[apparmor] [patch] fontconfig: access to new user configs
John Johansen
john.johansen at canonical.com
Mon Oct 14 23:27:11 UTC 2013
On 10/14/2013 08:27 AM, Felix Geyer wrote:
> On Ubuntu saucy fontconfig reads user configs from
> $HOME/.config/fontconfig/conf.d/* and
> $HOME/.config/fontconfig/fonts.conf
>
> /etc/fonts/conf.d/50-user.conf:
> <!--
> Load per-user customization files where stored on XDG Base Directory
> specification compliant places. it should be usually:
> $HOME/.config/fontconfig/conf.d
> $HOME/.config/fontconfig/fonts.conf
> -->
> <include ignore_missing="yes" prefix="xdg">fontconfig/conf.d</include>
> <include ignore_missing="yes" prefix="xdg">fontconfig/fonts.conf</include>
>
>
> abstractions/fonts should allow read access to those files:
>
> === modified file 'profiles/apparmor.d/abstractions/fonts'
> --- profiles/apparmor.d/abstractions/fonts 2013-07-09 00:43:49 +0000
> +++ profiles/apparmor.d/abstractions/fonts 2013-10-14 15:17:04 +0000
> @@ -44,6 +44,8 @@
> owner @{HOME}/.{,cache/}fontconfig/** mrl,
> owner @{HOME}/.fonts.conf.d/ r,
> owner @{HOME}/.fonts.conf.d/** r,
> + owner @{HOME}/.config/fontconfig/ r,
> + owner @{HOME}/.config/fontconfig/** r,
>
> /usr/local/share/fonts/ r,
> /usr/local/share/fonts/** r,
>
>
> Regards,
> Felix
>
Acked-by: John Johansen <john.johansen at canonical.com> (and committed)
This brings up another point. We should really look at refactoring/expanding
abstractions based on the xdg specification.
More information about the AppArmor
mailing list