aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAge
* profiles: allow lxqt config dirLibravatar Kelvin M. Klann2023-03-26
| | | | | | | | | As suggested by @glitsj16: https://github.com/netblue30/firejail/discussions/5754#discussioncomment-5428651 Fixes #5754 (font size/dpi issues). Reported-by: @hotcapy
* mergesLibravatar netblue302023-03-23
|
* Merge pull request #5710 from pirate486743186/mov-cliLibravatar netblue302023-03-23
|\ | | | | add mov-cli.profile
| * add mov-cliLibravatar pirate4867431862023-03-04
| |
* | Merge pull request #5728 from pirate486743186/chromium-electron-commonLibravatar netblue302023-03-23
|\ \ | | | | | | create blink-common.profile
| * | create blink-common.profileLibravatar pirate4867431862023-03-16
| | |
* | | Merge pull request #5737 from glitsj16/private-etc-bugfixLibravatar netblue302023-03-23
|\ \ \ | | | | | | | | fs_etc.c: conditionally create /etc/resolv.conf
| * | | fs_etc.c: fix misleading indentationLibravatar glitsj162023-03-15
| | | |
| * | | fs_etc.c: conditionally create /etc/resolv.confLibravatar glitsj162023-03-15
| | | |
* | | | Merge pull request #5741 from kmk3/util-ascii-char-fnsLibravatar netblue302023-03-23
|\ \ \ \ | | | | | | | | | | util.c: add and use ascii-only char functions
| * | | | util.c: add and use ascii-only char functionsLibravatar Kelvin M. Klann2023-03-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The "invalid_name" function claims to "allow strict ASCII letters and numbers". However, it uses isalnum(3) and isdigit(3), which may take the current locale into account and thus return 1 for non-ASCII characters. So add the following functions: * ascii_isalnum * ascii_isalpha * ascii_isdigit * ascii_islower * ascii_isupper * ascii_isxdigit And use the applicable ones in "invalid_name" so that it actually uses strictly ASCII in its comparisons. Added on commit b4ffaa207 ("merges; more on cleaning up esc chars", 2023-02-14). Relates to #5578. Kind of relates to #5708.
| * | | | firejail.h: move invalid_name prototype to proper placeLibravatar Kelvin M. Klann2023-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Follow the same order as on util.c. Added on commit b4ffaa207 ("merges; more on cleaning up esc chars", 2023-02-14).
* | | | | Merge pull request #5744 from ThijsRay/patch-1Libravatar netblue302023-03-23
|\ \ \ \ \ | |/ / / / |/| | | | keepassxc: Allow offering the Secret Service
| * | | | keepassxc: Allow offering the Secret ServiceLibravatar Thijs Raymakers2023-03-21
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | KeePassXC can offer a Secret Service to store secrets for other programs. See https://specifications.freedesktop.org/secret-service/latest/
* | | | RELNOTES: add ci itemLibravatar Kelvin M. Klann2023-03-20
| | | | | | | | | | | | | | | | Relates to #5742.
* | | | Merge pull request #5742 from kmk3/ci-always-update-pkgdbLibravatar Kelvin M. Klann2023-03-21
|\ \ \ \ | | | | | | | | | | ci: always update the package db before installing packages
| * | | | ci: always update the package db before installing packagesLibravatar Kelvin M. Klann2023-03-20
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This should fix installing packages on build-extra.yml. Note that this is already done on build.yml and on gitlab-ci.yml. From the GitHub Actions documentation[1] [2]: > Note: Always run `sudo apt-get update` before installing a package. In > case the `apt` index is stale, this command fetches and re-indexes any > available packages, which helps prevent package installation failures. [1] https://docs.github.com/en/actions/using-github-hosted-runners/customizing-github-hosted-runners [2] https://github.com/actions/runner-images/issues/2924
* | | | RELNOTES: sort items by date addedLibravatar Kelvin M. Klann2023-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Added in the following commits: * 336ecb5d6 ("network testing; merges", 2023-03-02) * 0e48f9933 ("remove firemon --interface option - it is a duplication of firejail --net.print", 2023-03-08) Relates to the following commits: * e4f9f36a4 ("random hostname by default; fix --hostname and --hosts-file", 2023-02-27) * 0e48f9933 ("remove firemon --interface option - it is a duplication of firejail --net.print", 2023-03-08)
* | | | build(deps): bump actions/checkout from 3.3.0 to 3.4.0Libravatar dependabot[bot]2023-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.3.0 to 3.4.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/ac593985615ec2ede58e132d2e21d2b1cbd6127c...24cb9080177205b6e8c946b17badbe402adc938f) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* | | | build(deps): bump github/codeql-action from 2.2.6 to 2.2.7Libravatar dependabot[bot]2023-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.6 to 2.2.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/16964e90ba004cdf0cd845b866b5df21038b7723...168b99b3c22180941ae7dbdd5f5c9678ede476ba) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* | | | Add profiles for jami and postman (#5691)Libravatar Kobaxidze2562023-03-15
|/ / /
* | | fix ani-cli.profile (#5733)Libravatar pirate4867431862023-03-14
| | | | | | | | | Co-authored-by: pirate486743186 <>
* | | refresh engrampa.profile (#5734)Libravatar pirate4867431862023-03-14
| | | | | | | | | Co-authored-by: pirate486743186 <>
* | | file-roller: slight hardening (#5736)Libravatar glitsj162023-03-14
| | |
* | | microsoft-edge fixes (#5697)Libravatar glitsj162023-03-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * microsoft-edge*: fix spacing * Create microsoft-edge-stable.profile Relates to #5696. * firecfg.config: add support for microsoft-edge-stable redirect * disable-common.inc: blacklist msedge SUID executables * microsoft-edge: add private-opt and allow internal sandbox access
* | | profiles: drop hostname option (#5702)Libravatar glitsj162023-03-14
| | | | | | | | | | | | | | | | | | | | | | | | Now that we have randomized UTS namespaces support[1] by default for every sandbox, there's no longer a need to set hostname to a fixed value. This commit removes such fixed hostname entries from all profiles that have it. [1] https://github.com/netblue30/firejail/discussions/5597#discussioncomment-4996357
* | | profiles: streamline seccomp socket comment (#5735)Libravatar glitsj162023-03-14
| | | | | | | | | | | | | | | No functional changes. Relates to #639.
