feat(profiles): replace old [0-9]* glob by @{int}

Beware some [0-9]* glob are actually not proper @{int}.
2023-08-18 17:09:53 +01:00 · 2023-08-18 17:09:53 +01:00 · 275d6b6e62
commit 275d6b6e62
parent 8ea4491a56
368 changed files with 637 additions and 636 deletions
--- a/apparmor.d/profiles-g-l/gajim
+++ b/apparmor.d/profiles-g-l/gajim
@ -105,7 +105,7 @@ profile gajim @{exec_path} {
    @{bin}/{,@{multiarch}-}gcc-[0-9]* rix,
    @{bin}/{,@{multiarch}-}g++-[0-9]* rix,
    @{bin}/{,@{multiarch}-}ld.bfd     rix,
-    @{lib}/gcc/@{multiarch}/[0-9]*/collect2 rix,
+    @{lib}/gcc/@{multiarch}/@{int}/collect2 rix,

    owner /tmp/cc* rw,
    owner /tmp/tmp* rw,
--- a/apparmor.d/profiles-g-l/games-wesnoth
+++ b/apparmor.d/profiles-g-l/games-wesnoth
@ -19,7 +19,7 @@ profile games-wesnoth @{exec_path} {

  @{exec_path} mrix,

-  /usr/share/games/wesnoth/[0-9]*/{,**} r,
+  /usr/share/games/wesnoth/@{int}/{,**} r,

  owner @{user_config_dirs}/wesnoth-[0-9]*/{,**} rw,

--- a/apparmor.d/profiles-g-l/gdk-pixbuf-query-loaders
+++ b/apparmor.d/profiles-g-l/gdk-pixbuf-query-loaders
@ -15,8 +15,8 @@ profile gdk-pixbuf-query-loaders @{exec_path} {

  @{exec_path} mr,

-  @{lib}/gdk-pixbuf-[0-9].[0-9]*/{,*}/loaders.cache.* rw,
-  @{lib}/gdk-pixbuf-[0-9].[0-9]*/*/loaders.cache rw,
+  @{lib}/gdk-pixbuf-[0-9].@{int}/{,*}/loaders.cache.* rw,
+  @{lib}/gdk-pixbuf-[0-9].@{int}/*/loaders.cache rw,

  include if exists <local/gdk-pixbuf-query-loaders>
 }
--- a/apparmor.d/profiles-g-l/globaltime
+++ b/apparmor.d/profiles-g-l/globaltime
@ -20,7 +20,7 @@ profile globaltime @{exec_path} {
  owner @{user_config_dirs}/globaltime/globaltimerc{,.*} rw,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/globaltime>
 }
--- a/apparmor.d/profiles-g-l/gpa
+++ b/apparmor.d/profiles-g-l/gpa
@ -48,7 +48,7 @@ profile gpa @{exec_path} {
  @{lib}/firefox/firefox rPUx,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/gpa>
 }
--- a/apparmor.d/profiles-g-l/gparted
+++ b/apparmor.d/profiles-g-l/gparted
@ -55,7 +55,7 @@ profile gparted @{exec_path} {
  @{PROC}/@{pids}/stat r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile udevadm {
--- a/apparmor.d/profiles-g-l/gpodder
+++ b/apparmor.d/profiles-g-l/gpodder
@ -64,7 +64,7 @@ profile gpodder @{exec_path} {
  @{lib}/firefox/firefox rPUx,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile open {
--- a/apparmor.d/profiles-g-l/groups
+++ b/apparmor.d/profiles-g-l/groups
@ -16,7 +16,7 @@ profile groups @{exec_path} {
  /etc/group r,
  /etc/nsswitch.conf r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/groups>
 }
--- a/apparmor.d/profiles-g-l/gsettings
+++ b/apparmor.d/profiles-g-l/gsettings
@ -22,7 +22,7 @@ profile gsettings @{exec_path} {
  /var/lib/gdm{3,}/.config/dconf/user r,
  /var/lib/gdm{3,}/greeter-dconf-defaults r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  owner @{run}/user/@{uid}/bus rw,

