procd: jail: clean up capability handling and non-root ubusd

Unify capability handling to only use OCI spec parsers even for ujail
slim containers which previously supposedly used their own format.

 80c9516 cgroups: restrict allowed keys in 'unified' section
 5ade567 cgroups: memory controller fixes
 3121467 early: run ubusd non-root as user ubus, group ubus
 12a5b97 jail: adapt to new ubus socket path
 788d144 instance: actually wire up capabilities filename
 ebc5a7f jail: nuke old capabilities code in favour of reusing OCI code
 6c5233a jail: capabilities: apply in two phases

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

diff --git a/package/system/procd/Makefile b/package/system/procd/Makefile
index b0c035545e34c92da40339d591f0165cdc4dd696..d6def205c5acc153ae150f424ad17f846c5c48e8 100644 (file)
--- a/package/system/procd/Makefile
+++ b/package/system/procd/Makefile
@@ -12,9 +12,9 @@ PKG_RELEASE:=1
 
 PKG_SOURCE_PROTO:=git
 PKG_SOURCE_URL=$(PROJECT_GIT)/project/procd.git
-PKG_SOURCE_DATE:=2020-08-10
-PKG_SOURCE_VERSION:=fad899769e1411cc273785461f073a0f7931b9a0
-PKG_MIRROR_HASH:=f56b621f78f821f7070d85f63448f684af7e2fe0c85233a8d054683cc34f6d06
+PKG_SOURCE_DATE:=2020-10-21
+PKG_SOURCE_VERSION:=6c5233a16a4831c69e3dcf09bf557156bc144b80
+PKG_MIRROR_HASH:=026138c6b9a337f87bb1c8928aa6e0f2b0814b6ab04b1f2d044c284facbde0f5
 CMAKE_INSTALL:=1
 
 PKG_LICENSE:=GPL-2.0