From 25cdae293fedb18f3538788d629d6e4475acaa4b Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Wed, 13 Mar 2019 21:00:50 +0100 Subject: [PATCH] Update containerd v1.2.5, runc 2b18fe1d885ee5083ef9f0838fee39b62d653e30 Notable Updates - Fix an issue that non-existent parent directory in image layers is created with permission 0700. containerd#3017 - Fix an issue that snapshots of the base image can be deleted by mistake, when images built on top of it are deleted. containerd#3087 - Support for GC references to content from snapshot and container objects. containerd#3080 - cgroups updated to dbea6f2bd41658b84b00417ceefa416b97 to fix issues for systemd 420 and non-existent cgroups. containerd#3079 - runc updated to 2b18fe1d885ee5083ef9f0838fee39b62d653e30 to include the improved fix for CVE-2019-5736. containerd#3082 - cri: Fix a bug that pod can't get started when the same volume is defined differently in the image and the pod spec. cri#1059 - cri: Fix a bug that causes container start failure after in-place upgrade containerd to 1.2.4+ or 1.1.6+. cri#1082 - cri updated to a92c40017473cbe0239ce180125f12669757e44f. containerd#3084 Signed-off-by: Sebastiaan van Stijn --- hack/dockerfile/install/containerd.installer | 2 +- hack/dockerfile/install/runc.installer | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/hack/dockerfile/install/containerd.installer b/hack/dockerfile/install/containerd.installer index 678077417b..d7e371e9ac 100755 --- a/hack/dockerfile/install/containerd.installer +++ b/hack/dockerfile/install/containerd.installer @@ -4,7 +4,7 @@ # containerd is also pinned in vendor.conf. When updating the binary # version you may also need to update the vendor version to pick up bug # fixes or new APIs. -CONTAINERD_COMMIT=e6b3f5632f50dbc4e9cb6288d911bf4f5e95b18e # v1.2.4 +CONTAINERD_COMMIT=bb71b10fd8f58240ca47fbb579b9d1028eea7c84 # v1.2.5 install_containerd() { echo "Install containerd version $CONTAINERD_COMMIT" diff --git a/hack/dockerfile/install/runc.installer b/hack/dockerfile/install/runc.installer index a787e3022f..d4782ce18b 100755 --- a/hack/dockerfile/install/runc.installer +++ b/hack/dockerfile/install/runc.installer @@ -4,7 +4,7 @@ # The version of runc should match the version that is used by the containerd # version that is used. If you need to update runc, open a pull request in # the containerd project first, and update both after that is merged. -RUNC_COMMIT=6635b4f0c6af3810594d2770f662f34ddc15b40d +RUNC_COMMIT=2b18fe1d885ee5083ef9f0838fee39b62d653e30 install_runc() { # If using RHEL7 kernels (3.10.0 el7), disable kmem accounting/limiting