From 90d6bb10491861f20b59323f0179e576439fa5f7 Mon Sep 17 00:00:00 2001
From: rusty-snake <41237666+rusty-snake@users.noreply.github.com>
Date: Sun, 9 Aug 2020 11:26:57 +0200
Subject: profile fixes (1)

---
 etc/celluloid.profile              | 2 +-
 etc/disable-common.inc             | 1 +
 etc/gedit.profile                  | 2 +-
 etc/gnome-builder.profile          | 1 -
 etc/gnome-maps.profile             | 2 +-
 etc/whitelist-usr-share-common.inc | 1 +
 6 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/etc/celluloid.profile b/etc/celluloid.profile
index 6b7db6b44..d06eb7a65 100644
--- a/etc/celluloid.profile
+++ b/etc/celluloid.profile
@@ -29,7 +29,7 @@ include whitelist-var-common.inc
 apparmor
 caps.drop all
 netfilter
-nodbus
+# nodbus -- uses dconf
 nogroups
 nonewprivs
 noroot
diff --git a/etc/disable-common.inc b/etc/disable-common.inc
index 16f231108..f50e10a00 100644
--- a/etc/disable-common.inc
+++ b/etc/disable-common.inc
@@ -230,6 +230,7 @@ read-only ${HOME}/.bash_login
 read-only ${HOME}/.bash_logout
 read-only ${HOME}/.bash_profile
 read-only ${HOME}/.bashrc
+read-only ${HOME}/.config/environment.d
 read-only ${HOME}/.config/fish
 read-only ${HOME}/.csh_files
 read-only ${HOME}/.cshrc
diff --git a/etc/gedit.profile b/etc/gedit.profile
index 837396654..6d575e850 100644
--- a/etc/gedit.profile
+++ b/etc/gedit.profile
@@ -42,6 +42,6 @@ tracelog
 
 # private-bin gedit
 private-dev
-private-lib aspell,gconv,gedit,libgspell-1.so.*,libreadline.so.*,libtinfo.so.*
+private-lib aspell,gconv,gedit,libgspell-1.so.*,libgtksourceview-3.0.so.*,libpeas-gtk-1.0.so.*,libreadline.so.*,libtinfo.so.*
 private-tmp
 
diff --git a/etc/gnome-builder.profile b/etc/gnome-builder.profile
index 726a74089..eaf48931d 100644
--- a/etc/gnome-builder.profile
+++ b/etc/gnome-builder.profile
@@ -31,5 +31,4 @@ protocol unix,inet,inet6
 seccomp
 shell none
 
-private-cache
 private-dev
diff --git a/etc/gnome-maps.profile b/etc/gnome-maps.profile
index a625db948..78f5ddc3a 100644
--- a/etc/gnome-maps.profile
+++ b/etc/gnome-maps.profile
@@ -28,6 +28,7 @@ whitelist ${HOME}/.local/share/maps-places.json
 whitelist ${DOWNLOADS}
 whitelist ${PICTURES}
 whitelist /usr/share/gnome-maps
+whitelist /usr/share/libgweather
 include whitelist-common.inc
 include whitelist-usr-share-common.inc
 include whitelist-var-common.inc
@@ -55,4 +56,3 @@ private-bin gjs,gnome-maps
 private-dev
 private-etc alternatives,ca-certificates,clutter-1.0,crypto-policies,dconf,drirc,fonts,gconf,gcrypt,gtk-3.0,host.conf,hostname,hosts,ld.so.cache,ld.so.conf,ld.so.conf.d,ld.so.preload,locale,locale.alias,locale.conf,localtime,mime.types,nsswitch.conf,pango,pkcs11,pki,protocols,resolv.conf,rpc,services,ssl,X11,xdg
 private-tmp
-
diff --git a/etc/whitelist-usr-share-common.inc b/etc/whitelist-usr-share-common.inc
index be0a29d94..78b947750 100644
--- a/etc/whitelist-usr-share-common.inc
+++ b/etc/whitelist-usr-share-common.inc
@@ -42,6 +42,7 @@ whitelist /usr/share/p11-kit
 whitelist /usr/share/pixmaps
 whitelist /usr/share/pki
 whitelist /usr/share/plasma
+whitelist /usr/share/publicsuffix
 whitelist /usr/share/qt
 whitelist /usr/share/qt4
 whitelist /usr/share/qt5
-- 
cgit v1.2.3-54-g00ecf