dependabot[bot]
48ad17f4c6
build(deps): bump golang.org/x/sys from 0.28.0 to 0.29.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.28.0 to 0.29.0.
- [Commits](https://github.com/golang/sys/compare/v0.28.0...v0.29.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-01-06 04:55:38 +00:00
dependabot[bot]
f848304994
build(deps): bump google.golang.org/protobuf from 1.36.0 to 1.36.1
...
Bumps google.golang.org/protobuf from 1.36.0 to 1.36.1.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-25 23:29:14 +08:00
dependabot[bot]
5855ba5303
build(deps): bump github.com/cilium/ebpf from 0.17.0 to 0.17.1
...
Bumps [github.com/cilium/ebpf](https://github.com/cilium/ebpf ) from 0.17.0 to 0.17.1.
- [Release notes](https://github.com/cilium/ebpf/releases )
- [Commits](https://github.com/cilium/ebpf/compare/v0.17.0...v0.17.1 )
---
updated-dependencies:
- dependency-name: github.com/cilium/ebpf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-20 04:10:23 +00:00
dependabot[bot]
e809db842f
build(deps): bump github.com/cilium/ebpf from 0.16.0 to 0.17.0
...
Bumps [github.com/cilium/ebpf](https://github.com/cilium/ebpf ) from 0.16.0 to 0.17.0.
- [Release notes](https://github.com/cilium/ebpf/releases )
- [Commits](https://github.com/cilium/ebpf/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: github.com/cilium/ebpf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-20 00:07:03 +00:00
Kir Kolyshkin
5239b05129
Merge pull request #4564 from opencontainers/dependabot/go_modules/golang.org/x/net-0.33.0
...
build(deps): bump golang.org/x/net from 0.32.0 to 0.33.0
2024-12-19 16:05:57 -08:00
dependabot[bot]
c2b11a6353
build(deps): bump golang.org/x/net from 0.32.0 to 0.33.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.32.0 to 0.33.0.
- [Commits](https://github.com/golang/net/compare/v0.32.0...v0.33.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-19 04:09:48 +00:00
dependabot[bot]
71327d7fcd
build(deps): bump github.com/cyphar/filepath-securejoin
...
Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin ) from 0.3.5 to 0.3.6.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases )
- [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md )
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.3.5...v0.3.6 )
---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-19 01:42:44 +00:00
dependabot[bot]
705382ac66
build(deps): bump google.golang.org/protobuf from 1.35.2 to 1.36.0
...
Bumps google.golang.org/protobuf from 1.35.2 to 1.36.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-17 04:53:16 +00:00
Aleksa Sarai
2f1b6626f3
deps: update to github.com/cyphar/filepath-securejoin@v0.3.5
...
This fixes a regression in use of securejoin.MkdirAll, where multiple
runc processes racing to create the same mountpoint in a shared rootfs
would result in spurious EEXIST errors. In particular, this regression
caused issues with BuildKit.
Fixes: dd827f7b71 ("utils: switch to securejoin.MkdirAllHandle")
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-12-06 19:38:46 +11:00
dependabot[bot]
d5694eed7c
build(deps): bump golang.org/x/net from 0.31.0 to 0.32.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.31.0 to 0.32.0.
- [Commits](https://github.com/golang/net/compare/v0.31.0...v0.32.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-05 09:28:56 +00:00
dependabot[bot]
ec7e90b308
build(deps): bump golang.org/x/sys from 0.27.0 to 0.28.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.27.0 to 0.28.0.
- [Commits](https://github.com/golang/sys/compare/v0.27.0...v0.28.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-05 04:47:30 +00:00
Kir Kolyshkin
66969827c0
Switch to github.com/moby/sys/capability v0.4.0
...
This removes the last unversioned package in runc's direct dependencies.
Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com >
2024-12-02 13:18:10 -08:00
dependabot[bot]
b7da16731c
build(deps): bump google.golang.org/protobuf from 1.35.1 to 1.35.2
...
Bumps google.golang.org/protobuf from 1.35.1 to 1.35.2.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-18 12:11:47 +08:00
dependabot[bot]
ca4a7a86f8
build(deps): bump golang.org/x/net from 0.30.0 to 0.31.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.30.0 to 0.31.0.
- [Commits](https://github.com/golang/net/compare/v0.30.0...v0.31.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-11 04:11:55 +00:00
dependabot[bot]
ec5e7eb70a
build(deps): bump golang.org/x/sys from 0.26.0 to 0.27.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.26.0 to 0.27.0.
- [Commits](https://github.com/golang/sys/compare/v0.26.0...v0.27.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-08 04:29:56 +00:00
dependabot[bot]
80c46d31c4
build(deps): bump golang.org/x/net from 0.24.0 to 0.30.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.24.0 to 0.30.0.
- [Commits](https://github.com/golang/net/compare/v0.24.0...v0.30.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-02 00:36:10 +00:00
dependabot[bot]
4df7b1b199
build(deps): bump golang.org/x/sys from 0.22.0 to 0.26.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.22.0 to 0.26.0.
