[ubuntu/cosmic-proposed] lxc 3.0.1-0ubuntu1 (Accepted)
Stéphane Graber
stgraber at ubuntu.com
Tue Jun 5 21:35:10 UTC 2018
lxc (3.0.1-0ubuntu1) cosmic; urgency=medium
* New upstream bugfix release:
- tools: fix unitialized variable
- storage: fix lvm fs uuid generation
- lxc-oci: fix Cmd/Entrypoint parsing
- lxc-oci: make umoci less verbose
- lxclock: use thread-safe OFD fcntl() locks
- locktests: fix test suite
- conf: ensure umounts don’t propagate to host
- doc: Tweak Japanese translation in lxc.container.conf(5)
- fix signal sending in lxc.init
- rootfs pinning: On NFS, make file hidden but don’t delete it
- conf: fix temporary file creation
- ringbuf: fix temporary file creation
- Fix compilation with static libcap and shared gnutls
- attach: always drop supplementary groups
- lxc init: remove dead code
- storage/rsync: free memory on error
- tools/utils: free memory on error
- lxc init: coding style
- utils: define __NR_setns if missing on old glibcs
- attach: try to always drop supplementary groups
- conf: ret-try devpts mount without gid=5 on error
- execute: fix app containers without root mapping
- conf: fix net type checks in run_script_argv()
- seccomp: handle arch inversion
- seccomp: handle all errors
- seccomp: cleanup compat architecture handling
- seccomp: improve logging
- tools: document -d/–daemonize for lxc-execute
- seccomp: non-functional changes
- seccomp: handle arch inversion II
- lxc-oci: mkdir the download directory
- do_lxcapi_create: set umask
- lxc/tools/lxc_monitor: include missing <stddef.h>
- pam-cgfs: ignore the system umask when creating the cgroup hierarchy
- Also pass action scripts to CRIU on checkpointing
- Fix the memory leak in cgfsng_attach
- Fix memory leak in list_active_containers
- Fix tool_utils.c build when HAVE_SETNS is unset
- coverity: #1435210
- coverity: #1435208
- coverity: #1435207
- coverity: #1435206
- coverity: #1435205
- coverity: #1435203
- coverity: #1435200
- coverity: #1435198
- coverity: #1426734
- lxccontainer: non-functional changes
- lxccontainer: use thread-safe OFD locks
- lxccontainer: non-functional changes
- lxccontainer: do_lxcapi_is_running()
- lxccontainer: do_lxcapi_freeze()
- lxccontainer: do_lxcapi_unfreeze()
- lxccontainer: non-functional changes
- lxccontainer: use thread-safe open() + write()
- lxccontainer: non-functional changes
- lxccontainer: non-functional changes
- lxccontainer: non-functional changes
- coverity: #1435263
- fix logic for execute log file
- utils: add LXC_PROC_PID_FD_LEN
- execute: use static buffer
- execute: do not check inherited fds again
- add some TRACE/ERROR reporting
- execute: account for -o path option count
- execute: set init_path when existing init is found
- genl: remove
- coverity: #1248104
- coverity: #1248105
- coverity: #1425744
- utils: account for terminating \0 byte
- confile: satisfy gcc-8
- network: silence gcc-8
- network: adhere to IFNAMSIZ limit
- support case ignored suffix for sizes
- utils: fix parse_byte_size_string() coding style
- strlcpy: add strlcpy() implementation
- tree-wide: s/strncpy()/strlcpy()/g
- CODING_STYLE: add section about using strlcpy()
- tools: s/strncpy()/strlcpy()/g
- Revert “tools: s/strncpy()/strlcpy()/g”
- tools: s/strncpy()/memcpy()/
- doc: Add “-d/–daemon” option to Japanese lxc-execute(1)
- doc: Fix size unit style in Japanese lxc.container.conf(5)
- coverity: #1435604
- coverity: #1435603
- coverity: #1435602
- coverity: #1425844
- config: allow read-write /sys in user namespace
- coverity: #1425836
- coverity: #1248106
- capabilities: raise ambient capabilities
