diff options
Diffstat (limited to 'platform')
-rw-r--r-- | platform/debian/conffiles | 292 | ||||
-rw-r--r-- | platform/rpm/firejail.spec | 6 | ||||
-rwxr-xr-x | platform/rpm/old-mkrpm.sh | 542 | ||||
-rwxr-xr-x | platform/snap/snap.sh | 20 | ||||
-rw-r--r-- | platform/snap/snapcraft.yaml | 21 |
5 files changed, 812 insertions, 69 deletions
diff --git a/platform/debian/conffiles b/platform/debian/conffiles index dc8640147..97e7cf884 100644 --- a/platform/debian/conffiles +++ b/platform/debian/conffiles | |||
@@ -1,85 +1,239 @@ | |||
1 | /etc/firejail/evince.profile | 1 | /etc/firejail/0ad.profile |
2 | /etc/firejail/chromium.profile | 2 | /etc/firejail/7z.profile |
3 | /etc/firejail/Cyberfox.profile | ||
4 | /etc/firejail/Mathematica.profile | ||
5 | /etc/firejail/Telegram.profile | ||
6 | /etc/firejail/Wire.profile | ||
7 | /etc/firejail/abrowser.profile | ||
8 | /etc/firejail/amarok.profile | ||
9 | /etc/firejail/ark.profile | ||
10 | /etc/firejail/atom-beta.profile | ||
11 | /etc/firejail/atom.profile | ||
12 | /etc/firejail/atool.profile | ||
13 | /etc/firejail/atril.profile | ||
14 | /etc/firejail/audacious.profile | ||
15 | /etc/firejail/audacity.profile | ||
16 | /etc/firejail/aweather.profile | ||
17 | /etc/firejail/bitlbee.profile | ||
18 | /etc/firejail/bleachbit.profile | ||
19 | /etc/firejail/brasero.profile | ||
20 | /etc/firejail/brave.profile | ||
21 | /etc/firejail/cherrytree.profile | ||
3 | /etc/firejail/chromium-browser.profile | 22 | /etc/firejail/chromium-browser.profile |
4 | /etc/firejail/google-chrome.profile | 23 | /etc/firejail/chromium.profile |
5 | /etc/firejail/google-chrome-stable.profile | 24 | /etc/firejail/claws-mail.profile |
25 | /etc/firejail/clementine.profile | ||
26 | /etc/firejail/cmus.profile | ||
27 | /etc/firejail/conkeror.profile | ||
28 | /etc/firejail/corebird.profile | ||
29 | /etc/firejail/cpio.profile | ||
30 | /etc/firejail/cryptocat.profile | ||
31 | /etc/firejail/Cryptocat.profile | ||
32 | /etc/firejail/cyberfox.profile | ||
33 | /etc/firejail/deadbeef.profile | ||
34 | /etc/firejail/default.profile | ||
35 | /etc/firejail/deluge.profile | ||
36 | /etc/firejail/dillo.profile | ||
37 | /etc/firejail/disable-common.inc | ||
38 | /etc/firejail/disable-devel.inc | ||
39 | /etc/firejail/disable-passwdmgr.inc | ||
40 | /etc/firejail/disable-programs.inc | ||
41 | /etc/firejail/display.profile | ||
42 | /etc/firejail/dnscrypt-proxy.profile | ||
43 | /etc/firejail/dnsmasq.profile | ||
44 | /etc/firejail/dolphin.profile | ||
45 | /etc/firejail/dosbox.profile | ||
46 | /etc/firejail/dragon.profile | ||
47 | /etc/firejail/dropbox.profile | ||
48 | /etc/firejail/elinks.profile | ||
49 | /etc/firejail/emacs.profile | ||
50 | /etc/firejail/empathy.profile | ||
51 | /etc/firejail/enchant.profile | ||
52 | /etc/firejail/eog.profile | ||
53 | /etc/firejail/eom.profile | ||
54 | /etc/firejail/epiphany.profile | ||
55 | /etc/firejail/evince.profile | ||
56 | /etc/firejail/evolution.profile | ||
57 | /etc/firejail/exiftool.profile | ||
58 | /etc/firejail/fbreader.profile | ||
59 | /etc/firejail/feh.profile | ||
60 | /etc/firejail/file-roller.profile | ||
61 | /etc/firejail/file.profile | ||
62 | /etc/firejail/filezilla.profile | ||
63 | /etc/firejail/firefox-esr.profile | ||
64 | /etc/firejail/firefox.profile | ||
65 | /etc/firejail/firejail.config | ||
66 | /etc/firejail/flashpeak-slimjet.profile | ||
67 | /etc/firejail/flowblade.profile | ||
68 | /etc/firejail/franz.profile | ||
69 | /etc/firejail/gajim.profile | ||
70 | /etc/firejail/gedit.profile | ||
71 | /etc/firejail/gimp.profile | ||
72 | /etc/firejail/git.profile | ||
73 | /etc/firejail/gitter.profile | ||
74 | /etc/firejail/gjs.profile | ||
75 | /etc/firejail/gnome-books.profile | ||
76 | /etc/firejail/gnome-chess.profile | ||
77 | /etc/firejail/gnome-clocks.profile | ||
78 | /etc/firejail/gnome-documents.profile | ||
79 | /etc/firejail/gnome-maps.profile | ||
80 | /etc/firejail/gnome-mplayer.profile | ||
81 | /etc/firejail/gnome-music.profile | ||
82 | /etc/firejail/gnome-photos.profile | ||
83 | /etc/firejail/gnome-weather.profile | ||
84 | /etc/firejail/goobox.profile | ||
6 | /etc/firejail/google-chrome-beta.profile | 85 | /etc/firejail/google-chrome-beta.profile |
86 | /etc/firejail/google-chrome-stable.profile | ||
7 | /etc/firejail/google-chrome-unstable.profile | 87 | /etc/firejail/google-chrome-unstable.profile |
8 | /etc/firejail/midori.profile | 88 | /etc/firejail/google-chrome.profile |
89 | /etc/firejail/google-play-music-desktop-player.profile | ||
90 | /etc/firejail/gpa.profile | ||
91 | /etc/firejail/gpg-agent.profile | ||
92 | /etc/firejail/gpg.profile | ||
93 | /etc/firejail/gpredict.profile | ||
94 | /etc/firejail/gtar.profile | ||
95 | /etc/firejail/gthumb.profile | ||
96 | /etc/firejail/guayadeque.profile | ||
97 | /etc/firejail/gwenview.profile | ||
98 | /etc/firejail/gzip.profile | ||
99 | /etc/firejail/hedgewars.profile | ||
100 | /etc/firejail/hexchat.profile | ||
101 | /etc/firejail/highlight.profile | ||
102 | /etc/firejail/icecat.profile | ||
9 | /etc/firejail/icedove.profile | 103 | /etc/firejail/icedove.profile |
10 | /etc/firejail/iceweasel.profile | 104 | /etc/firejail/iceweasel.profile |
11 | /etc/firejail/dropbox.profile | 105 | /etc/firejail/img2txt.profile |
106 | /etc/firejail/inkscape.profile | ||
107 | /etc/firejail/inox.profile | ||
108 | /etc/firejail/jitsi.profile | ||
109 | /etc/firejail/k3b.profile | ||
110 | /etc/firejail/kate.profile | ||
111 | /etc/firejail/keepass.profile | ||
112 | /etc/firejail/keepass2.profile | ||
113 | /etc/firejail/keepassx.profile | ||
114 | /etc/firejail/kmail.profile | ||
115 | /etc/firejail/konversation.profile | ||
116 | /etc/firejail/less.profile | ||
117 | /etc/firejail/libreoffice.profile | ||
118 | /etc/firejail/localc.profile | ||
119 | /etc/firejail/lodraw.profile | ||
120 | /etc/firejail/loffice.profile | ||
121 | /etc/firejail/lofromtemplate.profile | ||
12 | /etc/firejail/login.users | 122 | /etc/firejail/login.users |
13 | /etc/firejail/firefox.profile | 123 | /etc/firejail/loimpress.profile |
14 | /etc/firejail/opera.profile | 124 | /etc/firejail/lomath.profile |
125 | /etc/firejail/loweb.profile | ||
126 | /etc/firejail/lowriter.profile | ||
127 | /etc/firejail/luminance-hdr.profile | ||
128 | /etc/firejail/lxterminal.profile | ||
129 | /etc/firejail/lynx.profile | ||
130 | /etc/firejail/mathematica.profile | ||
131 | /etc/firejail/mcabber.profile | ||
132 | /etc/firejail/mediainfo.profile | ||
133 | /etc/firejail/midori.profile | ||
134 | /etc/firejail/mpv.profile | ||
135 | /etc/firejail/mumble.profile | ||
136 | /etc/firejail/mupdf.profile | ||
137 | /etc/firejail/mupen64plus.profile | ||
138 | /etc/firejail/mutt.profile | ||
139 | /etc/firejail/nautilus.profile | ||
