build(deps): bump github.com/Microsoft/hcsshim from 0.8.22 to 0.9.0

[dependabot]

Bumps github.com/Microsoft/hcsshim from 0.8.22 to 0.9.0.

Release notes

Sourced from github.com/Microsoft/hcsshim's releases.

v0.9.0

What's New

• The runhcs containerd shim now supports launching Host Process containers.
• LCOW layers can now be encrypted via dmverity.
• Process dumps can now be generated for WCOW and LCOW via an OCI annotation.
• LCOW container execs now run as whatever user the container was launched as, unless the spec was overridden with a different user.
• Shared memory is now configurable via an OCI annotation.
• WCOW supports extensible virtual disks as data disks.
• LCOW supports hugepage mounts if the kernel used is built with this support.

See the Changelog for the full list of changes!

Bug Fixes

• Fix duplicate "failed" in HCS error strings.
• Get rid of redundant logs in HCN version range checks.
• HNS v1 policy schemas now have correct omitEmpty fields.

See the Changelog for the full list of changes!

Changelog

• Enable scratch space encryption via annotation by @​anmaxvl in microsoft/hcsshim#1095
• Enforce security policy at unmount by @​SeanTAllen in microsoft/hcsshim#1162
• Make policy environment variable rules consts by @​SeanTAllen in microsoft/hcsshim#1164
• Remove unused variable by @​SeanTAllen in microsoft/hcsshim#1165
• Update naming in internal security policy tool by @​SeanTAllen in microsoft/hcsshim#1166
• Rename variable in SecurityPolicyEnforcer by @​SeanTAllen in microsoft/hcsshim#1168
• Rename EnforceStartContainerPolicy by @​SeanTAllen in microsoft/hcsshim#1169
• fix vmAccess param usage in AddSCSI by @​anmaxvl in microsoft/hcsshim#1167
• Change internal data structure in SecurityPolicyEnforcer by @​SeanTAllen in microsoft/hcsshim#1171
• Update kernel driver annotation for accuracy by @​katiewasnothere in microsoft/hcsshim#1172
• Rework how working directories function for job containers by @​dcantah in microsoft/hcsshim#1137
• Add WCOW sandbox mount support by @​dcantah in microsoft/hcsshim#1087
• Add support for passing in a virtual function index to assign pci device by @​katiewasnothere in microsoft/hcsshim#1163
• Set PATHEXT for job containers to handle binaries with no extension by @​dcantah in microsoft/hcsshim#1174
• Add process dump functionality for WCOW/LCOW by @​dcantah in microsoft/hcsshim#1062
• Update json format for security policy by @​SeanTAllen in microsoft/hcsshim#1173
• Rework LCOW username setup/exec behavior by @​dcantah in microsoft/hcsshim#1178
• Refactor pod config generation in tests by @​anmaxvl in microsoft/hcsshim#1180
• tests: Fix tests that used old pullRequiredLCOWImages func name by @​anmaxvl in microsoft/hcsshim#1183
• Remove unused definitions in winapi by @​dcantah in microsoft/hcsshim#1181
• Also run tests on Windows Server 2022 GitHub Runner by @​TBBle in microsoft/hcsshim#1176
• tests: Fix ExecUser LCOW tests using old function signature by @​anmaxvl in microsoft/hcsshim#1184
• Add unit tests for computeagent by @​katiewasnothere in microsoft/hcsshim#1182
• Bump github.com/containerd/containerd from 1.5.4 to 1.5.7 in /test by @​dependabot in microsoft/hcsshim#1185
• Bump github.com/containerd/containerd from 1.5.4 to 1.5.7 by @​dependabot in microsoft/hcsshim#1186
• Add compute agent store for ncproxy reconnect by @​katiewasnothere in microsoft/hcsshim#1097
• Update names of ncproxy proxy resources with test name included by @​katiewasnothere in microsoft/hcsshim#1189
• Merge Microsoft/opengcs and Microsoft/hcsshim by @​dcantah in microsoft/hcsshim#973
• Run late clone tests on 20H2+ builds only. by @​ambarve in microsoft/hcsshim#1028
• Fix bug with VSMB & SCSI mounts on the same host path by @​ambarve in microsoft/hcsshim#1021

... (truncated)

Commits

• 2a4f814 Merge pull request #1191 from dcantah/revert_21h2
• 1628c87 Revert "Update windowsbuilds.go"
• 8dacd23 Merge pull request #1189 from katiewasnothere/update-ncproxy-resource-names
• 6ad0944 Update names of ncproxy proxy resources with test name included
• 4a1e168 Merge pull request #1097 from katiewasnothere/compute_agent_store
• bf9daee Update comments for database and reconnect, document failure cases
• ab02b15 Merge pull request #1186 from microsoft/dependabot/go_modules/github.com/cont...
• 9268c25 Update golangci build in ci pipeline
• 76a1b22 Remove deprecated runc configs device type
• 07d25d4 Bump github.com/containerd/containerd from 1.5.4 to 1.5.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[rhatdan]

LGTM