From 952658c20f59811afbb5196d4bf2b07de4a29478 Mon Sep 17 00:00:00 2001 From: Besanon Date: Thu, 6 Jun 2024 14:49:32 +0200 Subject: [PATCH] Update bleachbit --- apparmor.d/groups/lxqt/bleachbit | 40 +++++++++++++++++++------------- 1 file changed, 24 insertions(+), 16 deletions(-) diff --git a/apparmor.d/groups/lxqt/bleachbit b/apparmor.d/groups/lxqt/bleachbit index 647b51aa2..035387f4c 100644 --- a/apparmor.d/groups/lxqt/bleachbit +++ b/apparmor.d/groups/lxqt/bleachbit @@ -3,28 +3,32 @@ # Copyright (C) 2024 Besanon # SPDX-License-Identifier: GPL-2.0-only -#include +abi , + +include @{exec_path} = @{bin}/bleachbit profile bleachbit @{exec_path} { - #include - #include - #include - #include - #include - #include - #include - #include + include + include + include + include + include + include + include + include + include ptrace (read), @{exec_path} mr, + @{bin}/loginctl rpx, + /@{HOME}/** rwlk -> /@{HOME}/**, /@{HOME}/** rw, /usr/share/ rw, /usr/share/** rw, - /usr/share/libfm-qt/translations/libfm-qt_de.qm r, /usr/share/libdrm/amdgpu.ids r, @@ -32,14 +36,12 @@ profile bleachbit @{exec_path} { /etc/fstab r, /etc/host.conf r, /etc/gai.conf r, - + /etc/pulse/client.conf r, /var/cache/fontconfig/** rw, owner /var/tmp/etilqs* rwk, /opt/{,**} r, - owner @{PROC}/@{pid}/mountinfo r, - owner @{PROC}/@{pid}/mounts r, owner @{HOME}/.inputrc r, owner @{HOME}/.bashrc r, owner @{HOME}/.bash_profile r, @@ -47,12 +49,18 @@ profile bleachbit @{exec_path} { owner @{user_config_dirs}/QtProject.conf r, + owner @{run}/user/@{uid}/pulse/ rw, + owner /tmp/@{int} r, - @{sys}/devices/@{pci_bus}/{,**} r, - @{sys}/devices/@{pci_bus}/**/**/** r, - + @{PROC}/ r, @{PROC}/sys/kernel/random/boot_id r, + owner @{PROC}/@{pid}/mounts r, + owner @{PROC}/@{pid}/mountinfo r, + /dev/shm/ r, /dev/tty rw, + + include if exists + }