mirror of
https://github.com/roddhjav/apparmor.d.git
synced 2024-11-14 23:43:56 +01:00
feat(profile): update dbus directive format.
This commit is contained in:
parent
22fb2298d5
commit
6c38e90b5e
@ -122,7 +122,7 @@ profile systemd flags=(attach_disconnected,mediate_deleted) {
|
||||
unix (receive) type=dgram addr=none peer=(label=systemd-timesyncd, addr=none),
|
||||
unix (send, receive, connect) type=stream addr=none peer=(label=plymouthd, addr=@/org/freedesktop/plymouthd),
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.systemd1
|
||||
#aa:dbus own bus=system name=org.freedesktop.systemd1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -33,7 +33,7 @@ profile systemd-user flags=(attach_disconnected,mediate_deleted) {
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd/bus-system,
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd/bus-api-user,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.systemd1
|
||||
#aa:dbus own bus=session name=org.freedesktop.systemd1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -38,7 +38,7 @@ profile apt @{exec_path} flags=(attach_disconnected) {
|
||||
unix (send, receive) type=stream peer=(label=apt-esm-json-hook),
|
||||
unix (send, receive) type=stream peer=(label=snapd),
|
||||
|
||||
# dbus: own bus=system name=org.debian.apt
|
||||
#aa:dbus own bus=system name=org.debian.apt
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus/Bus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -53,7 +53,7 @@ profile firefox @{exec_path} flags=(attach_disconnected) {
|
||||
signal (send) set=(term, kill) peer=keepassxc-proxy,
|
||||
signal (send) set=(term, kill) peer=firefox-*,
|
||||
|
||||
# dbus: own bus=session name=org.mozilla.firefox
|
||||
#aa:dbus own bus=session name=org.mozilla.firefox
|
||||
|
||||
deny dbus send bus=system path=/org/freedesktop/hostname1,
|
||||
|
||||
|
@ -15,7 +15,7 @@ profile at-spi2-registryd @{exec_path} flags=(attach_disconnected) {
|
||||
include <abstractions/bus/org.gnome.SessionManager>
|
||||
include <abstractions/X-strict>
|
||||
|
||||
# dbus: own bus=accessibility name=org.a11y.atspi.{R,r}egistry
|
||||
#aa:dbus own bus=accessibility name=org.a11y.atspi.{R,r}egistry
|
||||
dbus send bus=accessibility path=/org/a11y/atspi/accessible/root
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
member=Set
|
||||
|
@ -21,7 +21,7 @@ profile dbus-accessibility @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
dbus bus=accessibility,
|
||||
|
||||
# dbus: own bus=session name=org.a11y.{B,b}us
|
||||
#aa:dbus own bus=session name=org.a11y.{B,b}us
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -21,8 +21,8 @@ profile ibus-daemon @{exec_path} flags=(attach_disconnected) {
|
||||
unix (send, receive, accept) type=stream addr="@/var/lib/gdm{3,}/.cache/ibus/dbus-????????" peer=(label=ibus-*),
|
||||
unix (send, receive, accept) type=stream addr="@/var/lib/gdm{3,}/.cache/ibus/dbus-????????" peer=(label=gnome-shell),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.portal.IBus
|
||||
# dbus: own bus=session name=org.freedesktop.IBus
|
||||
#aa:dbus own bus=session name=org.freedesktop.portal.IBus
|
||||
#aa:dbus own bus=session name=org.freedesktop.IBus
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/IBus
|
||||
interface=org.freedesktop.DBus.Peer
|
||||
|
@ -26,7 +26,7 @@ profile ibus-extension-gtk3 @{exec_path} flags=(attach_disconnected) {
|
||||
network inet6 stream,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.IBus.Panel.Extension.Gtk3
|
||||
#aa:dbus own bus=session name=org.freedesktop.IBus.Panel.Extension.Gtk3
|
||||
|
||||
dbus receive bus=session path=/org/gtk/Settings
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -23,7 +23,7 @@ profile accounts-daemon @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read) peer=unconfined,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.Accounts
|
||||
#aa:dbus own bus=system name=org.freedesktop.Accounts
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -20,7 +20,7 @@ profile colord @{exec_path} flags=(attach_disconnected) {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.ColorManager
|
||||
#aa:dbus own bus=system name=org.freedesktop.ColorManager
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -12,7 +12,7 @@ profile colord-session @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.ColorHelper
|
||||
#aa:dbus own bus=session name=org.freedesktop.ColorHelper
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -16,7 +16,7 @@ profile dconf-service @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term kill hup) peer=dbus-session,
|
||||
signal (receive) set=(term hup) peer=gdm,
|
||||
|
||||
# dbus: own bus=session name=ca.desrt.dconf
|
||||
#aa:dbus own bus=session name=ca.desrt.dconf
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -24,7 +24,7 @@ profile geoclue @{exec_path} flags=(attach_disconnected) {
|
||||
network inet6 stream,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.GeoClue2
|
||||
