diff --git a/apparmor.d/groups/apt/unattended-upgrade b/apparmor.d/groups/apt/unattended-upgrade index 5e8e277d..6a1c4413 100644 --- a/apparmor.d/groups/apt/unattended-upgrade +++ b/apparmor.d/groups/apt/unattended-upgrade @@ -39,8 +39,8 @@ profile unattended-upgrade @{exec_path} flags=(attach_disconnected) { interface=org.freedesktop.DBus.Introspectable member=Introspect, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, dbus (send,receive) bus=system path=/org/freedesktop/NetworkManager diff --git a/apparmor.d/groups/apt/unattended-upgrade-shutdown b/apparmor.d/groups/apt/unattended-upgrade-shutdown index 07a45a83..c17e29c6 100644 --- a/apparmor.d/groups/apt/unattended-upgrade-shutdown +++ b/apparmor.d/groups/apt/unattended-upgrade-shutdown @@ -14,11 +14,11 @@ profile unattended-upgrade-shutdown @{exec_path} flags=(attach_disconnected) { include include - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, - dbus send bus=system path=/org/freedesktop/login[0-9] + dbus send bus=system path=/org/freedesktop/login1 interface=org.freedesktop.DBus.{Introspectable,Properties} member={Introspect,Get}, @@ -26,8 +26,8 @@ profile unattended-upgrade-shutdown @{exec_path} flags=(attach_disconnected) { interface=org.freedesktop.DBus.Properties member=GetAll, - dbus receive bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus receive bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=PrepareForShutdown, @{exec_path} mr, diff --git a/apparmor.d/groups/bus/ibus-extension-gtk3 b/apparmor.d/groups/bus/ibus-extension-gtk3 index 4c622e7f..813955ef 100644 --- a/apparmor.d/groups/bus/ibus-extension-gtk3 +++ b/apparmor.d/groups/bus/ibus-extension-gtk3 @@ -9,6 +9,7 @@ include @{exec_path} = @{lib}/{,ibus/}ibus-extension-gtk3 profile ibus-extension-gtk3 @{exec_path} flags=(attach_disconnected) { include + include include include include @@ -27,46 +28,11 @@ profile ibus-extension-gtk3 @{exec_path} flags=(attach_disconnected) { network inet6 stream, network netlink raw, - dbus send bus=session path=/org/freedesktop/DBus - interface=org.freedesktop.DBus - member={RequestName,ReleaseName} - peer=(name=org.freedesktop.DBus, label=dbus-daemon), - dbus send bus=session path=/org/gtk/Settings interface=org.freedesktop.DBus.Properties member=GetAll peer=(name=:*, label=gsd-xsettings), - dbus send bus=session path=/org/a11y/bus - interface=org.a11y.Bus - member=GetAddress - peer=(name=org.a11y.Bus, label=at-spi-bus-launcher), - - dbus send bus=accessibility path=/org/a11y/atspi/registry - interface=org.a11y.atspi.Registry - member=GetRegisteredEvents - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus send bus=accessibility path=/org/a11y/atspi/registry/deviceeventcontroller - interface=org.a11y.atspi.DeviceEventController - member={GetKeystrokeListeners,GetDeviceEventListeners} - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus send bus=accessibility path=/org/a11y/atspi/accessible/root - interface=org.a11y.atspi.Socket - member=Embed - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus receive bus=accessibility path=/org/a11y/atspi/accessible/root - interface=org.freedesktop.DBus.Properties - member=Set - peer=(name=:*, label=at-spi2-registryd), - - dbus receive bus=accessibility path=/org/a11y/atspi/registry - interface=org.a11y.atspi.Registry - member=EventListenerDeregistered - peer=(name=:*, label=at-spi2-registryd), - dbus receive bus=session interface=org.freedesktop.DBus.Introspectable member=Introspect diff --git a/apparmor.d/groups/bus/ibus-x11 b/apparmor.d/groups/bus/ibus-x11 index d5bed9b4..ae78e55b 100644 --- a/apparmor.d/groups/bus/ibus-x11 +++ b/apparmor.d/groups/bus/ibus-x11 @@ -9,8 +9,9 @@ include @{exec_path} = @{lib}/{,ibus/}ibus-x11 profile ibus-x11 @{exec_path} flags=(attach_disconnected) { include - include + include include + include include include include diff --git a/apparmor.d/groups/freedesktop/accounts-daemon b/apparmor.d/groups/freedesktop/accounts-daemon index a67cf060..5052560c 100644 --- a/apparmor.d/groups/freedesktop/accounts-daemon +++ b/apparmor.d/groups/freedesktop/accounts-daemon @@ -25,11 +25,11 @@ profile accounts-daemon @{exec_path} flags=(attach_disconnected) { dbus (send,receive) bus=system path=/org/freedesktop/Accounts{,/User[0-9]*} interface=org.freedesktop.