From d41f289e2a2af2eb59750332b502d1ca6e5a05c9 Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Sat, 16 Mar 2024 21:52:38 +0000 Subject: [PATCH] feat: ensure the dbus services start with the good profile. As the entrypoin is the same for system & session bus, it is required to use systemd to select the profile. --- systemd/default/system/dbus-broker.service | 2 ++ systemd/default/system/dbus.service | 2 ++ systemd/default/user/at-spi-dbus-bus.service | 3 +-- systemd/default/user/dbus-broker.service | 2 ++ systemd/default/user/dbus.service | 2 ++ 5 files changed, 9 insertions(+), 2 deletions(-) create mode 100644 systemd/default/system/dbus-broker.service create mode 100644 systemd/default/system/dbus.service create mode 100644 systemd/default/user/dbus-broker.service create mode 100644 systemd/default/user/dbus.service diff --git a/systemd/default/system/dbus-broker.service b/systemd/default/system/dbus-broker.service new file mode 100644 index 00000000..8d3ed8b7 --- /dev/null +++ b/systemd/default/system/dbus-broker.service @@ -0,0 +1,2 @@ +[Service] +AppArmorProfile=dbus-system diff --git a/systemd/default/system/dbus.service b/systemd/default/system/dbus.service new file mode 100644 index 00000000..8d3ed8b7 --- /dev/null +++ b/systemd/default/system/dbus.service @@ -0,0 +1,2 @@ +[Service] +AppArmorProfile=dbus-system diff --git a/systemd/default/user/at-spi-dbus-bus.service b/systemd/default/user/at-spi-dbus-bus.service index 53d69374..9c1fad53 100644 --- a/systemd/default/user/at-spi-dbus-bus.service +++ b/systemd/default/user/at-spi-dbus-bus.service @@ -1,3 +1,2 @@ [Service] -AppArmorProfile=at-spi-bus - +AppArmorProfile=dbus-accessibility diff --git a/systemd/default/user/dbus-broker.service b/systemd/default/user/dbus-broker.service new file mode 100644 index 00000000..c99c3c51 --- /dev/null +++ b/systemd/default/user/dbus-broker.service @@ -0,0 +1,2 @@ +[Service] +AppArmorProfile=dbus-session diff --git a/systemd/default/user/dbus.service b/systemd/default/user/dbus.service new file mode 100644 index 00000000..c99c3c51 --- /dev/null +++ b/systemd/default/user/dbus.service @@ -0,0 +1,2 @@ +[Service] +AppArmorProfile=dbus-session