140 | /etc/firejail/netsurf.profile | ||
141 | /etc/firejail/nolocal.net | ||
142 | /etc/firejail/odt2txt.profile | ||
143 | /etc/firejail/okular.profile | ||
144 | /etc/firejail/openbox.profile | ||
145 | /etc/firejail/openshot.profile | ||
15 | /etc/firejail/opera-beta.profile | 146 | /etc/firejail/opera-beta.profile |
16 | /etc/firejail/thunderbird.profile | 147 | /etc/firejail/opera.profile |
17 | /etc/firejail/transmission-gtk.profile | 148 | /etc/firejail/palemoon.profile |
18 | /etc/firejail/transmission-qt.profile | 149 | /etc/firejail/parole.profile |
19 | /etc/firejail/vlc.profile | 150 | /etc/firejail/pdftotext.profile |
20 | /etc/firejail/audacious.profile | 151 | /etc/firejail/pidgin.profile |
21 | /etc/firejail/clementine.profile | 152 | /etc/firejail/pix.profile |
22 | /etc/firejail/epiphany.profile | 153 | /etc/firejail/pluma.profile |
23 | /etc/firejail/qtox.profile | ||
24 | /etc/firejail/polari.profile | 154 | /etc/firejail/polari.profile |
25 | /etc/firejail/gnome-mplayer.profile | 155 | /etc/firejail/psi-plus.profile |
26 | /etc/firejail/rhythmbox.profile | ||
27 | /etc/firejail/totem.profile | ||
28 | /etc/firejail/deluge.profile | ||
29 | /etc/firejail/qbittorrent.profile | 156 | /etc/firejail/qbittorrent.profile |
30 | /etc/firejail/generic.profile | 157 | /etc/firejail/qemu-launcher.profile |
31 | /etc/firejail/xchat.profile | 158 | /etc/firejail/qemu-system-x86_64.profile |
32 | /etc/firejail/server.profile | 159 | /etc/firejail/qpdfview.profile |
160 | /etc/firejail/qtox.profile | ||
33 | /etc/firejail/quassel.profile | 161 | /etc/firejail/quassel.profile |
34 | /etc/firejail/pidgin.profile | 162 | /etc/firejail/quiterss.profile |
35 | /etc/firejail/filezilla.profile | 163 | /etc/firejail/qutebrowser.profile |
36 | /etc/firejail/empathy.profile | 164 | /etc/firejail/ranger.profile |
37 | /etc/firejail/disable-common.inc | 165 | /etc/firejail/rhythmbox.profile |
38 | /etc/firejail/deadbeef.profile | 166 | /etc/firejail/rtorrent.profile |
39 | /etc/firejail/icecat.profile | 167 | /etc/firejail/seamonkey-bin.profile |
40 | /etc/firejail/fbreader.profile | 168 | /etc/firejail/seamonkey.profile |
41 | /etc/firejail/spotify.profile | 169 | /etc/firejail/server.profile |
170 | /etc/firejail/simple-scan.profile | ||
171 | /etc/firejail/skanlite.profile | ||
42 | /etc/firejail/skype.profile | 172 | /etc/firejail/skype.profile |
173 | /etc/firejail/skypeforlinux.profile | ||
174 | /etc/firejail/slack.profile | ||
175 | /etc/firejail/snap.profile | ||
176 | /etc/firejail/soffice.profile | ||
177 | /etc/firejail/spotify.profile | ||
178 | /etc/firejail/ssh-agent.profile | ||
179 | /etc/firejail/ssh.profile | ||
180 | /etc/firejail/start-tor-browser.profile | ||
43 | /etc/firejail/steam.profile | 181 | /etc/firejail/steam.profile |
44 | /etc/firejail/wine.profile | 182 | /etc/firejail/stellarium.profile |
45 | /etc/firejail/disable-devel.inc | 183 | /etc/firejail/strings.profile |
46 | /etc/firejail/conkeror.profile | 184 | /etc/firejail/synfigstudio.profile |
185 | /etc/firejail/tar.profile | ||
186 | /etc/firejail/telegram.profile | ||
187 | /etc/firejail/thunderbird.profile | ||
188 | /etc/firejail/totem.profile | ||
189 | /etc/firejail/tracker.profile | ||
190 | /etc/firejail/transmission-cli.profile | ||
191 | /etc/firejail/transmission-gtk.profile | ||
192 | /etc/firejail/transmission-qt.profile | ||
193 | /etc/firejail/transmission-show.profile | ||
194 | /etc/firejail/uget-gtk.profile | ||
47 | /etc/firejail/unbound.profile | 195 | /etc/firejail/unbound.profile |
48 | /etc/firejail/dnscrypt-proxy.profile | 196 | /etc/firejail/unrar.profile |
49 | /etc/firejail/whitelist-common.inc | 197 | /etc/firejail/unzip.profile |
50 | /etc/firejail/nolocal.net | 198 | /etc/firejail/uudeview.profile |
199 | /etc/firejail/vim.profile | ||
200 | /etc/firejail/virtualbox.profile | ||
201 | /etc/firejail/vivaldi-beta.profile | ||
202 | /etc/firejail/vivaldi.profile | ||
203 | /etc/firejail/vlc.profile | ||
204 | /etc/firejail/w3m.profile | ||
205 | /etc/firejail/warzone2100.profile | ||
51 | /etc/firejail/webserver.net | 206 | /etc/firejail/webserver.net |
52 | /etc/firejail/bitlbee.profile | ||
53 | /etc/firejail/weechat.profile | ||
54 | /etc/firejail/weechat-curses.profile | 207 | /etc/firejail/weechat-curses.profile |
55 | /etc/firejail/hexchat.profile | 208 | /etc/firejail/weechat.profile |
56 | /etc/firejail/rtorrent.profile | ||
57 | /etc/firejail/parole.profile | ||
58 | /etc/firejail/kmail.profile | ||
59 | /etc/firejail/seamonkey.profile | ||
60 | /etc/firejail/seamonkey-bin.profile | ||
61 | /etc/firejail/telegram.profile | ||
62 | /etc/firejail/mathematica.profile | ||
63 | /etc/firejail/Mathematica.profile | ||
64 | /etc/firejail/uget-gtk.profile | ||
65 | /etc/firejail/mupen64plus.profile | ||
66 | /etc/firejail/lxterminal.profile | ||
67 | /etc/firejail/cherrytree.profile | ||
68 | /etc/firejail/wesnoth.profile | 209 | /etc/firejail/wesnoth.profile |
69 | /etc/firejail/hedgewars.profile | 210 | /etc/firejail/whitelist-common.inc |
70 | /etc/firejail/vivaldi.profile | 211 | /etc/firejail/wine.profile |
71 | /etc/firejail/vivaldi-beta.profile | 212 | /etc/firejail/wire.profile |
72 | /etc/firejail/atril.profile | 213 | /etc/firejail/wireshark.profile |
73 | /etc/firejail/firejail.config | 214 | /etc/firejail/xchat.profile |
74 | /etc/firejail/qutebrowser.profile | 215 | /etc/firejail/xed.profile |
75 | /etc/firejail/flashpeak-slimjet.profile | 216 | /etc/firejail/xfburn.profile |
76 | /etc/firejail/ssh.profile | 217 | /etc/firejail/xiphos.profile |
77 | /etc/firejail/openbox.profile | 218 | /etc/firejail/xpdf.profile |
78 | /etc/firejail/disable-programs.inc | 219 | /etc/firejail/xplayer.profile |
79 | /etc/firejail/disable-passwdmgr.inc | 220 | /etc/firejail/xpra.profile |
80 | /etc/firejail/dillo.profile | 221 | /etc/firejail/xreader.profile |
81 | /etc/firejail/cmus.profile | 222 | /etc/firejail/xviewer.profile |
82 | /etc/firejail/dnsmasq.profile | 223 | /etc/firejail/xz.profile |
83 | /etc/firejail/palemoon.profile | 224 | /etc/firejail/xzdec.profile |
84 | /etc/firejail/abrowser.profile | 225 | /etc/firejail/zathura.profile |
85 | /etc/firejail/0ad.profile | 226 | /etc/firejail/zoom.profile |
227 | /etc/firejail/wget.profile | ||
228 | /etc/firejail/bless.profile | ||
229 | /etc/firejail/gnome-2048.profile | ||
230 | /etc/firejail/gnome-calculator.profile | ||
231 | /etc/firejail/gnome-contacts.profile | ||
232 | /etc/firejail/jd-gui.profile | ||
233 | /etc/firejail/lollypop.profile | ||
234 | /etc/firejail/multimc5.profile | ||
235 | /etc/firejail/pdfsam.profile | ||
236 | /etc/firejail/pithos.profile | ||
237 | /etc/firejail/xonotic-glx.profile | ||
238 | /etc/firejail/xonotic-sdl.profile | ||
