summaryrefslogtreecommitdiffstats
path: root/config/chroot_local-patches
diff options
context:
space:
mode:
authorintrigeri <intrigeri@boum.org>2015-06-10 09:40:53 +0000
committerintrigeri <intrigeri@boum.org>2015-06-10 09:52:12 +0000
commit5415fe131bdaa900a0caa00c27abbdde98a48d93 (patch)
tree5e48b58473007dcec09028ed992084a63d6c0c0d /config/chroot_local-patches
parent5e47b2a7c8962b9d6d2dcc96f5bb00ba016ea396 (diff)
AppArmor: adjust the Vidalia profile to take into account Live-specific paths.
We can't add /lib/live/mount/rootfs/*.squashfs/ to HOMEDIRS, so each such profile will need to be patched this way. Will-fix: #9552
Diffstat (limited to 'config/chroot_local-patches')
-rw-r--r--config/chroot_local-patches/apparmor-adjust-vidalia-profile.diff26
1 files changed, 26 insertions, 0 deletions
diff --git a/config/chroot_local-patches/apparmor-adjust-vidalia-profile.diff b/config/chroot_local-patches/apparmor-adjust-vidalia-profile.diff
new file mode 100644
index 0000000..9a78089
--- /dev/null
+++ b/config/chroot_local-patches/apparmor-adjust-vidalia-profile.diff
@@ -0,0 +1,26 @@
+--- a/etc/apparmor.d/usr.bin.vidalia 2015-06-10 09:15:34.668000000 +0000
++++ b/etc/apparmor.d/usr.bin.vidalia 2015-06-10 09:38:17.812000000 +0000
+@@ -9,6 +9,8 @@
+
+ owner @{HOME}/.vidalia/ rw,
+ owner @{HOME}/.vidalia/** rwmk,
++ owner /lib/live/mount/rootfs/*.squashfs/home/vidalia/.vidalia/ rw,
++ owner /lib/live/mount/rootfs/*.squashfs/home/vidalia/.vidalia/** rwmk,
+
+ /{var/,} r,
+ /{var/,}run/ r,
+@@ -22,6 +24,13 @@
+ owner @{PROC}/[0-9]*/cmdline r,
+ owner @{PROC}/[0-9]*/fd/ r,
+
++ deny /var/cache/fontconfig/ w,
++ /home/vidalia/.fontconfig/ rw,
++ /home/vidalia/.fontconfig/* rw,
++ /home/vidalia/.config/Trolltech.conf* rw,
++ /home/vidalia/.wh..wh..vidalia.*/ rw,
++ /lib/live/mount/overlay/home/vidalia/.wh..wh..vidalia.*/ rw,
++
+ # Site-specific additions and overrides. See local/README for details.
+ #include <local/usr.bin.vidalia>
+ }
+