containerd / aufs Goto Github PK
View Code? Open in Web Editor NEWAUFS Snapshotter for containerd
License: Apache License 2.0
aufs's Issues
Address CVE-2017-11468
Hi folks.
Would be so kind as to ship a new release? Version 1.0.0's dependency graph includes a version of docker/distribution that's vulnerable to CVE-2017-11468 through the follow dependency chain:
* github.com/containerd/[email protected]
└ * github.com/containerd/[email protected]
└ * github.com/Microsoft/[email protected]
└ * github.com/containerd/[email protected]
└ * github.com/Microsoft/hcsshim/[email protected]
└ * github.com/docker/[email protected]
I can see you've already updated the containerd dependency on master to a later version that doesn't have this vulnerability.
containerd hangs when adding this plugin as builtin
Apply the following diff to containerd repo:
diff --git a/cmd/containerd/builtins_linux.go b/cmd/containerd/builtins_linux.go
index a652f37f..1ab3520d 100644
--- a/cmd/containerd/builtins_linux.go
+++ b/cmd/containerd/builtins_linux.go
@@ -1,7 +1,9 @@
package main
import (
+ _ "github.com/containerd/aufs"
_ "github.com/containerd/containerd/linux"
_ "github.com/containerd/containerd/metrics/cgroups"
_ "github.com/containerd/containerd/snapshots/overlay"
)
diff --git a/vendor.conf b/vendor.conf
index fdfa66cf..b40e2930 100644
--- a/vendor.conf
+++ b/vendor.conf
@@ -42,3 +42,5 @@ golang.org/x/text 19e51611da83d6be54ddafce4a4af510cb3e9ea4
github.com/dmcgowan/go-tar go1.10
github.com/stevvooe/ttrpc d2710463e497617f16f26d1e715a3308609e7982
github.com/syndtr/gocapability db04d3cc01c8b54962a58ec7e491717d06cfcc16
+github.com/containerd/aufs eb251c3a4090ff8412fb4a8f2a0620d2d8da1d6fBuild this and run it. The daemon completely hangs.
Flaky test: MoveFileFromLowerLayer
Observed in https://travis-ci.org/containerd/aufs/builds/309042106 (merge commit for #5. PR itself was green)
--- FAIL: TestAufs/MoveFileFromLowerLayer (0.06s)
testsuite.go:805: Check snapshots failed: invalid argument
failed to mount
github.com/containerd/containerd/snapshot/testsuite.applyToMounts
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:24
github.com/containerd/containerd/snapshot/testsuite.createSnapshot
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:46
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:107
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
failed to apply
github.com/containerd/containerd/snapshot/testsuite.createSnapshot
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:47
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:107
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
failed to create snapshot 2
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:109
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root
helpers.go:50: -rw------- 65536 /tmp/snapshot-suite-Aufs-932587849/root/metadata.db [ "\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\xed\xda\f\xed\x02\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\x00\x00\x00\x00\x00\x00\f\x00\x00\x00\x00\x00\x00\x00" ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir1
helpers.go:50: -rw-r--r-- 5 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir1/f1 [ "Hello" ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir2
helpers.go:50: -rw-r--r-- 3 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir2/f2 [ "..." ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/3
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/3/fs
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/work
github.com/mitchellh/osext invalid version
#13 31.71 go: github.com/containerd/aufs@v1.0.0 requires
#13 31.71 github.com/containerd/containerd@v1.5.0-beta.3 requires
#13 31.71 github.com/Microsoft/hcsshim@v0.8.15 requires
#13 31.71 github.com/containerd/containerd@v1.5.0-beta.1 requires
#13 31.71 github.com/Microsoft/hcsshim/test@v0.0.0-20201218223536-d3e5debf77da requires
#13 31.71 github.com/docker/distribution@v0.0.0-20190905152932-14b96e55d84c requires
#13 31.71 github.com/mitchellh/osext@v0.0.0-20151018003038-5e2d6d41470f: invalid version: git ls-remote -q origin in /go/pkg/mod/cache/vcs/94ed57c5b21c953d93b47487113db43a5c9b69fd990329ec70dc77348c4dd443: exit status 128:
#13 31.71 fatal: could not read Username for 'https://github.com/': terminal prompts disabled
#13 31.71 Confirm the import path was entered correctly.
#13 31.71 If this is a private repository, see https://golang.org/doc/faq#git_https for additional information.Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.