- [Commits](https://github.com/golang/sys/compare/v0.22.0...v0.26.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-23 07:56:22 +00:00
dependabot[bot]
f22cee6634
Merge pull request #4460 from opencontainers/dependabot/go_modules/github.com/vishvananda/netlink-1.3.0
2024-10-23 07:55:40 +00:00
Aleksa Sarai
b69954038c
merge #4465 into opencontainers/runc:main
...
Kir Kolyshkin (1):
libct: rm x/sys/execabs usage
LGTMs: AkihiroSuda cyphar
2024-10-23 18:52:54 +11:00
dependabot[bot]
69b3be763a
build(deps): bump github.com/vishvananda/netlink from 1.1.0 to 1.3.0
...
Bumps [github.com/vishvananda/netlink](https://github.com/vishvananda/netlink ) from 1.1.0 to 1.3.0.
- [Release notes](https://github.com/vishvananda/netlink/releases )
- [Commits](https://github.com/vishvananda/netlink/compare/v1.1.0...v1.3.0 )
---
updated-dependencies:
- dependency-name: github.com/vishvananda/netlink
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-23 06:49:47 +00:00
Kir Kolyshkin
d123e56739
Merge pull request #4467 from opencontainers/dependabot/go_modules/google.golang.org/protobuf-1.35.1
...
build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.35.1
2024-10-22 23:49:04 -07:00
Kir Kolyshkin
eb2ff52ace
libct: rm x/sys/execabs usage
...
Since Go 1.19, the same functionality is there in os/exec package.
As we require go 1.22 now, there's no need to have this.
This basically reverts commit 9258eac0 ("libct/start: use execabs for
newuidmap lookup").
Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com >
2024-10-22 23:45:18 -07:00
dependabot[bot]
f20f273aff
build(deps): bump github.com/opencontainers/selinux
...
Bumps [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux ) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/opencontainers/selinux/releases )
- [Commits](https://github.com/opencontainers/selinux/compare/v1.11.0...v1.11.1 )
---
updated-dependencies:
- dependency-name: github.com/opencontainers/selinux
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-23 04:20:54 +00:00
dependabot[bot]
139789f1bd
build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.35.1
...
Bumps google.golang.org/protobuf from 1.33.0 to 1.35.1.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-23 04:20:52 +00:00
Akihiro Suda
e98851de36
Merge pull request #4464 from opencontainers/dependabot/go_modules/github.com/urfave/cli-1.22.16
...
build(deps): bump github.com/urfave/cli from 1.22.14 to 1.22.16
2024-10-23 10:46:42 +09:00
dependabot[bot]
93db63ab52
build(deps): bump github.com/urfave/cli from 1.22.14 to 1.22.16
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.14 to 1.22.16.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.14...v1.22.16 )
---
updated-dependencies:
- dependency-name: github.com/urfave/cli
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-22 13:23:32 +00:00
dependabot[bot]
af024b6c2b
build(deps): bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2
...
Bumps [github.com/moby/sys/mountinfo](https://github.com/moby/sys ) from 0.7.1 to 0.7.2.
- [Release notes](https://github.com/moby/sys/releases )
- [Commits](https://github.com/moby/sys/compare/signal/v0.7.1...mountinfo/v0.7.2 )
---
updated-dependencies:
- dependency-name: github.com/moby/sys/mountinfo
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-22 13:23:25 +00:00
Sebastiaan van Stijn
9b60a93cf3
libcontainer/userns: migrate to github.com/moby/sys/userns
...
The userns package was moved to the moby/sys/userns module
at commit 3778ae603c .
This patch deprecates the old location, and adds it as an alias
for the moby/sys/userns package.
Signed-off-by: Sebastiaan van Stijn <github@gone.nl >
2024-10-09 22:20:25 +08:00
Aleksa Sarai
1623cde125
go: update github.com/cyphar/filepath-securejoin to v0.3.4
...
This includes a fix to avoid doing import "testing" in non-_test.go
code.
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-10-09 15:13:28 +11:00
Aleksa Sarai
b096459a07
vendor: update github.com/cyphar/filepath-securejoin to v0.3.3
...
This fixes issues we had with spurious MkdirAll failures.
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-09-30 16:26:42 +02:00
Kir Kolyshkin
15904913c2
Merge pull request #4397 from rafaelroquetto/main
...
Upgrade Cilium's eBPF library version to 0.16
2024-09-13 18:22:49 -07:00
Aleksa Sarai
066b109e99
vendor: update to github.com/cyphar/filepath-securejoin@v0.3.2
...
This includes a fix for the handling of S_ISGID directories.
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-09-13 23:34:33 +10:00
Rafael Roquetto
216175a9ca
Upgrade Cilium's eBPF library version to 0.16
...
