From 0ecbe8631c9102a4a6eda57e49b42bd14c856386 Mon Sep 17 00:00:00 2001
From: smitsohu <smitsohu@gmail.com>
Date: Wed, 18 Sep 2019 17:24:28 +0200
Subject: apparmor: permit writing to trace file

---
 etc/firejail-default | 1 +
 1 file changed, 1 insertion(+)

(limited to 'etc/firejail-default')

diff --git a/etc/firejail-default b/etc/firejail-default
index 1d3664b70..e7831e145 100644
--- a/etc/firejail-default
+++ b/etc/firejail-default
@@ -44,6 +44,7 @@ ptrace (read,readby) peer=firejail-default,
 ##########
 # Whitelist writable paths under /run, /proc and /sys.
 ##########
+owner /{,run/firejail/mnt/oroot/}{,var/}run/firejail/mnt/trace w,
 owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/** w,
 owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/*.slave-socket w,
 owner /{,run/firejail/mnt/oroot/}{,var/}run/user/[0-9]*/orcexec.* w,
-- 
cgit v1.2.3-54-g00ecf