239 | /etc/firejail/xonotic.profile | ||
diff --git a/platform/rpm/firejail.spec b/platform/rpm/firejail.spec index e365af2d6..67280921a 100644 --- a/platform/rpm/firejail.spec +++ b/platform/rpm/firejail.spec | |||
@@ -33,16 +33,22 @@ rm -rf %{buildroot} | |||
33 | %doc | 33 | %doc |
34 | %defattr(-, root, root, -) | 34 | %defattr(-, root, root, -) |
35 | %attr(4755, -, -) %{_bindir}/__NAME__ | 35 | %attr(4755, -, -) %{_bindir}/__NAME__ |
36 | %{_bindir}/firecfg | ||
36 | %{_bindir}/firemon | 37 | %{_bindir}/firemon |
38 | %{_libdir}/__NAME__/firecfg.config | ||
37 | %{_libdir}/__NAME__/ftee | 39 | %{_libdir}/__NAME__/ftee |
40 | %{_libdir}/__NAME__/faudit | ||
38 | %{_libdir}/__NAME__/fshaper.sh | 41 | %{_libdir}/__NAME__/fshaper.sh |
39 | %{_libdir}/__NAME__/libtrace.so | 42 | %{_libdir}/__NAME__/libtrace.so |
40 | %{_libdir}/__NAME__/libtracelog.so | 43 | %{_libdir}/__NAME__/libtracelog.so |
41 | %{_datarootdir}/bash-completion/completions/__NAME__ | 44 | %{_datarootdir}/bash-completion/completions/__NAME__ |
45 | %{_datarootdir}/bash-completion/completions/firecfg | ||
42 | %{_datarootdir}/bash-completion/completions/firemon | 46 | %{_datarootdir}/bash-completion/completions/firemon |
43 | %{_docdir}/__NAME__ | 47 | %{_docdir}/__NAME__ |
44 | %{_mandir}/man1/__NAME__.1.gz | 48 | %{_mandir}/man1/__NAME__.1.gz |
49 | %{_mandir}/man1/firecfg.1.gz | ||
45 | %{_mandir}/man1/firemon.1.gz | 50 | %{_mandir}/man1/firemon.1.gz |
51 | %{_mandir}/man5/__NAME__-config.5.gz | ||
46 | %{_mandir}/man5/__NAME__-login.5.gz | 52 | %{_mandir}/man5/__NAME__-login.5.gz |
47 | %{_mandir}/man5/__NAME__-profile.5.gz | 53 | %{_mandir}/man5/__NAME__-profile.5.gz |
48 | %config %{_sysconfdir}/__NAME__ | 54 | %config %{_sysconfdir}/__NAME__ |
diff --git a/platform/rpm/old-mkrpm.sh b/platform/rpm/old-mkrpm.sh new file mode 100755 index 000000000..017d5e1c3 --- /dev/null +++ b/platform/rpm/old-mkrpm.sh | |||
@@ -0,0 +1,542 @@ | |||
1 | #!/bin/bash | ||
2 | VERSION="0.9.44" | ||
3 | rm -fr ~/rpmbuild | ||
4 | rm -f firejail-$VERSION-1.x86_64.rpm | ||
5 | |||
6 | mkdir -p ~/rpmbuild/{RPMS,SRPMS,BUILD,SOURCES,SPECS,tmp} | ||
7 | cat <<EOF >~/.rpmmacros | ||
8 | %_topdir %(echo $HOME)/rpmbuild | ||
9 | %_tmppath %{_topdir}/tmp | ||
10 | EOF | ||
11 | |||
12 | cd ~/rpmbuild | ||
13 | echo "building directory tree" | ||
14 | |||
15 | mkdir -p firejail-$VERSION/usr/bin | ||
16 | install -m 755 /usr/bin/firejail firejail-$VERSION/usr/bin/. | ||
17 | install -m 755 /usr/bin/firemon firejail-$VERSION/usr/bin/. | ||
18 | install -m 755 /usr/bin/firecfg firejail-$VERSION/usr/bin/. | ||
19 | |||
20 | mkdir -p firejail-$VERSION/usr/lib/firejail | ||
21 | install -m 755 /usr/lib/firejail/faudit firejail-$VERSION/usr/lib/firejail/. | ||
22 | install -m 644 /usr/lib/firejail/firecfg.config firejail-$VERSION/usr/lib/firejail/. | ||
23 | install -m 755 /usr/lib/firejail/fshaper.sh firejail-$VERSION/usr/lib/firejail/. | ||
24 | install -m 755 /usr/lib/firejail/ftee firejail-$VERSION/usr/lib/firejail/. | ||
25 | install -m 644 /usr/lib/firejail/libtrace.so firejail-$VERSION/usr/lib/firejail/. | ||
26 | install -m 644 /usr/lib/firejail/libtracelog.so firejail-$VERSION/usr/lib/firejail/. | ||
27 | install -m 644 /usr/lib/firejail/libconnect.so firejail-$VERSION/usr/lib/firejail/. | ||
28 | |||
29 | mkdir -p firejail-$VERSION/usr/share/man/man1 | ||
30 | install -m 644 /usr/share/man/man1/firejail.1.gz firejail-$VERSION/usr/share/man/man1/. | ||
31 | install -m 644 /usr/share/man/man1/firemon.1.gz firejail-$VERSION/usr/share/man/man1/. | ||
32 | install -m 644 /usr/share/man/man1/firecfg.1.gz firejail-$VERSION/usr/share/man/man1/. | ||
33 | |||
34 | mkdir -p firejail-$VERSION/usr/share/man/man5 | ||
35 | install -m 644 /usr/share/man/man5/firejail-profile.5.gz firejail-$VERSION/usr/share/man/man5/. | ||
36 | install -m 644 /usr/share/man/man5/firejail-login.5.gz firejail-$VERSION/usr/share/man/man5/. | ||
37 | |||
38 | mkdir -p firejail-$VERSION/usr/share/doc/packages/firejail | ||
39 | install -m 644 /usr/share/doc/firejail/COPYING firejail-$VERSION/usr/share/doc/packages/firejail/. | ||
40 | install -m 644 /usr/share/doc/firejail/README firejail-$VERSION/usr/share/doc/packages/firejail/. | ||
41 | install -m 644 /usr/share/doc/firejail/RELNOTES firejail-$VERSION/usr/share/doc/packages/firejail/. | ||
42 | |||
43 | mkdir -p firejail-$VERSION/etc/firejail | ||
44 | install -m 644 /etc/firejail/0ad.profile firejail-$VERSION/etc/firejail/. | ||
45 | install -m 644 /etc/firejail/abrowser.profile firejail-$VERSION/etc/firejail/. | ||
46 | install -m 644 /etc/firejail/atom-beta.profile firejail-$VERSION/etc/firejail/. | ||
47 | install -m 644 /etc/firejail/atom.profile firejail-$VERSION/etc/firejail/. | ||
48 | install -m 644 /etc/firejail/atril.profile firejail-$VERSION/etc/firejail/. | ||
49 | install -m 644 /etc/firejail/audacious.profile firejail-$VERSION/etc/firejail/. | ||
50 | install -m 644 /etc/firejail/audacity.profile firejail-$VERSION/etc/firejail/. | ||
51 | install -m 644 /etc/firejail/aweather.profile firejail-$VERSION/etc/firejail/. | ||
52 | install -m 644 /etc/firejail/bitlbee.profile firejail-$VERSION/etc/firejail/. | ||
53 | install -m 644 /etc/firejail/brave.profile firejail-$VERSION/etc/firejail/. | ||
54 | install -m 644 /etc/firejail/cherrytree.profile firejail-$VERSION/etc/firejail/. | ||
55 | install -m 644 /etc/firejail/chromium-browser.profile firejail-$VERSION/etc/firejail/. | ||
56 | install -m 644 /etc/firejail/chromium.profile firejail-$VERSION/etc/firejail/. | ||
57 | install -m 644 /etc/firejail/clementine.profile firejail-$VERSION/etc/firejail/. | ||
58 | install -m 644 /etc/firejail/cmus.profile firejail-$VERSION/etc/firejail/. | ||
59 | install -m 644 /etc/firejail/conkeror.profile firejail-$VERSION/etc/firejail/. | ||
60 | install -m 644 /etc/firejail/corebird.profile firejail-$VERSION/etc/firejail/. | ||
61 | install -m 644 /etc/firejail/cpio.profile firejail-$VERSION/etc/firejail/. | ||
62 | install -m 644 /etc/firejail/cyberfox.profile firejail-$VERSION/etc/firejail/. | ||
63 | install -m 644 /etc/firejail/Cyberfox.profile firejail-$VERSION/etc/firejail/. | ||
64 | install -m 644 /etc/firejail/deadbeef.profile firejail-$VERSION/etc/firejail/. | ||
65 | install -m 644 /etc/firejail/default.profile firejail-$VERSION/etc/firejail/. | ||
66 | install -m 644 /etc/firejail/deluge.profile firejail-$VERSION/etc/firejail/. | ||
67 | install -m 644 /etc/firejail/dillo.profile firejail-$VERSION/etc/firejail/. | ||
68 | install -m 644 /etc/firejail/disable-common.inc firejail-$VERSION/etc/firejail/. | ||
69 | install -m 644 /etc/firejail/disable-devel.inc firejail-$VERSION/etc/firejail/. | ||
70 | install -m 644 /etc/firejail/disable-passwdmgr.inc firejail-$VERSION/etc/firejail/. | ||
