From 61f537c3f19f75fc789de5dfb04bcf4453abfabc Mon Sep 17 00:00:00 2001
From: intrigeri <intrigeri@boum.org>
Date: Wed, 12 Aug 2015 11:56:04 +0000
Subject: [PATCH] Update gstreamer abstraction to work with /tmp mounted
 noexec.

---
 debian/README.Debian            | 4 ++--
 profiles/abstractions/gstreamer | 2 ++
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/debian/README.Debian b/debian/README.Debian
index 9a85896..e9902a5 100644
--- a/debian/README.Debian
+++ b/debian/README.Debian
@@ -4,7 +4,7 @@ Included profiles
 - apt-cacher-ng: taken from the apparmor-profiles repository at revision 135.
 - Evince: taken from Ubuntu's evince 3.14.1-0ubuntu1.
 - GStreamer abstraction, gst_plugin_scanner named profile: taken from
-  the apparmor-profiles repository at revision 135.
+  the apparmor-profiles repository at revision 142.
 - Pidgin: taken from the apparmor-profiles repository at revision 142.
 - Totem: taken from the apparmor-profiles repository at revision 134,
   added on top changes submitted upstream:
@@ -21,4 +21,4 @@ apparmor-profiles repository
 
 https://code.launchpad.net/~apparmor-dev/apparmor-profiles/master
 
- -- last updated: Mo, 9 Mar 2015 13:58:31 +0100
+ -- intrigeri <intrigeri@debian.org>, Wed, 12 Aug 2015 14:05:15 +0200
diff --git a/profiles/abstractions/gstreamer b/profiles/abstractions/gstreamer
index 84df5aa..ef8c3ef 100644
--- a/profiles/abstractions/gstreamer
+++ b/profiles/abstractions/gstreamer
@@ -13,3 +13,5 @@
 
   owner /tmp/orcexec.* mrw,
   owner /{,var/}run/user/[0-9]*/orcexec.* mrw,
+  # needed if /tmp is mounted noexec:
+  owner @{HOME}/orcexec.* mr,
-- 
GitLab