felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profiles): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2023-08-17 18:43:56 +01:00
parent f7b9ff959a
commit 5d47dfba95
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
50 changed files with 174 additions and 50 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/groups/freedesktop/at-spi2-registryd
View file

@ -90,6 +90,7 @@ profile at-spi2-registryd @{exec_path} flags=(attach_disconnected) {
owner @{HOME}/.xsession-errors w,
owner /tmp/runtime-*/xauth_?????? r,
owner /tmp/xauth_?????? r,
owner @{run}/user/@{uid}/gdm/Xauthority r,
owner @{run}/user/@{uid}/xauth_?????? r,

2
apparmor.d/groups/freedesktop/fc-cache
View file

@ -14,6 +14,8 @@ profile fc-cache @{exec_path} {
include <abstractions/fontconfig-cache-write>
include <abstractions/fonts>
capability dac_read_search,
@{exec_path} mr,
/var/cache/fontconfig/{,**} rw,

2
apparmor.d/groups/freedesktop/fc-list
View file

@ -13,6 +13,8 @@ profile fc-list @{exec_path} {
include <abstractions/fonts>
include <abstractions/fontconfig-cache-read>
capability dac_read_search,
@{exec_path} mr,
include if exists <local/fc-list>

2
apparmor.d/groups/freedesktop/pipewire-media-session
View file

@ -72,6 +72,8 @@ profile pipewire-media-session @{exec_path} {
@{sys}/devices/system/node/ r,
@{sys}/devices/system/node/node[0-9]*/meminfo r,
owner @{PROC}/@{pid}/task/@{tid}/comm rw,
/dev/video[0-9]* rw,
/dev/snd/ r,

1
apparmor.d/groups/freedesktop/polkit-agent-helper
View file

@ -47,6 +47,7 @@ profile polkit-agent-helper @{exec_path} {
@{PROC}/1/cgroup r,
owner @{PROC}/@{pid}/cgroup r,
owner @{PROC}/@{pid}/loginuid r,
owner /dev/tty[0-9]* rw,

1
apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk
View file

@ -165,6 +165,7 @@ profile xdg-desktop-portal-gtk @{exec_path} {
owner @{HOME}/@{XDG_DATA_HOME}/ r,
owner /tmp/runtime-*/xauth_?????? r,
owner /tmp/xauth_?????? r,
@{run}/mount/utab r,
@{run}/user/@{uid}/xauth_* rl,

2
apparmor.d/groups/freedesktop/xdg-desktop-portal-kde
View file

@ -45,6 +45,8 @@ profile xdg-desktop-portal-kde @{exec_path} {
owner @{user_config_dirs}/kwinrc r,
owner @{user_config_dirs}/xdg-desktop-portal-kderc r,
owner /tmp/xauth_?????? r,
@{run}/user/@{uid}/xauth_* rl,
@{PROC}/sys/kernel/core_pattern r,

2
apparmor.d/groups/freedesktop/xprop
View file

@ -20,6 +20,8 @@ profile xprop @{exec_path} {
owner @{HOME}/.icons/default/index.theme r,
owner /tmp/runtime-*/xauth_?????? r,
owner /tmp/xauth_?????? r,
owner @{run}/user/@{uid}/xauth_* rl,
# file_inherit