[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted snapd 2.65.1-1 (source) into unstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 06 Sep 2024 13:27:51 +0200
Source: snapd
Architecture: source
Version: 2.65.1-1
Distribution: unstable
Urgency: medium
Maintainer: Michael Hudson-Doyle <mwhudson@debian.org>
Changed-By: Zygmunt Krynicki <me@zygoon.pl>
Changes:
 snapd (2.65.1-1) unstable; urgency=medium
 .
   [ Ernest Lotter ]
   * New upstream release, LP: #2077473
     - Support building snapd using base Core22 (Snapcraft 8.x)
     - FIPS: support building FIPS complaint snapd variant that switches
       to FIPS mode when the system boots with FIPS enabled
     - AppArmor: update to latest 4.0.2 release
     - AppArmor: enable using ABI 4.0 from host parser
     - AppArmor: fix parser lookup
     - AppArmor: support AppArmor snippet priorities
     - AppArmor: allow reading cgroup memory.max file
     - AppArmor: allow using snap-exec coming from the snapd snap when
       starting a confined process with jailmode
     - AppArmor prompting (experimental): add checks for prompting
       support, include prompting status in system key, and restart snapd
       if prompting flag changes
     - AppArmor prompting (experimental): include prompt prefix in
       AppArmor rules if prompting is supported and enabled
     - AppArmor prompting (experimental): add common types, constraints,
       and mappings from AppArmor permissions to abstract permissions
     - AppArmor prompting (experimental): add path pattern parsing and
       matching
     - AppArmor prompting (experimental): add path pattern precedence
       based on specificity
     - AppArmor prompting (experimental): add packages to manage
       outstanding request prompts and rules
     - AppArmor prompting (experimental): add prompting API and notice
       types, which require snap-interfaces-requests-control interface
     - AppArmor prompting (experimental): feature flag can only be
       enabled if prompting is supported, handler service connected, and
       the service can be started
     - Registry views (experimental): rename from aspects to registries
     - Registry views (experimental): support reading registry views and
       setting/unsetting registry data using snapctl
     - Registry views (experimental): fetch and refresh registry
       assertions as needed
     - Registry views (experimental): restrict view paths from using a
       number as first character and view names to storage path style
       patterns
     - Snap components: support installing snaps and components from
       files at the same time (no REST API/CLI)
     - Snap components: support downloading components related assertions
       from the store
     - Snap components: support installing components from the store
     - Snap components: support removing components individually and
       during snap removal
     - Snap components: support kernel modules as components
     - Snap components: support for component install, pre-refresh and
       post-refresh hooks
     - Snap components: initial support for building systems that contain
       components
     - Refresh app awareness (experimental): add data field for
       /v2/changes REST API to allow associating each task with affected
       snaps
     - Refresh app awareness (experimental): use the app name from
       .desktop file in notifications
     - Refresh app awareness (experimental): give snap-refresh-observe
       interface access to /v2/snaps/{name} endpoint
     - Improve snap-confine compatibility with nvidia drivers
     - Allow re-exec when SNAP_REEXEC is set for unlisted distros to
       simplify testing
     - Allow mixing revision and channel on snap install
     - Generate GNU build ID for Go binaries
     - Add missing etelpmoc.sh for shell completion
     - Do not attempt to run snapd on classic when re-exec is disabled
     - Packaging/build maintenance for Debian sid, Fedora, Arch, openSuse
     - Add snap debug API command to enable running raw queries
     - Enable snap-confine snap mount directory detection
     - Replace global seccomp filter with deny rules in standard seccomp
       template
     - Remove support for Ubuntu Core Launcher (superseded by snap-
       confine)
     - Support creating pending serial bound users after serial assertion
       becomes available
     - Support disabling cloud-init using kernel command-line
     - In hybrid systems, apps can refresh without waiting for restarts
       required by essential snaps
     - Ship snap-debug-info.sh script used for system diagnostics
     - Improve error messages when attempting to run non-existent snap
     - Switch to -u UID:GID for strace-static
     - Support enabling snapd logging with snap set system
       debug.snapd.{log,log-level}
     - Add options system.coredump.enable and system.coredump.maxuse to
       support using systemd-coredump on Ubuntu Core
     - Provide documentation URL for 'snap interface '
