diff options
author | netblue30 <netblue30@yahoo.com> | 2017-01-28 09:40:07 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2017-01-28 09:40:07 -0500 |
commit | c83cf990e0defae1aab570bfd46688c1e9b3eafb (patch) | |
tree | 835d5380eecaf505b8cb8a53107c97e17459a5ea | |
parent | profile fixes (diff) | |
download | firejail-c83cf990e0defae1aab570bfd46688c1e9b3eafb.tar.gz firejail-c83cf990e0defae1aab570bfd46688c1e9b3eafb.tar.zst firejail-c83cf990e0defae1aab570bfd46688c1e9b3eafb.zip |
support allow-private-blacklist in profile files
-rw-r--r-- | RELNOTES | 2 | ||||
-rw-r--r-- | src/firejail/profile.c | 4 |
2 files changed, 5 insertions, 1 deletions
@@ -19,7 +19,7 @@ firejail (0.9.45) baseline; urgency=low | |||
19 | * feature: private /opt directory (--private-opt, profile support) | 19 | * feature: private /opt directory (--private-opt, profile support) |
20 | * feature: private /srv directory (--private-srv, profile support) | 20 | * feature: private /srv directory (--private-srv, profile support) |
21 | * feature: spoof machine-id (--machine-id, profile support) | 21 | * feature: spoof machine-id (--machine-id, profile support) |
22 | * feature: allow blacklists under --private (--allow-private-blacklist) - more work to come | 22 | * feature: allow blacklists under --private (--allow-private-blacklist) |
23 | * feature: user-defined /etc/hosts file (--hosts-file, profile support) | 23 | * feature: user-defined /etc/hosts file (--hosts-file, profile support) |
24 | * feature: config support for firejail prompt in terminals | 24 | * feature: config support for firejail prompt in terminals |
25 | * feature: AppImage type 2 support | 25 | * feature: AppImage type 2 support |
diff --git a/src/firejail/profile.c b/src/firejail/profile.c index 2d49b60c0..d188f97a8 100644 --- a/src/firejail/profile.c +++ b/src/firejail/profile.c | |||
@@ -215,6 +215,10 @@ int profile_check_line(char *ptr, int lineno, const char *fname) { | |||
215 | arg_no3d = 1; | 215 | arg_no3d = 1; |
216 | return 0; | 216 | return 0; |
217 | } | 217 | } |
218 | else if (strcmp(ptr, "allow-private-blacklist") == 0) { | ||
219 | arg_allow_private_blacklist = 1; | ||
220 | return 0; | ||
221 | } | ||
218 | else if (strcmp(ptr, "netfilter") == 0) { | 222 | else if (strcmp(ptr, "netfilter") == 0) { |
219 | #ifdef HAVE_NETWORK | 223 | #ifdef HAVE_NETWORK |
220 | if (checkcfg(CFG_NETWORK)) | 224 | if (checkcfg(CFG_NETWORK)) |