From e6b044376f7ef7f2a6850bf0461927b5432eeb0c Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Thu, 10 Jul 2025 00:14:24 +0200
Subject: [PATCH] fix(profile): update archlinux-keyring requirements.

fix #784
---
 apparmor.d/groups/gpg/gpg           | 5 ++---
 apparmor.d/groups/pacman/pacman-key | 3 ++-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apparmor.d/groups/gpg/gpg b/apparmor.d/groups/gpg/gpg
index 247c6e4ac..f05f6492e 100644
--- a/apparmor.d/groups/gpg/gpg
+++ b/apparmor.d/groups/gpg/gpg
@@ -33,9 +33,8 @@ profile gpg @{exec_path} {
   /etc/inputrc r,
 
   #aa:only pacman
-  /etc/pacman.d/gnupg/gpg.conf r,
-  /etc/pacman.d/gnupg/pubring.gpg r,
-  /etc/pacman.d/gnupg/trustdb.gpg r,
+  /etc/pacman.d/gnupg/ rw,
+  /etc/pacman.d/gnupg/** rwkl -> /etc/pacman.d/gnupg/**, 
 
   #aa:only apt
   owner /etc/apt/keyrings/ rw,
diff --git a/apparmor.d/groups/pacman/pacman-key b/apparmor.d/groups/pacman/pacman-key
index a5cee6fa9..9e3bde188 100644
--- a/apparmor.d/groups/pacman/pacman-key
+++ b/apparmor.d/groups/pacman/pacman-key
@@ -34,7 +34,8 @@ profile pacman-key @{exec_path} {
   /usr/share/pacman/keyrings/{,*} r,
   /usr/share/terminfo/** r,
 
-  /etc/pacman.d/gnupg/* rw,
+  /etc/pacman.d/gnupg/ rw,
+  /etc/pacman.d/gnupg/** rwkl -> /etc/pacman.d/gnupg/**,
 
   /dev/tty rw,