apparmor: add transmission updated daemon profile

helpers/DATA/apparmor/005-update_trasnmission_profile_for_daemon_service_fix.patch

@@ -0,0 +1,54 @@
+diff --git a/profiles/apparmor.d/transmission b/profiles/apparmor.d/transmission
+index 6cd67adf..6aa4214a 100644
+--- a/profiles/apparmor.d/transmission
++++ b/profiles/apparmor.d/transmission
+@@ -5,7 +5,7 @@ abi <abi/4.0>,
+ 
+ include <tunables/global>
+ 
+-profile transmission-daemon /usr/bin/transmission-daemon flags=(complain) {
++profile transmission-daemon /usr/bin/transmission-daemon flags=(complain,attach_disconnected) {
+   # Don't use abstractions/transmission-common here, as the
+   # access needed is narrower than the user applications
+   include <abstractions/base>
+@@ -17,6 +17,8 @@ profile transmission-daemon /usr/bin/transmission-daemon flags=(complain) {
+   network inet  stream,
+   network inet6 stream,
+ 
++  /usr/bin/transmission-daemon mr,
++
+   owner @{PROC}/@{pid}/mounts r,
+   @{PROC}/sys/kernel/random/uuid r,
+ 
+@@ -42,17 +44,21 @@ profile transmission-cli /usr/bin/transmission-cli flags=(complain) {
+   include <abstractions/transmission-common>
+   include <abstractions/consoles>
+ 
++  /usr/bin/transmission-cli mr,
++
+   # Site-specific additions and overrides. See local/README for details.
+   include if exists <local/transmission>
+   include if exists <local/transmission-cli>
+ }
+ 
+-profile transmission-gtk /usr/bin/transmission-gtk flags=(complain) {
++profile transmission-gtk /usr/bin/transmission-gtk flags=(complain,attach_disconnected) {
+   include <abstractions/transmission-common>
+   include <abstractions/dbus-session-strict>
+   include <abstractions/dconf>
+   include <abstractions/gnome>
+ 
++  /usr/bin/transmission-gtk mr,
++
+   owner @{run}/user/*/dconf/user w,
+ 
+   # Site-specific additions and overrides. See local/README for details.
+@@ -70,6 +76,8 @@ profile transmission-qt /usr/bin/transmission-qt flags=(complain) {
+   include <abstractions/qt5>
+   include <abstractions/qt5-settings-write>
+ 
++  /usr/bin/transmission-qt mr,
++
+   # Site-specific additions and overrides. See local/README for details.
+   include if exists <local/transmission>
+   include if exists <local/transmission-qt>

helpers/make-apparmor

@@ -17,13 +17,13 @@
 #    Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
 #
 
-VERSION=1
+VERSION=2
 
 . ./config
 
 # Apply fix for pipewire on apparmor, see more at:
 # https://bugs.launchpad.net/apparmor/+bug/2003702
-patch_p1 $DATA/b5a7641dd3502fcfb897d3b96e197628b674ce3c.patch
+patch_p1 $DATA/001-b5a7641dd3502fcfb897d3b96e197628b674ce3c.patch
 
 # Add custom unconfined profiles for abrowser and icedove, deliberately patch
 # upon an original upstream profile copy to force track original files and
@@ -33,13 +33,16 @@ patch_p1 $DATA/b5a7641dd3502fcfb897d3b96e197628b674ce3c.patch
 
 cp profiles/apparmor.d/{thunderbird,icedove}
 cp profiles/apparmor.d/{firefox,abrowser}
-patch_p1 $DATA/add-unconfined-profile-firefox-icedove.patch
+patch_p1 $DATA/002-add-unconfined-profile-firefox-icedove.patch
 
 cp profiles/apparmor/profiles/extras/{firefox,abrowser}
-patch_p1 $DATA/add-extra-abrowser-profile.patch
+patch_p1 $DATA/003-add-extra-abrowser-profile.patch
 # Note: look for updates on abrowser.sh profile on each helper/patch change:
-patch_p1 $DATA/update-profile-extra-firefox-sh.patch
+patch_p1 $DATA/004-update-profile-extra-firefox-sh.patch
 
-changelog "Apply fix LP:2003702 for pidgin like clients. | Add unconfined profiles for firefox and icedove."
+# Update trasnmission apparmor profile to fix daemon management
+patch_p1 $DATA/005-update_trasnmission_profile_for_daemon_service_fix.patch
+
+changelog "Apply fix LP:2003702 for pidgin like clients. | Add unconfined profiles for firefox and icedove. | Improve transmission daemon service profile to improve management."
 
 package