0.9.71

README

@@ -838,6 +838,7 @@ PizzaDude (https://github.com/pizzadude)
 	- added profile for torbrowser-launcher
 	- added profile for sayonara and qmmp
 	- remove tracelog from Firefox profile
+	- fix welcome.sh
 polyzen (https://github.com/polyzen)
 	- fixed wusc issue with mpv/Vulkan
 probonopd (https://github.com/probonopd)

README.md

@@ -207,43 +207,12 @@ You can also use this tool to get a list of syscalls needed by a program: [contr
 
 We also keep a list of profile fixes for previous released versions in [etc-fixes](https://github.com/netblue30/firejail/tree/master/etc-fixes) directory.
 
-## Latest released version: 0.9.68
+## Latest released version: 0.9.70
 
-## Current development version: 0.9.69
+## Current development version: 0.9.71
 
 Milestone page: https://github.com/netblue30/firejail/milestone/1
 
-### Shell tab completion
-```
-       --tab  Enable shell tab completion in sandboxes using private or whitelisted
-              home directories.
-
-              $ firejail --private --tab
-```
-
-### Kernel OutOfMemory-killer
-`````
-       --oom=value
-              Configure kernel's OutOfMemory-killer score  for  this  sandbox.
-              The  acceptable  score values are between 0 and 1000 for regular
-              users, and -1000 to 1000 for root. For more information  on  OOM
-              kernel feature see man choom.
-
-              Example:
-              $ firejail --oom=300 firefox
-`````
-
-### Guided configuration
-`````
-$ man firecfg
-[...]
-       --guide
-              Guided configuration for new users.
-
-              Example:
-              $ sudo firecfg --guide
-`````
-
 ### Profile Statistics
 
 A small tool to print profile statistics. Compile and install as usual. The tool is installed in /usr/lib/firejail directory.
@@ -254,30 +223,30 @@ No include .local found in /etc/firejail/noprofile.profile
 Warning: multiple caps in /etc/firejail/transmission-daemon.profile
 
