From aff18630c4fbe49859135c76dbb7ee83233c8f64 Mon Sep 17 00:00:00 2001
From: Fred-Barclay <Fred-Barclay@users.noreply.github.com>
Date: Tue, 19 Apr 2016 10:43:38 +1000
Subject: added aweather profile

---
 etc/aweather.profile | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 etc/aweather.profile

diff --git a/etc/aweather.profile b/etc/aweather.profile
new file mode 100644
index 000000000..d7f510a7e
--- /dev/null
+++ b/etc/aweather.profile
@@ -0,0 +1,23 @@
+# Firejail profile for aweather.
+
+# Noblacklist
+noblacklist ~/.config/aweather
+
+# Include
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+
+# Call these options
+caps.drop all
+netfilter
+noroot
+protocol unix,inet,inet6,netlink
+seccomp
+tracelog
+
+# Whitelist
+mkdir ~/.config
+mkdir ~/.config/aweather
+whitelist ~/.config/aweather
-- 
cgit v1.2.3-54-g00ecf


From e42a45614a31eb06a9741490666ffc11a64d9931 Mon Sep 17 00:00:00 2001
From: Fred-Barclay <Fred-Barclay@users.noreply.github.com>
Date: Tue, 19 Apr 2016 11:04:24 +1000
Subject: extra aweather files

---
 Makefile.in                | 1 +
 README                     | 1 +
 README.md                  | 2 +-
 etc/disable-programs.inc   | 1 +
 platform/debian/conffiles  | 1 +
 src/firecfg/firecfg.config | 4 ++++
 6 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/Makefile.in b/Makefile.in
index cb897c23d..0ba490454 100644
--- a/Makefile.in
+++ b/Makefile.in
@@ -169,6 +169,7 @@ realinstall:
 	install -c -m 0644 .etc/okular.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	install -c -m 0644 .etc/gwenview.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	install -c -m 0644 .etc/gpredict.profile $(DESTDIR)/$(sysconfdir)/firejail/.
+	install -c -m 0644 .etc/aweather.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
 	sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/firejail.config ]; then install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
 	rm -fr .etc
diff --git a/README b/README
index d0a7aaf8d..db7410a73 100644
--- a/README
+++ b/README
@@ -35,6 +35,7 @@ Fred-Barclay (https://github.com/Fred-Barclay)
 	- added Warzone2100 profile
 	- blacklisted VeraCrypt
 	- added Gpredict profile
+	- added Aweather profile
 avoidr (https://github.com/avoidr)
 	- whitelist fix
 	- recently-used.xbel fix
diff --git a/README.md b/README.md
index ca7927fff..99ded275e 100644
--- a/README.md
+++ b/README.md
@@ -282,5 +282,5 @@ $ man firejail-profile
 ## New security profiles
 lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox,
 OpenSSH client, OpenBox window manager, Dillo, cmus, dnsmasq, PaleMoon, Icedove, abrowser, 0ad, netsurf,
-Warzone2100, okular, gwenview, Gpredict
+Warzone2100, okular, gwenview, Gpredict, Aweather
 
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 6c5515894..2b3a933a5 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -9,6 +9,7 @@ blacklist ${HOME}/.config/mupen64plus
 blacklist ${HOME}/.config/transmission
 blacklist ${HOME}/.config/uGet
 blacklist ${HOME}/.config/Gpredict
+blacklist ${HOME}/.config/aweather
 blacklist ~/.kde/share/apps/okular
 blacklist ~/.kde/share/config/okularrc
 blacklist ~/.kde/share/config/okularpartrc
diff --git a/platform/debian/conffiles b/platform/debian/conffiles
index 6f5b564a0..1cdf3d0f4 100644
--- a/platform/debian/conffiles
+++ b/platform/debian/conffiles
@@ -88,3 +88,4 @@
 /etc/firejail/okular.profile
 /etc/firejail/gwenview.profile
 /etc/firejail/gpredict.profile
+/etc/firejail/aweather.profile
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 8bebf76af..da31a7c7e 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -5,6 +5,9 @@
 # astronomy
 gpredict
 
+# weather/climate
+aweather
+
 # browsers/email
 firefox
 iceweasel
@@ -78,6 +81,7 @@ quassel
 xchat
 
 # games
+0ad
 hedgewars
 wesnot
 warzone2100
-- 
cgit v1.2.3-54-g00ecf


From 14bc13ca49895676e36e4ffa2f56657dc5336d10 Mon Sep 17 00:00:00 2001
From: Fred-Barclay <Fred-Barclay@users.noreply.github.com>
Date: Tue, 19 Apr 2016 11:44:05 +1000
Subject: added stellarium profile

