From f5e7cd7d0ceb49bfbf55e323c09e5185bc11be46 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Wed, 29 Nov 2023 22:10:23 +0000
Subject: [PATCH] feat(abs): add some common dbus rules.

---
 .../abstractions/dbus-accessibility-strict.d/complete     | 8 ++++++++
 apparmor.d/abstractions/dbus-session-strict.d/complete    | 5 +++++
 apparmor.d/abstractions/dbus-strict.d/complete            | 8 ++++++++
 3 files changed, 21 insertions(+)
 create mode 100644 apparmor.d/abstractions/dbus-accessibility-strict.d/complete
 create mode 100644 apparmor.d/abstractions/dbus-strict.d/complete

diff --git a/apparmor.d/abstractions/dbus-accessibility-strict.d/complete b/apparmor.d/abstractions/dbus-accessibility-strict.d/complete
new file mode 100644
index 00000000..e95e5f99
--- /dev/null
+++ b/apparmor.d/abstractions/dbus-accessibility-strict.d/complete
@@ -0,0 +1,8 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  dbus send bus=accessibility path=/org/freedesktop/DBus
+       interface=org.freedesktop.DBus
+       member={RequestName,ReleaseName}
+       peer=(name=org.freedesktop.DBus, label=dbus-daemon),
diff --git a/apparmor.d/abstractions/dbus-session-strict.d/complete b/apparmor.d/abstractions/dbus-session-strict.d/complete
index 28648eb5..8410eba9 100644
--- a/apparmor.d/abstractions/dbus-session-strict.d/complete
+++ b/apparmor.d/abstractions/dbus-session-strict.d/complete
@@ -7,6 +7,11 @@
 
   unix (connect, send, receive, accept) type=stream peer=(addr="@/tmp/dbus-????????"),
 
+  dbus send bus=session path=/org/freedesktop/dbus
+       interface=org.freedesktop.DBus
+       member={RequestName,ReleaseName}
+       peer=(name=org.freedesktop.DBus, label=dbus-daemon),
+
   owner @{run}/user/@{uid}/at-spi/ rw,
   owner @{run}/user/@{uid}/at-spi/bus rw,
   owner @{run}/user/@{uid}/at-spi/bus_@{int} rw,
diff --git a/apparmor.d/abstractions/dbus-strict.d/complete b/apparmor.d/abstractions/dbus-strict.d/complete
new file mode 100644
index 00000000..c8942bcc
--- /dev/null
+++ b/apparmor.d/abstractions/dbus-strict.d/complete
@@ -0,0 +1,8 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2022 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+  dbus send bus=system path=/org/freedesktop/DBus
+       interface=org.freedesktop.DBus
+       member={RequestName,ReleaseName}
+       peer=(name=org.freedesktop.DBus, label=dbus-daemon),