feat(profiles): more integration for ubuntu 22.04

apparmor.d/groups/apt/apt

@@ -50,6 +50,7 @@ profile apt @{exec_path} flags=(attach_disconnected) {
   /{usr/,}bin/etckeeper                       rPx,
   /{usr/,}bin/ps                              rPx,
   /{usr/,}lib/needrestart/apt-pinvoke         rPx,
+  /{usr/,}lib/update-notifier/update-motd-updates-available rPx,
   /usr/share/command-not-found/cnf-update-db  rPx,
 
   # Methods to use to download packages from the net

apparmor.d/groups/gnome/gdm

@@ -6,7 +6,7 @@ abi <abi/3.0>,
 
 include <tunables/global>
 
-@{exec_path} = /{usr/,}{s,}bin/gdm{,3}
+@{exec_path} = /{usr/,}{s,}bin/gdm{3,}
 profile gdm @{exec_path} flags=(attach_disconnected) {
   include <abstractions/base>
   include <abstractions/wutmp>
@@ -26,22 +26,23 @@ profile gdm @{exec_path} flags=(attach_disconnected) {
 
   @{exec_path} mr,
 
-  /{usr/,}bin/plymouth            rPUx,
+  /{usr/,}bin/plymouth            rPx,
   /{usr/,}lib/gdm-session-worker  rPx,
 
   /usr/share/gdm/gdm.schemas r,
   /usr/share/wayland-sessions/*.desktop r,
   /usr/share/xsessions/*.desktop r,
 
-  /etc/gdm/custom.conf r,
+  /etc/gdm{3,}/custom.conf r,
   /etc/locale.conf r,
 
-  /var/{lib,log}/gdm/ rw,
+  /var/{lib,log}/gdm{3,}/ rw,
 
-  @{run}/gdm/ rw,
-  @{run}/gdm/custom.conf r,
-  @{run}/gdm/gdm.pid rw,
-  @{run}/gdm/greeter/ rw,
+  @{run}/gdm{3,}.pid rw,
+  @{run}/gdm{3,}/ rw,
+  @{run}/gdm{3,}/custom.conf r,
+  @{run}/gdm{3,}/gdm.pid rw,
+  @{run}/gdm{3,}/greeter/ rw,
   @{run}/systemd/seats/seat[0-9]* r,
   @{run}/systemd/sessions/[0-9]* r,
   @{run}/systemd/sessions/[0-9]*.ref r,

apparmor.d/groups/gnome/gnome-session-binary

@@ -51,7 +51,10 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) {
   /{usr/,}bin/pkcs11-register                              rPx,
   /{usr/,}bin/snap                                        rPUx,
   /{usr/,}bin/start-pulseaudio-x11                         rPx,
+  /{usr/,}bin/ubuntu-report                                rPx,
+  /{usr/,}bin/update-notifier                              rPx,
   /{usr/,}bin/xbrlapi                                      rPx,
+  /{usr/,}lib/update-notifier/ubuntu-advantage-notification rPx,
   @{libexec}/at-spi-bus-launcher                           rPx,
   @{libexec}/evolution-data-server/evolution-alarm-notify  rPx,
   @{libexec}/gsd-*                                         rPx,

apparmor.d/groups/gnome/gnome-shell

@@ -44,6 +44,8 @@ profile gnome-shell @{exec_path} flags=(attach_disconnected) {
   @{libexec}/polkit-1/polkit* rPx,
   @{libexec}/*                rPUx,
 
+  /usr/share/gnome-shell/extensions/ding@rastersoft.com/ding.js rPx,
+
   /opt/*/**/*.png r,
   /usr/share/backgrounds/{,**} r,
   /usr/share/dconf/profile/gdm r,