---
 etc/stellarium.profile | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 etc/stellarium.profile

diff --git a/etc/stellarium.profile b/etc/stellarium.profile
new file mode 100644
index 000000000..7cb74eeaa
--- /dev/null
+++ b/etc/stellarium.profile
@@ -0,0 +1,27 @@
+# Firejail profile for Stellarium.
+
+# Noblacklist
+noblacklist ~/.stellarium
+noblacklist ~/.config/stellarium
+
+# Include
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-devel.inc
+include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-programs.inc
+
+# Call these options
+caps.drop all
+netfilter
+noroot
+protocol unix,inet,inet6,netlink
+seccomp
+tracelog
+
+# Whitelist
+mkdir ~/.stellarium
+whitelist ~/.stellarium
+
+mkdir ~/.config
+mkdir ~/.config/stellarium
+whitelist ~/.config/stellarium
-- 
cgit v1.2.3-54-g00ecf


From 7c0d9f974660f10ffc096a379d6dd4cb46761023 Mon Sep 17 00:00:00 2001
From: Fred-Barclay <Fred-Barclay@users.noreply.github.com>
Date: Tue, 19 Apr 2016 11:49:44 +1000
Subject: extra stellarium files

---
 Makefile.in                | 1 +
 README                     | 8 ++++----
 README.md                  | 2 +-
 etc/disable-programs.inc   | 2 ++
 platform/debian/conffiles  | 1 +
 src/firecfg/firecfg.config | 1 +
 6 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/Makefile.in b/Makefile.in
index 0ba490454..c15ecd7dd 100644
--- a/Makefile.in
+++ b/Makefile.in
@@ -170,6 +170,7 @@ realinstall:
 	install -c -m 0644 .etc/gwenview.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	install -c -m 0644 .etc/gpredict.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	install -c -m 0644 .etc/aweather.profile $(DESTDIR)/$(sysconfdir)/firejail/.
+	install -c -m 0644 .etc/stellarium.profile $(DESTDIR)/$(sysconfdir)/firejail/.
 	sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/login.users ]; then install -c -m 0644 etc/login.users $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
 	sh -c "if [ ! -f $(DESTDIR)/$(sysconfdir)/firejail/firejail.config ]; then install -c -m 0644 etc/firejail.config $(DESTDIR)/$(sysconfdir)/firejail/.; fi;"
 	rm -fr .etc
diff --git a/README b/README
index db7410a73..7919bdaad 100644
--- a/README
+++ b/README
@@ -19,9 +19,9 @@ Firejail Authors:
 
 netblue30 (netblue30@yahoo.com)
 curiosity-seeker (https://github.com/curiosity-seeker)
-        - tightening unbound and dnscrypt-proxy profiles
-        - dnsmasq profile
-        - okular and gwenview profiles
+    - tightening unbound and dnscrypt-proxy profiles
+    - dnsmasq profile
+    - okular and gwenview profiles
 Matthew Gyurgyik (https://github.com/pyther)
 	- rpm spec and several fixes
 Joan Figueras (https://github.com/figue)
@@ -35,7 +35,7 @@ Fred-Barclay (https://github.com/Fred-Barclay)
 	- added Warzone2100 profile
 	- blacklisted VeraCrypt
 	- added Gpredict profile
-	- added Aweather profile
+	- added Aweather, Stellarium profiles
 avoidr (https://github.com/avoidr)
 	- whitelist fix
 	- recently-used.xbel fix
diff --git a/README.md b/README.md
index 99ded275e..5b2626288 100644
--- a/README.md
+++ b/README.md
@@ -282,5 +282,5 @@ $ man firejail-profile
 ## New security profiles
 lxterminal, Epiphany, cherrytree, Polari, Vivaldi, Atril, qutebrowser, SlimJet, Battle for Wesnoth, Hedgewars, qTox,
 OpenSSH client, OpenBox window manager, Dillo, cmus, dnsmasq, PaleMoon, Icedove, abrowser, 0ad, netsurf,
-Warzone2100, okular, gwenview, Gpredict, Aweather
+Warzone2100, okular, gwenview, Gpredict, Aweather, Stellarium
 
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index 2b3a933a5..317ac082f 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -5,11 +5,13 @@ blacklist ${HOME}/.FBReader
 blacklist ${HOME}/.wine
 blacklist ${HOME}/.Mathematica
 blacklist ${HOME}/.Wolfram Research
+blacklist ${HOME}/.stellarium
 blacklist ${HOME}/.config/mupen64plus
 blacklist ${HOME}/.config/transmission
 blacklist ${HOME}/.config/uGet
 blacklist ${HOME}/.config/Gpredict
 blacklist ${HOME}/.config/aweather
+blacklist ${HOME}/.config/stellarium
 blacklist ~/.kde/share/apps/okular
 blacklist ~/.kde/share/config/okularrc
 blacklist ~/.kde/share/config/okularpartrc
diff --git a/platform/debian/conffiles b/platform/debian/conffiles
index 1cdf3d0f4..7ce729d6e 100644
--- a/platform/debian/conffiles
+++ b/platform/debian/conffiles
@@ -89,3 +89,4 @@
 /etc/firejail/gwenview.profile
 /etc/firejail/gpredict.profile
 /etc/firejail/aweather.profile
+/etc/firejail/stellarium.profile
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index da31a7c7e..3812ee7d8 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -4,6 +4,7 @@
 
 # astronomy
 gpredict
+stellarium
 
 # weather/climate
 aweather
-- 
cgit v1.2.3-54-g00ecf