containerd / aufs Goto Github PK
View Code? Open in Web Editor NEWAUFS Snapshotter for containerd
License: Apache License 2.0
AUFS Snapshotter for containerd
License: Apache License 2.0
Hi folks.
Would be so kind as to ship a new release? Version 1.0.0
's dependency graph includes a version of docker/distribution that's vulnerable to CVE-2017-11468 through the follow dependency chain:
* github.com/containerd/[email protected]
└ * github.com/containerd/[email protected]
└ * github.com/Microsoft/[email protected]
└ * github.com/containerd/[email protected]
└ * github.com/Microsoft/hcsshim/[email protected]
└ * github.com/docker/[email protected]
I can see you've already updated the containerd dependency on master
to a later version that doesn't have this vulnerability.
Apply the following diff to containerd repo:
diff --git a/cmd/containerd/builtins_linux.go b/cmd/containerd/builtins_linux.go
index a652f37f..1ab3520d 100644
--- a/cmd/containerd/builtins_linux.go
+++ b/cmd/containerd/builtins_linux.go
@@ -1,7 +1,9 @@
package main
import (
+ _ "github.com/containerd/aufs"
_ "github.com/containerd/containerd/linux"
_ "github.com/containerd/containerd/metrics/cgroups"
_ "github.com/containerd/containerd/snapshots/overlay"
)
diff --git a/vendor.conf b/vendor.conf
index fdfa66cf..b40e2930 100644
--- a/vendor.conf
+++ b/vendor.conf
@@ -42,3 +42,5 @@ golang.org/x/text 19e51611da83d6be54ddafce4a4af510cb3e9ea4
github.com/dmcgowan/go-tar go1.10
github.com/stevvooe/ttrpc d2710463e497617f16f26d1e715a3308609e7982
github.com/syndtr/gocapability db04d3cc01c8b54962a58ec7e491717d06cfcc16
+github.com/containerd/aufs eb251c3a4090ff8412fb4a8f2a0620d2d8da1d6f
Build this and run it. The daemon completely hangs.
Observed in https://travis-ci.org/containerd/aufs/builds/309042106 (merge commit for #5. PR itself was green)
--- FAIL: TestAufs/MoveFileFromLowerLayer (0.06s)
testsuite.go:805: Check snapshots failed: invalid argument
failed to mount
github.com/containerd/containerd/snapshot/testsuite.applyToMounts
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:24
github.com/containerd/containerd/snapshot/testsuite.createSnapshot
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:46
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:107
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
failed to apply
github.com/containerd/containerd/snapshot/testsuite.createSnapshot
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:47
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:107
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
failed to create snapshot 2
github.com/containerd/containerd/snapshot/testsuite.checkSnapshots
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/helpers.go:109
github.com/containerd/containerd/snapshot/testsuite.checkFileFromLowerLayer
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:804
github.com/containerd/containerd/snapshot/testsuite.makeTest.func1
/home/travis/gopath/src/github.com/containerd/containerd/snapshot/testsuite/testsuite.go:90
testing.tRunner
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/testing/testing.go:746
runtime.goexit
/home/travis/.gimme/versions/go1.9.2.linux.amd64/src/runtime/asm_amd64.s:2337
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root
helpers.go:50: -rw------- 65536 /tmp/snapshot-suite-Aufs-932587849/root/metadata.db [ "\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\xed\xda\f\xed\x02\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\x00\x00\x00\x00\x00\x00\f\x00\x00\x00\x00\x00\x00\x00" ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir1
helpers.go:50: -rw-r--r-- 5 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir1/f1 [ "Hello" ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir2
helpers.go:50: -rw-r--r-- 3 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/1/fs/dir2/f2 [ "..." ...]
helpers.go:52: drwx------ 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/3
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/root/snapshots/3/fs
helpers.go:52: drwxr-xr-x 4096 /tmp/snapshot-suite-Aufs-932587849/work
#13 31.71 go: github.com/containerd/aufs@v1.0.0 requires
#13 31.71 github.com/containerd/containerd@v1.5.0-beta.3 requires
#13 31.71 github.com/Microsoft/hcsshim@v0.8.15 requires
#13 31.71 github.com/containerd/containerd@v1.5.0-beta.1 requires
#13 31.71 github.com/Microsoft/hcsshim/test@v0.0.0-20201218223536-d3e5debf77da requires
#13 31.71 github.com/docker/distribution@v0.0.0-20190905152932-14b96e55d84c requires
#13 31.71 github.com/mitchellh/osext@v0.0.0-20151018003038-5e2d6d41470f: invalid version: git ls-remote -q origin in /go/pkg/mod/cache/vcs/94ed57c5b21c953d93b47487113db43a5c9b69fd990329ec70dc77348c4dd443: exit status 128:
#13 31.71 fatal: could not read Username for 'https://github.com/': terminal prompts disabled
#13 31.71 Confirm the import path was entered correctly.
#13 31.71 If this is a private repository, see https://golang.org/doc/faq#git_https for additional information.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.