This update for Containerd, Docker and RunC provides several fixes and enhancements.

Containerd:

- Update containerd to the version needed for docker-v17.04.0-ce. (bsc#1034053)
- Fix spurious messages filling journal. (bsc#1032769)
- Set TasksMax=infinity to make sure runC doesn't start failing randomly.

Docker:

- Update to version 17.04.0-ce. (bsc#1034053)
- Fix execids leaks due to bad error handling. (bsc#1037436)
- Make Apparmor's pkg/aaparser work on read-only root. (bsc#1037607)
- Improve Docker's systemd configuration. (bsc#1032287)
- Check if the docker binary is available before attempting to use it. (bsc#1038476)
- Build man pages for all architectures. (bsc#953182)
- Fix DNS resolution when Docker host uses 127.0.0.1 as resolver. (bsc#1034063)
- Enable Delegate=yes, since systemd will safely ignore lvalues it doesn't understand.
- Update SUSE secrets patch to handle bsc#1030702.
- Change lvm2 from Requires to Recommends: Docker usually uses a default storage driver,
when it's not configured explicitly. This default driver then depends on the underlying
system and gets chosen during installation. (bsc#1032644)
- Disable libseccomp for Leap 42.1, SLE 12 and 12-SP1, because docker needs a higher version.
Otherwise, we get the error "conditional filtering requires libseccomp version >= 2.2.1.
(bsc#1028639, bsc#1028638)
- Add a backport of fix to AppArmor lazy loading docker-exec case.
- Fix systemd TasksMax default which could throttle docker. (bsc#1026827)
- Enable pkcs11

For a comprehensive list of changes please refer to /usr/share/doc/packages/docker/CHANGELOG.md

RunC:

- Update version to the one required by docker-17.04.0-ce. (bsc#1034053)
- Make sure to ignore cgroup v2 mountpoints. (bsc#1028113)

golang-packaging:

- Remove duplicates when finding Requires.
- Set correct modifier if no arguments are provided.
- Handle extra_flags for build/test correctly.

This update rebuilds and updates number of golang packages with the new version of golang-packaging:

- golang-bitbucket-taruti-bigendian
- golang-github-cpuguy83-go-md2man
- golang-github-dchest-authcookie
- golang-github-docker-libnetwork
- golang-github-exercism-cli
- golang-github-fitstar-falcore
- golang-github-golang-geo
- golang-github-golang-glog
- golang-github-golang-protobuf
- golang-github-gorilla-context
- golang-github-gorilla-websocket
- golang-github-hoisie-httplib
- golang-github-hoisie-mustache
- golang-github-hoisie-web
- golang-github-jpoirier-cpu
- golang-github-kr-pty
- golang-github-kr-text
- golang-github-petar-gollrb
- golang-github-philio-gomysql
- golang-github-russross-blackfriday
- golang-github-shurcool-sanitized_anchor_name
- golang-googlecode-couch-go
- golang-googlecode-freetype-go
- golang-googlecode-goconf
- golang-googlecode-mango-doc
- golang-google-golangorg-appengine
- golang-gopkgin-check
- golang-org-x-crypto
- golang-org-x-debug
- golang-org-x-image
- golang-org-x-net
- golang-org-x-net-context
- golang-org-x-net-html
- golang-org-x-net-websocket
- golang-org-x-sync
- golang-org-x-sys
- golang-org-x-text
- golang-org-x-time-rate
- golang-org-x-tool

Some packages of this update were imported from the SUSE:SLE-12:Update update project.