71 | install -m 644 /etc/firejail/disable-programs.inc firejail-$VERSION/etc/firejail/. | ||
72 | install -m 644 /etc/firejail/dnscrypt-proxy.profile firejail-$VERSION/etc/firejail/. | ||
73 | install -m 644 /etc/firejail/dnsmasq.profile firejail-$VERSION/etc/firejail/. | ||
74 | install -m 644 /etc/firejail/dosbox.profile firejail-$VERSION/etc/firejail/. | ||
75 | install -m 644 /etc/firejail/dropbox.profile firejail-$VERSION/etc/firejail/. | ||
76 | install -m 644 /etc/firejail/empathy.profile firejail-$VERSION/etc/firejail/. | ||
77 | install -m 644 /etc/firejail/eom.profile firejail-$VERSION/etc/firejail/. | ||
78 | install -m 644 /etc/firejail/epiphany.profile firejail-$VERSION/etc/firejail/. | ||
79 | install -m 644 /etc/firejail/evince.profile firejail-$VERSION/etc/firejail/. | ||
80 | install -m 644 /etc/firejail/fbreader.profile firejail-$VERSION/etc/firejail/. | ||
81 | install -m 644 /etc/firejail/file.profile firejail-$VERSION/etc/firejail/. | ||
82 | install -m 644 /etc/firejail/filezilla.profile firejail-$VERSION/etc/firejail/. | ||
83 | install -m 644 /etc/firejail/firefox-esr.profile firejail-$VERSION/etc/firejail/. | ||
84 | install -m 644 /etc/firejail/firefox.profile firejail-$VERSION/etc/firejail/. | ||
85 | install -m 644 /etc/firejail/firejail.config firejail-$VERSION/etc/firejail/. | ||
86 | install -m 644 /etc/firejail/flashpeak-slimjet.profile firejail-$VERSION/etc/firejail/. | ||
87 | install -m 644 /etc/firejail/franz.profile firejail-$VERSION/etc/firejail/. | ||
88 | install -m 644 /etc/firejail/gajim.profile firejail-$VERSION/etc/firejail/. | ||
89 | install -m 644 /etc/firejail/gitter.profile firejail-$VERSION/etc/firejail/. | ||
90 | install -m 644 /etc/firejail/gnome-chess.profile firejail-$VERSION/etc/firejail/. | ||
91 | install -m 644 /etc/firejail/gnome-mplayer.profile firejail-$VERSION/etc/firejail/. | ||
92 | install -m 644 /etc/firejail/google-chrome-beta.profile firejail-$VERSION/etc/firejail/. | ||
93 | install -m 644 /etc/firejail/google-chrome.profile firejail-$VERSION/etc/firejail/. | ||
94 | install -m 644 /etc/firejail/google-chrome-stable.profile firejail-$VERSION/etc/firejail/. | ||
95 | install -m 644 /etc/firejail/google-chrome-unstable.profile firejail-$VERSION/etc/firejail/. | ||
96 | install -m 644 /etc/firejail/google-play-music-desktop-player.profile firejail-$VERSION/etc/firejail/. | ||
97 | install -m 644 /etc/firejail/gpredict.profile firejail-$VERSION/etc/firejail/. | ||
98 | install -m 644 /etc/firejail/gtar.profile firejail-$VERSION/etc/firejail/. | ||
99 | install -m 644 /etc/firejail/gthumb.profile firejail-$VERSION/etc/firejail/. | ||
100 | install -m 644 /etc/firejail/gwenview.profile firejail-$VERSION/etc/firejail/. | ||
101 | install -m 644 /etc/firejail/gzip.profile firejail-$VERSION/etc/firejail/. | ||
102 | install -m 644 /etc/firejail/hedgewars.profile firejail-$VERSION/etc/firejail/. | ||
103 | install -m 644 /etc/firejail/hexchat.profile firejail-$VERSION/etc/firejail/. | ||
104 | install -m 644 /etc/firejail/icecat.profile firejail-$VERSION/etc/firejail/. | ||
105 | install -m 644 /etc/firejail/icedove.profile firejail-$VERSION/etc/firejail/. | ||
106 | install -m 644 /etc/firejail/iceweasel.profile firejail-$VERSION/etc/firejail/. | ||
107 | install -m 644 /etc/firejail/inox.profile firejail-$VERSION/etc/firejail/. | ||
108 | install -m 644 /etc/firejail/jitsi.profile firejail-$VERSION/etc/firejail/. | ||
109 | install -m 644 /etc/firejail/kmail.profile firejail-$VERSION/etc/firejail/. | ||
110 | install -m 644 /etc/firejail/konversation.profile firejail-$VERSION/etc/firejail/. | ||
111 | install -m 644 /etc/firejail/less.profile firejail-$VERSION/etc/firejail/. | ||
112 | install -m 644 /etc/firejail/libreoffice.profile firejail-$VERSION/etc/firejail/. | ||
113 | install -m 644 /etc/firejail/localc.profile firejail-$VERSION/etc/firejail/. | ||
114 | install -m 644 /etc/firejail/lodraw.profile firejail-$VERSION/etc/firejail/. | ||
115 | install -m 644 /etc/firejail/loffice.profile firejail-$VERSION/etc/firejail/. | ||
116 | install -m 644 /etc/firejail/lofromtemplate.profile firejail-$VERSION/etc/firejail/. | ||
117 | install -m 644 /etc/firejail/login.users firejail-$VERSION/etc/firejail/. | ||
118 | install -m 644 /etc/firejail/loimpress.profile firejail-$VERSION/etc/firejail/. | ||
119 | install -m 644 /etc/firejail/lomath.profile firejail-$VERSION/etc/firejail/. | ||
120 | install -m 644 /etc/firejail/loweb.profile firejail-$VERSION/etc/firejail/. | ||
121 | install -m 644 /etc/firejail/lowriter.profile firejail-$VERSION/etc/firejail/. | ||
122 | install -m 644 /etc/firejail/lxterminal.profile firejail-$VERSION/etc/firejail/. | ||
123 | install -m 644 /etc/firejail/mathematica.profile firejail-$VERSION/etc/firejail/. | ||
124 | install -m 644 /etc/firejail/Mathematica.profile firejail-$VERSION/etc/firejail/. | ||
125 | install -m 644 /etc/firejail/mcabber.profile firejail-$VERSION/etc/firejail/. | ||
126 | install -m 644 /etc/firejail/midori.profile firejail-$VERSION/etc/firejail/. | ||
127 | install -m 644 /etc/firejail/mpv.profile firejail-$VERSION/etc/firejail/. | ||
128 | install -m 644 /etc/firejail/mupen64plus.profile firejail-$VERSION/etc/firejail/. | ||
129 | install -m 644 /etc/firejail/netsurf.profile firejail-$VERSION/etc/firejail/. | ||
130 | install -m 644 /etc/firejail/nolocal.net firejail-$VERSION/etc/firejail/. | ||
131 | install -m 644 /etc/firejail/okular.profile firejail-$VERSION/etc/firejail/. | ||
132 | install -m 644 /etc/firejail/openbox.profile firejail-$VERSION/etc/firejail/. | ||
133 | install -m 644 /etc/firejail/opera-beta.profile firejail-$VERSION/etc/firejail/. | ||
134 | install -m 644 /etc/firejail/opera.profile firejail-$VERSION/etc/firejail/. | ||
135 | install -m 644 /etc/firejail/palemoon.profile firejail-$VERSION/etc/firejail/. | ||
136 | install -m 644 /etc/firejail/parole.profile firejail-$VERSION/etc/firejail/. | ||
137 | install -m 644 /etc/firejail/pidgin.profile firejail-$VERSION/etc/firejail/. | ||
138 | install -m 644 /etc/firejail/pix.profile firejail-$VERSION/etc/firejail/. | ||
139 | install -m 644 /etc/firejail/polari.profile firejail-$VERSION/etc/firejail/. | ||
140 | install -m 644 /etc/firejail/psi-plus.profile firejail-$VERSION/etc/firejail/. | ||
141 | install -m 644 /etc/firejail/qbittorrent.profile firejail-$VERSION/etc/firejail/. | ||
142 | install -m 644 /etc/firejail/qtox.profile firejail-$VERSION/etc/firejail/. | ||
143 | install -m 644 /etc/firejail/quassel.profile firejail-$VERSION/etc/firejail/. | ||
144 | install -m 644 /etc/firejail/quiterss.profile firejail-$VERSION/etc/firejail/. | ||
145 | install -m 644 /etc/firejail/qutebrowser.profile firejail-$VERSION/etc/firejail/. | ||