- coverity: #1425802
- cgroups: refactor cgroup handling
- cgroups: remove freezer_state()
- seccomp: #ifdef SCMP_ARCH_AARCH64
- conf: simplify write_id_mapping()
- log: enable per-thread container name prefix
- lxc-init: skip signals that can’t be caught
- execute: use execveat() syscall if supported
- tools: only create log file when requested
- seccomp: fix off-by-one error in array allocation for sscanf
- seccomp: remove confusing comment line
- seccomp: remove unnecessary memset
- seccomp: fix type mismatch when parsing syscall arguments filters
- lxcseccomp: cleanup header
- seccomp: parse_config_v1()
- utils: add remove_trailing_newlines()
- seccomp: get_v2_default_action()
- seccomp: get_action_name()
- seccomp: get_v2_action()
- seccomp: fix get_seccomp_arg_value()
- seccomp: parse_v2_rules()
- seccomp: move #ifdefines
- seccomp: get_hostarch()
- seccomp: scmp_filter_ctx get_new_ctx()
- seccomp: do_resolve_add_rule()
- seccomp: parse_config_v2()
- seccomp: parse_config()
- seccomp: lxc_read_seccomp_config()
- tree-wide: s/sigprocmask/pthread_sigmask()/g
- utils: fix task_blocking_signal()
- lxccontainer: fix fd leaks when sending signals
- confile: order architectures
- start: log setns() failure
- seccomp: leak fixup
- seccomp: re-add action parse error handling
- seccomp: refactor line handling of parse_config
- seccomp: error on unrecognized actions
- seccomp: lxc_read_seccomp_config()
- seccomp: parse_v2_rules()
- seccomp: make do_resolve_add_rule() more strict
- tools: fix lxc-create with global config value
- tools: fix lxc-create with global config value II
- coverity: #1435806
- coverity: #1435805
- coverity: #1435803
- coverity: #1435747
- conf: non-functional changes
- conf: make is_execute a boolean
- conf: non-functional changes
- conf: make close_all_fds a boolean
- conf: reshuffle mount members
- conf: simplify tty handling
- conf: pts -> pty_max
- conf: non-functional changes
- utils: fix task_blocking_signal()
- network: fix socket handle leak
- start: do not init ns_clone_flags to -1
- conf: ensure lxc_delete_tty() does not crash
- start: add reboot macros
- conf: make root idmap structs const
- conf: make tmp_umount_proc bool
- conf: non-functional changes
- conf: va_end was not called.
- confile: improve strprint()
- change defines for return value of handlers
- start: fix waitpid() blocking issue
- start: log unknown info.si_code
- tree-wide: fix mode of some files
- confile_utils: apply strprint()
- templates: actually create DOWNLOAD_TEMP directory
- templates: fix download template
- Patch lxc-update-config
* Bump standard to 4.1.4
Date: Tue, 05 Jun 2018 17:05:49 -0400
Changed-By: Stéphane Graber <stgraber at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/lxc/3.0.1-0ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 05 Jun 2018 17:05:49 -0400
Source: lxc
Binary: lxc lxc1 lxc-dev lxc-utils liblxc-common liblxc-dev liblxc1 libpam-cgfs
Architecture: source
Version: 3.0.1-0ubuntu1
Distribution: cosmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Stéphane Graber <stgraber at ubuntu.com>
Description:
liblxc-common - Linux Containers userspace tools (common tools)
liblxc-dev - Linux Containers userspace tools (development)
liblxc1 - Linux Containers userspace tools (library)
libpam-cgfs - PAM module for managing cgroups for LXC
lxc - Transitional package - lxc -> lxc-utils
lxc-dev - Transitional package - lxc-dev -> liblxc-dev
lxc-utils - Linux Containers userspace tools
lxc1 - Transitional package - lxc1 -> lxc-utils
Changes:
lxc (3.0.1-0ubuntu1) cosmic; urgency=medium
.
* New upstream bugfix release:
- tools: fix unitialized variable
- storage: fix lvm fs uuid generation
- lxc-oci: fix Cmd/Entrypoint parsing
- lxc-oci: make umoci less verbose
- lxclock: use thread-safe OFD fcntl() locks
- locktests: fix test suite
- conf: ensure umounts don’t propagate to host
- doc: Tweak Japanese translation in lxc.container.conf(5)
- fix signal sending in lxc.init
- rootfs pinning: On NFS, make file hidden but don’t delete it
- conf: fix temporary file creation
- ringbuf: fix temporary file creation
- Fix compilation with static libcap and shared gnutls
- attach: always drop supplementary groups
- lxc init: remove dead code
- storage/rsync: free memory on error
- tools/utils: free memory on error
- lxc init: coding style
- utils: define __NR_setns if missing on old glibcs
- attach: try to always drop supplementary groups
- conf: ret-try devpts mount without gid=5 on error
- execute: fix app containers without root mapping
- conf: fix net type checks in run_script_argv()
- seccomp: handle arch inversion
- seccomp: handle all errors
- seccomp: cleanup compat architecture handling
- seccomp: improve logging
- tools: document -d/–daemonize for lxc-execute
- seccomp: non-functional changes
- seccomp: handle arch inversion II
- lxc-oci: mkdir the download directory
- do_lxcapi_create: set umask
- lxc/tools/lxc_monitor: include missing <stddef.h>
- pam-cgfs: ignore the system umask when creating the cgroup hierarchy
- Also pass action scripts to CRIU on checkpointing
- Fix the memory leak in cgfsng_attach
- Fix memory leak in list_active_containers
- Fix tool_utils.c build when HAVE_SETNS is unset
- coverity: #1435210
- coverity: #1435208
- coverity: #1435207
- coverity: #1435206
- coverity: #1435205
- coverity: #1435203
- coverity: #1435200
- coverity: #1435198
- coverity: #1426734
- lxccontainer: non-functional changes
- lxccontainer: use thread-safe OFD locks
- lxccontainer: non-functional changes
- lxccontainer: do_lxcapi_is_running()
- lxccontainer: do_lxcapi_freeze()
- lxccontainer: do_lxcapi_unfreeze()
- lxccontainer: non-functional changes
- lxccontainer: use thread-safe open() + write()
- lxccontainer: non-functional changes
- lxccontainer: non-functional changes
- lxccontainer: non-functional changes
- coverity: #1435263
- fix logic for execute log file
- utils: add LXC_PROC_PID_FD_LEN
- execute: use static buffer
- execute: do not check inherited fds again
- add some TRACE/ERROR reporting
- execute: account for -o path option count
- execute: set init_path when existing init is found
- genl: remove
- coverity: #1248104
- coverity: #1248105
- coverity: #1425744
- utils: account for terminating \0 byte
- confile: satisfy gcc-8
- network: silence gcc-8
- network: adhere to IFNAMSIZ limit
- support case ignored suffix for sizes
- utils: fix parse_byte_size_string() coding style
- strlcpy: add strlcpy() implementation
- tree-wide: s/strncpy()/strlcpy()/g
- CODING_STYLE: add section about using strlcpy()
- tools: s/strncpy()/strlcpy()/g
- Revert “tools: s/strncpy()/strlcpy()/g”
- tools: s/strncpy()/memcpy()/
- doc: Add “-d/–daemon” option to Japanese lxc-execute(1)
- doc: Fix size unit style in Japanese lxc.container.conf(5)
- coverity: #1435604
- coverity: #1435603
- coverity: #1435602
- coverity: #1425844
- config: allow read-write /sys in user namespace
- coverity: #1425836
- coverity: #1248106
- capabilities: raise ambient capabilities
- coverity: #1425802
- cgroups: refactor cgroup handling
- cgroups: remove freezer_state()
- seccomp: #ifdef SCMP_ARCH_AARCH64
- conf: simplify write_id_mapping()
- log: enable per-thread container name prefix
- lxc-init: skip signals that can’t be caught
- execute: use execveat() syscall if supported
- tools: only create log file when requested
- seccomp: fix off-by-one error in array allocation for sscanf
- seccomp: remove confusing comment line
- seccomp: remove unnecessary memset
- seccomp: fix type mismatch when parsing syscall arguments filters
- lxcseccomp: cleanup header
- seccomp: parse_config_v1()
- utils: add remove_trailing_newlines()
- seccomp: get_v2_default_action()
- seccomp: get_action_name()
- seccomp: get_v2_action()
- seccomp: fix get_seccomp_arg_value()
- seccomp: parse_v2_rules()
- seccomp: move #ifdefines
- seccomp: get_hostarch()
- seccomp: scmp_filter_ctx get_new_ctx()
- seccomp: do_resolve_add_rule()
- seccomp: parse_config_v2()
- seccomp: parse_config()
- seccomp: lxc_read_seccomp_config()
- tree-wide: s/sigprocmask/pthread_sigmask()/g
- utils: fix task_blocking_signal()
- lxccontainer: fix fd leaks when sending signals
- confile: order architectures
- start: log setns() failure
- seccomp: leak fixup
- seccomp: re-add action parse error handling
- seccomp: refactor line handling of parse_config
- seccomp: error on unrecognized actions
- seccomp: lxc_read_seccomp_config()
- seccomp: parse_v2_rules()
- seccomp: make do_resolve_add_rule() more strict
- tools: fix lxc-create with global config value
- tools: fix lxc-create with global config value II
- coverity: #1435806
- coverity: #1435805
- coverity: #1435803
- coverity: #1435747
- conf: non-functional changes
- conf: make is_execute a boolean
- conf: non-functional changes
- conf: make close_all_fds a boolean
- conf: reshuffle mount members
- conf: simplify tty handling
- conf: pts -> pty_max
- conf: non-functional changes
- utils: fix task_blocking_signal()
- network: fix socket handle leak
- start: do not init ns_clone_flags to -1
- conf: ensure lxc_delete_tty() does not crash
- start: add reboot macros
- conf: make root idmap structs const
- conf: make tmp_umount_proc bool
- conf: non-functional changes
- conf: va_end was not called.
- confile: improve strprint()
- change defines for return value of handlers
- start: fix waitpid() blocking issue
- start: log unknown info.si_code
- tree-wide: fix mode of some files
- confile_utils: apply strprint()
- templates: actually create DOWNLOAD_TEMP directory
- templates: fix download template
- Patch lxc-update-config
.
* Bump standard to 4.1.4
Checksums-Sha1:
4cf3575b3d2825f90d8b0a1f69da75a00e8affcf 2809 lxc_3.0.1-0ubuntu1.dsc
2e07987c565dbb94ec5eaf4f949b3a5e86e27b4f 1239920 lxc_3.0.1.orig.tar.gz
1c745bba4a98a7c3d61e6a4476ef426e2df21a76 833 lxc_3.0.1.orig.tar.gz.asc
d1076b688f397403a5d86487b2d4d3d85b3b5ee7 113964 lxc_3.0.1-0ubuntu1.debian.tar.xz
78b4e1848efd9ee354b75e4db82e52b911f93e2e 7755 lxc_3.0.1-0ubuntu1_source.buildinfo
Checksums-Sha256:
0a568834172ecead86849799c89207905cb0c1e9103c709b6560909b67ddf79e 2809 lxc_3.0.1-0ubuntu1.dsc
45986c49be1c048fa127bd3e7ea1bd3347e25765c008a09a2e4c233151a2d5db 1239920 lxc_3.0.1.orig.tar.gz
e6fdc1c17e7f99b742ffa964f5ac618033e8c6c5bc5b0381b7a85e39dc1f311e 833 lxc_3.0.1.orig.tar.gz.asc
839b662a2a48eca243bac1a0bb2121ad7e7f6432a4f4e0e5e410a94341494c73 113964 lxc_3.0.1-0ubuntu1.debian.tar.xz
1940c529f6969e361edb0efc442fdaccc741d62c77ddce2a63514f66959d228d 7755 lxc_3.0.1-0ubuntu1_source.buildinfo
Files:
0b176c6ad2337c31b42c1d8dff25b92c 2809 admin optional lxc_3.0.1-0ubuntu1.dsc
8eb396dde561e5832ba2d505513a1935 1239920 admin optional lxc_3.0.1.orig.tar.gz
f933714365e7a6ff280cbc38aa820c4c 833 admin optional lxc_3.0.1.orig.tar.gz.asc
c722f35e5eff769cb7cc262fa23dd862 113964 admin optional lxc_3.0.1-0ubuntu1.debian.tar.xz
c144d7bb5c7eb719bcbc9708e53cb35a 7755 admin optional lxc_3.0.1-0ubuntu1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=ElU9
-----END PGP SIGNATURE-----
More information about the Cosmic-changes
mailing list