From 4c7ebb3a39d5baf0151cd9a42c08de23b1783321 Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Sat, 21 May 2022 16:52:59 +0100 Subject: [PATCH] feat(profile): add gnome-extension-ding When it is installed as a system extension only. --- apparmor.d/groups/gnome/gnome-extension-ding | 47 ++++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 apparmor.d/groups/gnome/gnome-extension-ding diff --git a/apparmor.d/groups/gnome/gnome-extension-ding b/apparmor.d/groups/gnome/gnome-extension-ding new file mode 100644 index 00000000..88bcdf23 --- /dev/null +++ b/apparmor.d/groups/gnome/gnome-extension-ding @@ -0,0 +1,47 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2022 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + +abi , + +include + +@{exec_path} = /usr/share/gnome-shell/extensions/ding@rastersoft.com/ding.js +profile gnome-extension-ding @{exec_path} { + include + include + include + include + + @{exec_path} mr, + + /{usr/,}bin/env rix, + /{usr/,}bin/gjs-console rix, + /{usr/,}bin/nautilus rPx, + + /usr/share/glib-2.0/schemas/gschemas.compiled r, + /usr/share/gnome-shell/extensions/ding@rastersoft.com/* r, + /usr/share/themes/{,**} r, + /usr/share/thumbnailers/*.thumbnailer r, + /usr/share/X11/{,**} r, + + /var/lib/snapd/desktop/icons/{,**} r, + + owner @{HOME}/@{XDG_TEMPLATES_DIR}/ r, + owner @{HOME}/@{XDG_DESKTOP_DIR}/ r, + + owner @{user_share_dirs}/nautilus/scripts/ r, + + owner @{user_share_dirs}/gvfs-metadata/home r, + owner @{user_share_dirs}/gvfs-metadata/home-*.log r, + + owner @{run}/user/@{uid}/bus rw, + owner @{run}/user/@{uid}/dconf/ rw, + owner @{run}/user/@{uid}/dconf/user rw, + + owner @{PROC}/@{pid}/mounts r, + owner @{PROC}/@{pid}/stat r, + owner @{PROC}/@{pid}/task/@{tid}/stat r, + + include if exists +} \ No newline at end of file