mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-02-28 12:44:44 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor.d/apparmor.d/profiles-g-l/labwc
Alexandre Pujol 09f1babb7c
chore: improve comments on udev data.
2024-03-13 15:58:28 +00:00

58 lines
1.7 KiB
Text
Raw Blame History

# apparmor.d - Full set of apparmor profiles
# Copyright (C) 2020-2021 Mikhail Morfikov
# Copyright (C) 2021-2024 Alexandre Pujol <alexandre@pujol.io>
# SPDX-License-Identifier: GPL-2.0-only
abi <abi/3.0>,
include <tunables/global>
@{exec_path} = @{bin}/labwc
profile labwc @{exec_path} flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/consoles>
include <abstractions/desktop>
include <abstractions/devices-usb>
include <abstractions/fontconfig-cache-read>
include <abstractions/graphics>
include <abstractions/nameservice-strict>
network netlink raw,
@{exec_path} mr,
# Apps allowed to run
@{bin}/* rPUx,
@{lib}/* rPUx,
/usr/share/libinput/ r,
/usr/share/libinput/*.quirks r,
owner @{user_config_dirs}/labwc/ r,
owner @{user_config_dirs}/labwc/* r,
owner /dev/shm/wayland.mozilla.ipc.@{int} rw,
@{sys}/class/drm/ r,
@{sys}/class/input/ r,
@{sys}/devices/@{pci}/boot_vga r,
@{sys}/devices/**/uevent r,
@{run}/udev/data/+acpi:* r, # for ?
@{run}/udev/data/+drm:card@{int}-* r, # for screen outputs
@{run}/udev/data/+hid:* r, # for HID-Compliant Keyboard
@{run}/udev/data/+hid:* r, # for HID-Compliant Keyboard
@{run}/udev/data/+pci:* r, # Identifies all PCI devices (CPU, GPU, Network, Disks, USB, etc.)
@{run}/udev/data/+platform:* r, # for ?
@{run}/udev/data/+serio:* r, # for touchpad?
@{run}/udev/data/+sound:card@{int} r, # for sound card
@{run}/udev/data/c13:@{int} r, # for /dev/input/*
@{run}/udev/data/c226:@{int} r, # for /dev/dri/card*
@{run}/systemd/sessions/* r,
@{run}/systemd/seats/seat@{int} r,
owner @{PROC}/@{pid}/fd/ r,
include if exists <local/labwc>
}
Reference in a new issue View git blame Copy permalink