 Stats:
-    profiles			1184
-    include local profile	1183   (include profile-name.local)
-    include globals		1152   (include globals.local)
-    blacklist ~/.ssh		1057   (include disable-common.inc)
-    seccomp			1076
-    capabilities		1178
-    noexec			1064   (include disable-exec.inc)
-    noroot			985
-    memory-deny-write-execute	259
-    apparmor			707
-    private-bin			686
-    private-dev			1040
-    private-etc			537
-    private-tmp			911
-    whitelist home directory	567
-    whitelist var		849   (include whitelist-var-common.inc)
-    whitelist run/user		1153   (include whitelist-runuser-common.inc
+    profiles			1191
+    include local profile	1190   (include profile-name.local)
+    include globals		1164   (include globals.local)
+    blacklist ~/.ssh		1063   (include disable-common.inc)
+    seccomp			1082
+    capabilities		1185
+    noexec			1070   (include disable-exec.inc)
+    noroot			991
+    memory-deny-write-execute	267
+    apparmor			710
+    private-bin			689
+    private-dev			1041
+    private-etc			539
+    private-tmp			915
+    whitelist home directory	573
+    whitelist var		855   (include whitelist-var-common.inc)
+    whitelist run/user		1159   (include whitelist-runuser-common.inc
 					or blacklist ${RUNUSER})
-    whitelist usr/share		621   (include whitelist-usr-share-common.inc
+    whitelist usr/share		628   (include whitelist-usr-share-common.inc
     net none			403
-    dbus-user none 		670
-    dbus-user filter 		114
-    dbus-system none 		824
-    dbus-system filter 		10
+    dbus-user none 		673
+    dbus-user filter 		122
+    dbus-system none 		832
+    dbus-system filter 		12
 ```
 
 ### New profiles:

RELNOTES

@@ -1,3 +1,7 @@
+firejail (0.9.71) baseline; urgency=low
+  * work in progress
+ -- netblue30 <netblue30@yahoo.com>  Sat, 11 Jun 2022 09:00:00 -0500
+
 firejail (0.9.70) baseline; urgency=low
   * security: CVE-2022-31214 - root escalation in --join logic
     Reported by  Matthias Gerstner, working exploit code was provided to our
@@ -34,7 +38,7 @@ firejail (0.9.70) baseline; urgency=low
   * new profiles: onionshare, onionshare-cli, opera-developer, songrec
   * new profiles: node-gyp, npx, semver, ping-hardened
   * removed profiles: nvm
- -- netblue30 <netblue30@yahoo.com>  Mon, 7 Feb 2022 09:00:00 -0500
+ -- netblue30 <netblue30@yahoo.com>  Thu, 9 Jun 2022 09:00:00 -0500
 
 firejail (0.9.68) baseline; urgency=low
   * security: on Ubuntu, the PPA is now recommended over the distro package

configure

@@ -1,6 +1,6 @@
 #! /bin/sh
 # Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for firejail 0.9.70.
+# Generated by GNU Autoconf 2.69 for firejail 0.9.71.
 #
 # Report bugs to <netblue30@protonmail.com>.
 #
@@ -580,8 +580,8 @@ MAKEFLAGS=
 # Identity of this package.
 PACKAGE_NAME='firejail'
 PACKAGE_TARNAME='firejail'
-PACKAGE_VERSION='0.9.70'
-PACKAGE_STRING='firejail 0.9.70'
+PACKAGE_VERSION='0.9.71'
+PACKAGE_STRING='firejail 0.9.71'
 PACKAGE_BUGREPORT='netblue30@protonmail.com'
 PACKAGE_URL='https://firejail.wordpress.com'
 
@@ -1298,7 +1298,7 @@ if test "$ac_init_help" = "long"; then
   # Omit some internal or obsolete options to make the list less imposing.
   # This message is too long to be a string in the A/UX 3.1 sh.
   cat <<_ACEOF
-\`configure' configures firejail 0.9.70 to adapt to many kinds of systems.
+\`configure' configures firejail 0.9.71 to adapt to many kinds of systems.
 
 Usage: $0 [OPTION]... [VAR=VALUE]...
 
@@ -1360,7 +1360,7 @@ fi
 
 if test -n "$ac_init_help"; then
   case $ac_init_help in
-     short | recursive ) echo "Configuration of firejail 0.9.70:";;
+     short | recursive ) echo "Configuration of firejail 0.9.71:";;
    esac
   cat <<\_ACEOF
 
@@ -1484,7 +1484,7 @@ fi
 test -n "$ac_init_help" && exit $ac_status
 if $ac_init_version; then
   cat <<\_ACEOF
-firejail configure 0.9.70
+firejail configure 0.9.71
 generated by GNU Autoconf 2.69
 
 Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1740,7 +1740,7 @@ cat >config.log <<_ACEOF
 This file contains any messages produced by compilers while
 running configure, to aid debugging if configure makes a mistake.
 
-It was created by firejail $as_me 0.9.70, which was
+It was created by firejail $as_me 0.9.71, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   $ $0 $@
@@ -4631,7 +4631,7 @@ cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1
 # report actual input values of CONFIG_FILES etc. instead of their
 # values after options handling.
 ac_log="
-This file was extended by firejail $as_me 0.9.70, which was
+This file was extended by firejail $as_me 0.9.71, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   CONFIG_FILES    = $CONFIG_FILES
@@ -4685,7 +4685,7 @@ _ACEOF
 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`"
 ac_cs_version="\\
-firejail config.status 0.9.70
+firejail config.status 0.9.71
 configured by $0, generated by GNU Autoconf 2.69,
   with options \\"\$ac_cs_config\\"
 

configure.ac

@@ -12,7 +12,7 @@
 #
 
 AC_PREREQ([2.68])
-AC_INIT([firejail], [0.9.70], [netblue30@protonmail.com], [],
+AC_INIT([firejail], [0.9.71], [netblue30@protonmail.com], [],
     [https://firejail.wordpress.com])
 
 AC_CONFIG_SRCDIR([src/firejail/main.c])