AppArmor Profiles

Merge lp:~intrigeri/apparmor-profiles/totem-3.18.1 into lp:apparmor-profiles

  1. totem-3.18.1
  2. Merge into master
Proposed by intrigeri
Status: Merged
Merged at revision: 163
Proposed branch: lp:~intrigeri/apparmor-profiles/totem-3.18.1
Merge into: lp:apparmor-profiles
Diff against target: 50 lines (+11/-2)
3 files modified
ubuntu/16.04/abstractions/totem (+6/-2)
ubuntu/16.04/usr.bin.totem (+3/-0)
ubuntu/16.04/usr.bin.totem-previewers (+2/-0)
To merge this branch: bzr merge lp:~intrigeri/apparmor-profiles/totem-3.18.1
Reviewer Review Type Date Requested Status
Steve Beattie Approve
Review via email: mp+281432@code.launchpad.net

Description of the change

This fixes problems reported by Julian Andres Klode on https://bugs.debian.org/808859, and a few other ones I could not ignore anymore once I was at it :)

To post a comment you must log in.
Revision history for this message
intrigeri (intrigeri) wrote :

Ping?

Revision history for this message
intrigeri (intrigeri) wrote :

Ping?

Revision history for this message
Steve Beattie (sbeattie) wrote :

Looks good, merged after fixing up to apply to the 16.10 tree as well. Thanks, and my apologies for the delay.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
=== modified file 'ubuntu/16.04/abstractions/totem'
--- ubuntu/16.04/abstractions/totem 2015-10-27 01:49:53 +0000
+++ ubuntu/16.04/abstractions/totem 2015-12-30 20:25:02 +0000
@@ -28,8 +28,12 @@
28 /usr/share/** r,28 /usr/share/** r,
29 /{media,mnt,opt,srv}/** r,29 /{media,mnt,opt,srv}/** r,
3030
31 /usr/lib/@{multiarch}/gstreamer[0-9].[0-9]/gstreamer-[0-9].[0-9]/gst-plugin-scanner Cix -> gst_plugin_scanner,31 /usr/lib/@{multiarch}/gstreamer[0-9]*.[0-9]*/gstreamer-[0-9]*.[0-9]*/gst-plugin-scanner Cix -> gst_plugin_scanner,
3232
33 owner @{HOME}/.cache/tracker/meta.db k,33 owner @{HOME}/.cache/tracker/meta.db k,
34 owner @{HOME}/.cache/tracker/meta.db-shm k,34 owner @{HOME}/.cache/tracker/meta.db-shm k,
35 owner @{HOME}/.local/share/grilo-plugins/*.db k,35 owner @{HOME}/.local/share/grilo-plugins/*.db{,-shm} k,
36
37 owner @{PROC}/@{pid}/status r,
38
39 /sys/devices/system/node/*/meminfo r,
3640
=== modified file 'ubuntu/16.04/usr.bin.totem'
--- ubuntu/16.04/usr.bin.totem 2015-11-13 19:05:05 +0000
+++ ubuntu/16.04/usr.bin.totem 2015-12-30 20:25:02 +0000
@@ -13,6 +13,7 @@
13 /usr/include/**/pyconfig.h r,13 /usr/include/**/pyconfig.h r,
1414
15 /usr/bin/totem r,15 /usr/bin/totem r,
16 /usr/bin/totem-video-thumbnailer Pix,
16 /dev/sr* r,17 /dev/sr* r,
1718
18 # Allow read and write on anything in @{HOME}. Lenient, but19 # Allow read and write on anything in @{HOME}. Lenient, but
@@ -23,4 +24,6 @@
23 owner /{,var/}run/user/*/dconf/user w,24 owner /{,var/}run/user/*/dconf/user w,
24 owner /{,var/}run/user/*/at-spi2-*/ rw,25 owner /{,var/}run/user/*/at-spi2-*/ rw,
25 owner /{,var/}run/user/*/at-spi2-*/** rw,26 owner /{,var/}run/user/*/at-spi2-*/** rw,
27
28 /sys/devices/pci[0-9]*/**/config r,
26}29}
2730
=== modified file 'ubuntu/16.04/usr.bin.totem-previewers'
--- ubuntu/16.04/usr.bin.totem-previewers 2015-10-27 01:49:53 +0000
+++ ubuntu/16.04/usr.bin.totem-previewers 2015-12-30 20:25:02 +0000
@@ -14,6 +14,8 @@
14 # Not needed by nautilus, but maybe other applications14 # Not needed by nautilus, but maybe other applications
15 owner /**.[pP][nN][gG] w,15 owner /**.[pP][nN][gG] w,
16 owner /**.[jJ][pP]{,[eE]}[gG] w,16 owner /**.[jJ][pP]{,[eE]}[gG] w,
17
18 /usr/bin/totem-video-thumbnailer r,
17}19}
1820
19/usr/bin/totem-audio-preview {21/usr/bin/totem-audio-preview {

Subscribers

People subscribed via source and target branches

to status/vote changes: