runtime-spec | Docker Ecosystem Directory

Bot releases are visible (Hide)

runtime-spec - v1.2.0 Latest Release

Published by utam0k 8 months ago

Votes: #1242

Additions

config: add idmap and ridmap mount options (#1222)
config.md: allow empty mappings for [r]idmap (#1224)
features-linux: Expose idmap information (#1219)
mount: Allow relative mount destinations on Linux (#1225)
features: add potentiallyUnsafeConfigAnnotations (#1205)
config: add support for org.opencontainers.image annotations #1197

Minor fixes:

config: improve bind mount and propagation doc (#1228)

Documentation, CI & Governance:

fix link to hooks in features (#1226)
specs-go: add missing deprecation comment for Hooks.Prestart (#1232)
specs-go: mark LinuxMemory.Kernel as deprecated ()#1233)

runtime-spec - v1.1.0

Published by AkihiroSuda about 1 year ago

Vote: https://github.com/opencontainers/runtime-spec/pull/1213

Blog: https://opencontainers.org/posts/blog/2023-07-21-oci-runtime-spec-v1-1/

Breaking changes (but rather conforms to the existing runc implementation)

config: change prestart hook spec to match reality (#1169)

Deprecations

config-linux: mark memory.kernel[TCP] as NOT RECOMMENDED (#1093)

Additions

cgroup: add cgroup v2 support (#1040)
seccomp: allow to override errno return code (#1041)
seccomp: Add support for SCMP_ACT_KILL_PROCESS (#1044)
Update seccomp architectures to support RISCV64 (#1059)
Add support for SCMP_ACT_KILL_THREAD (#1064)
Add Seccomp Notify support using UNIX sockets and container metadata (#1074)
config-linux: Add Intel RDT CMT and MBM Linux support (#1076)
seccomp: allow to override default errno return code (#1087)
Introduce zos as platform (#1095)
config-linux: add idle option for container cgroup (#1136)
config-linux: add CFS bandwidth burst (#1120)
IDMapping field for mount point (#1143)
schema: add cpu idle (#1145)
add domainname spec entity (#1156)
config-linux: add memory.checkBeforeUpdate (#1158)
seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV (#1161)
config-linux: add support for rsvd hugetlb cgroup (#1116)
features: add features.md to formalize the runc features JSON (#1130)
config-linux: add support for time namespace (#1151)
config: add scheduler entity (#1188)
config: Add I/O Priority Configuration for process group in Linux Containers (#1191)

Minor fixes

seccomp: fix go-specs for errnoRet (#1042)
Define State for container and runtime namespace (#1045)
Add State status constants to spec-go (#1046)
config.go: make umask a pointer (#1058)
Update State structure to use the new ContainerState type (#1056)
Fix int64 and uint64 type value ranges (#1060)
Fix seccomp notify inconsistencies (#1096)
runtime should WARN / ignore capabilities that cannot be granted (#1094)
config-linux: clarify the handling of ClosID RDT parameter (#1104)
defs-zos: [Fix] prevent schema parsers from hitting recursion-loop while resolving types. (#1117)
fix the lifecycle reference in the states listing (#1118)
specify cgroup ownership semantics (#1123)
config-linux: MAY reject an unfit cgroup (#1125)
cgroup ownership: clarify that some files may not exist (#1137)
schema: update README.md (#1083)
schema: make with golang 1.16 (#1084)
Update Windows CPU comments (#1144)
specs-go: export LinuxBlockIODevice (#1103)
config-linux: update type of LinuxCPU.Idle to *int64 (#1146)
Add available LinuxSeccompFlags (#1138)
config-linux: clarify where device nodes can be created (#1148)
runtime: remove When serialized in JSON, the format MUST adhere to the following pattern (#1178)
config: clarify Linux mount options (#1181)
schema: fix schema for timeOffsets (#1193)
schema: remove duplicate keys (#1195)
config-linux: clarify I/O throttling differences between cgroup v1 and v2 (#1194)
releases: use +dev as in-development suffix (#1198)
features: update Example (#1204)
schema: fix definition for ioPriority (#1206)
features: add a note to avoid confusion about annotations (#1212)