146 | install -m 644 /etc/firejail/rhythmbox.profile firejail-$VERSION/etc/firejail/. | ||
147 | install -m 644 /etc/firejail/rtorrent.profile firejail-$VERSION/etc/firejail/. | ||
148 | install -m 644 /etc/firejail/seamonkey-bin.profile firejail-$VERSION/etc/firejail/. | ||
149 | install -m 644 /etc/firejail/seamonkey.profile firejail-$VERSION/etc/firejail/. | ||
150 | install -m 644 /etc/firejail/server.profile firejail-$VERSION/etc/firejail/. | ||
151 | install -m 644 /etc/firejail/skypeforlinux.profile firejail-$VERSION/etc/firejail/. | ||
152 | install -m 644 /etc/firejail/skype.profile firejail-$VERSION/etc/firejail/. | ||
153 | install -m 644 /etc/firejail/slack.profile firejail-$VERSION/etc/firejail/. | ||
154 | install -m 644 /etc/firejail/snap.profile firejail-$VERSION/etc/firejail/. | ||
155 | install -m 644 /etc/firejail/soffice.profile firejail-$VERSION/etc/firejail/. | ||
156 | install -m 644 /etc/firejail/spotify.profile firejail-$VERSION/etc/firejail/. | ||
157 | install -m 644 /etc/firejail/ssh.profile firejail-$VERSION/etc/firejail/. | ||
158 | install -m 644 /etc/firejail/steam.profile firejail-$VERSION/etc/firejail/. | ||
159 | install -m 644 /etc/firejail/stellarium.profile firejail-$VERSION/etc/firejail/. | ||
160 | install -m 644 /etc/firejail/strings.profile firejail-$VERSION/etc/firejail/. | ||
161 | install -m 644 /etc/firejail/tar.profile firejail-$VERSION/etc/firejail/. | ||
162 | install -m 644 /etc/firejail/telegram.profile firejail-$VERSION/etc/firejail/. | ||
163 | install -m 644 /etc/firejail/Telegram.profile firejail-$VERSION/etc/firejail/. | ||
164 | install -m 644 /etc/firejail/thunderbird.profile firejail-$VERSION/etc/firejail/. | ||
165 | install -m 644 /etc/firejail/totem.profile firejail-$VERSION/etc/firejail/. | ||
166 | install -m 644 /etc/firejail/transmission-gtk.profile firejail-$VERSION/etc/firejail/. | ||
167 | install -m 644 /etc/firejail/transmission-qt.profile firejail-$VERSION/etc/firejail/. | ||
168 | install -m 644 /etc/firejail/uget-gtk.profile firejail-$VERSION/etc/firejail/. | ||
169 | install -m 644 /etc/firejail/unbound.profile firejail-$VERSION/etc/firejail/. | ||
170 | install -m 644 /etc/firejail/unrar.profile firejail-$VERSION/etc/firejail/. | ||
171 | install -m 644 /etc/firejail/unzip.profile firejail-$VERSION/etc/firejail/. | ||
172 | install -m 644 /etc/firejail/uudeview.profile firejail-$VERSION/etc/firejail/. | ||
173 | install -m 644 /etc/firejail/vivaldi-beta.profile firejail-$VERSION/etc/firejail/. | ||
174 | install -m 644 /etc/firejail/vivaldi.profile firejail-$VERSION/etc/firejail/. | ||
175 | install -m 644 /etc/firejail/vlc.profile firejail-$VERSION/etc/firejail/. | ||
176 | install -m 644 /etc/firejail/warzone2100.profile firejail-$VERSION/etc/firejail/. | ||
177 | install -m 644 /etc/firejail/webserver.net firejail-$VERSION/etc/firejail/. | ||
178 | install -m 644 /etc/firejail/weechat-curses.profile firejail-$VERSION/etc/firejail/. | ||
179 | install -m 644 /etc/firejail/weechat.profile firejail-$VERSION/etc/firejail/. | ||
180 | install -m 644 /etc/firejail/wesnoth.profile firejail-$VERSION/etc/firejail/. | ||
181 | install -m 644 /etc/firejail/whitelist-common.inc firejail-$VERSION/etc/firejail/. | ||
182 | install -m 644 /etc/firejail/wine.profile firejail-$VERSION/etc/firejail/. | ||
183 | install -m 644 /etc/firejail/xchat.profile firejail-$VERSION/etc/firejail/. | ||
184 | install -m 644 /etc/firejail/xplayer.profile firejail-$VERSION/etc/firejail/. | ||
185 | install -m 644 /etc/firejail/xreader.profile firejail-$VERSION/etc/firejail/. | ||
186 | install -m 644 /etc/firejail/xviewer.profile firejail-$VERSION/etc/firejail/. | ||
187 | install -m 644 /etc/firejail/xzdec.profile firejail-$VERSION/etc/firejail/. | ||
188 | install -m 644 /etc/firejail/xz.profile firejail-$VERSION/etc/firejail/. | ||
189 | install -m 644 /etc/firejail/zathura.profile firejail-$VERSION/etc/firejail/. | ||
190 | install -m 644 /etc/firejail/7z.profile firejail-$VERSION/etc/firejail/. | ||
191 | install -m 644 /etc/firejail/keepass.profile firejail-$VERSION/etc/firejail/. | ||
192 | install -m 644 /etc/firejail/keepassx.profile firejail-$VERSION/etc/firejail/. | ||
193 | install -m 644 /etc/firejail/claws-mail.profile firejail-$VERSION/etc/firejail/. | ||
194 | install -m 644 /etc/firejail/mutt.profile firejail-$VERSION/etc/firejail/. | ||
195 | install -m 644 /etc/firejail/git.profile firejail-$VERSION/etc/firejail/. | ||
196 | install -m 644 /etc/firejail/emacs.profile firejail-$VERSION/etc/firejail/. | ||
197 | install -m 644 /etc/firejail/vim.profile firejail-$VERSION/etc/firejail/. | ||
198 | install -m 644 /etc/firejail/xpdf.profile firejail-$VERSION/etc/firejail/. | ||
199 | install -m 644 /etc/firejail/virtualbox.profile firejail-$VERSION/etc/firejail/. | ||
200 | install -m 644 /etc/firejail/openshot.profile firejail-$VERSION/etc/firejail/. | ||
201 | install -m 644 /etc/firejail/flowblade.profile firejail-$VERSION/etc/firejail/. | ||
202 | install -m 644 /etc/firejail/eog.profile firejail-$VERSION/etc/firejail/. | ||
203 | install -m 644 /etc/firejail/evolution.profile firejail-$VERSION/etc/firejail/. | ||
204 | install -m 644 /etc/firejail/feh.profile firejail-$VERSION/etc/firejail/. | ||
205 | install -m 644 /etc/firejail/gimp.profile firejail-$VERSION/etc/firejail/. | ||
206 | install -m 644 /etc/firejail/inkscape.profile firejail-$VERSION/etc/firejail/. | ||
207 | install -m 644 /etc/firejail/luminance-hdr.profile firejail-$VERSION/etc/firejail/. | ||
208 | install -m 644 /etc/firejail/mupdf.profile firejail-$VERSION/etc/firejail/. | ||
209 | install -m 644 /etc/firejail/qpdfview.profile firejail-$VERSION/etc/firejail/. | ||
210 | install -m 644 /etc/firejail/ranger.profile firejail-$VERSION/etc/firejail/. | ||
211 | install -m 644 /etc/firejail/synfigstudio.profile firejail-$VERSION/etc/firejail/. | ||
212 | |||
213 | |||
214 | mkdir -p firejail-$VERSION/usr/share/bash-completion/completions | ||
215 | install -m 644 /usr/share/bash-completion/completions/firejail firejail-$VERSION/usr/share/bash-completion/completions/. | ||
216 | install -m 644 /usr/share/bash-completion/completions/firemon firejail-$VERSION/usr/share/bash-completion/completions/. | ||
217 | install -m 644 /usr/share/bash-completion/completions/firecfg firejail-$VERSION/usr/share/bash-completion/completions/. | ||
218 | |||
219 | echo "building tar.gz archive" | ||
220 | tar -czvf firejail-$VERSION.tar.gz firejail-$VERSION | ||
221 | |||
222 | cp firejail-$VERSION.tar.gz SOURCES/. | ||
223 | |||
224 | echo "building config spec" | ||
225 | cat <<EOF > SPECS/firejail.spec | ||
226 | %define __spec_install_post %{nil} | ||
227 | %define debug_package %{nil} | ||
228 | %define __os_install_post %{_dbpath}/brp-compress | ||
