From 310f06bc03fd766f61f9d4ae34f45a44f1c0c832 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Sun, 23 Mar 2025 16:53:38 +0100
Subject: [PATCH] feat(profile): minor improvment on wechat profiles

---
 apparmor.d/profiles-s-z/wechat-appimage | 26 ++++++++++++-------------
 dists/flags/main.flags                  |  3 ++-
 2 files changed, 14 insertions(+), 15 deletions(-)

diff --git a/apparmor.d/profiles-s-z/wechat-appimage b/apparmor.d/profiles-s-z/wechat-appimage
index 7030cda78..c12d587c7 100755
--- a/apparmor.d/profiles-s-z/wechat-appimage
+++ b/apparmor.d/profiles-s-z/wechat-appimage
@@ -26,9 +26,9 @@ profile wechat-appimage @{exec_path} flags=(attach_disconnected) {
   network inet6 dgram,
   network inet6 stream,
 
-  mount fstype=fuse.wechat-appimage.AppImage options=(ro nodev nosuid) wechat-appimage.AppImage -> @{tmp}/.mount_wechat??????/,
+  mount fstype=fuse.wechat-appimage.AppImage options=(ro nodev nosuid) wechat-appimage.AppImage -> @{tmp}/.mount_wechat@{word6}/,
 
-  umount @{tmp}/.mount_wechat??????/,
+  umount @{tmp}/.mount_wechat@{word6}/,
 
   @{exec_path} r,
 
@@ -37,11 +37,11 @@ profile wechat-appimage @{exec_path} flags=(attach_disconnected) {
   /tmp/.mount_wechat??????/AppRun ix,
   @{bin}/mkdir ix,
   @{bin}/gawk  rix,
-  @{bin}/lsblk rix,
+  @{bin}/lsblk rPx,
   @{bin}/ip rix,
   @{bin}/xdg-user-dir rix,
-  @{tmp}/.mount_wechat??????/opt/wechat/{,**} ix,
-  @{tmp}/.mount_wechat??????/usr/bin/wechat ix,
+  @{tmp}/.mount_wechat@{word6}/opt/wechat/{,**} ix,
+  @{tmp}/.mount_wechat@{word6}/usr/bin/wechat ix,
   @{open_path} rpx -> child-open-strict,
 
   @{bin}/fusermount{,3} Cx -> fusermount,
@@ -49,18 +49,15 @@ profile wechat-appimage @{exec_path} flags=(attach_disconnected) {
   @{bin}/readlink rix,
 
   @{bin}/ r,
-  @{bin}/core_perl/ r,
-  @{bin}/site_perl/ r,
-  @{bin}/vendor_perl/ r,
-
+  @{bin}/*/ r,
   /usr/local/bin/ r,
   /usr/local/sbin/ r,
 
   /etc/machine-id r,
 
-  @{tmp}/.mount_wechat??????/AppRun r,
-  @{tmp}/.mount_wechat??????/ rw,
-  @{tmp}/.mount_wechat??????/opt/wechat/{,**} mr,
+  @{tmp}/.mount_wechat@{word6}/AppRun r,
+  @{tmp}/.mount_wechat@{word6}/ rw,
+  @{tmp}/.mount_wechat@{word6}/opt/wechat/{,**} mr,
 
   owner /var/tmp/etilqs_* rw,
 
@@ -79,9 +76,9 @@ profile wechat-appimage @{exec_path} flags=(attach_disconnected) {
     capability dac_read_search,
     capability sys_admin,
 
-    mount fstype=fuse.wechat-appimage.AppImage options=(ro nodev nosuid) wechat-appimage.AppImage -> @{tmp}/.mount_wechat??????/,
+    mount fstype=fuse.wechat-appimage.AppImage options=(ro nodev nosuid) wechat-appimage.AppImage -> @{tmp}/.mount_wechat@{word6}/,
 
-    umount @{tmp}/.mount_wechat??????/,
+    umount @{tmp}/.mount_wechat@{word6}/,
 
     @{bin}/fusermount{,3} mr,
 
@@ -92,6 +89,7 @@ profile wechat-appimage @{exec_path} flags=(attach_disconnected) {
     /etc/fuse.conf r,
 
     /dev/fuse rw,
+
     include if exists <local/wechat-appimage_fusermount>
   }
 
diff --git a/dists/flags/main.flags b/dists/flags/main.flags
index f0622fcdd..57f6a1457 100644
--- a/dists/flags/main.flags
+++ b/dists/flags/main.flags
@@ -368,7 +368,8 @@ virtnodedevd attach_disconnected,complain
 virtsecretd attach_disconnected,complain
 virtstoraged attach_disconnected,complain
 waybar attach_disconnected,complain
-wg complain
+wechat attach_disconnected,complain
+wechat-appimage attach_disconnected,complain
 wg-quick complain
 wsdd complain
 xdg-dbus-proxy attach_disconnected,complain