grimm-nixos-laptop/common/tooling/apparmor/apparmor-d-paths.patch

diff --git a/apparmor.d/tunables/multiarch.d/system b/apparmor.d/tunables/multiarch.d/system
index be37123f..908951af 100644
--- a/apparmor.d/tunables/multiarch.d/system
+++ b/apparmor.d/tunables/multiarch.d/system
@@ -106,8 +106,21 @@
 @{MOUNTS}=@{MOUNTDIRS}/*/ @{run}/user/@{uid}/gvfs/
 
 # Common places for binaries and libraries across distributions
-@{bin}=/{,usr/}{,s}bin
-@{lib}=/{,usr/}lib{,exec,32,64}
+@{package1}={@{w},.,-}
+@{package2}=@{package1}@{package1}
+@{package4}=@{package2}@{package2}
+@{package8}=@{package4}@{package4}
+@{package16}=@{package8}@{package8}
+@{package32}=@{package16}@{package16}
+@{package64}=@{package32}@{package32}
+@{nix_package_name}={@{package32},}{@{package16},}{@{package8},}{@{package4},}{@{package2},}{@{package1},}
+
+
+
+@{nix_store}=/nix/store/@{rand32}-@{nix_package_name}
+@{base_paths}={@{nix_store},/run/current-system/sw,/etc/profiles/per-user/@{user}}
+@{bin}={@{base_paths}/{bin,libexec},/{,usr/}{,s}bin}
+@{lib}=@{base_paths}/lib{exec,}
 
 # Common places for temporary files
 @{tmp}=/tmp/ /tmp/user/@{uid}/
diff --git a/cmd/prebuild/main.go b/cmd/prebuild/main.go
index 91f77e2e..ab4b8c5e 100644
--- a/cmd/prebuild/main.go
+++ b/cmd/prebuild/main.go
@@ -31,7 +31,6 @@ func init() {
 
 	// Build tasks applied by default
 	builder.Register(
-		"userspace", // Resolve variable in profile attachments
 		"hotfix",    // Temporary fix for #74, #80 & #235
 	)
experimental apparmor support 2024-10-12 18:19:18 +02:00			`diff --git a/apparmor.d/tunables/multiarch.d/system b/apparmor.d/tunables/multiarch.d/system`
update apparmor.d rules 2024-10-17 23:23:50 +02:00			`index be37123f..908951af 100644`
experimental apparmor support 2024-10-12 18:19:18 +02:00			`--- a/apparmor.d/tunables/multiarch.d/system`
			`+++ b/apparmor.d/tunables/multiarch.d/system`
fix pattern matching and sudo 2024-10-17 19:12:24 +02:00			`@@ -106,8 +106,21 @@`
experimental apparmor support 2024-10-12 18:19:18 +02:00			`@{MOUNTS}=@{MOUNTDIRS}/*/ @{run}/user/@{uid}/gvfs/`

			`# Common places for binaries and libraries across distributions`
			`-@{bin}=/{,usr/}{,s}bin`
			`-@{lib}=/{,usr/}lib{,exec,32,64}`
fix conflicting x flag issue 2024-10-17 11:12:30 +02:00			`+@{package1}={@{w},.,-}`
			`+@{package2}=@{package1}@{package1}`
			`+@{package4}=@{package2}@{package2}`
			`+@{package8}=@{package4}@{package4}`
			`+@{package16}=@{package8}@{package8}`
			`+@{package32}=@{package16}@{package16}`
			`+@{package64}=@{package32}@{package32}`
fix pattern matching and sudo 2024-10-17 19:12:24 +02:00			`+@{nix_package_name}={@{package32},}{@{package16},}{@{package8},}{@{package4},}{@{package2},}{@{package1},}`
			`+`
			`+`
fix conflicting x flag issue 2024-10-17 11:12:30 +02:00			`+`
			`+@{nix_store}=/nix/store/@{rand32}-@{nix_package_name}`
fix pattern matching and sudo 2024-10-17 19:12:24 +02:00			`+@{base_paths}={@{nix_store},/run/current-system/sw,/etc/profiles/per-user/@{user}}`
update apparmor.d rules 2024-10-17 23:23:50 +02:00			`+@{bin}={@{base_paths}/{bin,libexec},/{,usr/}{,s}bin}`
			`+@{lib}=@{base_paths}/lib{exec,}`
experimental apparmor support 2024-10-12 18:19:18 +02:00
			`# Common places for temporary files`
			`@{tmp}=/tmp/ /tmp/user/@{uid}/`
fix pattern matching and sudo 2024-10-17 19:12:24 +02:00			`diff --git a/cmd/prebuild/main.go b/cmd/prebuild/main.go`
			`index 91f77e2e..ab4b8c5e 100644`
			`--- a/cmd/prebuild/main.go`
			`+++ b/cmd/prebuild/main.go`
			`@@ -31,7 +31,6 @@ func init() {`

			`// Build tasks applied by default`
			`builder.Register(`
			`- "userspace", // Resolve variable in profile attachments`
			`"hotfix", // Temporary fix for #74, #80 & #235`
			`)`