github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1

add --noautopulse arg for complex pulse setups

Browse source 
such as remote pulse servers or non-standard socket paths
This commit is contained in:
Melvin Vermeeren 2018-04-01 21:57:32 +02:00
parent a06172ae31
commit 617ff40c93
No known key found for this signature in database
GPG key ID: 462C109D3AC7B859
8 changed files with 26 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

1
RELNOTES
View file

@ -1,5 +1,6 @@
firejail (0.9.53) baseline; urgency=low firejail (0.9.53) baseline; urgency=low
* work in progress * work in progress
* add --noautopulse to disable automatic ~/.config/pulse (for complex setups)
* modif: support for private-bin, private-lib and shell none has been * modif: support for private-bin, private-lib and shell none has been
disabled while running AppImage archives in order to be able to use disabled while running AppImage archives in order to be able to use
our regular profile files with AppImages. our regular profile files with AppImages.

1
src/firejail/firejail.h
View file

@ -357,6 +357,7 @@ extern int arg_private_lib; // private lib directory
extern int arg_scan; // arp-scan all interfaces extern int arg_scan; // arp-scan all interfaces
extern int arg_whitelist; // whitelist commad extern int arg_whitelist; // whitelist commad
extern int arg_nosound; // disable sound extern int arg_nosound; // disable sound
extern int arg_noautopulse; // disable automatic ~/.config/pulse init
extern int arg_novideo; //disable video devices in /dev extern int arg_novideo; //disable video devices in /dev
extern int arg_no3d; // disable 3d hardware acceleration extern int arg_no3d; // disable 3d hardware acceleration
extern int arg_quiet; // no output for scripting extern int arg_quiet; // no output for scripting

3
src/firejail/main.c
View file

@ -94,6 +94,7 @@ int arg_private_lib = 0; // private lib directory
int arg_scan = 0; // arp-scan all interfaces int arg_scan = 0; // arp-scan all interfaces
int arg_whitelist = 0; // whitelist commad int arg_whitelist = 0; // whitelist commad
int arg_nosound = 0; // disable sound int arg_nosound = 0; // disable sound
int arg_noautopulse = 0; // disable automatic ~/.config/pulse init
int arg_novideo = 0; //disable video devices in /dev int arg_novideo = 0; //disable video devices in /dev
int arg_no3d; // disable 3d hardware acceleration int arg_no3d; // disable 3d hardware acceleration
int arg_quiet = 0; // no output for scripting int arg_quiet = 0; // no output for scripting
@ -1727,6 +1728,8 @@ int main(int argc, char **argv) {
env_store(argv[i] + 8, RMENV); env_store(argv[i] + 8, RMENV);
else if (strcmp(argv[i], "--nosound") == 0) else if (strcmp(argv[i], "--nosound") == 0)
arg_nosound = 1; arg_nosound = 1;
else if (strcmp(argv[i], "--noautopulse") == 0)
arg_noautopulse = 1;
else if (strcmp(argv[i], "--novideo") == 0) else if (strcmp(argv[i], "--novideo") == 0)
arg_novideo = 1; arg_novideo = 1;
else if (strcmp(argv[i], "--no3d") == 0) else if (strcmp(argv[i], "--no3d") == 0)

4
src/firejail/profile.c
View file

@ -233,6 +233,10 @@ int profile_check_line(char *ptr, int lineno, const char *fname) {
arg_nosound = 1; arg_nosound = 1;
return 0; return 0;
} }
else if (strcmp(ptr, "noautopulse") == 0) {
arg_noautopulse = 1;
return 0;
}
else if (strcmp(ptr, "notv") == 0) { else if (strcmp(ptr, "notv") == 0) {
arg_notv = 1; arg_notv = 1;
return 0; return 0;

2
src/firejail/sandbox.c
View file

@ -889,7 +889,7 @@ int sandbox(void* sandbox_arg) {
// disable /dev/snd // disable /dev/snd
fs_dev_disable_sound(); fs_dev_disable_sound();
} }
else else if (!arg_noautopulse)
pulseaudio_init(); pulseaudio_init();
if (arg_no3d) if (arg_no3d)

1
src/firejail/usage.c
View file

@ -143,6 +143,7 @@ void usage(void) {
printf(" --noroot - install a user namespace with only the current user.\n"); printf(" --noroot - install a user namespace with only the current user.\n");
#endif #endif
printf(" --nosound - disable sound system.\n"); printf(" --nosound - disable sound system.\n");
printf(" --noautopulse - disable automatic ~/.config/pulse init.\n");
printf(" --novideo - disable video devices.\n"); printf(" --novideo - disable video devices.\n");
printf(" --nowhitelist=filename - disable whitelist for file or directory .\n"); printf(" --nowhitelist=filename - disable whitelist for file or directory .\n");
printf(" --output=logfile - stdout logging and log rotation.\n"); printf(" --output=logfile - stdout logging and log rotation.\n");

4
src/man/firejail-profile.txt
View file

@ -451,6 +451,10 @@ Enable IPC namespace.
\fBnosound \fBnosound
Disable sound system. Disable sound system.
.TP .TP
\fBnoautopulse
Disable automatic ~/.config/pulse init, for complex setups such as remote
pulse servers or non-standard socket paths.
.TP
\fBnotv \fBnotv
Disable DVB (Digital Video Broadcasting) TV devices. Disable DVB (Digital Video Broadcasting) TV devices.
.TP .TP

11
src/man/firejail.txt
View file

@ -1198,6 +1198,17 @@ Example:
.br .br
$ firejail \-\-nosound firefox $ firejail \-\-nosound firefox
.TP
\fB\-\-noautopulse
Disable automatic ~/.config/pulse init, for complex setups such as remote
pulse servers or non-standard socket paths.
.br
.br
Example:
.br
$ firejail \-\-noautopulse firefox
.TP .TP
\fB\-\-notv \fB\-\-notv
Disable DVB (Digital Video Broadcasting) TV devices. Disable DVB (Digital Video Broadcasting) TV devices.