From 83ac0239722f85ffed15e3b6b6088bfff547ac1b Mon Sep 17 00:00:00 2001
From: "Kelvin M. Klann" <kmk3.code@protonmail.com>
Date: Sat, 9 Jan 2021 21:41:43 -0300
Subject: etc: add allow-ssh.inc

And move the scattered `noblacklist ${HOME}/.ssh` entries into it.

Command used to find the relevant files:

    $ grep -Fnr 'noblacklist ${HOME}/.ssh' etc

Also, add it to profile.template, as reminded by @rusty-snake at
https://github.com/netblue30/firejail/pull/3885#pullrequestreview-567527031
---
 etc/profile-m-z/ssh-agent.profile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'etc/profile-m-z/ssh-agent.profile')

diff --git a/etc/profile-m-z/ssh-agent.profile b/etc/profile-m-z/ssh-agent.profile
index 01b63d3ce..d2e2b3408 100644
--- a/etc/profile-m-z/ssh-agent.profile
+++ b/etc/profile-m-z/ssh-agent.profile
@@ -8,7 +8,9 @@ include globals.local
 
 noblacklist /etc/ssh
 noblacklist /tmp/ssh-*
-noblacklist ${HOME}/.ssh
+
+# Allow ssh (blacklisted by disable-common.inc)
+include allow-ssh.inc
 
 blacklist /tmp/.X11-unix
 blacklist ${RUNUSER}/wayland-*
-- 
cgit v1.2.3-70-g09d2