--- a/apparmor.d/profiles-g-l/hardinfo
+++ b/apparmor.d/profiles-g-l/hardinfo
@ -42,7 +42,7 @@ profile hardinfo @{exec_path} {
  @{bin}/python2.[0-9]*  rix,
  @{bin}/python3.[0-9]*  rix,
  @{bin}/route           rix,
-  @{bin}/ruby[0-9].[0-9]* rix,
+  @{bin}/ruby[0-9].@{int} rix,
  @{bin}/strace          rix,
  @{bin}/tr              rix,
  @{bin}/valgrind{,.bin} rix,
@ -72,10 +72,10 @@ profile hardinfo @{exec_path} {
  @{sys}/devices/virtual/dmi/id/* r,
  @{sys}/devices/virtual/thermal/thermal_zone[0-9]/hwmon[0-9]/temp* r,
  @{sys}/devices/virtual/thermal/thermal_zone[0-9]/temp* r,
-  @{sys}/devices/platform/**/hwmon/hwmon[0-9]*/temp* r,
-  @{sys}/devices/platform/**/hwmon/hwmon[0-9]*/fan* r,
+  @{sys}/devices/platform/**/hwmon/hwmon@{int}/temp* r,
+  @{sys}/devices/platform/**/hwmon/hwmon@{int}/fan* r,
  @{sys}/devices/pci[0-9]*/**/eeprom r,
-  @{sys}/devices/pci[0-9]*/**/hwmon/hwmon[0-9]*/temp* r,
+  @{sys}/devices/pci[0-9]*/**/hwmon/hwmon@{int}/temp* r,
  @{sys}/devices/**/power_supply/** r,

        @{PROC}/@{pid}/net/wireless r,
@ -118,7 +118,7 @@ profile hardinfo @{exec_path} {
  deny /usr/share/gdb/python/** w,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile ccache {
--- a/apparmor.d/profiles-g-l/hexchat
+++ b/apparmor.d/profiles-g-l/hexchat
@ -48,7 +48,7 @@ profile hexchat @{exec_path} {
  @{lib}/firefox/firefox rPUx,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/hexchat>
 }
--- a/apparmor.d/profiles-g-l/htop
+++ b/apparmor.d/profiles-g-l/htop
@ -85,10 +85,10 @@ profile htop @{exec_path} {
  @{sys}/class/hwmon/ r,
  @{sys}/class/i2c-adapter/ r,
  @{sys}/class/power_supply/ r,
-  @{sys}/devices/**/hwmon[0-9]*/ r,
-  @{sys}/devices/**/hwmon[0-9]*/{name,temp*} r,
-  @{sys}/devices/**/hwmon[0-9]*/**/ r,
-  @{sys}/devices/**/hwmon[0-9]*/**/{name,temp*} r,
+  @{sys}/devices/**/hwmon@{int}/ r,
+  @{sys}/devices/**/hwmon@{int}/{name,temp*} r,
+  @{sys}/devices/**/hwmon@{int}/**/ r,
+  @{sys}/devices/**/hwmon@{int}/**/{name,temp*} r,
  @{sys}/devices/**/hwmon/ r,
  @{sys}/devices/**/hwmon/{name,temp*} r,
  @{sys}/devices/**/hwmon/**/ r,
@ -98,15 +98,15 @@ profile htop @{exec_path} {
  @{sys}/devices/i2c-[0-9]*/name r,
  @{sys}/devices/pci[0-9]*/**/i2c-[0-9]*/name r,
  @{sys}/devices/platform/*/i2c-[0-9]*/name r,
-  @{sys}/devices/system/cpu/cpu[0-9]*/online r,
-  @{sys}/devices/system/cpu/cpufreq/policy[0-9]*/cpuinfo_{cur,min,max}_freq r,
-  @{sys}/devices/system/cpu/cpufreq/policy[0-9]*/scaling_{cur,min,max}_freq r,
+  @{sys}/devices/system/cpu/cpu@{int}/online r,
+  @{sys}/devices/system/cpu/cpufreq/policy@{int}/cpuinfo_{cur,min,max}_freq r,
+  @{sys}/devices/system/cpu/cpufreq/policy@{int}/scaling_{cur,min,max}_freq r,
  @{sys}/devices/virtual/block/zram[0-9]*/{disksize,mm_stat} r,
  @{sys}/devices/virtual/thermal/thermal_zone[0-9]*/temp r,
  @{sys}/kernel/mm/hugepages/ r,
  @{sys}/kernel/mm/hugepages/hugepages-*/nr_hugepages r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/htop>
 }
--- a/apparmor.d/profiles-g-l/hwinfo
+++ b/apparmor.d/profiles-g-l/hwinfo
@ -87,7 +87,7 @@ profile hwinfo @{exec_path} {
    /dev/ttyS0 r,
    /dev/ttyS1 r,
    owner /tmp/hwinfo*.txt rw,
-    @{sys}/devices/pci[0-9]*/**/drm/card[0-9]*/ r,
+    @{sys}/devices/pci[0-9]*/**/drm/card@{int}/ r,

