tests: fix snap-seccomp-blocks-tty-injection on partially confined sy…

…stems and on ubuntu core

tests/main/snap-seccomp-blocks-tty-injection/task.yaml

@@ -1,5 +1,8 @@
 summary: Ensure that the snap-seccomp blocks tty command injection
 
+# ubuntu-core: excluded because there is no gcc there
+systems: [-ubuntu-core-*]
+
 prepare: |
     echo "Install a helper snap (for seccomp confinement testing)"
     "$TESTSTOOLS"/snaps-state install-local test-snapd-sh
@@ -16,8 +19,10 @@ execute: |
     # use /dev/tty1 as input so that we use a real virtual console which
     # supports TIOCSTI / TIOCLINUX - but first make sure the snap can access it
     # through AppArmor
-    sed -i 's|^}$|  /dev/tty1  rw,\n}|' /var/lib/snapd/apparmor/profiles/snap.test-snapd-sh.sh
-    apparmor_parser -r /var/lib/snapd/apparmor/profiles/snap.test-snapd-sh.sh
+    if [ "$(snap debug confinement)" = strict ]; then
+        sed -i 's|^}$|  /dev/tty1  rw,\n}|' /var/lib/snapd/apparmor/profiles/snap.test-snapd-sh.sh
+        apparmor_parser -r /var/lib/snapd/apparmor/profiles/snap.test-snapd-sh.sh
+    fi
 
     snap run test-snapd-sh.sh -c "\$SNAP_COMMON/test-tiocsti"   < /dev/tty1 2>&1 | MATCH 'normal TIOCSTI: -1 \(Operation not permitted\)'
     snap run test-snapd-sh.sh -c "\$SNAP_COMMON/test-tiocsti"   < /dev/tty1 2>&1 | MATCH 'high-bit-set TIOCSTI: -1 \(Operation not permitted\)'