{DBus.{Properties,Introspectable},Accounts{,.User}}, - dbus (send,receive) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus (send,receive) bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member={CheckAuthorization,Changed}, - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll, diff --git a/apparmor.d/groups/freedesktop/pipewire-media-session b/apparmor.d/groups/freedesktop/pipewire-media-session index 736d43b4..b7d23d3a 100644 --- a/apparmor.d/groups/freedesktop/pipewire-media-session +++ b/apparmor.d/groups/freedesktop/pipewire-media-session @@ -22,12 +22,12 @@ profile pipewire-media-session @{exec_path} { network bluetooth stream, network netlink raw, - dbus send bus=system path=/org/freedesktop/RealtimeKit[0-9] + dbus send bus=system path=/org/freedesktop/RealtimeKit1 interface=org.freedesktop.DBus.Properties member=Get peer=(name=org.freedesktop.RealtimeKit1), - dbus send bus=system path=/org/freedesktop/RealtimeKit[0-9] + dbus send bus=system path=/org/freedesktop/RealtimeKit1 interface=org.freedesktop.RealtimeKit1 member=MakeThreadRealtime peer=(name=org.freedesktop.RealtimeKit1), diff --git a/apparmor.d/groups/freedesktop/polkit-agent-helper b/apparmor.d/groups/freedesktop/polkit-agent-helper index 2678100a..d3e96948 100644 --- a/apparmor.d/groups/freedesktop/polkit-agent-helper +++ b/apparmor.d/groups/freedesktop/polkit-agent-helper @@ -30,13 +30,13 @@ profile polkit-agent-helper @{exec_path} { signal (receive) set=(term, kill) peer=pkttyagent, signal (receive) set=(term, kill) peer=polkit-*-authentication-agent, - dbus (send) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus (send) bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll peer=(name=:*), - dbus (send) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus (send) bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member=AuthenticationAgentResponse2 peer=(name=:*), diff --git a/apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk b/apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk index 5610c933..96c8d215 100644 --- a/apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk +++ b/apparmor.d/groups/freedesktop/xdg-desktop-portal-gtk @@ -9,6 +9,7 @@ include @{exec_path} = @{lib}/xdg-desktop-portal-gtk profile xdg-desktop-portal-gtk @{exec_path} { include + include include include include @@ -28,11 +29,6 @@ profile xdg-desktop-portal-gtk @{exec_path} { unix (send, receive, connect) type=stream peer=(addr="@/tmp/.X11-unix/*", label=gnome-shell), - dbus send bus=session path=/org/freedesktop/DBus - interface=org.freedesktop.DBus - member={RequestName,ReleaseName} - peer=(name=org.freedesktop.DBus, label=dbus-daemon), - dbus send bus=system path=/org/freedesktop/Accounts/User[0-9]* interface=org.freedesktop.DBus.Properties member=GetAll, @@ -88,31 +84,6 @@ profile xdg-desktop-portal-gtk @{exec_path} { member={RunningApplicationsChanged,WindowsChanged} peer=(name=:*, label=gnome-shell), - dbus send bus=accessibility path=/org/a11y/atspi/registry/deviceeventcontroller - interface=org.a11y.atspi.DeviceEventController - member={GetKeystrokeListeners,GetDeviceEventListeners} - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus send bus=accessibility path=/org/a11y/atspi/registry - interface=org.a11y.atspi.Registry - member=GetRegisteredEvents - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus receive bus=accessibility path=/org/a11y/atspi/registry - interface=org.a11y.atspi.Registry - member=EventListenerDeregistered - peer=(name=:*, label=at-spi2-registryd), - - dbus send bus=accessibility path=/org/a11y/atspi/accessible/root - interface=org.a11y.atspi.Socket - member=Embed - peer=(name=org.a11y.atspi.Registry), # all peer's labels - - dbus send bus=session path=/org/a11y/bus - interface=org.a11y.Bus - member=GetAddress - peer=(name=org.a11y.Bus, label=at-spi-bus-launcher), - dbus send bus=session path=/org/gtk/vfs/mounttracker interface=org.gtk.vfs.MountTracker member=ListMountableInfo diff --git a/apparmor.d/groups/gnome/gdm-session-worker b/apparmor.d/groups/gnome/gdm-session-worker index d16ce65e..d9807f34 100644 --- a/apparmor.d/groups/gnome/gdm-session-worker +++ b/apparmor.d/groups/gnome/gdm-session-worker @@ -55,8 +55,8 @@ profile gdm-session-worker @{exec_path} flags=(attach_disconnected) { member=UserAdded peer=(name=:*, label=accounts-daemon), - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={CreateSession,ReleaseSession}, @{exec_path} mrix, diff --git a/apparmor.d/groups/gnome/gnome-keyring-daemon b/apparmor.d/groups/gnome/gnome-keyring-daemon index c74b1d0c..8f08e90d 100644 --- a/apparmor.d/groups/gnome/gnome-keyring-daemon +++ b/apparmor.d/groups/gnome/gnome-keyring-daemon @@ -19,25 +19,20 @@ profile gnome-keyring-daemon @{exec_path} flags=(attach_disconnected) { signal (receive) set=(term) peer=gdm, signal (send) set=(term) peer=ssh-agent, - dbus send bus=session path=/org/freedesktop/DBus - interface=org.freedesktop.DBus - member={RequestName,ReleaseName} - peer=(name=org.freedesktop.DBus, label=dbus-daemon), - - dbus send bus=system path=/org/freedesktop/login[0-9]/session/* + dbus send bus=system path=/org/freedesktop/login1/session/* interface=org.freedesktop.DBus.Properties member=Get - peer=(name=org.freedesktop.login[0-9]), + peer=(name=org.freedesktop.login1), - dbus receive bus=system path=/org/freedesktop/login[0-9]/session/* + dbus receive bus=system path=/org/freedesktop/login1/session/* interface=org.freedesktop.DBus.Properties member=PropertiesChanged peer=(name=:*, label=systemd-logind), - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=GetSession - peer=(name=org.freedesktop.login[0-9]), + peer=(name=org.freedesktop.login1), dbus send bus=session path=/org/gnome/SessionManager interface=org.gnome.SessionManager diff --git a/apparmor.d/groups/gnome/gnome-session-binary b/apparmor.d/groups/gnome/gnome-session-binary index bc49b34e..f0b676b4 100644 --- a/apparmor.d/groups/gnome/gnome-session-binary +++ b/apparmor.d/groups/gnome/gnome-session-binary @@ -39,20 +39,20 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) { member={RequestName,ReleaseName,UpdateActivationEnvironment,GetConnectionUnixUser,GetConnectionUnixProcessID} peer=(name=org.freedesktop.DBus label=dbus-daemon), - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={CanPowerOff,GetSession,PowerOff,Inhibit,Reboot} peer=(name=:*, label=systemd-logind), - dbus receive bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus receive bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={SessionNew,PrepareForShutdown,SessionRemoved,UserNew,UserRemoved,PrepareForSleep} peer=(name=:*, label=systemd-logind), - dbus send bus=system path=/org/freedesktop/login[0-9]/session/* - interface=org.freedesktop.login[0-9].Session + dbus send bus=system path=/org/freedesktop/login1/session/* + interface=org.freedesktop.login1.Session member=SetIdleHint - peer=(name=org.freedesktop.login[0-9], label=systemd-logind), + peer=(name=org.freedesktop.login1, label=systemd-logind), dbus (send,receive) bus=session