Skip to content

New profile: ledger-live-desktop #6219

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 29, 2024
Merged

New profile: ledger-live-desktop #6219

merged 1 commit into from
Feb 29, 2024

Conversation

haplo
Copy link
Contributor

@haplo haplo commented Feb 21, 2024

This is a profile for the Ledger Live wallet.

I based it off the profile offered in #3595, but it needed several tweaks for it to work.

I tested the binary installation in /opt (I use the ledger-live-bin package in AUR). Ledger Live is also offered as an AppImage, but I didn't test that case.

I own a Ledger USB wallet and this profile is working for me.

haplo
haplo commented Feb 21, 2024
View reviewed changes
etc/profile-a-l/ledger-live-desktop.profile Outdated
private-cache
# enabling private-dev blocks USB hardware wallets
# private-dev
private-etc @network,@tls-ca,@x11
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I' not running firejail from master so my actual profile uses:

private-etc alternatives,ca-certificates,crypto-policies,host.conf,nsswitch.conf,pki,resolv.conf,rpc,selinux,ssl

Networking breaks without these options.

Copy link
Collaborator

@glitsj16 glitsj16 Feb 21, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good you referenced your private-etc in 0.9.72-format. It translates as
private-etc @network,@tls-ca,@x11,host.conf,rpc so you'll need to append ,host.conf,rpc here for master.

@haplo haplo force-pushed the ledger-live-desktop branch from 3a19016 to 16751b9 Compare February 21, 2024 22:32
glitsj16
glitsj16 requested changes Feb 22, 2024
View reviewed changes
Copy link
Collaborator

@glitsj16 glitsj16 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The profile is missing some vitals. See individual comments.

@haplo haplo force-pushed the ledger-live-desktop branch from 16751b9 to f76094a Compare February 22, 2024 11:13
@haplo
Copy link
Contributor Author

haplo commented Feb 22, 2024
edited
Loading

Thank you very much for the review @glitsj16. I believe I have addressed all your comments. The updated profile is working for me.

Again, I haven't tested the AppImage release of ledger-live.

glitsj16
glitsj16 approved these changes Feb 22, 2024
View reviewed changes
Copy link
Collaborator

@glitsj16 glitsj16 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the changes. LGTM.

@haplo
Profile for ledger-live-desktop
3dc3adc 
/opt/ledger-live installation currently sits at 345 MiB, so I decided to
whitelist it instead of using private-opt ledger-live, in case future
installations grow in size.

Not using private-dev was the only way I managed to get my USB wallet to
work.
@haplo haplo force-pushed the ledger-live-desktop branch from f76094a to 3dc3adc Compare February 28, 2024 21:45
haplo added a commit to haplo/dotfiles that referenced this pull request Feb 29, 2024
@haplo
Firejail: improve ledger-live-desktop.profile
72c2f98 
After review in firejail PR:
netblue30/firejail#6219
@netblue30 netblue30 merged commit 071a5da into netblue30:master Feb 29, 2024
@netblue30
Copy link
Owner

merged, thanks!

@haplo haplo deleted the ledger-live-desktop branch March 1, 2024 11:09
@kmk3 kmk3 changed the title Profile for Ledger Live desktop app New profile: ledger-live-desktop Sep 7, 2024
kmk3 added a commit that referenced this pull request Mar 23, 2025
@kmk3
RELNOTES: add many new profile items
5f8df15 
Use one item per line to make them easier to read.

Relates to #5646 #5675 #5682 #5691 #5706 #5707 #5710 #5729 #5733 #5761.
Relates to #5780 #5847 #5881 #5885 #5887 #5892 #5920 #5934 #5935 #5943.
Relates to #5947 #5954 #6007 #6008 #6009 #6013 #6027 #6028 #6030 #6039.
Relates to #6083 #6155 #6180 #6181 #6219 #6226 #6227 #6231 #6232 #6233.
Relates to #6234 #6235 #6236 #6237 #6241 #6243 #6244 #6245 #6246 #6247.
Relates to #6249 #6250 #6251 #6253 #6254 #6255 #6256 #6259 #6293 #6314.
Relates to #6315 #6327 #6328 #6333 #6341 #6365 #6422 #6463 #6536 #6549.
Relates to #6558 #6577 #6583 #6584 #6585 #6586 #6587 #6588 #6589 #6590.
Relates to #6616 #6654 #6669 #6678 #6679.
@kmk3 kmk3 moved this to Done (on RELNOTES) in Release 0.9.74 Mar 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kmk3 kmk3 kmk3 left review comments

@glitsj16 glitsj16 glitsj16 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
Release 0.9.74
Status: Done (on RELNOTES)
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@haplo @netblue30 @glitsj16 @kmk3