From 6b5e586d8379ca9acda3f91b8287b3dbe3ea67bb Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Sat, 5 Apr 2025 22:39:45 +0200
Subject: [PATCH] feat(abs): limit number of tty

Up to 64 tty and 2048 pts.
---
 apparmor.d/abstractions/attached/base     | 2 +-
 apparmor.d/abstractions/attached/consoles | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apparmor.d/abstractions/attached/base b/apparmor.d/abstractions/attached/base
index c69a442c1..6a7486cf8 100644
--- a/apparmor.d/abstractions/attached/base
+++ b/apparmor.d/abstractions/attached/base
@@ -7,7 +7,7 @@
 
   abi <abi/4.0>,
 
-  include if exists <abstractions/base>
+  include <abstractions/base>
 
   @{att}/@{run}/systemd/journal/dev-log w,
   @{att}/@{run}/systemd/journal/socket w,
diff --git a/apparmor.d/abstractions/attached/consoles b/apparmor.d/abstractions/attached/consoles
index b6e72c877..dd2275a03 100644
--- a/apparmor.d/abstractions/attached/consoles
+++ b/apparmor.d/abstractions/attached/consoles
@@ -10,9 +10,9 @@
   # There are the common ways to refer to consoles
   /dev/console          rw,
   /dev/tty              rw,
-  /dev/tty@{u16}        rw,
+  /dev/tty@{u8}         rw,
   @{att}/dev/tty        rw,
-  @{att}/dev/tty@{u16}  rw,
+  @{att}/dev/tty@{u8}   rw,
 
   # These entries are a bit unfortunate; /dev/tty will always be
   # associated with the controlling terminal by the kernel, but if a