]> git.lizzy.rs Git - torbrowser-launcher.git/commitdiff
projects / torbrowser-launcher.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: a20103c)
AppArmor: allow the tor process to modify its data directory.
authorintrigeri <intrigeri@boum.org>
Sun, 24 Sep 2017 05:33:35 +0000 (05:33 +0000)
committerintrigeri <intrigeri@boum.org>
Sun, 24 Sep 2017 05:33:35 +0000 (05:33 +0000)
It's unclear to me why this is not needed _all the time_, but it does make sense
that at least in some circumstances, it needs to do that, e.g. to create
that directory.

Originally reported by Chris Lamb <lamby@debian.org> on
https://bugs.debian.org/876484.

apparmor/torbrowser.Tor.tor patch | blob | history

diff --git a/apparmor/torbrowser.Tor.tor b/apparmor/torbrowser.Tor.tor
index 013f458f98107bd5713965c5c6907761490d0622..241063737b4edad7a0dd2c485ab74d6fff8e7c6e 100644 (file)
--- a/apparmor/torbrowser.Tor.tor
+++ b/apparmor/torbrowser.Tor.tor
@@ -11,7 +11,7 @@
   /etc/passwd r,
   /etc/resolv.conf r,
   owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Tor/tor mr,
-  owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Tor/ r,
+  owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Tor/ rw,
   owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Tor/* rw,
   owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Tor/lock rwk,
   owner @{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/Tor,Lib}/*.so mr,
Securely and easily download, verify, install, and launch Tor Browser in Linux