  }

--- a/apparmor.d/profiles-g-l/hypnotix
+++ b/apparmor.d/profiles-g-l/hypnotix
@ -89,7 +89,7 @@ profile hypnotix @{exec_path} {
    owner @{HOME}/.Xauthority r,

    # file_inherit
-    /dev/dri/card[0-9]* rw,
+    /dev/dri/card@{int} rw,
    network inet stream,
    network inet6 stream,
  }
--- a/apparmor.d/profiles-g-l/i3lock
+++ b/apparmor.d/profiles-g-l/i3lock
@ -33,7 +33,7 @@ profile i3lock @{exec_path} {
  owner /tmp/tmp.*.png r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/i3lock>
 }
--- a/apparmor.d/profiles-g-l/i3lock-fancy
+++ b/apparmor.d/profiles-g-l/i3lock-fancy
@ -38,7 +38,7 @@ profile i3lock-fancy @{exec_path} {
  /usr/share/i3lock-fancy/{,*} r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile imagemagic {
@ -63,7 +63,7 @@ profile i3lock-fancy @{exec_path} {
    owner /tmp/tmp.*.png rw,

    # file_inherit
-    owner /dev/tty[0-9]* rw,
+    owner /dev/tty@{int} rw,

  }

--- a/apparmor.d/profiles-g-l/im-launch
+++ b/apparmor.d/profiles-g-l/im-launch
@ -30,7 +30,7 @@ profile im-launch @{exec_path} {
  owner @{HOME}/.xinputrc r,

  # file inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/im-launch>
 }
--- a/apparmor.d/profiles-g-l/inxi
+++ b/apparmor.d/profiles-g-l/inxi
@ -75,11 +75,11 @@ profile inxi @{exec_path} {
  /etc/apt/sources.list.d/{,*.list} r,

  /var/log/ r,
-  /var/log/Xorg.[0-9]*.log r,
+  /var/log/Xorg.@{int}.log r,

  /home/ r,
  @{user_share_dirs}/xorg/ r,
-  @{user_share_dirs}/xorg/Xorg.[0-9]*.log r,
+  @{user_share_dirs}/xorg/Xorg.@{int}.log r,

  # For shell pwd
  /root/ r,
--- a/apparmor.d/profiles-g-l/ip
+++ b/apparmor.d/profiles-g-l/ip
@ -43,7 +43,7 @@ profile ip @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pid}/net/igmp{,6} r,
  owner @{PROC}/sys/net/ipv{4,6}/route/flush w,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/ip>
 }
--- a/apparmor.d/profiles-g-l/irqbalance
+++ b/apparmor.d/profiles-g-l/irqbalance
@ -22,18 +22,18 @@ profile irqbalance @{exec_path} {
  @{sys}/devices/pci[0-9]*/**/{class,numa_node,local_cpus,irq} r,
  @{sys}/devices/pci[0-9]*/**/{vendor,device,subsystem_vendor,subsystem_device} r,
  @{sys}/devices/pci[0-9]*/**/msi_irqs/ r,
-  @{sys}/devices/system/cpu/cpu[0-9]*/ r,
-  @{sys}/devices/system/cpu/cpu[0-9]*/cache/index[0-9]*/shared_cpu_map r,
-  @{sys}/devices/system/cpu/cpu[0-9]*/topology/{,**} r,
+  @{sys}/devices/system/cpu/cpu@{int}/ r,
+  @{sys}/devices/system/cpu/cpu@{int}/cache/index[0-9]*/shared_cpu_map r,
+  @{sys}/devices/system/cpu/cpu@{int}/topology/{,**} r,
  @{sys}/devices/system/cpu/isolated r,
  @{sys}/devices/system/node/ r,
-  @{sys}/devices/system/node/node[0-9]*/ r,
-  @{sys}/devices/system/node/node[0-9]*/{cpumap,meminfo} r,
+  @{sys}/devices/system/node/node@{int}/ r,
+  @{sys}/devices/system/node/node@{int}/{cpumap,meminfo} r,
  @{sys}/devices/system/cpu/nohz_full r,

