github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-21 06:45:29 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 1
8660 commits 10 branches 71 tags 33 MiB
Commit graph

8660 commits

This branch
This branch
All branches
Author SHA1 Message Date
netblue30
0fcb576ba2
Merge pull request #5349 from glitsj16/typo-fixes 
Typo fixes
 2022-08-30 08:55:27 -04:00
glitsj16
2ac8a93fd4
typo fix for README.md 2022-08-29 18:18:59 +00:00
glitsj16
c5e8d5d1f6
typo fixes for RELNOTES 2022-08-29 18:16:27 +00:00
netblue30
6d740d7dcf RELNOTES and README.md - existing functionality modified for the next version 2022-08-29 12:55:00 -04:00
netblue30
6e687c3011 tracelog disabled by default in /etc/firejail/firejail.config file 2022-08-29 12:30:05 -04:00
netblue30
836ffe37ff compile fix 2022-08-29 08:54:33 -04:00
netblue30
54cb3e741e
Merge pull request #5315 from ChrysoliteAzalea/landlock 
Add Landlock support to Firejail
 2022-08-29 08:44:41 -04:00
netblue30
97b1e02d5f merges, fixed lbry-viewer as suggested 2022-08-29 07:43:32 -04:00
netblue30
18be7a1f96
Merge pull request #5331 from pirate486743186/lbry-viewer.profile-create 
lbry-viewer.profile create
 2022-08-29 07:37:35 -04:00
netblue30
57f35e5f7f
Merge pull request #5344 from kmk3/docs-symlink-handling 
docs: note that blacklist/whitelist follow symlinks
 2022-08-29 07:36:08 -04:00
netblue30
f843ea3e2e
Merge pull request #5345 from netblue30/dependabot/github_actions/github/codeql-action-2.1.21 
build(deps): bump github/codeql-action from 2.1.19 to 2.1.21
 2022-08-29 07:30:18 -04:00
dependabot[bot]
399178eb56
build(deps): bump github/codeql-action from 2.1.19 to 2.1.21 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.19 to 2.1.21.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f5d217be74...c7f292ea4f)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-29 06:13:04 +00:00
Kelvin M. Klann
c78c2b4ec4 docs: note that blacklist/whitelist follow symlinks 
Make it more explicit that they do and add an example for each command.

Relates to #5338.
 2022-08-28 21:14:23 -03:00
Kelvin M. Klann
8e04409614 docs: clarify symlink handling description in --whitelist 
Format it and improve the grammar and explanation.
 2022-08-28 19:46:14 -03:00
pirate486743186
fd5659e43a
tuir.profile creation (#5330) 
Co-authored-by: pirate486743186 <>
 2022-08-28 20:00:36 +00:00
Kelvin M. Klann
783c700510 steam.profile: fix Proton-GE version in comment 
This amends commit e2631b40d ("steam.profile: fix breakage with newer
Proton-GE (process_vm_readv)", 2022-08-20).
 2022-08-26 16:33:52 -03:00
Kelvin M. Klann
e2631b40d9 steam.profile: fix breakage with newer Proton-GE (process_vm_readv) 
As reported by @rsramkis on #5185, upgrading from Proton-7.2-GE-2[1]
(released on 2022-02-14) to GE-Proton7-18[2] (released on 2022-05-19)
breaks logging in on World of Tanks Blitz unless the `process_vm_ready`
32-bit syscall is allowed[3], so allow it.

Fixes #5185.

[1] https://github.com/GloriousEggroll/proton-ge-custom/releases/tag/7.2-GE-2
[2] https://github.com/GloriousEggroll/proton-ge-custom/releases/tag/GE-Proton7-18
[3] https://github.com/netblue30/firejail/issues/5185#issuecomment-1152350336
 2022-08-26 19:30:14 +00:00
dependabot[bot]
79d5b03884 build(deps): bump github/codeql-action from 2.1.18 to 2.1.19 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.18 to 2.1.19.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2ca79b6fa8...f5d217be74)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-24 16:38:57 +00:00
Kelvin M. Klann
9f900534f1 src/firejail/profile.c: fix trailing whitespace 
This amends commit 7f3b6c19a ("Add support for custom AppArmor profiles
(--apparmor=)", 2022-07-25) / PR #5274.
 2022-08-23 06:37:52 -03:00
pirate486743186
08715f6022 lbry-viewer.profile create 2022-08-21 15:05:47 +02:00
Kelvin M. Klann
64cad40118 docs: set vim filetype on the other man pages 
Some man pages are missing it.

This amends commit aacd2e7d8 ("docs: set vim filetype on man pages for
syntax highlighting", 2022-08-04) / PR #5296.
 2022-08-20 12:08:25 -03:00
Kelvin M. Klann
ffc4f72c5c RELNOTES: add seccomp log flood bugfix 
Relates to #5207.
 2022-08-20 06:44:53 -03:00
Kelvin M. Klann
0d49c7a42d RELNOTES: sort features by date added 
Relates to #4939 #5259.
 2022-08-20 06:40:56 -03:00
glitsj16
d3116a98e9
man.profile needs additional private-etc items on arch (#5322) 2022-08-18 13:52:41 +00:00
Kelvin M. Klann
df00c1388f RELNOTES: add build and docs items 
Relates to #5288 #5290 #5296 #5310.
 2022-08-18 03:16:59 -03:00
Kelvin M. Klann
64421e1cf2 RELNOTES: add missing references for --restrict-namespaces 
And fix a typo of "implemented".

Relates to #4939 #5259.
 2022-08-18 03:16:25 -03:00
Kelvin M. Klann
eaccc59df9 RELNOTES: add more references related to --apparmor= 
Relates to #5274 #5316 #5317.
 2022-08-18 03:06:54 -03:00
Kelvin M. Klann
4fe11d1638 RELNOTES: restore build item and build PR reference 
Which were removed on commit d4323ae26 ("merges", 2022-08-14).

