name="/run/log/journal/59c5cdb507ae488db12d4b40591d4661/system@cbabf4d9a8894dd99

after browsing in tor hidden services (or some .onion websites) the apparmor gave these messages and i wonder if they r normal or not (which is i doubt).

the output of sudo tail -f /var/log/kern.log:-

Sep 21 21:47:38 host kernel: [ 1074.797710] xor: measuring software checksum speed Sep 21 21:47:38 host kernel: [ 1074.836929] pIII_sse : 17571.000 MB/sec Sep 21 21:47:38 host kernel: [ 1074.876965] prefetch64-sse: 19329.000 MB/sec Sep 21 21:47:38 host kernel: [ 1074.876965] xor: using function: prefetch64-sse (19329.000 MB/sec) Sep 21 21:47:38 host kernel: [ 1074.916478] Btrfs loaded Sep 21 21:47:38 host kernel: [ 1074.921008] fuse init (API version 7.23) Sep 22 00:42:36 host kernel: [11583.326270] audit_printk_skb: 3 callbacks suppressed Sep 22 00:42:36 host kernel: [11583.326274] audit: type=1400 audit(1442882556.627:13): apparmor="DENIED" operation="open" profile="/usr/bin/sdwdate" name="/run/log/journal/59c5cdb507ae488db12d4b40591d4661/system@cbabf4d9a8894dd99388009d956f97aa-0000000000000001-0005204f458e3981.journal" pid=19398 comm="systemctl" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 Sep 22 00:42:36 host kernel: [11583.335464] audit: type=1400 audit(1442882556.635:14): apparmor="DENIED" operation="open" profile="/usr/bin/sdwdate" name="/run/log/journal/59c5cdb507ae488db12d4b40591d4661/system@cbabf4d9a8894dd99388009d956f97aa-0000000000000001-0005204f458e3981.journal" pid=19402 comm="systemctl" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 Sep 22 00:43:46 host kernel: [11652.940350] audit: type=1400 audit(1442882626.163:15): apparmor="DENIED" operation="open" profile="/usr/bin/sdwdate" name="/run/log/journal/59c5cdb507ae488db12d4b40591d4661/system@cbabf4d9a8894dd99388009d956f97aa-0000000000000001-0005204f458e3981.journal" pid=23309 comm="systemctl" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 Sep 22 01:07:00 host kernel: [13048.534062] atkbd serio0: Spurious NAK on isa0060/serio0. Some program might be trying to access hardware directly.

is this a warning message or an attack ? if so , did it succeed or unknown ?

Guessing that you use VirtualBox in Windows.

Another guess.
You are probably vicitim of a VirtualBox bug (see #407 (Spurious NAK) – Oracle VM VirtualBox), not an attack. You could catch the line “Spurious NAK on isa0060/serio0” because a log entry was created while sdwdate was running, which was denied by AppArmor…

Could you check if the log contains more entries containing this message?

 cat /var/log/kern.log | grep Spurious

But I wonder where the AppArmor warning is coming from. It should already be fixed in the profile in the repo?

Guessing that you use VirtualBox in Windows.

yeah true , sometimes i have to work on windows so instead of restarting (so i can open debian + kvm) i just open the vbox which is inside the windows.

Another guess. You are probably vicitim of a VirtualBox bug (see https://www.virtualbox.org/ticket/407), not an attack. You could catch the line "Spurious NAK on isa0060/serio0" because a log entry was created while sdwdate was running, which was denied by AppArmor..

mostly yeah , but isnt it old one ? i wonder why i have it this time.

Could you check if the log contains more entries containing this message? Code: [Select]

cat /var/log/kern.log | grep Spurious

yeah here:-

Sep 19 00:04:42 host kernel: [ 4921.578482] atkbd serio0: Spurious NAK on isa0060/serio0. Some program might be trying to access hardware directly. Sep 22 01:07:00 host kernel: [13048.534062] atkbd serio0: Spurious NAK on isa0060/serio0. Some program might be trying to access hardware directly.

/run/log/journal/*/system@*.journal r,

There is no line “/run/log/journal” in the sdwdate profile. Will add it.

Old but still exisitng apparently. Looks like it needs a rare combination of sdwdate running and pressing/releasing modifiers keys (Alt, Ctrl) in the guest or host.

You may try to reproduce it: run sdwdate

sudo service sdwdate restart

and play with the modifiers keys.

https://github.com/Whonix/apparmor-profile-sdwdate/commit/70bcbd085ae3a5eefe3795982fdf828f4f75e152[/quote]
OK. Our posts crossed each other.

nurmagoz, are you up to build https://github.com/Whonix/apparmor-profile-sdwdate from source code?

