···
with subtest("apparmorRulesFromClosure"):
"${pkgs.diffutils}/bin/diff -u ${pkgs.writeText "expected.rules" ''
mr ${pkgs.bash}/lib/**.so*,
-
r ${pkgs.bash}/share/**,
mr ${pkgs.glibc}/lib/**.so*,
-
r ${pkgs.glibc}/share/**,
mr ${pkgs.libcap}/lib/**.so*,
-
r ${pkgs.libcap}/share/**,
mr ${pkgs.libcap.lib}/lib/**.so*,
r ${pkgs.libcap.lib}/etc/**,
r ${pkgs.libcap.lib}/lib/**,
-
r ${pkgs.libcap.lib}/share/**,
x ${pkgs.libcap.lib}/foo/**,
mr ${pkgs.libidn2.out}/lib/**.so*,
r ${pkgs.libidn2.out}/etc/**,
r ${pkgs.libidn2.out}/lib/**,
-
r ${pkgs.libidn2.out}/share/**,
x ${pkgs.libidn2.out}/foo/**,
mr ${pkgs.libunistring}/lib/**.so*,
r ${pkgs.libunistring}/etc/**,
r ${pkgs.libunistring}/lib/**,
-
r ${pkgs.libunistring}/share/**,
x ${pkgs.libunistring}/foo/**,
mr ${pkgs.glibc.libgcc}/lib/**.so*,
r ${pkgs.glibc.libgcc}/etc/**,
r ${pkgs.glibc.libgcc}/lib/**,
-
r ${pkgs.glibc.libgcc}/share/**,
x ${pkgs.glibc.libgcc}/foo/**,
pkgs.runCommand "actual.rules" { preferLocalBuild = true; } ''
···
with subtest("apparmorRulesFromClosure"):
"${pkgs.diffutils}/bin/diff -u ${pkgs.writeText "expected.rules" ''
+
ixr ${pkgs.bash}/libexec/**,
mr ${pkgs.bash}/lib/**.so*,
+
mr ${pkgs.bash}/lib64/**.so*,
+
mr ${pkgs.bash}/share/**,
+
r ${pkgs.bash}/lib64/**,
+
ixr ${pkgs.glibc}/libexec/**,
mr ${pkgs.glibc}/lib/**.so*,
+
mr ${pkgs.glibc}/lib64/**.so*,
+
mr ${pkgs.glibc}/share/**,
+
r ${pkgs.glibc}/lib64/**,
+
ixr ${pkgs.libcap}/libexec/**,
mr ${pkgs.libcap}/lib/**.so*,
+
mr ${pkgs.libcap}/lib64/**.so*,
+
mr ${pkgs.libcap}/share/**,
+
r ${pkgs.libcap}/lib64/**,
+
ixr ${pkgs.libcap.lib}/libexec/**,
mr ${pkgs.libcap.lib}/lib/**.so*,
+
mr ${pkgs.libcap.lib}/lib64/**.so*,
+
mr ${pkgs.libcap.lib}/share/**,
r ${pkgs.libcap.lib}/etc/**,
r ${pkgs.libcap.lib}/lib/**,
+
r ${pkgs.libcap.lib}/lib64/**,
x ${pkgs.libcap.lib}/foo/**,
+
ixr ${pkgs.libidn2.out}/libexec/**,
mr ${pkgs.libidn2.out}/lib/**.so*,
+
mr ${pkgs.libidn2.out}/lib64/**.so*,
+
mr ${pkgs.libidn2.out}/share/**,
r ${pkgs.libidn2.out}/etc/**,
r ${pkgs.libidn2.out}/lib/**,
+
r ${pkgs.libidn2.out}/lib64/**,
x ${pkgs.libidn2.out}/foo/**,
+
ixr ${pkgs.libunistring}/libexec/**,
mr ${pkgs.libunistring}/lib/**.so*,
+
mr ${pkgs.libunistring}/lib64/**.so*,
+
mr ${pkgs.libunistring}/share/**,
r ${pkgs.libunistring}/etc/**,
r ${pkgs.libunistring}/lib/**,
+
r ${pkgs.libunistring}/lib64/**,
x ${pkgs.libunistring}/foo/**,
+
ixr ${pkgs.glibc.libgcc}/libexec/**,
mr ${pkgs.glibc.libgcc}/lib/**.so*,
+
mr ${pkgs.glibc.libgcc}/lib64/**.so*,
+
mr ${pkgs.glibc.libgcc}/share/**,
r ${pkgs.glibc.libgcc}/etc/**,
r ${pkgs.glibc.libgcc}/lib/**,
+
r ${pkgs.glibc.libgcc}/lib64/**,
x ${pkgs.glibc.libgcc}/foo/**,
pkgs.runCommand "actual.rules" { preferLocalBuild = true; } ''
pyrox.dev