#aa:dbus own bus=system name=org.freedesktop.GeoClue2
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -14,7 +14,7 @@ profile iio-sensor-proxy @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=net.hadess.SensorProxy
|
||||
#aa:dbus own bus=system name=net.hadess.SensorProxy
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -23,7 +23,7 @@ profile pipewire @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read),
|
||||
|
||||
# dbus: own bus=session name=org.pulseaudio.Server
|
||||
#aa:dbus own bus=session name=org.pulseaudio.Server
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -21,7 +21,7 @@ profile polkitd @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read),
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.PolicyKit1
|
||||
#aa:dbus own bus=system name=org.freedesktop.PolicyKit1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -38,9 +38,9 @@ profile pulseaudio @{exec_path} {
|
||||
network bluetooth stream,
|
||||
network bluetooth seqpacket,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.ReserveDevice1.Audio@{int}
|
||||
# dbus: own bus=session name=org.PulseAudio1
|
||||
# dbus: own bus=session name=org.pulseaudio*
|
||||
#aa:dbus own bus=session name=org.freedesktop.ReserveDevice1.Audio@{int}
|
||||
#aa:dbus own bus=session name=org.PulseAudio1
|
||||
#aa:dbus own bus=session name=org.pulseaudio*
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -17,7 +17,7 @@ profile upowerd @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.UPower
|
||||
#aa:dbus own bus=system name=org.freedesktop.UPower
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -26,7 +26,7 @@ profile xdg-desktop-portal @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.portal.Desktop path=/org/freedesktop/portal/desktop interface={org.freedesktop.DBus.Properties,org.freedesktop{,.impl}.portal.{Settings,Background}}
|
||||
#aa:dbus own bus=session name=org.freedesktop.portal.Desktop path=/org/freedesktop/portal/desktop interface={org.freedesktop.DBus.Properties,org.freedesktop{,.impl}.portal.{Settings,Background}}
|
||||
dbus receive bus=session path=/org/freedesktop/portal/desktop
|
||||
interface=org.freedesktop.portal.Realtime
|
||||
member=MakeThread*
|
||||
@ -37,7 +37,7 @@ profile xdg-desktop-portal @{exec_path} flags=(attach_disconnected) {
|
||||
member=CheckPermissions
|
||||
peer=(name=:*, label=NetworkManager),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.background.Monitor path=/org/freedesktop/background/monitor
|
||||
#aa:dbus own bus=session name=org.freedesktop.background.Monitor path=/org/freedesktop/background/monitor
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/portal/documents
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -29,7 +29,7 @@ profile xdg-desktop-portal-gnome @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=term peer=gdm,
|
||||
signal (receive) set=(hup term) peer=gdm-session-worker,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.impl.portal.desktop.gnome
|
||||
#aa:dbus own bus=session name=org.freedesktop.impl.portal.desktop.gnome
|
||||
|
||||
dbus send bus=session path=/org/gnome/Shell/Screenshot
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -31,7 +31,7 @@ profile xdg-desktop-portal-gtk @{exec_path} {
|
||||
|
||||
unix (send, receive, connect) type=stream peer=(addr="@/tmp/.X11-unix/*", label=gnome-shell),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.impl.portal.desktop.gtk
|
||||
#aa:dbus own bus=session name=org.freedesktop.impl.portal.desktop.gtk
|
||||
|
||||
dbus receive bus=session path=/org/freedesktop/portal/desktop
|
||||
interface=org.freedesktop.impl.portal.Settings
|
||||
|
@ -24,7 +24,7 @@ profile xdg-document-portal @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (send receive) type=stream peer=(label=xdg-document-portal//fusermount),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.portal.Documents path=/org/freedesktop/portal/documents
|
||||
#aa:dbus own bus=session name=org.freedesktop.portal.Documents path=/org/freedesktop/portal/documents
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -16,7 +16,7 @@ profile xdg-permission-store @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term hup kill) peer=dbus-session,
|
||||
signal (receive) set=(term hup kill) peer=gdm,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.impl.portal.PermissionStore
|
||||
#aa:dbus own bus=session name=org.freedesktop.impl.portal.PermissionStore
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -18,8 +18,8 @@ profile deja-dup-monitor @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.DejaDup.Monitor
|
||||
# dbus: talk bus=session name=org.gnome.DejaDup label=deja-dup
|
||||
#aa:dbus own bus=session name=org.gnome.DejaDup.Monitor
|
||||
#aa:dbus talk bus=session name=org.gnome.DejaDup label=deja-dup
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/NetworkManager
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -25,7 +25,7 @@ profile evolution-addressbook-factory @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.evolution.dataserver.AddressBook10
