Skip to content

[release/1.6] seccomp: kernel 6.7#9694

Merged
estesp merged 1 commit intocontainerd:release/1.6from
k8s-infra-cherrypick-robot:cherry-pick-9684-to-release/1.6
Jan 26, 2024
Merged

[release/1.6] seccomp: kernel 6.7#9694
estesp merged 1 commit intocontainerd:release/1.6from
k8s-infra-cherrypick-robot:cherry-pick-9684-to-release/1.6

Conversation

@k8s-infra-cherrypick-robot
Copy link

@k8s-infra-cherrypick-robot k8s-infra-cherrypick-robot commented Jan 25, 2024

This is an automated cherry-pick of #9684

/assign AkihiroSuda

@AkihiroSuda
seccomp: kernel 6.7
f446283 
The following syscalls were added since kernel v5.16:
- v5.17 (libseccomp v2.5.4): set_mempolicy_home_node
- v6.5  (libseccomp v2.5.5): cachestat
- v6.6  (libseccomp v2.5.5): fchmodat2, map_shadow_stack
- v6.7  (libseccomp v2.5.5): futex_wake, futex_wait, futex_requeue

[Not covered in this commit]
- v6.8-rc1: statmount, listmount, lsm_get_self_attr, lsm_set_self_attr, lsm_list_modules

ref:
- `syscalls: update the syscall list for Linux v5.17` (libseccomp v2.5.4)
   seccomp/libseccomp@d83cb7a
- `all: update the syscall table for Linux v6.7-rc3`  (libseccomp v2.5.5)
   seccomp/libseccomp@53267af

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
@k8s-infra-cherrypick-robot k8s-infra-cherrypick-robot mentioned this pull request Jan 25, 2024
Merged
@k8s-ci-robot
Copy link

k8s-ci-robot commented Jan 25, 2024

Hi @k8s-infra-cherrypick-robot. Thanks for your PR.

I'm waiting for a containerd member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

fuweid
fuweid approved these changes Jan 26, 2024
View reviewed changes
Copy link
Member

@fuweid fuweid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@estesp estesp merged commit 57f5087 into containerd:release/1.6 Jan 26, 2024
@dmcgowan dmcgowan mentioned this pull request Jan 31, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@estesp estesp estesp approved these changes

@fuweid fuweid fuweid approved these changes

Assignees

@AkihiroSuda AkihiroSuda

Labels

needs-ok-to-test size/XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@k8s-infra-cherrypick-robot @k8s-ci-robot @estesp @fuweid @AkihiroSuda