Documentation, CI & Governance

MAINTAINERS: Add @cyphar as maintainer (#1043)
Add Giuseppe Scrivano as a runtime spec maintainer (#1048)
Remove superfluous 'an' (#1049)
docs: Added enclave OCI runtime rune to implementations (#1055)
Change all references from whitelist to allowlist (#1054)
MAINTAINERS: update vbatts email (#1065)
travis: fix go_import_path (#1072)
Makefile: Fix golint URL used in go get (#1075)
config-linux: fix personality link (#1086)
README: Fix broken link for charter (#1091)
add youki to implementations.md (#1126)
Switch to GitHub Actions, CODEOWNERS, etc. (#1128)
typo: seccompFD -> seccompFd (#1133)
fix RFC link (#1153)
maintainer updates as per #1101 (#1150)
GOVERNANCE: correct the Charter URL (#1157)
CODEOWNERS: sync with MAINTAINERS (#1160)
Update CI to Go 1.20 (#1179)
config-linux: fix url error (#1184)
config-linux: chore: Update ociVersion in example (#1199)
MAINTAINERS: add Toru Komatsu (utam0k) (#1201)
glossary: s/features document/Features structure/g (#1203)
CODEOWNER: Add Toru Komatsu(@utam0k) to sync with MAINTAINERS (#1207)
README.md: update chat information (#1210)
Remove outdated meeting.ics (#1211)

runtime-spec - v1.1.0-rc.3

Published by AkihiroSuda over 1 year ago

Vote: #1208 (https://groups.google.com/a/opencontainers.org/g/dev/c/VoNKGQpXh70)

Changes (v1.1.0-rc.2 → v1.1.0-rc.3)

Additions:

config: add scheduler entity (#1188)
config: Add I/O Priority Configuration for process group in Linux Containers (#1191)

Minor fixes and documentation:

config-linux: clarify I/O throttling differences between cgroup v1 and v2 (#1194)
config-linux: chore: Update ociVersion in example (#1199)
releases: use +dev as in-development suffix (#1198)
MAINTAINERS: add Toru Komatsu (utam0k) (#1201)
glossary: s/features document/Features structure/g (#1203)
features: update Example (#1204)
schema: fix definition for ioPriority (#1206)
CODEOWNER: Add Toru Komatsu(@utam0k) to sync with MAINTAINERS (#1207)

Changes (v1.1.0-rc.1 → v1.1.0-rc.2)

Additions

config-linux: add support for rsvd hugetlb cgroup (#1116)
features: add features.md to formalize the runc features JSON (#1130)
config-linux: add support for time namespace (#1151)

Minor fixes and documentation

config-linux: clarify where device nodes can be created (#1148)
runtime: remove When serialized in JSON, the format MUST adhere to the following pattern (#1178)
Update CI to Go 1.20 (#1179)
config: clarify Linux mount options (#1181)
config-linux: fix url error (#1184)
schema: fix schema for timeOffsets (#1193)
schema: remove duplicate keys (#1195)

Changes (v1.0.2 → v1.1.0-rc.1)

Breaking changes (but rather conforms to the existing runc implementation)

config: change prestart hook spec to match reality (#1169)

Deprecations

config-linux: mark memory.kernel[TCP] as NOT RECOMMENDED (#1093)

