summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--data/apparmor/abstractions/lightdm_chromium-browser4
-rw-r--r--debian/changelog2
2 files changed, 6 insertions, 0 deletions
diff --git a/data/apparmor/abstractions/lightdm_chromium-browser b/data/apparmor/abstractions/lightdm_chromium-browser
index 99089693..bc5e11a2 100644
--- a/data/apparmor/abstractions/lightdm_chromium-browser
+++ b/data/apparmor/abstractions/lightdm_chromium-browser
@@ -62,6 +62,10 @@
@{PROC}/[0-9]*/statm r, # sandbox wants these
@{PROC}/[0-9]*/task/[0-9]*/stat r, # sandbox wants these
+ owner @{PROC}/@{pid}/setgroups w,
+ owner @{PROC}/@{pid}/uid_map w,
+ owner @{PROC}/@{pid}/gid_map w,
+
/selinux/ r,
/usr/lib/chromium-browser/chromium-browser-sandbox ix,
diff --git a/debian/changelog b/debian/changelog
index ae9a19ac..36f20f84 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -5,6 +5,8 @@ lightdm (1.17.0-0ubuntu1) UNRELEASED; urgency=medium
* Build with multi-arch
* debian/patches/xorg-1.17.patch:
- Fix xserver-allow-tcp=true option not working with X.org 1.17
+ * data/apparmor/abstractions/lightdm_chromium-browser: cgroups support for
+ guest sessions. (LP: #1504049, LP: #1464958)
-- Robert Ancell <robert.ancell@canonical.com> Mon, 12 Oct 2015 14:57:47 +0100
View Lorry Controller Status