Use @{uid} instead of [0-9]* when it denotes the user id.
This commit is contained in:
Alexandre Pujol
parent
cd4ad5b09c
commit
4a35b7d804
137 changed files with 253 additions and 253 deletions
|
|
@ -27,8 +27,8 @@ profile evolution-addressbook-factory @{exec_path} {
|
|||
owner @{user_cache_dirs}/evolution/addressbook/{,**} rwk,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
@{PROC}/sys/kernel/osrelease r,
|
||||
@{PROC}/cmdline r,
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile evolution-alarm-notify @{exec_path} {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/evolution-alarm-notify>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -29,8 +29,8 @@ profile evolution-calendar-factory @{exec_path} {
|
|||
owner @{user_cache_dirs}/evolution/tasks/{,**} rwk,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
@{PROC}/sys/kernel/osrelease r,
|
||||
@{PROC}/cmdline r,
|
||||
|
|
|
|||
|
|
@ -28,8 +28,8 @@ profile evolution-source-registry @{exec_path} {
|
|||
owner @{user_cache_dirs}/evolution/{,**} rwk,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
@{PROC}/sys/kernel/osrelease r,
|
||||
@{PROC}/cmdline r,
|
||||
|
|
|
|||
|
|
@ -41,7 +41,7 @@ profile gdm @{exec_path} {
|
|||
@{run}/systemd/sessions/[0-9] r,
|
||||
@{run}/systemd/sessions/[0-9].ref r,
|
||||
@{run}/systemd/userdb/ r,
|
||||
@{run}/systemd/users/[0-9]* r,
|
||||
@{run}/systemd/users/@{uid} r,
|
||||
|
||||
@{sys}/devices/virtual/tty/tty[0-9]*/active r,
|
||||
|
||||
|
|
|
|||
|
|
@ -51,7 +51,7 @@ profile gdm-session-worker @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
@{run}/faillock/[a-zA-z0-9]* rwk,
|
||||
@{run}/systemd/sessions/[0-9].ref rw,
|
||||
@{run}/systemd/users/[0-9]* r,
|
||||
@{run}/systemd/users/@{uid} r,
|
||||
@{run}/utmp rwk,
|
||||
|
||||
owner @{PROC}/@{pid}/fd/ r,
|
||||
|
|
|
|||
|
|
@ -42,8 +42,8 @@ profile gdm-wayland-session @{exec_path} {
|
|||
owner @{PROC}/@{pid}/loginuid r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
# file_inherit
|
||||
/dev/tty[0-9]* rw,
|
||||
|
|
|
|||
|
|
@ -49,10 +49,10 @@ profile gjs-console @{exec_path} flags=(attach_disconnected) {
|
|||
owner @{PROC}/@{pid}/stat r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
@{run}/user/[0-9]*/gdm/Xauthority r,
|
||||
@{run}/user/@{uid}/gdm/Xauthority r,
|
||||
|
||||
/dev/ r,
|
||||
/dev/tty rw,
|
||||
|
|
|
|||
|
|
@ -22,10 +22,10 @@ profile gnome-calendar @{exec_path} {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
owner @{run}/user/[0-9]*/gdm/Xauthority r,
|
||||
owner @{run}/user/@{uid}/gdm/Xauthority r,
|
||||
|
||||
include if exists <local/gnome-calendar>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -28,8 +28,8 @@ profile gnome-contacts @{exec_path} {
|
|||
owner @{user_share_dirs}/folks/relationships.ini r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/gnome-contacts>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -30,9 +30,9 @@ profile gnome-keyring-daemon @{exec_path} {
|
|||
# Seahorse and SSH keys
|
||||
owner @{HOME}/@{XDG_SSH_DIR}/{,**} r,
|
||||
|
||||
owner @{run}/user/[0-9]*/keyring/ rw,
|
||||
owner @{run}/user/[0-9]*/keyring/* rw,
|
||||
owner @{run}/user/[0-9]*/ssh-askpass.[0-9A-Z]*/{,*} rw,
|
||||
owner @{run}/user/@{uid}/keyring/ rw,
|
||||
owner @{run}/user/@{uid}/keyring/* rw,
|
||||
owner @{run}/user/@{uid}/ssh-askpass.[0-9A-Z]*/{,*} rw,