Instructions:

You just need to replace

https://github.com/Whonix/apparmor-profile-torbrowser.git

with

https://github.com/Whonix/apparmor-profile-sdwdate.git

And where it says “cd apparmor-profile-torbrowser” with “cd apparmor-profile-sdwdate” and so forth.

“OpenPGP Verify the Source Code” amendment:
You can install right from master. No tag. To make sure the commit you are using is signed, you can use this.

git log --show-signature

“Choose Version” amendment:
skip

“Clean up and Sanitize” amendment:
skip “git submodule update --init --recursive”

Instructions: https://www.whonix.org/wiki/Dev/Build_Documentation/apparmor-profile-torbrowser

in these instructions , i think they r talking about debian wheezy specially at the beginning:-

Create a file /etc/apt/sources.list.d/wheezy-backports.list.

sudo nano /etc/apt/sources.list.d/wheezy-backports.list

With the following content.

deb Index of /debian wheezy-backports main

Install config-package-dev.

sudo apt-get update sudo apt-get install config-package-dev -t wheezy-backports

so should i also replace each wheezy with jessie ?

and what do u recommend to do , removing the apparmor profiles then i do these steps? or just overwrite on the old profiles ?

also why it cant be done through apt-get dist-upgrade = to upgrade the apparmor ? because everyone who installed the apparmor profiles by sudo apt-get install apparmor-profiles-whonix he will for sure infected witha same issue.

Good you’re asking! These instructions are outdated. The wheezy backports steps are not required anymore at all since jessie is recent enough to include the needed packages. The newer instructions are not yet visible for anonymous visitors due to an issue with caching I will be looking into now.

Installing over the existing profile should work just fine.

It can be done by dist-upgrade, but this requires new packages to be added to the repository, which lags behind.

That wiki page is now up to date.

im not sure how should i make the orders in the wiki to work.

in the instructions , only this part worked for me

Get Build Dependencies

sudo apt-get update
sudo apt-get install devscripts dh-apparmor faketime git
Get the Source Code

Install git.

sudo apt-get update sudo apt-get install git

Get the the package’s source code.

git clone GitHub - Kicksecure/apparmor-profile-torbrowser: AppArmor profile for The Tor Browser Bundle (TBB) - https://www.whonix.org/wiki/AppArmor - for better security (hardening).

Remember it’s Whonix, not whonix! If you are prompted for a username for github, it means you have mistyped the web address.
Get the Signing Key

This chapter is recommended for better security, but not strictly required. (See Trust)

1. Download Patrick Schleizer (adrelanos) OpenPGP key. patrick.asc

(If you are already using Whonix, this can be simplified. See footnotes. [1])

2. Store it as patrick.asc.

3. Import the key:

gpg --import patrick.asc

4. Verify the key using this fingerprint:

gpg --fingerprint 916B8D99C38EAF5E8ADC7A2A8D66066A2EEACCDA

Should show:

pub 4096R/2EEACCDA 2014-01-16 [expires: 2016-10-05]

 Key fingerprint = 916B 8D99 C38E AF5E 8ADC  7A2A 8D66 066A 2EEA CCDA

uid [unknown] Patrick Schleizer adrelanos@riseup.net sub 4096R/CE998547 2014-01-16 [expires: 2016-10-05] sub 4096R/119B3FD6 2014-01-16 [expires: 2016-10-05] sub 4096R/77BB3C48 2014-01-16 [expires: 2016-10-05]

5. Only getting the signing key from one source. For better security, Learn about Whonix Signing Key.
   Change Directory

Get into the package’s source code folder.

cd apparmor-profile-torbrowser

and the rest i think nothing is working.

here is how im typing the orders:-

[code]user@host:~$ cd apparmor-profile-sdwdate
user@host:~/apparmor-profile-sdwdate$ git tag
0.2
0.2-2
1.5-1
1.6-1
2.2-1
2.3-1
2.4-1
2.5-1
2.6-1
2.7-1
2.8-1
2.9-1
3.0-1
user@host:~/apparmor-profile-sdwdate$ git tag -v 3.0-1
object e08ea5a404e73bd04e52fbd885c8ac1c276bb230
type commit
tag 3.0-1
tagger Patrick Schleizer adrelanos@riseup.net 1440632466 +0000

