From 94f18ed6c113a6910c4c87882132726922ba3c96 Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Wed, 29 Nov 2023 22:09:05 +0000 Subject: [PATCH] feat(abs): add new atspi dbus abstraction. --- apparmor.d/abstractions/bus/atspi | 47 +++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 apparmor.d/abstractions/bus/atspi diff --git a/apparmor.d/abstractions/bus/atspi b/apparmor.d/abstractions/bus/atspi new file mode 100644 index 000000000..fbcbed167 --- /dev/null +++ b/apparmor.d/abstractions/bus/atspi @@ -0,0 +1,47 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + + # Accessibility bus + + dbus receive bus=accessibility path=/org/a11y/atspi/registry + interface=org.a11y.atspi.Registry + member=EventListenerDeregistered + peer=(name=:*, label=at-spi2-registryd), + + dbus send bus=accessibility path=/org/a11y/atspi/registry + interface=org.a11y.atspi.Registry + member=GetRegisteredEvents + peer=(name=org.a11y.atspi.Registry, label=at-spi2-registryd), + + dbus send bus=accessibility path=/org/a11y/atspi/registry/deviceeventcontroller + interface=org.a11y.atspi.DeviceEventController + member={GetKeystrokeListeners,GetDeviceEventListeners} + peer=(name=org.a11y.atspi.Registry, label=at-spi2-registryd), + + dbus receive bus=accessibility path=/org/a11y/atspi/accessible/root + interface=org.freedesktop.DBus.Properties + member=Set + peer=(name=:*, label=at-spi2-registryd), + + dbus send bus=accessibility path=/org/a11y/atspi/accessible/root + interface=org.a11y.atspi.Socket + member=Embed + peer=(name=org.a11y.atspi.Registry, label=at-spi2-registryd), + + + # Session bus + + dbus send bus=session path=/org/a11y/bus + interface=org.a11y.Bus + member=GetAddress + peer=(name=org.a11y.Bus, label="{at-spi-bus-launcher,dbus-daemon}"), + + include if exists +# include + +# From dbus-gtk: +# dbus (send) bus=session path=/org/a11y/bus +# interface=org.freedesktop.DBus.Properties +# member=Get +# peer=(name=org.a11y.Bus),