feat(dbus): add more dbus abstractions.

2025-01-18 00:48:10 +01:00 · 2023-12-02 15:52:00 +00:00 · 2023-12-02 15:52:00 +00:00 · 92ebab604a
commit 92ebab604a
parent 6810f4b050
3 changed files with 64 additions and 0 deletions
--- a/apparmor.d/abstractions/bus/account-daemon
+++ b/apparmor.d/abstractions/bus/account-daemon
@ -0,0 +1,25 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  dbus send bus=system path=/org/freedesktop/Accounts
+       interface=org.freedesktop.Accounts
+       member=FindUserByName
+       peer=(name=:*, label=accounts-daemon),
+
+  dbus send bus=system path=/org/freedesktop/Accounts{,/User@{uid}}
+       interface=org.freedesktop.DBus.Properties
+       member=GetAll
+       peer=(name=:*, label=accounts-daemon),
+
+  dbus receive bus=system path=/org/freedesktop/Accounts/User@{uid}
+       interface=org.freedesktop.Accounts.User
+       member=*Changed
+       peer=(name=:*, label=accounts-daemon),
+
+  dbus receive bus=system path=/org/freedesktop/Accounts/User@{uid}
+       interface=org.freedesktop.DBus.Properties
+       member=*Changed
+       peer=(name=:*, label=accounts-daemon),
+
+  include if exists <abstractions/bus/account-daemon.d>
--- a/apparmor.d/abstractions/bus/rtkit
+++ b/apparmor.d/abstractions/bus/rtkit
@ -0,0 +1,15 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  dbus send bus=system path=/org/freedesktop/RealtimeKit1
+       interface=org.freedesktop.DBus.Properties
+       member=Get
+       peer=(name=org.freedesktop.RealtimeKit1),
+
+  dbus send bus=system path=/org/freedesktop/RealtimeKit1
+       interface=org.freedesktop.RealtimeKit1
+       member=MakeThread*
+       peer=(name=org.freedesktop.RealtimeKit1, label=rtkit-daemon),
+
+  include if exists <abstractions/bus/rtkit.d>
--- a/apparmor.d/abstractions/bus/upower
+++ b/apparmor.d/abstractions/bus/upower
@ -0,0 +1,24 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  dbus send bus=system path=/org/freedesktop/UPower
+       interface=org.freedesktop.UPower
+       member=EnumerateDevices
+       peer=(name=org.freedesktop.UPower, label=upowerd),
+
+  dbus send bus=system path=/org/freedesktop/UPower
+       interface=org.freedesktop.DBus.Properties
+       member=GetAll
+       peer=(name=:*, label=upowerd),
+
+  dbus send bus=system path=/org/freedesktop/UPower/devices/DisplayDevice
+       interface=org.freedesktop.DBus.Properties
+       member={Get,GetAll}
+       peer=(name=org.freedesktop.UPower, label=upowerd),
+  dbus send bus=system path=/org/freedesktop/UPower/devices/DisplayDevice
+       interface=org.freedesktop.DBus.Properties
+       member={Get,GetAll}
+       peer=(name=:*, label=upowerd),
+
+  include if exists <abstractions/bus/upower.d>