github/containerd
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
5,531 Commits 3 Branches 4 Tags
12cb1554be8e3ba3fa6a7d11db2e8606a3163c0c
Commit Graph

410 Commits

Author SHA1 Message Date
Michael Crosby
97962976a4 Update ttrpc to 92c8520ef9f86600c650dd540266a00 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-28 14:00:13 -04:00
Sebastiaan van Stijn
2f54a7cb6b bump containerd/ttrpc 9abb3e268010ea188f4e4051f77eb5aca49315fb 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-26 23:24:22 +02:00
Sebastiaan van Stijn
eb7a6bf02c bump google.golang.org/grpc v1.23.0 
full diff: https://github.com/grpc/grpc-go/compare/v1.20.1...v1.23.0

This update contains security fixes:

- transport: block reading frames when too many transport control frames are queued (grpc/grpc-go#2970)
  - Addresses CVE-2019-9512 (Ping Flood), CVE-2019-9514 (Reset Flood), and CVE-2019-9515 (Settings Flood).

Other changes can be found in the release notes:
https://github.com/grpc/grpc-go/releases/tag/v1.23.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-26 23:24:20 +02:00
Sebastiaan van Stijn
55f737bd32 bump hashicorp/golang-lru v0.5.3 
full diff: https://github.com/hashicorp/golang-lru/compare/v0.5.1...v0.5.3

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-26 13:40:08 +02:00
Sebastiaan van Stijn
ed1df65c25 bump hashicorp/go-multierror v1.0.0 
full diff: ed905158d8...v1.0.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-26 13:37:53 +02:00
Sebastiaan van Stijn
cbb3a3790e bump hashicorp/errwrap v1.0.0 
full diff: 7554cd9344...v1.0.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-26 13:36:33 +02:00
Maksym Pavlenko
6e2228df72 Vendor github.com/imdario/mergo 
Signed-off-by: Maksym Pavlenko <makpav@amazon.com>
 2019-08-22 15:41:50 -07:00
Justin Terry (VM)
041e9debb1 Revendor github.com/Microsoft/hcsshim 
1. Revendors github.com/Microsoft/hcsshim to the latest known good commit.
This includes numerous bug fixes and improvements.

2. Vendors indirect dependency on go.opencensus.io since hcsshim now uses trace
correlation.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-20 13:50:24 -07:00
Kevin Parsons
64a0b2eb26 Revendor to remove unused dependencies 
Signed-off-by: Kevin Parsons <kevpar@microsoft.com>
 2019-08-19 11:23:34 -07:00
Michael Crosby
0ab7f03fee Merge pull request #3528 from dmcgowan/overlay-direct-unpack 
Add direct unpack support for overlay
 2019-08-19 10:26:48 -04:00
Lantao Liu
9cbd18ac76 Update cri to f1d492b0cd. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-16 16:38:22 -07:00
Derek McGowan
5a0ff41c81 Update continuity vendor 
Pulls in copy and fstest changes

Signed-off-by: Derek McGowan <derek@mcgstyle.net>
 2019-08-16 15:49:47 -07:00
Phil Estes
80d31d15ba Update fifo for typed errors 
Update containerd/fifo vendor.

Signed-off-by: Phil Estes <estesp@linux.vnet.ibm.com>
 2019-08-16 14:29:32 -04:00
Phil Estes
b77e25dade Merge pull request #3516 from crosbymichael/remote-enc 
Remove encryption code from containerd core
 2019-08-13 10:52:48 -04:00
Michael Crosby
f6504149e5 Merge pull request #3519 from thaJeztah/bump_boltdb 
bump go.etcd.io/bbolt v1.3.3
 2019-08-12 13:53:51 -04:00
CarlosEDP
3ef26cd87c bump x/sys to fix riscv64 epoll 
Signed-off-by: CarlosEDP <me@carlosedp.com>
 2019-08-12 11:43:53 -03:00
Sebastiaan van Stijn
b6fca48fed bump go.etcd.io/bbolt v1.3.3 
this brings the dependency back to a released version:

- go.etcd.io/bbolt 2eb7227ade...v1.3.3
  - etcd-io/bbolt#153 fix rollback panic bug
    - fixes etcd-io/bbolt#152 Panic (index out of range) on writeable tx rollback with db.NoFreelistSync

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-09 22:56:54 +02:00
Michael Crosby
d085d9b464 Remove encryption code from containerd core 
We are separating out the encryption code and have designed a few new
interfaces and APIs for processing content streams.  This keep the core
clean of encryption code but enables not only encryption but support of
multiple content types ( custom media types ).

Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-09 15:01:16 +00:00
Justin Terry (VM)
4667ee47a5 Update Microsoft/go-winio v0.4.14 
Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-06 13:24:42 -07:00
Akihiro Suda
225cc7d5bd Merge pull request #3494 from jterry75/remove_v2 
Completely remove Windows v2 in-tree shim
 2019-08-07 02:19:12 +09:00
Justin Terry (VM)
4b5dfaee13 Completely remove Windows v2 in-tree shim 
Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-05 16:49:56 -07:00
Lantao Liu
c99961c6c0 Update cri to b213648c5b 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-05 11:22:41 -07:00
Phil Estes
c90a3d4932 Merge pull request #3134 from stefanberger/encryption_code_plus_ctr.pr 
Add image encryption support and ctr support
 2019-07-17 15:47:12 -04:00
Stefan Berger
30c3443947 Add crypto dependencies/vendoring 
Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>
 2019-07-17 15:19:28 -04:00
Michael Crosby
a1f3ebaec8 Update cgroups to c4b9ac5c7601384c965b9646fc51588 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-07-17 15:09:45 +00:00
Ace-Tang
d3e1a51f85 vendor: bump go-runc 
bump go-runc to 9007c2405372fe28918845901a3276c0915689a1
in order to support get actually error log if checkpint fail, this
version get two new diff

Add common project content/checks:
8e51df4212
Fix Method of judging command execution
failure:4e99c72acd

Signed-off-by: Ace-Tang <aceapril@126.com>
 2019-07-03 21:57:10 +08:00
Eric Hotinger
9fda4a5fe6 Bumps the version of go-winio. 
This also refactors the lcow and windows
snapshotters to use go-winio's utility functions for checking the
filesystem type.

Signed-off-by: Eric Hotinger <ehotinger@gmail.com>
 2019-07-01 14:51:06 -07:00
Phil Estes
0e87608c2a Merge pull request #3371 from thaJeztah/bump_libseccomp 
bump libseccomp-golang v0.9.1
 2019-06-26 08:17:36 +08:00
Sebastiaan van Stijn
cb4a8f51a6 bump runc v1.0.0-rc8-32-gf4982d86 
full diff: https://github.com/opencontainers/runc/compare/v1.0.0-rc8...f4982d86f7fde0b6f953cc62ccc4022c519a10a9

possibly relevant changes included:

- opencontainers/runc#2074 Update dependency libseccomp-golang
  - fixes https://nvd.nist.gov/vuln/detail/CVE-2017-18367
- opencontainers/runc#2065 Fix cgroup hugetlb size prefix for kB
- opencontainers/runc#2042 libcontainer: intelrdt: add missing destroy handler in defer func
- opencontainers/runc#2042 main: not reopen /dev/stderr
- opencontainers/runc#2038 `r.destroy` can defer exec in `runner.run` method
- opencontainers/runc#2035 specconv: always set "type: bind" in case of MS_BIND
- opencontainers/runc#2035 Move systemd.Manager initialization into a function in that module
- opencontainers/runc#2034 Support for logging from children processes

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-06-25 13:03:23 +02:00
Sebastiaan van Stijn
bb41ef87f1 bump libseccomp-golang v0.9.1 
full diff: 32f571b700...689e3c1541

Release notes:

* Version 0.9.1 - May 21, 2019
- Minimum supported version of libseccomp bumped to v2.2.0 (fc0298087f)
- PowerPC and S390(x) architectures are unavailable below library version v2.3.0 and will return errors if used with incompatible libraries
- Use Libseccomp's `seccomp_version` API to retrieve library version
- Unconditionally set TSync attribute for filters, due to Go's heavily threaded nature
- Fix [CVE-2017-18367](https://nvd.nist.gov/vuln/detail/CVE-2017-18367) - Multiple syscall arguments were incorrectly combined with logical-OR, instead of logical-AND (06e7a29f36)
- Fix a failure to build on Debian-based distributions due to CGo code
- Fix unit test failures on 32-bit architectures
- Improve several errors to be more verbose about their causes
- Add support for SCMP_ACT_LOG (with libseccomp versions 2.4.x and higher), permitting syscalls but logging their execution
- Add support for SCMP_FLTATR_CTL_LOG (with libseccomp versions 2.4.x and higher), logging not-allowed actions when they are denied