Additions

cgroup: add cgroup v2 support (#1040)
seccomp: allow to override errno return code (#1041)
seccomp: Add support for SCMP_ACT_KILL_PROCESS (#1044)
Update seccomp architectures to support RISCV64 (#1059)
Add support for SCMP_ACT_KILL_THREAD (#1064)
Add Seccomp Notify support using UNIX sockets and container metadata (#1074)
config-linux: Add Intel RDT CMT and MBM Linux support (#1076)
seccomp: allow to override default errno return code (#1087)
Introduce zos as platform (#1095)
config-linux: add idle option for container cgroup (#1136)
config-linux: add CFS bandwidth burst (#1120)
IDMapping field for mount point (#1143)
schema: add cpu idle (#1145)
add domainname spec entity (#1156)
config-linux: add memory.checkBeforeUpdate (#1158)
seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV (#1161)

Minor fixes and documentation

seccomp: fix go-specs for errnoRet (#1042)
MAINTAINERS: Add @cyphar as maintainer (#1043)
Define State for container and runtime namespace (#1045)
Add Giuseppe Scrivano as a runtime spec maintainer (#1048)
Remove superfluous 'an' (#1049)
Add State status constants to spec-go (#1046)
config.go: make umask a pointer (#1058)
Update State structure to use the new ContainerState type (#1056)
docs: Added enclave OCI runtime rune to implementations (#1055)
Change all references from whitelist to allowlist (#1054)
Fix int64 and uint64 type value ranges (#1060)
MAINTAINERS: update vbatts email (#1065)
travis: fix go_import_path (#1072)
Makefile: Fix golint URL used in go get (#1075)
config-linux: fix personality link (#1086)
README: Fix broken link for charter (#1091)
Fix seccomp notify inconsistencies (#1096)
runtime should WARN / ignore capabilities that cannot be granted (#1094)
config-linux: clarify the handling of ClosID RDT parameter (#1104)
defs-zos: [Fix] prevent schema parsers from hitting recursion-loop while resolving types. (#1117)
fix the lifecycle reference in the states listing (#1118)
add youki to implementations.md (#1126)
Switch to GitHub Actions, CODEOWNERS, etc. (#1128)
specify cgroup ownership semantics (#1123)
config-linux: MAY reject an unfit cgroup (#1125)
cgroup ownership: clarify that some files may not exist (#1137)
typo: seccompFD -> seccompFd (#1133)
schema: update README.md (#1083)
schema: make with golang 1.16 (#1084)
Update Windows CPU comments (#1144)
specs-go: export LinuxBlockIODevice (#1103)
config-linux: update type of LinuxCPU.Idle to *int64 (#1146)
fix RFC link (#1153)
Add available LinuxSeccompFlags (#1138)
maintainer updates as per (#1101 (#1150)
GOVERNANCE: correct the Charter URL (#1157)
CODEOWNERS: sync with MAINTAINERS (#1160)

runtime-spec - v1.1.0-rc.2

Published by AkihiroSuda over 1 year ago

Vote: #1192 ( https://groups.google.com/a/opencontainers.org/g/dev/c/fnCiFoXBsiI/m/fbbmbs19EQAJ )

Changes (v1.1.0-rc.1 → v1.1.0-rc.2)

Additions

config-linux: add support for rsvd hugetlb cgroup (#1116)
features: add features.md to formalize the runc features JSON (#1130)
config-linux: add support for time namespace (#1151)

Minor fixes and documentation

config-linux: clarify where device nodes can be created (#1148)
runtime: remove When serialized in JSON, the format MUST adhere to the following pattern (#1178)
Update CI to Go 1.20 (#1179)
config: clarify Linux mount options (#1181)
config-linux: fix url error (#1184)
schema: fix schema for timeOffsets (#1193)
schema: remove duplicate keys (#1195)

Changes (v1.0.2 → v1.1.0-rc.1)

Breaking changes (but rather conforms to the existing runc implementation)

config: change prestart hook spec to match reality (#1169)

Deprecations

config-linux: mark memory.kernel[TCP] as NOT RECOMMENDED (#1093)

