mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 12:50:22 +02:00
honister-net
1657 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
78917f0db6 |
conmon: update to v2.0.27
Bumping to 2.0.27. Also, move to a _git suffix on the recipe. We already had one bump that made the extension and PV be out of sync. Since we track this by git increments, not release or release tarballs, the _git is appropriate. The following changes are part of this update: 3efab3e Add Kubernetes e2e tests as GitHub action 0114f3c move integration to gh actions 186038c run make vendor 31c5a2e add tests running a runtime c53c155 always set container pid file 1955f59 write runtime stderr to journal on error af1f3c4 some small cleanups 6c38b5a Use less resources 355dbf1 conn_sock: fix potential segfault 4587294 ci/gha: bump runc to rc93 92867a7 Add Podman integration test GitHub action 1ec43d9 bump to v2.0.28-dev 65fad4b bump to v2.0.27 dd99302 Add CRI-O integration test GitHub action 911c786 exec: don't fail on EBADFD 3ac015e close_fds: fix close of external fds 1c7e6fb Add arm64 static build binary c3f31c0 bump to v2.0.27-dev Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4e01d2ded2 |
cri-tools: update to 1.21
Updating cri-tools. We refresh a patch, and change the recipe to capture the binary from build/bin versus _output dir. The following commits are part of this bump: e0b90a7f Increase image build timeout 8f0434e8 Add image-test builds to main cloudbuild script b796452d Add windows images to build script e1e9f853 Bump github.com/docker/docker 0cd06f41 Add hostnet-nginx image build to main script 74ccfeaf Bump k8s.io/api from 0.0.0 to 0.21.0 c98b734a Bump k8s.io/kubernetes from 0.0.0 to 0.21.4 109fb62d Bump k8s.io/kubectl from 0.0.0 to 0.21.0 534d9f03 Bump k8s.io/apimachinery from 0.0.0 to 0.21.0 8c5599a6 Bump k8s.io/cri-api from 0.0.0 to 0.21.0 8694106a Bump README versions to v1.21.0 b953f776 Update dependencies ef872c25 Add dependabot config file eaf18dae Simplify test image build process for user images afb5b62c Move from gcr.io/cri-tools to gcr.io/k8s-staging-cri-tools 1b32fe8d Fix UID/GID and username values for test images f749fc76 Bump gcb-docker-gcloud image to v20210331-c732583 916fae03 add docker.io/ prefix to image:busybox in docs/examples/ a0d17c4a Fix CRI-O master installation in GitHub actions 791ddab1 fix StartedAt and FinishedAt of the container status 2d5c2872 Fix CRI-O master installation in GitHub actions 44fd67ce Makefile: avoid rebuilding binaries 14485a8c support mips64le architecture. c8c1ebae Modify hack/release.sh script to include sha256 sum files ec31d9a2 Trigger prow job 3e939cf7 Update CRI-O to v1.20.0 Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c092e3de20 |
cri-o: update to 1.21-latest
Bumping the latest 1.21 release changes, which comprise the
following commits:
bce3e6c5f Fix tests
ec1a512ac Bump to v3.1.1-dev
9f09fb62c Bump to v3.1.0
1386f9046 Fix test failure
38bb77c5b Update release notes for v3.1.0 final release
670e1ac67 [NO TESTS NEEDED] Turn on podman-remote build --isolation
ac4bdd265 Fix long option format on docs.podman.io
96ffce219 Fix containers list/prune http api filter behaviour
e772719bf [CI:DOCS] Add note to mappings for user/group userns in build
52cd3ce2d Validate passed in timezone from tz option
633ae014e Generate Kubernetes PersistentVolumeClaims from named volumes
c9640bab7 libpod/image: unit tests: use a `registries.conf` for aliases
43c772aa2 libpod/image: unit tests: defer cleanup
396a59b02 libpod/image: unit tests: use `require.NoError`
