From 2ae7295f1a8d24217ccbf0fef149df0042969b56 Mon Sep 17 00:00:00 2001
From: rusty-snake <41237666+rusty-snake@users.noreply.github.com>
Date: Mon, 12 Apr 2021 08:52:06 +0200
Subject: profile fixes

discord-canary.profile:
 fix #4175

flameshot.profile:
  - private-tmp break flameshot (wayland only?)
  - Screengrabbing (under wayland) is done via dbus, the following names
    must be allowed:
    - GNOME: org.gnome.Shell
    - KDE: org.kde.KWin
    - Sway: org.freedesktop.portal.Desktop
 - Allow notifications and tray too, because org.gnome.Shell (for
   example) is already totaly unsafe.

mumble.profile:
 fix #4181
---
 README.md                              | 2 +-
 RELNOTES                               | 2 +-
 etc/profile-a-l/discord-canary.profile | 2 +-
 etc/profile-a-l/flameshot.profile      | 8 +++++++-
 etc/profile-m-z/mumble.profile         | 1 -
 5 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/README.md b/README.md
index 3fc688dc7..5e8d365a2 100644
--- a/README.md
+++ b/README.md
@@ -333,4 +333,4 @@ Stats:
 vmware-view, display-im6.q16, ipcalc, ipcalc-ng, ebook-convert, ebook-edit, ebook-meta, ebook-polish, lzop,
 avidemux, calligragemini, vmware-player, vmware-workstation, gget, com.github.phase1geo.minder, nextcloud-desktop,
 pcsxr, PPSSPPSDL, openmw, openmw-launcher, jami-gnome, PCSX2, bcompare, b2sum, cksum, md5sum, sha1sum, sha224sum,
-sha256sum, sha384sum, sha512sum, sum
+sha256sum, sha384sum, sha512sum, sum, librewold-nightly
diff --git a/RELNOTES b/RELNOTES
index a3e23abd6..27064515d 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -18,7 +18,7 @@ firejail (0.9.65) baseline; urgency=low
   * gget, com.github.phase1geo.minder, nextcloud-desktop, pcsxr
   * PPSSPPSDL, openmw, openmw-launcher, jami-gnome, PCSX2, sum
   * bcompare, b2sum, cksum, md5sum, sha1sum, sha224sum, sha256sum
-  * sha384sum, sha512sum
+  * sha384sum, sha512sum, librewold-nightly
  -- netblue30 <netblue30@yahoo.com>  Tue, 9 Feb 2021 09:00:00 -0500
 
 firejail (0.9.64.4) baseline; urgency=low
diff --git a/etc/profile-a-l/discord-canary.profile b/etc/profile-a-l/discord-canary.profile
index 3e9dacd1e..43db95b8a 100644
--- a/etc/profile-a-l/discord-canary.profile
+++ b/etc/profile-a-l/discord-canary.profile
@@ -10,7 +10,7 @@ noblacklist ${HOME}/.config/discordcanary
 mkdir ${HOME}/.config/discordcanary
 whitelist ${HOME}/.config/discordcanary
 
-private-bin discord-canary
+private-bin discord-canary,electron,electron[0-9],electron[0-9][0-9]
 private-opt discord-canary
 
 # Redirect
diff --git a/etc/profile-a-l/flameshot.profile b/etc/profile-a-l/flameshot.profile
index 851a7c747..d1c18e690 100644
--- a/etc/profile-a-l/flameshot.profile
+++ b/etc/profile-a-l/flameshot.profile
@@ -54,9 +54,15 @@ private-bin flameshot
 private-cache
 private-etc alternatives,ca-certificates,crypto-policies,fonts,ld.so.conf,machine-id,pki,resolv.conf,ssl
 private-dev
-private-tmp
+#private-tmp
 
 dbus-user filter
 dbus-user.own org.dharkael.Flameshot
 dbus-user.own org.flameshot.Flameshot
+dbus-user.talk org.freedesktop.Notifications
+dbus-user.talk org.freedesktop.portal.Desktop
+dbus-user.talk org.gnome.Shell
+dbus-user.talk org.kde.KWin
+dbus-user.talk org.kde.StatusNotifierWatcher
+dbus-user.own org.kde.*
 dbus-system none
diff --git a/etc/profile-m-z/mumble.profile b/etc/profile-m-z/mumble.profile
index 0c4efc3d3..c7f59c5ee 100644
--- a/etc/profile-m-z/mumble.profile
+++ b/etc/profile-m-z/mumble.profile
@@ -29,7 +29,6 @@ include whitelist-var-common.inc
 
 caps.drop all
 netfilter
-no3d
 nodvd
 nogroups
 nonewprivs
-- 
cgit v1.2.3-54-g00ecf