diff --git a/apparmor.d/profiles-s-z/transmission-gtk b/apparmor.d/profiles-s-z/transmission-gtk new file mode 100644 index 00000000..54a2abc6 --- /dev/null +++ b/apparmor.d/profiles-s-z/transmission-gtk @@ -0,0 +1,59 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2023 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + +abi , + +include + +@{exec_path} = @{bin}/transmission-gtk +profile transmission-gtk @{exec_path} { + include + include + include + include + include + include + include + include + include + include + include + include + include + include + include + + network inet dgram, + network inet6 dgram, + network inet stream, + network inet6 stream, + network netlink raw, + + @{exec_path} mr, + + /usr/share/X11/xkb/{,**} r, + + owner @{user_torrents_dirs}/ r, + owner @{user_torrents_dirs}/** rw, + + owner @{user_config_dirs}/transmission/ rw, + owner @{user_config_dirs}/transmission/** rwk, + + owner @{user_cache_dirs}/ rw, + owner @{user_cache_dirs}/transmission/ rw, + owner @{user_cache_dirs}/transmission/** rwk, + + owner @{user_share_dirs}/ r, + + @{run}/mount/utab r, + + @{PROC}/@{pid}/net/route r, + owner @{PROC}/@{pid}/comm r, + owner @{PROC}/@{pid}/mountinfo r, + owner @{PROC}/@{pid}/mounts r, + + deny @{user_share_dirs}/gvfs-metadata/* r, + + include if exists +} diff --git a/dists/flags/main.flags b/dists/flags/main.flags index 042c16cf..5545eb25 100644 --- a/dists/flags/main.flags +++ b/dists/flags/main.flags @@ -331,6 +331,7 @@ systemsettings complain thunderbird complain thunderbird-glxtest complain thunderbird-vaapitest complain +transmission-gtk complain udisksctl complain udisksd attach_disconnected,complain umount complain