Add checks to load_include() to ensure absolute paths

Also update the tests to the new behaviour.

utils/apparmor/aa.py

@@ -2412,6 +2412,9 @@ def load_include(incname):
     load_includeslist = [incname]
     while load_includeslist:
         incfile = load_includeslist.pop(0)
+        if not incfile.startswith('/'):
+            raise AppArmorBug('incfile %s not starting with /' % incfile)
+
         incfile_abs = get_include_path(incfile)
         if include.get(incfile, {}).get(incfile, False):
             pass  # already read, do nothing

utils/test/test-aa.py

@@ -859,15 +859,14 @@ class AaTest_propose_file_rules_with_absolute_includes(AATest):
 
 
 class AaTest_nonexistent_includes(AATest):
-    def test_bad_includes(self):
     tests = [
-            "/nonexistent/absolute/path",
+        ("/nonexistent/absolute/path",      AppArmorException),
-            "nonexistent/relative/path",
+        ("nonexistent/relative/path",       AppArmorBug),       # load_include() only accepts absolute paths
     ]
 
-        for i in tests:
+    def _run_test(self, params, expected):
-            with self.assertRaises(AppArmorException):
+        with self.assertRaises(expected):
-                apparmor.aa.load_include(i)
+            apparmor.aa.load_include(params)
 
 
 setup_aa(apparmor.aa)