should confine the same regardless of which user is running the package. Besides, the flatpak’s main sandboxing comes from bubblewrap. Though the distro’s default AppArmor profiles can further be used to sandbox more stuff.
⁨Comment⁩ on ⁨Do AppArmor and Flatpak have any weird interactions?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
In general, they don’t interfere. The only major issues I’ve seen are with in development versions of Ubuntu, which have a strange habit of breaking flatpak, but it gets fixed before release.
⁨Comment⁩ on ⁨Black Myth: Wukong shows very clearly Valve are selling a lot of Steam Decks⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
They did sponsor/donate to someone who got the Epic Games Launcher working through wine. Don’t remember the exact details and can’t find a link though.
⁨Comment⁩ on ⁨Valve confirms it'll support the ROG Ally with its Steam Deck operating system⁩ ⁨⁨9⁩ ⁨months⁩ ago⁩:
Even if Valve pushed their own Steam machine back then, it would have failed miserably. It simply had terrible game support because Proton didn’t exist (or integration with wine). Only the few native linux games out there would work.

But now Valve has Proton. I doubt the Steam Deck would have taken off if it wasn’t for that.