|
||||
#aa:dbus own bus=session name=org.gnome.evolution.dataserver.AddressBook10
|
||||
|
||||
dbus (send, receive) bus=session path=/org/gnome/evolution/dataserver/**
|
||||
interface=org.gnome.evolution.dataserver.*
|
||||
|
@ -20,7 +20,7 @@ profile evolution-alarm-notify @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Evolution-alarm-notify
|
||||
#aa:dbus own bus=session name=org.gnome.Evolution-alarm-notify
|
||||
|
||||
dbus (send, receive) bus=session path=/org/gnome/evolution/dataserver/**
|
||||
interface=org.gnome.evolution.dataserver.Calendar*
|
||||
|
@ -24,7 +24,7 @@ profile evolution-calendar-factory @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.evolution.dataserver.Calendar8
|
||||
#aa:dbus own bus=session name=org.gnome.evolution.dataserver.Calendar8
|
||||
|
||||
dbus (send, receive) bus=session path=/org/gnome/evolution/dataserver/**
|
||||
interface=org.gnome.evolution.dataserver.*
|
||||
|
@ -22,7 +22,7 @@ profile evolution-source-registry @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.evolution.dataserver.Sources5
|
||||
#aa:dbus own bus=session name=org.gnome.evolution.dataserver.Sources5
|
||||
|
||||
dbus receive bus=session path=/org/gnome/evolution/dataserver/SourceManager{,/**}
|
||||
interface={org.freedesktop.DBus.ObjectManager,org.freedesktop.DBus.Properties}
|
||||
|
@ -11,7 +11,7 @@ profile evolution-user-prompter @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.evolution.dataserver.UserPrompter0
|
||||
#aa:dbus own bus=session name=org.gnome.evolution.dataserver.UserPrompter0
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -39,10 +39,10 @@ profile gdm @{exec_path} flags=(attach_disconnected) {
|
||||
unix (bind, listen) type=stream addr="@/tmp/dbus-@{rand8}",
|
||||
unix (send receive accept) type=stream addr="@/tmp/dbus-@{rand8}" peer=(label=gdm-session-worker, addr=none),
|
||||
|
||||
# dbus: own bus=system name=org.gnome.DisplayManager
|
||||
#aa:dbus own bus=system name=org.gnome.DisplayManager
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.login1 label=systemd-logind
|
||||
# dbus: talk bus=system name=org.freedesktop.Accounts label=accounts-daemon
|
||||
#aa:dbus talk bus=system name=org.freedesktop.login1 label=systemd-logind
|
||||
#aa:dbus talk bus=system name=org.freedesktop.Accounts label=accounts-daemon
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -28,11 +28,11 @@ profile gjs-console @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.Notifications
|
||||
# dbus: own bus=session name=org.gnome.ScreenSaver
|
||||
# dbus: own bus=session name=org.gnome.Shell.Extensions
|
||||
# dbus: own bus=session name=org.gnome.Shell.Notifications
|
||||
# dbus: own bus=session name=org.gnome.Shell.Screencast
|
||||
#aa:dbus own bus=session name=org.freedesktop.Notifications
|
||||
#aa:dbus own bus=session name=org.gnome.ScreenSaver
|
||||
#aa:dbus own bus=session name=org.gnome.Shell.Extensions
|
||||
#aa:dbus own bus=session name=org.gnome.Shell.Notifications
|
||||
#aa:dbus own bus=session name=org.gnome.Shell.Screencast
|
||||
|
||||
dbus send bus=session path=/org/gnome/Mutter/ScreenCast
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -26,11 +26,11 @@ profile gnome-calendar @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Calendar interface={org.freedesktop.Application,org.gtk.Actions}
|
||||
#aa:dbus own bus=session name=org.gnome.Calendar interface={org.freedesktop.Application,org.gtk.Actions}
|
||||
|
||||
# dbus: talk bus=session name=org.gnome.evolution.dataserver.CalendarView label=evolution-calendar-factory
|
||||
# dbus: talk bus=session name=org.gnome.evolution.dataserver.Source label=evolution-source-registry
|
||||
# dbus: talk bus=system name=org.freedesktop.GeoClue2 label=geoclue
|
||||
#aa:dbus talk bus=session name=org.gnome.evolution.dataserver.CalendarView label=evolution-calendar-factory
|
||||
#aa:dbus talk bus=session name=org.gnome.evolution.dataserver.Source label=evolution-source-registry
|
||||
#aa:dbus talk bus=system name=org.freedesktop.GeoClue2 label=geoclue
|
||||
|
||||
dbus send bus=session path=/org/gnome/evolution/dataserver/SourceManager{,/**}
|
||||
interface=org.freedesktop.DBus.ObjectManager
|
||||
|
@ -18,7 +18,7 @@ profile gnome-characters @{exec_path} {
|
||||
include <abstractions/graphics>
|
||||
include <abstractions/nameservice-strict>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Characters
|
||||
#aa:dbus own bus=session name=org.gnome.Characters
|
||||
dbus receive bus=session path=/org/gnome/Characters/SearchProvider
|
||||
interface=org.gnome.Shell.SearchProvider2
|
||||
peer=(name=:*, label=gnome-shell),
|
||||
|
@ -22,10 +22,10 @@ profile gnome-contacts @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Contacts
|
||||
#aa:dbus own bus=session name=org.gnome.Contacts
|
||||
|
||||
# dbus: talk bus=session name=org.gnome.evolution.dataserver.AddressBookFactory label=evolution-addressbook-factory
|
||||
