From a6f5b115bba23cc1a108a601acfca1fab823a092 Mon Sep 17 00:00:00 2001
From: matzfan <matzfan@mailinator.com>
Date: Mon, 30 Mar 2026 15:59:03 +0100
Subject: [PATCH] snowflake: mount default geoip paths

-metrics option requires access to these files to geolocate clients

Signed-off-by: matzfan <matzfan@mailinator.com>
---
 net/snowflake/Makefile                   | 2 +-
 net/snowflake/files/snowflake-proxy.init | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/net/snowflake/Makefile b/net/snowflake/Makefile
index f5951c189c..c045eb6915 100644
--- a/net/snowflake/Makefile
+++ b/net/snowflake/Makefile
@@ -2,7 +2,7 @@ include $(TOPDIR)/rules.mk
 
 PKG_NAME:=snowflake
 PKG_VERSION:=2.11.0
-PKG_RELEASE:=1
+PKG_RELEASE:=2
 
 PKG_SOURCE_PROTO:=git
 PKG_SOURCE_URL=https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake.git
diff --git a/net/snowflake/files/snowflake-proxy.init b/net/snowflake/files/snowflake-proxy.init
index 3d8b4387d1..f9b97c0848 100644
--- a/net/snowflake/files/snowflake-proxy.init
+++ b/net/snowflake/files/snowflake-proxy.init
@@ -17,6 +17,9 @@ start_service() {
 	[ -x /sbin/ujail ] && {
 		procd_add_jail snowflake-proxy ronly
 		procd_add_jail_mount /etc/ssl/certs
+		# change the following if specifying non default paths with the -geoipdb or -geoip6db command parameters 
+		procd_add_jail_mount /usr/share/tor/geoip
+		procd_add_jail_mount /usr/share/tor/geoip6
 		procd_set_param no_new_privs 1
 	}
 	procd_close_instance