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-06-25 10:57:58 +02:00
Odin Ugedal
341c7c144f Update dependency containerd/cgroups 
Signed-off-by: Odin Ugedal <odin@ugedal.com>
 2019-06-19 21:19:00 +02:00
Michael Crosby
0b7abc02b2 ttrpc updates for interceptors, close, and metadata 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-06-13 19:09:07 +00:00
CarlosEDP
fb6b0ae4c6 Update x/sys, x/net and bbolt modules to support Risc-V 
Signed-off-by: CarlosEDP <me@carlosedp.com>
 2019-06-07 17:54:32 -03:00
Michael Crosby
42f24b57e4 Update ttrpc to a5bd8ce9e40bc7c065a11c6936f4d032ce 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-06-04 15:14:06 +00:00
Derek McGowan
25daa7355c Merge pull request #3192 from thaJeztah/bump_grpc_1.19.1 
bump google.golang.org/grpc v1.20.1
 2019-05-22 11:58:52 -07:00
Georgi Sabev
a6a888cb5e Bump ttrpc 
Co-authored-by: Giuseppe Capizzi <gcapizzi@pivotal.io>
Signed-off-by: Georgi Sabev <georgethebeatle@gmail.com>
 2019-05-13 16:21:04 +01:00
Sebastiaan van Stijn
2ed8e60fa1 bump google.golang.org/grpc v1.20.1 
full diff: https://github.com/grpc/grpc-go/compare/v1.12.2...v1.20.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-05-05 12:39:23 -07:00
Sebastiaan van Stijn
d1c59513d8 bump google.golang.org/grpc v1.12.2 
full diff: https://github.com/grpc/grpc-go/compare/v1.12.0...v1.12.2

- grpc/grpc-go#2074 transport/server: fix race between writing status and header
  - fix grpc/grpc-go#1972 Possible race sending headers from server while receiving message over size limit
- grpc/grpc-go#2074 transport: account for user configured small io write buffer
  - fix grpc/grpc-go#2089 Server abruptly terminates connections if write buffer is small enough

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-05-05 12:38:25 -07:00
Michael Crosby
bf5a424679 Merge pull request #3246 from thaJeztah/bump_ttrpc 
bump containerd/ttrpc 699c4e40d1e7416e08bf7019c7ce2e9beced4636
 2019-04-29 17:32:19 -04:00
Derek McGowan
a6cd37e5c2 Merge pull request #3243 from Random-Liu/update-cri 
Update cri to 2fc62db814.
 2019-04-29 11:31:19 -07:00
msg555
c7f067f278 Update vendor/ with new required vndr go.mod files 
Signed-off-by: msg555 <msg555@gmail.com>
 2019-04-28 18:20:43 -04:00
Sebastiaan van Stijn
8c5779c32b bump containerd/ttrpc 699c4e40d1e7416e08bf7019c7ce2e9beced4636 
full diff: f02858b145...699c4e40d1

- containerd/ttrpc#33 Fix returns error message
- containerd/ttrpc#35 Make onclose an option

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-27 15:30:18 -07:00
Lantao Liu
5d17ed2302 Update cri to 2fc62db814. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-04-26 10:54:51 -07:00
Sebastiaan van Stijn
e5aab17a0e bump opencontainers/selinux v1.2.2 
full diff: https://github.com/opencontainers/selinux/compare/v1.2.1...v1.2.2

- opencontainers/selinux#51 Older kernels do not support keyring labeling

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-25 22:43:05 -07:00
Sebastiaan van Stijn
dd85aea625 bump runc v1.0.0-rc8 
full diff: 029124da7a...425e105d5a

- opencontainers/runc#2043 Vendor in latest selinux code for keycreate errors

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-25 22:42:50 -07:00
Sebastiaan van Stijn
c79c7921c0 bump docker/go-units v0.4.0 
relevant changes:

- docker/go-units#19 make 1 second not to be plural seconds
- docker/go-units#20 Add `HumanSizeWithPrecision` function
- docker/go-units#21 change week display rule
- docker/go-units#22 Better human duration precision
- docker/go-units#23 Removes spaces before unit
- docker/go-units#27 Fix #26 - RAMInBytes Bug
- docker/go-units#33 Fix handling of unlimited (-1) ulimit values
- docker/go-units#34 Revert 46 minute threshold

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-23 17:07:58 +02:00
Michael Crosby
a91e04356d Merge pull request #3223 from thaJeztah/bump_gocapability 
Bump syndtr/gocapability d983527, containerd/console
 2019-04-18 15:26:34 -04:00
Sebastiaan van Stijn
06a3a480cc bump containerd/console 0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7f 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-18 19:45:38 +02:00
Sebastiaan van Stijn
a333dbcfb4 Update x/crypto to 88737f569e3a9c7ab309cdc09a07fe7fc87233c3 
full diff: 49796115aa...88737f569e

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-18 19:01:11 +02:00
Sebastiaan van Stijn
0fd02564a2 bump gocapability 
full diff: db04d3cc01...d98352740c

changes included:

  - syndtr/gocapability#14 capability: Deprecate NewPid and NewFile for NewPid2 and NewFile2
  - syndtr/gocapability#16 Fix capHeader.pid type

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-04-18 19:00:27 +02:00