a01b387e8 Unification of until filter across list/prune endpoints
183a68a81 Unification of label filter across list/prune endpoints
d1589f280 fixup
31351ad94 fix: build endpoint for compat API
7148544df [NO TESTS NEEDED] Remove /tmp/containers-users-* files on reboot
88672b58c Check if stdin is a term in --interactive --tty mode
23f3805df [NO TESTS NEEDED] Fix rootless volume plugins
5e3445e6e Ensure manually-created volumes have correct ownership
6b6989206 Support multi doc yaml for generate/play kube
d560f168f Correct json field name
573ed9220 Fix filters in image http compat/libpod api endpoints
1b349d79a podman generate systemd --new do not duplicate params
1089f83a4 Fix podman build --pull-never
be02c8581 man pages: correct seccomp-policy label
62b49e176 [NO TESTS NEEDED] Use same function podman-remote rmi as podman
3d1aaffdb Add problematic volume name to kube play error messages
d498022fd Fix list pods filter handling in libpod api
66b1c2bd9 [NO TESTS NEEDED] Fix for kernel without CONFIG_USER_NS
b55730180 Remove resize race condition
e7dc66d83 [NO TESTS NEEDED] Vendor in containers/buildah v1.20.0
57e0d8f29 Use TMPDIR when commiting images
505f43c08 Add RequiresMountsFor= to systemd generate
15da607d1 Fix swapped dimensions from terminal.GetSize
0127cc184 Revert go-systemd to v2.22.0
4f11517c0 Cirrus: Update configuration for v3.1 branch
834f4caaa Bump to v3.1.0-dev
1b56ea2d9 Bump to v3.1.0-rc2
1ae87ff46 Update release notes for v3.1.0-RC2
3b609a706 Bump github.com/coreos/go-systemd/v22 from 22.1.0 to 22.3.0
1dfbdd5d9 Fix system prune cmd user message with options
afce37671 System tests: reenable a bunch of skipped tests
417f36281 Cleanup /libpod/images/load handler
adf652e2a vendor: drop replace for github.com/syndtr/gocapability
e85cf8f4a security: use the bounding caps with --privileged
f46b34ecd Bump github.com/containers/common from 0.35.0 to 0.35.3
5a18b5eb7 Bump k8s.io/apimachinery from 0.20.4 to 0.20.5
aa2d6e6e6 Fix volumes and networks list/prune filters in http api
ec1651fbf Bump github.com/containers/storage from 1.25.0 to 1.28.0
1ca74b00d add a dependabot config to automate vendoring
a596d1f5d Bump github.com/onsi/ginkgo from 1.15.1 to 1.15.2
8ea02d0b6 network prune filters for http compat and libpod api
8da5fd820 test: check for io.stat existence on cgroup v2
592aae4f9 test: fix test for last crun/runc
1c873c7da test: simplify cgroup path
af3499db5 Latest crun/runc should handle blkio-weight test
82858a97c fix user message image prune --all
3d01d42f2 Docs: removing secrets is safe for in-use secrets
21f229a3d Downgrade github.com/coreos/go-systemd/v22
e8918ff10 pkg/bindings/images.Build(): fix a race condition in error reporting
310eae4ba Switch all builds to pull-never
963d19c75 System test cleanup
f4b2d597a Fix for volumes prune in http compat api
8de560703 Fix remote client timezone test
57e8c6632 Do not leak libpod package into the remote client
762148deb Split libpod/network package
955aaccc5 fix use with localhost (testing)
9251b6c8c add /auth for docker compatibility
3803d0a4a create endpoint for querying libpod networks
12fb9e465 Bump github.com/sirupsen/logrus from 1.8.0 to 1.8.1
660a72993 sdnotify tests: try real hard to kill socat processes
7b0155cf7 Fix array instead of one elem network http api
92a8d69a7 Delete all containers and pods between tests
258749e43 apiv2 tests: finally fix POST as originally intended
c9ef26071 Document CONTAINERS_CONF/CONTAINERS_STORAGE_CONF Env variables
f1eb8e816 Removing a non existing container API should return 404
