release: github.com/cloudfoundry/garden-runc-release / 0.5.0

Github source: d4ab478f or master branch

Much good stuff: - AppArmor! Unprivileged containers are now secured with a default apparmor profile. This is based on the default docker apparmor profile for maximum compatibility - The shared_mounts bosh property is gone, we now do the right thing for anything in /var/vcap/data - We now use the new OCI “create/start” split to run network plugins, allowing much more flexibility in how this works and cleaning up the code a lot - Iodaemon is gone, we now use a binary called ‘dadoo’ to do a roughly similar job - Reattaching after restart should now be more bulletproof, for example getting the exit code should work - Code now imported via code.cloudfoundry.org domain

Upload this release version to the Director:

$ bosh upload-release https://bosh.io/d/github.com/cloudfoundry/garden-runc-release?v=0.5.0 --sha1 84365555863543e489ed46714e4a04004d570b40

Modify deployment manifest to use this release in addition to any other used releases:

releases:
- name: garden-runc
  version: "0.5.0"

Finally add needed deployment jobs and specify values for required properties.

Optionally download sha1: 84365555863543e489ed46714e4a04004d570b40 release tarball locally:

# ...or download it directly using curl
$ curl -L -J -O https://bosh.io/d/github.com/cloudfoundry/garden-runc-release?v=0.5.0

# or with wget...
$ wget --content-disposition https://bosh.io/d/github.com/cloudfoundry/garden-runc-release?v=0.5.0