refractor(abs): reorganize dbus abstraction (1)

2025-09-13 16:11:16 +02:00 · 2025-09-13 16:11:16 +02:00 · 34aa208ec9
commit 34aa208ec9
parent 4982ff104d
9 changed files with 9 additions and 26 deletions
--- a/apparmor.d/abstractions/bus/org.freedesktop.resolve1
+++ b/apparmor.d/abstractions/bus/org.freedesktop.resolve1
@ -1,16 +0,0 @@
-# apparmor.d - Full set of apparmor profiles
-# Copyright (C) 2023-2024 Alexandre Pujol <alexandre@pujol.io>
-# SPDX-License-Identifier: GPL-2.0-only
-
-  abi <abi/4.0>,
-
-  #aa-dbus common bus=system name=org.freedesktop.resolve1 label="@{p_systemd_resolved}"
-
-  dbus send bus=system path=/org/freedesktop/resolve1
-       interface=org.freedesktop.resolve1.Manager
-       member={ResolveAddress,ResolveHostname,ResolveRecord,ResolveService}
-       peer=(name=org.freedesktop.resolve1, label="@{p_systemd_resolved}"),
-
-  include if exists <abstractions/bus/org.freedesktop.resolve1.d>
-
-# vim:syntax=apparmor
--- a/apparmor.d/abstractions/bus/system/org.freedesktop.locale1
+++ b/apparmor.d/abstractions/bus/system/org.freedesktop.locale1
@ -4,12 +4,11 @@

  abi <abi/4.0>,

-  #aa:dbus common bus=system name=org.freedesktop.locale1 label="@{p_systemd_localed}"
  dbus send bus=system path=/org/freedesktop/locale1
       interface=org.freedesktop.DBus.Properties
       member=GetAll
       peer=(name=org.freedesktop.locale1),

-  include if exists <abstractions/bus/org.freedesktop.locale1.d>
+  include if exists <abstractions/bus/system/org.freedesktop.locale1.d>

 # vim:syntax=apparmor
--- a/apparmor.d/abstractions/bus/system/org.gnome.DisplayManager
+++ b/apparmor.d/abstractions/bus/system/org.gnome.DisplayManager
@ -1,5 +1,5 @@
 # apparmor.d - Full set of apparmor profiles
-# Copyright (C) 2023-2024 Alexandre Pujol <alexandre@pujol.io>
+# Copyright (C) 2023-2025 Alexandre Pujol <alexandre@pujol.io>
 # SPDX-License-Identifier: GPL-2.0-only

  abi <abi/4.0>,
@ -11,6 +11,6 @@
       member=RegisterDisplay
       peer=(name="@{busname}", label=gdm),

-  include if exists <abstractions/bus/org.gnome.DisplayManager.d>
+  include if exists <abstractions/bus/system/org.gnome.DisplayManager.d>

 # vim:syntax=apparmor
--- a/apparmor.d/groups/flatpak/flatpak
+++ b/apparmor.d/groups/flatpak/flatpak
@ -13,7 +13,7 @@ profile flatpak @{exec_path} flags=(attach_disconnected,mediate_deleted,complain
  include <abstractions/bus-session>
  include <abstractions/bus-system>
  include <abstractions/bus/org.a11y>
-  include <abstractions/bus/org.freedesktop.locale1>
+  include <abstractions/bus/system/org.freedesktop.locale1>
  include <abstractions/bus/org.gtk.vfs.MountTracker>
  include <abstractions/consoles>
  include <abstractions/dconf-write>
--- a/apparmor.d/groups/gnome/evolution-addressbook-factory
+++ b/apparmor.d/groups/gnome/evolution-addressbook-factory
@ -11,7 +11,7 @@ profile evolution-addressbook-factory @{exec_path} {
  include <abstractions/base>
  include <abstractions/bus-session>
  include <abstractions/bus-system>
-  include <abstractions/bus/org.freedesktop.locale1>
+  include <abstractions/bus/system/org.freedesktop.locale1>
  include <abstractions/bus/org.freedesktop.NetworkManager>
  include <abstractions/bus/org.gtk.vfs.MountTracker>
  include <abstractions/dconf-write>
--- a/apparmor.d/groups/gnome/gdm-session
+++ b/apparmor.d/groups/gnome/gdm-session
@ -11,8 +11,8 @@ profile gdm-session @{exec_path} {
  include <abstractions/base>
  include <abstractions/bus-session>
  include <abstractions/bus-system>
-  include <abstractions/bus/org.gnome.DisplayManager>
  include <abstractions/bus/session/org.freedesktop.systemd1>
+  include <abstractions/bus/system/org.gnome.DisplayManager>

  signal receive set=(hup term) peer=gdm-session-worker,
  signal receive set=(term) peer=gdm,
--- a/apparmor.d/groups/gnome/gnome-shell
+++ b/apparmor.d/groups/gnome/gnome-shell
@ -23,7 +23,7 @@ profile gnome-shell @{exec_path} flags=(attach_disconnected,mediate_deleted) {
  include <abstractions/bus/org.freedesktop.FileManager1>
  include <abstractions/bus/org.freedesktop.GeoClue2>
  include <abstractions/bus/org.freedesktop.impl.portal.PermissionStore>
-  include <abstractions/bus/org.freedesktop.locale1>
+  include <abstractions/bus/system/org.freedesktop.locale1>
  include <abstractions/bus/org.freedesktop.PackageKit>
  include <abstractions/bus/org.freedesktop.portal.Desktop>
  include <abstractions/bus/org.freedesktop.RealtimeKit1>
--- a/apparmor.d/groups/gnome/gsd-keyboard
+++ b/apparmor.d/groups/gnome/gsd-keyboard
@ -14,7 +14,7 @@ profile gsd-keyboard @{exec_path} flags=(attach_disconnected) {
  include <abstractions/bus-session>
  include <abstractions/bus-system>
  include <abstractions/bus/org.a11y>
-  include <abstractions/bus/org.freedesktop.locale1>
+  include <abstractions/bus/system/org.freedesktop.locale1>
  include <abstractions/bus/org.gnome.SessionManager>
  include <abstractions/bus/org.gtk.vfs.MountTracker>
  include <abstractions/dconf-write>
--- a/apparmor.d/groups/kde/startplasma
+++ b/apparmor.d/groups/kde/startplasma
@ -12,7 +12,7 @@ profile startplasma @{exec_path} {
  include <abstractions/audio-client>
  include <abstractions/bus-session>
  include <abstractions/bus-system>
-  include <abstractions/bus/org.freedesktop.locale1>
+  include <abstractions/bus/system/org.freedesktop.locale1>
  include <abstractions/kde-globals-write>
  include <abstractions/kde-strict>