From bf3b8345fccd475b09da20ded1a9be6e32bd731a Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Sun, 14 Sep 2025 16:26:28 +0200
Subject: [PATCH] refractor(abs): move gtk bus interfaces.

---
 .../bus/session/org.gtk.MountOperationHandler      | 14 ++++++++++++++
 .../org.gtk.Private.RemoteVolumeMonitor            |  2 +-
 .../bus/{ => session}/org.gtk.vfs.Daemon           |  6 ++++--
 .../bus/{ => session}/org.gtk.vfs.Metadata         |  6 +++---
 .../bus/session/org.gtk.vfs.MountOperation         |  2 +-
 .../bus/{ => session}/org.gtk.vfs.MountTracker     | 14 ++++++++------
 .../abstractions/bus/session/org.gtk.vfs.Spawner   | 14 ++++++++++++++
 7 files changed, 45 insertions(+), 13 deletions(-)
 create mode 100644 apparmor.d/abstractions/bus/session/org.gtk.MountOperationHandler
 rename apparmor.d/abstractions/bus/{ => session}/org.gtk.Private.RemoteVolumeMonitor (91%)
 rename apparmor.d/abstractions/bus/{ => session}/org.gtk.vfs.Daemon (72%)
 rename apparmor.d/abstractions/bus/{ => session}/org.gtk.vfs.Metadata (80%)
 rename apparmor.d/abstractions/bus/{ => session}/org.gtk.vfs.MountTracker (89%)
 create mode 100644 apparmor.d/abstractions/bus/session/org.gtk.vfs.Spawner

diff --git a/apparmor.d/abstractions/bus/session/org.gtk.MountOperationHandler b/apparmor.d/abstractions/bus/session/org.gtk.MountOperationHandler
new file mode 100644
index 000000000..3fce0d719
--- /dev/null
+++ b/apparmor.d/abstractions/bus/session/org.gtk.MountOperationHandler
@@ -0,0 +1,14 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023-2025 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  abi <abi/4.0>,
+
+  dbus send bus=session path=/org/gtk/MountOperationHandler
+       interface=org.freedesktop.DBus.Properties
+       member=GetAll
+       peer=(name=@{busname}, label=gnome-shell),
+
+  include if exists <abstractions/bus/session/org.gtk.MountOperationHandler.d>
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor b/apparmor.d/abstractions/bus/session/org.gtk.Private.RemoteVolumeMonitor
similarity index 91%
rename from apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor
rename to apparmor.d/abstractions/bus/session/org.gtk.Private.RemoteVolumeMonitor
index 9060c8c15..b8160dcb2 100644
--- a/apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor
+++ b/apparmor.d/abstractions/bus/session/org.gtk.Private.RemoteVolumeMonitor
@@ -19,6 +19,6 @@
        member={VolumeAdded,DriveDisconnected,DriveConnected,DriveChanged}
        peer=(name="@{busname}", label=gvfs-*-volume-monitor),
 
-  include if exists <abstractions/bus/org.gtk.Private.RemoteVolumeMonitor.d>
+  include if exists <abstractions/bus/session/org.gtk.Private.RemoteVolumeMonitor.d>
 
 # vim:syntax=apparmor
diff --git a/apparmor.d/abstractions/bus/org.gtk.vfs.Daemon b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Daemon
similarity index 72%
rename from apparmor.d/abstractions/bus/org.gtk.vfs.Daemon
rename to apparmor.d/abstractions/bus/session/org.gtk.vfs.Daemon
index 93ad35fe5..edf954ac5 100644
--- a/apparmor.d/abstractions/bus/org.gtk.vfs.Daemon
+++ b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Daemon
@@ -1,7 +1,9 @@
 # apparmor.d - Full set of apparmor profiles
-# Copyright (C) 2023-2024 Alexandre Pujol <alexandre@pujol.io>
+# Copyright (C) 2023-2025 Alexandre Pujol <alexandre@pujol.io>
 # SPDX-License-Identifier: GPL-2.0-only
 
+# Each daemon (main and for mounts) implement this.
+
   abi <abi/4.0>,
 
   dbus send bus=session path=/org/gtk/vfs/Daemon
@@ -14,6 +16,6 @@
        member=GetConnection
        peer=(name=@{busname}),
 
-  include if exists <abstractions/bus/org.gtk.vfs.Daemon.d>
+  include if exists <abstractions/bus/session/org.gtk.vfs.Daemon.d>
 
