| 1 |
On Saturday, 12 June 2021 19:16:17 BST Walter Dnes wrote: |
| 2 |
> Pale Moon is my "daily driver" web browser, but I need google-chrome |
| 3 |
> to handle Netflix DRM. Anyhow, I get some warnings at the end of the |
| 4 |
> build about... |
| 5 |
> |
| 6 |
> 1) Metadata location |
| 7 |
> |
| 8 |
> 2) USER_NS and sandbox |
| 9 |
> |
| 10 |
> Does everybody else get them? Chrome seems to work OK. |
| 11 |
> |
| 12 |
> ====================================================================== |
| 13 |
> * Final size of build directory: 4 KiB |
| 14 |
> * Final size of installed tree: 239104 KiB (233.5 MiB) |
| 15 |
> |
| 16 |
> * |
| 17 |
> * This package seems to install metainfo files into the following |
| 18 |
> * location(s): |
| 19 |
> * |
| 20 |
> * /usr/share/appdata |
| 21 |
> * |
| 22 |
> * This location is deprecated, it should not be used anymore by new |
| 23 |
> software. * Appdata/Metainfo files should be installed into |
| 24 |
> /usr/share/metainfo directory. * For more details, please see the |
| 25 |
> freedesktop Upstream Metadata guidelines at * |
| 26 |
> https://www.freedesktop.org/software/appstream/docs/chap-Metadata.html * |
| 27 |
> * Gentoo Tracker bug: https://bugs.gentoo.org/709450 |
| 28 |
> * |
| 29 |
|
| 30 |
The above bug refers - just a change of path to store metadata of chromium |
| 31 |
into. Give it a few versions and it should drop out. |
| 32 |
|
| 33 |
|
| 34 |
> >>> Installing (5 of 5) www-client/google-chrome-91.0.4472.77::gentoo |
| 35 |
> |
| 36 |
> * >>> SetUID: [chmod go-r] /opt/google/chrome/chrome-sandbox ... [ |
| 37 |
> ok ] * Updating .desktop files database ... |
| 38 |
> [ ok ] * Updating icons cache ... |
| 39 |
> [ ok ] |
| 40 |
> >>> Recording www-client/google-chrome in "world" favorites file... |
| 41 |
> |
| 42 |
> * Messages for package media-fonts/liberation-fonts-2.1.3: |
| 43 |
> |
| 44 |
> * The following fontconfig configuration files have been installed: |
| 45 |
> * |
| 46 |
> * 60-liberation.conf |
| 47 |
> * |
| 48 |
> * Use `eselect fontconfig` to enable/disable them. |
| 49 |
> |
| 50 |
> * Messages for package www-client/google-chrome-91.0.4472.77: |
| 51 |
> |
| 52 |
> * USER_NS is required for sandbox to work |
| 53 |
> * Please check to make sure these options are set correctly. |
| 54 |
> * Failure to do so may cause unexpected problems. |
| 55 |
> |
| 56 |
> >>> Auto-cleaning packages... |
| 57 |
|
| 58 |
This involves the use of namespaces for sandboxing purposes and your |
| 59 |
configuration to enable it in the kernel: |
| 60 |
|
| 61 |
$ grep USER_NS /usr/src/linux/.config |
| 62 |
CONFIG_USER_NS=y |
| 63 |
|
| 64 |
More here: |
| 65 |
|
| 66 |
https://chromium.googlesource.com/chromium/src.git/+/refs/heads/main/docs/ |
| 67 |
linux/sandboxing.md |
Archives