feat(profile): general update.
This commit is contained in:
Alexandre Pujol
parent
43ab1d064d
commit
197c1bd78a
43 changed files with 148 additions and 236 deletions
|
|
@ -19,15 +19,6 @@ profile boltd @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
#aa:dbus own bus=system name=org.freedesktop.bolt
|
||||
|
||||
dbus receive bus=system path=/org/freedesktop/bolt
|
||||
interface=org.freedesktop.bolt1.Manager
|
||||
member=ListDevices
|
||||
peer=(name=:*, label=kded),
|
||||
|
||||
dbus (send,receive) bus=system path=/org/freedesktop/bolt{,/**}
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
member=Get,
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
/var/lib/boltd/{,**} rw,
|
||||
|
|
@ -42,14 +33,16 @@ profile boltd @{exec_path} flags=(attach_disconnected) {
|
|||
@{sys}/bus/thunderbolt/devices/ r,
|
||||
@{sys}/bus/wmi/devices/ r,
|
||||
@{sys}/class/ r,
|
||||
@{sys}/devices/@{pci}/@{uuid}/uevent r,
|
||||
@{sys}/devices/@{pci}/device r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/boot_acl rw,
|
||||
@{sys}/devices/@{pci}/domain@{int}/ r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/{security,uevent} r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/ r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/{authorized,generation} r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/{uevent,unique_id} r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/{boot,rx_lanes,rx_speed,tx_lanes,tx_speed} r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/{uevent,unique_id} r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/**/{vendor,device}_name r,
|
||||
@{sys}/devices/@{pci}/domain@{int}/boot_acl rw,
|
||||
@{sys}/devices/@{pci}/domain@{int}/iommu_dma_protection r,
|
||||
@{sys}/devices/platform/**/uevent r,
|
||||
@{sys}/devices/platform/*/wmi_bus/wmi_bus-*/@{uuid}/force_power rw,
|
||||
|
|
|
|||
|
|
@ -24,46 +24,20 @@ profile dkms @{exec_path} flags=(attach_disconnected) {
|
|||
@{exec_path} rm,
|
||||
|
||||
@{sh_path} rix,
|
||||
@{bin}/{,e,f}grep rix,
|
||||
@{bin}/{,g,m}awk rix,
|
||||
@{coreutils_path} rix,
|
||||
@{bin}/as rix,
|
||||
@{bin}/cat rix,
|
||||
@{bin}/cp rix,
|
||||
@{bin}/cut rix,
|
||||
@{bin}/date rix,
|
||||
@{bin}/diff rix,
|
||||
@{bin}/echo rix,
|
||||
@{bin}/find rix,
|
||||
@{bin}/gcc rix,
|
||||
@{bin}/getconf rix,
|
||||
@{bin}/head rix,
|
||||
@{bin}/id rPx,
|
||||
@{bin}/kmod rCx -> kmod,
|
||||
@{bin}/ld rix,
|
||||
@{bin}/ln rix,
|
||||
@{bin}/ls rix,
|
||||
@{bin}/lsb_release rPx -> lsb_release,
|
||||
@{bin}/make rix,
|
||||
@{bin}/mkdir rix,
|
||||
@{bin}/mktemp rix,
|
||||
@{bin}/mv rix,
|
||||
@{bin}/nproc rix,
|
||||
@{bin}/objcopy rix,
|
||||
@{bin}/pahole rix,
|
||||
@{bin}/pwd rix,
|
||||
@{bin}/readelf rix,
|
||||
@{bin}/readlink rix,
|
||||
@{bin}/rm rix,
|
||||
@{bin}/rmdir rix,
|
||||
@{bin}/sed rix,
|
||||
@{bin}/sleep rix,
|
||||
@{bin}/sort rix,
|
||||
@{bin}/rpm rPUx,
|
||||
@{bin}/strip rix,
|
||||
@{bin}/uname rix,
|
||||
@{bin}/uniq rix,
|
||||
@{bin}/update-secureboot-policy rPUx,
|
||||
@{bin}/wc rix,
|
||||
@{bin}/xargs rix,
|
||||
@{bin}/zstd rix,
|
||||
|
||||
@{lib}/gcc/@{multiarch}/@{int}*/* rix,
|
||||
|
|
@ -84,11 +58,17 @@ profile dkms @{exec_path} flags=(attach_disconnected) {
|
|||
@{lib}/modules/*/updates/dkms/{,*,*/,**.ko.xz,**.ko.zst} rw,
|
||||
@{lib}/modules/*/kernel/drivers/{,*,*/,**.ko.xz,**.ko.zst} rw,
|
||||
|
||||
/etc/lsb-release r,
|
||||
/etc/dkms/{,**} r,
|
||||
|
||||
/var/ r,
|
||||
/var/lib/ r,
|
||||
|
||||
/var/lib/dkms/ r,
|
||||
/var/lib/dkms/** rw,
|
||||
|
||||
/etc/lsb-release r,
|
||||
/etc/dkms/{,**} r,
|
||||
/var/lib/rpm/ r,
|
||||
/var/lib/rpm/** rw,
|
||||
|
||||
# For building module in /usr/src/ subdirs
|
||||
/usr/include/**.h r,
|
||||
|
|
|
|||
|
|
@ -16,30 +16,12 @@ profile engrampa @{exec_path} {
|
|||
include <abstractions/bus/org.gtk.Private.RemoteVolumeMonitor>
|
||||
include <abstractions/bus/org.gtk.vfs.MountTracker>
|
||||
include <abstractions/dconf-write>
|
||||
include <abstractions/desktop>
|
||||
include <abstractions/fontconfig-cache-read>
|
||||
include <abstractions/fonts>
|
||||
include <abstractions/freedesktop.org>
|
||||
include <abstractions/gtk>
|
||||
include <abstractions/ibus>
|
||||
include <abstractions/nameservice-strict>
|
||||
include <abstractions/thumbnails-cache-read>
|
||||
include <abstractions/user-download-strict>
|
||||
include <abstractions/X-strict>
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
member=GetId
|
||||
peer=(name=org.freedesktop.DBus, label=dbus-session),
|
||||
|
||||
dbus receive bus=session path=/org/gtk/Application/anonymous
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
member=GetAll
|
||||
peer=(name=:*),
|
||||
|
||||
dbus receive bus=session path=/org/gtk/Application/anonymous{,/window/@{int}}
|
||||
interface=org.gtk.Actions
|
||||
member=DescribeAll
|
||||
peer=(name=:*),
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue