mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-29 22:35:15 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Replace @{HOME}/.config with @{user_config_dirs}

Browse source
This commit is contained in:
ShellCode33 2023-07-26 23:54:20 +02:00
parent fe0238250a
commit 477d3488a9
Failed to generate hash of commit
13 changed files with 26 additions and 26 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
apparmor.d/groups/apps/discord
View file

@ -8,8 +8,8 @@ include <tunables/global>
@{DISCORD_LIBDIR} = /usr/share/discord
@{DISCORD_LIBDIR} += /usr/share/discord-ptb /opt/discord
@{DISCORD_HOMEDIR} = @{HOME}/.config/discord
@{DISCORD_HOMEDIR} += @{HOME}/.config/discordptb
@{DISCORD_HOMEDIR} = @{user_config_dirs}/discord
@{DISCORD_HOMEDIR} += @{user_config_dirs}/discordptb
@{DISCORD_CACHEDIR} = @{HOME}/.cache/discord
@{exec_path} = @{DISCORD_LIBDIR}/Discord{,PTB} @{bin}/discord{,-ptb}

2
apparmor.d/groups/apps/telegram-desktop
View file

@ -77,7 +77,7 @@ profile telegram-desktop @{exec_path} {
/usr/share/hwdata/pnp.ids r,
owner @{HOME}/.config/qt5ct/{,**} r,
owner @{user_config_dirs}/qt5ct/{,**} r,
/usr/share/qt5ct/** r,
# Allowed apps to open

2
apparmor.d/profiles-a-f/amixer
View file

@ -21,7 +21,7 @@ profile amixer @{exec_path} {
owner @{HOME}/.Xauthority r,
owner @{HOME}/.config/pulse/ r,
owner @{user_config_dirs}/pulse/ r,
owner @{PROC}/@{pid}/task/@{tid}/comm rw,

4
apparmor.d/profiles-a-f/deltachat-desktop
View file

@ -44,8 +44,8 @@ profile deltachat-desktop @{exec_path} {
@{DCD_LIBDIR}/resources/app.asar.unpacked/node_modules/**.so.[0-9]* mr,
@{DCD_LIBDIR}/chrome-sandbox rPx,
owner @{HOME}/.config/DeltaChat/ rw,
owner @{HOME}/.config/DeltaChat/** rwk,
owner @{user_config_dirs}/DeltaChat/ rw,
owner @{user_config_dirs}/DeltaChat/** rwk,
owner /tmp/@{hex}/ rw,
owner /tmp/@{hex}/db.sqlite-blobs/ rw,

6
apparmor.d/profiles-a-f/dring
View file

@ -19,9 +19,9 @@ profile dring @{exec_path} {
@{exec_path} mr,
owner @{HOME}/.config/ring/ rw,
owner @{HOME}/.config/jami/dring.yml rw,
owner @{HOME}/.config/jami/dring.yml.bak w,
owner @{user_config_dirs}/ring/ rw,
owner @{user_config_dirs}/jami/dring.yml rw,
owner @{user_config_dirs}/jami/dring.yml.bak w,
owner @{HOME}/.local/share/jami/ r,
@{sys}/class/ r,

2
apparmor.d/profiles-a-f/dunst
View file

@ -16,7 +16,7 @@ profile dunst @{exec_path} {
@{exec_path} mr,
/etc/xdg/dunst/dunstrc r,
owner @{HOME}/.config/dunst/dunstrc r,
owner @{user_config_dirs}/dunst/dunstrc r,
owner @{HOME}/.Xauthority r,

2
apparmor.d/profiles-a-f/fritzing
View file

@ -29,7 +29,7 @@ profile fritzing @{exec_path} {
@{exec_path} mrix,
owner @{user_config_dirs}/Fritzing/ rw,
owner @{user_config_dirs}/Fritzing/** rwkl -> @{HOME}/.config/Fritzing/**,
owner @{user_config_dirs}/Fritzing/** rwkl -> @{user_config_dirs}/Fritzing/**,
owner @{HOME}/@{XDG_DOCUMENTS_DIR}/Fritzing/ rw,
owner @{HOME}/@{XDG_DOCUMENTS_DIR}/Fritzing/** rw,

2
apparmor.d/profiles-g-l/jami-gnome
View file

@ -31,7 +31,7 @@ profile jami-gnome @{exec_path} {
owner @{HOME}/.local/share/jami/ rw,
owner @{HOME}/.local/share/jami/** rwkl -> @{HOME}/.local/share/jami/,
owner @{HOME}/.config/autostart/jami-gnome.desktop w,
owner @{user_config_dirs}/autostart/jami-gnome.desktop w,
owner @{HOME}/.local/share/ r,
owner @{HOME}/.local/share/webkitgtk/deviceidhashsalts/1/ r,

