kumquat-buildroot/package/runc/runc.mk
Christian Stewart ec8e8aaa3a package/runc: bump to version 1.1.4
This is the fourth patch release in the 1.1.z series of runc, primarily fixing a
regression introduced in 1.1.3 related to device rules, as well as other bugs.

 - Fix mounting via wrong proc fd. When the user and mount namespaces are used,
 and the bind mount is followed by the cgroup mount in the spec, the cgroup was
 mounted using the bind mount's mount fd.
 - Switch kill() in libcontainer/nsenter to sane_kill().
 - Fix "permission denied" error from runc run on noexec fs.
 - Fix failed exec after systemctl daemon-reload. Due to a regression in v1.1.3,
 the DeviceAllow=char-pts rwm rule was no longer added and was causing an error
 open /dev/pts/0: operation not permitted: unknown when systemd was reloaded.

https://github.com/opencontainers/runc/releases/tag/v1.1.4

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-09-17 12:14:12 +02:00

31 lines
786 B
Makefile

################################################################################
#
# runc
#
################################################################################
RUNC_VERSION = 1.1.4
RUNC_SITE = $(call github,opencontainers,runc,v$(RUNC_VERSION))
RUNC_LICENSE = Apache-2.0, LGPL-2.1 (libseccomp)
RUNC_LICENSE_FILES = LICENSE
RUNC_CPE_ID_VENDOR = linuxfoundation
RUNC_LDFLAGS = -X main.version=$(RUNC_VERSION)
RUNC_TAGS = cgo static_build
ifeq ($(BR2_PACKAGE_LIBAPPARMOR),y)
RUNC_DEPENDENCIES += libapparmor
RUNC_TAGS += apparmor
endif
ifeq ($(BR2_PACKAGE_LIBSECCOMP),y)
RUNC_TAGS += seccomp
RUNC_DEPENDENCIES += libseccomp host-pkgconf
endif
HOST_RUNC_LDFLAGS = $(RUNC_LDFLAGS)
HOST_RUNC_TAGS = cgo static_build
$(eval $(golang-package))
$(eval $(host-golang-package))