From c08a0b7c4e459f32a939391bc5c9667eb7c7ab5c Mon Sep 17 00:00:00 2001
From: Serge Hallyn <serge.hallyn@ubuntu.com>
Date: Mon, 3 Feb 2014 15:16:31 -0600
Subject: [PATCH] cgmanager: container-base apparmor abstraction: allow mount
 move

Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>
---
 config/apparmor/abstractions/container-base | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config/apparmor/abstractions/container-base b/config/apparmor/abstractions/container-base
index 9db94e782..d1cd84a4e 100644
--- a/config/apparmor/abstractions/container-base
+++ b/config/apparmor/abstractions/container-base
@@ -48,3 +48,4 @@
   deny /sys/fs/cg[^r]*/** wklx,
   deny /sys/firmware/efi/efivars/** rwklx,
   deny /sys/kernel/security/** rwklx,
+  mount options=(move) /sys/fs/cgroup/cgmanager/ -> /sys/fs/cgroup/cgmanager.lower/,