Merge remote-tracking branch 'origin/master' into tk/restore-hook-lif…

…ecycle

After unifying the pre- and post-split hook lifecycle information
(this commit's first parent), merge master to pull in subsequent
mainline evolution.

Conflicts:
    runtime.md

The conflicts were primarily due to:

* dd0cd21 (Add a 'status' field to our state struct, 2016-05-26, opencontainers#462).
* 98f0bdf (Add some related docs links, 2016-10-25, opencontainers#596).
* c45ffb4 (*: Replace "user-specified code" with "user-specified
  program", 2016-11-18, opencontainers#629).

Signed-off-by: W. Trevor King <[email protected]>

.gitignore

@@ -1,4 +1,3 @@
 output
 schema/validate
-code-of-conduct.md
 version.md

.pullapprove.yml

@@ -2,6 +2,9 @@ approve_by_comment: true
 approve_regex: ^LGTM
 reject_regex: ^Rejected
 reset_on_push: true
+author_approval: ignored
+signed_off_by:
+  required: true
 reviewers:
   teams:
   - runtime-spec-maintainers

.travis.yml

@@ -1,17 +1,22 @@
 language: go
 go:
-  - 1.6
-  - 1.5.3
+  - 1.7
+  - 1.6.3
+  - 1.5.4
 
-sudo: false
+sudo: required
+
+services:
+  - docker
 
 before_install:
   - make install.tools
+  - docker pull vbatts/pandoc
 
 install: true
 
 script:
   - make .govet
   - make .golint
   - make .gitvalidation
-
+  - make docs