Additions

cgroup: add cgroup v2 support (#1040)
seccomp: allow to override errno return code (#1041)
seccomp: Add support for SCMP_ACT_KILL_PROCESS (#1044)
Update seccomp architectures to support RISCV64 (#1059)
Add support for SCMP_ACT_KILL_THREAD (#1064)
Add Seccomp Notify support using UNIX sockets and container metadata (#1074)
config-linux: Add Intel RDT CMT and MBM Linux support (#1076)
seccomp: allow to override default errno return code (#1087)
Introduce zos as platform (#1095)
config-linux: add idle option for container cgroup (#1136)
config-linux: add CFS bandwidth burst (#1120)
IDMapping field for mount point (#1143)
schema: add cpu idle (#1145)
add domainname spec entity (#1156)
config-linux: add memory.checkBeforeUpdate (#1158)
seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV (#1161)

Minor fixes and documentation

seccomp: fix go-specs for errnoRet (#1042)
MAINTAINERS: Add @cyphar as maintainer (#1043)
Define State for container and runtime namespace (#1045)
Add Giuseppe Scrivano as a runtime spec maintainer (#1048)
Remove superfluous 'an' (#1049)
Add State status constants to spec-go (#1046)
config.go: make umask a pointer (#1058)
Update State structure to use the new ContainerState type (#1056)
docs: Added enclave OCI runtime rune to implementations (#1055)
Change all references from whitelist to allowlist (#1054)
Fix int64 and uint64 type value ranges (#1060)
MAINTAINERS: update vbatts email (#1065)
travis: fix go_import_path (#1072)
Makefile: Fix golint URL used in go get (#1075)
config-linux: fix personality link (#1086)
README: Fix broken link for charter (#1091)
Fix seccomp notify inconsistencies (#1096)
runtime should WARN / ignore capabilities that cannot be granted (#1094)
config-linux: clarify the handling of ClosID RDT parameter (#1104)
defs-zos: [Fix] prevent schema parsers from hitting recursion-loop while resolving types. (#1117)
fix the lifecycle reference in the states listing (#1118)
add youki to implementations.md (#1126)
Switch to GitHub Actions, CODEOWNERS, etc. (#1128)
specify cgroup ownership semantics (#1123)
config-linux: MAY reject an unfit cgroup (#1125)
cgroup ownership: clarify that some files may not exist (#1137)
typo: seccompFD -> seccompFd (#1133)
schema: update README.md (#1083)
schema: make with golang 1.16 (#1084)
Update Windows CPU comments (#1144)
specs-go: export LinuxBlockIODevice (#1103)
config-linux: update type of LinuxCPU.Idle to *int64 (#1146)
fix RFC link (#1153)
Add available LinuxSeccompFlags (#1138)
maintainer updates as per (#1101 (#1150)
GOVERNANCE: correct the Charter URL (#1157)
CODEOWNERS: sync with MAINTAINERS (#1160)

runtime-spec -

Published by AkihiroSuda over 1 year ago

Vote: https://github.com/opencontainers/runtime-spec/pull/1175 ( https://groups.google.com/a/opencontainers.org/g/dev/c/fnCiFoXBsiI/m/1jQm5OArBAAJ )

Changes (v1.0.2 → v1.1.0-rc.1)

Breaking changes (but rather conforms to the existing runc implementation)

config: change prestart hook spec to match reality (#1169)

Deprecations

config-linux: mark memory.kernel[TCP] as NOT RECOMMENDED (#1093)

Additions

cgroup: add cgroup v2 support (#1040)
seccomp: allow to override errno return code (#1041)
seccomp: Add support for SCMP_ACT_KILL_PROCESS (#1044)
Update seccomp architectures to support RISCV64 (#1059)
Add support for SCMP_ACT_KILL_THREAD (#1064)
Add Seccomp Notify support using UNIX sockets and container metadata (#1074)
config-linux: Add Intel RDT CMT and MBM Linux support (#1076)
seccomp: allow to override default errno return code (#1087)
Introduce zos as platform (#1095)
config-linux: add idle option for container cgroup (#1136)
config-linux: add CFS bandwidth burst (#1120)
IDMapping field for mount point (#1143)
schema: add cpu idle (#1145)
add domainname spec entity (#1156)
config-linux: add memory.checkBeforeUpdate (#1158)
seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV (#1161)

