Sebastiaan van Stijn
1fab7c6457
bump Graylog2/go-gelf to 1550ee647df0510058c9d67a45c56f18911d80b8
...
4143646226...1550ee647dGraylog2/go-gelf#20 Prevent panic when unmarshalling JSON
- Graylog2/go-gelf#23 Feat: Use more precise time stamps
- Graylog2/go-gelf#31 bugfix. Not goroutine safe for TCP writer
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-17 18:41:03 +02:00
Grant Millar
df7b8f458a
daemon: Use short libnetwork ID in exec-root & update libnetwork
...
Signed-off-by: Grant Millar <rid@cylo.io>
2019-10-15 11:40:24 +01:00
Tibor Vass
b3be2802d4
Merge pull request #39713 from thaJeztah/containerd_1.3
...
bump containerd and dependencies to v1.3.0
2019-10-08 10:43:56 -07:00
Sebastiaan van Stijn
bb5650619e
bump gorilla/mux v1.7.3
...
full diff: ed099d4238...00bdffe0f3gorilla/mux#477 Improve CORS Method Middleware
- implements gorilla/mux#477 Make CORSMethodMiddleware actually make sense
- gorilla/mux#489 Fix nil panic in authentication middleware example
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 11:38:53 +02:00
Sebastiaan van Stijn
38418287f7
bump olang/gddo 72a348e765d293ed6d1ded7b699591f14d6cd921
...
no local code changes, just keeping up with upstream
full diff: 9b12a26f3f...72a348e765
2019-10-06 11:30:52 +02:00
Sebastiaan van Stijn
e5dce0f8c5
bump creack/pty v1.1.9
...
full diff: https://github.com/creack/pty/compare/v1.1.7...v1.1.9
adds go mod support
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 03:01:05 +02:00
Sebastiaan van Stijn
61a2b7ac94
bump gofrs/flock v0.7.1
...
full diff: https://github.com/gofrs/flock/compare/v0.7.0...v0.7.1
- gofrs/flock#34 don't mention sync.Locker in package documentation
- fixes gofrs/flock#33 incorrect interface
- gofrs/flock#35 Fix linting issues and add goreportcard badge
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 02:39:43 +02:00
Sebastiaan van Stijn
9bd1b1a8ec
bump imdario/mergo v0.3.8
...
full diff: https://github.com/imdario/mergo/compare/v0.3.7...v0.3.8
includes:
- imdario/mergo#112 Add strict override
- fixes imdario/mergo#111 WithOverride should be able to check types
- imdario/mergo#106 Fix merging of interface types with concrete values
- imdario/mergo#120 should not overwrite pointers directly, instead check embedded values
- fixes imdario/mergo#114 Embedded struct of pointer types will overwrite the whole destination struct
- imdario/mergo#125 added WithOverrideEmptySlice config flag
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 02:39:24 +02:00
Sebastiaan van Stijn
7dee71e02f
bump mattn/go-shellwords v1.0.6
...
full diff: https://github.com/mattn/go-shellwords/compare/v1.0.5...v1.0.6
relevant changes:
- mattn/go-shellwords#24 Add dir option for parser
- mattn/go-shellwords#26 Fix backquote in part of argument
- fixes mattn/go-shellwords#25 Backtick "eats" all runes until isSpace
- mattn/go-shellwords#28 Fix dollar quote
- fixes mattn/go-shellwords#27 Multi-commands inside of command substitution are throwing "invalid command line string" errors
- mattn/go-shellwords#24 Add dir option for parser
- mattn/go-shellwords#24 Add dir option for parser
- mattn/go-shellwords#24 Add dir option for parser
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 02:19:58 +02:00
Sebastiaan van Stijn
9fac44028e
bump logrus v1.4.2
...
full diff: https://github.com/sirupsen/logrus/compare/v1.4.1...v1.4.2
- sirupsen/logrus#946 Fix solaris build
- sirupsen/logrus#966 Add a checkTerminal for nacl to support running on play.golang.org
- sirupsen/logrus#969 fix build break for plan9
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-06 02:16:47 +02:00
Sebastiaan van Stijn
82097c0f1f
bump hashicorp/golang-lru v0.5.3
...