# dbus: talk bus=session name=org.gnome.evolution.dataserver.Source label=evolution-source-registry
|
||||
#aa:dbus talk bus=session name=org.gnome.evolution.dataserver.AddressBookFactory label=evolution-addressbook-factory
|
||||
#aa:dbus talk bus=session name=org.gnome.evolution.dataserver.Source label=evolution-source-registry
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -30,7 +30,7 @@ profile gnome-control-center-goa-helper @{exec_path} {
|
||||
|
||||
signal (send) set=(kill) peer=bwrap,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Settings.GoaHelper
|
||||
#aa:dbus: own bus=session name=org.gnome.Settings.GoaHelper
|
||||
|
||||
dbus send bus=session path=/org/gnome/OnlineAccounts
|
||||
interface=org.freedesktop.DBus.ObjectManager
|
||||
|
@ -15,7 +15,7 @@ profile gnome-disks @{exec_path} {
|
||||
include <abstractions/gnome-strict>
|
||||
include <abstractions/user-download-strict>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.DiskUtility
|
||||
#aa:dbus own bus=session name=org.gnome.DiskUtility
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -29,8 +29,8 @@ profile gnome-extension-ding @{exec_path} {
|
||||
|
||||
unix (send,receive) type=stream addr=none peer=(label=gnome-shell),
|
||||
|
||||
# dbus: own bus=session name=com.rastersoft.ding interface={org.freedesktop.DBus.Properties,org.gtk.Actions}
|
||||
# dbus: talk bus=session name=com.rastersoft.dingextension label=gnome-shell
|
||||
#aa:dbus own bus=session name=com.rastersoft.ding interface=org.gtk.Actions
|
||||
#aa:dbus talk bus=session name=com.rastersoft.dingextension label=gnome-shell
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -28,7 +28,7 @@ profile gnome-initial-setup @{exec_path} {
|
||||
network inet6 stream,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.InitialSetup interface={org.freedesktop.DBus.Properties,org.gtk.Actions}
|
||||
#aa:dbus own bus=session name=org.gnome.InitialSetup interface=org.gtk.Actions
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -21,8 +21,8 @@ profile gnome-keyring-daemon @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term) peer=gdm,
|
||||
signal (send) set=(term) peer=ssh-agent,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.keyring
|
||||
# dbus: own bus=session name=org.freedesktop.{S,s}ecret{,s}
|
||||
#aa:dbus own bus=session name=org.gnome.keyring
|
||||
#aa:dbus own bus=session name=org.freedesktop.{S,s}ecret{,s}
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -17,7 +17,7 @@ profile gnome-remote-desktop-daemon @{exec_path} {
|
||||
network inet stream,
|
||||
network inet6 stream,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.RemoteDesktop.User
|
||||
#aa:dbus own bus=session name=org.gnome.RemoteDesktop.User
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -32,7 +32,7 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
signal (send) set=(term) peer=gsd-*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SessionManager
|
||||
#aa:dbus own bus=session name=org.gnome.SessionManager
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -80,17 +80,16 @@ profile gnome-shell @{exec_path} flags=(attach_disconnected,mediate_deleted) {
|
||||
interface={org.gnome.*,org.freedesktop.{Application,DBus.Properties,DBus.ObjectManager},org.gtk.{Actions,Application}}
|
||||
peer=(name="{:*,org.gnome.*,org.freedesktop.DBus}"),
|
||||
|
||||
# dbus: own bus=session name=com.canonical.Unity path=/com/canonical/{U,u}nity
|
||||
# dbus: own bus=session name=com.rastersoft.dingextension
|
||||
# dbus: own bus=session name=org.gtk.MountOperationHandler
|
||||
# dbus: own bus=session name=org.gtk.Notifications
|
||||
# dbus: own bus=session name=org.kde.StatusNotifierWatcher path=/StatusNotifierWatcher
|
||||
|
||||
# TODO: org.gtk.Actions for com.rastersoft.dingextension
|
||||
#aa:dbus own bus=session name=com.canonical.Unity path=/com/canonical/{U,u}nity
|
||||
#aa:dbus own bus=session name=com.rastersoft.dingextension interface=org.gtk.Actions
|
||||
#aa:dbus own bus=session name=org.gtk.MountOperationHandler
|
||||
#aa:dbus own bus=session name=org.gtk.Notifications
|
||||
#aa:dbus own bus=session name=org.kde.StatusNotifierWatcher path=/StatusNotifierWatcher
|
||||
|
||||
# Talk with gnome-shell
|
||||
|
||||
# dbus: talk bus=session name=com.rastersoft.ding label=gnome-extension-ding
|
||||
#aa:dbus talk bus=session name=com.rastersoft.ding label=gnome-extension-ding
|
||||
#aa:dbus talk bus=system name=org.gnome.DisplayManager label=gdm
|
||||
|
||||
## System bus
|
||||
|
||||
|
@ -13,7 +13,7 @@ profile gnome-shell-calendar-server @{exec_path} {
|
||||
include <abstractions/dconf-write>
|
||||
include <abstractions/nameservice-strict>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Shell.CalendarServer
|
||||
#aa:dbus own bus=session name=org.gnome.Shell.CalendarServer
|
||||
|
||||
dbus (send receive) bus=session path=/org/gnome/evolution/dataserver/{,**}
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -25,7 +25,7 @@ profile gnome-system-monitor @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (send) set=(kill term cont stop),