.
gpg: Signature made Wed 26 Aug 2015 11:41:06 PM UTC
gpg: using RSA key 0xCB8D50BB77BB3C48
gpg: Good signature from “Patrick Schleizer adrelanos@riseup.net” [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 916B 8D99 C38E AF5E 8ADC 7A2A 8D66 066A 2EEA CCDA
Subkey fingerprint: 6E97 9B28 A6F3 7C43 BE30 AFA1 CB8D 50BB 77BB 3C48
user@host:~/apparmor-profile-sdwdate$ git checkout 11.0.0.3.0-stable
error: pathspec ‘11.0.0.3.0-stable’ did not match any file(s) known to git.
user@host:~/apparmor-profile-sdwdate$ git checkout
Your branch is up-to-date with ‘origin/master’.
user@host:~/apparmor-profile-sdwdate$ cd
user@host:~$ git checkout 11.0.0.3.0-stable
fatal: Not a git repository (or any of the parent directories): .git
user@host:~$ git clean -ndff
fatal: Not a git repository (or any of the parent directories): .git
user@host:~$ cd apparmor-profile-sdwdate
user@host:~/apparmor-profile-sdwdate$ git clean -ndff
user@host:~/apparmor-profile-sdwdate$ Would remove packages/apparmor-profile-gwenview/
Could not find the database of available applications, run update-command-not-found as root to fix this
Would: command not found
user@host:~/apparmor-profile-sdwdate$ make deb-icup
Makefile:18: /usr/share/genmkfile/makefile-full: No such file or directory
make: *** No rule to make target ‘/usr/share/genmkfile/makefile-full’. Stop.
user@host:~/apparmor-profile-sdwdate$ export DEBDEBUG=1
user@host:~/apparmor-profile-sdwdate$ make deb-icup
Makefile:18: /usr/share/genmkfile/makefile-full: No such file or directory
make: *** No rule to make target ‘/usr/share/genmkfile/makefile-full’. Stop.
user@host:~/apparmor-profile-sdwdate$
[/code]

also one more question , should i make these steps in both gateway and workstation ?

Missing build dependency:

sudo apt-get install genmkfile

Yes, gateway and workstation. Let’s have one succeed first. (Results will be similar.)

See again:

“Choose Version” amendment:"< means additional comment to Dev/Build Documentation/security-misc - Whonix.

well yeah , i think it worked; c the image:-

so, is that it ? is there any other sign to be sure that everything is working correctly ?

and install genmkfile is the core of error i was facing i think.

It would show a big error message otherwise and exit non-zero. Another way to check:

make installcheck

If it exits 0, then it’s alright.

Also the package is mainly a vehicle to get files in place [and updated]. So file etc/apparmor.d/usr.bin.sdwdate (https://github.com/Whonix/apparmor-profile-sdwdate/blob/master/etc/apparmor.d/usr.bin.sdwdate) from the package should match /etc/apparmor.d/usr.bin.sdwdate from the disk.

Diff or meld.

diff etc/apparmor.d/usr.bin.sdwdate /etc/apparmor.d/usr.bin.sdwdate

sudo apt-get install meld

meld etc/apparmor.d/usr.bin.sdwdate /etc/apparmor.d/usr.bin.sdwdate

That’s the part of the package installation. If the updated package really works depends if the fix really works. Let’s see if the denied message is gone for you.

no there was no error message , all installed smoothly

this is the output of meld etc/apparmor.d/usr.bin.sdwdate /etc/apparmor.d/usr.bin.sdwdate :-

and i will browse today much as i can and c if the denied messages going to come or not.

You need to run diff or meld from within the source code folder. Not from outside. Or use the full path.

source code folder which is located ?

i went to cd /etc/apparmor.d and also to cd apparmor-profile-torbrowser both gave me this:-

and where to make this work:- make installcheck ? because its not working in anywhere.

The source code folder is apparmor-profile-torbrowser.

“make installcheck” from within the source code folder root. Most likely just ~/apparmor-profile-torbrowser.

cd /etc/apparmor.d is wrong in this very context.

