feat(profile): start using new abstraction.

apparmor.d/groups/gnome/epiphany-search-provider

@@ -10,17 +10,13 @@ include <tunables/global>
 profile epiphany-search-provider @{exec_path} {
   include <abstractions/base>
   include <abstractions/dconf-write>
-  include <abstractions/dri-common>
-  include <abstractions/dri-enumerate>
   include <abstractions/enchant>
   include <abstractions/fonts>
   include <abstractions/gnome-strict>
-  include <abstractions/mesa>
+  include <abstractions/graphics>
   include <abstractions/nameservice-strict>
-  include <abstractions/nvidia>
   include <abstractions/p11-kit>
   include <abstractions/ssl_certs>
-  include <abstractions/vulkan>
   include <abstractions/X-strict>
 
   network inet dgram,
@@ -49,7 +45,6 @@ profile epiphany-search-provider @{exec_path} {
         @{PROC}/zoneinfo r,
   owner @{PROC}/@{pid}/cgroup r,
   owner @{PROC}/@{pid}/cmdline r,
-  owner @{PROC}/@{pid}/comm r,
 
   deny @{user_share_dirs}/gvfs-metadata/* r,
 

apparmor.d/groups/gnome/evolution-alarm-notify

@@ -16,7 +16,7 @@ profile evolution-alarm-notify @{exec_path} {
   include <abstractions/fontconfig-cache-read>
   include <abstractions/gnome-strict>
   include <abstractions/nameservice-strict>
-  include <abstractions/opencl>
+  include <abstractions/graphics>
   include <abstractions/openssl>
 
   network netlink raw,

apparmor.d/groups/gnome/gjs-console

@@ -19,14 +19,10 @@ profile gjs-console @{exec_path} flags=(attach_disconnected) {
   include <abstractions/bus/org.freedesktop.portal.Desktop>
   include <abstractions/bus/org.gnome.Shell.Introspect>
   include <abstractions/dconf-write>
-  include <abstractions/dri-common>
-  include <abstractions/dri-enumerate>
   include <abstractions/gnome-strict>
-  include <abstractions/mesa>
+  include <abstractions/graphics>
   include <abstractions/nameservice-strict>
-  include <abstractions/opencl-nvidia>
   include <abstractions/openssl>
-  include <abstractions/vulkan>
 
   network netlink raw,
 
@@ -59,7 +55,6 @@ profile gjs-console @{exec_path} flags=(attach_disconnected) {
   /etc/openni2/OpenNI.ini r,
 
   /usr/share/dconf/profile/gdm r,
-  /usr/share/egl/{,**} r,
   /usr/share/gdm/greeter-dconf-defaults r,
   /usr/share/gnome-shell/{,**} r,
   /usr/share/icu/@{int}.@{int}/*.dat r,

apparmor.d/groups/gnome/gnome-calculator-search-provider

@@ -11,11 +11,8 @@ profile gnome-calculator-search-provider @{exec_path} {
   include <abstractions/base>
   include <abstractions/bus-session>
   include <abstractions/dconf-write>
-  include <abstractions/dri-common>
-  include <abstractions/dri-enumerate>
   include <abstractions/gnome-strict>
-  include <abstractions/mesa>
-  include <abstractions/vulkan>
+  include <abstractions/graphics>
 
   signal (send) set=kill peer=unconfined,
 
@@ -28,11 +25,8 @@ profile gnome-calculator-search-provider @{exec_path} {
 
   @{bin}/* rPUx,
 
-  /usr/share/nvidia/nvidia-application-profiles-*-rc r,
-
   owner @{PROC}/@{pid}/fd/ r,
   owner @{PROC}/@{pid}/cmdline r,
-  owner @{PROC}/@{pid}/comm r,
 
   include if exists <local/gnome-calculator-search-provider>
 }

apparmor.d/groups/gnome/gnome-calendar

@@ -19,13 +19,11 @@ profile gnome-calendar @{exec_path} {
   include <abstractions/bus/org.freedesktop.timedate1>
   include <abstractions/dconf-write>
   include <abstractions/gnome-strict>
-  include <abstractions/mesa>
+  include <abstractions/graphics>
   include <abstractions/nameservice-strict>
-  include <abstractions/opencl>
   include <abstractions/openssl>
   include <abstractions/p11-kit>
   include <abstractions/ssl_certs>
-  include <abstractions/vulkan>
 
   network netlink raw,
 
@@ -42,7 +40,6 @@ profile gnome-calendar @{exec_path} {
 
   @{exec_path} mr,
 
-  /usr/share/egl/{,**} r,
   /usr/share/evolution-data-server/{,**} r,
   /usr/share/libgweather/Locations.xml r,