[FFe] LXC 1.1~alpha2

Dear release team,

LXC 1.1~alpha2 was just tagged upstream and we'd like to get that into Ubuntu 14.10.

The main reasons for this are:
 - Isn't broken on the current utopic kernel
 - Makes nova-compute-flex work properly
 - Fix LXC to work on Ubuntu systems running with systemd
 - Fixes a bunch of bugs which have now been fixed in Trusty (through the 1.0.6 release)

The main features that were added between alpha1 and alpha2 are:
 - openvswitch support (required for nova-compute-flex and a candidate for inclusion in stable)
 - lxc-start now defaults to backgrounded mode (I will revert that change prior to upload to avoid potential last minute breakages)
 - Support for checkpoint/restart with recent CRIU. This feature will however not be available in 14.10 due to the ancient CRIU currently in the archive.
 - Introduction of lxc-top which used to be only available in our PPA through the lua-lxc package. It's now been rewritten in C and is included in the default set of commands.

The whole changelog is:
 - pivot_root: umount ., not /
 - sysconfig/lxc: Reverse sourcing logic
 - apparmor: restrict signal and ptrace for processes
 - add file/func/line to debug info
 - fixups to init script rework
 - Rework init scripts
 - doc: Drop lxc.pivotdir from Japanese lxc.container.conf(5)
 - apparmor: silence 'silent' mount denials
 - Include network prefix when ipv4/ipv6 keys are queried
 - add src/python-lxc/setup.py into .gitignore
 - Fix presentation of IPv6 addresses and gateway
 - Initialize cgroups on lxc-checkpoint -r
 - lxc-checkpoint should fail if criu gets signal
 - doc: Update Japanese lxc-top(1) for porting C version
 - doc: Add lxc.aa_allow_incomplete flag to Japanese man
 - port lxc-top from lua to C for wider availability
 - download: Make --keyserver actually work
 - doc: Add description about ignoring lxc.cgroup.use when using cgmanager
 - Fix typo in lsm.h breaking android build
 - Fix the unprivileged tests cgroup management
 - document the new lxc.aa_allow_incomplete flag
 - Fix build error(ISO C90 specs violation) in lxc.c
 - apparmor: make sure sysfs and securityfs are mounted when checking for mount feature
 - apparmor: improve behavior when kernel lacks mount restrictions (v2)
 - pivot_root: switch to a new mechanism (v2)
 - log: fix quiet mode
 - support use of 'all' containers when cgmanager supports it
 - lxc-checkpoint should actually log things
 - tests: require criu >= 1.3.1 for criu test
 - c/r: use --restore-sibling option in CRIU
 - lxc_map_ids: add a comment
 - lxc-gentoo: keep original uid/gid of files/dirs when installing
 - finalize handler in lxcapi_restore
 - Exit on errors in restore()'s worker
 - Allow criu >= 1.3 in c/r test
 - lxc-checkpoint: use --force-irmap criu option
 - lxc-plamo: keep original uid/gid of files/dirs when installing
 - config: fix the handling of lxc.hook and hwaddrs in unexpanded config
 - Discontinue the use of in-line comments
 - Report container exit status to monitord
 - lxc-cgm: fix issue with nested chowning
 - doc: Translate lxc-checkpoint(1) into Japanese
 - Add lxc-restore-net to extra_DIST
 - Fix build failure due to wrong test name
 - handle hashed command socket names (v2)
 - Add support for checkpoint and restore via CRIU
 - build: Make setup.py run from srcdir to avoid distutils errors
 - build: don't remove configuration template on clean
 - tests: Copy the download cache when available [v2]
 - Prevent compiler warning by initializing ifindex
 - lxc-user-nic: be more paranoid
 - lxc-archlinux: Properly set default locale in /etc/locale.conf
 - Additional checks in ALTLinux template
 - Update the openvswitch bridge attach code
 - use lxcpath as unprivileged containers log directory
 - statvfs: do nothing if statvfs does not exist (android/bionic)
 - lxc_mount_auto_mounts: honor existing nodev etc at remounts
 - mount_entry: use statvfs
 - build: Fix support for split build and source dirs
