From 4a40e2a5f2009cf282dd783e73e1fb860ac758ba Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Tue, 15 Dec 2020 19:05:54 +0000
Subject: Refactor archivers (#3820)

* Create archiver-common.inc

* add apparmor to archiver-common.inc

* refactor 7z.profile

* refactor ar.profile

* refactor atool.profile

* refactor bsdtar.profile

* refactor cpio.profile

* refactor gzip.profile

* refactor tar.profile

* refactor unrar.profile

* refactor unzip.profile

* refactor xzdec.profile

* refactor zstd.profile

* rewording

* blacklist ${RUNUSER} in archiver-common.inc

Thanks to @rusty-snake for suggesting this.

* drop non-sensical ${RUNUSER}/wayland-* blacklisting in archiver-common.inc

See discussion in https://github.com/netblue30/firejail/pull/3820#discussion_r543523343
---
 etc/profile-a-l/7z.profile | 39 +++------------------------------------
 1 file changed, 3 insertions(+), 36 deletions(-)

(limited to 'etc/profile-a-l/7z.profile')

diff --git a/etc/profile-a-l/7z.profile b/etc/profile-a-l/7z.profile
index 02a2e7ea0..c7bed93ce 100644
--- a/etc/profile-a-l/7z.profile
+++ b/etc/profile-a-l/7z.profile
@@ -7,41 +7,8 @@ include 7z.local
 # Persistent global definitions
 include globals.local
 
-blacklist ${RUNUSER}/wayland-*
-
-include disable-common.inc
-include disable-devel.inc
-include disable-exec.inc
-include disable-interpreters.inc
-include disable-passwdmgr.inc
-include disable-programs.inc
-
-apparmor
-caps.drop all
-hostname 7z
-ipc-namespace
-machine-id
-net none
-no3d
-nodvd
-#nogroups
-nonewprivs
-#noroot
-nosound
-notv
-nou2f
-novideo
-protocol unix
-seccomp
-shell none
-tracelog
-x11 none
+ignore include disable-shell.inc
+ignore nogroups
+include archiver-common.inc
 
 #private-bin 7z,7z*,p7zip
-private-cache
-private-dev
-
-dbus-user none
-dbus-system none
-
-memory-deny-write-execute
-- 
cgit v1.2.3-70-g09d2