update apparmor profiles

apparmor.d/profiles-g-l/gajim

@@ -49,6 +49,9 @@ profile gajim @{exec_path} {
   /{usr/,}bin/gpgconf    rCx -> gpg,
   /{usr/,}bin/gpgsm      rCx -> gpg,
 
+  /{usr/,}bin/ccache                 rCx -> ccache,
+  /{usr/,}bin/{,@{multiarch}-}ld.bfd rCx -> ccache,
+
   # External apps
   /{usr/,}bin/xdg-settings    rPx,
   /{usr/,}lib/firefox/firefox rPx,
@@ -98,6 +101,27 @@ profile gajim @{exec_path} {
   deny /usr/share/gajim/** w,
 
 
+  profile ccache {
+    include <abstractions/base>
+    include <abstractions/consoles>
+
+    /{usr/,}bin/ccache mr,
+
+    /{usr/,}lib/llvm-[0-9]*/bin/clang      rix,
+    /{usr/,}bin/{,@{multiarch}-}gcc-[0-9]* rix,
+    /{usr/,}bin/{,@{multiarch}-}g++-[0-9]* rix,
+    /{usr/,}bin/{,@{multiarch}-}ld.bfd     rix,
+    /{usr/,}lib/gcc/@{multiarch}/[0-9]*/collect2 rix,
+
+    owner /tmp/cc* rw,
+    owner /tmp/tmp* rw,
+
+    /media/ccache/*/** rw,
+
+    /etc/debian_version r,
+
+  }
+
   profile gpg {
     include <abstractions/base>
 

apparmor.d/profiles-g-l/git

@@ -52,6 +52,14 @@ profile git @{exec_path} {
   /{usr/,}bin/cat         rix,
   /{usr/,}bin/dirname     rix,
 
+  owner @{BUILD_DIR}/*/.repo/repo/hooks/* rwix,
+  /{usr/,}bin/mv          rix,
+  /{usr/,}bin/whoami      rix,
+  /{usr/,}bin/hostname    rix,
+  /{usr/,}bin/rm          rix,
+  /{usr/,}bin/cat         rix,
+  /{usr/,}bin/date        rix,
+
   /{usr/,}bin/pager       rPx -> child-pager,
   /{usr/,}bin/less        rPx -> child-pager,
   /{usr/,}bin/more        rPx -> child-pager,
@@ -71,7 +79,7 @@ profile git @{exec_path} {
   /{usr/,}bin/vim             rCx -> editor,
   /{usr/,}bin/vim.*           rCx -> editor,
 
-  owner @{HOME}/.gitconfig rw,
+  owner @{HOME}/.gitconfig r,
   owner @{user_config_dirs}/git/{,*} rw,
 
   /usr/share/git-core/{,**} r,

apparmor.d/profiles-g-l/iw

@@ -20,6 +20,8 @@ profile iw @{exec_path} {
 
   @{exec_path} mr,
 
+  @{sys}/devices/pci[0-9]*/**/ieee80211/phy[0-9]*/index r,
+
   # file_inherit
   owner /dev/tty[0-9]* rw,