[apparmor] [Merge] lp:~cameronnemo/apparmor/gnome-abstraction into lp:apparmor
intrigeri
intrigeri at boum.org
Sat Jul 1 16:30:51 UTC 2017
We've been blocking this merge since 1.5 years on a trivial "2 lines that could be merged" issue. One of the proposed changes has been applied independently already, and the other one is very much needed. I'll try to propose a branch that does only the latter change so we can eventually close this MR.
Diff comments:
> === modified file 'profiles/apparmor.d/abstractions/gnome'
> --- profiles/apparmor.d/abstractions/gnome 2014-10-06 19:06:23 +0000
> +++ profiles/apparmor.d/abstractions/gnome 2015-06-06 22:50:45 +0000
> @@ -46,6 +46,7 @@
> owner @{HOME}/.gtk-bookmarks r,
> owner @{HOME}/.themes/ r,
> owner @{HOME}/.themes/** r,
> + owner @{HOME}/.config/gtk-3.0/** r,
This was done (with * instead of ** though) and merged in r3577. Sorry for the duplicate work I did!
>
> # for gtk file dialog
> owner @{HOME}/.config/gtk-2.0/** r,
> @@ -86,6 +87,9 @@
> /usr/share/gnome/applications/ r,
> /usr/share/gnome/applications/mimeinfo.cache r,
>
> + # gsettings schemas
> + /usr/share/glib-2.0/schemas/** r,
I see no less than 5 profiles doing something similar to this themselves on my system, so I say it's great time to do it in the GNOME abstraction.
> +
> # Allow connecting to the GNOME vfs socket (still need corresponding DBus
> # rules)
> unix (send, receive, connect)
--
https://code.launchpad.net/~cameronnemo/apparmor/gnome-abstraction/+merge/261320
Your team AppArmor Developers is requested to review the proposed merge of lp:~cameronnemo/apparmor/gnome-abstraction into lp:apparmor.
More information about the AppArmor
mailing list