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SystemMonitor
|
||||
#aa:dbus own bus=session name=org.gnome.SystemMonitor
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -25,7 +25,7 @@ profile gnome-terminal-server @{exec_path} {
|
||||
ptrace (read) peer=htop,
|
||||
ptrace (read) peer=unconfined,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Terminal interface={org.freedesktop.DBus.Properties,org.gtk.Actions}
|
||||
#aa:dbus own bus=session name=org.gnome.Terminal interface=org.gtk.Actions
|
||||
|
||||
dbus receive bus=session path=/org/gnome/Terminal/SearchProvider
|
||||
interface=org.gnome.Shell.SearchProvider2
|
||||
|
@ -24,7 +24,7 @@ profile goa-daemon @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.OnlineAccounts
|
||||
#aa:dbus own bus=session name=org.gnome.OnlineAccounts
|
||||
|
||||
dbus send bus=session path=/org/gnome/Identity
|
||||
interface=org.freedesktop.DBus.ObjectManager
|
||||
|
@ -12,7 +12,7 @@ profile goa-identity-service @{exec_path} {
|
||||
include <abstractions/authentication>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Identity
|
||||
#aa:dbus own bus=session name=org.gnome.Identity
|
||||
|
||||
dbus send bus=session path=/org/gnome/OnlineAccounts
|
||||
interface=org.freedesktop.DBus.ObjectManager
|
||||
|
@ -15,7 +15,7 @@ profile gsd-a11y-settings @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.A11ySettings
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.A11ySettings
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -23,9 +23,9 @@ profile gsd-color @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Color
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Color
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.ColorManager label=colord
|
||||
#aa:dbus talk bus=system name=org.freedesktop.ColorManager label=colord
|
||||
|
||||
dbus receive bus=session path=/org/gtk/Settings
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -15,7 +15,7 @@ profile gsd-datetime @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Datetime
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Datetime
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -13,7 +13,7 @@ profile gsd-disk-utility-notify @{exec_path} {
|
||||
include <abstractions/bus-system>
|
||||
include <abstractions/bus/org.freedesktop.UDisks2>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.Disks.NotificationMonitor
|
||||
#aa:dbus own bus=session name=org.gnome.Disks.NotificationMonitor
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -19,7 +19,7 @@ profile gsd-housekeeping @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
signal (receive) set=(term, hup) peer=gnome*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Housekeeping
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Housekeeping
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -23,7 +23,7 @@ profile gsd-keyboard @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Keyboard
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Keyboard
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -29,7 +29,7 @@ profile gsd-media-keys @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.MediaKeys
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.MediaKeys
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/login1
|
||||
interface=org.freedesktop.login1.Manager
|
||||
|
@ -34,7 +34,7 @@ profile gsd-power @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Power
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Power
|
||||
|
||||
dbus send bus=session path=/org/gnome/Mutter/DisplayConfig
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -21,7 +21,7 @@ profile gsd-print-notifications @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
signal (send) set=(hup) peer=gsd-printer,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.PrintNotifications
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.PrintNotifications
|
||||
|
||||
# dbus receive bus=system path=/org/cups/cupsd/Notifier
|
||||
# interface=org.cups.cupsd.Notifier,
|
||||
|
@ -17,8 +17,8 @@ profile gsd-printer @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
signal (receive) set=(hup) peer=gsd-print-notifications,
|
||||
|
||||
# dbus: own bus=system name=com.redhat.NewPrinterNotification
|
||||
# dbus: own bus=system name=com.redhat.PrinterDriversInstaller
|
||||
#aa:dbus own bus=system name=com.redhat.NewPrinterNotification
|
||||
#aa:dbus own bus=system name=com.redhat.PrinterDriversInstaller
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -20,7 +20,7 @@ profile gsd-rfkill @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Rfkill
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Rfkill
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -14,8 +14,8 @@ profile gsd-screensaver-proxy @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.ScreenSaver
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.ScreensaverProxy
|
||||