full diff: https://github.com/hashicorp/golang-lru/compare/v0.5.1...v0.5.3
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-04 15:05:35 -07:00
Derek McGowan
bc5484d2dd
bump moby/buildkit f7042823e340d38d1746aa675b83d1aca431cee3
...
full diff: 588c73e1e4...f7042823e3
2019-10-04 15:05:35 -07:00
Sebastiaan van Stijn
0b5dcdc5d7
bump containerd/fifo bda0ff6ed73c67bfb5e62bc9c697f146b7fd7f13
...
full diff: a9fb20d874...bda0ff6ed7
2019-10-04 15:05:34 -07:00
Sebastiaan van Stijn
56357b73da
bump containerd/continuity f2a389ac0a02ce21c09edd7344677a601970f41c
...
full diff: aaeac12a7f...f2a389ac0a
2019-10-04 15:05:34 -07:00
Sebastiaan van Stijn
0af1099a81
bump containerd/cgroups c4b9ac5c7601384c965b9646fc515884e091ebb9
...
full diff: github.com/containerd/cgroups 4994991857...c4b9ac5c76containerd/cgroups#81 Add network stats
- addresses containerd/cgroups#80 Add network metrics
- containerd/cgroups#85 Fix cgroup hugetlb size prefix for kB
- addresses kubernetes/kubernetes#77169 Permission denied on hugetlb due to wrong filename
- relates to opencontainers/runc#2065 Fix cgroup hugetlb size prefix for kB
- containerd/cgroups#88 cgroups: fix MoveTo function fail problem
- containerd/cgroups#92 fixed an issue with invalid soft memory limits
- containerd/cgroups#93 avoid adding io_serviced and io_service_bytes duplicately
- fixes containerd/containerd#3412 collected metric container_blkio_io_serviced_recursive_total: was collected before with the same name and label values
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-10-04 15:05:34 -07:00
Sebastiaan van Stijn
1617be92d3
bump containerd/go-runc e029b79d8cda8374981c64eba71f28ec38e5526f
...
- github.com/containerd/go-runc 7d11b49dc0...e029b79d8ccontainerd/go-runc#52 Fix Method of judging command execution failure
- fixes "init.pid: no such file or directory: unknown" errors
- containerd/go-runc#54 avoid setting NOTIFY_SOCKET from calling process
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
Signed-off-by: Derek McGowan <derek@mcgstyle.net>
2019-10-04 15:05:33 -07:00
Derek McGowan
12f9887c8e
bump containerd v1.3.0
...
full diff: 7c1e88399e
2019-10-04 15:05:33 -07:00
Sebastiaan van Stijn
05a0621fd0
Re-group vendor.conf deps to reflect reality
...
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-09-27 16:22:39 +02:00
Sebastiaan van Stijn
ac0ab114a2
bump runc vendor v1.0.0-rc8-92-g84373aaa
...
