33 lines
1.1 KiB
Nix
33 lines
1.1 KiB
Nix
|
{ lib, nixosConfig, pkgs, ... }:
|
||
|
let
|
||
|
# TODO: Do not hardcode /dev/{sr0,sg2} (right paths on sayuri)
|
||
|
makemkv-sandbox = pkgs.writeShellScriptBin "makemkv-sandbox" /* bash */ ''
|
||
|
set -euo pipefail
|
||
|
${pkgs.bubblewrap}/bin/bwrap \
|
||
|
--tmpfs /tmp \
|
||
|
--proc /proc \
|
||
|
--dev /dev \
|
||
|
--unshare-all \
|
||
|
--die-with-parent \
|
||
|
--ro-bind /nix/store /nix/store \
|
||
|
--dev-bind /dev/dri /dev/dri \
|
||
|
--ro-bind /sys/dev/char /sys/dev/char \
|
||
|
--ro-bind /sys/devices/pci0000:00 /sys/devices/pci0000:00 \
|
||
|
--ro-bind $XDG_RUNTIME_DIR/$WAYLAND_DISPLAY $XDG_RUNTIME_DIR/$WAYLAND_DISPLAY \
|
||
|
--ro-bind /run/opengl-driver /run/opengl-driver \
|
||
|
--ro-bind /etc/fonts /etc/fonts \
|
||
|
--new-session \
|
||
|
--bind /home/simon/.MakeMKV /home/simon/.MakeMKV \
|
||
|
--dev-bind /dev/sr0 /dev/sr0 \
|
||
|
--dev-bind /dev/sg2 /dev/sg2 \
|
||
|
--dev-bind /sys/bus/scsi /sys/bus/scsi \
|
||
|
--bind $PWD $PWD \
|
||
|
${pkgs.unstable.makemkv}/bin/makemkv
|
||
|
'';
|
||
|
in
|
||
|
lib.mkIf (nixosConfig.sbruder.gui.enable && nixosConfig.sbruder.unfree.allowSoftware) {
|
||
|
home.packages = [
|
||
|
makemkv-sandbox
|
||
|
];
|
||
|
}
|