6
apparmor.d/profiles-m-r/merkaartor
View file

@ -33,8 +33,8 @@ profile merkaartor @{exec_path} {
/usr/share/merkaartor/{,**} r,
owner @{HOME}/.config/Merkaartor/ rw,
owner @{HOME}/.config/Merkaartor/* rwkl -> @{HOME}/.config/Merkaartor/,
owner @{user_config_dirs}/Merkaartor/ rw,
owner @{user_config_dirs}/Merkaartor/* rwkl -> @{user_config_dirs}/Merkaartor/,
owner @{HOME}/.merkaartor/ rw,
owner @{HOME}/.merkaartor/* rw,
@ -45,7 +45,7 @@ profile merkaartor @{exec_path} {
/etc/machine-id r,
# To configure Qt5 settings (theme, font, icons, etc.) under DE/WM without Qt integration
owner @{HOME}/.config/qt5ct/{,**} r,
owner @{user_config_dirs}/qt5ct/{,**} r,
/usr/share/qt5ct/** r,
/usr/share/hwdata/pnp.ids r,

6
apparmor.d/profiles-m-r/pulseeffects
View file

@ -24,10 +24,10 @@ profile pulseeffects @{exec_path} {
/etc/pipewire/pipewire.conf r,
/etc/pipewire/client.conf r,
owner @{HOME}/.config/PulseEffects/ rw,
owner @{HOME}/.config/PulseEffects/** rw,
owner @{user_config_dirs}/PulseEffects/ rw,
owner @{user_config_dirs}/PulseEffects/** rw,
owner @{HOME}/.config/autostart/pulseeffects-service.desktop w,
owner @{user_config_dirs}/autostart/pulseeffects-service.desktop w,
owner @{PROC}/@{pid}/cmdline r,
owner @{PROC}/@{pid}/fd/ r,

2
apparmor.d/profiles-m-r/qtox
View file

@ -41,7 +41,7 @@ profile qtox @{exec_path} {
owner @{user_cache_dirs}/qTox/qtox.log rw,
owner @{user_config_dirs}/tox/ rw,
owner @{user_config_dirs}/tox/** rwkl -> @{HOME}/.config/tox/**,
owner @{user_config_dirs}/tox/** rwkl -> @{user_config_dirs}/tox/**,
owner @{user_config_dirs}/autostart/qTox*.desktop rw,

6
apparmor.d/profiles-s-z/transmission-qt
View file

@ -37,8 +37,8 @@ profile transmission-qt @{exec_path} {
owner @{user_torrents_dirs}/ r,
owner @{user_torrents_dirs}/** rw,
owner @{HOME}/.config/transmission/ rw,
owner @{HOME}/.config/transmission/** rwk,
owner @{user_config_dirs}/transmission/ rw,
owner @{user_config_dirs}/transmission/** rwk,
owner @{HOME}/.cache/ rw,
owner @{HOME}/.cache/transmission/ rw,
@ -53,7 +53,7 @@ profile transmission-qt @{exec_path} {
@{PROC}/sys/kernel/random/uuid r,
# To configure Qt5 settings (theme, font, icons, etc.) under DE/WM without Qt integration
owner @{HOME}/.config/qt5ct/{,**} r,
owner @{user_config_dirs}/qt5ct/{,**} r,
/usr/share/qt5ct/** r,
/usr/share/hwdata/pnp.ids r,

8
dists/ubuntu/abstractions/trash
View file

@ -2,10 +2,10 @@ abi <abi/3.0>,
# requires <tunables/home>
owner @{HOME}/.config/trashrc rw,
owner @{HOME}/.config/trashrc.lock rwk,
owner @{HOME}/.config/#[0-9]*[0-9] rwk,
owner @{HOME}/.config/trashrc.* rwl -> @{HOME}/.config/#[0-9]*[0-9],
owner @{user_config_dirs}/trashrc rw,
owner @{user_config_dirs}/trashrc.lock rwk,
owner @{user_config_dirs}/#[0-9]*[0-9] rwk,
owner @{user_config_dirs}/trashrc.* rwl -> @{user_config_dirs}/#[0-9]*[0-9],
owner @{run}/user/@{uid}/#[0-9]*[0-9] rw,
owner @{run}/user/@{uid}/trash.so*.[0-9].slave-socket rwl -> @{run}/user/@{uid}/#[0-9]*[0-9],