github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

microsoft-edge fixes (#5697)

Browse source 
* microsoft-edge*: fix spacing

* Create microsoft-edge-stable.profile

Relates to #5696.

* firecfg.config: add support for microsoft-edge-stable redirect

* disable-common.inc: blacklist msedge SUID executables

* microsoft-edge: add private-opt and allow internal sandbox access
This commit is contained in:
glitsj16 2023-03-14 23:29:53 +00:00 committed by GitHub
parent 35c9f1fd38
commit 2cb40fbecd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
6 changed files with 25 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

1
etc/inc/disable-common.inc
View file

@ -556,6 +556,7 @@ blacklist ${PATH}/ss
blacklist ${PATH}/traceroute
# other SUID binaries
blacklist /opt/microsoft/msedge*/msedge-sandbox
blacklist /usr/lib/virtualbox
blacklist /usr/lib64/virtualbox

5
etc/profile-m-z/microsoft-edge-beta.profile
View file

@ -1,5 +1,5 @@
# Firejail profile for Microsoft Edge Beta
# Description: Web browser from Microsoft,beta channel
# Description: Web browser from Microsoft, beta channel
# This file is overwritten after every install/update
# Persistent local customizations
include microsoft-edge-beta.local
@ -8,6 +8,7 @@ include globals.local
noblacklist ${HOME}/.cache/microsoft-edge-beta
noblacklist ${HOME}/.config/microsoft-edge-beta
noblacklist /opt/microsoft/msedge-beta/msedge-sandbox
mkdir ${HOME}/.cache/microsoft-edge-beta
mkdir ${HOME}/.config/microsoft-edge-beta
@ -15,6 +16,8 @@ whitelist ${HOME}/.cache/microsoft-edge-beta
whitelist ${HOME}/.config/microsoft-edge-beta
whitelist /opt/microsoft/msedge-beta
# private-opt might break the file-copy-limit, see #5307
#private-opt microsoft
# Redirect
include chromium-common.profile

5
etc/profile-m-z/microsoft-edge-dev.profile
View file

@ -1,5 +1,5 @@
# Firejail profile for Microsoft Edge Dev
# Description: Web browser from Microsoft,dev channel
# Description: Web browser from Microsoft, dev channel
# This file is overwritten after every install/update
# Persistent local customizations
include microsoft-edge-dev.local
@ -8,6 +8,7 @@ include globals.local
noblacklist ${HOME}/.cache/microsoft-edge-dev
noblacklist ${HOME}/.config/microsoft-edge-dev
noblacklist /opt/microsoft/msedge-dev/msedge-sandbox
mkdir ${HOME}/.cache/microsoft-edge-dev
mkdir ${HOME}/.config/microsoft-edge-dev
@ -15,6 +16,8 @@ whitelist ${HOME}/.cache/microsoft-edge-dev
whitelist ${HOME}/.config/microsoft-edge-dev
whitelist /opt/microsoft/msedge-dev
# private-opt might break file-copy-limit, see #5307
#private-opt microsoft
# Redirect
include chromium-common.profile

11
etc/profile-m-z/microsoft-edge-stable.profile Normal file
View file

@ -0,0 +1,11 @@
# Firejail profile for Microsoft Edge Stable
# Description: Web browser from Microsoft, stable channel
# This file is overwritten after every install/update
# Persistent local customizations
include microsoft-edge-stable.local
# Persistent global definitions
# added by included profile
#include globals.local
# Redirect
include microsoft-edge.profile

5
etc/profile-m-z/microsoft-edge.profile
View file

@ -1,5 +1,5 @@
# Firejail profile for Microsoft Edge
# Description: Web browser from Microsoft,stable channel
# Description: Web browser from Microsoft, stable channel
# This file is overwritten after every install/update
# Persistent local customizations
include microsoft-edge.local
@ -8,6 +8,7 @@ include globals.local
noblacklist ${HOME}/.cache/microsoft-edge
noblacklist ${HOME}/.config/microsoft-edge
noblacklist /opt/microsoft/msedge/msedge-sandbox
mkdir ${HOME}/.cache/microsoft-edge
mkdir ${HOME}/.config/microsoft-edge
@ -15,6 +16,8 @@ whitelist ${HOME}/.cache/microsoft-edge
whitelist ${HOME}/.config/microsoft-edge
whitelist /opt/microsoft/msedge
# private-opt might break default file-copy-limit, see #5307
#private-opt microsoft
# Redirect
include chromium-common.profile

1
src/firecfg/firecfg.config
View file

@ -537,6 +537,7 @@ meteo-qt
microsoft-edge
microsoft-edge-beta
microsoft-edge-dev
microsoft-edge-stable
midori
min
mindless