  @{PROC}/interrupts r,
-  @{PROC}/irq/[0-9]*/node r,
-  @{PROC}/irq/[0-9]*/smp_affinity rw,
+  @{PROC}/irq/@{int}/node r,
+  @{PROC}/irq/@{int}/smp_affinity rw,

  include if exists <local/irqbalance>
 }
--- a/apparmor.d/profiles-g-l/iw
+++ b/apparmor.d/profiles-g-l/iw
@ -23,7 +23,7 @@ profile iw @{exec_path} {
  @{sys}/devices/pci[0-9]*/**/ieee80211/phy[0-9]*/index r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/iw>
 }
--- a/apparmor.d/profiles-g-l/jdownloader
+++ b/apparmor.d/profiles-g-l/jdownloader
@ -54,9 +54,9 @@ profile jdownloader @{exec_path} {
  owner @{HOME}/.oracle_jre_usage/@{hex}.timestamp rw,
  owner @{HOME}/.java/.userPrefs/.user.lock.* rwk,
  owner @{HOME}/.java/.userPrefs/com/install4j/installations/prefs.xml rw,
-  owner @{HOME}/.java/fonts/[0-9]*/ rw,
-  owner @{HOME}/.java/fonts/[0-9]*/fcinfo*.tmp rw,
-  owner @{HOME}/.java/fonts/[0-9]*/fcinfo-*.properties rw,
+  owner @{HOME}/.java/fonts/@{int}/ rw,
+  owner @{HOME}/.java/fonts/@{int}/fcinfo*.tmp rw,
+  owner @{HOME}/.java/fonts/@{int}/fcinfo-*.properties rw,

  owner @{HOME}/.install4j rw,

--- a/apparmor.d/profiles-g-l/jekyll
+++ b/apparmor.d/profiles-g-l/jekyll
@ -14,7 +14,7 @@ profile jekyll @{exec_path} {
  include <abstractions/nameservice-strict>

  @{exec_path} r,
-  @{bin}/ruby[0-9].[0-9]* rix,
+  @{bin}/ruby[0-9].@{int} rix,

  @{lib}/ruby/gems/*/specifications/ r,
  @{lib}/ruby/gems/*/specifications/** r,
--- a/apparmor.d/profiles-g-l/jgmenu
+++ b/apparmor.d/profiles-g-l/jgmenu
@ -52,7 +52,7 @@ profile jgmenu @{exec_path} {
  /usr/share/**.desktop r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/jgmenu>
 }
--- a/apparmor.d/profiles-g-l/keepassxc
+++ b/apparmor.d/profiles-g-l/keepassxc
@ -100,7 +100,7 @@ profile keepassxc @{exec_path} {
        /dev/shm/#@{int} rw,
        /dev/tty rw,
        /dev/urandom rw,
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  # Silencer
  deny @{user_share_dirs}/gvfs-metadata/* r,
--- a/apparmor.d/profiles-g-l/keepassxc-proxy
+++ b/apparmor.d/profiles-g-l/keepassxc-proxy
@ -32,7 +32,7 @@ profile keepassxc-proxy @{exec_path} {
  deny owner @{run}/user/@{uid}/.[a-zA-Z]*/{,s} rw,
  deny owner @{run}/user/@{uid}/kpxc_server rw,
  deny       /dev/shm/org.chromium.* rw,
-  deny owner /dev/shm/org.mozilla.ipc.[0-9]*.[0-9]* rw,
+  deny owner /dev/shm/org.mozilla.ipc.@{int}.@{int} rw,
  deny owner @{HOME}/.mozilla/** rw,
  deny owner @{user_cache_dirs}/mozilla/** rw,
  deny owner @{MOUNTS}/.mozilla/** rw,
--- a/apparmor.d/profiles-g-l/kexec
+++ b/apparmor.d/profiles-g-l/kexec
@ -17,7 +17,7 @@ profile kexec @{exec_path} flags=(complain) {
  owner /boot/{initrd.img,vmlinuz}-* r,

