6 files changed, 44 insertions, 2 deletions
diff --git a/README.md b/README.md
index 5c193ce77..26b76361e 100644
--- a/README.md
+++ b/README.md
@@ -223,4 +223,4 @@ IntelliJ IDEA, Android Studio, electron, riot-web,
 Extreme Tux Racer, Frozen Bubble, Open Invaders, Pingus, Simutrans, SuperTux,
 telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg, hashcat, obs, picard,
 remmina, sdat2img, soundconverter, sqlitebrowse, truecraft, gnome-twitch, tuxguitar,
-musescore, neverball, Yandex Browser
+musescore, neverball, Yandex Browser, minetest
diff --git a/RELNOTES b/RELNOTES
index 68b8a6bbd..47b337c2f 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -28,7 +28,7 @@ firejail (0.9.50~rc1) baseline; urgency=low
  * new profiles: telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg,
  * new profiles: hashcat, obs, picard, remmina, sdat2img, soundconverter
  * new profiles: truecraft, gnome-twitch, tuxguitar, musescore, neverball
-  * new profiles: sqlitebrowse, Yandex Browser
+  * new profiles: sqlitebrowse, Yandex Browser, minetest
  * bugfixes
 -- netblue30 <netblue30@yahoo.com>  Mon, 12 Jun 2017 20:00:00 -0500
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 13ed3f212..7e44d582e 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -330,6 +330,7 @@ blacklist ${HOME}/.lv2
 blacklist ${HOME}/.mcabber
 blacklist ${HOME}/.mcabberrc
 blacklist ${HOME}/.mediathek3
+blacklist ${HOME}/.minetest
 blacklist ${HOME}/.mozilla
 blacklist ${HOME}/.mpdconf
 blacklist ${HOME}/.mplayer
diff --git a/etc/minetest.profile b/etc/minetest.profile
new file mode 100644
index 000000000..147328616
--- /dev/null
+++ b/etc/minetest.profile
@@ -0,0 +1,39 @@
+# Firejail profile for minetest
+# This file is overwritten after every install/update
+# Persistent local customizations
+include /etc/firejail/minetest.local
+# Persistent global definitions
+include /etc/firejail/globals.local
+noblacklist ${HOME}/.minetest
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+mkdir ${HOME}/.minetest
+whitelist ${HOME}/.minetest
+include /etc/firejail/whitelist-common.inc
+caps.drop all
+ipc-namespace
+netfilter
+nodvd
+nogroups
+nonewprivs
+noroot
+notv
+novideo
+protocol unix,inet,inet6
+seccomp
+shell none
+disable-mnt
+private-bin minetest
+private-dev
+private-etc asound.conf,ca-certificates,drirc,fonts,group,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,localtime,nsswitch.conf,passwd,pulse,resolv.conf,ssl
+private-tmp
+noexec ${HOME}
+noexec /tmp
diff --git a/platform/debian/conffiles b/platform/debian/conffiles
index cf1c50ec6..d87d1fc08 100644
--- a/platform/debian/conffiles
+++ b/platform/debian/conffiles
@@ -209,6 +209,7 @@
 /etc/firejail/mediathekview.profile
 /etc/firejail/meld.profile
 /etc/firejail/midori.profile
+/etc/firejail/minetest.profile
 /etc/firejail/mousepad.profile
 /etc/firejail/mplayer.profile
 /etc/firejail/mpv.profile
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 10a0cfd98..79b263823 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -186,6 +186,7 @@ mediainfo
 mediathekview
 meld
 midori
+minetest
 mousepad
 mplayer
 mpv

diff --git a/README.md b/README.md index 5c193ce77..26b76361e 100644 --- a/README.md +++ b/README.md
@@ -223,4 +223,4 @@ IntelliJ IDEA, Android Studio, electron, riot-web,
223	Extreme Tux Racer, Frozen Bubble, Open Invaders, Pingus, Simutrans, SuperTux,	223	Extreme Tux Racer, Frozen Bubble, Open Invaders, Pingus, Simutrans, SuperTux,
224	telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg, hashcat, obs, picard,	224	telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg, hashcat, obs, picard,
225	remmina, sdat2img, soundconverter, sqlitebrowse, truecraft, gnome-twitch, tuxguitar,	225	remmina, sdat2img, soundconverter, sqlitebrowse, truecraft, gnome-twitch, tuxguitar,
226	musescore, neverball, Yandex Browser	226	musescore, neverball, Yandex Browser, minetest