#aa:dbus own bus=session name=org.freedesktop.ScreenSaver
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.ScreensaverProxy
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -17,7 +17,7 @@ profile gsd-sharing @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Sharing
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Sharing
|
||||
|
||||
dbus send bus=session path=/org/freedesktop/systemd1
|
||||
interface=org.freedesktop.systemd1.Manager
|
||||
|
@ -17,7 +17,7 @@ profile gsd-smartcard @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Smartcard
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Smartcard
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -17,7 +17,7 @@ profile gsd-sound @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Sound
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Sound
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -12,7 +12,7 @@ profile gsd-usb-protection @{exec_path} {
|
||||
include <abstractions/bus-session>
|
||||
include <abstractions/dconf-write>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.UsbProtection
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.UsbProtection
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -21,7 +21,7 @@ profile gsd-wacom @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term, hup) peer=gdm*,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Wacom
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Wacom
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -12,7 +12,7 @@ profile gsd-wwan @{exec_path} {
|
||||
include <abstractions/bus-session>
|
||||
include <abstractions/dconf-write>
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.Wwan
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.Wwan
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -30,8 +30,8 @@ profile gsd-xsettings @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gnome.SettingsDaemon.XSettings
|
||||
# dbus: own bus=session name=org.gtk.Settings
|
||||
#aa:dbus own bus=session name=org.gnome.SettingsDaemon.XSettings
|
||||
#aa:dbus own bus=session name=org.gtk.Settings
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/Accounts/User@{uid}
|
||||
interface=org.freedesktop.Accounts.User
|
||||
|
@ -33,10 +33,10 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
||||
interface={org.gnome.Nautilus,org.freedesktop.{Application,DBus.Properties},org.gtk.{Actions,Application}}
|
||||
peer=(name="{:*,org.gnome.Nautilus,org.freedesktop.DBus}"),
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.FileManager1
|
||||
#aa:dbus: own bus=session name=org.freedesktop.FileManager1
|
||||
|
||||
# dbus: talk bus=session name=org.gtk.MountOperationHandler label=gnome-shell
|
||||
# dbus: talk bus=session name=org.gtk.vfs label=gvfsd
|
||||
#aa:dbus: talk bus=session name=org.gtk.MountOperationHandler label=gnome-shell
|
||||
#aa:dbus: talk bus=session name=org.gtk.vfs label=gvfsd
|
||||
|
||||
dbus receive bus=session path=/org/gnome/Nautilus/SearchProvider
|
||||
interface=org.gnome.Shell.SearchProvider2
|
||||
|
@ -26,9 +26,9 @@ profile tracker-extract @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (receive) set=(term) peer=gdm,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.Tracker3.Miner.Extract
|
||||
#aa:dbus own bus=session name=org.freedesktop.Tracker3.Miner.Extract
|
||||
|
||||
# dbus: talk bus=session name=org.freedesktop.Tracker3 label=tracker-miner interface=org.freedesktop.DBus.{Properties,Peer}
|
||||
#aa:dbus talk bus=session name=org.freedesktop.Tracker3 label=tracker-miner interface=org.freedesktop.DBus.Peer
|
||||
|
||||
dbus send bus=session path=/org/gtk/vfs/metadata
|
||||
interface=org.gtk.vfs.Metadata
|
||||
|
@ -28,9 +28,9 @@ profile tracker-miner @{exec_path} flags=(attach_disconnected) {
|
||||
signal (receive) set=(term, kill) peer=gdm,
|
||||
signal (receive) set=(hup) peer=gdm-session-worker,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.Tracker3.Miner.Files interface=org.freedesktop.DBus.{Properties,Peer}
|
||||
# dbus: own bus=session name=org.freedesktop.Tracker3.Miner.Files.Control
|
||||
# dbus: own bus=session name=org.freedesktop.Tracker3.Miner.RSS
|
||||
#aa:dbus own bus=session name=org.freedesktop.Tracker3.Miner.Files
|
||||
#aa:dbus own bus=session name=org.freedesktop.Tracker3.Miner.Files.Control
|
||||
#aa:dbus own bus=session name=org.freedesktop.Tracker3.Miner.RSS
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -12,7 +12,7 @@ profile gvfs-afc-volume-monitor @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.AfcVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.AfcVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -12,7 +12,7 @@ profile gvfs-goa-volume-monitor @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.GoaVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.GoaVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -16,7 +16,7 @@ profile gvfs-gphoto2-volume-monitor @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.GPhoto2VolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.GPhoto2VolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -15,7 +15,7 @@ profile gvfs-mtp-volume-monitor @{exec_path} {
