From 4797026e28bac93c0f040cb11e8820aa157e92a2 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Wed, 16 Oct 2024 23:53:14 +0100
Subject: [PATCH] feat(profile): update some ui profiles.

---
 apparmor.d/profiles-s-z/terminator   |  2 ++
 apparmor.d/profiles-s-z/transmission | 12 ++++++++++++
 apparmor.d/profiles-s-z/vlc          |  7 +++++++
 3 files changed, 21 insertions(+)

diff --git a/apparmor.d/profiles-s-z/terminator b/apparmor.d/profiles-s-z/terminator
index e72588420..e5a8f80d9 100644
--- a/apparmor.d/profiles-s-z/terminator
+++ b/apparmor.d/profiles-s-z/terminator
@@ -23,6 +23,8 @@ profile terminator @{exec_path} flags=(attach_disconnected) {
 
   ptrace,
 
+  signal send set=hup peer=unconfined,
+
   #aa:dbus own bus=session name=net.tenshu.Terminator@{hex}
 
   @{exec_path} mr,
diff --git a/apparmor.d/profiles-s-z/transmission b/apparmor.d/profiles-s-z/transmission
index ff3373a2c..a6ccb7e2d 100644
--- a/apparmor.d/profiles-s-z/transmission
+++ b/apparmor.d/profiles-s-z/transmission
@@ -9,6 +9,11 @@ include <tunables/global>
 @{exec_path} = @{bin}/transmission-{gtk,qt}
 profile transmission @{exec_path} {
   include <abstractions/base>
+  include <abstractions/bus-accessibility>
+  include <abstractions/bus-session>
+  include <abstractions/bus/org.a11y>
+  include <abstractions/bus/org.freedesktop.Notifications>
+  include <abstractions/bus/org.kde.StatusNotifierWatcher>
   include <abstractions/dconf-write>
   include <abstractions/desktop>
   include <abstractions/graphics>
@@ -23,12 +28,18 @@ profile transmission @{exec_path} {
   network inet6 stream,
   network netlink raw,
 
+  #aa:dbus own bus=session name=com.transmissionbt.Transmission
+  #aa:dbus own bus=session name=com.transmissionbt.transmission_*
+  #aa:dbus talk bus=session name=org.gtk.vfs label="gvfsd{,-*}"
+
   @{exec_path} mr,
 
   @{open_path}         rPx -> child-open,
 
   /usr/share/transmission/{,**} r,
 
+  owner @{HOME}/ r,
+
   owner @{user_torrents_dirs}/ r,
   owner @{user_torrents_dirs}/** rw,
 
@@ -48,6 +59,7 @@ profile transmission @{exec_path} {
   owner @{PROC}/@{pid}/comm r,
   owner @{PROC}/@{pid}/mountinfo r,
   owner @{PROC}/@{pid}/mounts r,
+  owner @{PROC}/@{pid}/task/@{tid}/comm rw,
 
   deny @{user_share_dirs}/gvfs-metadata/* r,
 
diff --git a/apparmor.d/profiles-s-z/vlc b/apparmor.d/profiles-s-z/vlc
index fabde247b..d572ce9b8 100644
--- a/apparmor.d/profiles-s-z/vlc
+++ b/apparmor.d/profiles-s-z/vlc
@@ -75,6 +75,13 @@ profile vlc @{exec_path} {
 
   @{run}/mount/utab r,
 
+  @{sys}/devices/virtual/dmi/id/board_name r,
+  @{sys}/devices/virtual/dmi/id/board_vendor r,
+  @{sys}/devices/virtual/dmi/id/board_version r,
+  @{sys}/devices/virtual/dmi/id/product_name r,
+  @{sys}/devices/virtual/dmi/id/product_version r,
+  @{sys}/devices/virtual/dmi/id/sys_vendor r,
+
         /dev/shm/#@{int} rw,
         /dev/snd/ r,
         /dev/tty r,