dc0c72a48 Docs: Add docs to access APIs inside container
6d4899745 options: append CLI graph driver options
930bec4d3 podman load: fix error handling
1f2f7e745 podman cp: evaluate symlink correctly when copying from container
2033fa4c7 rm pkg/api/handlers/libpod/copy.go
31b11b5cd podman cp: fix copying to a non-existent dir
a61d70cf8 podman cp: fix ownership
2abfef380 podman cp: ignore EPERMs in rootless mode
d175fbfdb vendor buildah@v1.19.8
e33f52390 apiv2 tests: add helpers to start/stop a local registry
e926b5d73 Bump to v3.1.0-dev
aa9616cd4 Bump to v3.1.0-rc1
e9db60492 allow the removal of storage images
9eac4a7f7 podman-remote build does not support volumes
d1878cc67 Compat API: Avoid trying to create volumes if they already exist
7e289833e Bump github.com/onsi/gomega from 1.10.5 to 1.11.0
0e36e65ea Allow users to generate a kubernetes yaml off non running containers
80390dd18 Bump github.com/onsi/ginkgo from 1.15.0 to 1.15.1
d0d084dd8 turn hidden --trace into a NOP
320df8388 pkg/terminal: use c/storage/pkg/homedir
cc7a7568a Update nix pin with `make nixpkgs`
9e75cafd5 build-arg
326f3eda3 Handle podman build --dns-search
01ffe2c30 podman build --build-arg should fall back to environment
2c500a814 Add support for podman build --ignorefile
1a33b7648 replace local mount consts with libpod/define
e4da5096b separate file with mount consts in libpod/define
9fc29f63e Correct compat images/{name}/push response
a910f74ea [NO TESTS NEEDED] Bump pre-commit-hooks version
3ae580b0e [ci skip] Bad formatting fix in build documentation
803e58b36 Bump github.com/containernetworking/plugins to v0.9.1
d107c3729 podman-remote stop -time 0 does not work
5bb8fa30b Do not return from c.stop() before re-locking
2bcc95257 Fix for podman network rm (-f) workflow
3396343d4 Bump github.com/coreos/go-systemd/v22 from 22.1.0 to 22.2.0
efc592fba Bump github.com/containers/buildah from 1.19.6 to 1.19.7
793c52dd5 Add tests for selinux kvm/init labels
8453424e2 Respect NanoCpus in Compat Create
a090301bb podman cp: support copying on tmpfs mounts
e43385eca image removal: ignore unknown-layer errors
aa0a57f09 Fix cni teardown errors
f86d64130 Use version package to track all versions
252aec1c9 Check for supportsKVM based on basename of the runtime
53d22c779 Compat API: create volume source dirs on the host
61e626c85 Makefile: add install.docker-docs-nobuild for packaging use
81a3f8a43 Add /sys/fs/cgroup as readonly path in docs
8f2192922 Add network summary to compat ps
4eed89aca Fix possible panic with podman build --iidfile
9391bfc52 Add version field to secret compat list/inspect api
b19791c0b Tidy duplicate log tests
5df625140 Fix support for podman build --timestamp
43e899c2e Rewrite Rename backend in a more atomic fashion
91b2f07d5 Use functions and defines from checkpointctl
bf92e2111 Move checkpoint/restore code to pkg/checkpoint/crutils
bd819ef7d Vendor in checkpointctl
2c8c5393a Support label type dict on compat build
ac992e4b0 Makefile: install systemd services conditionally
63a3b8a09 podman-system-service.1.md: fix timeout example
774aea45e swagger: update the libpodPutArchive operation verb
3908c0079 Makefile: split install.docker-docs from install.docker
2f0fc2911 Bump RootlessKit v0.14.0-beta.0
8b7caa6d0 Compat api containers/json Ports field is null
14d5bd164 Bump github.com/cri-o/ocicni to latest master
7927fe01f Refactor python tests to run against python3.9
9435e5b79 APIv2 tests: make more maintainable
e9d94dc90 [CI:DOCS] Improve release process docs
