containerd

Author	SHA1	Message	Date
Michael Crosby	c5273930bd	Update CRI to `52c2c6b5df` This bump contains updates for CRI with selinux support. Signed-off-by: Michael Crosby <michael@thepasture.io>	2020-05-26 21:06:18 -04:00
Sebastiaan van Stijn	3e7bbb8a49	vendor: update containerd/cri, remove "docker/distribution" dependency Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2020-05-12 15:00:51 +02:00
Sebastiaan van Stijn	2c77dc63a4	vendor: update containerd/cri to current master - Remove dependency on libcontainer/system - Get rid of socat for port forwarding - Roll docker/distribution back to latest (v2.7.1) release Now that `901bcb2231` was merged in containerd, we no longer depend on the ParseDockerRef utility from docker/distribution, so we can safely roll back to the latest release for this dependency. - vendor: kubernetes v1.18.2 Fix client watch reestablishment handling of client-side timeouts - Add config flag to default empty seccomp profile Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2020-05-11 09:09:39 +02:00
Davanum Srinivas	f328f61b81	Update to selinux 1.5.1 Changes are listed here: https://github.com/opencontainers/selinux/compare/v1.3.3...v1.5.1 Not urgent as such, just keep up with eco-system. Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-04-08 06:29:50 -04:00
Sebastiaan van Stijn	e822296fc4	vendor: runtime-spec v1.0.2 full diff: `29686dbc55`...v1.0.2 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2020-04-04 00:21:43 +02:00
Davanum Srinivas	026e43806a	Update to a released version of opencontainers/selinux (1.3.3) Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-02-28 11:34:40 -05:00
Phil Estes	a1e0303e7a	Merge pull request #3978 from dims/sync-with-latest-containerd-cri-master-including-selinux-change Sync with latest changes in containerd/cri	2020-01-25 23:41:13 +02:00
Davanum Srinivas	faf03c3d23	Pick up fix for CVE-2019-16884 in opencontainers/selinux Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-01-25 14:19:59 -05:00
Davanum Srinivas	923c05bed1	Bump to opencontainers/runc new version - v1.0.0-rc10 We have a new release of runc ( opencontainers/runc#2217 ). This release has a fix for a race condition we are struggling with in kubernetes (especially CI jobs) which was fixed in opencontainers/runc#2185 The v1.0.0-rc10 includes the fix for CVE-2019-19921 as well. The full diff upstream is here: https://github.com/opencontainers/runc/compare/v1.0.0-rc9...v1.0.0-rc10 Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-01-24 10:13:56 -05:00
Wei Fu	074b453ac6	vendor: call vndr to remove useless pkgs and update vendor Signed-off-by: Wei Fu <fuweid89@gmail.com>	2019-10-18 17:49:22 +08:00
Michael Crosby	f277665edb	Bump runc to 1b8a1eeec3f337ab5d94f28980 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2019-10-03 10:36:35 -04:00
Michael Crosby	95dbbdc8c1	Bump runc for CVE-2019-16884 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2019-09-26 10:09:42 -04:00
Sebastiaan van Stijn	cb4a8f51a6	bump runc v1.0.0-rc8-32-gf4982d86 full diff: https://github.com/opencontainers/runc/compare/v1.0.0-rc8...f4982d86f7fde0b6f953cc62ccc4022c519a10a9 possibly relevant changes included: - opencontainers/runc#2074 Update dependency libseccomp-golang - fixes https://nvd.nist.gov/vuln/detail/CVE-2017-18367 - opencontainers/runc#2065 Fix cgroup hugetlb size prefix for kB - opencontainers/runc#2042 libcontainer: intelrdt: add missing destroy handler in defer func - opencontainers/runc#2042 main: not reopen /dev/stderr - opencontainers/runc#2038 `r.destroy` can defer exec in `runner.run` method - opencontainers/runc#2035 specconv: always set "type: bind" in case of MS_BIND - opencontainers/runc#2035 Move systemd.Manager initialization into a function in that module - opencontainers/runc#2034 Support for logging from children processes Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-06-25 13:03:23 +02:00