229 | |||
230 | Summary: Linux namepaces sandbox program | ||
231 | Name: firejail | ||
232 | Version: $VERSION | ||
233 | Release: 1 | ||
234 | License: GPL+ | ||
235 | Group: Development/Tools | ||
236 | SOURCE0 : %{name}-%{version}.tar.gz | ||
237 | URL: http://firejail.wordpress.com | ||
238 | |||
239 | BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root | ||
240 | |||
241 | %description | ||
242 | Firejail is a SUID sandbox program that reduces the risk of security | ||
243 | breaches by restricting the running environment of untrusted applications | ||
244 | using Linux namespaces. It includes a sandbox profile for Mozilla Firefox. | ||
245 | |||
246 | %prep | ||
247 | %setup -q | ||
248 | |||
249 | %build | ||
250 | |||
251 | %install | ||
252 | rm -rf %{buildroot} | ||
253 | mkdir -p %{buildroot} | ||
254 | |||
255 | cp -a * %{buildroot} | ||
256 | |||
257 | |||
258 | %clean | ||
259 | rm -rf %{buildroot} | ||
260 | |||
261 | |||
262 | %files | ||
263 | %defattr(-,root,root,-) | ||
264 | %config(noreplace) %{_sysconfdir}/%{name}/0ad.profile | ||
265 | %config(noreplace) %{_sysconfdir}/%{name}/abrowser.profile | ||
266 | %config(noreplace) %{_sysconfdir}/%{name}/atom-beta.profile | ||
267 | %config(noreplace) %{_sysconfdir}/%{name}/atom.profile | ||
268 | %config(noreplace) %{_sysconfdir}/%{name}/atril.profile | ||
269 | %config(noreplace) %{_sysconfdir}/%{name}/audacious.profile | ||
270 | %config(noreplace) %{_sysconfdir}/%{name}/audacity.profile | ||
271 | %config(noreplace) %{_sysconfdir}/%{name}/aweather.profile | ||
272 | %config(noreplace) %{_sysconfdir}/%{name}/bitlbee.profile | ||
273 | %config(noreplace) %{_sysconfdir}/%{name}/brave.profile | ||
274 | %config(noreplace) %{_sysconfdir}/%{name}/cherrytree.profile | ||
275 | %config(noreplace) %{_sysconfdir}/%{name}/chromium-browser.profile | ||
276 | %config(noreplace) %{_sysconfdir}/%{name}/chromium.profile | ||
277 | %config(noreplace) %{_sysconfdir}/%{name}/clementine.profile | ||
278 | %config(noreplace) %{_sysconfdir}/%{name}/cmus.profile | ||
279 | %config(noreplace) %{_sysconfdir}/%{name}/conkeror.profile | ||
280 | %config(noreplace) %{_sysconfdir}/%{name}/corebird.profile | ||
281 | %config(noreplace) %{_sysconfdir}/%{name}/cpio.profile | ||
282 | %config(noreplace) %{_sysconfdir}/%{name}/cyberfox.profile | ||
283 | %config(noreplace) %{_sysconfdir}/%{name}/Cyberfox.profile | ||
284 | %config(noreplace) %{_sysconfdir}/%{name}/deadbeef.profile | ||
285 | %config(noreplace) %{_sysconfdir}/%{name}/default.profile | ||
286 | %config(noreplace) %{_sysconfdir}/%{name}/deluge.profile | ||
287 | %config(noreplace) %{_sysconfdir}/%{name}/dillo.profile | ||
288 | %config(noreplace) %{_sysconfdir}/%{name}/disable-common.inc | ||
289 | %config(noreplace) %{_sysconfdir}/%{name}/disable-devel.inc | ||
290 | %config(noreplace) %{_sysconfdir}/%{name}/disable-passwdmgr.inc | ||
291 | %config(noreplace) %{_sysconfdir}/%{name}/disable-programs.inc | ||
292 | %config(noreplace) %{_sysconfdir}/%{name}/dnscrypt-proxy.profile | ||
293 | %config(noreplace) %{_sysconfdir}/%{name}/dnsmasq.profile | ||
294 | %config(noreplace) %{_sysconfdir}/%{name}/dosbox.profile | ||
295 | %config(noreplace) %{_sysconfdir}/%{name}/dropbox.profile | ||
296 | %config(noreplace) %{_sysconfdir}/%{name}/empathy.profile | ||
297 | %config(noreplace) %{_sysconfdir}/%{name}/eom.profile | ||
298 | %config(noreplace) %{_sysconfdir}/%{name}/epiphany.profile | ||
299 | %config(noreplace) %{_sysconfdir}/%{name}/evince.profile | ||
300 | %config(noreplace) %{_sysconfdir}/%{name}/fbreader.profile | ||
301 | %config(noreplace) %{_sysconfdir}/%{name}/file.profile | ||
302 | %config(noreplace) %{_sysconfdir}/%{name}/filezilla.profile | ||
303 | %config(noreplace) %{_sysconfdir}/%{name}/firefox-esr.profile | ||
304 | %config(noreplace) %{_sysconfdir}/%{name}/firefox.profile | ||
305 | %config(noreplace) %{_sysconfdir}/%{name}/firejail.config | ||
306 | %config(noreplace) %{_sysconfdir}/%{name}/flashpeak-slimjet.profile | ||
307 | %config(noreplace) %{_sysconfdir}/%{name}/franz.profile | ||
308 | %config(noreplace) %{_sysconfdir}/%{name}/gajim.profile | ||
309 | %config(noreplace) %{_sysconfdir}/%{name}/gitter.profile | ||
310 | %config(noreplace) %{_sysconfdir}/%{name}/gnome-chess.profile | ||
311 | %config(noreplace) %{_sysconfdir}/%{name}/gnome-mplayer.profile | ||
312 | %config(noreplace) %{_sysconfdir}/%{name}/google-chrome-beta.profile | ||
313 | %config(noreplace) %{_sysconfdir}/%{name}/google-chrome.profile | ||
314 | %config(noreplace) %{_sysconfdir}/%{name}/google-chrome-stable.profile | ||
315 | %config(noreplace) %{_sysconfdir}/%{name}/google-chrome-unstable.profile | ||
316 | %config(noreplace) %{_sysconfdir}/%{name}/google-play-music-desktop-player.profile | ||
317 | %config(noreplace) %{_sysconfdir}/%{name}/gpredict.profile | ||
318 | %config(noreplace) %{_sysconfdir}/%{name}/gtar.profile | ||
319 | %config(noreplace) %{_sysconfdir}/%{name}/gthumb.profile | ||
320 | %config(noreplace) %{_sysconfdir}/%{name}/gwenview.profile | ||
321 | %config(noreplace) %{_sysconfdir}/%{name}/gzip.profile | ||
322 | %config(noreplace) %{_sysconfdir}/%{name}/hedgewars.profile | ||
323 | %config(noreplace) %{_sysconfdir}/%{name}/hexchat.profile | ||
324 | %config(noreplace) %{_sysconfdir}/%{name}/icecat.profile | ||
325 | %config(noreplace) %{_sysconfdir}/%{name}/icedove.profile | ||
326 | %config(noreplace) %{_sysconfdir}/%{name}/iceweasel.profile | ||
327 | %config(noreplace) %{_sysconfdir}/%{name}/inox.profile | ||
328 | %config(noreplace) %{_sysconfdir}/%{name}/jitsi.profile | ||
329 | %config(noreplace) %{_sysconfdir}/%{name}/kmail.profile | ||
330 | %config(noreplace) %{_sysconfdir}/%{name}/konversation.profile | ||
331 | %config(noreplace) %{_sysconfdir}/%{name}/less.profile | ||
332 | %config(noreplace) %{_sysconfdir}/%{name}/libreoffice.profile | ||
333 | %config(noreplace) %{_sysconfdir}/%{name}/localc.profile | ||
334 | %config(noreplace) %{_sysconfdir}/%{name}/lodraw.profile | ||
335 | %config(noreplace) %{_sysconfdir}/%{name}/loffice.profile | ||
336 | %config(noreplace) %{_sysconfdir}/%{name}/lofromtemplate.profile | ||
337 | %config(noreplace) %{_sysconfdir}/%{name}/login.users | ||
338 | %config(noreplace) %{_sysconfdir}/%{name}/loimpress.profile | ||
339 | %config(noreplace) %{_sysconfdir}/%{name}/lomath.profile | ||
340 | %config(noreplace) %{_sysconfdir}/%{name}/loweb.profile | ||
341 | %config(noreplace) %{_sysconfdir}/%{name}/lowriter.profile | ||
342 | %config(noreplace) %{_sysconfdir}/%{name}/lxterminal.profile | ||
343 | %config(noreplace) %{_sysconfdir}/%{name}/mathematica.profile | ||
344 | %config(noreplace) %{_sysconfdir}/%{name}/Mathematica.profile | ||
345 | %config(noreplace) %{_sysconfdir}/%{name}/mcabber.profile | ||
