[apparmor] [PATCH]: gnome abstraction addition for LP: #611248
John Johansen
john.johansen at canonical.com
Tue Aug 3 17:45:34 BST 2010
On 08/03/2010 07:13 AM, Jamie Strandboge wrote:
> LP: #611248 describes broken icons in evince due to the following:
> [542249.336212] type=1400 audit(1280400390.013:91):
> operation="file_mmap" pid=690 parent=669 profile="/usr/bin/evince"
> name="/usr/lib/gdk-pixbuf-2.0/2.10.0/loaders/svg_loader.so" pid=690
> comm="evince" requested_mask="m" denied_mask="m" fsuid=1000 ouid=0
> [542249.364590] type=1400 audit(1280400390.043:92):
> operation="file_mmap" pid=690 parent=669 profile="/usr/bin/evince"
> name="/usr/lib/gdk-pixbuf-2.0/2.10.0/loaders/svg_loader.so" pid=690
> comm="evince" requested_mask="m" denied_mask="m" fsuid=1000 ouid=0
> [542249.366203] type=1400 audit(1280400390.043:93):
> operation="file_mmap" pid=690 parent=669 profile="/usr/bin/evince"
> name="/usr/lib/gdk-pixbuf-2.0/2.10.0/loaders/svg_loader.so" pid=690
> comm="evince" requested_mask="m" denied_mask="m" fsuid=1000 ouid=0
>
> I suggest the following update to the gnome abstraction:
> === modified file 'profiles/apparmor.d/abstractions/gnome'
> --- profiles/apparmor.d/abstractions/gnome 2009-11-10 20:04:26 +0000
> +++ profiles/apparmor.d/abstractions/gnome 2010-08-03 14:09:39 +0000
> @@ -3,7 +3,7 @@
> # ------------------------------------------------------------------
> #
> # Copyright (C) 2002-2009 Novell/SUSE
> -# Copyright (C) 2009 Canonical Ltd.
> +# Copyright (C) 2009-2010 Canonical Ltd.
> #
> # This program is free software; you can redistribute it and/or
> # modify it under the terms of version 2 of the GNU General Public
> @@ -31,6 +31,7 @@
> /etc/pango/* r,
> /usr/lib{,32,64}/pango/** mr,
> /usr/lib{,32,64}/gtk-*/** mr,
> + /usr/lib{,32,64}/gdk-pixbuf-*/** mr,
>
> # per-user gtk configuration
> @{HOME}/.gnome/Gnome r,
>
>
> [1] https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/611248
>
>
ack
More information about the AppArmor
mailing list