Relates to #5283 #5284.
 2022-08-18 03:06:54 -03:00
Азалия Смарагдова
9109f60151
Fixed an AppArmor profile denial issue with ptrace and signals (#5317) 2022-08-18 01:12:37 +00:00
Азалия Смарагдова
c6d7474c13 tinyLL has been removed as it's no longer needed 2022-08-16 13:30:12 +05:00
Азалия Смарагдова
460fa7a6f9 Proposed fixes. 2022-08-16 12:03:50 +05:00
Азалия Смарагдова
877fc99d54
Update quotation marks in src/zsh_completion/_firejail.in 
Co-authored-by: rusty-snake <41237666+rusty-snake@users.noreply.github.com>
 2022-08-15 21:19:02 +05:00
Азалия Смарагдова
ba828befe0 Landlock functions are added to the code of Firejail, removing the dependency on tinyLL 2022-08-15 14:36:02 +05:00
Азалия Смарагдова
61b1544289 Landlock support has been added. 2022-08-15 13:32:24 +05:00
netblue30
5ab4aeb35c more merges 2022-08-14 09:38:32 -04:00
netblue30
07a5f9db6f more merges 2022-08-14 09:37:52 -04:00
netblue30
ea6f8a18bb
Merge pull request #5302 from pirate486743186/makedeb-profile-creation 
makedeb profile creation
 2022-08-14 09:36:25 -04:00
netblue30
11e06fb051
Merge pull request #5310 from kmk3/build-use-tarname 
build: add and use TARNAME instead of NAME for paths
 2022-08-14 09:33:32 -04:00
netblue30
d48736f70f
Merge pull request #5309 from qretornaz-adapei42/master 
microsoft-edge.profile rewritten for stable channel and moved microsoft-edge{,-beta,-dev} from private-opt to whitelist
 2022-08-14 09:32:53 -04:00
netblue30
9fed7985b6
Merge pull request #5296 from kmk3/docs-man-vim-ft 
docs: set vim filetype on man pages for syntax highlighting
 2022-08-14 09:29:39 -04:00
netblue30
e7dccf7a54
Merge pull request #5290 from kmk3/docs-suid-firejail-users 
docs: mention risk of SUID binaries and also firejail-users(5)
 2022-08-14 09:29:04 -04:00
netblue30
c4e2ee9205
Merge pull request #5285 from ra1nb0w/vmware-snapshot 
vmware.profile: snapshot requires /etc/mtab
 2022-08-14 09:26:45 -04:00
netblue30
d4323ae26f merges 2022-08-14 09:00:01 -04:00
netblue30
b987cf001a
Merge pull request #5274 from ChrysoliteAzalea/master 
Add support for custom AppArmor profiles (--apparmor=)
 2022-08-14 08:43:15 -04:00
Kelvin M. Klann
7bbcf7eab2 build: use TARNAME instead of NAME for paths 
PACKAGE_TARNAME is the same as PACKAGE_NAME but normalized, so it should
be safer to use in paths.  For example, on a downstream project, if
spaces or shell metacharacters are added to the package name, a path
that uses PACKAGE_TARNAME should keep working.

From the manual of GNU Autoconf (version 2.69):

>  -- Macro: AC_INIT (PACKAGE, VERSION, [BUG-REPORT], [TARNAME], [URL])
>      Process any command-line arguments and perform initialization and
>      verification.
>
>      Set the name of the PACKAGE and its VERSION.  These are typically
>      used in '--version' support, including that of 'configure'.  The
>      optional argument BUG-REPORT should be the email to which users
>      should send bug reports.  The package TARNAME differs from
>      PACKAGE: the latter designates the full package name (e.g., 'GNU
>      Autoconf'), while the former is meant for distribution tar ball
>      names (e.g., 'autoconf').  It defaults to PACKAGE with 'GNU '
>      stripped, lower-cased, and all characters other than
>      alphanumerics and underscores are changed to '-'.

Note also that by default (on autoconf v2.69), `docdir=@docdir@` in
config.mk.in expands to the following in config.mk:

    docdir=${datarootdir}/doc/${PACKAGE_TARNAME}
 2022-08-14 02:17:39 -03:00
Kelvin M. Klann
891fd02701 build: add new TARNAME variable 
That expands to `@PACKAGE_TARNAME@`, similar to the existing
PACKAGE_TARNAME variable.

To make it easier to use (and read) and to be more consistent with the
surrounding variables (NAME and VERSION).

Note that the original PACKAGE_TARNAME is still needed, as by default
(on autoconf v2.69) `docdir=@docdir@` in config.mk.in expands to the
following in config.mk:

    docdir=${datarootdir}/doc/${PACKAGE_TARNAME}
 2022-08-14 02:17:39 -03:00
Kelvin M. Klann
9a45c34fc7 build: rename DOCDIR to docdir 
To match other similar variables, such as datarootdir and mandir.
 2022-08-13 23:38:53 -03:00
Kelvin M. Klann
3bb8064677 config.mk.in: move basic variables to the top 
Move up the variables that are defined in the `AC_INIT` call on
configure.ac.

And put VERSION last, to match the usual `$(NAME)-$(VERSION)` usage.
 2022-08-13 23:38:32 -03:00
Kelvin M. Klann
0d200264b1 config.mk.in: move CC variable near CFLAGS 
Move it to the bottom, near other compilation-related flags.
 2022-08-13 17:06:56 -03:00
Kelvin M. Klann
40c0f3cff6 RELNOTES: add build items 
Relates to #5283 #5284.
 2022-08-12 03:43:18 -03:00