runc does not pass correct OCI state values to hooks

[jodh-intel]

It looks like runc passes a sub-set of its state to the hooks it runs. This is at odds with the OCI specification which states that:

The state of the container is passed to the hooks over stdin, so the hooks could get the information they need to do their work.

The OCI spec also states:

The state of a container MUST include, at least, the following properties:

• ociVersion
• id
• status
• pid
• bundlePath
• annotations

Crucially, also runc passes a root element when it should be passing bundlePath. Further, https://github.com/projectatomic/oci-systemd-hook has a bug where it is relying on root even though it should be bundlePath:

• https://github.com/projectatomic/oci-systemd-hook/blob/master/src/systemdhook.c

See intel/cc-oci-runtime#270 for further details.

[runcom]

Further, https://github.com/projectatomic/oci-systemd-hook has a bug where it is relying on root even though it should be bundlePath:

/cc @mrunalp @rhatdan

[jodh-intel]

@runcom - right, I've raised projectatomic/oci-systemd-hook#27.

[runcom]

@runcom - right, I've raised projectatomic/oci-systemd-hook#27.

@jodh-intel thx!

[cyphar]

Maybe this is related to #1048 (since it's touching the state that we're passing around)?

[wking]

Fixed by #724 for container_linux.go (which landed before this issue) and #1201 for process_linux.go (which is after this issue), so I think we can close this.

There's also more hook-state-spec-compliance in flight in #1741.