On Fri 05/01/2024 15:54, Klemens Nanni wrote:
> On Mon, Jan 01, 2024 at 02:03:49PM +0000, Klemens Nanni wrote:
> > Code comments explain the promises a bit more, tl;dr:
> > main() {
> > pledge("stdio rpath wpath cpath inet mcast flock chown unix dns
> > proc exec audio", NULL)
> > [CLI arg and config parsing]
> > if (on-song-change-hook)
> > pledge("stdio rpath wpath cpath inet mcast unix dns proc exec
> > audio", NULL)
> > else
> > pledge("stdio rpath wpath cpath inet mcast unix dns audio",
> > NULL)
> > [...]
> > }
> >
> > Daemon or in foreground, static credentials or --*-cmd or zeroconf
> > discovery,
> > cache or no persistent files, rc.d script or manually run, MPRIS interaction
> > via playerctl(1): it all works for me.
> >
> > Unveil looks viable and doable, but as a second step.
> >
> > Please try to break this.
> > Feedback? OK?
Tested as daemon and in foreground as user _spotifyd. So far, with
spotify-qt, no issues found.
¬
OK bket@
