> Hi,
> intrigeri:
>> I've just poked upstream about it.
> … and it was merged. I've cherry-picked it locally in src:apparmor's
> Vcs-Bzr and am preparing an upload as we speak.
>> If you're in a hurry, patching /etc/apparmor.d/usr.bin.evince as
>> proposed on this bug (quoted above) should be a fine
>> temporary solution.
> … so please don't bother going for that temporary hack.

Thanks, intrigeri!

This makes me wonder if

  owner /{,var/}run/user/*/dconf/          w,
  owner /{,var/}run/user/*/dconf/user      rw,
  owner @{HOME}/.local/share/gvfs-metadata/** l,
  owner /{,var/}run/user/*/gvfs-metadata/** l,

shouldn't be moved somewhere else as well.
Those paths are implementation details of dconf and gvfs. A lot of GNOME
applications use either dconf or gvfs, so duplicating that information
in every application seems wrong.

