packages/docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
132 Commits 1 Branch 0 Tags
Commit Graph

132 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
openeuler-ci-bot
50b310391f
!356 [sync] PR-352: add requires for docker-proxy rather than installing it manually 
From: @openeuler-sync-bot 
Reviewed-by: @jianminw 
Signed-off-by: @jianminw
 2024-12-02 06:31:33 +00:00
Funda Wang
ed264fb299 add requires for docker-proxy rather than installing it manually 
(cherry picked from commit d24f1ae5d41a4498770851e3d4e2559911fdf0a5)
 2024-11-29 17:41:33 +08:00
openeuler-ci-bot
d0616f8c6c
!349 docker:support calling clone when clone3 is not support 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-10-25 08:11:23 +00:00
zhongjiawei
aa51a103f3 docker:support calling clone when clone3 is not support 2024-10-25 15:59:11 +08:00
openeuler-ci-bot
94af307878
!343 [sync] PR-337: docker:try to reconnect when containerd grpc return unexpected EOF 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-08-31 09:01:45 +00:00
zhongjiawei
159a4f423f docker:try to reconnect when containerd grpc return unexpected EOF 
(cherry picked from commit bb19128a08aa2355d23555925a14a3733d173b64)
 2024-08-31 11:43:27 +08:00
openeuler-ci-bot
3c585dd996
!335 [sync] PR-330: docker:add clone3 seccomp whitelist for arm64 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-08-02 10:08:44 +00:00
zhongjiawei
6e938d7183 docker:add clone3 seccomp whitelist for arm64 
(cherry picked from commit 36446e9c94c779506c0d37b582a8b4330afeaaa1)
 2024-08-02 17:31:18 +08:00
openeuler-ci-bot
88ca467f92
!328 [sync] PR-323: docker:fix CVE-2024-41110 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-07-27 09:09:34 +00:00
zhongjiawei
e091545f2d docker:fix CVE-2024-41110 
(cherry picked from commit e6ebcc95f414d60dd04019b0deab87cb56760c7f)
 2024-07-26 17:32:03 +08:00
openeuler-ci-bot
182bc474c9
!318 [sync] PR-316: docker: Ignore SIGURG on Linux 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-07-16 01:35:11 +00:00
chenjiankun
6d238abf6b docker: Ignore SIGURG on Linux 
fix #IA9T8K

(cherry picked from commit c24648a4d416f366d23ee7ae58736c7794595d15)
 2024-07-15 17:05:06 +08:00
openeuler-ci-bot
caec49267e
!313 [sync] PR-312: 删除spec中按架构添加source的行为,该行为会导致构建系统产生的src.rpm 缺少文件,从而影响分发 
From: @openeuler-sync-bot 
Reviewed-by: @zmr_2020 
Signed-off-by: @zmr_2020
 2024-06-13 06:27:28 +00:00
suoxiaocong
0275b4f55f remove ifarch condition check when addding source, this causes src.rpm missing files 
(cherry picked from commit c08ab0fa13743f0a14b46513043772df10e840d3)
 2024-06-13 09:17:38 +08:00
openeuler-ci-bot
a00089c570
!306 [sync] PR-302: backport: fix CVE-2024-32473 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-05-08 13:13:32 +00:00
chenjiankun
65c2f7d283 backport: fix CVE-2024-32473 
fix #I9HX2H

(cherry picked from commit d958cc81c9d6b18ecd2568727ed778de043d5fbe)
 2024-05-08 17:10:00 +08:00
openeuler-ci-bot
24a0136899
!299 [sync] PR-293: docker: fix CVE-2024-29018 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-04-12 11:30:57 +00:00
chenjiankun
57dee86c1a docker: fix CVE-2024-29018 
fix #I9A82U

(cherry picked from commit 8ed18fcd14ecac175c68eebd55399615ee13e159)
 2024-04-12 17:06:06 +08:00
openeuler-ci-bot
bb85a19241
!289 [sync] PR-280: backport: fix CVE-2024-24557 
From: @openeuler-sync-bot 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2024-03-19 12:43:31 +00:00
chenjiankun
ee2b6a007c backport: fix CVE-2024-24557 
fix #I90KVB

(cherry picked from commit 7a70f28050f176675b52d8116a2ba038b18ae93c)
 2024-03-19 20:26:03 +08:00
openeuler-ci-bot
6ab3afdb10
!272 docker: sync patches from upstream 
From: @jingxiaolu 
Reviewed-by: @zhong-jiawei-1, @zhangsong234 
Signed-off-by: @zhangsong234
 2023-12-22 09:34:18 +00:00
Lu Jingxiao
74460e0b20 docker: sync patches from upstream 
Sync patches from upstream, including:
- b033961a82
- 2a8341f252
- cae76642b6
- f43f820a8c
- b1d05350ec
- 7a24e475b3
- f89fd3df7d
- 76e4260141
- b92585a470

Signed-off-by: Lu Jingxiao <lujingxiao@huawei.com>
 2023-12-22 17:24:47 +08:00
openeuler-ci-bot
679711dbad
!270 docker:modify runc rpm package name from docker-runc to runc 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234 
Signed-off-by: @zhangsong234
 2023-11-18 08:54:13 +00:00
zhongjiawei
1bcaf75f0b docker:modify runc rpm package name from docker-runc to runc 2023-11-17 11:29:53 +08:00
openeuler-ci-bot
c7e892225d
!262 docker:add delay after freeze 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-10-12 09:19:21 +00:00
zhongjiawei
2e48b57e25 docker:add delay after freeze 2023-10-12 15:12:06 +08:00
openeuler-ci-bot
a12b6bae29
!255 docker: fix COPY --from should preserve ownership 
From: @jingxiaolu 
Reviewed-by: @zhong-jiawei-1, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-10-09 10:58:44 +00:00
Lu Jingxiao
84fd54726a docker: fix COPY --from should preserve ownership 
Fixes: #I86H6B