     - Fix snapd riscv64 build
     - Fix restarting activated services instead of their activator units
       (i.e. sockets, timers)
     - Fix potential unexpected auto-refresh of snap on managed schedule
     - Fix potential segfault by guarding against kernel command-line
       changes on classic system
     - Fix proxy entries in /etc/environment with missing newline that
       caused later manual entries to not be usable
     - Fix offline remodelling by ignoring prerequisites that will
       otherwise be downloaded from store
     - Fix devmode seccomp deny regression that caused spamming the log
       instead of actual denies
     - Fix snap lock leak during refresh
     - Fix not re-pinning validation sets that were already pinned when
       enforcing new validation sets
     - Fix handling of unexpected snapd runtime failure
     - Fix /v2/notices REST API skipping notices with duplicate
       timestamps
     - Fix comparing systemd versions that may contain pre-release
       suffixes
     - Fix udev potentially starting before snap-device-helper is made
       available
     - Fix race in snap seed metadata loading
     - Fix treating cloud-init exit status 2 as error
     - Fix to prevent sending refresh complete notification if snap snap-
       refresh-observe interface is connected
     - Fix to queue snapctl service commands if run from the default-
       configure hook to ensure they get up-to-date config values
     - Fix stop service failure when the service is not actually running
       anymore
     - Fix parsing /proc/PID/mounts with spaces
     - Add registry interface that provides snaps access to a particular
       registry view
     - Add snap-interfaces-requests-control interface to enable prompting
       client snaps
     - steam-support interface: remove all AppArmor and seccomp
       restrictions to improve user experience
     - opengl interface: improve compatibility with nvidia drivers
     - home interface: autoconnect home on Ubuntu Core Desktop
     - serial-port interface: support RPMsg tty
     - display-control interface: allow changing LVDS backlight power and
       brightness
     - power-control interface: support for battery charging thesholds,
       type/status and AC type/status
     - cpu-control interface: allow CPU C-state control
     - raw-usb interface: support RPi5 and Thinkpad x13s
     - custom-device interface: allow device file locking
     - lxd-support interface: allow LXD to self-manage its own cgroup
     - network-manager interface: support MPTCP sockets
     - network-control interface: allow plug/slot access to gnutls config
       and systemd resolved cache flushing via D-Bus
     - network-control interface: allow wpa_supplicant dbus api
     - gpio-control interface: support gpiochip* devices
     - polkit interface: fix "rw" mount option check
     - u2f-devices interface: enable additional security keys
     - desktop interface: enable kde theming support
Checksums-Sha1:
 ea8141be22608e42b4d48dd14280ebbeac89ac11 3500 snapd_2.65.1-1.dsc
 eae40aac6c22bb41fab52e268d73bc8e0253c66a 15316921 snapd_2.65.1.orig.tar.gz
 49ba70b9a6bb20c95a2a65327e6a44a18e31cfab 142448 snapd_2.65.1-1.debian.tar.xz
 0cdfaacc2ed8c46a1e076457f50427ee82c3b801 15072 snapd_2.65.1-1_source.buildinfo
Checksums-Sha256:
 290bc52bdcd3c4366f7ab5d7b50e30d0ab919eae3a2a5905e242900f88594aaa 3500 snapd_2.65.1-1.dsc
 3e8cddb790b6f42abf2e7af1a38e494deb84dc791a3d4b66c2c6462618ab7737 15316921 snapd_2.65.1.orig.tar.gz
 b942541779123de2fd21c70a6c5139ad5fca9e5c25bbaee0bb71dd4d2ad3cc3e 142448 snapd_2.65.1-1.debian.tar.xz
 d985f3310f585924285ae3bf8c781b70fab99916dc294dad48338f15a6c8f07a 15072 snapd_2.65.1-1_source.buildinfo
Files:
 3b199bf9a6a044ea0f39799525ff29cd 3500 devel optional snapd_2.65.1-1.dsc
 6b9713f81784236efe264dced83d8c58 15316921 devel optional snapd_2.65.1.orig.tar.gz
 8d0dd5f7c0179f809b313b79f620abd3 142448 devel optional snapd_2.65.1-1.debian.tar.xz
 2341811e3ee3a3edcd00b46f3affb6c6 15072 devel optional snapd_2.65.1-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJIBAEBCgAyFiEEt2ztm0XK8VV9JxpqKJTpOijGe0cFAmba54kUHHprcnluaWNr
aUBnbWFpbC5jb20ACgkQKJTpOijGe0dsbA/+NmvR/rtayKg8P4Y1SxKtX+6VzLAT
GCouOz4TD+/8B04K2UTc1LrLTiDZYXYSq7AEqN2y6UC10pcd6VvVR1MCd3YF05+J
4fppc9dGqakXb4imOX8G/usdc44jf8XJqmYprWCpAr/bNGtTVQXHgMtr/AiCUJhu
uQO968FkffxfhN0TX0aXeu8iz1TzKAnvxUeaHhfOJACBMC6tzjh5k4X6vGbsYPFp
0MYe+69H0tzBN91S1L0qzz4jER0dwvBvLB5X1rRskc2pp50m6+Dz6leprF7BlREC
VQWsoTyKsJ+goHICHUVAidi62dzTli5/ansFfIlAa1yZ/TdxExOq3wDG/VZwUWoj
59vgjtDWgxuqLgP5r1jMinHza8BCsKQolBQ/zndkfa1E5StDcA0iewtgEdHqyGW5
rv8BxQmrQUa6FO6E48NqJlp9RiM/ZZvjznWOKBjYSUCsDfbJUkhD+JlQVbYD1tN9
qgywb/0Hmn10rPfaZiEfZTNyQfpuvVp8a605qeqUjAcQlFseqHQwYYpcefFE+GTo
pns7w52epNT+nSfjzQSjyX47wISG51ok+ZSLuNP0z6/foResIBBwqRRJQmZ/rRtH
m9bT71jEVhd5kEpD7hFwr0qxu92NOXGiUaWlZUvwja0eKFQOORjS5IsMH0z76G6L
nqqV3pE6ltJJvm8=
=WkFY
-----END PGP SIGNATURE-----

Attachment: pgpCUYHpdo8K7.pgp
Description: PGP signature

Reply to: