From f874afd8c7e998a57528c3d5a34a4558c6b7f0a6 Mon Sep 17 00:00:00 2001
From: startx2017 <vradu.startx@yandex.com>
Date: Sat, 6 Jul 2019 09:05:51 -0400
Subject: mpg123

---
 README.md                  |  3 ++-
 RELNOTES                   |  2 +-
 etc/mpg123.profile         | 38 ++++++++++++++++++++++++++++++++++++++
 src/firecfg/firecfg.config |  1 +
 4 files changed, 42 insertions(+), 2 deletions(-)
 create mode 100644 etc/mpg123.profile

diff --git a/README.md b/README.md
index 22d094d04..e1dc875ab 100644
--- a/README.md
+++ b/README.md
@@ -115,4 +115,5 @@ We also keep a list of profile fixes for previous released versions in [etc-fixe
 
 ## New profiles:
 
-gnome-sound-recorder, godot, jerry, keepassxc-cli, keepassxc-proxy, klatexformula, klatexformula_cmdl, links, newsbeuter, OpenArena, pandoc, qgis, rhythmbox-client, tcpdump, teams-for-linux, tshark, xlinks, zeal
+gnome-sound-recorder, godot, jerry, keepassxc-cli, keepassxc-proxy, klatexformula, klatexformula_cmdl, links, newsbeuter, OpenArena, pandoc, qgis, rhythmbox-client, tcpdump, teams-for-linux, tshark, xlinks, zeal,
+mpg123,
diff --git a/RELNOTES b/RELNOTES
index b1e403d88..d5baa3bc4 100644
--- a/RELNOTES
+++ b/RELNOTES
@@ -5,7 +5,7 @@ firejail (0.9.61) baseline; urgency=low
   * new profiles: qgis, klatexformula, klatexformula_cmdl, links, xlinks
   * new profiles: pandoc, teams-for-linux, OpenArena, gnome-sound-recorder
   * new profiles: godot, tcpdump, tshark, newsbeuter, keepassxc-cli
-  * new profiles: keepassxc-proxy, rhythmbox-client, jerry, zeal
+  * new profiles: keepassxc-proxy, rhythmbox-client, jerry, zeal, mpg123
  -- netblue30 <netblue30@yahoo.com>  Sat, 1 Jun 2019 08:00:00 -0500
 
 firejail (0.9.60) baseline; urgency=low
diff --git a/etc/mpg123.profile b/etc/mpg123.profile
new file mode 100644
index 000000000..8a8907c39
--- /dev/null
+++ b/etc/mpg123.profile
@@ -0,0 +1,38 @@
+# Firejail profile for mpg123
+# Description: MPEG audio player/decoder
+# This file is overwritten after every install/update
+# Persistent local customizations
+include mpg123.local
+# Persistent global definitions
+include globals.local
+
+noblacklist ${MUSIC}
+noblacklist ${VIDEOS}
+
+include disable-common.inc
+include disable-devel.inc
+include disable-exec.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include disable-xdg.inc
+
+include whitelist-var-common.inc
+
+apparmor
+caps.drop all
+netfilter
+nodbus
+nogroups
+nonewprivs
+noroot
+nou2f
+protocol unix,inet,inet6,netlink
+seccomp
+shell none
+
+#private-bin mpg123*
+private-dev
+private-tmp
+
+memory-deny-write-execute
diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 04bf123ad..bb55357ae 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -379,6 +379,7 @@ mp3splt
 mp3splt-gtk
 mp3wrap
 mpDris2
+mpg123
 mplayer
 mpsyt
 mpv
-- 
cgit v1.2.3-70-g09d2