 # vim:syntax=apparmor
diff --git a/apparmor.d/abstractions/bus/org.gtk.vfs.Metadata b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Metadata
similarity index 80%
rename from apparmor.d/abstractions/bus/org.gtk.vfs.Metadata
rename to apparmor.d/abstractions/bus/session/org.gtk.vfs.Metadata
index ce6e60082..9f1a77daf 100644
--- a/apparmor.d/abstractions/bus/org.gtk.vfs.Metadata
+++ b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Metadata
@@ -13,13 +13,13 @@
   dbus send bus=session path=/org/gtk/vfs/metadata
        interface=org.gtk.vfs.Metadata
        member={Set,Move,GetTreeFromDevice,Remove}
-       peer=(name="@{busname}", label=gvfsd-metadata),
+       peer=(name=@{busname}, label=gvfsd-metadata),
 
   dbus receive bus=session path=/org/gtk/vfs/metadata
        interface=org.gtk.vfs.Metadata
        member=AttributeChanged
-       peer=(name="@{busname}", label=gvfsd-metadata),
+       peer=(name=@{busname}, label=gvfsd-metadata),
 
-  include if exists <abstractions/bus/org.gtk.vfs.Metadata.d>
+  include if exists <abstractions/bus/session/org.gtk.vfs.Metadata.d>
 
 # vim:syntax=apparmor
diff --git a/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountOperation b/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountOperation
index ff8c928f8..54dfc837f 100644
--- a/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountOperation
+++ b/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountOperation
@@ -6,7 +6,7 @@
 
  dbus receive bus=session path=/org/gtk/gvfs/mountop/@{int}
        interface=org.gtk.vfs.MountOperation
-       member={AskQuestion,AskPassword}
+       member={AskPassword,AskQuestion}
        peer=(name=@{busname}, label=gvfsd-*),
 
   include if exists <abstractions/bus/session/org.gtk.vfs.MountOperation.d>
diff --git a/apparmor.d/abstractions/bus/org.gtk.vfs.MountTracker b/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountTracker
similarity index 89%
rename from apparmor.d/abstractions/bus/org.gtk.vfs.MountTracker
rename to apparmor.d/abstractions/bus/session/org.gtk.vfs.MountTracker
index c455d4f18..107c3dc13 100644
--- a/apparmor.d/abstractions/bus/org.gtk.vfs.MountTracker
+++ b/apparmor.d/abstractions/bus/session/org.gtk.vfs.MountTracker
@@ -2,12 +2,9 @@
 # Copyright (C) 2023-2024 Alexandre Pujol <alexandre@pujol.io>
 # SPDX-License-Identifier: GPL-2.0-only
 
-  abi <abi/4.0>,
+# The mount tracking interface.
 
-  dbus send bus=session path=/org/gtk/vfs/mounttracker
-       interface=org.gtk.vfs.MountTracker
-       member=ListMountableInfo
-       peer=(name="@{busname}", label=gvfsd),
+  abi <abi/4.0>,
 
   dbus send bus=session path=/org/gtk/vfs/mounttracker
        interface=org.gtk.vfs.MountTracker
@@ -19,11 +16,16 @@
        member=ListMounts2
        peer=(name="@{busname}", label=gvfsd),
 
+  dbus send bus=session path=/org/gtk/vfs/mounttracker
+       interface=org.gtk.vfs.MountTracker
+       member=ListMountableInfo
+       peer=(name="@{busname}", label=gvfsd),
+
   dbus receive bus=session path=/org/gtk/vfs/mounttracker
        interface=org.gtk.vfs.MountTracker
        member={Mounted,Unmounted}
        peer=(name="@{busname}", label=gvfsd),
 
-  include if exists <abstractions/bus/org.gtk.vfs.MountTracker.d>
+  include if exists <abstractions/bus/session/org.gtk.vfs.MountTracker.d>
 
 # vim:syntax=apparmor
diff --git a/apparmor.d/abstractions/bus/session/org.gtk.vfs.Spawner b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Spawner
new file mode 100644
index 000000000..71c0dd157
--- /dev/null
+++ b/apparmor.d/abstractions/bus/session/org.gtk.vfs.Spawner
@@ -0,0 +1,14 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023-2025 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  abi <abi/4.0>,
+
+  dbus send bus=session path=/org/gtk/gvfs/exec_spaw/@{int}
+       interface=org.gtk.vfs.Spawner
+       member=Spawned
+       peer=(name=@{busname}, label=gvfsd),
+
+  include if exists <abstractions/bus/session/org.gtk.vfs.Spawner.d>
+
+# vim:syntax=apparmor