From 44c7afad64a7adcaea19593c5114a01fc06e8670 Mon Sep 17 00:00:00 2001
From: tifayuki <tifayuki@gmail.com>
Date: Tue, 14 Apr 2015 17:18:31 +0200
Subject: [PATCH] also check if "/sbin/apparmor_parser" exists when deciding if
 apparmor is enabled

Signed-off-by: Feng, Honglin <fenghonglin@gmail.com>
---
 apparmor/apparmor.go | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/apparmor/apparmor.go b/apparmor/apparmor.go
index 3be3294d8..18cedf6a1 100644
--- a/apparmor/apparmor.go
+++ b/apparmor/apparmor.go
@@ -14,8 +14,10 @@ import (
 
 func IsEnabled() bool {
 	if _, err := os.Stat("/sys/kernel/security/apparmor"); err == nil && os.Getenv("container") == "" {
-		buf, err := ioutil.ReadFile("/sys/module/apparmor/parameters/enabled")
-		return err == nil && len(buf) > 1 && buf[0] == 'Y'
+		if _, err = os.Stat("/sbin/apparmor_parser"); err == nil {
+			buf, err := ioutil.ReadFile("/sys/module/apparmor/parameters/enabled")
+			return err == nil && len(buf) > 1 && buf[0] == 'Y'
+		}
 	}
 	return false
 }