feat(profile): general update.
This commit is contained in:
Alexandre Pujol
parent
7c5ba70b40
commit
f9a93ab67e
18 changed files with 51 additions and 75 deletions
|
|
@ -34,6 +34,8 @@ profile scrcpy @{exec_path} {
|
|||
owner @{user_config_dirs}/ibus/bus/ r,
|
||||
owner @{user_config_dirs}/ibus/bus/@{hex32}-unix-{,wayland-}@{int} r,
|
||||
|
||||
owner @{PROC}/@{pid}/cmdline r,
|
||||
|
||||
deny @{user_share_dirs}/gvfs-metadata/* r,
|
||||
|
||||
include if exists <local/scrcpy>
|
||||
|
|
|
|||
|
|
@ -12,22 +12,13 @@ profile smplayer @{exec_path} {
|
|||
include <abstractions/base>
|
||||
include <abstractions/audio-client>
|
||||
include <abstractions/consoles>
|
||||
include <abstractions/dri-enumerate>
|
||||
include <abstractions/graphics>
|
||||
include <abstractions/fontconfig-cache-read>
|
||||
include <abstractions/fonts>
|
||||
include <abstractions/freedesktop.org>
|
||||
include <abstractions/gtk>
|
||||
include <abstractions/mesa>
|
||||
include <abstractions/desktop>
|
||||
include <abstractions/nameservice-strict>
|
||||
include <abstractions/qt5>
|
||||
include <abstractions/qt5-compose-cache-write>
|
||||
include <abstractions/qt5-settings-write>
|
||||
include <abstractions/user-download-strict>
|
||||
include <abstractions/wayland>
|
||||
include <abstractions/X>
|
||||
|
||||
# Needed for hardware decoding
|
||||
##include <abstractions/nvidia>
|
||||
|
||||
signal (send) set=(term, kill),
|
||||
signal (receive) set=(term, kill),
|
||||
|
|
|
|||
|
|
@ -84,14 +84,14 @@ profile steam @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
|||
|
||||
@{lib_dirs}/** mr,
|
||||
@{lib_dirs}/*driverquery rix,
|
||||
@{lib_dirs}/fossilize_replay rpx,
|
||||
@{lib_dirs}/gameoverlayui rpx,
|
||||
@{lib_dirs}/fossilize_replay rpx, # steam-fossilize
|
||||
@{lib_dirs}/gameoverlayui rpx, # steam-gameoverlayui
|
||||
@{lib_dirs}/reaper rpx, # steam-runtime
|
||||
@{lib_dirs}/steam* rix,
|
||||
|
||||
@{app_dirs}/@{runtime}/*entry-point rpx -> steam-runtime,
|
||||
|
||||
@{share_dirs}/linux{32,64}/steamerrorreporter rpx,
|
||||
@{share_dirs}/linux{32,64}/steamerrorreporter rpx, # steamerrorreporter
|
||||
|
||||
@{runtime_dirs}/*entry-point rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/srt-logger rix,
|
||||
|
|
@ -101,7 +101,7 @@ profile steam @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
|||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-input-monitor rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-launch-* rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-launcher-interface-@{int} rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-launcher-service rpx,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-launcher-service rpx, # steam-launcher
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-libcurl-* rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-steam-remote rix,
|
||||
@{runtime_dirs}/@{arch}/@{bin}/steam-runtime-supervisor rix,
|
||||
|
|
@ -125,14 +125,10 @@ profile steam @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
|||
/var/lib/dbus/machine-id r,
|
||||
|
||||
/ r,
|
||||
|
||||
@{bin}/ r,
|
||||
@{lib}/ r,
|
||||
|
||||
/etc/ r,
|
||||
|
||||
/home/ r,
|
||||
|
||||
/usr/ r,
|
||||
/usr/local/ r,
|
||||
/usr/local/lib/ r,
|
||||
|
|
@ -350,6 +346,7 @@ profile steam @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
|||
@{sys}/class/*/ r,
|
||||
@{sys}/devices/**/report_descriptor r,
|
||||
@{sys}/devices/**/uevent r,
|
||||
@{sys}/devices/@{pci}/usb@{int}/**/{idVendor,idProduct,interface} r,
|
||||
@{sys}/devices/system/cpu/kernel_max r,
|
||||
@{sys}/devices/virtual/tty/tty@{int}/active r,
|
||||
|
||||
|
|
@ -365,6 +362,7 @@ profile steam @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
|||
owner @{PROC}/@{pid}/task/@{tid}/comm r,
|
||||
owner @{PROC}/@{pid}/task/@{tid}/status r,
|
||||
|
||||
/dev/ r,
|
||||
/dev/hidraw@{int} rw,
|
||||
/dev/tty rw,
|
||||
|
||||
|
|
|
|||
|
|
@ -19,20 +19,20 @@ profile steam-game-native @{exec_path} flags=(attach_disconnected) {
|
|||
include <abstractions/common/steam-game>
|
||||
|
||||
network inet dgram,
|
||||
network inet6 dgram,
|
||||
network inet stream,
|
||||
network inet6 dgram,
|
||||
network inet6 stream,
|
||||
network netlink raw,
|
||||
network unix stream,
|
||||
|
||||
signal receive peer=steam,
|
||||
|
||||
@{exec_path} rmix,
|
||||
@{exec_path} mrix,
|
||||
|
||||
@{sh_path} rix,
|
||||
@{sh_path} rix,
|
||||
|
||||
@{app_dirs}/** mr,
|
||||
@{lib_dirs}/** mr,
|
||||
@{app_dirs}/** mr,
|
||||
@{lib_dirs}/** mr,
|
||||
|
||||
include if exists <local/steam-game-native>
|
||||
}
|
||||
|
|
|
|||
|
|
@ -22,6 +22,8 @@ profile steam-runtime @{exec_path} flags=(attach_disconnected) {
|
|||
include <abstractions/wayland>
|
||||
include <abstractions/X-strict>
|
||||
|
||||
network inet stream,
|
||||
network inet6 stream,
|
||||
network unix stream,
|
||||
|
||||
@{exec_path} mr,
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue