From 0167e55abddbccdf1b5500297dea390cd2d99d79 Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Thu, 9 Jun 2022 07:29:43 +0200 Subject: [PATCH] update runc binary to v1.1.3 full diff: https://github.com/opencontainers/runc/compare/v1.1.2...v1.1.3 This is the third release of the 1.1.z series of runc, and contains various minor improvements and bugfixes. - Our seccomp `-ENOSYS` stub now correctly handles multiplexed syscalls on s390 and s390x. This solves the issue where syscalls the host kernel did not support would return `-EPERM` despite the existence of the `-ENOSYS` stub code (this was due to how s390x does syscall multiplexing). - Retry on dbus disconnect logic in libcontainer/cgroups/systemd now works as intended; this fix does not affect runc binary itself but is important for libcontainer users such as Kubernetes. - Inability to compile with recent clang due to an issue with duplicate constants in libseccomp-golang. - When using systemd cgroup driver, skip adding device paths that don't exist, to stop systemd from emitting warnings about those paths. - Socket activation was failing when more than 3 sockets were used. - Various CI fixes. - Allow to bind mount `/proc/sys/kernel/ns_last_pid` to inside container. - runc static binaries are now linked against libseccomp v2.5.4. Signed-off-by: Sebastiaan van Stijn --- script/setup/runc-version | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/script/setup/runc-version b/script/setup/runc-version index 0f1acbd56..99a4aef0c 100644 --- a/script/setup/runc-version +++ b/script/setup/runc-version @@ -1 +1 @@ -v1.1.2 +v1.1.3