 - chmod container dir to 0770 (v2)
 - load_config_locked: update unexp network
 - ignore SIGKILL (CTRL-C) and SIGQUIT (CTRL-\) - issue #313
 - show additional info if btrfs subvolume deletion fails (issue #315)
 - lxc_map_ids: don't do bogus chekc for newgidmap
 - Update plamo template
 - doc: Fix Japanese translation of lxc.containers.conf(5)
 - tests: Call sync before testing a shutdown
 - do_mount_entry: add nexec, nosuid, nodev, rdonly flags if needed at remount
 - monitor: fix sockname calculation for long lxcpaths
 - command socket: use hash if needed
 - Revert "chmod container dir to 0770"
 - Fix typo in the previous commit...
 - Add extra debugging
 - Updated template for ALTLinux.
 - doc: language correction
 - As discussed on ML, do not clean autodev dir on reboot
 - clean autodev dir on container exit
 - chmod container dir to 0770
 - cgmanager get/set: clean up child (v2)
 - introduce --with-distro=raspbian
 - lxc-test-unpriv: test lxc-clone -s
 - coverity: malloc the right size for btrs_node tree
 - coverity: don't use newname after null check
 - doc: add lxc.console.logpath to Japanese lxc.container.conf(5)
 - ubuntu: Check that btrfs is actually available
 - log_path: free on lxc_conf free (for master)
 - Ensure /dev/pts directory exists on pts setup
 - Fix a file descriptor leak in the monitord spawn
 - Fix a file descriptor leak in the daemonization
 - fix '--log-priority' --> '--logpriority' in main
 - Use portageq to determine portage distdir
 - Include hostname in DHCP requests
 - ssh: send hostname to dhcp server
 - templates: switch from arch command to uname -m
 - Do not allow snapshots of LVM backed containers
 - ubuntu templates: don't check for $rootfs/run/shm
 - add lxc.console.logpath
 - Add lxc.net to the dist tarball
 - unexpanded config file: turn into a string
 - btrfs: support recursive subvolume deletion (v2)
 - doc: Add 'zfs' to the parameter of -B option in lxc-create(1)
 - doc: Update the description of SELinux in Japanese lxc.container.conf(5)
 - doc: Add the description of lxc.environment to Japanese lxc.container.conf(5)
 - doc: Change default to "-d" in Japanese lxc-start(1)
 - doc: Add -F option to Japanese lxc-start(1)
 - Install systemd units for Ubuntu
 - systemd: Load AppArmor profiles if necessary/supported
 - systemd: Ensure action() is defined
 - Add systemd unit for lxc.net
 - Get systemd unit dir from pkg-config
 - Move lxcbr0 setup logic into lxc.net script
 - use non-thread-safe getpwuid and getpwgid for android
 - print a helpful message if creating unpriv container with no idmap
 - provide an example SELinux policy for older releases
 - Add the remaining bits for lxc.environment
 - Support providing env vars to container init
 - download: Have wget retry 3 times
 - lxc-start: Daemonize by default
 - lxc-start: Add -F (foreground) option
 - Merge pull request #285 from martinpitt/master
 - apparmor: Allow slave bind mounts
 - add help string for ubuntu templete
 - fix typo in btrfs error msg
 - fix typo
 - Support openvswitch bridges
 - unprivileged containers: use next available nic name if unspecified
 - Sysvinit script fixes
 - Add SIGPWR support to lxc_init
 - remove mountcgroup hook entirely
 - Remove mention of mountcgroups in ubuntu.common config
 - lxc-test-{unpriv,usernic.in}: make sure to chgrp as well
 - doc: Add mention that veth.pair is ignored for unpriv in Japanese man
 - doc: Mention that veth.pair is ignored for unpriv
 - centos template: prevent mingetty from calling vhangup(2)
 - Fix typo in previous patch
 - confile: sanity-check netdev->type before setting netdev->priv elements
 - rootfs_is_blockdev: don't run if no rootfs is specified
 - tests: lxc-test-ubuntu doesn't actually need bind9-host
 - tests: Clarify error message and fix return codes
 - lxc-debian: added support for package installation
 - lxc-debian: standardize formatting
 - lxc-debian: fix formatting