Sebastiaan van Stijn	e5aab17a0e	bump opencontainers/selinux v1.2.2 full diff: https://github.com/opencontainers/selinux/compare/v1.2.1...v1.2.2 - opencontainers/selinux#51 Older kernels do not support keyring labeling Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-04-25 22:43:05 -07:00
Sebastiaan van Stijn	dd85aea625	bump runc v1.0.0-rc8 full diff: `029124da7a...425e105d5a` - opencontainers/runc#2043 Vendor in latest selinux code for keycreate errors Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-04-25 22:42:50 -07:00
Michael Crosby	abfc89ce02	Update CRI to master Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2019-04-04 10:43:40 -04:00
Michael Crosby	4730088cb5	Update runc to resolve selinux issues Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2019-04-04 10:36:04 -04:00
Sebastiaan van Stijn	bc6ac08784	update opencontainers/runc v1.0.0-rc7 full diff: `2b18fe1d88`...v1.0.0-rc7 changes included: - opencontainers/runc#2012 Need to setup labeling of kernel keyrings - opencontainers/runc#2014 Add $RUNC_USE_SYSTEMD to run tests using systemd cgroup driver - opencontainers/runc#2015 Use getenv not secure_getenv - fixes opencontainers/runc#2013 build fails with musl libc - opencontainers/runc#2023 Fixes regression causing zombie runc:[1:CHILD] processes Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-03-28 21:42:17 +01:00
Sebastiaan van Stijn	b8d40b3535	update runc to 2b18fe1d885ee5083ef9f0838fee39b62d653e30 This includes an improved fix for CVE-2019-5736 to reduce the increased memory-consumption introduced by the original patch, RHEL 7.6 getting into a loop due to a kernel bug in those kernels, and improve compatibility with older kernels. changes included: - opencontainers/runc#1973 Vendor opencontainers/runtime-spec 29686dbc - opencontainers/runc#1978 Remove detection for scope properties, which have always been broken - opencontainers/runc#1963 Vendor in go-criu and use it for CRIU's RPC definition - opencontainers/runc#1995 exec: expose --preserve-fds - opencontainers/runc#2000 fix preserve-fds flag may cause runc hang - opencontainers/runc#1968 Create bind mount mountpoints during restore - opencontainers/runc#1984 nsenter: cloned_binary: "memfd" cleanups Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-03-07 21:30:26 +01:00
Sebastiaan van Stijn	14eaad0cd9	Update runc to 6635b4f0c6af3810594d2770f662f34ddc15b40d (CVE-2019-5736) Includes `6635b4f0c6`, which fixes a vulnerability in runc that allows a container escape (CVE-2019-5736) Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2019-02-11 15:18:59 +01:00
John Howard	98766e863e	Vendor opencontainers/runtime-spec 29686dbc Signed-off-by: John Howard <jhoward@microsoft.com>	2019-02-07 18:47:53 -08:00
Michael Crosby	66c20f2b75	Update runc to 96ec2177ae841256168fcf76954f7177af This fixes a regression in runc that didn't allow signals being sent to paused containers. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-12-04 11:21:20 -05:00
Sebastiaan van Stijn	97dd5df66f	Update runc to v1.0.0-rc6 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2018-11-28 00:51:18 +01:00
Michael Crosby	e1a59ba0fb	Update runc to 10d38b660a77168360df3522881e2dc2be Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-11-14 14:02:41 -05:00
Michael Crosby	d7769daa5e	Update runc to 58592df56734acf62e574865fe40b9e53e This includes fixes for user namespaces as well as a long standing bug for running docker and containerd inside an lxc container. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-10-16 15:47:41 -04:00
Michael Crosby	806a8f98bb	Update runc to 00dc70017d222b178a002ed30e9321b126 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-09-20 18:42:15 -04:00
Lantao Liu	ab9942cbf9	Update cri to `9f39e32895`. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-09-17 11:37:24 -07:00
Madhan Raj Mookkandy	744d93e960	Vendor in runtime spec referencing windows namespace Signed-off-by: Madhan Raj Mookkandy <madhanm@microsoft.com>	2018-09-13 18:03:18 -07:00
Derek McGowan	ddc53c9cd2	Update runc vendor Signed-off-by: Derek McGowan <derek@mcgstyle.net>	2018-08-17 13:22:56 -07:00
Michael Crosby	5a0b040ab4	Update containerd dependencies for 1.2 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-07-26 15:00:59 -04:00
