fix firefox installation

[Jeffrey04]

Firefox dev installation is broken due to the change at mozilla's website

[Jeffrey04]

Just out of curiosity, in recent firefox installs it says it requires this in /etc/apparmor.d/, how do I do that with umake?

# This profile allows everything and only exists to give the
# application a name instead of having the label "unconfined"
abi <abi/4.0>,

include <tunables/global>

profile umake-firefox
/home/jeffrey04/.local/share/umake/web/firefox-dev/{firefox,firefox-bin,updater}
flags=(attach_disconnected,unconfined) {

    userns, 

    # Site-specific additions and overrides. See local/README for details. 

    include if exists <local/firefox> 

}

[LyzardKing]

@Jeffrey04 Where does it mention this is needed for a new install?

[Jeffrey04]

@Jeffrey04 Where does it mention this is needed for a new install?

https://support.mozilla.org/en-US/kb/install-firefox-linux?as=u&utm_source=inproduct#w_security-features-warning

same thing is needed for vscode (and possibly other electron apps) too actually (posted an example in my codeium windsurf PR), OTOH, ubuntu published this

https://ubuntu.com/blog/ubuntu-23-10-restricted-unprivileged-user-namespaces

also sometimes a sysctl reload apparmor.service is not enough, gotta reboot