update runc binary to v1.1.3
full diff: https://github.com/opencontainers/runc/compare/v1.1.2...v1.1.3 This is the third release of the 1.1.z series of runc, and contains various minor improvements and bugfixes. - Our seccomp `-ENOSYS` stub now correctly handles multiplexed syscalls on s390 and s390x. This solves the issue where syscalls the host kernel did not support would return `-EPERM` despite the existence of the `-ENOSYS` stub code (this was due to how s390x does syscall multiplexing). - Retry on dbus disconnect logic in libcontainer/cgroups/systemd now works as intended; this fix does not affect runc binary itself but is important for libcontainer users such as Kubernetes. - Inability to compile with recent clang due to an issue with duplicate constants in libseccomp-golang. - When using systemd cgroup driver, skip adding device paths that don't exist, to stop systemd from emitting warnings about those paths. - Socket activation was failing when more than 3 sockets were used. - Various CI fixes. - Allow to bind mount `/proc/sys/kernel/ns_last_pid` to inside container. - runc static binaries are now linked against libseccomp v2.5.4. Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
This commit is contained in:
Sebastiaan van Stijn
parent
20d6b5c1bd
commit
2293de1c82
1 changed files with 1 additions and 1 deletions
|
|
@ -9,7 +9,7 @@ set -e
|
|||
# the containerd project first, and update both after that is merged.
|
||||
#
|
||||
# When updating RUNC_VERSION, consider updating runc in vendor.mod accordingly
|
||||
: "${RUNC_VERSION:=v1.1.2}"
|
||||
: "${RUNC_VERSION:=v1.1.3}"
|
||||
|
||||
install_runc() {
|
||||
RUNC_BUILDTAGS="${RUNC_BUILDTAGS:-"seccomp"}"
|
||||
|
|
|
|||
Loading…
Reference in a new issue