ChangeLog

@@ -1,5 +1,162 @@
 OpenContainers Specifications
 
+Changes with v1.0.0-rc3:
+	Additions:
+
+	* config: Add support for Windows-based containers (#565, #573)
+	* config: Add process.consoleSize (#563)
+	* config: Explicitly allow unknown extensions and document
+	  annotations key conventions (#510)
+	* config: Define mounts entries for Solaris (#588)
+
+	Removals and increased restrictions:
+
+	* config: Require absolute paths for mount destinations (#609)
+	* config-linux: Require absolute path for maskedPaths and
+	  readonlyPaths (#587)
+	* config-linux: Only require /dev/console when process.terminal is
+	  true.  Also require /dev/console to be provided by a bind mount
+	  (#518)
+	* runtime: Require runtimes to generate errors when the container
+	  specified in config.json cannot be created (#559)
+
+	Breaking Go changes:
+
+	* specs-go/config: Aggressive namespacing (#567)
+	* specs-go/config: Remove pointers from LinuxHugepageLimit,
+	  LinuxInterfacePriority, and LinuxPids properties (#586)
+	* specs-go/state: Rename version to ociVersion (#633)
+	  LinuxInterfacePriority, and LinuxPids properties (#586)
+
+	Minor fixes and documentation:
+
+	* spec: Separate the spec from project scaffolding (#626)
+	* README: Define "unspecified", "undefined", and
+	 "implementation-defined" (#575)
+	* config: Clarify absolue and relative values for root.path (#558)
+	* config: Clarify ociVersion covering the configuration <->
+	  runtime API (#523)
+	* config-linux: Forbid duplicated namespaces with same `type`
+	  (#597)
+	* glossary: Make objects explicitly unordered and forbid duplicate
+	  names (#584)
+	* specs-go/config: Add platform tags to Rlimits and
+	  NoNewPRivileges (#564)
+	* schema/defs-linux: Use int64 for major/minor types (#610)
+	* Makefile: Add support for Go 1.7 (#547)
+	* Makefile: Require Go >= 1.6 for golint (#589)
+	* Makefile: Use a POSIX-compatible test ('==' -> '=') (#542)
+	* implementations: Rename ocitools -> runtime-tools (#585)
+	* *: Typo fixes and polishing (#556, #566, #568, #569, #571, #572,
+	  #574, #595, #596, #599, #600, #601, #603, #605, #608, #613, #617,
+	  #619, #621, #622, #623, #624, #625, #627, #629)
+
+Changes with v1.0.0-rc2:
+	Additions:
+
+	* config-linux: Add new architectures from libseccomp 2.3.0 (#505)
+	* schema: Add JSON Schema for state JSON and move schema.json to
+	  config-schema.json and similar (#481, #498, #519)
+
+	Minor fixes and documentation:
+
+	* Add compliance language for platforms and architectures (#527)
+	* Remove "unconditionally compliant" language (#553)
+	* bundle: Remove distribution references (#487)
+	* runtime: Fix sub-bullet indentation (#495)
+	* config: Replace Arch fstab reference with mount(8) (#443)
+	* config: Synchronize comments between Markdown and Go (#525)
+	* config: Drop v0.x compatibility statement (#488)
+	* config-linux: RFC 2119 wording for cgroupsPath (#493)
+	* config-linux: Make linux.devices and linux.resources.devices
+	  optional (#526)
+	* config-linux: Extend no-tweak requirement to runtime namespaces (#538)
+	* schema: Add hook.timeout (#544)
+	* schema: Add missing '"type": "object"' (#528)
+	* schema: Run 'make fmt' and remove duplicates (#546, #551)
+	* schema/config: Make 'hostname' optional (#491)
+	* schema/config-linux: Add linux.resources.devices (#550)
+	* specs-go/config: Add Solaris tags to User properties (#496)
+	* specs-go/config: Make Linux and Solaris omitempty again (#502)
+	* specs-go/config: Make KernelTCP and ClassID omitempty (#531)
+	* specs-go/config: Fix "specified" typo for ApparmorProfile (#503)
+	* Makefile: Remove code-of-conduct.md and version.md when clean (#541)
+	* implementations: Mention cc-oci-runtime (#539)
+	* Use filesystem instead of file system (#529)
+	* .pullapprove: Add DCO check via PullApprove
+	* GOVERNANCE: Add governance and release process docs (#521)
+	* README: Change meeting time from 10am to 2pm Pacific (#524)
+	* README: Update conference-call phone number (#512, #515)
+
+Changes with v1.0.0-rc1:
+	Breaking changes:
+
+	* runtime: Split create and start, #384, #450, #463, #464, #467,
+	  #468
+	* runtime: Remove exec, #388
+	* runtime: Enviroment MUST match the configuration, #397
+	* config: Runtime MUST generate errors for unsupported platforms,
+	  #441
+	* config: Windows mount destinations MUST NOT be nested, #437
+
+	Additions:
+
+	* solaris: Added platform-specific configuration, #411, #424, #431,
+	  #436
+	* runtime: Add 'annotations' and 'status' to the state structure,
+	  #462, #484, #485
+	* runtime: State no longer needs to be serialized as JSON, #446
+	* runtime-linux: Add /dev symbolic links, #449
+	* config: Allow absolute paths for root.path (which previously
+	  required relative paths), #394
+	* config-linux: Add linux.mountLabel, #393
+	* config-linux: Add suport for cgroup namespace, #397
+	* config-linux: Runtime SHOULD NOT modify ownership of any
+	  referenced filesystem (previously the restriction only applied to
+	  the root filesystem), #452
+	* specs-go/seccomp: Add ppc and s390x to specs-go/config.go, #475
+
+	Minor fixes and documentation:
+
+	* README: Add project.md to the Table of Contents, #376
+	* README: Consistenly indent the Table of Contents, #400
+	* README: Link to LICENSE, #442
+	* README: Weekly call is OCI-wide, #378
+	* config: Explicit runtime namespace for hooks, #415
+	* config: Explicit container namespace for uid, gid, and
+	  additionalGids, #412
+	* config: Fix 'string' -> 'array of strings' typo for process.args,
+	  #416
+	* runtime: The runtime MAY validate config.json, #418
+	* runtime: Move errors section out of operations, #445
+	* runtime: MAY -> SHOULD for post-stop error logging, #410
+	* schema/README: Document JSON Schema usage, #360, #385
+	* schema: Minor description updates, #456, #461
+	* schema/validate: Support reading documents via stdin, #482
+	* .pullapprove: Automate review approval, #458, #474
+	* .gitignore: Hide more auto-generated files, #386, #392
+	* .travis: git-validation detects Travis now, #366
+	* .travis: Regress on failure to produce docs, #479
+	* Makefile: Filename docs.* -> oci-runtime-spec.*, #478
+	* Makefile: Add install.tools target, #349
+	* Makefile: Allow native pandoc implementations, #428, #448
+	* Makefile: Prefer Bash, #455
+	* Makefile: Travis support for .gitvalidation, #422
+	* specs-go/config: Add missing omitempties for Process.Terminal,
+	  Root.Readonly, Spec.Linux, and Spec.Mounts, #408, #429, #430, #431
+	* specs-go/config: Remove incorrect omitempties for User.UID and
+	  User.GID, #425
+	* specs-go/config: Drop platform-independent comment, #451
+	* version: Include version in generated documentation, #406
+	* *: Anchor examples, #348
+	* *: Fix remnants from SelinuxProcessLabel to SelinuxLabel rename,
+	   #396
+	* *: Outsource code-of-conduct to TOB repository, #375, #413
+	* *: RFC 2119 consistency, #407, #409, #438, #444, #449
+	* *: Typo fixes, #390, #401
+	* *: Whitespace fixes and validation, #380, #381, #426
+	* ROADMAP: Remove stale targets, #435
+
 Changes with v0.5.0:
 	Breaking changes:
 