full diff: https://github.com/opencontainers/runc/compare/v1.0.0-rc8...3e425f80a8c931f88e6d94a8c831b9d5aa481657
- opencontainers/runc#2010 criu image path permission error when checkpoint rootless container
- opencontainers/runc#2028 Update to Go 1.12 and drop obsolete versions
- opencontainers/runc#2029 Update dependencies
- opencontainers/runc#2034 Support for logging from children processes
- opencontainers/runc#2035 specconv: always set "type: bind" in case of MS_BIND
- opencontainers/runc#2038 `r.destroy` can defer exec in `runner.run` method
- opencontainers/runc#2041 Change the permissions of the notify listener socket to rwx for everyone
- opencontainers/runc#2042 libcontainer: intelrdt: add missing destroy handler in defer func
- opencontainers/runc#2047 Move systemd.Manager initialization into a function in that module
- opencontainers/runc#2057 main: not reopen /dev/stderr
- closes opencontainers/runc#2056 Runc + podman|cri-o + systemd issue with stderr
- closes kubernetes/kubernetes#77615 kubelet fails starting CRI-O containers (Ubuntu 18.04 + systemd cgroups driver)
- closes cri-o/cri-o#2368 Joining worker node not starting flannel or kube-proxy / CRI-O error "open /dev/stderr: no such device or address"
- opencontainers/runc#2061 libcontainer: fix TestGetContainerState to check configs.NEWCGROUP
- opencontainers/runc#2065 Fix cgroup hugetlb size prefix for kB
- opencontainers/runc#2067 libcontainer: change seccomp test for clone syscall
- opencontainers/runc#2074 Update dependency libseccomp-golang
- opencontainers/runc#2081 Bump CRIU to 3.12
- opencontainers/runc#2089 doc: First process in container needs `Init: true`
- opencontainers/runc#2094 Skip searching /dev/.udev for device nodes
- closes opencontainers/runc#2093 HostDevices() race with older udevd versions
- opencontainers/runc#2098 man: fix man-pages
- opencontainers/runc#2103 cgroups/fs: check nil pointers in cgroup manager
- opencontainers/runc#2107 Make get devices function public
- opencontainers/runc#2113 libcontainer: initial support for cgroups v2
- opencontainers/runc#2116 Avoid the dependency on cgo through go-systemd/util package
- removes github.com/coreos/pkg as dependency
- opencontainers/runc#2117 Remove libcontainer detection for systemd features
- fixes opencontainers/runc#2117 Cache the systemd detection results
- opencontainers/runc#2119 libcontainer: update masked paths of /proc
- relates to moby/moby#36368 Add /proc/keys to masked paths
- relates to moby/moby#38299 Masked /proc/asound
- relates to moby/moby#37404 Add /proc/acpi to masked paths (CVE-2018-10892)
- opencontainers/runc#2122 nsenter: minor fixes
- opencontainers/runc#2123 Bump x/sys and update syscall for initial Risc-V support
- opencontainers/runc#2125 cgroup: support mount of cgroup2
- opencontainers/runc#2126 libcontainer/nsenter: Don't import C in non-cgo file
- opencontainers/runc#2129 Only allow proc mount if it is procfs
- addresses opencontainers/runc#2129 AppArmor can be bypassed by a malicious image that specifies a volume at /proc (CVE-2019-16884)
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-09-27 16:22:37 +02:00
Sebastiaan van Stijn
75477f0b3c
bump libnetwork to 96bcc0dae898308ed659c5095526788a602f4726
...
full diff: 92d1fbe1eb...96bcc0dae8docker/libnetwork#2429 Updating IPAM config with results from HNS create network call
- addresses moby/moby#38358
- docker/libnetwork#2450 Always configure iptables forward policy
- related to moby/moby#14041 and docker/libnetwork#1526
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-09-20 19:48:49 +02:00
Tibor Vass
3aa4ff64aa
vendor: remove vdemeester/shakers and go-check/check
...
Signed-off-by: Tibor Vass <tibor@docker.com>
2019-09-09 21:09:57 +00:00
Sebastiaan van Stijn
f505abb6a7
Merge pull request #39855 from thaJeztah/bump_libnetwork
...
bump libnetwork and dependencies to 92d1fbe1eb0883cf11d283cea8e658275146411d
2019-09-03 18:12:08 +02:00
Sebastiaan van Stijn
492945c2d5
bump hashicorp/go-sockaddr v1.0.2
...
full diff: 6d291a969bhashicorp/go-sockaddr#25 Add android os
- hashicorp/go-sockaddr#28 Add go.mod
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-09-03 11:54:32 +02:00
Sebastiaan van Stijn
720b66ee1f
bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
...
full diff: fcdddc395d
2019-09-03 11:52:45 +02:00
Sebastiaan van Stijn
bab58c1924
bump lib network to 92d1fbe1eb0883cf11d283cea8e658275146411d
...
