apparmor: add transmission updated daemon profile

2025-05-31 01:49:25 -06:00 · 2025-05-31 01:49:25 -06:00 · 6c4cd38392
commit 6c4cd38392
parent b074fc04d1
6 changed files with 63 additions and 6 deletions
--- a/helpers/DATA/apparmor/001-b5a7641dd3502fcfb897d3b96e197628b674ce3c.patch
+++ b/helpers/DATA/apparmor/001-b5a7641dd3502fcfb897d3b96e197628b674ce3c.patch
--- a/helpers/DATA/apparmor/002-add-unconfined-profile-firefox-icedove.patch
+++ b/helpers/DATA/apparmor/002-add-unconfined-profile-firefox-icedove.patch
--- a/helpers/DATA/apparmor/003-add-extra-abrowser-profile.patch
+++ b/helpers/DATA/apparmor/003-add-extra-abrowser-profile.patch
--- a/helpers/DATA/apparmor/004-update-profile-extra-firefox-sh.patch
+++ b/helpers/DATA/apparmor/004-update-profile-extra-firefox-sh.patch
--- a/helpers/DATA/apparmor/005-update_trasnmission_profile_for_daemon_service_fix.patch
+++ b/helpers/DATA/apparmor/005-update_trasnmission_profile_for_daemon_service_fix.patch
@ -0,0 +1,54 @@
+diff --git a/profiles/apparmor.d/transmission b/profiles/apparmor.d/transmission
+index 6cd67adf..6aa4214a 100644
+--- a/profiles/apparmor.d/transmission
+++ b/profiles/apparmor.d/transmission
+@@ -5,7 +5,7 @@ abi <abi/4.0>,
+ 
+ include <tunables/global>
+ 
+-profile transmission-daemon /usr/bin/transmission-daemon flags=(complain) {
+profile transmission-daemon /usr/bin/transmission-daemon flags=(complain,attach_disconnected) {
+   # Don't use abstractions/transmission-common here, as the
+   # access needed is narrower than the user applications
+   include <abstractions/base>
+@@ -17,6 +17,8 @@ profile transmission-daemon /usr/bin/transmission-daemon flags=(complain) {
+   network inet  stream,
+   network inet6 stream,
+ 
+  /usr/bin/transmission-daemon mr,
+
+   owner @{PROC}/@{pid}/mounts r,
+   @{PROC}/sys/kernel/random/uuid r,
+ 
+@@ -42,17 +44,21 @@ profile transmission-cli /usr/bin/transmission-cli flags=(complain) {
+   include <abstractions/transmission-common>
+   include <abstractions/consoles>
+ 
+  /usr/bin/transmission-cli mr,
+
+   # Site-specific additions and overrides. See local/README for details.
+   include if exists <local/transmission>
+   include if exists <local/transmission-cli>
+ }
+ 
+-profile transmission-gtk /usr/bin/transmission-gtk flags=(complain) {
+profile transmission-gtk /usr/bin/transmission-gtk flags=(complain,attach_disconnected) {
+   include <abstractions/transmission-common>
+   include <abstractions/dbus-session-strict>
+   include <abstractions/dconf>
+   include <abstractions/gnome>
+ 
+  /usr/bin/transmission-gtk mr,
+
+   owner @{run}/user/*/dconf/user w,
+ 
+   # Site-specific additions and overrides. See local/README for details.
+@@ -70,6 +76,8 @@ profile transmission-qt /usr/bin/transmission-qt flags=(complain) {
+   include <abstractions/qt5>
+   include <abstractions/qt5-settings-write>
+ 
+  /usr/bin/transmission-qt mr,
+
+   # Site-specific additions and overrides. See local/README for details.
+   include if exists <local/transmission>
+   include if exists <local/transmission-qt>