diff options
author | Vincent43 <31109921+Vincent43@users.noreply.github.com> | 2019-07-14 14:37:58 +0200 |
---|---|---|
committer | Vincent43 <31109921+Vincent43@users.noreply.github.com> | 2019-07-14 14:37:58 +0200 |
commit | 2eca1252e3491f098f036483855e3402882ebc54 (patch) | |
tree | 25cd65849adbc5067173b9342ae1cfc5b812f494 /etc/firejail-default | |
parent | homedirs: turn "informational error" into warning (diff) | |
download | firejail-2eca1252e3491f098f036483855e3402882ebc54.tar.gz firejail-2eca1252e3491f098f036483855e3402882ebc54.tar.zst firejail-2eca1252e3491f098f036483855e3402882ebc54.zip |
apparmor: allow writing to /proc/@{PID}/comm
This is needed by various electron apps, see:
https://github.com/netblue30/firejail/issues/2538
https://github.com/netblue30/firejail/issues/2854
Diffstat (limited to 'etc/firejail-default')
-rw-r--r-- | etc/firejail-default | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/etc/firejail-default b/etc/firejail-default index 02a241c34..7735f2f80 100644 --- a/etc/firejail-default +++ b/etc/firejail-default | |||
@@ -66,6 +66,9 @@ owner /{,var/}run/media/** w, | |||
66 | # Needed for firefox sandbox | 66 | # Needed for firefox sandbox |
67 | /proc/[0-9]*/{uid_map,gid_map,setgroups} w, | 67 | /proc/[0-9]*/{uid_map,gid_map,setgroups} w, |
68 | 68 | ||
69 | # Needed for electron apps | ||
70 | /proc/@{PID}/comm w, | ||
71 | |||
69 | # Silence noise | 72 | # Silence noise |
70 | deny /proc/@{PID}/oom_adj w, | 73 | deny /proc/@{PID}/oom_adj w, |
71 | deny /proc/@{PID}/oom_score_adj w, | 74 | deny /proc/@{PID}/oom_score_adj w, |