|
||||
|
||||
@{PROC}/[0-9]*/fd/ r,
|
||||
|
||||
|
|
|
|||
|
|
@ -57,21 +57,21 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
# Dconf
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
# Temp files
|
||||
/tmp/.ICE-unix/[0-9]* rw,
|
||||
|
||||
owner @{run}/user/[0-9]*/.mutter-Xwaylandauth.[0-9A-Z]* r,
|
||||
owner @{run}/user/[0-9]*/gnome-session-leader-fifo rw,
|
||||
owner @{run}/user/[0-9]*/ICEauthority{,-[a-z]} rwl,
|
||||
owner @{run}/user/@{uid}/.mutter-Xwaylandauth.[0-9A-Z]* r,
|
||||
owner @{run}/user/@{uid}/gnome-session-leader-fifo rw,
|
||||
owner @{run}/user/@{uid}/ICEauthority{,-[a-z]} rwl,
|
||||
@{run}/systemd/inhibit/[0-9]*.ref rw,
|
||||
@{run}/systemd/sessions/[0-9] r,
|
||||
@{run}/systemd/sessions/[0-9].ref rw,
|
||||
@{run}/systemd/users/[0-9]* r,
|
||||
@{run}/systemd/users/@{uid} r,
|
||||
|
||||
@{sys}/devices/**/{vendor,device} r,
|
||||
|
||||
|
|
|
|||
|
|
@ -12,7 +12,7 @@ profile gnome-session-ctl @{exec_path} {
|
|||
|
||||
@{exec_path} mr,
|
||||
|
||||
owner @{run}/user/[0-9]*/gnome-session-leader-fifo r,
|
||||
owner @{run}/user/@{uid}/gnome-session-leader-fifo r,
|
||||
|
||||
include if exists <local/gnome-session-ctl>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -74,18 +74,18 @@ profile gnome-shell @{exec_path} flags=(attach_disconnected) {
|
|||
owner @{user_cache_dirs}/gnome-screenshot/{,**} rw,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
owner @{run}/user/[0-9]*/gnome-shell/{,**} rw,
|
||||
owner @{run}/user/[0-9]*/gnome-shell-disable-extensions rw,
|
||||
owner @{run}/user/[0-9]*/wayland-[0-9].lock rwk,
|
||||
owner @{run}/user/[0-9]*/gdm/Xauthority r,
|
||||
owner @{run}/user/[0-9]*/.mutter-Xwaylandauth.[0-9A-Z]* rw,
|
||||
owner @{run}/user/@{uid}/gnome-shell/{,**} rw,
|
||||
owner @{run}/user/@{uid}/gnome-shell-disable-extensions rw,
|
||||
owner @{run}/user/@{uid}/wayland-[0-9].lock rwk,
|
||||
owner @{run}/user/@{uid}/gdm/Xauthority r,
|
||||
owner @{run}/user/@{uid}/.mutter-Xwaylandauth.[0-9A-Z]* rw,
|
||||
|
||||
@{run}/systemd/users/[0-9]* r,
|
||||
@{run}/systemd/users/@{uid} r,
|
||||
@{run}/systemd/sessions/ r,
|
||||
@{run}/systemd/sessions/[0-9] r,
|
||||
@{run}/systemd/inhibit/[0-9]*.ref rw,
|
||||
|
|
|
|||
|
|
@ -16,8 +16,8 @@ profile gnome-shell-calendar-server @{exec_path} {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/gnome-shell-calendar-server>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -27,8 +27,8 @@ profile goa-daemon @{exec_path} {
|
|||
owner @{user_config_dirs}/goa-1.0/accounts.conf r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/goa-daemon>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile gsd-a11y-settings @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -26,8 +26,8 @@ profile gsd-color @{exec_path} flags=(attach_disconnected) {
|
|||
/var/lib/gdm/.local/share/icc/edid-*.icc r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile gsd-datetime @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -23,8 +23,8 @@ profile gsd-housekeeping @{exec_path} flags=(attach_disconnected) {
|
|||
owner @{user_cache_dirs}/thumbnails/fail/gnome-thumbnail-factory/ r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -22,8 +22,8 @@ profile gsd-keyboard @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/X11/xkb/** r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -34,14 +34,14 @@ profile gsd-media-keys @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
