[Pkg-privacy-commits] [Git][pkg-privacy-team/torbrowser-launcher][debian/sid] 2 commits: Add AppArmor patch to allow U2F devices

Roger Shimizu rosh at debian.org
Wed Apr 8 17:23:54 BST 2020 


Roger Shimizu pushed to branch debian/sid at Privacy Maintainers / torbrowser-launcher


Commits:
3052e657 by Birger Schacht at 2020-04-04T18:18:50+02:00
Add AppArmor patch to allow U2F devices

- - - - -
2f63d83d by Roger Shimizu at 2020-04-08T16:23:52+00:00
Merge branch '944821-AppArmor-Allow-U2F-devices' into 'debian/sid'

Add AppArmor patch to allow U2F devices

See merge request pkg-privacy-team/torbrowser-launcher!1
- - - - -


2 changed files:

- + debian/patches/0016-AppArmor-allow-u2f-devices.patch
- debian/patches/series


Changes:

=====================================
debian/patches/0016-AppArmor-allow-u2f-devices.patch
=====================================
@@ -0,0 +1,28 @@
+From: Birger Schacht <birger at rantanplan.org>
+Date: Wed, 23 Oct 2019 19:47:55 +0200
+Subject: [PATCH] Allow torbrowser to access u2f devices
+
+(cherry picked from 704e5ca3b46ac1bcf7931875fc7d33ad13910e10)
+---
+ apparmor/torbrowser.Browser.firefox | 9 +++++++++
+ 1 file changed, 9 insertions(+)
+
+diff --git a/apparmor/torbrowser.Browser.firefox b/apparmor/torbrowser.Browser.firefox
+index 42516b6..c067375 100644
+--- a/apparmor/torbrowser.Browser.firefox
++++ b/apparmor/torbrowser.Browser.firefox
+@@ -133,5 +133,14 @@ profile torbrowser_firefox @{torbrowser_firefox_executable} {
+   /etc/xfce4/defaults.list r,
+   /usr/share/xfce4/applications/ r,
+ 
++  # u2f (tested with Yubikey 4)
++  /sys/class/ r,
++  /sys/bus/ r,
++  /sys/class/hidraw/ r,
++  /run/udev/data/c24{7,9}:* r,
++  /dev/hidraw* rw,
++  # Yubikey NEO also needs this:
++  /sys/devices/**/hidraw/hidraw*/uevent r,
++
+   #include <local/torbrowser.Browser.firefox>
+ }


=====================================
debian/patches/series
=====================================
@@ -13,3 +13,4 @@
 0013-AppArmor-Pass-the-environment-to-Firefox-content-pro.patch
 0014-AppArmor-allow-running-the-Firefox-updater-from-its-.patch
 0015-Update-setup.py.patch
+0016-AppArmor-allow-u2f-devices.patch



View it on GitLab: https://salsa.debian.org/pkg-privacy-team/torbrowser-launcher/-/compare/01a5e33ade9aa017e08510e6206daf14f2569ea1...2f63d83df7b6b5363c2b4c8d75fbb8bcacd97ab0

-- 
View it on GitLab: https://salsa.debian.org/pkg-privacy-team/torbrowser-launcher/-/compare/01a5e33ade9aa017e08510e6206daf14f2569ea1...2f63d83df7b6b5363c2b4c8d75fbb8bcacd97ab0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-privacy-commits/attachments/20200408/2a33fec7/attachment-0001.html>

More information about the Pkg-privacy-commits mailing list