From 1424fb5493381fa864e4696eab6041558667f53e Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Thu, 20 Jul 2023 21:09:18 +0100
Subject: [PATCH] feat(profiles): add iio-sensor-proxy

---
 .../groups/freedesktop/iio-sensor-proxy       | 33 +++++++++++++++++++
 dists/flags/main.flags                        |  1 +
 2 files changed, 34 insertions(+)
 create mode 100644 apparmor.d/groups/freedesktop/iio-sensor-proxy

diff --git a/apparmor.d/groups/freedesktop/iio-sensor-proxy b/apparmor.d/groups/freedesktop/iio-sensor-proxy
new file mode 100644
index 00000000..0840a0d6
--- /dev/null
+++ b/apparmor.d/groups/freedesktop/iio-sensor-proxy
@@ -0,0 +1,33 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/iio-sensor-proxy
+profile iio-sensor-proxy @{exec_path} {
+  include <abstractions/base>
+
+  network netlink raw,
+
+  @{exec_path} mr,
+
+  @{run}/udev/data/+platform* r,
+  @{run}/udev/data/+input* r,
+  @{run}/udev/data/c13:[0-9]*  r,       # For /dev/input/*
+  @{run}/udev/data/c3[0-9]*:[0-9]* r,   # For dynamic assignment range 384 to 511
+  @{run}/udev/data/c4[0-9]*:[0-9]* r,
+  @{run}/udev/data/c5[0-9]*:[0-9]* r,
+
+  @{sys}/bus/ r,
+  @{sys}/bus/iio/devices/ r,
+  @{sys}/class/ r,
+  @{sys}/devices/**/uevent r,
+  @{sys}/devices/pci[0-9]*/**/iio:*/** rw,
+
+  /dev/iio:* r,
+
+  include if exists <local/iio-sensor-proxy>
+}
\ No newline at end of file
diff --git a/dists/flags/main.flags b/dists/flags/main.flags
index d753505d..88c313b9 100644
--- a/dists/flags/main.flags
+++ b/dists/flags/main.flags
@@ -163,6 +163,7 @@ gvfsd-dav complain
 hostnamectl complain
 ibus-engine-table complain
 ibus-memconf complain
+iio-sensor-proxy complain
 im-launch complain
 install-info complain
 irqbalance complain