feat(profile): general update.
This commit is contained in:
Alexandre Pujol
parent
437bef18ca
commit
77945674a5
23 changed files with 67 additions and 39 deletions
|
|
@ -32,10 +32,12 @@ profile blkid @{exec_path} flags=(attach_disconnected) {
|
|||
@{run}/blkid/blkid.tab{,-@{rand6}} rw,
|
||||
@{run}/blkid/blkid.tab.old rwl -> @{run}/blkid/blkid.tab,
|
||||
|
||||
@{run}/cloud-init/ds-identify.log w, # file_inherit
|
||||
|
||||
# For the EVALUATE=scan method
|
||||
@{PROC}/partitions r,
|
||||
|
||||
/dev/tty@{int} rw,
|
||||
owner /dev/tty@{int} rw,
|
||||
|
||||
include if exists <local/blkid>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -11,6 +11,7 @@ include <tunables/global>
|
|||
profile blueman @{exec_path} flags=(attach_disconnected) {
|
||||
include <abstractions/base>
|
||||
include <abstractions/audio-client>
|
||||
include <abstractions/bus-session>
|
||||
include <abstractions/dconf-write>
|
||||
include <abstractions/desktop>
|
||||
include <abstractions/fontconfig-cache-read>
|
||||
|
|
@ -26,18 +27,16 @@ profile blueman @{exec_path} flags=(attach_disconnected) {
|
|||
|
||||
ptrace (read) peer=gjs-console,
|
||||
|
||||
# dbus: own bus=session name=org.blueman.Applet
|
||||
# dbus: own bus=session name=org.blueman.Manager
|
||||
|
||||
@{exec_path} mrix,
|
||||
|
||||
@{sh_path} rix,
|
||||
|
||||
@{bin}/blueman-tray rPx,
|
||||
@{open_path} rPx -> child-open,
|
||||
@{open_path} rix,
|
||||
|
||||
/usr/share/blueman/{,**} r,
|
||||
|
||||
/etc/machine-id r,
|
||||
/var/lib/dbus/machine-id r,
|
||||
|
||||
/var/lib/blueman/network.state r,
|
||||
|
||||
owner @{HOME}/ r,
|
||||
|
|
@ -53,9 +52,9 @@ profile blueman @{exec_path} flags=(attach_disconnected) {
|
|||
owner @{user_cache_dirs}/obexd/ rw,
|
||||
owner @{user_cache_dirs}/obexd/* rw,
|
||||
|
||||
@{PROC}/@{pids}/cmdline r,
|
||||
owner @{PROC}/@{pid}/fd/ r,
|
||||
owner @{PROC}/@{pid}/mounts r,
|
||||
@{PROC}/@{pids}/cmdline r,
|
||||
|
||||
/dev/dri/card@{int} rw,
|
||||
/dev/rfkill r,
|
||||
|
|
|
|||
|
|
@ -133,9 +133,10 @@ profile fwupd @{exec_path} flags=(complain,attach_disconnected) {
|
|||
@{bin}/gpg{,2} mr,
|
||||
@{bin}/gpgconf mr,
|
||||
@{bin}/gpgsm mr,
|
||||
@{bin}/gpg-agent mrix,
|
||||
@{lib}/gnupg/scdaemon rix,
|
||||
|
||||
@{bin}/gpg-agent rix,
|
||||
@{lib}/{,gnupg/}scdaemon rix,
|
||||
|
||||
owner /var/lib/fwupd/gnupg/ rw,
|
||||
owner /var/lib/fwupd/gnupg/** rwkl -> /var/lib/fwupd/gnupg/**,
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue