From cc98c21cbfcbce12046bade3f781d580ff6f53fe Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Thu, 25 Jan 2024 22:40:49 +0000
Subject: [PATCH] feat(tunable): add the coreutils variable.

---
 apparmor.d/tunables/multiarch.d/paths | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/apparmor.d/tunables/multiarch.d/paths b/apparmor.d/tunables/multiarch.d/paths
index 73023e8a..072eb6c8 100644
--- a/apparmor.d/tunables/multiarch.d/paths
+++ b/apparmor.d/tunables/multiarch.d/paths
@@ -6,6 +6,7 @@
 
 # All the shells
 @{shells} = sh zsh bash dash fish rbash ksh tcsh csh
+@{shells_path} = @{bin}/@{shells}
 
 # Browsers
 
@@ -40,3 +41,15 @@
 @{open_path}  = @{bin}/exo-open @{bin}/xdg-open
 @{open_path} += @{lib}/@{multiarch}/glib-[0-9]*/gio-launch-desktop @{lib}/gio-launch-desktop
 
+# Experimental - May be modified/removed without notice
+# Coreutils programs that should not have dedicated profile
+@{coreutils}  = awk b2sum base32 base64 basename basenc cat chcon chgrp chmod chown
+@{coreutils} += cksum comm cp csplit cut date dd df dir dircolors dirname du echo env expand
+@{coreutils} += expr factor false find fmt fold gawk grep head hostid id install join link
+@{coreutils} += ln logname ls md5sum mkdir mkfifo mknod mktemp mv nice nl nohup nproc numfmt
+@{coreutils} += od paste pathchk pinky pr printenv printf ptx pwd readlink realpath rm rmdir
+@{coreutils} += runcon sed seq sha1sum sha224sum sha256sum sha384sum sha512sum shred shuf sleep
+@{coreutils} += sort split stat stdbuf stty sum sync tac tail tee test timeout touch tr true
+@{coreutils} += truncate tsort tty uname unexpand uniq unlink vdir wc who whoami xargs yes
+@{coreutils_path} = @{bin}/@{coreutils}
+