From 1ff9697a45b6e8e9ce1778f0c156d1899e87c80c Mon Sep 17 00:00:00 2001 From: Besanon Date: Mon, 21 Oct 2024 14:02:25 +0200 Subject: [PATCH] Update lxqt-config-input --- apparmor.d/groups/lxqt/lxqt-config-input | 22 +++++++++++++++------- 1 file changed, 15 insertions(+), 7 deletions(-) diff --git a/apparmor.d/groups/lxqt/lxqt-config-input b/apparmor.d/groups/lxqt/lxqt-config-input index 15d962c13..e72a232fe 100644 --- a/apparmor.d/groups/lxqt/lxqt-config-input +++ b/apparmor.d/groups/lxqt/lxqt-config-input @@ -3,7 +3,7 @@ # Copyright (C) 2024 Besanon # SPDX-License-Identifier: GPL-2.0-only -abi , +abi , include @@ -15,9 +15,8 @@ profile lxqt-config-input @{exec_path} { include include include - include - include - include + include + include include include include @@ -28,14 +27,21 @@ profile lxqt-config-input @{exec_path} { signal (read) set=(kill,term) peer=lxqt-session, - @{exec_path} mr, + @{exec_path} mr, @{bin}/setxkbmap rix, /etc/udev/udev.conf r, + owner @{user_config_dirs}/lxqt/lxqt.conf.@{rand6} l -> @{user_config_dirs}/lxqt/#@{int}, + owner @{user_config_dirs}/lxqt/lxqt.conf.@{rand6} rw, + owner @{user_config_dirs}/lxqt/session.conf.@{rand6} l -> @{user_config_dirs}/lxqt/#@{int}, + owner @{user_config_dirs}/lxqt/session.conf.@{rand6} rw, + owner @{user_config_dirs}/lxqt/lxqt.conf.lock rwk, + owner @{user_config_dirs}/lxqt/lxqt-config-input.conf.lock rwk, owner @{user_config_dirs}/lxqt/lxqt-config-input.conf.@{rand6} rwkl -> @{user_config_dirs}/lxqt/#@{int}, - owner @{user_config_dirs}/lxqt/#@{int} rw, + owner @{user_config_dirs}/lxqt/#@{int} rwk, + owner @{user_config_dirs}/lxqt/session.conf.lock rwk, owner /tmp/@{int} r, @@ -90,9 +96,11 @@ profile lxqt-config-input @{exec_path} { @{sys}/devices/LNXSYSTM:00/LNXSYBUS:@{rand2}/AMDI*/**/wakeup@{int}/uevent r, @{sys}/devices/LNXSYSTM:00/LNXSYBUS:@{rand2}/PNP*/uevent r, @{sys}/devices/LNXSYSTM:00/LNXSYBUS:@{rand2}/PNP*/**/wakeup/wakeup@{int}/uevent r, - + /dev/tty rw, + deny @{sys}/class/usbmisc/ r, + include if exists }