-
Notifications
You must be signed in to change notification settings - Fork 6
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Rootless? #11
Comments
I hadn't considered using containerization as part of Rwfus's structure, but I can see how it aligns with the project's goals. It could be a cleaner and more compatible option than what we've got right now. I'm on vacation until the 27th, but I'll ruminate on this! I used overlayfs mounts and systemd because I've been doing research on the Deck in my spare time, and I noticed Valve had already used that technique to make /etc writable without duplicate files, and by using the original mounts, you get your software added to PATH for free (a huge deal, considering there's no portable way of doing that between zsh, fish, and bash.) If you'd like, I'd appreciate some help with this feature. I'm unfamiliar with Bubblewrap, beyond it being made by/a part of/a consequence of Flatpak. |
Julia Evens did a great really recent discussion of it here: https://jvns.ca/blog/2022/06/28/some-notes-on-bubblewrap/ I'm going to read through it and keep researching (like how I found your github googling) This Qbert script is the OverlayFS is a great model too If you use Discord we are sort of having it be an open discussion here in #-steamos-linux- But I haven't had luck yet with user namespace and overlay yet. Trying to learn a lot and this stuff it is still pretty cutting edge I think. Like this is pretty new to the Linux kernel: To be honest, I am a super duper noob - and my noob nature is why I want containers like this. Just want be a happy noob in a sandbox and run whatever from the web like it is a video game. Imagining a day where we could wear a Deckard XR headset and safely share and run Linux code in our 3D internet connected world all around us. Edit: Also oops didn't mean to close this as an issue. If you have a IRC or virtual world or something like that - can always talk there. |
After further consideration, I've decided this is currently out of scope, for the following reasons:
This complexity can be avoided if Rwfus is given privilege to mount partitions—though I do aim to improve the user experience when elevating. |
Is this possible to run this rootless?
When I ran the instructions on the readme I got:
Failed to connect to bus: Operation not permitted
The closest I have found to a discussion about the rootless capabilities of linux is here:
containers/bubblewrap#412
Bubblewrap is pre-installed on the deck and I think is how Steam OS 3 works.
Having containers and not ever needing root would mean installing anything without even worrying about anything.
The text was updated successfully, but these errors were encountered: