Here is a debdiff for lxc. It is tested on trusty. To ease backporting, I updated debian/rules for strip out the signal and ptrace rules for Ubuntu releases earlier than 14.04 (using the same method as for stripping out dbus for earlier than 13.10), but could not test earlier releases because libcgmanager-dev does not exist on them.
Before upgrading lxc, there were many ptrace and signal denials when using containers. After upgrading, creating, starting, using, stopping, destroying all works fine with no denials. ** Patch added: "lxc_1.0.2-0ubuntu2.debdiff" https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1298611/+attachment/4063121/+files/lxc_1.0.2-0ubuntu2.debdiff ** Changed in: lxc (Ubuntu) Status: New => In Progress ** Changed in: lxc (Ubuntu) Assignee: Stéphane Graber (stgraber) => Jamie Strandboge (jdstrand) ** Changed in: libvirt (Ubuntu) Status: Triaged => In Progress -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1298611 Title: [FFe] apparmor signal and ptrace mediation To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1298611/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