  @{sys}/firmware/memmap/ r,
-  @{sys}/firmware/memmap/[0-9]*/{start,end,type} r,
+  @{sys}/firmware/memmap/@{int}/{start,end,type} r,
  @{sys}/kernel/boot_params/data r,

        @{PROC}/cmdline r,
--- a/apparmor.d/profiles-g-l/kodi
+++ b/apparmor.d/profiles-g-l/kodi
@ -65,8 +65,8 @@ profile kodi @{exec_path} {
  @{sys}/devices/pci[0-9]*/**/usb[0-9]/{bDeviceClass,idProduct,idVendor} r,
  @{sys}/devices/pci[0-9]*/**/usb[0-9]/**/{bDeviceClass,idProduct,idVendor} r,
  @{sys}/devices/system/node/ r,
-  @{sys}/devices/system/node/node[0-9]*/meminfo r,
-  @{sys}/devices/system/cpu/cpufreq/policy[0-9]*/scaling_cur_freq r,
+  @{sys}/devices/system/node/node@{int}/meminfo r,
+  @{sys}/devices/system/cpu/cpufreq/policy@{int}/scaling_cur_freq r,
  @{sys}/devices/virtual/thermal/thermal_zone[0-9]*/temp r,

  @{run}/udev/data/* r,
@ -84,7 +84,7 @@ profile kodi @{exec_path} {
    # file_inherit
    /usr/share/kodi/** r,
    /sys/devices/virtual/thermal/thermal_zone[0-9]*/temp r,
-    /sys/devices/system/cpu/cpufreq/policy[0-9]*/scaling_cur_freq r,
+    /sys/devices/system/cpu/cpufreq/policy@{int}/scaling_cur_freq r,
    /home/morfik/.kodi/temp/kodi.log w,

  }
--- a/apparmor.d/profiles-g-l/kvm-ok
+++ b/apparmor.d/profiles-g-l/kvm-ok
@ -23,7 +23,7 @@ profile kvm-ok @{exec_path} {

  #/proc/cpuinfo r,
  #/dev/kvm r,
-  #/dev/cpu/[0-9]*/msr r,
+  #/dev/cpu/@{int}/msr r,

  # For shell pwd
  /root/ r,
--- a/apparmor.d/profiles-g-l/labwc
+++ b/apparmor.d/profiles-g-l/labwc
@ -37,7 +37,7 @@ profile labwc @{exec_path} flags=(attach_disconnected) {
  owner @{user_config_dirs}/labwc/ r,
  owner @{user_config_dirs}/labwc/* r,

-  owner /dev/shm/wayland.mozilla.ipc.[0-9]* rw,
+  owner /dev/shm/wayland.mozilla.ipc.@{int} rw,

  @{sys}/class/drm/ r,
  @{sys}/class/input/ r,
@ -56,7 +56,7 @@ profile labwc @{exec_path} flags=(attach_disconnected) {
  @{run}/udev/data/c226:[0-9]* r,      # for /dev/dri/card*

  @{run}/systemd/sessions/* r,
-  @{run}/systemd/seats/seat[0-9]* r,
+  @{run}/systemd/seats/seat@{int} r,