375201633 podman rmi: handle corrupted storage better
d9cb135b6 Enable cgroupsv2 rw mount via security-opt unmask
cc679d952 podman-image-sign.1.md: typo fix
f54ed7269 compat api network ls accept both format options
680dacaea Enable no_hosts from containers.conf
fcce1da1b Correct compat images/create?fromImage response
ba319e3ba [Compat API] Also print successfully tagging images in /build endpoint
43d010bd0 Fix parsing of Tmpfs field in compat create
24d9bda7f prune remotecommand dependency
bee21f1e4 system test image: build it multiarch
ef549235e Updated based on Jhonce comments
ccbe4ff73 updated common to 0.35.0
836bfebb4 Refactored file
1aa96ed2e swagger: removes the schema type for PodSpecGenerator $ref
431f75519 podman-system-connection.1.md: fix copy/paste error
90050671b Add dns search domains from cni response to resolv.conf
f152f9cf0 Network connect error if net mode is not bridge
fc32ec768 Sort CapDrop in inspect to guarantee order
79eaadd3f podman upgrade tests
3947feb4b test: ignore named hierarchies for cgroups=split
e5ac28f3b container removal: handle already removed containers
a775c5920 Bump github.com/rootless-containers/rootlesskit from 0.13.1 to 0.13.2
0ab32d11d Bump k8s.io/apimachinery from 0.20.3 to 0.20.4
874f2327e Add U volume flag to chown source volumes
fcf669fd9 Replace Labels and Options nulls with {} in NetworkResource
4875a8fb4 Cirrus: Temp. disable prior-fedora (F32) testing
f3a8e3324 podman cp: test /dev/stdin correctly
8577be72e podman cp: treat /dev/stdout correctly
e87c5b6c1 cgroup: change cgroup deletion logic on v1
9d818be73 Fix podman network IDs handling
d9655b0f0 pr-should-include-tests: recognized "renamed" tests
d2f3098c6 --no-header flag implementation for generate systemd
af7a68fa8 [NO TESTS NEEDED] Make binding util internal
c236aebb9 Two variations of --new flag added to e2e
a2e1b3eab swagger: add missing schema properties
5dded6fae bump go module to v3
d333ef82b Fix 'storage.options' indent
d886cd930 Bump github.com/sirupsen/logrus from 1.7.1 to 1.8.0
b40d778f4 Bump github.com/containers/buildah from 1.19.4 to 1.19.6
05eb06f56 Turn on journald and k8s file logging tests
f06dd45e0 Allow podman play kube to read yaml file from stdin
43a581904 Log working dir when chdir fails
d6b0b5412 Fix segfault in run with memory-swap
e1ad50654 leak fix in rootless_linux.c fcn can_use_shortcut
612ba6aa8 Fix journald logs with more than 1 container
9016387bb Fix journald logs --follow
f2d057c94 Fix journald logs --since
fbc50e528 fix journald logs --tail 0
cf2a55189 [CI:DOCS]basic networking guide
71689052a cp: treat "." and "/." correctly
caa0bc157 [CI:DOCS] [NO TESTS NEEDED] Update swagger doc for libpod container wait
31eca5c20 Bump k8s.io/apimachinery from 0.20.2 to 0.20.3
e022c1975 Don't switch on a single case
3e168b19f Quote URL
b3f9559c8 bindings: support simple types that implement fmt.Stringer interface
9699e81a0 API: fix libpod's container wait endpoint condition conversion
a9d548bf7 Change source path resolution for volume copy-up
e2d5a1d05 podman ps --format '{{ .Size }}' requires --size option
12b6342c3 infra: downgrade warning to debug
12a577aea Ignore entrypoint=[\"\"]
684290725 Bump github.com/sirupsen/logrus from 1.7.0 to 1.7.1
68a8d397c Add missing early returns in compat API
5d1ec2960 Do not reset storage when running inside of a container
958f90143 podman kill should report rawInput not container id
759fc9334 Fix an issue where copyup could fail with ENOENT
2ec0e3b65 do not set empty $HOME
2a21ecafa images/create: always pull image
