[pkg-apparmor] Bug#877581: Ensure our AppArmor policy does not break stuff with Linux 4.14

[intrigeri]

intrigeri:
> Here's a more up-to-date dump.

Good news: most of these changes were needed only due to a bug in
apparmor_parser, that's been fixed in AppArmor 2.11.1.

Vincas has built a complete list of packages that ship AppArmor policy
(thanks!). I've triaged it a bit, tested those that seemed high
priority to me, found no new breakage which is pretty much expected as
most of this policy comes from Ubuntu, that has been shipping the
features that landed in Linux 4.14 for a while, so their policy is
ready for it :)  If anyone wants to test other stuff they care about
more than I do, please go ahead and let the pad know:
https://annuel2.framapad.org/p/AppArmor-in-Debian-sprint

All in all I've only found two packages that still need fixing:
libvirt and torbrowser-launcher. I've sent patches upstream and to the
Debian BTS for both.

I'm tracking the required changes via blocking bugs of this one +
a usertag:
https://udd.debian.org/cgi-bin/bts-usertags.cgi?tag=linux-4.14&user=pkg-apparmor-team%40lists.alioth.debian.org
(one of these techniques should be enough but apparently I could not
make up my mind, oh well).

Cheers,
-- 
intrigeri