Signed-off-by: Lu Jingxiao <lujingxiao@huawei.com>
 2023-10-09 16:35:32 +08:00
openeuler-ci-bot
5ea594ae8b
!249 修复docker pull和restart dockerd并发操作,/var/lib/docker/devicemapper/mnt/目录资源残留问题 
From: @flyflyflypeng 
Reviewed-by: @duguhaotian 
Signed-off-by: @duguhaotian
 2023-08-28 06:17:43 +00:00
flyflyflypeng
e519069449 docker: remove useless mount point dir 
fix #I7UQ2Y

Signed-off-by: flyflyflypeng <jiangpengfei9@huawei.com>
 2023-08-28 10:22:46 +08:00
openeuler-ci-bot
26bff3a4ab
!237 docker: define a dummy hostname to use for local connections 
From: @jingxiaolu 
Reviewed-by: @jackchan8, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-07-29 01:46:57 +00:00
jingxiaolu
f5527c508a docker: define a dummy hostname to use for local connections 
For local communications (npipe://, unix://), the hostname is not used,
but we need valid and meaningful hostname.

The current code used the client's `addr` as hostname in some cases, which
could contain the path for the unix-socket (`/var/run/docker.sock`), which
gets rejected by go1.20.6 and go1.19.11 because of a security fix for
[CVE-2023-29406 ][1], which was implemented in  https://go.dev/issue/60374.

Prior versions go Go would clean the host header, and strip slashes in the
process, but go1.20.6 and go1.19.11 no longer do, and reject the host
header.

This patch introduces a `DummyHost` const, and uses this dummy host for
cases where we don't need an actual hostname.

Signed-off-by: jingxiaolu <lujingxiao@huawei.com>
 2023-07-28 17:47:05 +08:00
openeuler-ci-bot
4fdaecd0d5
!225 docker:remove invalid libcgroup dependencies 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-07-12 03:20:37 +00:00
zhongjiawei
76ef69817e docker:remove invalid libcgroup dependencies 2023-07-12 09:53:04 +08:00
openeuler-ci-bot
9f26733d3b
!223 docker: repalce unix.Rmdir with os.RemoveAll when remove mount point dir 
From: @jackchan8 
Reviewed-by: @zhangsong234, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-07-03 02:12:03 +00:00
chenjiankun
2e888b9837 docker: repalce unix.Rmdir with os.RemoveAll when remove mount point dir 
fix #I7G1LL
 2023-06-29 16:16:05 +08:00
openeuler-ci-bot
f8a9392395
!219 docker: fix blockThreshold full bug 
From: @jackchan8 
Reviewed-by: @duguhaotian, @zhangsong234 
Signed-off-by: @duguhaotian
 2023-06-29 07:28:33 +00:00
chenjiankun
9b293e9221 docker: fix blockThreshold full bug 
Reference:dcfe23a038
 2023-06-27 16:59:43 +08:00
openeuler-ci-bot
6528f2e40e
!210 docker: thinpool full because docker daemon restart when docker pull 
From: @zhong-jiawei-1 
Reviewed-by: @jackchan8, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-06-09 02:53:48 +00:00
zhongjiawei
2e483250b2 docker:thinpool full because docker daemon restart when docker pull 
Signed-off-by: zhongjiawei <zhongjiawei1@huawei.com>
 2023-06-08 16:32:46 +08:00
openeuler-ci-bot
222bb3dc21
!202 docker:fix CVE-2023-28840 CVE-2023-28841 CVE-2023-28842 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-04-06 11:59:59 +00:00
zhongjiawei
3b459012b6 docker:fix CVE-2023-28840 CVE-2023-28841 CVE-2023-28842 2023-04-06 16:19:21 +08:00
openeuler-ci-bot
639d314f97
!194 docker:backport upstream patches 
From: @zhong-jiawei-1 
Reviewed-by: @zhangsong234, @duguhaotian 
Signed-off-by: @duguhaotian
 2023-03-30 02:02:24 +00:00
zhongjiawei
59f6a66701 docker:sync some patches 2023-03-29 15:16:12 +08:00
openeuler-ci-bot
8d2afe5ace
!193 Add loongarch64 support for docker 
From: @zhaozhen-zz 
Reviewed-by: @wonleing 
Signed-off-by: @wonleing
 2023-03-20 06:09:41 +00:00
zhaozhen
9cd20b596b add loongarch64 support for docker 2023-03-16 20:03:19 +08:00
openeuler-ci-bot
5da7375d6f
!186 docker:try http for docker manifest insecure 
From: @zhong-jiawei-1 
Reviewed-by: @duguhaotian, @jackchan8, @zhangsong234 
Signed-off-by: @duguhaotian
 2023-03-16 06:27:18 +00:00
zhongjiawei
ff3bcc697b docker: try http for docker manifest insecure 2023-03-15 17:24:08 +08:00
openeuler-ci-bot
b67fad397a
!181 docker: fix container missing after restarting dockerd twice 
From: @jackchan8 
Reviewed-by: @duguhaotian 
Signed-off-by: @duguhaotian
 2023-03-14 13:31:55 +00:00
JackChan8
5ecf0ca3e7 docker: fix container missing after restarting dockerd twice 
fix #I6MJ4X
 2023-03-14 19:27:35 +08:00