If file in source code folder is identical with the one on the system, then it works as expected.

yeah now the make installcheck working the result is:-

[code]user@host:~$ cd ~/apparmor-profile-torbrowser
user@host:~/apparmor-profile-torbrowser$ make installcheck
/usr/share/genmkfile/make-helper.bsh installcheck

• ‘[’ -f /usr/lib/pre.bsh ‘]’
• source /usr/lib/pre.bsh
  ++ ‘[’ ‘!’ -d /tmp/prepost ‘]’
  ++ mkdir --parents --mode=g+rw /tmp/prepost
  +++ mktemp --directory --tmpdir=/tmp/prepost
  ++ TEMP_DIR=/tmp/prepost/tmp.B1uXJl2kmJ
  ++ ‘[’ -o xtrace ‘]’
  ++ XTRACE=0
  ++ set -o errtrace
  ++ [[ -t 2 ]]
  ++ ‘[’ 0 = 0 ‘]’
  ++ true ‘INFO: Setting DEBDEBUG to 1, because xtrace (-x) is set.’
  ++ DEBDEBUG=1
  ++ ‘[’ 1 = 1 ‘]’
  ++ set -x
  +++ type -t errorhandlergeneral
  ++ ‘[’ ‘’ = function ‘]’
  ++ trap error_handler_pre ERR
  ++ bash -n /usr/lib/pre.bsh
  ++ bash -n /usr/share/genmkfile/make-helper.bsh
  ++ own_filename=make-helper.bsh
  ++ unset skip_script
• set -e
• set -o pipefail
• make_function_run make_init
• local function_name function_name_return_code
• function_name=make_init
• shift
• type -t make_init_hook_pre
• type -t make_init
• make_init
• cd /home/user/apparmor-profile-torbrowser/
• function_name_return_code=0
• ‘[’ ‘!’ 0 = 0 ‘]’
• type -t make_init_hook_post
• make_function_run make_source_overrides_file installcheck
• local function_name function_name_return_code
• function_name=make_source_overrides_file
• shift
• type -t make_source_overrides_file_hook_pre
• type -t make_source_overrides_file
• make_source_overrides_file installcheck
• ‘[’ -x ./make-helper-overrides.bsh ‘]’
• function_name_return_code=0
• ‘[’ ‘!’ 0 = 0 ‘]’
• type -t make_source_overrides_file_hook_post
• make_function_run make_source_overrides_folder installcheck
• local function_name function_name_return_code
• function_name=make_source_overrides_folder
• shift
• type -t make_source_overrides_folder_hook_pre
• type -t make_source_overrides_folder
• make_source_overrides_folder installcheck
• ‘[’ -d ./make-helper-overrides.d ‘]’
• function_name_return_code=0
• ‘[’ ‘!’ 0 = 0 ‘]’
• type -t make_source_overrides_folder_hook_post
• make_function_run make_parse_cmd installcheck
• local function_name function_name_return_code
• function_name=make_parse_cmd
• shift
• type -t make_parse_cmd_hook_pre
• type -t make_parse_cmd
• make_parse_cmd installcheck
• local matched=false
• local deb
• :
• case $1 in
• matched=true
• make_function_run make_installcheck
• local function_name function_name_return_code
• function_name=make_installcheck
• shift
• type -t make_installcheck_hook_pre
• type -t make_installcheck
• make_installcheck
• make_installcheck_=true
• make_function_run make_helper
• local function_name function_name_return_code
• function_name=make_helper
• shift
• type -t make_helper_hook_pre
• type -t make_helper
• make_helper
• make_function_run make_get_destdir
• local function_name function_name_return_code
• function_name=make_get_destdir
• shift
• type -t make_get_destdir_hook_pre
• type -t make_get_destdir
• make_get_destdir
• ‘[’ / = ‘’ ‘]’
• type -t make_hook_at_the_end_of_get_destdir
• function_name_return_code=0
• ‘[’ ‘!’ 0 = 0 ‘]’
• type -t make_get_destdir_hook_post
• ‘[’ -n ‘’ ‘]’
• make_folder_list_for_un_and_install=‘bin boot dev etc home lib opt sbin srv sys usr var’
• shopt -s globstar dotglob nullglob
• local d source_file file_without_pwd file_with_destdir
• for d in ‘$make_folder_list_for_un_and_install’
• ‘[’ -d bin ‘]’
• for d in ‘$make_folder_list_for_un_and_install’
• ‘[’ -d boot ‘]’
• for d in ‘$make_folder_list_for_un_and_install’
• ‘[’ -d dev ‘]’
• for d in ‘$make_folder_list_for_un_and_install’
• ‘[’ -d etc ‘]’
• for source_file in ‘“$PWD/$d”/**’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘!’ -f /home/user/apparmor-profile-torbrowser/etc/ ‘]’
• continue
• for source_file in ‘“$PWD/$d”/**’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘!’ -f /home/user/apparmor-profile-torbrowser/etc/apparmor.d ‘]’
• continue
• for source_file in ‘“$PWD/$d”/**’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘’ = true ‘]’
• ‘[’ ‘!’ -f ‘/home/user/apparmor-profile-torbrowser/etc/apparmor.d/home..tor-browser_.Browser.firefox’ ‘]’
• file_without_pwd=‘/etc/apparmor.d/home..tor-browser_.Browser.firefox’
• file_with_destdir=‘//etc/apparmor.d/home..tor-browser_.Browser.firefox’
• ‘[’ ‘’ = true ‘]’
• ‘[’ true = true ‘]’
• diff ‘/home/user/apparmor-profile-torbrowser/etc/apparmor.d/home..tor-browser_.Browser.firefox’ ‘//etc/apparmor.d/home..tor-browser_.Browser.firefox’
  4,6c4
  < @{TBB} = @{HOME}*
  <
  < /home/**/tor-browser_*/Browser/firefox {