Minor fixes and documentation

seccomp: fix go-specs for errnoRet (#1042)
MAINTAINERS: Add @cyphar as maintainer (#1043)
Define State for container and runtime namespace (#1045)
Add Giuseppe Scrivano as a runtime spec maintainer (#1048)
Remove superfluous 'an' (#1049)
Add State status constants to spec-go (#1046)
config.go: make umask a pointer (#1058)
Update State structure to use the new ContainerState type (#1056)
docs: Added enclave OCI runtime rune to implementations (#1055)
Change all references from whitelist to allowlist (#1054)
Fix int64 and uint64 type value ranges (#1060)
MAINTAINERS: update vbatts email (#1065)
travis: fix go_import_path (#1072)
Makefile: Fix golint URL used in go get (#1075)
config-linux: fix personality link (#1086)
README: Fix broken link for charter (#1091)
Fix seccomp notify inconsistencies (#1096)
runtime should WARN / ignore capabilities that cannot be granted (#1094)
config-linux: clarify the handling of ClosID RDT parameter (#1104)
defs-zos: [Fix] prevent schema parsers from hitting recursion-loop while resolving types. (#1117)
fix the lifecycle reference in the states listing (#1118)
add youki to implementations.md (#1126)
Switch to GitHub Actions, CODEOWNERS, etc. (#1128)
specify cgroup ownership semantics (#1123)
config-linux: MAY reject an unfit cgroup (#1125)
cgroup ownership: clarify that some files may not exist (#1137)
typo: seccompFD -> seccompFd (#1133)
schema: update README.md (#1083)
schema: make with golang 1.16 (#1084)
Update Windows CPU comments (#1144)
specs-go: export LinuxBlockIODevice (#1103)
config-linux: update type of LinuxCPU.Idle to *int64 (#1146)
fix RFC link (#1153)
Add available LinuxSeccompFlags (#1138)
maintainer updates as per (#1101 (#1150)
GOVERNANCE: correct the Charter URL (#1157)
CODEOWNERS: sync with MAINTAINERS (#1160)

runtime-spec - v1.0.2

Published by vbatts over 4 years ago

https://groups.google.com/a/opencontainers.org/d/msg/dev/12BYcSHjSWY/IXNOMpflBQAJ
goat dance

runtime-spec - v1.0.1

Published by vbatts almost 7 years ago

https://groups.google.com/a/opencontainers.org/d/msg/dev/Y9HXIM1tYII/73eJngHdBQAJ

runtime-spec - v1.0.0

Published by vbatts over 7 years ago

Vote PASSED (+8 -0 #0): https://groups.google.com/a/opencontainers.org/d/msg/dev/_pvFMQN1DUM/YoEdnfXGBQAJ
Full changeset since rc6: https://github.com/opencontainers/runtime-spec/compare/v1.0.0-rc6...v1.0.0
Release PR: https://github.com/opencontainers/runtime-spec/pull/893

runtime-spec - v1.0.0-rc6

Published by vbatts over 7 years ago

Vote PASSED [+8 -0 #0]: https://groups.google.com/a/opencontainers.org/d/msg/dev/3wLazzsd4GI/2vi0gsxtAwAJ

There have been 128 PRs since RC5. (https://github.com/opencontainers/runtime-spec/pull/882 has the list).

runtime-spec - v1.0.0-rc5

Published by vbatts over 7 years ago

This marks what should be the last release-candidate for the runtime specification. There will be a two (2) week period before the impending v1.0.0. So, expect a vote to be sent out around next Wednesday. Testers are encouraged to kick the tires, as we'll be updating runc for this milestone as well.