Signed-off-by: Rafael Roquetto <rafael.roquetto@grafana.com >
2024-09-12 11:13:21 -06:00
Aleksa Sarai
1d308c7da4
vendor: update to github.com/cyphar/filepath-securejoin@v0.3.1
...
This includes the MkdirAll and OpenInRoot implementations which are
actually secure against races.
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-09-03 23:05:59 +10:00
Aleksa Sarai
5ab5ef3dc3
deps: update to golang.org/x/sys@v0.22
...
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2024-09-03 23:03:39 +10:00
Austin Vazquez
6ab3d8ad1e
vendor: golang.org/x/net@v0.24.0
...
This change vendors golang.org/x/net@v0.24 .0 to silence security
warnings for https://pkg.go.dev/vuln/GO-2024-2687 .
runc takes a dependency on net/bpf only and would not be impacted by the
HTTP2 vulnerability reported.
Signed-off-by: Austin Vazquez <macedonv@amazon.com >
2024-05-14 13:16:18 +00:00
SuperQ
ab6788d307
Remove dependabot ignore
...
The referenced issue was fixed in `github.com/urfave/cli` v1.22.6. We
can now remove the dependabot ignore for this package.
Signed-off-by: SuperQ <superq@gmail.com >
2024-03-15 08:38:53 +01:00
dependabot[bot]
606251ab33
build(deps): bump github.com/opencontainers/runtime-spec
...
Bumps [github.com/opencontainers/runtime-spec](https://github.com/opencontainers/runtime-spec ) from 1.1.1-0.20230823135140-4fec88fd00a4 to 1.2.0.
- [Release notes](https://github.com/opencontainers/runtime-spec/releases )
- [Changelog](https://github.com/opencontainers/runtime-spec/blob/main/ChangeLog )
- [Commits](https://github.com/opencontainers/runtime-spec/commits/v1.2.0 )
---
updated-dependencies:
- dependency-name: github.com/opencontainers/runtime-spec
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp >
2024-03-07 14:43:33 +09:00
Akihiro Suda
ee7100854c
Merge pull request #4216 from opencontainers/dependabot/go_modules/google.golang.org/protobuf-1.33.0
...
build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0
2024-03-07 14:41:36 +09:00
dependabot[bot]
bb5673f265
build(deps): bump golang.org/x/net from 0.21.0 to 0.22.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.21.0 to 0.22.0.
- [Commits](https://github.com/golang/net/compare/v0.21.0...v0.22.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-03-06 12:59:33 +00:00
dependabot[bot]
7ab66b187c
build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0
...
Bumps google.golang.org/protobuf from 1.32.0 to 1.33.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-03-06 12:59:30 +00:00
dependabot[bot]
6056ed2dd6
build(deps): bump golang.org/x/sys from 0.17.0 to 0.18.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/sys/compare/v0.17.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-03-05 04:18:12 +00:00
dependabot[bot]
afd90f44e8
build(deps): bump golang.org/x/net from 0.20.0 to 0.21.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.20.0 to 0.21.0.
- [Commits](https://github.com/golang/net/compare/v0.20.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-10 00:50:10 +08:00
dependabot[bot]
97632a6d1b
build(deps): bump github.com/containerd/console from 1.0.3 to 1.0.4
...
Bumps [github.com/containerd/console](https://github.com/containerd/console ) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/containerd/console/releases )
- [Commits](https://github.com/containerd/console/compare/v1.0.3...v1.0.4 )
---
updated-dependencies:
- dependency-name: github.com/containerd/console
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-09 15:20:19 +00:00
dependabot[bot]
174940a7eb
build(deps): bump golang.org/x/sys from 0.16.0 to 0.17.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/sys/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-08 22:29:27 +00:00
dependabot[bot]
b1e3c3c75c
build(deps): bump golang.org/x/net from 0.19.0 to 0.20.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.19.0 to 0.20.0.
- [Commits](https://github.com/golang/net/compare/v0.19.0...v0.20.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-09 04:20:08 +00:00
dependabot[bot]
e1e3ca02d9
build(deps): bump golang.org/x/sys from 0.15.0 to 0.16.0
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.15.0 to 0.16.0.
- [Commits](https://github.com/golang/sys/compare/v0.15.0...v0.16.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-05 04:27:10 +00:00
dependabot[bot]
43306be3f0
build(deps): bump google.golang.org/protobuf from 1.31.0 to 1.32.0
...
Bumps google.golang.org/protobuf from 1.31.0 to 1.32.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-25 04:35:41 +00:00
Aleksa Sarai
a04d88ec73
vendor: update to github.com/moby/sys/mountinfo@v0.7.1
...
The primary change is a switch to using /proc/thread-self, which is
needed for when we add a CLONE_FS thread to runc.
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com >
2023-12-14 11:36:41 +11:00
dependabot[bot]
c25493fce4
build(deps): bump golang.org/x/net from 0.17.0 to 0.19.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.17.0 to 0.19.0.
- [Commits](https://github.com/golang/net/compare/v0.17.0...v0.19.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-28 06:40:44 +00:00