Lantao Liu	f530a3c267	Update cri to v1.11.0. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-06-28 18:29:10 +00:00
Ian Campbell	388c73052a	Bump to latest go-digest. This renames the license file (so automated tooling can find it, which I care about) and also pulls in some documentation and comment changes, plus some functional changes: PR#33 -- future-proof the algorithm field. PR#34 -- disallow upper case in hex portion. No changes appear to be required to containerd code. Signed-off-by: Ian Campbell <ian.campbell@docker.com>	2018-04-30 23:38:02 +01:00
Michael Crosby	f117459c35	Bump runc to 69663f0bd4b60df09991c08812a60108003fa Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-03-15 14:14:41 -04:00
Lantao Liu	fa91b905e9	Update vendors. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-16 23:23:47 +00:00
Michael Crosby	73837b11db	Update runc to a618ab5a0186905949ee463dbb762c3d23e Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-02-08 11:30:24 -05:00
Michael Crosby	8dfbd59e60	Update runc to 9f9c96235cc97674e935002fc3d78361b69 This fixes issues for init and exec hanging forever when an error happends on start. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2018-01-23 10:05:26 -05:00
Michael Crosby	a0f7bbb103	Update runc to 7f24b40cc5423969b4554ef04ba0b00e2 This includes fixes for file joining and apparmor without cgo. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-12-15 11:30:22 -05:00
Sebastiaan van Stijn	8b1fd0875a	Bump runtime-spec and image-spec to 1.0.1 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2017-12-05 23:12:36 -08:00
Sebastiaan van Stijn	0eec9c078a	Fix missing libcontainer syscall file I noticed this file showed up when revendoring dependencies with vndr. Also removed `github.com/Microsoft/opengcs` from vendor.conf as it was not used; 2017/12/05 22:41:58 WARNING: package github.com/Microsoft/opengcs is unused, consider removing it from vendor.conf Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2017-12-05 22:52:50 -08:00
Michael Crosby	8feebb7513	Bump runc to 74a17296470088de3805e138d3d87c62e613d This bumps the runc version to 74a17296470088de3805e138d3d87c62e613dfc4 that includes various fixes. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-10-20 10:58:04 -04:00
Michael Crosby	cf2c4609bd	Bump runc with console change for ONLCR Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-09-26 11:01:40 -04:00
Michael Crosby	77f699ccc7	Update runc to 593914b8bd5448a93f7c3e4902a03408b6d This bumps runc to the newest version as of this date. Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-09-13 14:24:24 -04:00
Michael Crosby	5c7f67186a	Add libcontainer/user package for passwd parsing Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-08-24 10:32:16 -04:00
Stephen J Day	610e1a250d	vendor: update OCI image-spec dependency Signed-off-by: Stephen J Day <stephen.day@docker.com>	2017-08-02 14:08:13 -07:00
Michael Crosby	2386062ce1	Update runc to e775f0fba3ea329b8b766451c892c41a3d4 This resolves logrus issues with containerd not being in sync with the version runc is using. This also updates the OCI runtime spec to v1.0.0 Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-07-31 14:33:49 -04:00
Michael Crosby	83a38c2cec	Update runtime spec to 96de01bbb42c7af89bff100e10a Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-07-12 16:29:23 -07:00
Michael Crosby	4e8943f7bb	Update runtime-spec rc6 This should be the same commit tagged as the 1.0 release Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-07-12 09:32:41 -07:00
Michael Crosby	49f9dc494f	Update runc and runtime-spec dependencies Signed-off-by: Michael Crosby <crosbymichael@gmail.com>	2017-06-27 11:44:38 -07:00
Akihiro Suda	e4bc59a295	package for manipulating OCI images Signed-off-by: Akihiro Suda <suda.akihiro@lab.ntt.co.jp>	2017-06-14 06:49:56 +00:00
Akihiro Suda	f9039092c5	vendor: OCI Image Spec v1.0.0-rc6 Signed-off-by: Akihiro Suda <suda.akihiro@lab.ntt.co.jp>	2017-05-27 12:27:14 +00:00

1 2

66 Commits