Comment 31 for bug 1579135

I believe I have finally tracked this one down. It only occurs when an fd is shared between 9 or more separate profile domains and one of those profiles is removed. The removal part can happen during the apparmor reload phase, if a profile was renamed which is more likely on touch and snappy.

Note: there is a new test kernel using +jj61 at http://people.canonical.com/~jj/linux+jj/

This should be the final fix for this issue