AppArmor: allow reading /proc/PID/{statm,smaps}

This is now needed at least for Firefox' memory reporter:
https://bugzilla.mozilla.org/show_bug.cgi?id=1647957
This commit is contained in:
intrigeri 2022-10-28 06:11:22 +00:00
parent 4b9d49c183
commit f49d36a4bf

View File

@ -46,7 +46,9 @@ profile torbrowser_firefox @{torbrowser_firefox_executable} {
owner @{PROC}/@{pid}/environ r, owner @{PROC}/@{pid}/environ r,
owner @{PROC}/@{pid}/fd/ r, owner @{PROC}/@{pid}/fd/ r,
owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mountinfo r,
owner @{PROC}/@{pid}/smaps r,
owner @{PROC}/@{pid}/stat r, owner @{PROC}/@{pid}/stat r,
owner @{PROC}/@{pid}/statm r,
owner @{PROC}/@{pid}/status r, owner @{PROC}/@{pid}/status r,
owner @{PROC}/@{pid}/task/*/stat r, owner @{PROC}/@{pid}/task/*/stat r,
@{PROC}/sys/kernel/random/uuid r, @{PROC}/sys/kernel/random/uuid r,