runtime-spec - v1.0.0-rc4

Published by vbatts over 7 years ago

There have been 28 changesets merged since the v1.0.0-rc3.
This milestone is nearing the v1 final for this runtime specification.

runtime-spec - v1.0.0-rc3

Published by vbatts almost 8 years ago

VOTE

https://groups.google.com/a/opencontainers.org/d/msg/dev/vm9laWGriwE/Ra-CE7MHDwAJ

Includes the following PRs:

d12da90 Merge pull request #633 from WeiZhang555/syncup-hook-state
9ce258d Merge pull request #629 from wking/code-to-program
7839cbb Merge pull request #626 from duglin/specCleanup
ee5a565 Merge pull request #621 from wking/output-dirname-trailing-slash
600b8b4 Merge pull request #619 from wking/tk/process-header
b69dcba Merge pull request #617 from wking/process.terminal-optional-case
780fc67 Merge pull request #622 from wking/rfc-2119-wording
44c6543 Merge pull request #623 from wking/no-solaris-uid-gid-note
f6b9850 Merge pull request #624 from wking/windows-optional-case
176fe80 Merge pull request #625 from Mashimiao/spec-config-comment-fix
d7e87ca Merge pull request #627 from jonboulle/master
cc983bb Merge pull request #588 from anuthan/solaris
c9a95ed Merge pull request #613 from RobDolinMS/patch-13
f815650 Merge pull request #608 from hqhq/fix_format_issues
2d49cf4 Merge pull request #610 from vapier/master
0afa59f Merge pull request #609 from wking/absolute-mount-destination
0df2586 Merge pull request #518 from mrunalp/terminal
41ef05e Merge pull request #605 from WeiZhang555/fix-typo
b8e2ebe Merge pull request #597 from WeiZhang555/fix-duplicated-namespaces
dc42b45 Merge pull request #601 from hqhq/rewrite_idmapping
32aa94e Merge pull request #586 from Mashimiao/specs-config-fix-required-type
e91c55e Merge pull request #603 from coolljt0725/typo
28c6afe Merge pull request #600 from hqhq/fix_typos
ac2317a Merge pull request #599 from hqhq/use_IO
81888fe Merge pull request #584 from wking/json-object-no-order-or-duplicates
6dfc682 Merge pull request #587 from Mashimiao/config-fix-and-value-require-paths
1e7faf0 Merge pull request #596 from WeiZhang555/add-related-links
63467b2 Merge pull request #595 from WeiZhang555/typo
d6d6839 Merge pull request #589 from wking/golint-requires-go-1.6
a39be46 Merge pull request #567 from jhowardmsft/jjh/aggressivenamespacing
508cd27 Merge pull request #585 from wking/ocitools-rename
1c7c27d Merge pull request #573 from jhowardmsft/jjh/addwindows
c356a80 Merge pull request #563 from jhowardmsft/jjh/initialconsolesize
d850760 Merge pull request #575 from jhowardmsft/jjh/definitions
313f40b Merge pull request #559 from wking/create-bail-for-unsupported-config
67063b5 Merge pull request #574 from wking/config-optional-required
37dbfc3 Merge pull request #572 from jhowardmsft/jjh/typo
7bce59f Merge pull request #564 from jhowardmsft/jjh/processplatformtags
2239827 Merge pull request #571 from jonboulle/patch-1
f0ecb45 Merge pull request #557 from vbatts/bump-version-1.0.0-rc2
b9e85b0 Merge pull request #569 from wking/drop-platform-dependent-comment-v2
0bb7b17 Merge pull request #566 from wking/mount-link-whitespace
a992b1b Merge pull request #565 from jhowardmsft/jjh/user
66f4f35 Merge pull request #568 from wking/drop-platform-dependent-comment
74ec713 Merge pull request #523 from wking/clarify-version
b3ce195 Merge pull request #558 from Mashimiao/config-clarify-root-filesystem-path
7a36e7e Merge pull request #547 from vbatts/go_vet
22c29c1 Merge pull request #556 from wking/remove-space-before-colon
b2f69c6 Merge pull request #510 from duglin/extension

runtime-spec - v1.0.0-rc2

Published by vbatts about 8 years ago

Additions:

    * config-linux: Add new architectures from libseccomp 2.3.0 (#505)
    * schema: Add JSON Schema for state JSON and move schema.json to 
      config-schema.json and similar (#481, #498, #519) 

    Minor fixes and documentation:

    * Add compliance language for platforms and architectures (#527)
    * Remove "unconditionally compliant" language (#553)
    * bundle: Remove distribution references (#487)
    * runtime: Fix sub-bullet indentation (#495)
    * config: Replace Arch fstab reference with mount(8) (#443)
    * config: Synchronize comments between Markdown and Go (#525)
    * config: Drop v0.x compatibility statement (#488)
    * config-linux: RFC 2119 wording for cgroupsPath (#493)
    * config-linux: Make linux.devices and linux.resources.devices
      optional (#526)
    * config-linux: Extend no-tweak requirement to runtime namespaces (#538)
    * schema: Add hook.timeout (#544)
    * schema: Add missing '"type": "object"' (#528)
    * schema: Run 'make fmt' and remove duplicates (#546, #551)
    * schema/config: Make 'hostname' optional (#491)
    * schema/config-linux: Add linux.resources.devices (#550)
    * specs-go/config: Add Solaris tags to User properties (#496)
    * specs-go/config: Make Linux and Solaris omitempty again (#502)
    * specs-go/config: Make KernelTCP and ClassID omitempty (#531)
    * specs-go/config: Fix "specified" typo for ApparmorProfile (#503)
    * Makefile: Remove code-of-conduct.md and version.md when clean (#541)
    * implementations: Mention cc-oci-runtime (#539)
    * Use filesystem instead of file system (#529)
    * .pullapprove: Add DCO check via PullApprove
    * GOVERNANCE: Add governance and release process docs (#521)
    * README: Change meeting time from 10am to 2pm Pacific (#524)
    * README: Update conference-call phone number (#512, #515)

runtime-spec - v1.0.0-rc1

Published by vbatts over 8 years ago

Changes with v1.0.0-rc1:
Breaking changes:

* runtime: Split create and start, #384, #450, #463, #464, #467,
  #468
* runtime: Remove exec, #388
* runtime: Enviroment MUST match the configuration, #397
* config: Runtime MUST generate errors for unsupported platforms,
  #441
* config: Windows mount destinations MUST NOT be nested, #437

Additions:

* solaris: Added platform-specific configuration, #411, #424, #431,
  #436
* runtime: Add 'annotations' and 'status' to the state structure,
  #462, #484, #485
* runtime: State no longer needs to be serialized as JSON, #446
* runtime-linux: Add /dev symbolic links, #449
* config: Allow absolute paths for root.path (which previously
  required relative paths), #394
* config-linux: Add linux.mountLabel, #393
* config-linux: Add suport for cgroup namespace, #397
* config-linux: Runtime SHOULD NOT modify ownership of any
  referenced filesystem (previously the restriction only applied to
  the root filesystem), #452
* specs-go/seccomp: Add ppc and s390x to specs-go/config.go, #475

Minor fixes and documentation:

* README: Add project.md to the Table of Contents, #376
* README: Consistenly indent the Table of Contents, #400
* README: Link to LICENSE, #442
* README: Weekly call is OCI-wide, #378
* config: Explicit runtime namespace for hooks, #415
* config: Explicit container namespace for uid, gid, and
  additionalGids, #412
* config: Fix 'string' -> 'array of strings' typo for process.args,
  #416
* runtime: The runtime MAY validate config.json, #418
* runtime: Move errors section out of operations, #445
* runtime: MAY -> SHOULD for post-stop error logging, #410
* schema/README: Document JSON Schema usage, #360, #385
* schema: Minor description updates, #456, #461
* schema/validate: Support reading documents via stdin, #482
* .pullapprove: Automate review approval, #458, #474
* .gitignore: Hide more auto-generated files, #386, #392
* .travis: git-validation detects Travis now, #366
* .travis: Regress on failure to produce docs, #479
* Makefile: Filename docs.* -> oci-runtime-spec.*, #478
* Makefile: Add install.tools target, #349
* Makefile: Allow native pandoc implementations, #428, #448
* Makefile: Prefer Bash, #455
* Makefile: Travis support for .gitvalidation, #422
* specs-go/config: Add missing omitempties for Process.Terminal,
  Root.Readonly, Spec.Linux, and Spec.Mounts, #408, #429, #430, #431
* specs-go/config: Remove incorrect omitempties for User.UID and
  User.GID, #425
* specs-go/config: Drop platform-independent comment, #451
* version: Include version in generated documentation, #406
* *: Anchor examples, #348
* *: Fix remnants from SelinuxProcessLabel to SelinuxLabel rename,
   #396
* *: Outsource code-of-conduct to TOB repository, #375, #413
* *: RFC 2119 consistency, #407, #409, #438, #444, #449
* *: Typo fixes, #390, #401
* *: Whitespace fixes and validation, #380, #381, #426
* ROADMAP: Remove stale targets, #435

runtime-spec - v0.5.0

Published by vbatts over 8 years ago

Breaking changes:

specs-go: Renamed the repository from opencontainers/specs to opencontainers/runtime-spec, #365

Additions:

config: Add 'timeout' for hooks, #346
config-linux: Add 'maskedPaths' and 'readonlyPaths', #364

Minor fixes and documentation:

JSON Schema bug-fixes and improved examples, #370
README: Define "unconditionally compliant", #374
config: Make Markdown canonical, #342
config: Explicitly list mapping from symbolic names to UID/GIDs as out-of-scope, #347
config-linux: Require the runtime mount namespace for namespace 'path' values, #275
config-linux: Reword kernelTCP docs, #377
specs-go: Add omitempty to 'Device' and 'Namespace', #340
.travis.yml: Use built-in 'go vet' and current 'go lint', dropping Go < 1.5, #372, #352
implementations: Expand ocitools scope to include testing, #328
style: Move one-sentence-per-line rule from the README, #369
style: Remove dangling parenthesis, #359
README: Add a link to the IRC logs, #358
Fix "manadate", "exmaple", "paramters", and "preferrably" typos, #353, #354

runtime-spec - v0.4.0

Published by vbatts over 8 years ago

Breaking changes:

config: Move capabilities, selinuxProcessLabel, apparmorProfile,
and noNewPrivileges from the linux setting to the process setting
and make them optional, renaming selinuxProcessLabel to
selinuxLabel, #329, #330, #339
runtime: Rename version to ociVerison in the state JSON, #225
runtime: Remove the directory requirement for storing state, now
that there is a 'state' operation, #225, #334
go: Shift .go to specs-go/.go, #276
config: Move rlimits to process, #341
go: Move config_linux.go content into config.go, removing
LinuxSpec, #310

Additions:

schema: Add JSON Schema (and validator) for config.json, #313
config: Add annotations for opaque-to-the-runtime data, #331
config-linux: Make seccomp optional, #333
runtime: Added additional operations: state, stop, and exec.
#225

Minor fixes and documentation:

config-linux: Change mount type from *rune to *string and fix
octal fileMode examples, #323
runtime: RFC 2119 phrasing for the lifecycle, #225
README: Add a full example of config.json, #276
README: Replace BlueJeans with UberConference, #326, #338
style: Document Go-pointer exceptions, #317