aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLibravatar glitsj16 <glitsj16@users.noreply.github.com>2022-03-14 18:09:42 +0000
committerLibravatar GitHub <noreply@github.com>2022-03-14 18:09:42 +0000
commitcc5baf32027594e05ff03ce71c563e85114651d6 (patch)
treebc5da91d8c44deaae5bc54711665216eb4a009c7
parentfbuilder: fix private-etc (diff)
downloadfirejail-cc5baf32027594e05ff03ce71c563e85114651d6.tar.gz
firejail-cc5baf32027594e05ff03ce71c563e85114651d6.tar.zst
firejail-cc5baf32027594e05ff03ce71c563e85114651d6.zip
mupdf refactoring cfr. https://github.com/netblue30/firejail/discussions/4993 (#5042)
* refactor mupdf * refactor mupdf * refactor mupdf * refactor mupdf * add mupdf-gl blacklist * move history file back to mupdf-gl * refactor mupdf-gl * add no3d to mupdf.profile * add suggestions from review * drop unix from protocol [accumulates] * fix protocol
Diffstat
-rw-r--r--etc/inc/disable-common.inc1
-rw-r--r--etc/profile-m-z/mupdf-gl.profile3
-rw-r--r--etc/profile-m-z/mupdf-x11.profile3
-rw-r--r--etc/profile-m-z/mupdf.profile4
4 files changed, 8 insertions, 3 deletions
diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc
index 2e2f6c429..32f4cb81f 100644
--- a/etc/inc/disable-common.inc
+++ b/etc/inc/disable-common.inc
@@ -13,6 +13,7 @@ blacklist-nolog ${HOME}/.*_history_*
13blacklist-nolog ${HOME}/.adobe 13blacklist-nolog ${HOME}/.adobe
14blacklist-nolog ${HOME}/.ammonite/history 14blacklist-nolog ${HOME}/.ammonite/history
15blacklist-nolog ${HOME}/.cache/greenclip* 15blacklist-nolog ${HOME}/.cache/greenclip*
16blacklist-nolog ${HOME}/.cache/mupdf.history
16blacklist-nolog ${HOME}/.histfile 17blacklist-nolog ${HOME}/.histfile
17blacklist-nolog ${HOME}/.history 18blacklist-nolog ${HOME}/.history
18blacklist-nolog ${HOME}/.kde/share/apps/klipper 19blacklist-nolog ${HOME}/.kde/share/apps/klipper
diff --git a/etc/profile-m-z/mupdf-gl.profile b/etc/profile-m-z/mupdf-gl.profile
index be94a9083..c5d94c371 100644
--- a/etc/profile-m-z/mupdf-gl.profile
+++ b/etc/profile-m-z/mupdf-gl.profile
@@ -7,7 +7,10 @@ include mupdf-gl.local
7# added by included profile 7# added by included profile
8#include globals.local 8#include globals.local
9 9
10noblacklist ${HOME}/.cache/mupdf.history
10noblacklist ${HOME}/.mupdf.history 11noblacklist ${HOME}/.mupdf.history
11 12
13ignore no3d
14
12# Redirect 15# Redirect
13include mupdf.profile 16include mupdf.profile
diff --git a/etc/profile-m-z/mupdf-x11.profile b/etc/profile-m-z/mupdf-x11.profile
index 256201d0c..547aa4f2f 100644
--- a/etc/profile-m-z/mupdf-x11.profile
+++ b/etc/profile-m-z/mupdf-x11.profile
@@ -7,8 +7,5 @@ include mupdf-x11.local
7# added by included profile 7# added by included profile
8#include globals.local 8#include globals.local
9 9
10memory-deny-write-execute
11read-only ${HOME}
12
13# Redirect 10# Redirect
14include mupdf.profile 11include mupdf.profile
diff --git a/etc/profile-m-z/mupdf.profile b/etc/profile-m-z/mupdf.profile
index 22cb83cc4..7a1f62858 100644
--- a/etc/profile-m-z/mupdf.profile
+++ b/etc/profile-m-z/mupdf.profile
@@ -21,6 +21,7 @@ apparmor
21caps.drop all 21caps.drop all
22machine-id 22machine-id
23net none 23net none
24no3d
24nodvd 25nodvd
25nogroups 26nogroups
26noinput 27noinput
@@ -41,3 +42,6 @@ private-tmp
41 42
42dbus-user none 43dbus-user none
43dbus-system none 44dbus-system none
45
46memory-deny-write-execute
47read-only ${HOME}
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-22 14:01:58 +0000