]> git.rmz.io Git - dotfiles.git/blobdiff - mkosi/kodi/mkosi.nspawn
repos / dotfiles.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
weechat: add shrug alias ¯\_(ツ)_/¯
[dotfiles.git] / mkosi / kodi / mkosi.nspawn
diff --git a/mkosi/kodi/mkosi.nspawn b/mkosi/kodi/mkosi.nspawn
index 09493bc3ef1da90c1c9490f513f1ba88f14db2f5..c3b14ff0f17b1c0332eb0889bfacb1415fde81dc 100644 (file)
--- a/mkosi/kodi/mkosi.nspawn
+++ b/mkosi/kodi/mkosi.nspawn
@@ -1,21 +1,30 @@
 [Exec]
 PrivateUsers=no
-Capability=all
-SystemCallFilter=@default @raw-io @system-service @known
+
+[Network]
+Bridge=br0
 
 [Files]
 # binds host kodi home folder into nspawn
 Bind=/var/lib/kodi
 
+# media
+Bind=/mnt/fook/Movies
+Bind=/mnt/fook/Series
+Bind=/mnt/fook/games
+Bind=/mnt/fook/usenet
+Bind=/mnt/fook/torrents
+
 # device access
-Bind=/dev/bus/usb
-Bind=/dev/dri
-Bind=/dev/input
-Bind=/dev/lirc0
 Bind=/dev/tty0
 Bind=/dev/tty1
-Bind=/dev/vga_arbiter
-Bind=/lib/modules
+BindReadOnly=/dev/dri
+BindReadOnly=/dev/input
+BindReadOnly=/dev/uinput
+# libinput reads this to know about devices
+BindReadOnly=/run/udev
+BindReadOnly=/dev/lirc0
+BindReadOnly=/dev/vga_arbiter
 # pulse need to be started in system mode with the following module and option:
 # load-module module-native-protocol auth-authorize-anonymous
 BindReadOnly=/run/pulse
My dotfiles