f2f18768a Fix panic in pod creation
0fd480708 Bump github.com/rootless-containers/rootlesskit from 0.13.0 to 0.13.1
2845f7b83 podman build: pass runtime to buildah
39c1fdb15 correct startup error message
690c02f60 Add missing params for podman-remote build
a532994f8 Fix typo podman run doc in flag -pid=mode "efault"
4a9bd7a18 When stopping a container, print rawInput
714acf326 fix create container: handle empty host port
3d50393f0 Don't chown workdir if it already exists
bf083c185 Fix broken podman generate systemd --new with pods
227c54813 fix dns resolution on ubuntu
0ab5bfd31 e2e: fix network alias test
704fa8b55 fix failing image e2e test
9a24d5098 Update troubleshooting.md
6ffd05d0b [NO TESTS NEEDED] Refactor generated code
2c31f3839 Fix superfluous response.WriteHeader call in WaitContainerLibpod()
4067f3a4d change ps Created to unix
78b419909 Enable more golangci-lint linters
adfcb7460 make layer-tree lookup errors non-fatal
78c8a8736 Enable whitespace linter
69ab67bf9 Enable golint linter
ef2fc90f2 Enable stylecheck linter
40c3c972d Update Master to reflect the 3.0 release
660a06f2f utils: takes the longest path on cgroup v1
5f999b6bc container ps json format miscue
8e2fae186 Bump github.com/spf13/cobra from 1.1.2 to 1.1.3
1b5f3ed24 utils: create parent cgroups
9196a5ce3 utils: ignore unified on cgroupv1 if not present
f4fd25a00 utils: skip empty lines
f28b08fe9 Correct compat network prune response
5ccb1596b Display correct value for unlimited ulimit
fdf39e169 apiv2: handle docker-java clients pulling
ea910fc53 Rewrite copy-up to use buildah Copier
31b2b2cc2 bump to v3.1.0-dev
68133414f [NO TESTS NEEDED] Update linter
46b014bad Bump github.com/spf13/cobra from 1.1.1 to 1.1.2
1cc387bf7 Add shell completion tests for secrets
f4ece018b Docker APIv2 push sends digest in response body
f2a856203 Fix compat networks endpoint for a empty result
21deafba8 hardening flags for fedora rpmbuilds
e15e170ac [CI:DOCS]First pass at release process
46385dd60 Restart service when CONTAINERS_CONF changes
cc846a8cd Support annotations from containers.conf
68414537c vendor github.com/containers/image v5.10.2
ea704da72 APIv2 tests: lots of cleanup
721a1e104 Fix Docker APIv2 push endpoint
48c612cf6 generate kube: support --privileged
08d8290f1 Bump github.com/containers/ocicrypt from 1.0.3 to 1.1.0
832a69b0b Implement Secrets
45981ba29 Bump containers/buildah to v1.19.4
1caace8f4 Allow path completion for podman create/run --rootfs
6c75419a8 Cirrus: Send cirrus-cron report e-mail to list.
feecdf919 make `podman rmi` more robust
407e86dcd Implement missing arguments for podman build
3c3e644c1 vendor latest containers/common
91ea3fabd add network prune
821ef6486 fix logic when not creating a workdir
002f2aca7 Bump remote API version to 3.0.0
6c713984e play kube selinux test case
5c6ab3075 Fix podman network disconnect wrong NetworkStatus number
05444cb2c Fix per review request
c995b5460 generate kube: handle entrypoint
96adf0e2a play kube selinux test case
2b8d6ca09 Increase timeouts in some tests
3c57bc845 Add test for Docker APIv2 wait
4a219aa23 Implement Docker wait conditions
fc385806d Improve ContainerEngine.ContainerWait()
570e1587d Improve container libpod.Wait*() functions
6a6e86829 Cirrus: Collect ginkgo node logs artifacts
ebc42f508 Bump github.com/containers/storage from 1.24.5 to 1.25.0
9dc795191 Bump github.com/containernetworking/cni from 0.8.0 to 0.8.1
bc149a4dd bindings: attach: warn correct error
d87f54fbb Fix invalid wait condition on kill
dfa9a340a Makefile: make bin/* real targets!