/home//tor-browser_/Browser/firefox {
15a14,16
deny @{HOME}/* r,
deny @{HOME}/.** r,

30,31d30
< deny @{PROC}/sys/vm/overcommit_memory r,
< deny @{PROC}/[0-9]/cmdline r,
40d38
< @{HOME}/ r,
43,87c41,70
< owner @{TBB}/tor-browser_/ r,
< owner @{TBB}/tor-browser_/* r,
< ## TBB 5.0.2 internal updater ####
< owner @{TBB}/tor-browser_/Browser/ rw,
< ##################################
< owner @{TBB}/tor-browser_/Browser/** rwk,
< owner @{TBB}/tor-browser_/Browser/.so mr,
< owner @{TBB}/tor-browser_/Browser/components/.so mr,
< owner @{TBB}/tor-browser_/Browser/browser/components/.so mr,
< owner @{TBB}/tor-browser_/Browser/firefox rix,
< owner @{TBB}/tor-browser_/Browser/TorBrowser/Tor/* mr,
< owner @{TBB}/tor-browser_/Data/Browser/Caches/** rwk,
< owner @{TBB}/tor-browser_/Data/Browser/profiles.ini r,
< owner @{TBB}/tor-browser_/Browser/TorBrowser/Data/Browser/profile.default/ r,
< owner @{TBB}/tor-browser_/Browser/TorBrowser/Data/Browser/profile.default/** rwk,
< owner @{TBB}/tor-browser_/Data/Tor/ rwk,
< owner @{TBB}/tor-browser_/Tor/ mr,
< owner @{TBB}/tor-browser_/Tor/tor rix,
< owner @{TBB}/tor-browser_/Browser/updates/ r,
< owner @{TBB}/tor-browser_/Browser/updates/** rwk,
< owner @{TBB}/tor-browser_/Browser/updates*.xml rwk,
< owner @{TBB}/tor-browser_/Browser/active-update.xml rwk,
< owner @{TBB}/tor-browser_/update.test/ rwk,
< owner @{TBB}/tor-browser_/update.test rwk,
< owner @{TBB}/tor-browser_/Browser/update.test/ rwk,
< owner @{TBB}/tor-browser_/Browser/update.test rwk,
< owner @{TBB}/tor-browser_/Browser/updates/0/updater rix,
< ## TBB 5.0.2 internal updater ####
< owner @{TBB}/tor-browser_/Browser/updates/0/MozUpdater/bgupdate/updater rix,
< ##################################
< owner @{TBB}/tor-browser_/Browser/Desktop/ rw,
< owner @{TBB}/tor-browser_/Desktop/ rwk,
< owner @{TBB}/tor-browser_/Desktop/** rwk,
< owner @{TBB}/tor-browser_/Browser/Downloads/ r,
< owner @{TBB}/tor-browser_/Browser/Downloads/** rwk,
<
< ## Gnome2 and VirtualBox ##
< owner @{TBB}/tor-browser_/.** rwk,
<
< ## KDE 4 ##
< @{HOME}/.kde/share/config/* r,
<
< ## Xfce4 ##
< /etc/xfce4/defaults.list r,
< /usr/share/xfce4/applications/ r,

