Hello, the SLES 15 AppArmor documentation[1] refers to the "tunables/global" variables that all AppArmor profiles have access to:

    The tunables directory (/etc/apparmor.d/tunables) contains global variable definitions. When used in a profile, these variables expand to a value that can be changed without changing the entire profile. Add all the tunables definitions that should be available to every profile to /etc/apparmor.d/tunables/global

The docs also use the "tunables/global" include in the example AppArmor profile: https://documentation.suse.com/sles/15-SP5/html/SLES-all/cha-apparmor-profiles.html#sec-apparmor-profiles-parts

However, tunables/global doesn't appear to exist in SLES 15 by default. It is only available via the "apparmor-profiles" package. 

This seems to be in contrast both to SLES docs, and to other AppArmor-enabled OSes, such as Ubuntu, which includes tunables/global in the standard apparmor package:

> /home/ubuntu % sudo dpkg -S /etc/apparmor.d/tunables/global
> apparmor: /etc/apparmor.d/tunables/global

To keep in line with SLES docs and other OSes, could SLES add tunables/global into the apparmor package? I'm not able to launch any older SLES versions so I'm not able to test if it used to be there but was removed at some point.

[1]: https://documentation.suse.com/sles/15-SP5/html/SLES-all/cha-apparmor-profiles.html#sec-apparmor-profiles-includes-tunables