Revisions of crun
buildservice-autocommit
accepted
request 1155623
from
Dario Faggioli (dfaggioli)
(revision 44)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1155507
from
Dan Čermák (dancermak)
(revision 43)
New upstream release 1.14.4
buildservice-autocommit
accepted
request 1143040
from
Dario Faggioli (dfaggioli)
(revision 42)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1141976
from
Andrea Manzini (amanzini)
(revision 41)
- update to 1.14: * build: drop dependency on libgcrypt. Use blake3 to compute the cache key. * cpuset: don't clobber parent cgroup value when writing the cpuset value. * linux: force umask(0). It ensures that the mknodat syscall is not affected by the umask of the calling process, allowing file permissions to be set as specified in the OCI configuration. * ebpf: do not require MEMLOCK for eBPF programs. This requirement was relaxed in Linux 5.11. - update to 1.13: * src: use O_CLOEXEC for all open/openat calls * cgroup v1: use "max" when pids limit < 0. * improve error message when idmap mount fails because the underlying file system has no support for it. * libcrun: fix compilation when building without libseccomp and libcap. * fix relative idmapped mount when using the custom annotation.
buildservice-autocommit
accepted
request 1130688
from
Dario Faggioli (dfaggioli)
(revision 40)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1130678
from
Dan Čermák (dancermak)
(revision 39)
New upstream release 1.12.0
buildservice-autocommit
accepted
request 1126650
from
Dario Faggioli (dfaggioli)
(revision 38)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1123539
from
Dirk Mueller (dirkmueller)
(revision 37)
- update to 1.11.1: * force a remount operation with bind mounts from the host to correctly set all the mount flags. * cgroup: honor cpu burst. * systemd: set CPUQuota and CPUPeriod on the scope cgroup. * linux: append tmpfs mode if missing for mounts. This is the same behavior of runc. * cgroup: always use the user session for rootless. * support for Intel Resource Director Technology (RDT). * new mount option "copy-symlink". When provided for a mount, if the source is a symlink, then it is copied in the container instead of attempting a mount. * linux: open mounts before setgroups if in a userns. This solves a problem where a directory that was previously accessible to the user, become inaccessible after setgroups causing the bind mount to fail. * linux: idmapped mounts expect the same configuration as mapping. It is a breaking change, but the behavior was aligned * cgroup: always delete the cgroup on errors. ° exec: fix double free when using --apparmor and
buildservice-autocommit
accepted
request 1117581
from
Dario Faggioli (dfaggioli)
(revision 36)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1117136
from
Dan Čermák (dancermak)
(revision 35)
New upstream release 1.9.2
buildservice-autocommit
accepted
request 1116922
from
Dario Faggioli (dfaggioli)
(revision 34)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1116918
from
Alexandre Vicenzi (avicenzi)
(revision 33)
Add crun-wasm symlink
buildservice-autocommit
accepted
request 1110850
from
Dario Faggioli (dfaggioli)
(revision 32)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1110801
from
Danish Prakash (danishprakash)
(revision 31)
Update to 1.9
buildservice-autocommit
accepted
request 1109555
from
Dario Faggioli (dfaggioli)
(revision 30)
baserev update by copy to link target
Dario Faggioli (dfaggioli)
accepted
request 1109036
from
Alexandre Vicenzi (avicenzi)
(revision 29)
Enable WasmEdge
buildservice-autocommit
accepted
request 1105192
from
Dan Čermák (dancermak)
(revision 28)
baserev update by copy to link target
Dan Čermák (dancermak)
accepted
request 1103868
from
Danish Prakash (danishprakash)
(revision 27)
Update to 1.8.6
buildservice-autocommit
accepted
request 1093193
from
Dirk Mueller (dirkmueller)
(revision 26)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
accepted
request 1093131
from
Frederic Crozat (fcrozat)
(revision 25)
- Update to 1.8.5: * scheduler: use definition from the OCI configuration file instead of the custom label that is now dropped and not supported anymore. * cgroup: fix creating cgroup under "domain threaded". * cgroup, systemd: set the memory limit on the system scope. * restore tty settings from the correct file descriptor. It was previously restoring the settings from the wrong file descriptor causing the tty settings to be changed on the calling terminal. * criu: check if the criu_join_ns_add function exists. Fix a segfault with new versions of CRIU. * linux: do not precreate devs with euid > 0. Fix creating devices when running the OCI runtime as non root user. * linux: improve PID detection on systems that lack pidfd. While there is still a window of time that the PID could be recycled, now it is now reduced to a minimum. * criu: fix memory leak. * logging: improve error message when dlopen fails. - Changes from 1.8.4: * drop custom annotation to set the time namespace and use the OCI specs instead. * cgroup: workaround cpu quota/period issue with v1. Sometimes setting CPU quota period fails when a new period is lower, and a parent cgroup has CPU quota limit set. * cgroup: fix set quota to -1 on cgroup v1. * criu: drop loading unused functions.
Displaying revisions 1 - 20 of 44