  @{run}/user/@{uid}/wayland-@{int}.lock k,

--- a/apparmor.d/profiles-g-l/landscape-sysinfo
+++ b/apparmor.d/profiles-g-l/landscape-sysinfo
@ -41,7 +41,7 @@ profile landscape-sysinfo @{exec_path} {
  owner @{PROC}/@{pid}/fd/ r,
  owner @{PROC}/@{pid}/mounts r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/landscape-sysinfo>
 }
--- a/apparmor.d/profiles-g-l/landscape-sysinfo.wrapper
+++ b/apparmor.d/profiles-g-l/landscape-sysinfo.wrapper
@ -28,7 +28,7 @@ profile landscape-sysinfo.wrapper @{exec_path} {

  @{PROC}/loadavg r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/landscape-sysinfo.wrapper>
 }
--- a/apparmor.d/profiles-g-l/light
+++ b/apparmor.d/profiles-g-l/light
@ -30,7 +30,7 @@ profile light @{exec_path} {
  @{sys}/devices/pci[0-9]*/**/backlight/*/brightness rw,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,
  owner @{HOME}/.xsession-errors w,

  include if exists <local/light>
--- a/apparmor.d/profiles-g-l/light-locker
+++ b/apparmor.d/profiles-g-l/light-locker
@ -33,7 +33,7 @@ profile light-locker @{exec_path} {
  @{sys}/devices/pci[0-9]*/**/subsystem_device r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,

  include if exists <local/light-locker>
 }
--- a/apparmor.d/profiles-g-l/lightdm
+++ b/apparmor.d/profiles-g-l/lightdm
@ -106,7 +106,7 @@ profile lightdm @{exec_path} {
  @{etc_ro}/environment r,
  /etc/default/locale r,

-  /dev/tty[0-9]* r,
+  /dev/tty@{int} r,

  # Xsession logs
  owner @{HOME}/.xsession-errors{,.old} rw,
--- a/apparmor.d/profiles-g-l/linssid
+++ b/apparmor.d/profiles-g-l/linssid
@ -73,7 +73,7 @@ profile linssid @{exec_path} {
  /root/ r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile iw {
@ -90,7 +90,7 @@ profile linssid @{exec_path} {
    owner @{HOME}/.linssid.prefs rw,
    owner @{HOME}/LinSSID.datalog rw,
    owner /tmp/linssid_* rw,
-    owner /dev/dri/card[0-9]* rw,
+    owner /dev/dri/card@{int} rw,

  }

--- a/apparmor.d/profiles-g-l/login
+++ b/apparmor.d/profiles-g-l/login
@ -69,7 +69,7 @@ profile login @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pid}/loginuid rw,
  owner @{PROC}/@{pid}/uid_map r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,

  include if exists <local/login>
 }
--- a/apparmor.d/profiles-g-l/lscpu
+++ b/apparmor.d/profiles-g-l/lscpu
@ -23,11 +23,11 @@ profile lscpu @{exec_path} {


  @{sys}/devices/system/node/ r,
-  @{sys}/devices/system/node/node[0-9]*/cpumap r,
+  @{sys}/devices/system/node/node@{int}/cpumap r,

  owner @{sys}/kernel/cpu_byteorder r,

-  /dev/tty[0-9]* rw,
+  /dev/tty@{int} rw,
  

  include if exists <local/lscpu>
--- a/apparmor.d/profiles-g-l/lspci
+++ b/apparmor.d/profiles-g-l/lspci
@ -32,7 +32,7 @@ profile lspci @{exec_path} flags=(attach_disconnected) {

  @{sys}/bus/pci/devices/ r,
  @{sys}/bus/pci/slots/ r,
-  @{sys}/bus/pci/slots/[0-9]*/address r,
+  @{sys}/bus/pci/slots/@{int}/address r,
  @{sys}/devices/pci[0-9]*/** r,

  @{PROC}/cmdline r,
--- a/apparmor.d/profiles-g-l/lxappearance
+++ b/apparmor.d/profiles-g-l/lxappearance
@ -47,7 +47,7 @@ profile lxappearance @{exec_path} {
  /var/lib/dbus/machine-id r,

  # file_inherit
-  owner /dev/tty[0-9]* rw,
+  owner /dev/tty@{int} rw,


  profile dbus {