Comment 51 for bug 1659922

Hi. I've had this problem since November (see: <https://lists.ubuntu.com/archives/apparmor/2016-November/010274.html>) And it turned out that I had to add to the Firefox profile a couple of rules (These problems occured after Firefox update to the 49/50 versions.) So, I added:

@{PROC}/[0-9]*/net/arp r,
owner /run/shm/org.chromium.* rw,

(see: <https://lists.ubuntu.com/archives/apparmor/2017-January/010445.html>)
owner @{PROC}/[0-9]*/task/ r,
owner @{PROC}/[0-9]*/task/* r,

(see: <https://lists.ubuntu.com/archives/apparmor/2017-January/010496.html>, <https://lists.ubuntu.com/archives/apparmor/2017-January/010505.html>)
#include <abstractions/nvidia>

Everything after Firefox update and e10s enabled. Also, recently appeared problem with "lsb_released" DENIED message (in the log files such as, for example, /var/log/kern.log). After every first Firefox start, there was an entry such as:

[...] audit(1486317534.042:95): apparmor="DENIED" operation="exec" parent=4197 profile="/usr/lib/firefox/firefox{,*[^s][^h]}" name="/usr/bin/lsb_release" pid=4198 comm="firefox" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0

I've had to add "lsb_release" child profile to the Firefox profile (see <https://lists.ubuntu.com/archives/apparmor/2017-January/010508.html> and <https://lists.ubuntu.com/archives/apparmor/2017-February/010523.html>) suggested by Mr Seth Arnold (many thanks!). After this step, mentioned DENIED entry no longer appears.

Anyway, after Firefox update (ver. 49/50) and enabling e10s I've had to make some changes in an official Firefox profile etc. Everything happened on the 12.04 LTS Release.

Thanks.