fixes for abstractions from Mathias Gug

profiles/apparmor.d/abstractions/nvidia

@@ -0,0 +1,12 @@
+# vim:syntax=apparmor
+# nvidia access requirements
+  
+  # configuration queries
+  capability ipc_lock,
+
+  # device files
+  /dev/nvidia0    rw,
+  /dev/nvidiactl  rw,
+
+  /proc/interrupts r,
+  /proc/sys/vm/max_map_count r,

profiles/apparmor.d/abstractions/orbit2

@@ -0,0 +1,5 @@
+# vim:syntax=apparmor
+# orbit2 permissions
+
+  # system library
+  /usr/lib/orbit-2.0/*.so mr,

profiles/apparmor.d/abstractions/python

@@ -1,3 +1,4 @@
+# vim:syntax=apparmor
 # $Id$
 # ------------------------------------------------------------------
 #
@@ -18,3 +19,16 @@
   /usr/local/lib64/python2.[45]/site-packages/ r,
   /usr/local/lib/python2.[45]/**.{egg,py,pyc,pth,so} mr,
   /usr/local/lib/python2.[45]/site-packages/ r,
+
+  # Site-wide configuration
+  /etc/python2.[45]/site.py r,
+
+  # python-central paths
+  /usr/share/pycentral/** r,
+  /usr/share/python-support/** r,
+  /var/lib/python-support/** r,
+  /var/lib/python-support/**.so mr,
+  /usr/lib/python-support/**.so mr,
+
+  # wx paths
+  /usr/lib/wx/python/*.pth r,

profiles/apparmor.d/abstractions/video

@@ -0,0 +1,6 @@
+# vim:syntax=apparmor
+# video device access
+
+  # System devices
+  /sys/class/video4linux r,
+  /sys/class/video4linux/** r,