Package: golang-github-containers-common | Debian Sources

Package: golang-github-containers-common / 0.33.4+ds1-1+deb11u2

Metadata

Package	Version	Patches format
golang-github-containers-common	0.33.4+ds1-1+deb11u2	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
seccomp fixup.patch \| (download)	pkg/seccomp/conversion.go \| 1 1 + 0 - 0 ! pkg/seccomp/default_linux.go \| 184 181 + 3 - 0 ! pkg/seccomp/filter.go \| 2 1 + 1 - 0 ! pkg/seccomp/seccomp.json \| 219 219 + 0 - 0 ! pkg/seccomp/seccomp_linux.go \| 1 1 + 0 - 0 ! pkg/seccomp/types.go \| 3 2 + 1 - 0 ! 6 files changed, 405 insertions(+), 5 deletions(-)	[patch 1/2] seccomp: add support for defaulterrnoret Add support to specify the default errno return value. The OCI runtime specs already have support for it, and both crun (>= 0.19) and runc (>= 1.0-rc95) have support for it. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
9d294ad50d6f12e2e34432d8f213937c2bee739b.patch \| (download)	pkg/seccomp/default_linux.go \| 1 1 + 0 - 0 ! pkg/seccomp/seccomp.json \| 1 1 + 0 - 0 ! 2 files changed, 2 insertions(+)	[patch] add setns to default seccomp.json In order to run containers within containers via podman and do a podman exec, we need to allow setns syscalls. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
78ac839f6d4dd0cf6dd44a67201e16ee3e890c1d.patch \| (download)	pkg/seccomp/default_linux.go \| 2 1 + 1 - 0 ! pkg/seccomp/seccomp.json \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	[patch] seccomp: allow clone3 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
399bd59e0d0d3e3845d59a7fe197d08371b061b0.patch \| (download)	pkg/seccomp/default_linux.go \| 3 0 + 3 - 0 ! pkg/seccomp/seccomp.json \| 3 0 + 3 - 0 ! 2 files changed, 6 deletions(-)	[patch] seccomp: let io_uring_* fail with enosys Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
4d1476ba87c2d73c7e83d56cabbd9181e34c589f.patch \| (download)	pkg/seccomp/default_linux.go \| 6 3 + 3 - 0 ! pkg/seccomp/seccomp.json \| 6 3 + 3 - 0 ! 2 files changed, 6 insertions(+), 6 deletions(-)	[patch] seccomp: allow pkey_* Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
08bbb0dfae71da36afd3be1ca104701e6cfa4406.patch \| (download)	pkg/seccomp/default_linux.go \| 2 1 + 1 - 0 ! pkg/seccomp/seccomp.json \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	[patch] seccomp: allow rseq Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
0f242ca74bd16175bc55013ed457c88137bec0cf.patch \| (download)	pkg/seccomp/default_linux.go \| 1 0 + 1 - 0 ! pkg/seccomp/seccomp.json \| 1 0 + 1 - 0 ! 2 files changed, 2 deletions(-)	[patch] seccomp: let membarrier fail with enosys Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
689e5b074454da5228bb05604f89b7a876baa8fe.patch \| (download)	pkg/seccomp/default_linux.go \| 3 3 + 0 - 0 ! pkg/seccomp/seccomp.json \| 3 3 + 0 - 0 ! 2 files changed, 6 insertions(+)	[patch] seccomp: always allow get_mempolicy, set_mempolicy, mbind Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
DBUS_SESSION_BUS_ADDRESS_parsing.patch \| (download)	pkg/config/config.go \| 11 8 + 3 - 0 ! 1 file changed, 8 insertions(+), 3 deletions(-)	---

1