From 06f2fb46597758ac968779ee06a6b258e52cc3a6 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Thu, 6 Mar 2025 21:22:57 +0100
Subject: [PATCH] feat(profile): improve gimp.

see #656
---
 apparmor.d/profiles-g-l/gimp | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/apparmor.d/profiles-g-l/gimp b/apparmor.d/profiles-g-l/gimp
index 83457578f..158885375 100644
--- a/apparmor.d/profiles-g-l/gimp
+++ b/apparmor.d/profiles-g-l/gimp
@@ -11,8 +11,10 @@ profile gimp @{exec_path} {
   include <abstractions/base>
   include <abstractions/bus-session>
   include <abstractions/bus/org.freedesktop.FileManager1>
+  include <abstractions/dconf-write>
   include <abstractions/desktop>
   include <abstractions/graphics>
+  include <abstractions/nameservice-strict>
   include <abstractions/python>
   include <abstractions/thumbnails-cache-write>
   include <abstractions/user-download-strict>
@@ -38,12 +40,14 @@ profile gimp @{exec_path} {
   /usr/share/mypaint-data/{,**} r,
   /usr/share/xml/iso-codes/{,**} r,
 
+  /etc/fstab r,
   /etc/gimp/{,**} r,
 
   owner @{user_documents_dirs}/{,**} rw,
   owner @{user_pictures_dirs}/{,**} rw,
   owner @{user_work_dirs}/{,**} rw,
 
+  owner @{user_cache_dirs}//thumbnails/normal/gimp-thumb* rw,
   owner @{user_cache_dirs}/babl/{,**} rw,
   owner @{user_cache_dirs}/gegl-*/{,**} r,
   owner @{user_cache_dirs}/gegl-*/{,**} r,
@@ -58,6 +62,8 @@ profile gimp @{exec_path} {
 
   owner @{tmp}/gimp/{,**} rw,
 
+  owner @{PROC}/@{pid}/mountinfo r,
+
   include if exists <local/gimp>
 }