Commit 0ae642f
[v4.4.1-rhel] do not pass volume-opt as bind mounts options to runtime
Starting with runc 1.3.0 it errors when we pass unknown mount options to
the runtime, the volume-opt options are specifc to the volume we create
and should not be passed to the mount in the oci spec.
Fixes: podman-container-tools#26938 (originally)
Follow up PR to: podman-container-tools#28092
Just before merging it was realized that the commit in this PR were also
needed to completely address CVE-2025-52881
Fixes: https://issues.redhat.com/browse/OCPBUGS-67036, https://issues.redhat.com/browse/OCPBUGS-67053,
https://issues.redhat.com/browse/OCPBUGS-67070,
https://issues.redhat.com/browse/OCPBUGS-67090,
https://issues.redhat.com/browse/RHEL-134783,
https://issues.redhat.com/browse/RHEL-134787
Signed-off-by: Paul Holzinger <pholzing@redhat.com>
(cherry picked from commit 4e2a04d)
Signed-off-by: Tom Sweeney <tsweeney@redhat.com>1 parent dfe1819 commit 0ae642f
2 files changed
Lines changed: 25 additions & 7 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
479 | 479 | | |
480 | 480 | | |
481 | 481 | | |
| 482 | + | |
| 483 | + | |
| 484 | + | |
| 485 | + | |
| 486 | + | |
| 487 | + | |
| 488 | + | |
| 489 | + | |
| 490 | + | |
482 | 491 | | |
483 | 492 | | |
484 | 493 | | |
| |||
504 | 513 | | |
505 | 514 | | |
506 | 515 | | |
| 516 | + | |
507 | 517 | | |
508 | 518 | | |
509 | 519 | | |
| |||
515 | 525 | | |
516 | 526 | | |
517 | 527 | | |
| 528 | + | |
| 529 | + | |
518 | 530 | | |
519 | 531 | | |
| 532 | + | |
520 | 533 | | |
521 | 534 | | |
522 | 535 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
6 | 6 | | |
7 | 7 | | |
8 | 8 | | |
| 9 | + | |
9 | 10 | | |
10 | 11 | | |
11 | 12 | | |
| |||
875 | 876 | | |
876 | 877 | | |
877 | 878 | | |
878 | | - | |
879 | | - | |
880 | | - | |
881 | 879 | | |
882 | | - | |
883 | | - | |
884 | | - | |
885 | | - | |
| 880 | + | |
| 881 | + | |
| 882 | + | |
| 883 | + | |
| 884 | + | |
| 885 | + | |
| 886 | + | |
| 887 | + | |
| 888 | + | |
| 889 | + | |
| 890 | + | |
886 | 891 | | |
887 | 892 | | |
888 | 893 | | |
| |||
0 commit comments