* | | Merge pull request #5325 from pirate486743186/tutanota-desktop.profile-fixLibravatar netblue302023-03-13
|\ \ \ | | | | | | | | tutanota-desktop.profile improvements
| * | | tutanota-desktop.profile improvementsLibravatar pirate4867431862023-02-26
| | | |
* | | | Merge pull request #5715 from pirate486743186/yt-dlpLibravatar netblue302023-03-13
|\ \ \ \ | | | | | | | | | | refactor yt-dlp
| * | | | refactor yt-dlpLibravatar pirate4867431862023-03-09
| | | | |
* | | | | Merge branch 'master' of ssh://github.com/netblue30/firejailLibravatar netblue302023-03-13
|\ \ \ \ \
| * | | | | config.mk.in: remove duplicated HAVE_APPARMORLibravatar Kelvin M. Klann2023-03-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Added on commit 4e8244fb8 ("makefiles: deduplicate configure-time vars into new config.mk.in", 2022-05-04) / PR #5140.
| * | | | | config.mk.in: move HAVE_PRIVATE_LIBLibravatar Kelvin M. Klann2023-03-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Below HAVE_PRIVATE_HOME. This amends commit dbbdca902 ("config.mk.in: respect configure.ac usage order", 2023-03-13) / PR #5732.
* | | | | | mergesLibravatar netblue302023-03-13
|/ / / / /
* | | | | Merge pull request #5729 from Neotamandua/masterLibravatar netblue302023-03-13
|\ \ \ \ \ | | | | | | | | | | | | Add Discord PTB profile
| * | | | | Add Discord PTB profileLibravatar Neotamandua2023-03-12
| | |_|/ / | |/| | |
* | | | | Merge pull request #5732 from glitsj16/man-fixLibravatar netblue302023-03-13
|\ \ \ \ \ | | | | | | | | | | | | config.mk.in: private-lib support
| * | | | | config.mk.in: respect configure.ac usage orderLibravatar glitsj162023-03-13
| | | | | |
| * | | | | config.mk.in: private-lib supportLibravatar glitsj162023-03-13
| |/ / / /
* | | | | Merge pull request #5730 from ↵Libravatar netblue302023-03-13
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | netblue30/dependabot/github_actions/step-security/harden-runner-2.2.1 build(deps): bump step-security/harden-runner from 2.2.0 to 2.2.1
| * | | | | build(deps): bump step-security/harden-runner from 2.2.0 to 2.2.1Libravatar dependabot[bot]2023-03-13
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.2.0 to 2.2.1. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/c8454efe5d0bdefd25384362fe217428ca277d57...1f99358870fe1c846a3ccba386cc2b2246836776) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* | | | | Merge pull request #5731 from ↵Libravatar netblue302023-03-13
|\ \ \ \ \ | |/ / / / |/| | | | | | | | | | | | | | netblue30/dependabot/github_actions/github/codeql-action-2.2.6 build(deps): bump github/codeql-action from 2.2.5 to 2.2.6
| * | | | build(deps): bump github/codeql-action from 2.2.5 to 2.2.6Libravatar dependabot[bot]2023-03-13
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/32dc499307d133bb5085bae78498c0ac2cf762d5...16964e90ba004cdf0cd845b866b5df21038b7723) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* | | | firejail.txt: remove extraneous endifLibravatar Kelvin M. Klann2023-03-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Added on commit b689b69f6 ("make --private-lib a compile time option, disabled by default", 2023-03-09). Relates to #5727.
* | | | allow symlinks for .asoundrc - part 2 (#5709)Libravatar netblue302023-03-09
| | | |
* | | | allow symlinks for .asoundrc (5709)Libravatar netblue302023-03-09
| | | |
* | | | private-lib cleanupLibravatar netblue302023-03-09
| | | |
* | | | make --private-lib a compile time option, disabled by defaultLibravatar netblue302023-03-09
| | | |
* | | | testingLibravatar netblue302023-03-09
| | | |
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-30 19:25:33 +0000