tty and pts are part of abstractions/consoles

apparmor.d/groups/systemd/systemd-analyze

@@ -10,6 +10,7 @@ include <tunables/global>
 @{exec_path} = /{usr/,}bin/systemd-analyze
 profile systemd-analyze @{exec_path} {
   include <abstractions/base>
+  include <abstractions/consoles>
   include <abstractions/systemd-common>
 
   capability sys_resource,
@@ -57,8 +58,5 @@ profile systemd-analyze @{exec_path} {
   owner @{PROC}/@{pid}/comm r,
         @{PROC}/swaps r,
 
-  /dev/tty rw,
-  /dev/pts/1 rw,
-
   include if exists <local/systemd-analyze>
 }

apparmor.d/groups/systemd/systemd-environment-d-generator

@@ -9,6 +9,7 @@ include <tunables/global>
 @{exec_path} = /{usr/,}lib/systemd/user-environment-generators/*
 profile systemd-environment-d-generator @{exec_path} {
   include <abstractions/base>
+  include <abstractions/consoles>
   include <abstractions/systemd-common>
   include <abstractions/nameservice-strict>
 
@@ -24,7 +25,6 @@ profile systemd-environment-d-generator @{exec_path} {
 
   owner @{user_config_dirs}/environment.d/{,*.conf} r,
 
-  /dev/tty rw,
 
   include if exists <local/systemd-environment-d-generator>
 }

apparmor.d/groups/systemd/systemd-sleep

@@ -9,6 +9,7 @@ include <tunables/global>
 @{exec_path} = /{usr/,}lib/systemd/systemd-sleep
 profile systemd-sleep @{exec_path} {
   include <abstractions/base>
+  include <abstractions/consoles>
   include <abstractions/nameservice-strict>
   include <abstractions/systemd-common>
 
@@ -29,7 +30,6 @@ profile systemd-sleep @{exec_path} {
 
   @{PROC}/driver/nvidia/suspend w,
 
-  /dev/tty rw,
 
   include if exists <local/systemd-sleep>
 }