diff --git a/RELNOTES b/RELNOTES index 68b8a6bbd..47b337c2f 100644 --- a/RELNOTES +++ b/RELNOTES
@@ -28,7 +28,7 @@ firejail (0.9.50~rc1) baseline; urgency=low
28	* new profiles: telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg,	28	* new profiles: telegram-desktop, arm, rambox, apktool, baobab, dex2jar, gitg,
29	* new profiles: hashcat, obs, picard, remmina, sdat2img, soundconverter	29	* new profiles: hashcat, obs, picard, remmina, sdat2img, soundconverter
30	* new profiles: truecraft, gnome-twitch, tuxguitar, musescore, neverball	30	* new profiles: truecraft, gnome-twitch, tuxguitar, musescore, neverball
31	* new profiles: sqlitebrowse, Yandex Browser	31	* new profiles: sqlitebrowse, Yandex Browser, minetest
32	* bugfixes	32	* bugfixes
33	-- netblue30 <netblue30@yahoo.com> Mon, 12 Jun 2017 20:00:00 -0500	33	-- netblue30 <netblue30@yahoo.com> Mon, 12 Jun 2017 20:00:00 -0500
34		34


diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 13ed3f212..7e44d582e 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc
@@ -330,6 +330,7 @@ blacklist ${HOME}/.lv2
330	blacklist ${HOME}/.mcabber	330	blacklist ${HOME}/.mcabber
331	blacklist ${HOME}/.mcabberrc	331	blacklist ${HOME}/.mcabberrc
332	blacklist ${HOME}/.mediathek3	332	blacklist ${HOME}/.mediathek3
		333	blacklist ${HOME}/.minetest
333	blacklist ${HOME}/.mozilla	334	blacklist ${HOME}/.mozilla
334	blacklist ${HOME}/.mpdconf	335	blacklist ${HOME}/.mpdconf
335	blacklist ${HOME}/.mplayer	336	blacklist ${HOME}/.mplayer


diff --git a/etc/minetest.profile b/etc/minetest.profile new file mode 100644 index 000000000..147328616 --- /dev/null +++ b/etc/minetest.profile
@@ -0,0 +1,39 @@
		1	# Firejail profile for minetest
		2	# This file is overwritten after every install/update
		3	# Persistent local customizations
		4	include /etc/firejail/minetest.local
		5	# Persistent global definitions
		6	include /etc/firejail/globals.local
		7
		8	noblacklist ${HOME}/.minetest
		9
		10	include /etc/firejail/disable-common.inc
		11	include /etc/firejail/disable-devel.inc
		12	include /etc/firejail/disable-passwdmgr.inc
		13	include /etc/firejail/disable-programs.inc
		14
		15	mkdir ${HOME}/.minetest
		16	whitelist ${HOME}/.minetest
		17	include /etc/firejail/whitelist-common.inc
		18
		19	caps.drop all
		20	ipc-namespace
		21	netfilter
		22	nodvd
		23	nogroups
		24	nonewprivs
		25	noroot
		26	notv
		27	novideo
		28	protocol unix,inet,inet6
		29	seccomp
		30	shell none
		31
		32	disable-mnt
		33	private-bin minetest
		34	private-dev
		35	private-etc asound.conf,ca-certificates,drirc,fonts,group,host.conf,hostname,hosts,ld.so.cache,ld.so.preload,localtime,nsswitch.conf,passwd,pulse,resolv.conf,ssl
		36	private-tmp
		37
		38	noexec ${HOME}
		39	noexec /tmp


diff --git a/platform/debian/conffiles b/platform/debian/conffiles index cf1c50ec6..d87d1fc08 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles
@@ -209,6 +209,7 @@
209	/etc/firejail/mediathekview.profile	209	/etc/firejail/mediathekview.profile
210	/etc/firejail/meld.profile	210	/etc/firejail/meld.profile
211	/etc/firejail/midori.profile	211	/etc/firejail/midori.profile
		212	/etc/firejail/minetest.profile
212	/etc/firejail/mousepad.profile	213	/etc/firejail/mousepad.profile
213	/etc/firejail/mplayer.profile	214	/etc/firejail/mplayer.profile
214	/etc/firejail/mpv.profile	215	/etc/firejail/mpv.profile


diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config index 10a0cfd98..79b263823 100644 --- a/src/firecfg/firecfg.config +++ b/src/firecfg/firecfg.config
@@ -186,6 +186,7 @@ mediainfo
186	mediathekview	186	mediathekview
187	meld	187	meld
188	midori	188	midori
		189	minetest
189	mousepad	190	mousepad
190	mplayer	191	mplayer
191	mpv	192	mpv