feat(profiles): general update.

apparmor.d/groups/freedesktop/xdg-user-dirs-update

@@ -15,6 +15,7 @@ profile xdg-user-dirs-update @{exec_path} {
   /etc/xdg/user-dirs.conf r,
   /etc/xdg/user-dirs.defaults r,
 
+  /var/lib/gdm{3,}/.config/ rw,
   /var/lib/gdm{3,}/.config/user-dirs.dirs{,*} rw,
   /var/lib/gdm{3,}/.config/user-dirs.locale rw,
   /var/lib/gdm{3,}/@{XDG_DESKTOP_DIR}/ rw,
@@ -26,6 +27,7 @@ profile xdg-user-dirs-update @{exec_path} {
   /var/lib/gdm{3,}/@{XDG_TEMPLATES_DIR}/ rw,
   /var/lib/gdm{3,}/@{XDG_VIDEOS_DIR}/ rw,
 
+  /var/lib/sddm/.config/ rw,
   /var/lib/sddm/.config/user-dirs.dirs{,*} rw,
   /var/lib/sddm/.config/user-dirs.locale rw,
   /var/lib/sddm/@{XDG_DESKTOP_DIR}/ rw,
@@ -48,6 +50,7 @@ profile xdg-user-dirs-update @{exec_path} {
   owner @{HOME}/@{XDG_VIDEOS_DIR}/ w,
 
   owner @{user_config_dirs}/user-dirs.dirs r,
+  owner @{user_config_dirs}/user-dirs.dirs?????? rw,
 
   include if exists <local/xdg-user-dirs-update>
 }

apparmor.d/groups/gnome/gsd-housekeeping

@@ -74,6 +74,7 @@ profile gsd-housekeeping @{exec_path} flags=(attach_disconnected) {
   /var/lib/gdm{3,}/.config/dconf/user r,
   /var/lib/gdm{3,}/greeter-dconf-defaults r,
 
+  owner @{PROC}/@{pids}/cgroup r,
   owner @{PROC}/@{pids}/mountinfo r,
 
   @{run}/mount/utab r,

apparmor.d/groups/systemd/systemd-logind

@@ -67,8 +67,9 @@ profile systemd-logind @{exec_path} flags=(attach_disconnected,complain) {
   /etc/systemd/sleep.conf r,
   /etc/systemd/logind.conf.d/{,**} r,
 
-  /swapfile r,
   /boot/{,**} r,
+  /swap/swapfile r,
+  /swapfile r,
 
   /var/lib/systemd/linger/ r,
 

apparmor.d/groups/systemd/systemd-machine-id-setup

@@ -13,10 +13,16 @@ profile systemd-machine-id-setup @{exec_path} {
 
   capability dac_override,
 
+  ptrace (read),
+
   @{exec_path} mr,
 
   /etc/machine-id rw,
+  /etc/ r,
+  /var/ r,
 
+        @{PROC}/1/environ r,
+        @{PROC}/sys/kernel/osrelease r,
   owner @{PROC}/@{pid}/stat r,
 
   include if exists <local/systemd-machine-id-setup>