|
||||
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.MTPVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.MTPVolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -30,8 +30,8 @@ profile gvfs-udisks2-volume-monitor @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read),
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.UDisks2VolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
# dbus: talk bus=system name=org.freedesktop.UDisks2 label=udisksd
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.UDisks2VolumeMonitor interface=org.gtk.Private.RemoteVolumeMonitor path=/org/gtk/Private/RemoteVolumeMonitor
|
||||
#aa:dbus talk bus=system name=org.freedesktop.UDisks2 label=udisksd
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -12,7 +12,7 @@ profile gvfsd @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.Daemon
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.Daemon
|
||||
|
||||
dbus send bus=session path=/org/gtk/vfs/mounttracker
|
||||
interface=org.gtk.vfs.MountTracker
|
||||
|
@ -23,7 +23,7 @@ profile gvfsd-http @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.mountpoint_http
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.mountpoint_http
|
||||
|
||||
dbus receive bus=session path=/org/gtk/vfs/mountable
|
||||
interface=org.gtk.vfs.Mountable
|
||||
|
@ -17,7 +17,7 @@ profile gvfsd-metadata @{exec_path} {
|
||||
|
||||
signal (receive) set=(usr1) peer=pacman,
|
||||
|
||||
# dbus: own bus=session name=org.gtk.vfs.Metadata path=/org/gtk/vfs/{m,M}etadata
|
||||
#aa:dbus own bus=session name=org.gtk.vfs.Metadata path=/org/gtk/vfs/{m,M}etadata
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -21,7 +21,7 @@ profile ModemManager @{exec_path} flags=(attach_disconnected) {
|
||||
network qipcrtr dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.ModemManager1
|
||||
#aa:dbus own bus=system name=org.freedesktop.ModemManager1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -42,7 +42,7 @@ profile NetworkManager @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (send) set=(term) peer=dnsmasq,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.NetworkManager
|
||||
#aa:dbus own bus=system name=org.freedesktop.NetworkManager
|
||||
|
||||
dbus receive bus=system path=/org/freedesktop
|
||||
interface=org.freedesktop.DBus.ObjectManager
|
||||
|
@ -20,7 +20,7 @@ profile nm-dispatcher @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read) peer=@{systemd},
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.nm_dispatcher
|
||||
#aa:dbus own bus=system name=org.freedesktop.nm_dispatcher
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -14,7 +14,7 @@ profile hostnamectl @{exec_path} {
|
||||
|
||||
capability net_admin,
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.hostname1 label=systemd-hostnamed
|
||||
#aa:dbus talk bus=system name=org.freedesktop.hostname1 label=systemd-hostnamed
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -26,7 +26,7 @@ profile networkctl @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/networkctl/system,
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.network1 label=systemd-networkd
|
||||
#aa:dbus talk bus=system name=org.freedesktop.network1 label=systemd-networkd
|
||||
# No label available
|
||||
dbus send bus=system path=/org/freedesktop/network@{int}
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -22,7 +22,7 @@ profile systemd-analyze @{exec_path} {
|
||||
|
||||
signal (send) peer=child-pager,
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
#aa:dbus talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -35,7 +35,7 @@ profile systemd-homed @{exec_path} flags=(attach_disconnected) {
|
||||
mount options=(rw, rslave) -> @{run}/,
|
||||
mount /dev/dm-@{int} -> @{run}/systemd/user-home-mount/,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.home1
|
||||
#aa:dbus own bus=system name=org.freedesktop.home1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -18,7 +18,7 @@ profile systemd-hostnamed @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-hostnam/system,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.hostname1
|
||||
#aa:dbus own bus=system name=org.freedesktop.hostname1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -19,7 +19,7 @@ profile systemd-localed @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-localed/system,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.locale1
|
||||
#aa:dbus own bus=system name=org.freedesktop.locale1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -31,9 +31,9 @@ profile systemd-logind @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-logind/system,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.login1
|
||||
#aa:dbus own bus=system name=org.freedesktop.login1
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
#aa:dbus talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
