[ubuntu/utopic-proposed] docker.io 1.2.0~dfsg1-1ubuntu1 (Accepted)

[Jamie Strandboge]

docker.io (1.2.0~dfsg1-1ubuntu1) utopic; urgency=medium

  * debian/patches/sync-apparmor-with-lxc.patch: update AppArmor policy to
    by in sync with LXC. Specifically this:
    - reorganizes the rules to allow for easier comparison with other
      container policy
    - adds comments for many rules
    - adds bare dbus rule
    - adds ptrace rule to allow ptracing ourselves
    - adds deny mount options=(ro, remount, silent) -> /
    - allows hugetlbfs
    - adds cgmanager mount
    - adds /sys/fs/pstore mount
    - more specific /sys/kernel/security mount options
    - more specific /sys mount options
    - more specific /proc/sys/kernel/* deny rules
    - more specific /proc/sys/net deny rules
    - more specific /sys/class deny rules
    - more specific /sys/devices deny rules
    - more specific /sys/fs deny rules

Date: Wed, 01 Oct 2014 13:24:01 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/utopic/+source/docker.io/1.2.0~dfsg1-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 01 Oct 2014 13:24:01 -0500
Source: docker.io
Binary: docker.io vim-syntax-docker
Architecture: source
Version: 1.2.0~dfsg1-1ubuntu1
Distribution: utopic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
 docker.io  - Linux container runtime
 vim-syntax-docker - Docker container engine - Vim highlighting syntax files
Changes:
 docker.io (1.2.0~dfsg1-1ubuntu1) utopic; urgency=medium
 .
   * debian/patches/sync-apparmor-with-lxc.patch: update AppArmor policy to
     by in sync with LXC. Specifically this:
     - reorganizes the rules to allow for easier comparison with other
       container policy
     - adds comments for many rules
     - adds bare dbus rule
     - adds ptrace rule to allow ptracing ourselves
     - adds deny mount options=(ro, remount, silent) -> /
     - allows hugetlbfs
     - adds cgmanager mount
     - adds /sys/fs/pstore mount
     - more specific /sys/kernel/security mount options
     - more specific /sys mount options
     - more specific /proc/sys/kernel/* deny rules
     - more specific /proc/sys/net deny rules
     - more specific /sys/class deny rules
     - more specific /sys/devices deny rules
     - more specific /sys/fs deny rules
Checksums-Sha1:
 f6d4ea57e332dfdfab297fbd3617ac9cb7e373d3 3135 docker.io_1.2.0~dfsg1-1ubuntu1.dsc
 1d395850c83e7c8bebcd26dcaf4dc11f9a4a25f7 13516 docker.io_1.2.0~dfsg1-1ubuntu1.debian.tar.xz
Checksums-Sha256:
 85b60a39bf82343e9a57b4d3865654e8abea4c877a36673997c050ece394186f 3135 docker.io_1.2.0~dfsg1-1ubuntu1.dsc
 b36419ff2fe2d5f69f6cb8de78df21e02660e715a6ab7102c2ad37c106a3bd70 13516 docker.io_1.2.0~dfsg1-1ubuntu1.debian.tar.xz
Files:
 8d45c2615ceb39eb90c928a1d5d7ca2e 3135 admin optional docker.io_1.2.0~dfsg1-1ubuntu1.dsc
 2636116f4358a62d4d10299b1e3f6ff1 13516 admin optional docker.io_1.2.0~dfsg1-1ubuntu1.debian.tar.xz
Original-Maintainer: Paul Tagliamonte <paultag at debian.org>