@@ -277,4 +434,3 @@ Changes with v0.1.0:
 	* Update Typo in ROADMAP.md
 	* Use unsigned for IDs
 	* version: introduce a string for dev indication
-

GOVERNANCE.md

@@ -0,0 +1,70 @@
+# Project governance
+
+The [OCI charter][charter] §5.b.viii tasks an OCI Project's maintainers (listed in the repository's MAINTAINERS file and sometimes referred to as "the TDC", [§5.e][charter]) with:
+
+> Creating, maintaining and enforcing governance guidelines for the TDC, approved by the maintainers, and which shall be posted visibly for the TDC.
+
+This section describes generic rules and procedures for fulfilling that mandate.
+
+## Proposing a motion
+
+A maintainer SHOULD propose a motion on the [email protected] mailing list (except [security issues](#security-issues)) with another maintainer as a co-sponsor.
+
+## Voting
+
+Voting on a proposed motion SHOULD happen on the [email protected] mailing list (except [security issues](#security-issues)) with maintainers posting LGTM or REJECT.
+Maintainers MAY also explicitly not vote by posting ABSTAIN (which is useful to revert a previous vote).
+Maintainers MAY post multiple times (e.g. as they revise their position based on feeback), but only their final post counts in the tally.
+A proposed motion is adopted if two-thirds of votes cast, a quorum having voted, are in favor of the release.
+
+Voting SHOULD remain open for a week to collect feedback from the wider community and allow the maintainers to digest the proposed motion.
+Under exceptional conditions (e.g. non-major security fix releases) proposals which reach quorum with unanimous support MAY be adopted earlier.
+
+A maintainer MAY choose to reply with REJECT.
+A maintainer posting a REJECT MUST include a list of concerns or links to written documentation for those concerns (e.g. GitHub issues or mailing-list threads).
+The maintainers SHOULD try to resolve the concerns and wait for the rejecting maintainer to change their opinion to LGTM.
+However, a motion MAY be adopted with REJECTs, as outlined in the previous paragraphs.
+
+## Quorum
+
+A quorum is established when at least two-thirds of maintainers have voted.
+
+For projects that are not specifications, a [motion to release](#release-approval) MAY be adopted if the tally is at least three LGTMs and no REJECTs, even if three votes does not meet the usual two-thirds quorum.
+
+## Security issues
+
+Motions with sensitive security implications MUST be proposed on the [email protected] mailing list instead of [email protected], but should otherwise follow the standard [proposal](#proposing-a-motion) process.
+The [email protected] mailing list includes all members of the TOB.
+The TOB will contact the project maintainers and provide a channel for discussing and voting on the motion, but voting will otherwise follow the standard [voting](#voting) and [quorum](#quorum) rules.
+The TOB and project maintainers will work together to notify affected parties before making an adopted motion public.
+
+## Amendments
+
+The [project governance](#project-governance) rules and procedures MAY be amended or replaced using the procedures themselves.
+The MAINTAINERS of this project governance document is the total set of MAINTAINERS from all Open Containers projects (runC, runtime-spec, and image-spec).
+
+## Subject templates
+
+Maintainers are busy and get lots of email.
+To make project proposals recognizable, proposed motions SHOULD use the following subject templates.
+
+### Proposing a motion
+
+> [{project} VOTE]: {motion description} (closes {end of voting window})
+
+For example:
+
+> [runtime-spec VOTE]: Tag 0647920 as 1.0.0-rc (closes 2016-06-03 20:00 UTC)
+
+### Tallying results
+
+After voting closes, a maintainer SHOULD post a tally to the motion thread with a subject template like:
+
+> [{project} {status}]: {motion description} (+{LGTMs} -{REJECTs} #{ABSTAINs})
+
+Where `{status}` is either `adopted` or `rejected`.
+For example:
+
+> [runtime-spec adopted]: Tag 0647920 as 1.0.0-rc (+6 -0 #3)
+
+[charter]: https://www.opencontainers.org/about/governance