From 4b973554db1950e62b83a8b47a29eee6c9e55070 Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Sun, 10 Dec 2023 14:47:24 +0000 Subject: [PATCH] feat(dbus): add more bus abstraction. --- .../bus/org.freedesktop.Tracker3.Miner.Files | 15 +++++++++++++++ .../abstractions/bus/org.gnome.DisplayManager | 10 ++++++++++ .../bus/org.gnome.Nautilus.FileOperations2 | 10 ++++++++++ .../bus/org.gtk.Private.RemoteVolumeMonitor | 15 +++++++++++++++ 4 files changed, 50 insertions(+) create mode 100644 apparmor.d/abstractions/bus/org.freedesktop.Tracker3.Miner.Files create mode 100644 apparmor.d/abstractions/bus/org.gnome.DisplayManager create mode 100644 apparmor.d/abstractions/bus/org.gnome.Nautilus.FileOperations2 create mode 100644 apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor diff --git a/apparmor.d/abstractions/bus/org.freedesktop.Tracker3.Miner.Files b/apparmor.d/abstractions/bus/org.freedesktop.Tracker3.Miner.Files new file mode 100644 index 00000000..c9686ea9 --- /dev/null +++ b/apparmor.d/abstractions/bus/org.freedesktop.Tracker3.Miner.Files @@ -0,0 +1,15 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + + dbus send bus=session path=/org/freedesktop/Tracker3/Endpoint + interface=org.freedesktop.DBus.Peer + member=Ping + peer=(name=org.freedesktop.Tracker3.Miner.Files, label=tracker-miner), + + dbus send bus=session path=/org/freedesktop/Tracker3/Endpoint + interface=org.freedesktop.Tracker3.Endpoint + member=Query + peer=(name=org.freedesktop.Tracker3.Miner.Files, label=tracker-miner), + + include if exists diff --git a/apparmor.d/abstractions/bus/org.gnome.DisplayManager b/apparmor.d/abstractions/bus/org.gnome.DisplayManager new file mode 100644 index 00000000..b214cfc7 --- /dev/null +++ b/apparmor.d/abstractions/bus/org.gnome.DisplayManager @@ -0,0 +1,10 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + + dbus send bus=system path=/org/gnome/DisplayManager/Manager + interface=org.gnome.DisplayManager.Manager + member=RegisterDisplay + peer=(name=:*, label=gdm), + + include if exists diff --git a/apparmor.d/abstractions/bus/org.gnome.Nautilus.FileOperations2 b/apparmor.d/abstractions/bus/org.gnome.Nautilus.FileOperations2 new file mode 100644 index 00000000..0364ded7 --- /dev/null +++ b/apparmor.d/abstractions/bus/org.gnome.Nautilus.FileOperations2 @@ -0,0 +1,10 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + + dbus send bus=session path=/org/gnome/Nautilus/FileOperations2 + interface=org.freedesktop.DBus.Properties + member=GetAll + peer=(name=:*, label=nautilus), + + include if exists diff --git a/apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor b/apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor new file mode 100644 index 00000000..49af23db --- /dev/null +++ b/apparmor.d/abstractions/bus/org.gtk.Private.RemoteVolumeMonitor @@ -0,0 +1,15 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + + dbus send bus=session path=/org/gtk/Private/RemoteVolumeMonitor + interface=org.gtk.Private.RemoteVolumeMonitor + member={List,IsSupported,VolumeChanged,VolumeMount,MountAdded} + peer=(name=:*, label=gvfs-*-monitor), + + dbus receive bus=session path=/org/gtk/Private/RemoteVolumeMonitor + interface=org.gtk.Private.RemoteVolumeMonitor + member={MountAdded,VolumeChanged} + peer=(name=:*, label=gvfs-*-volume-monitor), + + include if exists