From 640cf9e1d3fbe0dfdebff3b7a11be7f5766a41f5 Mon Sep 17 00:00:00 2001
From: Jeroen Rijken <jeroen.rijken@xs4all.nl>
Date: Sun, 18 Feb 2024 17:29:13 +0100
Subject: [PATCH] Dolphin updates

Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
---
 .../abstractions/bus/org.freedesktop.UDisks2  | 25 +++++++++++++++++++
 apparmor.d/groups/kde/dolphin                 | 10 +++++++-
 2 files changed, 34 insertions(+), 1 deletion(-)

diff --git a/apparmor.d/abstractions/bus/org.freedesktop.UDisks2 b/apparmor.d/abstractions/bus/org.freedesktop.UDisks2
index 87e334e1..8465f64c 100644
--- a/apparmor.d/abstractions/bus/org.freedesktop.UDisks2
+++ b/apparmor.d/abstractions/bus/org.freedesktop.UDisks2
@@ -12,6 +12,31 @@
        member=GetAll
        peer=(name=:*, label=udisksd),
 
+  dbus send bus=system path=/
+       interface=org.freedesktop.DBus.Introspectable
+       member=Introspect
+       peer=(name=:*, label=udisksd),
+
+  dbus send bus=system path=/
+       interface=org.freedesktop.DBus.Properties
+       member=Get
+       peer=(name=:*, label=udisksd),
+
+  dbus send bus=system path=/org/freedesktop/UDisks2/drives{,/*}
+       interface=org.freedesktop.DBus.Introspectable
+       member=Introspect
+       peer=(name=:*, label=udisksd),
+
+  dbus send bus=system path=/org/freedesktop/UDisks2/drives{,/*}
+       interface=org.freedesktop.DBus.Properties
+       member={Get,GetAll}
+       peer=(name=:*, label=udisksd),
+
+  dbus send bus=system path=/org/freedesktop/UDisks2/block_devices/*
+       interface=org.freedesktop.DBus.Introspectable
+       member=Introspect
+       peer=(name=:*, label=udisksd),
+
   dbus receive bus=system path=/org/freedesktop/UDisks2
        interface=org.freedesktop.DBus.ObjectManager
        member=InterfacesAdded
diff --git a/apparmor.d/groups/kde/dolphin b/apparmor.d/groups/kde/dolphin
index 1fdd4b30..3fd75c45 100644
--- a/apparmor.d/groups/kde/dolphin
+++ b/apparmor.d/groups/kde/dolphin
@@ -10,6 +10,9 @@ include <tunables/global>
 profile dolphin @{exec_path} {
   include <abstractions/base>
   include <abstractions/app-launcher-user>
+  include <abstractions/bus-session>
+  include <abstractions/bus-system>
+  include <abstractions/bus/org.freedesktop.UDisks2>
   include <abstractions/deny-sensitive-home>
   include <abstractions/devices-usb>
   include <abstractions/graphics>
@@ -36,12 +39,15 @@ profile dolphin @{exec_path} {
   /etc/xdg/arkrc r,
   /etc/xdg/dolphinrc r,
   /etc/xdg/menus/ r,
+  /etc/xdg/menus/applications-merged/ r,
   /etc/xdg/ui/ui_standards.rc r,
 
   # Full access to user's data
   / r,
   owner @{HOME}/{,**} rw,
 
+  /var/lib/flatpak/exports/share/mime/ r,
+
   # Silence non user's data
   deny /boot/{,**} r,
   deny /opt/{,**} r,
@@ -74,7 +80,9 @@ profile dolphin @{exec_path} {
   owner @{PROC}/@{pid}/mountinfo r,
   owner @{PROC}/@{pid}/mounts r,
 
+  @{sys}/devices/virtual/block/dm-0/uevent r,
+
   /dev/tty r,
 
   include if exists <local/dolphin>
-}
\ No newline at end of file
+}