From e1375802eb1521eb0bc9089f2ab12056fa326f17 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@riseup.net>
Date: Thu, 31 Oct 2019 16:32:28 +0000
Subject: [PATCH] apparmor fix

https://forums.whonix.org/t/apparmor-for-complete-system-including-init-pid1-systemd-everything-full-system-mac-policy/8339/67
---
 etc/apparmor.d/usr.lib.security-misc.permission-lockdown | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/etc/apparmor.d/usr.lib.security-misc.permission-lockdown b/etc/apparmor.d/usr.lib.security-misc.permission-lockdown
index 74fd90e..b5ade86 100644
--- a/etc/apparmor.d/usr.lib.security-misc.permission-lockdown
+++ b/etc/apparmor.d/usr.lib.security-misc.permission-lockdown
@@ -11,7 +11,8 @@
   capability fowner,
   capability fsetid,
 
-  /bin/bash ix,
+  /bin/bash rix,
+  /usr/bin/bash rix,
   /bin/chmod mrix,
   /bin/echo mrix,
   /bin/mkdir mrix,
@@ -33,6 +34,6 @@
   owner /var/cache/security-misc/state-files/* rw,
 
   /dev/tty rw,
-  
+
   #include <local/usr.lib.security-misc.permission-lockdown>
 }