summaryrefslogtreecommitdiff
path: root/usr.games.steam
blob: 3646a3daf9288feb0625fc8287c8c63a0cdb7417 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113

#include <tunables/global>

/usr/games/steam {
#/usr/games/steam flags=(complain) {
	#include <abstractions/X>
	#include <abstractions/base>
	#include <abstractions/fonts>
	#include <abstractions/audio>
	#include <abstractions/dbus-session>
	#include <abstractions/consoles>
	#include <abstractions/python>
	#include <abstractions/nameservice>
	#include <abstractions/freedesktop.org>
	#include <abstractions/xdg-desktop>

	ptrace (trace) peer=/usr/games/steam,

	/usr/games/steam r,
	/usr/games/steam.real r,
	/usr/bin/bwrap PUx,
	/bin/* rix,
	/usr/bin/* rix,

	/sys/ r,
	/sys/** r,
	/run/shm/* rwkl,
	/dev/shm/* rwkl,
	/dev/dri/ r,
	/dev/dri/* rwm,
	/dev/snd/* rwm,
	/dev/input/* rwm,

	/etc/udev/udev.conf r,
	/etc/ld.so.preload r,
	/lib/i386-linux-gnu/ld-2.[0-9]*.so rix,
	/lib/x86_64-linux-gnu/ld-2.[0-9]*.so rix,
	/sbin/ldconfig rix,
	/run/udev/** r,
	/usr/share/fonts/** rmk,
	/usr/share/glvnd/egl_vendor.d/* r,

	/tmp/steam_chrome_shmem* rw,
	/tmp/gameoverlayui.log rw,
	/tmp/gameoverlayui.log.last rw,
	/tmp/gameoverlayrenderer.log rw,
	/tmp/gameoverlayrenderer.log.last rw,
	/tmp/source_engine_[0-9]*.lock rwlk,
	/tmp/dumps/ w,
	/tmp/dumps/** rw,
	/tmp/.org.chromium.Chromium.*/ w,
	/tmp/.wine-[0-9]*/** rwm,

	/ r,
	/home/ r,
	/tmp/** rwk,

	owner @{HOME}/ r,
	owner @{HOME}/.steam/ r,
	owner @{HOME}/.steam/** rwlkix,
	owner @{HOME}/.local/share/** rwk,
	owner @{HOME}/.steampath rw,
	owner @{HOME}/.steampid rw,
	owner @{HOME}/.config/unity3d/** rwk,
	owner @{HOME}/.cache/unity3d/** rw,
	owner @{HOME}/.cache/fontconfig/** rwk,
	owner @{HOME}/.cache/mesa_shader_cache/** rwk,
	owner @{HOME}/.glvnd* rwm,
	owner @{HOME}/.pki/nssdb/{cert9.db,pkcs11.txt} r,
	#owner @{HOME}/#[0-9][0-9][0-9][0-9][0-9][0-9][0-9] rwm,

	owner @{HOME}/.factorio/** rwk,
	owner @{HOME}/.config/StardewValley/** rwk,
	owner @{HOME}/.Prison?Architect/** rwk,
	owner @{HOME}/.Braid/** rwk,
	owner @{HOME}/.bitsquid/** rwk,
	owner @{HOME}/.bs5/** rwk,
	owner @{HOME}/.adom.steam/** rwk,

	@{PROC}/ r,
	@{PROC}/version r,
	@{PROC}/loadavg r,
	owner @{PROC}/[0-9]*/cmdline r,
	owner @{PROC}/[0-9]*/auxv r,
	owner @{PROC}/[0-9]*/environ r,
	owner @{PROC}/[0-9]*/fd/ r,
	owner @{PROC}/[0-9]*/status r,
	owner @{PROC}/[0-9]*/mem r,
	owner @{PROC}/[0-9]*/task/ r,
	owner @{PROC}/[0-9]*/task/[0-9]*/stat r,
	owner @{PROC}/[0-9]*/task/[0-9]*/status r,
	owner @{PROC}/[0-9]*/task/[0-9]*/comm rw,
	owner @{PROC}/[0-9]*/oom_score_adj w,

	/usr/share/zenity/zenity.ui r,
	/etc/magic r,

	/var/tmp/etilqs_* rwk,


	/etc/ssl/openssl.cnf r,

	# tmp additions
	/tmp/miles_image_* rwm,
	@{PROC}/sys/dev/i915/perf_stream_paranoid r,
	@{PROC}/sys/kernel/overflowuid r,
	@{PROC}/sys/kernel/overflowgid r,

	/usr/share/vulkan/** r,
	/etc/vulkan/** r,

	@{HOME}/.fltk/** rw,
}