github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2026-04-11 16:47:55 +00:00
Code Issues Projects Releases Wiki Activity
1,681 Commits 1 Branch 32 Tags
07286ca590fcc6b764450cb27ecdbbbad36dc6c7
Commit Graph

21 Commits

Author SHA1 Message Date
Justin Cormack
933372e45a Run rngd inside a system container 
- this needs an init as it does not respond to stop signals, so include tini
- needs CAP_SYS_ADMIN to write to kernel entropy estimate
- set kernel.random.write_wakeup_threshold so that rngd does not need sysctl write access
- build patches from Alpine, but statically linked
- remove rngd from base image, means we no longer need community repository

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-12-02 14:00:12 +00:00
Justin Cormack
be56c8e68a Re-add strace 
Trying to debug apk issues.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-25 17:26:34 +00:00
Justin Cormack
a984ddba27 Update Alpine 3.5 base image 
- openrc updates
- SSL certs package no longer depends on openssl tool in libressl package.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-24 12:08:13 +00:00
Justin Cormack
20f6db11b3 Remove ssh server packages 
These will be containerised, and were disabled anyway.

Need client, as git needs it, and docker needs git.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-21 21:47:10 +00:00
Justin Cormack
835a16d601 Update base image to Alpine 3.5-rc2 
- switch to libressl
- hvtools in main

Note the build images are not switched over yet

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-21 20:30:33 +00:00
Justin Cormack
d2992691a1 Remove Alpine packages just used for debugging and build 
- make, GNU tar only used for self hosting
- strace, ipvsadmin, openssl just for debug

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-21 20:15:37 +00:00
Justin Cormack
7730fa15ca Simplify file system format code 
- use our own code rather than Alpine setup-disk
- remove alpine setup code as not needed
- do not create swap partitions
- create swap file on desktop editions for now (may remove)

Fix #619

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-21 18:35:13 +00:00
Justin Cormack
43d956c201 Update base image 
- tar update

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-08 21:06:45 +00:00
Justin Cormack
85fd9a96ae Remove lvm2 package 
We have no lvm support, so not needed.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-08 10:48:44 +00:00
Justin Cormack
db3be17a84 Remove bind tools 
We are not using these anywhere, busybox provides some of them.

Avoids security warnings.

Rework of #684

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-08 10:14:07 +00:00
Justin Cormack
dc8b40f0e1 Update base image 
- bind update
- edge packages moved to 3.5

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-08 10:09:10 +00:00
Justin Cormack
218e345136 Curl security update 
Upgrade to 7.51, fix the following CVEs

  CVE-2016-7141, CVE-2016-7167, CVE-2016-8615, CVE-2016-8616,
  CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620,
  CVE-2016-8621, CVE-2016-8622, CVE-2016-8623, CVE-2016-8624

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-06 19:32:19 +00:00
Justin Cormack
7c43ec4d01 Add ipvsadm for debugging 
Fix #437

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-11-02 00:10:16 +00:00
Justin Cormack
e34c320abd Update base image with Musl bugfix 
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-10-20 13:20:00 +01:00
Justin Cormack
0ac6beff82 Do not create latest tags for base images 
As we never use these, do not create them.

Also update images where applicable.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-10-10 14:55:48 +01:00
Justin Cormack
0abcf36f2a Remove syslinux from base image 
Only needed for build, so save space and avoid security scan errors.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-09-27 11:23:54 +01:00
Justin Cormack
c8da76aa02 openssl security update 
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-09-27 10:15:50 +01:00
Rolf Neugebauer
fa0104c04c base: update manifest 
Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
 2016-09-23 11:11:07 +01:00
Justin Cormack
a62f4ce7dd Update base image 
- fix `df` failing with overlay
- four more openssl CVEs
- add dhcpcd (unused)
- add openssh server (unused)

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-09-22 16:42:06 +01:00
Justin Cormack
602c9266f9 Sort list of packages 
fix #537

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-09-22 13:42:09 +01:00
Justin Cormack
6488328b69 Add package manifest for base image 
See #527

Easy to see what has been updated via diffs.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2016-09-20 12:48:34 +01:00