From 3748a13710fcdc9a1481b4556d84350ea70f7f34 Mon Sep 17 00:00:00 2001
From: Jose Maldonado aka Yukiteru <josemald89@gmail.com>
Date: Fri, 10 May 2024 00:52:49 -0400
Subject: [PATCH] Fix access to translations and /tmp in run-time

Flameshot access to /usr/share/flameshot for search translations for UI.
And have access to /tmp for create tempfile for other apps (ex: send image to GIMP)
---
 apparmor.d/profiles-a-f/flameshot | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/apparmor.d/profiles-a-f/flameshot b/apparmor.d/profiles-a-f/flameshot
index 68418dc2a..ecf9ef90c 100644
--- a/apparmor.d/profiles-a-f/flameshot
+++ b/apparmor.d/profiles-a-f/flameshot
@@ -35,6 +35,7 @@ profile flameshot @{exec_path} {
 
   /var/lib/dbus/machine-id r,
   /etc/machine-id r,
+  /usr/share/flameshot/translations/* r,
 
   owner @{user_config_dirs}/dconf/user r,
   owner @{user_config_dirs}/flameshot/ rw,
@@ -43,7 +44,10 @@ profile flameshot @{exec_path} {
   owner @{run}/user/@{uid}/dconf/user rw,
 
   owner @{tmp}/*= rw,
+  owner @{tmp}/*.png rw,
   owner @{tmp}/qipc_{systemsem,sharedmemory}_*@{hex} rw,
+  owner @{tmp}/.@{rand8}/ rw,
+  owner @{tmp}/.@{rand8}/** rw,
   owner /dev/shm/#@{int} rw,
 
         @{PROC}/sys/kernel/random/boot_id r,