[Pkg-anonymity-tools] [torbrowser-launcher] 09/43: AppArmor: allow start-tor-browser to run some programs it needs.

[Ulrike Uhlig]

This is an automated email from the git hooks/post-receive script.

u-guest pushed a commit to branch master
in repository torbrowser-launcher.

commit 1385fe1d8eebcc1aba71c3d2ff08adbfff2da4c4
Author: intrigeri <intrigeri at boum.org>
Date:   Thu Aug 14 16:26:05 2014 +0000

    AppArmor: allow start-tor-browser to run some programs it needs.
    
    These might be needed only when using the 4.x branch of TBB. Or, they were
    always needed, but we didn't notice as torbrowser-launcher was apparently
    running start-tor-browser unconfined.
---
 apparmor/torbrowser.start-tor-browser | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/apparmor/torbrowser.start-tor-browser b/apparmor/torbrowser.start-tor-browser
index a0aab1b..d01a1fc 100644
--- a/apparmor/torbrowser.start-tor-browser
+++ b/apparmor/torbrowser.start-tor-browser
@@ -8,9 +8,11 @@
 
 
   /bin/cat rix,
+  /bin/bash r,
   /bin/dash ix,
   /bin/grep rix,
   /bin/ps rix,
+  /bin/readlink ix,
   /bin/sed rix,
   /dev/pts/[0-9]* rw,
   /dev/tty rw,
@@ -34,6 +36,8 @@
   /usr/bin/getconf rix,
   /usr/bin/id rix,
   /usr/bin/ldd rix,
+  /usr/bin/realpath ix,
+  /usr/bin/zenity ix,
   /usr/lib{,32,64}/** mr,
   /usr/share/file/magic.mgc r,
   /usr/share/file/magic/ r,

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/collab-maint/torbrowser-launcher.git