path=/org/gnome/SessionManager{,/**} interface={org.freedesktop.DBus.Introspectable,org.gnome.SessionManager**}, @@ -62,7 +62,7 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) { member=GetAll peer=(name=:*, label=at-spi2-registryd), - dbus send bus=session path=/org/gnome/SessionManager/Client[0-9]* + dbus send bus=session path=/org/gnome/SessionManager/Client@{int} interface=org.gnome.SessionManager.ClientPrivate member=CancelEndSession peer=(name=org.freedesktop.DBus, label=gsd-*), @@ -82,7 +82,7 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) { member=GetAll peer=(name=:*, label=gnome-shell), - dbus (send, receive) bus=system path=/org/freedesktop/login[0-9]* + dbus (send, receive) bus=system path=/org/freedesktop/login1* interface=org.freedesktop.DBus.Properties member={GetAll,PropertiesChanged} peer=(name=:*, label=systemd-logind), diff --git a/apparmor.d/groups/gnome/gnome-session-ctl b/apparmor.d/groups/gnome/gnome-session-ctl index 94c49a9a..30c34bb5 100644 --- a/apparmor.d/groups/gnome/gnome-session-ctl +++ b/apparmor.d/groups/gnome/gnome-session-ctl @@ -15,10 +15,10 @@ profile gnome-session-ctl @{exec_path} { unix (send, receive, connect) type=stream peer=(addr=@/tmp/dbus-????????, label=dbus-daemon), - dbus send bus=session path=/org/freedesktop/systemd[0-9]* - interface=org.freedesktop.systemd[0-9]*.Manager + dbus send bus=session path=/org/freedesktop/systemd1 + interface=org.freedesktop.systemd1.Manager member={StartUnit,StopUnit} - peer=(name=org.freedesktop.systemd[0-9]*), + peer=(name=org.freedesktop.systemd1), dbus send bus=session path=/org/gnome/SessionManager interface=org.gnome.SessionManager diff --git a/apparmor.d/groups/gnome/gsd-media-keys b/apparmor.d/groups/gnome/gsd-media-keys index 5e5d99e5..6358b776 100644 --- a/apparmor.d/groups/gnome/gsd-media-keys +++ b/apparmor.d/groups/gnome/gsd-media-keys @@ -31,24 +31,24 @@ profile gsd-media-keys @{exec_path} flags=(attach_disconnected) { member={RequestName,ReleaseName} peer=(name=org.freedesktop.DBus, label=dbus-daemon), - dbus send bus=system path=/org/freedesktop/login[0-9] + dbus send bus=system path=/org/freedesktop/login1 interface=org.freedesktop.DBus.Properties member=GetAll, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=PowerOff, - dbus receive bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus receive bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={SessionNew,SessionRemoved,PrepareForShutdown,UserNew,UserRemoved,PrepareForSleep} peer=(name=:*, label=systemd-logind), - dbus receive bus=system path=/org/freedesktop/login[0-9] + dbus receive bus=system path=/org/freedesktop/login1 interface=org.freedesktop.DBus.Properties member=PropertiesChanged, diff --git a/apparmor.d/groups/gnome/gsd-power b/apparmor.d/groups/gnome/gsd-power index 6d6f6c1a..27cae2b2 100644 --- a/apparmor.d/groups/gnome/gsd-power +++ b/apparmor.d/groups/gnome/gsd-power @@ -25,11 +25,6 @@ profile gsd-power @{exec_path} flags=(attach_disconnected) { signal (receive) set=(term, hup) peer=gdm*, - dbus send bus=session path=/org/freedesktop/DBus - interface=org.freedesktop.DBus - member={RequestName,ReleaseName} - peer=(name=org.freedesktop.DBus, label=dbus-daemon), - dbus (send,receive) bus=system path=/org/freedesktop/UPower{,/**} interface=org.freedesktop.