interfaces/many: miscellaneous updates based on feedback from the field

[jdstrand]

• interfaces/desktop,unity7: allow read on system and session xdg user-dirs files
• interfaces/browser-support: allow /run/udev access for cuse and vhost-vsock
• interfaces: allow directory read on /home/ and / by default
• interfaces/removable-media: allowing read on /run/ and /run/media/
• interfaces/browser-support: also allowing reading /etc/chromium/{,**}
• interfaces/browser-support: allow /proc/pid/mount{s,info} to avoid confusion
• interfaces/home: allow reading files and dirs that start with 'snap[^/]'
• interfaces/bluez: don't mediate 'path' to/from unconfined

[jdstrand]

@tonyespy - this PR has the bluez fix in 27db522.

[jdstrand]

@mvo5 - please consider this for 2.29.

[codecov-io]

Codecov Report

Merging #4097 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master    #4097   +/-   ##
=======================================
  Coverage   75.75%   75.75%           
=======================================
  Files         435      435           
  Lines       37442    37442           
=======================================
  Hits        28366    28366           
  Misses       7094     7094           
  Partials     1982     1982

Impacted Files	Coverage Δ
interfaces/builtin/home.go	100% <ø> (ø)	⬆️
interfaces/builtin/bluez.go	100% <ø> (ø)	⬆️
interfaces/builtin/desktop.go	86.84% <ø> (ø)	⬆️
interfaces/builtin/unity7.go	67.85% <ø> (ø)	⬆️
interfaces/builtin/removable_media.go	100% <ø> (ø)	⬆️
interfaces/builtin/browser_support.go	76.31% <ø> (ø)	⬆️
interfaces/builtin/hardware_observe.go	100% <ø> (ø)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 0190c29...4befc00. Read the comment docs.

[zyga]

LGTM :-)

[zyga]

For other curious reviewers: character device in userspace.

[zyga]

Thank you for this!