full diff: 09cdcc8c0e...92d1fbe1ebdocker/libnetwork#2433 Fix parseIP error when parseIP before get AddressFamily
- fixes docker/libnetwork#2431 parseIP Error ip=[172 17 0 2 0 0 0 0 0 0 0 0 0 0 0 0]
- https://github.com/docker/libnetwork/issues/2289
- this was a regression introduced in docker/libnetwork#2416 Fix hardcoded AF_INET for IPv6 address handling
- docker/libnetwork#2440 Bump hashicorp go-sockaddr v1.0.2, go-multierror v1.0.0
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-09-03 11:49:06 +02:00
Sebastiaan van Stijn
8769255d1b
bump containerd/ttrpc 92c8520ef9f86600c650dd540266a007bf03670f
...
full diff: 699c4e40d1...92c8520ef9containerd/ttrpc#37 Handle EOF to prevent file descriptor leak
- containerd/ttrpc#38 Improve connection error handling
- containerd/ttrpc#40 Support headers
- containerd/ttrpc#41 Add client and server unary interceptors
- containerd/ttrpc#43 metadata as KeyValue type
- containerd/ttrpc#42 Refactor close handling for ttrpc clients
- containerd/ttrpc#44 Fix method full name generation
- containerd/ttrpc#46 Client.Call(): do not return error if no Status is set (gRPC v1.23 and up)
- containerd/ttrpc#49 Handle ok status
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-08-29 00:16:46 +02:00
Sebastiaan van Stijn
f1cd79976a
bump google.golang.org/grpc v1.23.0
...
full diff: https://github.com/grpc/grpc-go/compare/v1.20.1...v1.23.0
This update contains security fixes:
- transport: block reading frames when too many transport control frames are queued (grpc/grpc-go#2970 )
- Addresses CVE-2019-9512 (Ping Flood), CVE-2019-9514 (Reset Flood), and CVE-2019-9515 (Settings Flood).
Other changes can be found in the release notes:
https://github.com/grpc/grpc-go/releases/tag/v1.23.0
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-08-29 00:13:39 +02:00
Tonis Tiigi
52ed97c5c1
vendor: update buildkit to 588c73e1e4
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-08-21 16:21:19 -07:00
Tõnis Tiigi
0537236e5a
Merge pull request #39726 from carlosedp/riscv64
...
bump x/sys to fix riscv64 epoll
2019-08-21 13:14:19 -07:00
CarlosEDP
bc8118b31f
bump x/sys to fix riscv64 epoll
...
Signed-off-by: Carlos de Paula <me@carlosedp.com>
2019-08-19 17:58:48 -03:00
Tonis Tiigi
e59b26087f
vendor: update buildkit to v0.6.1
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-08-14 18:55:30 -07:00
Sebastiaan van Stijn
097c09eb60
Merge pull request #39679 from jterry75/revendor_go-winio
...
Update Microsoft/go-winio v0.4.14
2019-08-08 15:07:29 +02:00
Justin Terry (VM)
35fe16b7eb
Update Microsoft/go-winio v0.4.14
...
Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
2019-08-07 09:36:51 -07:00
Tonis Tiigi
c60e53a274
vendor: update buildkit to f5a55a95
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-08-06 20:44:32 -07:00
Sebastiaan van Stijn
6f234db9fe
bump libnetwork to 09cdcc8c0eab3946c2d70e8f6225b05baf1e90d1
...
full diff: 83d30db536...09cdcc8c0edocker/libnetwork#2416 Fix hardcoded AF_INET for IPv6 address handling
- docker/libnetwork#2411 Macvlan network handles netlabel.Internal wrong
- fixes docker/libnetwork#2410 Macvlan network handles netlabel.Internal wrong
- docker/libnetwork#2414 Allow network with --config-from to be --internal
- fixes docker/libnetwork#2413 Network with --config-from does not honor --internal
- docker/libnetwork#2351 Use fewer modprobes
- relates to moby/moby#38930 Use fewer modprobes
- docker/libnetwork#2415 Support dockerd and system restarts for ipvlan and macvlan networks
- carry of docker/libnetwork#2295 phantom ip/mac vlan network after a powercycle
- fixes docker/libnetwork#1743 Phantom docker network
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-07-30 10:37:48 -07:00
Sebastiaan van Stijn
0595c01718
switch kr/pty to creack/pty v1.1.7
...
kr/pty was moved to creak/pty and the old location was
archived.
