ec8e8aaa3a
This is the fourth patch release in the 1.1.z series of runc, primarily fixing a regression introduced in 1.1.3 related to device rules, as well as other bugs. - Fix mounting via wrong proc fd. When the user and mount namespaces are used, and the bind mount is followed by the cgroup mount in the spec, the cgroup was mounted using the bind mount's mount fd. - Switch kill() in libcontainer/nsenter to sane_kill(). - Fix "permission denied" error from runc run on noexec fs. - Fix failed exec after systemctl daemon-reload. Due to a regression in v1.1.3, the DeviceAllow=char-pts rwm rule was no longer added and was causing an error open /dev/pts/0: operation not permitted: unknown when systemd was reloaded. https://github.com/opencontainers/runc/releases/tag/v1.1.4 Signed-off-by: Christian Stewart <christian@paral.in> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
31 lines
786 B
Makefile
31 lines
786 B
Makefile
################################################################################
|
|
#
|
|
# runc
|
|
#
|
|
################################################################################
|
|
|
|
RUNC_VERSION = 1.1.4
|
|
RUNC_SITE = $(call github,opencontainers,runc,v$(RUNC_VERSION))
|
|
RUNC_LICENSE = Apache-2.0, LGPL-2.1 (libseccomp)
|
|
RUNC_LICENSE_FILES = LICENSE
|
|
RUNC_CPE_ID_VENDOR = linuxfoundation
|
|
|
|
RUNC_LDFLAGS = -X main.version=$(RUNC_VERSION)
|
|
RUNC_TAGS = cgo static_build
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBAPPARMOR),y)
|
|
RUNC_DEPENDENCIES += libapparmor
|
|
RUNC_TAGS += apparmor
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBSECCOMP),y)
|
|
RUNC_TAGS += seccomp
|
|
RUNC_DEPENDENCIES += libseccomp host-pkgconf
|
|
endif
|
|
|
|
HOST_RUNC_LDFLAGS = $(RUNC_LDFLAGS)
|
|
HOST_RUNC_TAGS = cgo static_build
|
|
|
|
$(eval $(golang-package))
|
|
$(eval $(host-golang-package))
|