From 2eca1252e3491f098f036483855e3402882ebc54 Mon Sep 17 00:00:00 2001
From: Vincent43 <31109921+Vincent43@users.noreply.github.com>
Date: Sun, 14 Jul 2019 14:37:58 +0200
Subject: apparmor: allow writing to /proc/@{PID}/comm

This is needed by various electron apps, see:
https://github.com/netblue30/firejail/issues/2538
https://github.com/netblue30/firejail/issues/2854
---
 etc/standardnotes-desktop.profile | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'etc/standardnotes-desktop.profile')

diff --git a/etc/standardnotes-desktop.profile b/etc/standardnotes-desktop.profile
index 7b89e1add..5703f932a 100644
--- a/etc/standardnotes-desktop.profile
+++ b/etc/standardnotes-desktop.profile
@@ -21,7 +21,7 @@ whitelist ${HOME}/Standard Notes Backups
 whitelist ${HOME}/.config/Standard Notes
 include whitelist-var-common.inc
 
-#apparmor
+apparmor
 caps.drop all
 machine-id
 netfilter
@@ -34,7 +34,6 @@ nosound
 notv
 nou2f
 protocol unix,inet,inet6,netlink
-#seccomp
 seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mincore,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,pivot_root,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice
 
 disable-mnt
-- 
cgit v1.2.3-70-g09d2