# Site-specific additions and overrides for usr.bin.firefox.
# For more details, please see /etc/apparmor.d/local/README.

  dbus send
	bus=system
	path=/org/freedesktop/UPower
	interface=org.freedesktop.UPower
	member=EnumerateDevices,

  dbus send
	bus=system
	path=/org/freedesktop/UPower/devices/{line_power_AC,battery_BAT[0-9]*}
	interface=org.freedesktop.DBus.Properties
	member=GetAll,

  dbus send
	bus=system
	path=/org/freedesktop/hostname1
	interface=org.freedesktop.DBus.Properties
	member=GetAll,

  dbus receive
	bus=system
	path=/org/freedesktop/UPower/devices/{line_power_AC,battery_BAT[0-9]*}
	interface=org.freedesktop.DBus.Properties
	member=PropertiesChanged,

  dbus send
	bus=session
	path=/ScreenSaver
	interface=org.freedesktop.ScreenSaver
	member={Inhibit,UnInhibit},

  dbus send
        bus=session
        path=/org/gtk/vfs/Daemon
        interface=org.gtk.vfs.Daemon
        member={GetConnection,ListMonitorImplementations},

  dbus send
	bus=session
	path=/org/gtk/vfs/mount/1
	interface=org.gtk.vfs.Mount
	member=QueryInfo,

  dbus send
	bus=session
	path=/org/gtk/vfs/mounttracker
	interface=org.gtk.vfs.MountTracker
	member={ListMountableInfo,ListMounts,LookupMount},

  dbus send
        bus=session
        path=/org/gtk/Private/RemoteVolumeMonitor
        interface=org.gtk.Private.RemoteVolumeMonitor
        member={IsSupported,List},

  dbus receive
        bus=session
        path=/org/gtk/Private/RemoteVolumeMonitor
        interface=org.gtk.Private.RemoteVolumeMonitor
        member={DriveChanged,DriveConnected,MountAdded,MountChanged,MountPreUnmount,MountRemoved,VolumeAdded,VolumeChanged,VolumeRemoved},

  dbus send
        bus=session
        path=/org/gtk/vfs/metadata
        interface=org.gtk.vfs.Metadata
        member={GetTreeFromDevice,Set},

  dbus send
        bus=session
        path=/ca/desrt/dconf/Writer/user
        interface=ca.desrt.dconf.Writer
        member=Change,

  dbus receive
        bus=session
        path=/ca/desrt/dconf/Writer/user
        interface=ca.desrt.dconf.Writer
        member=Notify,

  /sys/devices/system/node/node[0-9]*/meminfo r,

  # new with FF 49
  @{PROC}/@{pids}/net/arp r,
  owner /dev/shm/org.chromium.* rw,

  # contains a lot of information about the user's activity/files
  deny @{HOME}/.local/share/gvfs-metadata/* r,

  # for crash reports?
  ptrace (read,trace) peer=@{profile_name},

  # XXX: the abstractions/ubuntu-browsers.d/ubuntu-integration
  #      needs to support gstreamer-1.0
  /usr/lib/gstreamer[0-9]*/gstreamer-[0-9]*/gst-plugin-scanner ix,
  /usr/lib/@{multiarch}/gstreamer[0-9]*/gstreamer-[0-9]*/gst-plugin-scanner ix,

  /usr/bin/update-mime-database Cxr -> update_mime_database,
  profile update_mime_database {
    #include <abstractions/base>
  }