{DBus.Properties,UPower*}, @@ -37,28 +32,28 @@ profile gsd-power @{exec_path} flags=(attach_disconnected) { interface=org.freedesktop.DBus.Properties member=Get, - dbus send bus=system path=/org/freedesktop/login[0-9] + dbus send bus=system path=/org/freedesktop/login1 interface=org.freedesktop.DBus.Properties member=GetAll, - dbus send bus=system path=/org/freedesktop/login[0-9]/session/auto + dbus send bus=system path=/org/freedesktop/login1/session/auto interface=org.freedesktop.DBus.Properties member=GetAll, - dbus send bus=system path=/org/freedesktop/login[0-9]/session/auto - interface=org.freedesktop.login[0-9].Session + dbus send bus=system path=/org/freedesktop/login1/session/auto + interface=org.freedesktop.login1.Session member=SetBrightness, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, - dbus receive bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus receive bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={SessionNew,SessionRemoved,PrepareForShutdown,UserNew,UserRemoved,PrepareForSleep} peer=(name=:*, label=systemd-logind), - dbus receive bus=system path=/org/freedesktop/login[0-9] + dbus receive bus=system path=/org/freedesktop/login1 interface=org.freedesktop.DBus.Properties member=PropertiesChanged, diff --git a/apparmor.d/groups/systemd/systemd-localed b/apparmor.d/groups/systemd/systemd-localed index f92150db..1f2bf155 100644 --- a/apparmor.d/groups/systemd/systemd-localed +++ b/apparmor.d/groups/systemd/systemd-localed @@ -22,7 +22,7 @@ profile systemd-localed @{exec_path} flags=(attach_disconnected) { member={ReleaseName,RequestName} peer=(name=org.freedesktop.DBus), - dbus receive bus=system path=/org/freedesktop/locale[0-9] + dbus receive bus=system path=/org/freedesktop/locale1 interface=org.freedesktop.DBus.Properties member=GetAll, diff --git a/apparmor.d/groups/ubuntu/update-manager b/apparmor.d/groups/ubuntu/update-manager index 10f3e0f8..30ef7816 100644 --- a/apparmor.d/groups/ubuntu/update-manager +++ b/apparmor.d/groups/ubuntu/update-manager @@ -47,8 +47,8 @@ profile update-manager @{exec_path} flags=(attach_disconnected) { interface=org.freedesktop.DBus.{Properties,Introspectable} member={Get,Introspect}, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, dbus receive bus=system path=/org/freedesktop/NetworkManager diff --git a/apparmor.d/profiles-a-f/fprintd b/apparmor.d/profiles-a-f/fprintd index 1ff55cb7..cb7944c3 100644 --- a/apparmor.d/profiles-a-f/fprintd +++ b/apparmor.d/profiles-a-f/fprintd @@ -26,10 +26,10 @@ profile fprintd @{exec_path} flags=(attach_disconnected) { member={RequestName,ReleaseName} peer=(name=org.freedesktop.DBus), - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit - peer=(name=org.freedesktop.login[0-9]), + peer=(name=org.freedesktop.login1), dbus bind bus=system name=net.reactivated.Fprint, diff --git a/apparmor.d/profiles-m-r/packagekitd b/apparmor.d/profiles-m-r/packagekitd index c5b8b6de..6b2a8beb 100644 --- a/apparmor.d/profiles-m-r/packagekitd +++ b/apparmor.d/profiles-m-r/packagekitd @@ -62,18 +62,18 @@ profile packagekitd @{exec_path} flags=(attach_disconnected) { member={CheckPermissions,DeviceAdded,DeviceRemoved,StateChanged} peer=(name=:*, label=NetworkManager), - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll peer=(name=:*, label=polkitd), - dbus receive bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus receive bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member=Changed peer=(name=:*, label=polkitd), - dbus receive bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus receive bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={SessionNew,PrepareForShutdown,SessionRemoved,UserNew,UserRemoved,PrepareForSleep} peer=(name=:*, label=systemd-logind), diff --git a/apparmor.d/profiles-m-r/pkexec b/apparmor.d/profiles-m-r/pkexec index b9dd97ce..19d702f6 100644 --- a/apparmor.d/profiles-m-r/pkexec +++ b/apparmor.d/profiles-m-r/pkexec @@ -31,23 +31,23 @@ profile pkexec @{exec_path} { ptrace (read), - dbus (send) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus (send) bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll peer=(name=:*), - dbus (send) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus (send) bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member={EnumerateActions,CheckAuthorization,RegisterAuthenticationAgent,UnregisterAuthenticationAgent} peer=(name=:*), - dbus (receive) bus=system path=/org/freedesktop/PolicyKit[0-9]*/Authority - interface=org.freedesktop.PolicyKit[0-9]*.Authority + dbus (receive) bus=system path=/org/freedesktop/PolicyKit1*/Authority + interface=org.freedesktop.PolicyKit1*.Authority member=Changed peer=(name=:*), - dbus (receive) bus=system path=/org/freedesktop/PolicyKit[0-9]*/AuthenticationAgent - interface=org.freedesktop.PolicyKit[0-9]*.AuthenticationAgent + dbus (receive) bus=system path=/org/freedesktop/PolicyKit1*/AuthenticationAgent + interface=org.freedesktop.PolicyKit1*.AuthenticationAgent member=BeginAuthentication peer=(name=:*), diff --git a/apparmor.d/profiles-m-r/pkttyagent b/apparmor.d/profiles-m-r/pkttyagent index d8e59f1f..72a7862d 100644 --- a/apparmor.d/profiles-m-r/pkttyagent +++ b/apparmor.d/profiles-m-r/pkttyagent @@ -20,21 +20,21 @@ profile pkttyagent @{exec_path} { ptrace (read), signal (send,receive), - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll, - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member=RegisterAuthenticationAgentWithOptions, - dbus receive bus=system path=/org/freedesktop/PolicyKit[0-9]/AuthenticationAgent + dbus receive bus=system path=/org/freedesktop/PolicyKit1/AuthenticationAgent interface=org.freedesktop.PolicyKit1.AuthenticationAgent member={BeginAuthentication,CancelAuthentication} peer=(name=:*, label=polkitd), - dbus receive bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus receive bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member=Changed, @{exec_path} mr, diff --git a/apparmor.d/profiles-s-z/su b/apparmor.d/profiles-s-z/su index 09792bd3..e5175f3f 100644 --- a/apparmor.d/profiles-s-z/su +++ b/apparmor.d/profiles-s-z/su @@ -37,8 +37,8 @@ profile su @{exec_path} { network netlink raw, - dbus (send) bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus (send) bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member={CreateSession,ReleaseSession}, @{exec_path} mr, diff --git a/apparmor.d/profiles-s-z/system-config-printer b/apparmor.d/profiles-s-z/system-config-printer index 83c63576..c2d67491 100644 --- a/apparmor.d/profiles-s-z/system-config-printer +++ b/apparmor.d/profiles-s-z/system-config-printer @@ -27,12 +27,12 @@ profile system-config-printer @{exec_path} flags=(complain) { network inet6 stream, network netlink raw, - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority interface=org.freedesktop.DBus.Properties member=GetAll, - dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority - interface=org.freedesktop.PolicyKit[0-9].Authority + dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority + interface=org.freedesktop.PolicyKit1.Authority member=CheckAuthorization, dbus send bus=system path=/org/freedesktop/hostname[0-9] diff --git a/apparmor.d/profiles-s-z/udisksd b/apparmor.d/profiles-s-z/udisksd index 99b4381a..cd8f1ec7 100644 --- a/apparmor.d/profiles-s-z/udisksd +++ b/apparmor.d/profiles-s-z/udisksd @@ -76,12 +76,12 @@ profile udisksd @{exec_path} flags=(attach_disconnected) { interface=org.freedesktop.DBus member={ReleaseName,GetConnectionUnixUser,RequestName}, - dbus send bus=system path=/org/freedesktop/login[0-9] - interface=org.freedesktop.login[0-9].Manager + dbus send bus=system path=/org/freedesktop/login1 + interface=org.freedesktop.login1.Manager member=Inhibit, - dbus receive bus=system path=/org/freedesktop/login[0-9]* - interface=org.freedesktop.login[0-9]*.Manager + dbus receive bus=system path=/org/freedesktop/login1* + interface=org.freedesktop.login1*.Manager member={PrepareForSleep,PrepareForShutdown} peer=(name=:*, label=systemd-logind),