crun/crun.changes

-------------------------------------------------------------------
Fri Aug  6 13:37:49 UTC 2021 - Frederic Crozat <fcrozat@suse.com>

- Drop libkrun-dlopen.patch and adapt to libkrun new package name,
  it is a plugin, not a regular shared library.

-------------------------------------------------------------------
Fri Aug  6 09:55:53 UTC 2021 - Frederic Crozat <fcrozat@suse.com>

- Add libkrun-dlopen.patch: use soname when dlopening libkrun.

-------------------------------------------------------------------
Wed Jul 28 11:56:01 UTC 2021 - Paolo Stivanin <info@paolostivanin.com>

- Update to 0.21
  - honor memory swappiness set to 0
  - status: add fields for owner and created timestamp
  - cgroup: lookup pids controller as well when the memory controller
    is not available
  - when compiled with krun, automatically use it if the current
    executable file is called "krun".
  - container: ignore error when resetting the SELinux label for the
    keyring.
  - container: call prestart hooks before rootfs is RO.
  - cgroup: added support cleaning custom controllers on cgroupv1.
  - spec: add support for --bundle.
  - exec: add --no-new-privs.
  - exec: add --process-label and --apparmor to change SELinux and
    AppArmor labels.
  - cgroup: kill procs in cgroup on EBUSY.
  - cgroup: ignore devices errors when running in a user namespace.
  - seccomp: drop SECCOMP_FILTER_FLAG_LOG by default.
  - seccomp: report correct action in error message.
  - apply SELinux label to keyring.
  - add custom annotation run.oci.delegate-cgroup.
  - close_range fallbacks to close on EPERM.
  - report error if the cgroup path was set and the cgroup could not be
    joined.
  - on exec, honor additional_gids from the process spec, not the
    container definition.
  - spec: add cgroup ns if on cgroup v2.
  - systemd: support array of strings for cgroup annotation.
  - join all the cgroup v1 controllers.
  - raise a warning when newuidmap/newgidmap fail.
  - handle eBPF access(dev_name, F_OK) call correctly.
  - fix some memory leaks on errors when libcrun is used by a long
    running process.
  - fix the SELinux label for masked directories.
  - support default seccomp errno value.
  - fail if no default seccomp action specified.
  - support OCI seccomp notify listener.
  - improve OOM error messages.
  - ignore unknown capabilities and raise a warning.
  - always remount bind mounts to drop not requested mount flags.

-------------------------------------------------------------------
Tue Mar 23 17:52:10 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>

- Add a mention to crun-rpmlintrc in the spec file

-------------------------------------------------------------------
Fri Mar 19 02:18:44 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>

- Since we're building with libkrun support, let's enable only the
  arch-es for which we do have libkrun

-------------------------------------------------------------------
Sat Mar 13 01:12:19 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>

- Suppress the (false positive) rpmlint warning

-------------------------------------------------------------------
Sat Mar 13 00:43:54 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>

- Some fixes to the spec file (add some %doc, remove unused macros, etc)

-------------------------------------------------------------------
Thu Mar 11 08:08:36 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>

- Initial package for 0.18
  Based on the package by Giuseppe Scrivano <gscrivan@redhat.com>
Accepting request 911022 from home:fcrozat:branches:Virtualization:containers - Drop libkrun-dlopen.patch and adapt to libkrun new package name, it is a plugin, not a regular shared library. OBS-URL: https://build.opensuse.org/request/show/911022 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=7 2021-08-09 17:12:50 +02:00			`-------------------------------------------------------------------`
			`Fri Aug 6 13:37:49 UTC 2021 - Frederic Crozat <fcrozat@suse.com>`

			`- Drop libkrun-dlopen.patch and adapt to libkrun new package name,`
			`it is a plugin, not a regular shared library.`

Accepting request 910491 from home:fcrozat:branches:Virtualization:containers - Add libkrun-dlopen.patch: use soname when dlopening libkrun. OBS-URL: https://build.opensuse.org/request/show/910491 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=6 2021-08-06 14:46:50 +02:00			`-------------------------------------------------------------------`
			`Fri Aug 6 09:55:53 UTC 2021 - Frederic Crozat <fcrozat@suse.com>`

