[apparmor] gstreamer abstraction

[intrigeri]

Hi,

intrigeri wrote (16 Jun 2014 23:23:51 GMT) :
> intrigeri wrote (23 Oct 2013 08:21:01 GMT) :
>> Jamie Strandboge wrote (09 Oct 2013 14:55:53 GMT) :
>>> gst-plugin-scanner is actually used for audio and video codecs so
>>> keeping it out of the audio profile makes some degree of sense.

>> OK, I'll add a gstreamer abstraction, then.

>>> I'm also not a huge fan of adding ix rules to the upstream
>>> abstractions unless we absolutely have to, so would prefer if the ix
>>> was left in the totem profile. If others strongly disagree, I could
>>> be convinced otherwise.

>> Do you mean the gstreamer abstraction should not itself grant any
>> execution right on gst-plugin-scanner, or something else that
>> I'm missing?

> Unless I've missed something, I'm still blocking on this for creating
> a gstreamer abstraction, where I should move the few lines I had added
> to the Totem profile back then.

This has been waiting since October 2013, so I went ahead and prepared
a branch that extracts a gstreamer abstraction and a named
gst_plugin_scanner profile, and leaves the transition to it in the
totem abstraction:

  lp:~intrigeri/apparmor-profiles/gstreamer-abstraction

Given it was very unclear to me what the preferred solution was, I'm
too shy to issue a merge request right away, and am hereby asking for
a initial review. Thanks in advance!

Cheers,
-- 
intrigeri