From 983268e30b6a36fadc03bda182dae372edb6e734 Mon Sep 17 00:00:00 2001
From: Abhijeet Kandalkar <abhijeet@igalia.com>
Date: Thu, 18 Oct 2018 00:13:43 +0530
Subject: [PATCH] Fixed unauthorized connection and smack permission error.

Error :
audit: type=1400 audit(1539758675.667:9): lsm=SMACK fn=smack_inode_getattr
action=denied subject="User::App::webapps-hvac-enact" object="System" requested=r
pid=4111 comm="tinyproxy" path="/run/connman/resolv.conf" dev="tmpfs" ino=10458
Fix : Provide root access to tinyproxy. Thios is a temporary change and should
be rivisited once proxy integration stabilized.

Error: Unauthorized connection from "localhost"
Fix: Provided access to'localhost' through authorization controls.
---
 etc/tinyproxy.conf.in | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/etc/tinyproxy.conf.in b/etc/tinyproxy.conf.in
index 9e6eb3c..69521d8 100644
--- a/etc/tinyproxy.conf.in
+++ b/etc/tinyproxy.conf.in
@@ -11,9 +11,10 @@
 # used for tinyproxy after the initial binding to the port has been done
 # as the root user. Either the user or group name or the UID or GID
 # number may be used.
+# TODO : Revisit this setting once proxy integration is stabilized.
 #
-User nobody
-Group nobody
+User root
+Group root
 
 #
 # Port: Specify the port which tinyproxy will listen on.  Please note
@@ -222,6 +223,7 @@ MaxRequestsPerChild 0
 # tested against the controls based on order.
 #
 Allow 127.0.0.1
+Allow localhost
 
 # BasicAuth: HTTP "Basic Authentication" for accessing the proxy.
 # If there are any entries specified, access is only granted for authenticated