			`- Add libkrun-dlopen.patch: use soname when dlopening libkrun.`

Accepting request 880783 from home:dfaggioli:Virtualization - Add a mention to crun-rpmlintrc in the spec file OBS-URL: https://build.opensuse.org/request/show/880783 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=3 2021-03-23 19:33:23 +01:00			`-------------------------------------------------------------------`
Accepting request 910479 from home:polslinux:branches:Virtualization:containers - Update to 0.21 - honor memory swappiness set to 0 - status: add fields for owner and created timestamp - cgroup: lookup pids controller as well when the memory controller is not available - when compiled with krun, automatically use it if the current executable file is called "krun". - container: ignore error when resetting the SELinux label for the keyring. - container: call prestart hooks before rootfs is RO. - cgroup: added support cleaning custom controllers on cgroupv1. - spec: add support for --bundle. - exec: add --no-new-privs. - exec: add --process-label and --apparmor to change SELinux and AppArmor labels. - cgroup: kill procs in cgroup on EBUSY. - cgroup: ignore devices errors when running in a user namespace. - seccomp: drop SECCOMP_FILTER_FLAG_LOG by default. - seccomp: report correct action in error message. - apply SELinux label to keyring. - add custom annotation run.oci.delegate-cgroup. - close_range fallbacks to close on EPERM. - report error if the cgroup path was set and the cgroup could not be joined. - on exec, honor additional_gids from the process spec, not the container definition. - spec: add cgroup ns if on cgroup v2. - systemd: support array of strings for cgroup annotation. - join all the cgroup v1 controllers. - raise a warning when newuidmap/newgidmap fail. - handle eBPF access(dev_name, F_OK) call correctly. - fix some memory leaks on errors when libcrun is used by a long running process. - fix the SELinux label for masked directories. - support default seccomp errno value. - fail if no default seccomp action specified. - support OCI seccomp notify listener. - improve OOM error messages. - ignore unknown capabilities and raise a warning. - always remount bind mounts to drop not requested mount flags. OBS-URL: https://build.opensuse.org/request/show/910479 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=5 2021-08-06 14:28:15 +02:00			`Wed Jul 28 11:56:01 UTC 2021 - Paolo Stivanin <info@paolostivanin.com>`

			`- Update to 0.21`
			`- honor memory swappiness set to 0`
			`- status: add fields for owner and created timestamp`
			`- cgroup: lookup pids controller as well when the memory controller`
			`is not available`
			`- when compiled with krun, automatically use it if the current`
			`executable file is called "krun".`
			`- container: ignore error when resetting the SELinux label for the`
			`keyring.`
			`- container: call prestart hooks before rootfs is RO.`
			`- cgroup: added support cleaning custom controllers on cgroupv1.`
			`- spec: add support for --bundle.`
			`- exec: add --no-new-privs.`
			`- exec: add --process-label and --apparmor to change SELinux and`
			`AppArmor labels.`
			`- cgroup: kill procs in cgroup on EBUSY.`
			`- cgroup: ignore devices errors when running in a user namespace.`
			`- seccomp: drop SECCOMP_FILTER_FLAG_LOG by default.`
			`- seccomp: report correct action in error message.`
			`- apply SELinux label to keyring.`
			`- add custom annotation run.oci.delegate-cgroup.`
			`- close_range fallbacks to close on EPERM.`
			`- report error if the cgroup path was set and the cgroup could not be`
			`joined.`
			`- on exec, honor additional_gids from the process spec, not the`
			`container definition.`
			`- spec: add cgroup ns if on cgroup v2.`
			`- systemd: support array of strings for cgroup annotation.`
			`- join all the cgroup v1 controllers.`
			`- raise a warning when newuidmap/newgidmap fail.`
			`- handle eBPF access(dev_name, F_OK) call correctly.`
			`- fix some memory leaks on errors when libcrun is used by a long`
			`running process.`
			`- fix the SELinux label for masked directories.`
			`- support default seccomp errno value.`
			`- fail if no default seccomp action specified.`
			`- support OCI seccomp notify listener.`
			`- improve OOM error messages.`
			`- ignore unknown capabilities and raise a warning.`
			`- always remount bind mounts to drop not requested mount flags.`

			`-------------------------------------------------------------------`
Accepting request 880783 from home:dfaggioli:Virtualization - Add a mention to crun-rpmlintrc in the spec file OBS-URL: https://build.opensuse.org/request/show/880783 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=3 2021-03-23 19:33:23 +01:00			`Tue Mar 23 17:52:10 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>`

			`- Add a mention to crun-rpmlintrc in the spec file`

Accepting request 880004 from home:dfaggioli:Virtualization - Since we're building with libkrun support, let's enable only the arch-es for which we do have libkrun OBS-URL: https://build.opensuse.org/request/show/880004 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=2 2021-03-22 15:19:24 +01:00			`-------------------------------------------------------------------`
			`Fri Mar 19 02:18:44 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>`

			`- Since we're building with libkrun support, let's enable only the`
			`arch-es for which we do have libkrun`

Accepting request 878678 from home:dfaggioli:Virtualization crun is a fast and low-memory footprint OCI Container Runtime fully written in C. In this package, it is built with the support for libkrun enabled. This means that it will be possible to run containers as lightweight VMs, directly from podman (see here: https://copr.fedorainfracloud.org/coprs/slp/crun-krun/) OBS-URL: https://build.opensuse.org/request/show/878678 OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/crun?expand=0&rev=1 2021-03-18 09:21:20 +01:00			`-------------------------------------------------------------------`
			`Sat Mar 13 01:12:19 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>`

			`- Suppress the (false positive) rpmlint warning`

			`-------------------------------------------------------------------`
			`Sat Mar 13 00:43:54 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>`

			`- Some fixes to the spec file (add some %doc, remove unused macros, etc)`

			`-------------------------------------------------------------------`
			`Thu Mar 11 08:08:36 UTC 2021 - Dario Faggioli <dfaggioli@suse.com>`

			`- Initial package for 0.18`
			`Based on the package by Giuseppe Scrivano <gscrivan@redhat.com>`