aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--README2
-rw-r--r--README.md2
-rw-r--r--RELNOTES3
-rw-r--r--etc/disable-programs.inc3
-rw-r--r--etc/godot.profile43
-rw-r--r--src/firecfg/firecfg.config3
6 files changed, 52 insertions, 4 deletions
diff --git a/README b/README
index a8d57d324..22ae557db 100644
--- a/README
+++ b/README
@@ -571,7 +571,7 @@ rusty-snake (https://github.com/rusty-snake)
571 - added profiles: kid3-qt, kid3-cli, anki, utox, mp3splt, mp3wrap 571 - added profiles: kid3-qt, kid3-cli, anki, utox, mp3splt, mp3wrap
572 - added profiles: oggsplt, flacsplt, cheese, inkview, mp3splt-gtk 572 - added profiles: oggsplt, flacsplt, cheese, inkview, mp3splt-gtk
573 - added profiles: ktouch, yelp, klatexformula, klatexformula_cmdl 573 - added profiles: ktouch, yelp, klatexformula, klatexformula_cmdl
574 - added profiles: pandoc 574 - added profiles: pandoc, gnome-sound-recorder, godot
575 - many profile fixing and hardening 575 - many profile fixing and hardening
576 - some typo fixes 576 - some typo fixes
577 - added profile templates 577 - added profile templates
diff --git a/README.md b/README.md
index c677a2cbb..26e26612c 100644
--- a/README.md
+++ b/README.md
@@ -111,4 +111,4 @@ We also keep a list of profile fixes for previous released versions in [etc-fixe
111 111
112## New profiles: 112## New profiles:
113 113
114klatexformula, klatexformula_cmdl, links, pandoc, qgis, teams-for-linux, xlinks. OpenArena 114klatexformula, klatexformula_cmdl, links, pandoc, qgis, teams-for-linux, xlinks OpenArena, gnome-sound-recorder, godot
diff --git a/RELNOTES b/RELNOTES
index 62d6cf1e9..639f989eb 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -2,7 +2,8 @@ firejail (0.9.61) baseline; urgency=low
2 * work in progress 2 * work in progress
3 * profile templates 3 * profile templates
4 * new profiles: qgis, klatexformula, klatexformula_cmdl, links, xlinks 4 * new profiles: qgis, klatexformula, klatexformula_cmdl, links, xlinks
5 * new profiles: pandoc, teams-for-linux, OpenArena 5 * new profiles: pandoc, teams-for-linux, OpenArena, gnome-sound-recorder
6 * new profiles: godot
6 -- netblue30 <netblue30@yahoo.com> Sat, 1 Jun 2019 08:00:00 -0500 7 -- netblue30 <netblue30@yahoo.com> Sat, 1 Jun 2019 08:00:00 -0500
7 8
8firejail (0.9.60) baseline; urgency=low 9firejail (0.9.60) baseline; urgency=low
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 7684aefff..356c8209c 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -179,6 +179,7 @@ blacklist ${HOME}/.config/git
179blacklist ${HOME}/.config/globaltime 179blacklist ${HOME}/.config/globaltime
180blacklist ${HOME}/.config/gnome-mplayer 180blacklist ${HOME}/.config/gnome-mplayer
181blacklist ${HOME}/.config/gnome-mpv 181blacklist ${HOME}/.config/gnome-mpv
182blacklist ${HOME}/.config/godot
182blacklist ${HOME}/.config/gnome-pie 183blacklist ${HOME}/.config/gnome-pie
183blacklist ${HOME}/.config/google-chrome 184blacklist ${HOME}/.config/google-chrome
184blacklist ${HOME}/.config/google-chrome-beta 185blacklist ${HOME}/.config/google-chrome-beta
@@ -492,6 +493,7 @@ blacklist ${HOME}/.local/share/gnome-photos
492blacklist ${HOME}/.local/share/gnome-recipes 493blacklist ${HOME}/.local/share/gnome-recipes
493blacklist ${HOME}/.local/share/gnome-ring 494blacklist ${HOME}/.local/share/gnome-ring
494blacklist ${HOME}/.local/share/gnome-twitch 495blacklist ${HOME}/.local/share/gnome-twitch
496blacklist ${HOME}/.local/share/godot
495blacklist ${HOME}/.local/share/gradio 497blacklist ${HOME}/.local/share/gradio
496blacklist ${HOME}/.local/share/gwenview 498blacklist ${HOME}/.local/share/gwenview
497blacklist ${HOME}/.local/share/kaffeine 499blacklist ${HOME}/.local/share/kaffeine
@@ -684,6 +686,7 @@ blacklist ${HOME}/.cache/fossamail
684blacklist ${HOME}/.cache/freecol 686blacklist ${HOME}/.cache/freecol
685blacklist ${HOME}/.cache/gajim 687blacklist ${HOME}/.cache/gajim
686blacklist ${HOME}/.cache/geeqie 688blacklist ${HOME}/.cache/geeqie
689blacklist ${HOME}/.cache/godot
687blacklist ${HOME}/.cache/google-chrome 690blacklist ${HOME}/.cache/google-chrome
688blacklist ${HOME}/.cache/google-chrome-beta 691blacklist ${HOME}/.cache/google-chrome-beta
689blacklist ${HOME}/.cache/google-chrome-unstable 692blacklist ${HOME}/.cache/google-chrome-unstable
diff --git a/etc/godot.profile b/etc/godot.profile
new file mode 100644
index 000000000..596b825eb
--- /dev/null
+++ b/etc/godot.profile
@@ -0,0 +1,43 @@
1# Firejail profile for godot
2# Description: multi-platform 2D and 3D game engine with a feature-rich editor
3# This file is overwritten after every install/update
4# Persistent local customizations
5include godot.local
6# Persistent global definitions
7include globals.local
8
9noblacklist ${HOME}/.cache/godot
10noblacklist ${HOME}/.config/godot
11noblacklist ${HOME}/.local/share/godot
12
13include disable-common.inc
14include disable-devel.inc
15include disable-exec.inc
16include disable-interpreters.inc
17include disable-passwdmgr.inc
18include disable-programs.inc
19include disable-xdg.inc
20
21include whitelist-var-common.inc
22
23caps.drop all
24netfilter
25nodbus
26nodvd
27nogroups
28nonewprivs
29noroot
30notv
31nou2f
32novideo
33protocol unix,inet,inet6,netlink
34seccomp
35shell none
36tracelog
37
38disable-mnt
39private-bin godot
40private-cache
41private-dev
42private-etc ca-certificates,crypto-policies,nsswitch.conf,pki,resolv.conf,ssl,fonts,alsa,asound.conf,machine-id,openal,pulse,alternatives,drirc
43private-tmp
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index ad8b99270..d1855d6f7 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -25,8 +25,8 @@ QOwnNotes
25Telegram 25Telegram
26Viber 26Viber
27VirtualBox 27VirtualBox
28Xephyr
29XMind 28XMind
29Xephyr
30abrowser 30abrowser
31akonadi_control 31akonadi_control
32akregator 32akregator
@@ -248,6 +248,7 @@ gnome-schedule
248gnome-system-log 248gnome-system-log
249gnome-twitch 249gnome-twitch
250gnome-weather 250gnome-weather
251godot
251goobox 252goobox
252google-chrome 253google-chrome
253google-chrome-beta 254google-chrome-beta
generated by cgit v1.2.3-54-g00ecf (git 2.45.1) at 2024-05-27 10:08:59 +0000