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-07-29 16:59:08 -07:00
Tonis Tiigi
096a7afd37
vendor: update swarmkit to 7dded76ec
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-07-17 11:52:58 -07:00
Tibor Vass
a1cdd4bfcc
build: buildkit now honors daemon's DNS config
...
Signed-off-by: Tibor Vass <tibor@docker.com>
2019-07-10 00:26:03 +00:00
CarlosEDP
9eaab0425b
Update modules to support riscv64
...
Signed-off-by: CarlosEDP <me@carlosedp.com>
2019-06-29 18:45:42 +00:00
Tibor Vass
14bd416d0e
vendor: containerd to 7c1e88399
...
Fixes https://github.com/moby/buildkit/issues/1062
when DOCKER_BUILDKIT=1
Signed-off-by: Tibor Vass <tibor@docker.com>
2019-06-28 18:28:09 +00:00
Michael Crosby
70f67c6240
Merge pull request #39409 from thaJeztah/bump_libseccomp
...
bump libseccomp-golang v0.9.1
2019-06-28 09:58:06 -04:00
Tibor Vass
9e6f83bee1
Merge pull request #39054 from thaJeztah/bump_libnetwork2
...
bump libnetwork. vishvananda/netlink 1.0, vishvananda/netns
2019-06-27 10:34:01 -07:00
Sebastiaan van Stijn
344b093258
bump libnetwork. vishvananda/netlink 1.0, vishvananda/netns
...
full diffs:
- fc5a7d91d5...62a13ae87cb2de5d10e3604eaf189edocker/libnetwork#2366 Bump vishvananda/netlink to 1.0.0
- docker/libnetwork#2339 controller: Check if IPTables is enabled for arrangeUserFilterRule
- addresses docker/libnetwork#2158 dockerd when run with --iptables=false modifies iptables by adding DOCKER-USER
- addresses moby/moby#35777 With iptables=false dockerd still creates DOCKER-USER chain and rules
- addresses docker/for-linux#136 dockerd --iptables=false adds DOCKER-USER chain and modify FORWARD chain anyway
- docker/libnetwork#2394 Make DNS records and queries case-insensitive
- addresses moby/moby#28689 Embedded DNS is case-sensitive
- addresses moby/moby#21169 hostnames with new networking are case-sensitive
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-06-25 14:10:15 +02:00
Sebastiaan van Stijn
e01bf76964
bump libseccomp-golang v0.9.1
...
full diff: 32f571b700...689e3c1541
2019-06-25 10:11:02 +02:00
Sebastiaan van Stijn
25b451e01b
bump gorilla/mux v1.7.2
...
full diff: https://github.com/gorilla/mux/compare/v1.7.0...v1.7.2
includes:
- gorilla/mux#457 adding Router.Name to create new Route
- gorilla/mux#447 host:port matching does not require a :port to be specified
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2019-06-20 13:33:46 +02:00
Tonis Tiigi
5c484890e0
vendor: update buildkit to c2427506
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-06-10 21:49:22 -07:00
Sebastiaan van Stijn
a6e1502575
Merge pull request #39295 from tiborvass/buildkit-systemd-resolvconf
...
build: buildkit now also uses systemd's resolv.conf
2019-06-04 20:28:36 +02:00
Tibor Vass
54043d2f6f
Merge pull request #39281 from dperny/vendor-swarmkit
...
Revert docker/swarmkit#2804
2019-06-04 10:28:42 -07:00
Tibor Vass
8ff4ec98cf
build: buildkit now also uses systemd's resolv.conf
...
Signed-off-by: Tibor Vass <tibor@docker.com>
2019-06-04 16:04:10 +00:00
Tonis Tiigi
85bbbd4495
vendor: update buildkit to 37d53758
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2019-06-04 00:34:16 -07:00
