~ruther/guix-local

ref: cfc5ec77a72d4e4d04d4e93aa8dee8462baa2cf7 guix-local/etc/apparmor.d/guix -rw-r--r-- 404 bytes
cfc5ec77 — Hugo Buddelmeijer gnu: guile-2.2.4: Fix build by using libxcrypt-without-failure-tokens. a month ago 
                                                                                
1
2
3
4
5
6
7
8
9
10
11
12

abi <abi/4.0>,

include <tunables/global>
include <tunables/guix>

# There’s no point in confining the guix executable, since it can run
# any user code and so everything is expected.  We just need to
# explicitely enable userns for systems with the
# kernel.apparmor_restrict_unprivileged_userns sysctl.
profile guix @{guix_storedir}/{*-guix-command,*-guix-*/bin/guix} flags=(unconfined) {
  userns,
}