search

roddhjav / apparmor.d

Full set of AppArmor profiles (~ 1500 profiles)
https://apparmor.pujol.io
GNU General Public License v2.0
461 stars 46 forks source link

flatpak-app cannot execute programs in games dir #586

Closed Stoppedpuma closed 6 days ago

Stoppedpuma commented 3 weeks ago

I've gotten around this temporarily by setting a local owner override which works fine for games ran with proton / wine, but not for native linux games which execute with a shell script.

Examples:

DENIED flatpak-app exec owner "/mnt/ss-zpool/applications/steam/steamapps/common/Counter-Strike Global Offensive/game/cs2.sh" comm=steam-runtime-l requested_mask=x denied_mask=x DENIED flatpak-app exec owner "/mnt/ss-zpool/applications/heroic/Factorio/start.sh" comm=gogdl requested_mask=x denied_mask=x

roddhjav commented 6 days ago

I think this could already be covered by the profile as long as you set /mnt/ss-zpool/applications in your user_game_dirs.

Edit: it is not fully covered (I need to add x)