From ecbc26fc3b4737a368b701f32ca7c225f86b4e37 Mon Sep 17 00:00:00 2001
From: bn0785ac <33168871+bn0785ac@users.noreply.github.com>
Date: Tue, 1 May 2018 11:02:01 -0400
Subject: Repairing programs (#1894)

cin keeps seccomp (but i've recovered multithreading its mandatory for video editing)

libreoffice its fixed (linux-kde)

natron works (multithread )
---
 etc/cin.profile         | 8 +++++---
 etc/libreoffice.profile | 2 +-
 etc/natron.profile      | 8 +++++++-
 3 files changed, 13 insertions(+), 5 deletions(-)

diff --git a/etc/cin.profile b/etc/cin.profile
index 0a5b0c728..512fa2050 100644
--- a/etc/cin.profile
+++ b/etc/cin.profile
@@ -18,15 +18,17 @@ ipc-namespace
 net none
 nodbus
 nodvd
-nogroups
-nonewprivs
+#nogroups
+#nonewprivs
 notv
 noroot
 protocol unix
+
+#if an 1-1.2% gap per thread hurts you, feel free to comment seccomp
 seccomp
 shell none
 
-private-bin cin,ffmpeg
+#private-bin cin,ffmpeg
 private-dev
 
 noexec ${HOME}
diff --git a/etc/libreoffice.profile b/etc/libreoffice.profile
index 18fcc59c6..4aafd7c7a 100644
--- a/etc/libreoffice.profile
+++ b/etc/libreoffice.profile
@@ -29,7 +29,7 @@ include /etc/firejail/whitelist-var-common.inc
 caps.drop all
 machine-id
 netfilter
-nodbus
+#nodbus
 nodvd
 nogroups
 #nonewprivs - fix for Ubuntu 18.04/Debian 10
diff --git a/etc/natron.profile b/etc/natron.profile
index f6ebf2b65..b933604f8 100644
--- a/etc/natron.profile
+++ b/etc/natron.profile
@@ -5,6 +5,12 @@ include /etc/firejail/natron.local
 # Persistent global definitions
 include /etc/firejail/globals.local
 
+#fixing it
+noblacklist ${PATH}/python2*
+noblacklist ${PATH}/python3*
+noblacklist /usr/lib/python2*
+noblacklist /usr/lib/python3*
+
 noblacklist ${HOME}/.Natron
 noblacklist ${HOME}/.cache/INRIA/Natron
 noblacklist ${HOME}/.config/INRIA
@@ -12,7 +18,7 @@ noblacklist /opt/natron
 
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-devel.inc
-include /etc/firejail/disable-interpreters.inc
+#include /etc/firejail/disable-interpreters.inc
 include /etc/firejail/disable-passwdmgr.inc
 include /etc/firejail/disable-programs.inc
 
-- 
cgit v1.2.3-54-g00ecf