@{PROC}/[0-9]*/statm r, # sandbox wants these
@{PROC}/[0-9]*/task/[0-9]*/stat r, # sandbox wants these
+ owner @{PROC}/@{pid}/setgroups w,
+ owner @{PROC}/@{pid}/uid_map w,
+ owner @{PROC}/@{pid}/gid_map w,
+
/selinux/ r,
/usr/lib/chromium-browser/chromium-browser-sandbox ix,
+lightdm (1.17.0-0ubuntu1) UNRELEASED; urgency=medium
+
+ * New upstream release:
+ - ...
+ * Build with multi-arch
+ * debian/patches/xorg-1.17.patch:
+ - Fix xserver-allow-tcp=true option not working with X.org 1.17
+ * data/apparmor/abstractions/lightdm_chromium-browser: cgroups support for
+ guest sessions. (LP: #1504049, LP: #1464958)
+
+ -- Robert Ancell <robert.ancell@canonical.com> Mon, 12 Oct 2015 14:57:47 +0100
+
lightdm (1.16.0-0ubuntu1) wily; urgency=medium
* New upstream release:
--- /dev/null
+Description: The X.org X server 1.17 doesn't listen on TCP by default, we need to pass -listen to enable it
+Author: Robert Ancell <robert.ancell@canonical.com>
+Bug: https://bugs.launchpad.net/bugs/1449282
+
+=== modified file 'src/x-server-local.c'
+Index: 1.16/src/x-server-local.c
+===================================================================
+--- 1.16.orig/src/x-server-local.c
++++ 1.16/src/x-server-local.c
+@@ -477,6 +477,7 @@ x_server_local_start (DisplayServer *dis
+ /* Connect to a remote server using XDMCP */
+ if (server->priv->xdmcp_server != NULL)
+ {
++ g_string_append (command, " -listen tcp");
+ if (server->priv->xdmcp_port != 0)
+ g_string_append_printf (command, " -port %d", server->priv->xdmcp_port);
+ g_string_append_printf (command, " -query %s", server->priv->xdmcp_server);
+@@ -485,6 +486,8 @@ x_server_local_start (DisplayServer *dis
+ }
+ else if (!server->priv->allow_tcp)
+ g_string_append (command, " -nolisten tcp");
++ else
++ g_string_append (command, " -listen tcp");
+
+ if (server->priv->vt >= 0)
+ g_string_append_printf (command, " vt%d -novtswitch", server->priv->vt);