346 | %config(noreplace) %{_sysconfdir}/%{name}/midori.profile | ||
347 | %config(noreplace) %{_sysconfdir}/%{name}/mpv.profile | ||
348 | %config(noreplace) %{_sysconfdir}/%{name}/mupen64plus.profile | ||
349 | %config(noreplace) %{_sysconfdir}/%{name}/netsurf.profile | ||
350 | %config(noreplace) %{_sysconfdir}/%{name}/nolocal.net | ||
351 | %config(noreplace) %{_sysconfdir}/%{name}/okular.profile | ||
352 | %config(noreplace) %{_sysconfdir}/%{name}/openbox.profile | ||
353 | %config(noreplace) %{_sysconfdir}/%{name}/opera-beta.profile | ||
354 | %config(noreplace) %{_sysconfdir}/%{name}/opera.profile | ||
355 | %config(noreplace) %{_sysconfdir}/%{name}/palemoon.profile | ||
356 | %config(noreplace) %{_sysconfdir}/%{name}/parole.profile | ||
357 | %config(noreplace) %{_sysconfdir}/%{name}/pidgin.profile | ||
358 | %config(noreplace) %{_sysconfdir}/%{name}/pix.profile | ||
359 | %config(noreplace) %{_sysconfdir}/%{name}/polari.profile | ||
360 | %config(noreplace) %{_sysconfdir}/%{name}/psi-plus.profile | ||
361 | %config(noreplace) %{_sysconfdir}/%{name}/qbittorrent.profile | ||
362 | %config(noreplace) %{_sysconfdir}/%{name}/qtox.profile | ||
363 | %config(noreplace) %{_sysconfdir}/%{name}/quassel.profile | ||
364 | %config(noreplace) %{_sysconfdir}/%{name}/quiterss.profile | ||
365 | %config(noreplace) %{_sysconfdir}/%{name}/qutebrowser.profile | ||
366 | %config(noreplace) %{_sysconfdir}/%{name}/rhythmbox.profile | ||
367 | %config(noreplace) %{_sysconfdir}/%{name}/rtorrent.profile | ||
368 | %config(noreplace) %{_sysconfdir}/%{name}/seamonkey-bin.profile | ||
369 | %config(noreplace) %{_sysconfdir}/%{name}/seamonkey.profile | ||
370 | %config(noreplace) %{_sysconfdir}/%{name}/server.profile | ||
371 | %config(noreplace) %{_sysconfdir}/%{name}/skypeforlinux.profile | ||
372 | %config(noreplace) %{_sysconfdir}/%{name}/skype.profile | ||
373 | %config(noreplace) %{_sysconfdir}/%{name}/slack.profile | ||
374 | %config(noreplace) %{_sysconfdir}/%{name}/snap.profile | ||
375 | %config(noreplace) %{_sysconfdir}/%{name}/soffice.profile | ||
376 | %config(noreplace) %{_sysconfdir}/%{name}/spotify.profile | ||
377 | %config(noreplace) %{_sysconfdir}/%{name}/ssh.profile | ||
378 | %config(noreplace) %{_sysconfdir}/%{name}/steam.profile | ||
379 | %config(noreplace) %{_sysconfdir}/%{name}/stellarium.profile | ||
380 | %config(noreplace) %{_sysconfdir}/%{name}/strings.profile | ||
381 | %config(noreplace) %{_sysconfdir}/%{name}/tar.profile | ||
382 | %config(noreplace) %{_sysconfdir}/%{name}/telegram.profile | ||
383 | %config(noreplace) %{_sysconfdir}/%{name}/Telegram.profile | ||
384 | %config(noreplace) %{_sysconfdir}/%{name}/thunderbird.profile | ||
385 | %config(noreplace) %{_sysconfdir}/%{name}/totem.profile | ||
386 | %config(noreplace) %{_sysconfdir}/%{name}/transmission-gtk.profile | ||
387 | %config(noreplace) %{_sysconfdir}/%{name}/transmission-qt.profile | ||
388 | %config(noreplace) %{_sysconfdir}/%{name}/uget-gtk.profile | ||
389 | %config(noreplace) %{_sysconfdir}/%{name}/unbound.profile | ||
390 | %config(noreplace) %{_sysconfdir}/%{name}/unrar.profile | ||
391 | %config(noreplace) %{_sysconfdir}/%{name}/unzip.profile | ||
392 | %config(noreplace) %{_sysconfdir}/%{name}/uudeview.profile | ||
393 | %config(noreplace) %{_sysconfdir}/%{name}/vivaldi-beta.profile | ||
394 | %config(noreplace) %{_sysconfdir}/%{name}/vivaldi.profile | ||
395 | %config(noreplace) %{_sysconfdir}/%{name}/vlc.profile | ||
396 | %config(noreplace) %{_sysconfdir}/%{name}/warzone2100.profile | ||
397 | %config(noreplace) %{_sysconfdir}/%{name}/webserver.net | ||
398 | %config(noreplace) %{_sysconfdir}/%{name}/weechat-curses.profile | ||
399 | %config(noreplace) %{_sysconfdir}/%{name}/weechat.profile | ||
400 | %config(noreplace) %{_sysconfdir}/%{name}/wesnoth.profile | ||
401 | %config(noreplace) %{_sysconfdir}/%{name}/whitelist-common.inc | ||
402 | %config(noreplace) %{_sysconfdir}/%{name}/wine.profile | ||
403 | %config(noreplace) %{_sysconfdir}/%{name}/xchat.profile | ||
404 | %config(noreplace) %{_sysconfdir}/%{name}/xplayer.profile | ||
405 | %config(noreplace) %{_sysconfdir}/%{name}/xreader.profile | ||
406 | %config(noreplace) %{_sysconfdir}/%{name}/xviewer.profile | ||
407 | %config(noreplace) %{_sysconfdir}/%{name}/xzdec.profile | ||
408 | %config(noreplace) %{_sysconfdir}/%{name}/xz.profile | ||
409 | %config(noreplace) %{_sysconfdir}/%{name}/zathura.profile | ||
410 | %config(noreplace) %{_sysconfdir}/%{name}/7z.profile | ||
411 | %config(noreplace) %{_sysconfdir}/%{name}/keepass.profile | ||
412 | %config(noreplace) %{_sysconfdir}/%{name}/keepassx.profile | ||
413 | %config(noreplace) %{_sysconfdir}/%{name}/claws-mail.profile | ||
414 | %config(noreplace) %{_sysconfdir}/%{name}/mutt.profile | ||
415 | %config(noreplace) %{_sysconfdir}/%{name}/git.profile | ||
416 | %config(noreplace) %{_sysconfdir}/%{name}/emacs.profile | ||
417 | %config(noreplace) %{_sysconfdir}/%{name}/vim.profile | ||
418 | %config(noreplace) %{_sysconfdir}/%{name}/xpdf.profile | ||
419 | %config(noreplace) %{_sysconfdir}/%{name}/virtualbox.profile | ||
420 | %config(noreplace) %{_sysconfdir}/%{name}/openshot.profile | ||
421 | %config(noreplace) %{_sysconfdir}/%{name}/flowblade.profile | ||
422 | %config(noreplace) %{_sysconfdir}/%{name}/eog.profile | ||
423 | %config(noreplace) %{_sysconfdir}/%{name}/evolution.profile | ||
424 | %config(noreplace) %{_sysconfdir}/%{name}/feh.profile | ||
425 | %config(noreplace) %{_sysconfdir}/%{name}/inkscape.profile | ||
426 | %config(noreplace) %{_sysconfdir}/%{name}/gimp.profile | ||
427 | %config(noreplace) %{_sysconfdir}/%{name}/luminance-hdr.profile | ||
428 | %config(noreplace) %{_sysconfdir}/%{name}/mupdf.profile | ||
429 | %config(noreplace) %{_sysconfdir}/%{name}/qpdfview.profile | ||
430 | %config(noreplace) %{_sysconfdir}/%{name}/ranger.profile | ||
431 | %config(noreplace) %{_sysconfdir}/%{name}/synfigstudio.profile | ||
432 | |||
433 | /usr/bin/firejail | ||
434 | /usr/bin/firemon | ||
435 | /usr/bin/firecfg | ||
436 | |||
437 | /usr/lib/firejail/libtrace.so | ||
438 | /usr/lib/firejail/libtracelog.so | ||
439 | /usr/lib/firejail/libconnect.so | ||
440 | /usr/lib/firejail/faudit | ||
441 | /usr/lib/firejail/ftee | ||
442 | /usr/lib/firejail/firecfg.config | ||
443 | /usr/lib/firejail/fshaper.sh | ||
444 | |||
445 | /usr/share/doc/packages/firejail/COPYING | ||
446 | /usr/share/doc/packages/firejail/README | ||
447 | /usr/share/doc/packages/firejail/RELNOTES | ||
448 | /usr/share/man/man1/firejail.1.gz | ||
449 | /usr/share/man/man1/firemon.1.gz | ||
450 | /usr/share/man/man1/firecfg.1.gz | ||
451 | /usr/share/man/man5/firejail-profile.5.gz | ||
452 | /usr/share/man/man5/firejail-login.5.gz | ||
