From c636d1771e04ccfa8c9eff5c4111e57bce2a3d8c Mon Sep 17 00:00:00 2001
From: intrigeri <intrigeri@boum.org>
Date: Sun, 11 Sep 2016 23:03:01 +0200
Subject: [PATCH 1/2] Add a basic wayland abstraction.

It's good enough to allow starting Evince in GNOME on Wayland,
on current Debian unstable.

References: https://bugs.debian.org/807880
---
 profiles/apparmor.d/abstractions/wayland | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 profiles/apparmor.d/abstractions/wayland

diff --git a/profiles/apparmor.d/abstractions/wayland b/profiles/apparmor.d/abstractions/wayland
new file mode 100644
index 000000000..47aff5b86
--- /dev/null
+++ b/profiles/apparmor.d/abstractions/wayland
@@ -0,0 +1,12 @@
+# vim:syntax=apparmor
+# ------------------------------------------------------------------
+#
+#    Copyright (C) 2016 intrigeri <intrigeri@boum.org>
+#
+#    This program is free software; you can redistribute it and/or
+#    modify it under the terms of version 2 of the GNU General Public
+#    License published by the Free Software Foundation.
+#
+# ------------------------------------------------------------------
+
+  owner /{,var/}run/user/*/weston-shared-* rw,

From d482d1a26c2128662444ffb5eb665c876970c716 Mon Sep 17 00:00:00 2001
From: intrigeri <intrigeri@boum.org>
Date: Sun, 11 Sep 2016 23:03:24 +0200
Subject: [PATCH 2/2] Include the wayland abstraction from the gnome one.

This is the least invasive solution to the problem I'm trying to solve
right now (Evince not starting in GNOME on Wayland, and probably
similar issues for other GNOME applications I suppose).

At some point, we will probably want to source the wayland abstraction
from other desktop environments' abstractions, or simply from the
X one. Let's come back to it once people using these other desktop
environments on Wayland with AppArmor enabled tell us what policy
change is needed to make it work for them.
---
 profiles/apparmor.d/abstractions/gnome | 1 +
 1 file changed, 1 insertion(+)

diff --git a/profiles/apparmor.d/abstractions/gnome b/profiles/apparmor.d/abstractions/gnome
index 6f41a71ec..35eb54d6e 100644
--- a/profiles/apparmor.d/abstractions/gnome
+++ b/profiles/apparmor.d/abstractions/gnome
@@ -15,6 +15,7 @@
 #include <abstractions/freedesktop.org>
 #include <abstractions/xdg-desktop>
 #include <abstractions/user-tmp>
+#include <abstractions/wayland>
 
   # systemwide gtk defaults
   /etc/gnome/gtkrc*               r,