Tunables polishing (#281)

* adjust xorg display number * remove wildcard from python version * python wildcard #2 * unconventional tails * Delete apparmor.d/groups/apps/android-studio --------- Co-authored-by: nobody43 <nobody43@users.noreply.github.com>
2024-01-25 12:44:47 +00:00 · 2024-01-25 12:44:47 +00:00 · b376e9fade
commit b376e9fade
parent 765fa1bdb8
69 changed files with 88 additions and 88 deletions
--- a/apparmor.d/profiles-s-z/speedtest
+++ b/apparmor.d/profiles-s-z/speedtest
@ -20,7 +20,7 @@ profile speedtest @{exec_path} {
  network netlink raw,

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/file  rix,
--- a/apparmor.d/profiles-s-z/steam-game
+++ b/apparmor.d/profiles-s-z/steam-game
@ -66,7 +66,7 @@ profile steam-game @{exec_path} flags=(attach_disconnected) {
  @{bin}/getopt                              rix,
  @{bin}/gzip                                rix,
  @{bin}/localedef                           rix,
-  @{bin}/python3.[0-9]*                      rix,
+  @{bin}/python3.@{int}                      rix,
  @{bin}/readlink                            rix,
  @{bin}/steam-runtime-launcher-interface-*  rix,
  @{bin}/steam-runtime-system-info           rix,
--- a/apparmor.d/profiles-s-z/system-config-printer
+++ b/apparmor.d/profiles-s-z/system-config-printer
@ -32,7 +32,7 @@ profile system-config-printer @{exec_path} flags=(complain) {
  @{exec_path} mrix,

  @{bin}/{,ba,da}sh           rix,
-  @{bin}/python3.[0-9]*         r,
+  @{bin}/python3.@{int}         r,
  @{lib}/cups/*/*            rPUx,
  /usr/share/hplip/query.py  rPUx,

--- a/apparmor.d/profiles-s-z/system-config-printer-applet
+++ b/apparmor.d/profiles-s-z/system-config-printer-applet
@ -19,7 +19,7 @@ profile system-config-printer-applet @{exec_path} {
  @{exec_path} mrix,

  @{bin}/{,ba,da}sh     rix,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  /usr/share/system-config-printer/{,**} r,

--- a/apparmor.d/profiles-s-z/terminator
+++ b/apparmor.d/profiles-s-z/terminator
@ -26,7 +26,7 @@ profile terminator @{exec_path} flags=(attach_disconnected) {
  @{exec_path} mr,

  @{bin}/ r,
-  @{bin}/python3.[0-9]* rix,
+  @{bin}/python3.@{int} rix,

  # The shell is not confined on purpose.
  @{bin}/{,b,d,rb}ash         rUx,
--- a/apparmor.d/profiles-s-z/udiskie
+++ b/apparmor.d/profiles-s-z/udiskie
@ -22,7 +22,7 @@ profile udiskie @{exec_path} {
  include <abstractions/dri-enumerate>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/xdg-open rCx -> open,
--- a/apparmor.d/profiles-s-z/udiskie-info
+++ b/apparmor.d/profiles-s-z/udiskie-info
@ -12,7 +12,7 @@ profile udiskie-info @{exec_path} {
  include <abstractions/python>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  /usr/bin/ r,

--- a/apparmor.d/profiles-s-z/udiskie-mount
+++ b/apparmor.d/profiles-s-z/udiskie-mount
@ -12,7 +12,7 @@ profile udiskie-mount @{exec_path} {
  include <abstractions/python>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  /usr/bin/ r,

--- a/apparmor.d/profiles-s-z/udiskie-umount
+++ b/apparmor.d/profiles-s-z/udiskie-umount
@ -12,7 +12,7 @@ profile udiskie-umount @{exec_path} {
  include <abstractions/python>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  /usr/bin/ r,

--- a/apparmor.d/profiles-s-z/update-command-not-found
+++ b/apparmor.d/profiles-s-z/update-command-not-found
@ -20,7 +20,7 @@ profile update-command-not-found @{exec_path} {

  @{exec_path} r,

-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,
  @{lib}/ r,

  @{bin}/dpkg            rPx -> child-dpkg,
--- a/apparmor.d/profiles-s-z/vcsi
+++ b/apparmor.d/profiles-s-z/vcsi
@ -15,7 +15,7 @@ profile vcsi @{exec_path} {
  include <abstractions/python>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/ffmpeg  rPx,
--- a/apparmor.d/profiles-s-z/vidcutter
+++ b/apparmor.d/profiles-s-z/vidcutter
@ -29,7 +29,7 @@ profile vidcutter @{exec_path} {
  include <abstractions/X>

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/ldconfig  rix,
--- a/apparmor.d/profiles-s-z/virt-manager
+++ b/apparmor.d/profiles-s-z/virt-manager
@ -32,8 +32,8 @@ profile virt-manager @{exec_path} flags=(attach_disconnected) {
  @{exec_path} rix,

  @{bin}/{,ba,da}sh rix,
-  @{bin}/python3.[0-9]* r,
-  @{lib}/python3.[0-9]*/site-packages/__pycache__/guestfs.cpython-[0-9]*.pyc.[0-9]* w,
+  @{bin}/python3.@{int} r,
+  @{lib}/python3.@{int}/site-packages/__pycache__/guestfs.cpython-[0-9]*.pyc.[0-9]* w,

  @{bin}/ r,
  @{bin}/env       rix,
--- a/apparmor.d/profiles-s-z/youtube-dl
+++ b/apparmor.d/profiles-s-z/youtube-dl
@ -31,7 +31,7 @@ profile youtube-dl @{exec_path} {
  signal (receive) set=(term, kill),

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ffmpeg  rPx,
  @{bin}/ffprobe rPx,
--- a/apparmor.d/profiles-s-z/yt-dlp
+++ b/apparmor.d/profiles-s-z/yt-dlp
@ -25,7 +25,7 @@ profile yt-dlp @{exec_path} {
  network netlink raw,

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/file    rix,
--- a/apparmor.d/profiles-s-z/ytdl
+++ b/apparmor.d/profiles-s-z/ytdl
@ -25,7 +25,7 @@ profile ytdl @{exec_path} {
  signal (receive) set=(term, kill),

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/ r,
  @{bin}/ldconfig  rix,
--- a/apparmor.d/profiles-s-z/zenmap
+++ b/apparmor.d/profiles-s-z/zenmap
@ -19,7 +19,7 @@ profile zenmap @{exec_path} {
  signal (send) set=(term, kill) peer=nmap,

  @{exec_path} r,
-  @{bin}/python3.[0-9]* r,
+  @{bin}/python3.@{int} r,

  @{bin}/nmap rPx,