After reading a few other apparmor config files I've now revised my
config to this:
```
# This profile allows everything and only exists to give the
# application a name instead of having the label "unconfined"
abi <abi/4.0>,
include <tunables/global>
profile guix
/{usr/bin/guix,gnu/store/*-guix-command,gnu/store/*/bin/guix,gnu/store/*/libexec/guix/guile,gnu/store/*/bin/guile}
flags=(unconfined) {
userns,
# Site-specific additions and overrides. See local/README for details.
include if exists <local/guix>
}
```
I'v aso seen that most files in /etc/apparmor.d/ belong to the
`apparmor` package itself (which is slightly odd, I expected them to be
part of the respective application packages).
I will therfore try to figure out how to file a request for the apparmor
package to be ammended with a guix config.
Probably upstream with the Debian GNU/Linux project.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2064115
Title:
Conflict between apparmor and guix on Ubuntu 24.04
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/guix/+bug/2064115/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
