From d452e45a9196aa2f4d34706fcfb7907707a19ff9 Mon Sep 17 00:00:00 2001 From: rusty-snake <41237666+rusty-snake@users.noreply.github.com> Date: Wed, 8 Sep 2021 23:21:07 +0200 Subject: Add profiles for build-systems (/package-managers) Profiles: bunler, cargo (refactor), cmake (untested), make, meson, pip All redirect to build-systems-common.profile Other fixes: - blacklist ${HOME}/.bundle - blacklist ${HOME}/.cargo/* -> blacklist ${HOME}/.cargo - blacklist /usr/lib64/ruby --- etc/profile-m-z/meson.profile | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 etc/profile-m-z/meson.profile (limited to 'etc/profile-m-z/meson.profile') diff --git a/etc/profile-m-z/meson.profile b/etc/profile-m-z/meson.profile new file mode 100644 index 000000000..43109e771 --- /dev/null +++ b/etc/profile-m-z/meson.profile @@ -0,0 +1,16 @@ +# Firejail profile for meson +# Description: A high productivity build system +# This file is overwritten after every install/update +quiet +# Persistent local customizations +include meson.local +# Persistent global definitions +include globals.local + +# Allow python3 (blacklisted by disable-interpreters.inc) +include allow-python3.inc + +private-bin meson,python3* + +# Redirect +include build-systems-common.profile -- cgit v1.2.3-70-g09d2 From f0d23924c185f4692d34d591a146ab8ea1186dad Mon Sep 17 00:00:00 2001 From: rusty-snake <41237666+rusty-snake@users.noreply.github.com> Date: Sat, 11 Sep 2021 19:45:26 +0200 Subject: Drop private-bin from build-systems --- etc/profile-a-l/bundle.profile | 2 -- etc/profile-a-l/cmake.profile | 2 -- etc/profile-m-z/meson.profile | 2 -- etc/profile-m-z/pip.profile | 2 -- 4 files changed, 8 deletions(-) (limited to 'etc/profile-m-z/meson.profile') diff --git a/etc/profile-a-l/bundle.profile b/etc/profile-a-l/bundle.profile index a3a3e3cde..bb82022b1 100644 --- a/etc/profile-a-l/bundle.profile +++ b/etc/profile-a-l/bundle.profile @@ -19,7 +19,5 @@ whitelist /usr/share/gems whitelist /usr/share/ruby whitelist /usr/share/rubygems -private-bin bundle,bundler,ruby,ruby-mri - # Redirect include build-systems-common.profile diff --git a/etc/profile-a-l/cmake.profile b/etc/profile-a-l/cmake.profile index 1fb893f86..26cc2a00a 100644 --- a/etc/profile-a-l/cmake.profile +++ b/etc/profile-a-l/cmake.profile @@ -7,8 +7,6 @@ include cargo.local # Persistent global definitions include globals.local -private-bin cmake - memory-deny-write-execute # Redirect diff --git a/etc/profile-m-z/meson.profile b/etc/profile-m-z/meson.profile index 43109e771..b4909a9d8 100644 --- a/etc/profile-m-z/meson.profile +++ b/etc/profile-m-z/meson.profile @@ -10,7 +10,5 @@ include globals.local # Allow python3 (blacklisted by disable-interpreters.inc) include allow-python3.inc -private-bin meson,python3* - # Redirect include build-systems-common.profile diff --git a/etc/profile-m-z/pip.profile b/etc/profile-m-z/pip.profile index 1f551b718..a0926371f 100644 --- a/etc/profile-m-z/pip.profile +++ b/etc/profile-m-z/pip.profile @@ -14,7 +14,5 @@ include allow-python3.inc #whitelist ${HOME}/.local/lib/python* -private-bin pip,pip[0-9].[0-9],pip[0-9].[0-9],python3* - # Redirect include build-systems-common.profile -- cgit v1.2.3-70-g09d2