# apparmor.d - Full set of apparmor profiles # Copyright (C) 2018-2021 Mikhail Morfikov # SPDX-License-Identifier: GPL-2.0-only abi , include @{MOZ_LIBDIR} = /{usr/,}lib/firefox @{MOZ_HOMEDIR} = @{HOME}/.mozilla @{MOZ_CACHEDIR} = @{HOME}/.cache/mozilla @{exec_path} = @{MOZ_LIBDIR}/crashreporter profile firefox-crashreporter @{exec_path} { include include include include include include include include include include signal (receive) set=(term, kill) peer=firefox, network inet dgram, network inet6 dgram, network inet stream, network inet6 stream, @{exec_path} mr, @{MOZ_LIBDIR}/minidump-analyzer rPx, /{usr/,}bin/mv rix, owner "@{MOZ_HOMEDIR}/firefox/Crash Reports/{,**}" rw, owner "@{MOZ_HOMEDIR}/firefox/Crash Reports/crashreporter.ini" rw, owner "@{MOZ_HOMEDIR}/firefox/Crash Reports/submit.log" rw, owner "@{MOZ_HOMEDIR}/firefox/Crash Reports/events/[0-9a-f]*" rw, owner "@{MOZ_HOMEDIR}/firefox/Crash Reports/pending/[0-9a-f]*.{dmp,extra}" rw, owner @{MOZ_HOMEDIR}/firefox/*.*/minidumps/{,**} rw, owner @{MOZ_HOMEDIR}/firefox/*.*/minidumps/[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*.{dmp,extra} rw, owner @{MOZ_HOMEDIR}/firefox/*.*/crashes/{,**} rw, owner @{MOZ_HOMEDIR}/firefox/*.*/crashes/events/[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]* rw, /tmp/ r, owner /tmp/[0-9a-f]*.{dmp,extra} rw, owner /tmp/firefox/.parentlock w, /var/tmp/ r, owner /dev/shm/org.mozilla.ipc.[0-9]*.[0-9]* r, /usr/share/glib-2.0/schemas/gschemas.compiled r, /usr/share/X11/xkb/** r, # file_inherit owner @{MOZ_CACHEDIR}/firefox/*.*/** r, owner @{MOZ_HOMEDIR}/firefox/*.*/extensions/*.xpi r, owner @{HOME}/.xsession-errors w, /dev/dri/renderD128 rw, include if exists }