felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): remove rule moved to the base abstraction.

Browse source
This commit is contained in:
Alexandre Pujol 2024-03-10 20:01:58 +00:00
parent beaf1bad16
commit 7882ae2153
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
78 changed files with 0 additions and 120 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/groups/freedesktop/at-spi-bus-launcher
View file

@ -22,7 +22,6 @@ profile at-spi-bus-launcher @{exec_path} flags=(attach_disconnected) {
network inet6 dgram,
network netlink raw,
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=(term hup kill) peer=dbus-daemon,
signal (receive) set=(term hup kill) peer=gdm*,
signal (receive) set=(term hup kill) peer=gnome-session-binary,

1
apparmor.d/groups/freedesktop/at-spi2-registryd
View file

@ -17,7 +17,6 @@ profile at-spi2-registryd @{exec_path} flags=(attach_disconnected) {
include <abstractions/nameservice-strict>
include <abstractions/X-strict>
signal (receive) set=(cont, term) peer=@{systemd_user},
signal (receive) set=(term hup kill) peer=@{systemd},
signal (receive) set=(term hup kill) peer=dbus-daemon,
signal (receive) set=(term hup kill) peer=gdm*,

1
apparmor.d/groups/freedesktop/dconf-service
View file

@ -13,7 +13,6 @@ profile dconf-service @{exec_path} flags=(attach_disconnected) {
include <abstractions/bus-session>
include <abstractions/dconf-write>
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=(term kill hup) peer=dbus-daemon,
signal (receive) set=(term hup) peer=gdm*,

2
apparmor.d/groups/freedesktop/geoclue
View file

@ -24,8 +24,6 @@ profile geoclue @{exec_path} flags=(attach_disconnected) {
network inet6 stream,
network netlink raw,
signal (receive) set=(cont, term) peer=@{systemd_user},
# dbus: own bus=system name=org.freedesktop.GeoClue2
dbus send bus=system path=/org/freedesktop/DBus

2
apparmor.d/groups/freedesktop/pipewire
View file

@ -21,8 +21,6 @@ profile pipewire @{exec_path} flags=(attach_disconnected) {
network netlink raw,
signal (receive) set=(cont, term) peer=systemd-user,
ptrace (read),
# dbus: own bus=session name=org.pulseaudio.Server

2
apparmor.d/groups/freedesktop/pipewire-media-session
View file

@ -23,8 +23,6 @@ profile pipewire-media-session @{exec_path} {
network bluetooth stream,
network netlink raw,
signal (receive) set=(cont term) peer=@{systemd_user},
dbus send bus=session path=/org/freedesktop/DBus
interface=org.freedesktop.DBus
member=GetConnectionUnixProcessID

1
apparmor.d/groups/freedesktop/polkit-kde-authentication-agent
View file

@ -24,7 +24,6 @@ profile polkit-kde-authentication-agent @{exec_path} flags=(attach_disconnected)
network inet6 stream,
network netlink raw,
signal (receive) set=(cont, term) peer=@{systemd_user},
signal (send) set=(term, kill) peer=polkit-agent-helper,
@{exec_path} mr,

2
apparmor.d/groups/freedesktop/xdg-desktop-portal
View file

@ -24,8 +24,6 @@ profile xdg-desktop-portal @{exec_path} flags=(attach_disconnected) {
network netlink raw,
signal (receive) set=(cont, term) peer=systemd-user,
ptrace (read),
# dbus: own bus=session name=org.freedesktop.portal.Desktop path=/org/freedesktop/portal/desktop interface={org.freedesktop.DBus.Properties,org.freedesktop{,.impl}.portal.{Settings,Background}}

1
apparmor.d/groups/freedesktop/xdg-desktop-portal-gnome
View file

@ -26,7 +26,6 @@ profile xdg-desktop-portal-gnome @{exec_path} {
network unix stream,
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=term peer=gdm,
dbus bind bus=session name=org.freedesktop.impl.portal.desktop.gnome,

2
apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk
View file

@ -29,8 +29,6 @@ profile xdg-desktop-portal-gtk @{exec_path} {
include <abstractions/user-download>
include <abstractions/user-write>
signal (receive) set=(cont, term) peer=systemd-user,
unix (send, receive, connect) type=stream peer=(addr="@/tmp/.X11-unix/*", label=gnome-shell),
dbus bind bus=session name=org.freedesktop.impl.portal.desktop.gtk,

2
apparmor.d/groups/freedesktop/xdg-desktop-portal-kde
View file

@ -19,8 +19,6 @@ profile xdg-desktop-portal-kde @{exec_path} {
network inet6 stream,
network netlink raw,
signal (receive) set=(cont, term) peer=@{systemd_user},
@{exec_path} mr,
owner @{user_cache_dirs}/*.kcache r,

3
apparmor.d/groups/freedesktop/xdg-document-portal
View file

@ -18,7 +18,6 @@ profile xdg-document-portal @{exec_path} flags=(attach_disconnected) {
mount fstype=fuse.portal -> @{run}/user/@{uid}/doc/,
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=(term) peer=gdm,
ptrace (read) peer=xdg-desktop-portal,
@ -65,8 +64,6 @@ profile xdg-document-portal @{exec_path} flags=(attach_disconnected) {
umount @{run}/user/@{uid}/doc/,
signal (receive) set=(cont, term) peer=systemd-user,
unix (send receive) type=stream peer=(label=xdg-document-portal),
@{bin}/fusermount{,3} mr,

1
apparmor.d/groups/freedesktop/xdg-permission-store
View file

@ -13,7 +13,6 @@ profile xdg-permission-store @{exec_path} flags=(attach_disconnected) {
capability sys_nice,
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=(term hup kill) peer=dbus-daemon,
signal (receive) set=(term hup kill) peer=gdm*,

1
apparmor.d/groups/freedesktop/xwayland
View file

@ -13,7 +13,6 @@ profile xwayland @{exec_path} flags=(attach_disconnected) {
include <abstractions/graphics>
include <abstractions/X-strict>
signal (receive) set=(cont, term) peer=systemd-user,
signal (receive) set=(term hup) peer=gdm*,
signal (receive) set=(term hup) peer=gnome-shell,
signal (receive) set=(term hup) peer=kwin_wayland,