|
||||
dbus receive bus=system path=/org/freedesktop/login@{int}{,/seat/auto,session/_@{int}}
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -31,9 +31,9 @@ profile systemd-machined @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.machine1
|
||||
#aa:dbus own bus=system name=org.freedesktop.machine1
|
||||
|
||||
# dbus: talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
#aa:dbus talk bus=system name=org.freedesktop.systemd1 label="@{systemd}"
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -29,7 +29,7 @@ profile systemd-networkd @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-network/bus-api-network,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.network1
|
||||
#aa:dbus own bus=system name=org.freedesktop.network1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/hostname1
|
||||
interface=org.freedesktop.hostname1
|
||||
|
@ -17,7 +17,7 @@ profile systemd-oomd @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-oomd/bus-api-oom,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.oom1
|
||||
#aa:dbus own bus=system name=org.freedesktop.oom1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -29,7 +29,7 @@ profile systemd-portabled @{exec_path} {
|
||||
network inet6 dgram,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.portable1
|
||||
#aa:dbus own bus=system name=org.freedesktop.portable1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -29,7 +29,7 @@ profile systemd-resolved @{exec_path} flags=(attach_disconnected) {
|
||||
network inet6 stream,
|
||||
network netlink raw,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.resolve1
|
||||
#aa:dbus own bus=system name=org.freedesktop.resolve1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/DBus
|
||||
interface=org.freedesktop.DBus
|
||||
|
@ -17,7 +17,7 @@ profile systemd-timedated @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-timedat/system,
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.timedate1
|
||||
#aa:dbus own bus=system name=org.freedesktop.timedate1
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/systemd1/unit/*
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -24,7 +24,7 @@ profile systemd-timesyncd @{exec_path} flags=(attach_disconnected) {
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd-timesyn/bus-api-timesync,
|
||||
unix (send, receive) type=dgram addr=none peer=(label=@{systemd}, addr=none),
|
||||
|
||||
# dbus: own bus=system name=org.freedesktop.timesync1
|
||||
#aa:dbus own bus=system name=org.freedesktop.timesync1
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -14,7 +14,7 @@ profile software-properties-dbus @{exec_path} {
|
||||
include <abstractions/nameservice-strict>
|
||||
include <abstractions/python>
|
||||
|
||||
# dbus: own bus=system name=com.ubuntu.SoftwareProperties
|
||||
#aa:dbus own bus=system name=com.ubuntu.SoftwareProperties
|
||||
|
||||
dbus receive bus=session
|
||||
interface=org.freedesktop.DBus.Introspectable
|
||||
|
@ -34,9 +34,9 @@ profile update-manager @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
signal (send) peer=apt-methods-http,
|
||||
|
||||
# dbus: own bus=session name=org.freedesktop.UpdateManager
|
||||
#aa:dbus own bus=session name=org.freedesktop.UpdateManager
|
||||
|
||||
# dbus: talk bus=system name=org.debian.apt label=apt
|
||||
#aa:dbus talk bus=system name=org.debian.apt label=apt
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -23,7 +23,7 @@ profile update-notifier @{exec_path} {
|
||||
|
||||
unix (bind) type=stream addr=@@{hex}/bus/systemd/bus-api-user,
|
||||
|
||||
# dbus: talk bus=system name=org.debian.apt label=apt
|
||||
#aa:dbus talk bus=system name=org.debian.apt label=apt
|
||||
|
||||
dbus receive bus=session path=/org/ayatana/NotificationItem/software_update_available
|
||||
interface=org.freedesktop.DBus.Properties
|
||||
|
@ -13,8 +13,8 @@ profile libvirt-dbus @{exec_path} {
|
||||
include <abstractions/bus-system>
|
||||
include <abstractions/nameservice-strict>
|
||||
|
||||
# dbus: own bus=session name=org.libvirt
|
||||
# dbus: own bus=system name=org.libvirt
|
||||
#aa:dbus own bus=session name=org.libvirt
|
||||
#aa:dbus own bus=system name=org.libvirt
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -12,7 +12,7 @@ profile atrild @{exec_path} {
|
||||
include <abstractions/base>
|
||||
include <abstractions/bus-session>
|
||||
|
||||
# dbus: own bus=session name=org.mate.atril.Daemon
|
||||
#aa:dbus own bus=session name=org.mate.atril.Daemon
|
||||
|
||||
@{exec_path} mr,
|
||||
|
||||
|
@ -27,8 +27,8 @@ profile blueman @{exec_path} flags=(attach_disconnected) {
|
||||
|
||||
ptrace (read) peer=gjs-console,
|
||||
|
||||
# dbus: own bus=session name=org.blueman.Applet
|
||||
# dbus: own bus=session name=org.blueman.Manager
|
||||
#aa:dbus own bus=session name=org.blueman.Applet
|
||||
#aa:dbus own bus=session name=org.blueman.Manager
|
||||
|
||||
@{exec_path} mrix,
|
||||
|
||||
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user