  @{HOME}/tor-browser_*/ r,
  @{HOME}/tor-browser_*/* r,
  @{HOME}/tor-browser_*/Browser/ r,
  @{HOME}/tor-browser_*/Browser/** rwk,
  @{HOME}/tor-browser_*/Browser/*.so mr,
  @{HOME}/tor-browser_*/Browser/components/*.so mr,
  @{HOME}/tor-browser_*/Browser/browser/components/*.so mr,
  @{HOME}/tor-browser_*/Browser/firefox rix,
  @{HOME}/tor-browser_*/Browser/TorBrowser/Tor/* mr,
  @{HOME}/tor-browser_*/Data/Browser/Caches/** rwk,
  @{HOME}/tor-browser_*/Data/Browser/profiles.ini r,
  @{HOME}/tor-browser_*/Browser/TorBrowser/Data/Browser/profile.default/ r,
  @{HOME}/tor-browser_*/Browser/TorBrowser/Data/Browser/profile.default/** rwk,
  @{HOME}/tor-browser_*/Data/Tor/* rwk,
  @{HOME}/tor-browser_*/Tor/* mr,
  @{HOME}/tor-browser_*/Tor/tor rix,
  @{HOME}/tor-browser_en-US/Browser/updates/ r,
  @{HOME}/tor-browser_en-US/Browser/updates/** rwk,
  @{HOME}/tor-browser_en-US/Browser/updates*.xml rwk,
  @{HOME}/tor-browser_en-US/Browser/active-update*.xml rwk,
  @{HOME}/tor-browser_en-US/update.test/ rwk,
  @{HOME}/tor-browser_en-US/update.test rwk,
  @{HOME}/tor-browser_en-US/Browser/update.test/ rwk,
  @{HOME}/tor-browser_en-US/Browser/update.test rwk,
  @{HOME}/tor-browser_en-US/Browser/updates/0/updater rix,
  @{HOME}/tor-browser_*/Browser/Desktop/ rw,
  @{HOME}/tor-browser_*/Desktop/ rwk,
  @{HOME}/tor-browser_*/Desktop/** rwk,
  @{HOME}/tor-browser_*/Browser/Downloads/ r,
  @{HOME}/tor-browser_*/Browser/Downloads/** rwk,

92,102c75,76
< /tmp/MozUpdater/bgupdate/updater rix,
<
< /usr/bin/kde4-config rix,
<
< ## XXX
< #/usr/lib/-linux-gnu/libvisual-/.so mr,
< #/usr/lib/-linux-gnu/gstreamer0.10/gstreamer-0.10/gst-plugin-scanner rix,
< /usr/lib/*-linux-gnu/** mrix,
<
< /usr/local/share/applications/ r,
< /usr/local/share/applications/meminfo.cache r,

  /usr/lib/i386-linux-gnu/libvisual-*/*.so mr,
  /usr/lib/i386-linux-gnu/gstreamer0.10/gstreamer-0.10/gst-plugin-scanner rix,

120a95,104

  ## KDE 4 ##
  @{HOME}/.kde/share/config/* r,

  ## Xfce4 ##
  /etc/xfce4/defaults.list r,
  /usr/share/xfce4/applications/ r,

  ## Gnome2 and VirtualBox ##
  @{HOME}/tor-browser_*/.** rwk,

++ error_handler_pre
++ local exit_code=1
++ local ‘last_err=diff “$source_file” “$file_with_destdir”’
++ ‘[’ ‘!’ 1 = 1 ‘]’
++ ‘[’ ‘’ = ‘’ ‘]’
++ output=‘## See above.’
++ ‘[’ ‘!’ 1 = 1 ‘]’
++ force_echo ’
####################################################################

BEGIN ERROR in /usr/share/genmkfile/make-helper.bsh detected!

ERROR LOG:

See above.

BASH_COMMAND: diff “$source_file” “$file_with_destdir”

EXIT_CODE: 1

END ERROR in /usr/share/genmkfile/make-helper.bsh detected!

Please report this bug!

####################################################################
’
++ ‘[’ ‘!’ 1 = 1 ‘]’
++ ‘[’ ‘!’ 1 = 1 ‘]’
++ ‘[’ ‘!’ 1 = 1 ‘]’
++ exit 1
/usr/share/genmkfile/makefile-full:92: recipe for target ‘installcheck’ failed
make: *** [installcheck] Error 1
[/code]

the important part in it which is:-

[code]####################################################################

BEGIN ERROR in /usr/share/genmkfile/make-helper.bsh detected!

ERROR LOG:

See above.

BASH_COMMAND: diff “$source_file” “$file_with_destdir”

EXIT_CODE: 1

END ERROR in /usr/share/genmkfile/make-helper.bsh detected!

Please report this bug!

####################################################################
[/code]

and the result of meld etc/apparmor.d/usr.bin.sdwdate /etc/apparmor.d/usr.bin.sdwdate is similar to this image:-

http://i.imgur.com/qzYLTfh.png