feat(profile): use the new @{tmp} variable.

It is only used with the owner statement.

apparmor.d/groups/cron/cron

@@ -55,7 +55,7 @@ profile cron @{exec_path} flags=(attach_disconnected) {
 
   @{run}/systemd/sessions/*.ref rw,
 
-  owner /tmp/#@{int} rw,
+  owner @{tmp}/#@{int} rw,
 
   owner @{PROC}/@{pid}/uid_map r,
   owner @{PROC}/@{pid}/loginuid rw,
@@ -71,7 +71,7 @@ profile cron @{exec_path} flags=(attach_disconnected) {
     /etc/cron.*/     r,
     /etc/cron.*/* rPUx,
 
-    owner /tmp/#@{int} rw,
+    owner @{tmp}/#@{int} rw,
 
    include if exists <local/cron_run_parts>
   }

apparmor.d/groups/cron/cron-apt

@@ -75,16 +75,16 @@ profile cron-apt @{exec_path} {
 
   # TMP
         /tmp/ r,
-  owner /tmp/cron-apt.*/ rw,
-  owner /tmp/cron-apt.*/difftemp rw,
-  owner /tmp/cron-apt.*/lockfile rw,
-  owner /tmp/cron-apt.*/initlog rw,
-  owner /tmp/cron-apt.*/status rw,
-  owner /tmp/cron-apt.*/run{log,error,mail,syslog} rw,
-  owner /tmp/cron-apt.*/action{log,error,mail,syslog} rw,
+  owner @{tmp}/cron-apt.*/ rw,
+  owner @{tmp}/cron-apt.*/difftemp rw,
+  owner @{tmp}/cron-apt.*/lockfile rw,
+  owner @{tmp}/cron-apt.*/initlog rw,
+  owner @{tmp}/cron-apt.*/status rw,
+  owner @{tmp}/cron-apt.*/run{log,error,mail,syslog} rw,
+  owner @{tmp}/cron-apt.*/action{log,error,mail,syslog} rw,
 
   # file_inherit
-  owner /tmp/#@{int} rw,
+  owner @{tmp}/#@{int} rw,
 
   include if exists <local/cron-apt>
 }

apparmor.d/groups/cron/cron-popularity-contest

@@ -54,11 +54,11 @@ profile cron-popularity-contest @{exec_path} {
   /var/lib/popularity-contest/ rw,
   /var/lib/popularity-contest/lastsub rw,
 
-  owner /tmp/tmp.*/ rw,
-  owner /tmp/tmp.*/random_seed w,
+  owner @{tmp}/tmp.*/ rw,
+  owner @{tmp}/tmp.*/random_seed w,
 
   # file_inherit
-  owner /tmp/#@{int} rw,
+  owner @{tmp}/#@{int} rw,
 
 
   profile savelog {
@@ -83,7 +83,7 @@ profile cron-popularity-contest @{exec_path} {
     /var/log/popularity-contest rw,
 
     # file_inherit
-    owner /tmp/#@{int} rw,
+    owner @{tmp}/#@{int} rw,
 
   }
 
@@ -107,7 +107,7 @@ profile cron-popularity-contest @{exec_path} {
     /var/log/popularity-contest.new w,
 
     # file_inherit
-    owner /tmp/#@{int} rw,
+    owner @{tmp}/#@{int} rw,
 
   }
 
@@ -124,10 +124,10 @@ profile cron-popularity-contest @{exec_path} {
     /var/log/popularity-contest.@{int} r,
     /var/log/popularity-contest.@{int}.gpg rw,
 
-    owner /tmp/tmp.*/** rwkl -> /tmp/tmp.*/**,
+    owner @{tmp}/tmp.*/** rwkl -> /tmp/tmp.*/**,
 
     # file_inherit
-    owner /tmp/#@{int} rw,
+    owner @{tmp}/#@{int} rw,
 
   }
 
@@ -152,7 +152,7 @@ profile cron-popularity-contest @{exec_path} {
     /var/log/popularity-contest.@{int}.gpg r,
 
     # file_inherit
-    owner /tmp/#@{int} rw,
+    owner @{tmp}/#@{int} rw,
 
   }
 

apparmor.d/groups/cron/crontab

@@ -30,7 +30,7 @@ profile crontab @{exec_path} {
         /var/spool/cron/crontabs/ rw,
   owner /var/spool/cron/crontabs/* rw,
 
-  owner /tmp/crontab.*/{,crontab} rw,
+  owner @{tmp}/crontab.*/{,crontab} rw,
 
 
   profile editor {
@@ -51,7 +51,7 @@ profile crontab @{exec_path} {
     owner @{HOME}/.viminfo{,.tmp} rw,
 
           /tmp/ r,
-    owner /tmp/crontab.*/crontab rw,
+    owner @{tmp}/crontab.*/crontab rw,
 
     # file_inherit
     /etc/cron.{allow,deny} r,