1 --- a/data/apparmor/abstractions/lightdm_chromium-browser
2 +++ b/data/apparmor/abstractions/lightdm_chromium-browser
4 # provided in abstractions/lightdm, this abstraction must be separate from
5 # abstractions/lightdm.
7 + /usr/lib/chromium/chromium Cx -> chromium,
8 /usr/lib/chromium-browser/chromium-browser Cx -> chromium,
9 /usr/bin/webapp-container Cx -> chromium,
10 /usr/bin/webbrowser-app Cx -> chromium,
15 + /usr/lib/chromium/chrome-sandbox ix,
16 /usr/lib/chromium-browser/chromium-browser-sandbox ix,
17 /usr/lib/@{multiarch}/oxide-qt/chrome-sandbox ix,
18 /opt/google/chrome-*/chrome-sandbox ix,
19 --- a/data/apparmor/abstractions/lightdm
20 +++ b/data/apparmor/abstractions/lightdm
22 owner /dev/shm/** rmw,
25 - /etc/gdm/Xsession ix,
26 + /etc/X11/Xsession ix,
31 # necessary for writing to sockets, etc.
33 /{,var/}run/shm/** wl,
34 + /{,var/}run/uuid/request w,
35 # libpam-xdg-support/logind
36 owner /{,var/}run/user/*/** rw,