/var/lib/gdm/.config/pulse/client.conf r,
|
||||
|
||||
owner @{run}/user/[0-9]*/pulse/ r,
|
||||
owner @{run}/user/@{uid}/pulse/ r,
|
||||
@{run}/systemd/inhibit/[0-9]*.ref rw,
|
||||
|
||||
/dev/shm/ r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -34,8 +34,8 @@ profile gsd-power @{exec_path} flags=(attach_disconnected) {
|
|||
owner @{user_config_dirs}/pulse/cookie rk,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
@ -60,7 +60,7 @@ profile gsd-power @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
@{run}/systemd/inhibit/[0-9]*.ref rw,
|
||||
|
||||
@{run}/user/[0-9]*/pulse/ r,
|
||||
@{run}/user/@{uid}/pulse/ r,
|
||||
|
||||
@{PROC}/cmdline r,
|
||||
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile gsd-sharing @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile gsd-smartcard @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -18,8 +18,8 @@ profile gsd-sound @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -15,8 +15,8 @@ profile gsd-usb-protection @{exec_path} {
|
|||
/usr/share/glib-2.0/schemas/gschemas.compiled r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/gsd-usb-protection>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -28,8 +28,8 @@ profile gsd-wacom @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/X11/xkb/** r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
|
|
|
|||
|
|
@ -33,12 +33,12 @@ profile gsd-xsettings @{exec_path} {
|
|||
owner @{user_cache_dirs}/mesa_shader_cache/index rw,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
/usr/share/dconf/profile/gdm r,
|
||||
/var/lib/gdm/.config/dconf/user r,
|
||||
|
||||
owner @{run}/user/@{pid}/.mutter-Xwaylandauth.[a-zA-z0-9]* r,
|
||||
owner @{run}/user/@{uid}/.mutter-Xwaylandauth.[a-zA-z0-9]* r,
|
||||
|
||||
owner @{PROC}/@{pid}/fd/ r,
|
||||
|
||||
|
|
|
|||
|
|
@ -25,7 +25,7 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
|||
# Full access to user's data
|
||||
/ r,
|
||||
owner @{HOME}/{,**} rw,
|
||||
owner @{run}/user/@{pid}/{,**} rw,
|
||||
owner @{run}/user/@{uid}/{,**} rw,
|
||||
owner /media/*/{,**} rw,
|
||||
owner /mnt/*/{,**} rw,
|
||||
owner /tmp/{,**} rw,
|
||||
|
|
@ -37,8 +37,8 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
|||
deny /tmp/.* rw,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
owner @{PROC}/@{pid}/fd/ r,
|
||||
owner @{PROC}/@{pid}/mountinfo r,
|
||||
|
|
|
|||
|
|
@ -25,8 +25,8 @@ profile seahorse @{exec_path} {
|
|||
owner @{HOME}/@{XDG_SSH_DIR}/{,**} r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
@{PROC}/[0-9]*/fd/ r,
|
||||
|
||||
|
|
|
|||
|
|
@ -23,8 +23,8 @@ profile tracker-extract @{exec_path} {
|
|||
owner @{user_share_dirs}/gvfs-metadata/** r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
/tmp/tracker-extract-3-files.*/{,*} rw,
|
||||
|
||||
|
|
|
|||
|
|
@ -35,8 +35,8 @@ profile tracker-miner @{exec_path} {
|
|||
@{PROC}/sys/fs/inotify/max_user_watches r,
|
||||
|
||||
include <abstractions/dconf>
|
||||
owner @{run}/user/[0-9]*/dconf/ rw,
|
||||
owner @{run}/user/[0-9]*/dconf/user rw,
|
||||
owner @{run}/user/@{uid}/dconf/ rw,
|
||||
owner @{run}/user/@{uid}/dconf/user rw,
|
||||
|
||||
include if exists <local/tracker-miner>
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue