From 72d8d144805aefa7a5d2e440266ff43f219337ae Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Wed, 28 Aug 2024 18:53:31 +0100
Subject: [PATCH] feat(tunables): expand coreutils with findutils & diffutils.

---
 apparmor.d/tunables/multiarch.d/programs | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/apparmor.d/tunables/multiarch.d/programs b/apparmor.d/tunables/multiarch.d/programs
index f72e5692..e8c6b902 100644
--- a/apparmor.d/tunables/multiarch.d/programs
+++ b/apparmor.d/tunables/multiarch.d/programs
@@ -15,15 +15,15 @@
 # All interactive shells users may want to use
 @{shells} = sh zsh bash dash fish rbash ksh tcsh csh
 
-# Coreutils programs that should not have dedicated profile
+# Coreutils programs that should not have dedicated profile. Also includes findutils and diffutils.
 @{coreutils}  = {,g,m}awk b2sum base32 base64 basename basenc cat chcon chgrp chmod chown
-@{coreutils} += cksum comm cp csplit cut date dd df dir dircolors dirname diff du echo env expand
+@{coreutils} += cksum cmp comm cp csplit cut date dd df dir dircolors dirname diff diff3 du echo env expand
 @{coreutils} += expr factor false find fmt fold {,e,f}grep head hostid id install join link
-@{coreutils} += ln logname ls md5sum mkdir mkfifo mknod mktemp mv nice nl nohup nproc numfmt
+@{coreutils} += ln locate logname ls md5sum mkdir mkfifo mknod mktemp mv nice nl nohup nproc numfmt
 @{coreutils} += od paste pathchk pinky pr printenv printf ptx pwd readlink realpath rm rmdir
-@{coreutils} += runcon sed seq sha1sum sha224sum sha256sum sha384sum sha512sum shred shuf sleep
+@{coreutils} += runcon sdiff sed seq sha1sum sha224sum sha256sum sha384sum sha512sum shred shuf sleep
 @{coreutils} += sort split stat stdbuf stty sum sync tac tail tee test timeout touch tr true
-@{coreutils} += truncate tsort tty uname unexpand uniq unlink vdir wc who whoami xargs yes
+@{coreutils} += truncate tsort tty uname unexpand uniq unlink updatedb vdir wc who whoami xargs yes
 
 # Browsers