453 | /usr/share/bash-completion/completions/firejail | ||
454 | /usr/share/bash-completion/completions/firemon | ||
455 | /usr/share/bash-completion/completions/firecfg | ||
456 | |||
457 | %post | ||
458 | chmod u+s /usr/bin/firejail | ||
459 | |||
460 | %changelog | ||
461 | * Fri Oct 21 2016 netblue30 <netblue30@yahoo.com> 0.9.44-1 | ||
462 | - CVE-2016-7545 submitted by Aleksey Manevich | ||
463 | - modifs: removed man firejail-config | ||
464 | - modifs: --private-tmp whitelists /tmp/.X11-unix directory | ||
465 | - modifs: Nvidia drivers added to --private-dev | ||
466 | - modifs: /srv supported by --whitelist | ||
467 | - feature: allow user access to /sys/fs (--noblacklist=/sys/fs) | ||
468 | - feature: support starting/joining sandbox is a single command | ||
469 | (--join-or-start) | ||
470 | - feature: X11 detection support for --audit | ||
471 | - feature: assign a name to the interface connected to the bridge | ||
472 | (--veth-name) | ||
473 | - feature: all user home directories are visible (--allusers) | ||
474 | - feature: add files to sandbox container (--put) | ||
475 | - feature: blocking x11 (--x11=block) | ||
476 | - feature: X11 security extension (--x11=xorg) | ||
477 | - feature: disable 3D hardware acceleration (--no3d) | ||
478 | - feature: x11 xpra, x11 xephyr, x11 block, allusers, no3d profile commands | ||
479 | - feature: move files in sandbox (--put) | ||
480 | - feature: accept wildcard patterns in user name field of restricted | ||
481 | shell login feature | ||
482 | - new profiles: qpdfview, mupdf, Luminance HDR, Synfig Studio, Gimp, Inkscape | ||
483 | - new profiles: feh, ranger, zathura, 7z, keepass, keepassx, | ||
484 | - new profiles: claws-mail, mutt, git, emacs, vim, xpdf, VirtualBox, OpenShot | ||
485 | - new profiles: Flowblade, Eye of GNOME (eog), Evolution | ||
486 | - bugfixes | ||
487 | |||
488 | * Thu Sep 8 2016 netblue30 <netblue30@yahoo.com> 0.9.42-1 | ||
489 | - security: --whitelist deleted files, submitted by Vasya Novikov | ||
490 | - security: disable x32 ABI in seccomp, submitted by Jann Horn | ||
491 | - security: tighten --chroot, submitted by Jann Horn | ||
492 | - security: terminal sandbox escape, submitted by Stephan Sokolow | ||
493 | - security: several TOCTOU fixes submitted by Aleksey Manevich | ||
494 | - modifs: bringing back --private-home option | ||
495 | - modifs: deprecated --user option, please use "sudo -u username firejail" | ||
496 | - modifs: allow symlinks in home directory for --whitelist option | ||
497 | - modifs: Firejail prompt is enabled by env variable FIREJAIL_PROMPT="yes" | ||
498 | - modifs: recursive mkdir | ||
499 | - modifs: include /dev/snd in --private-dev | ||
500 | - modifs: seccomp filter update | ||
501 | - modifs: release archives moved to .xz format | ||
502 | - feature: AppImage support (--appimage) | ||
503 | - feature: AppArmor support (--apparmor) | ||
504 | - feature: Ubuntu snap support (/etc/firejail/snap.profile) | ||
505 | - feature: Sandbox auditing support (--audit) | ||
506 | - feature: remove environment variable (--rmenv) | ||
507 | - feature: noexec support (--noexec) | ||
508 | - feature: clean local overlay storage directory (--overlay-clean) | ||
509 | - feature: store and reuse overlay (--overlay-named) | ||
510 | - feature: allow debugging inside the sandbox with gdb and strace | ||
511 | (--allow-debuggers) | ||
512 | - feature: mkfile profile command | ||
513 | - feature: quiet profile command | ||
514 | - feature: x11 profile command | ||
515 | - feature: option to fix desktop files (firecfg --fix) | ||
516 | - compile time: Busybox support (--enable-busybox-workaround) | ||
517 | - compile time: disable overlayfs (--disable-overlayfs) | ||
518 | - compile time: disable whitlisting (--disable-whitelist) | ||
519 | - compile time: disable global config (--disable-globalcfg) | ||
520 | - run time: enable/disable overlayfs (overlayfs yes/no) | ||
521 | - run time: enable/disable quiet as default (quiet-by-default yes/no) | ||
522 | - run time: user-defined network filter (netfilter-default) | ||
523 | - run time: enable/disable whitelisting (whitelist yes/no) | ||
524 | - run time: enable/disable remounting of /proc and /sys | ||
525 | (remount-proc-sys yes/no) | ||
526 | - run time: enable/disable chroot desktop features (chroot-desktop yes/no) | ||
527 | - profiles: Gitter, gThumb, mpv, Franz messenger, LibreOffice | ||
528 | - profiles: pix, audacity, xz, xzdec, gzip, cpio, less | ||
529 | - profiles: Atom Beta, Atom, jitsi, eom, uudeview | ||
530 | - profiles: tar (gtar), unzip, unrar, file, skypeforlinux, | ||
531 | - profiles: inox, Slack, gnome-chess. Gajim IM client, DOSBox | ||
532 | - bugfixes | ||
533 | |||
534 | EOF | ||
535 | |||
536 | echo "building rpm" | ||
537 | rpmbuild -ba SPECS/firejail.spec | ||
538 | rpm -qpl RPMS/x86_64/firejail-$VERSION-1.x86_64.rpm | ||
539 | cd .. | ||
540 | rm -f firejail-$VERSION-1.x86_64.rpm | ||
541 | cp rpmbuild/RPMS/x86_64/firejail-$VERSION-1.x86_64.rpm . | ||
542 | |||
diff --git a/platform/snap/snap.sh b/platform/snap/snap.sh new file mode 100755 index 000000000..d7f924293 --- /dev/null +++ b/platform/snap/snap.sh | |||
@@ -0,0 +1,20 @@ | |||
1 | #!/bin/bash | ||
2 | |||
3 | rm -fr faudit-snap | ||
4 | rm -f faudit_*.snap | ||
5 | mkdir faudit-snap | ||
6 | cd faudit-snap | ||
7 | snapcraft init | ||
8 | cp ../snapcraft.yaml . | ||
9 | #snapcraft stage | ||
10 | mkdir -p stage/usr/lib/firejail | ||
11 | cp ../../../src/faudit/faudit stage/usr/lib/firejail/. | ||
12 | find stage | ||
13 | snapcraft stage | ||
14 | snapcraft snap | ||
15 | cd .. | ||
16 | mv faudit-snap/faudit_*.snap ../../. | ||
17 | rm -fr faudit-snap | ||
18 | |||
19 | |||
20 | |||
diff --git a/platform/snap/snapcraft.yaml b/platform/snap/snapcraft.yaml new file mode 100644 index 000000000..7b04a2ca1 --- /dev/null +++ b/platform/snap/snapcraft.yaml | |||
@@ -0,0 +1,21 @@ | |||
1 | name: faudit # the name of the snap | ||
2 | version: 0 # the version of the snap | ||
3 | summary: Fireajail audit snap edition # 79 char long summary | ||
4 | description: faudit program extracted from Firejail and packaged as a snap # a longer description for the snap | ||
5 | confinement: strict # use "strict" to enforce system access only via declared interfaces | ||
6 | |||
7 | apps: | ||
8 | faudit: | ||
9 | command: /usr/lib/firejail/faudit | ||
10 | |||
11 | parts: | ||
12 | faudit: # Replace with a part name of your liking | ||
13 | # Get more information about plugins by running | ||
14 | # snapcraft help plugins | ||
15 | # and more information about the available plugins | ||
16 | # by running | ||
17 | # snapcraft list-plugins | ||
18 | plugin: nil | ||
19 | snap: | ||
20 | - usr/lib/firejail/faudit | ||
21 | |||