Hi everyone, below you will find the updates from the Desktop team from the last week. If you’re interested in discussing a topic please start a thread in the Desktop area of Discourse .
We also have our weekly meeting on IRC. We meet on Tuesday at 13:30 UTC in #ubuntu-desktop on Freenode. There will be an “Any Other Business” section at the end where you are welcome to raise topics. These topics might be discussed during the meeting, or afterwards depending on the time, depth of conversation, topic and so on.
Last week’s notes are here: Desktop Team Updates - Monday 20th October 2020
GNOME 3.38 Wayland session incompatibility with x11 based snaps:
- My Mutter merge proposal was reviewed and merged upstream on the gnome-3-38 branch.
- I’ve updated bug 1897224 with the SRU template to justify updating Groovy.
- Upstream GNOME would like to see use of the abstract socket in a future release, so the revert has not been merged to master. This is due to the difficulty of selectively making abstract sockets available to a sandboxed app without the use of kernel based MAC systems like AppArmor or SELinux. You can block access to all abstract sockets by unsharing the network namespace, but you can’t selectively grant access to them through bind mounts like you can for regular unix domain sockets.
- I discussed this with the snapd devs, which resulted in @zyga working on snapd PR #9530, which exposes the regular X11 sockets from
/tmp/.X11-unix to the snap sandbox. I’ve provided review feedback, and expect it will be merged soon. So we should be well prepared for GNOME 4.0.
- I’ve been updating the themes API PR based on review feedback.
- The other PRs are still blocked on security review.
Other snapd work:
- I provided review feedback on some other branches by zyga related to use of desktop notifications to tell the user that an update is blocked due to a running application.
- I wrote up some notes on the state of Snapd localisation. There’s definitely room to improve, and it will likely be more important as users start to see desktop notifications from snapd.
I also did some work investigating a security issue.