3d105015f typo
c40cd1be9 Bump github.com/onsi/gomega from 1.10.4 to 1.10.5
bda95bdb6 Update nix pin with `make nixpkgs`
1c50e09b0 System test for #9096 (truncated stdout)
432ee04c5 play kube selinux label test case
e0bc8ffb5 Gating tests: diff test: workaround for RHEL8 failure
bde23a021 [NO TESTS NEEDED] style: indendation
89df89b5f [NO TESTS NEEDED] fixup: remove debug code
7e4d696d9 Report StatusConflict on Pod opt partial failures
bd0e22ed1 Honor network options for macvlan networks
095919680 Make slirp MTU configurable (network_cmd_options)
ac3bd4c33 [NO TESTS NEEDED] Generated files
5a746c08f [NO TESTS NEEDED] Improve generator
c68b59f97 play kube selinux label issue
e9f936a29 Makefile: refactor ginkgo * ginkgo-remote
931ea939a Allow pods to use --net=none
323ab314e Bump github.com/onsi/ginkgo from 1.14.2 to 1.15.0
077fd670b Update release notes for v3.0.0
ee8ee651d New 'make completions' target
e11d8f15e add macvlan as a supported network driver
5352df226 Fix podman generate systemd --new special char handling
eaafd975a Bump github.com/rootless-containers/rootlesskit from 0.12.0 to 0.13.0
51c11fea8 Endpoint that lists containers does not return correct Status value
3cfd4ce45 Fix --network parsing for podman pod create
9b5b03d1e list volumes before pruning
4a6d042c2 Docker ignores mount flags that begin with constency
cdbbc6120 podman generate kube ignores --network=host
073f76c13 Switch podman stop/kill/wait handlers to use abi
b842d97f5 [CI:DOCS]build instructions for macOS
280f332bd Vendor in containers/buildah v1.19.3
ca0dd76bf Honor custom DNS in play|generate kube
d7c356552 Podman-remote push can support --format
b74f939fb Bump github.com/containers/image/v5 from 5.10.0 to 5.10.1
8d979e093 Cirrus: Build static podman-remote
c0bf0ba9e podman build --pull: refine help message and docs
c450092fd Revert "podman build --pull: use correct policy"
75c3b3389 Bump github.com/containers/image/v5 from 5.9.0 to 5.10.0
59076888d Cleanup bindings for image pull
89bb8a9b3 Don't fail if one of the cgroups is not setup
1fac43654 Add support for rootless network-aliases
c717b3cac Allow static ip and mac with rootless cni network
15caebfe5 podman build --pull: use correct policy
bfc1b66be Cirrus: Fix running Validate task on branches
f8bf509d1 Fix static build cache by using cachix
84f7bdc4d Switch podman image push handlers to use abi
fee2fadc3 e2e tests: synchronize test results
21cb3043f podman-remote ps --external --pod --sort do not work.
f79d68eea Fix podman history --no-trunc for the CREATED BY field
c63599d36 remote exec: write conmon error on hijacked connection
e9f4fb975 Fix #9100 Change console mode message to debug
02ec5299f Add default net info in container inspect
1ae410d19 Ensure the Volumes field in Compat Create is honored
35c89ccc5 [CI:DOCS]update state of restful service
0f668aa08 workdir presence checks
7b186dcb9 libpod: add (*Container).ResolvePath()
74a63df05 Fixup search
97f5e9458 Pass DefaultMountsFile to podman build
5350254f0 Ensure shutdown handler access is syncronized
33179c281 System tests: cover gaps from the last month
5623cb9d3 Fix --arch and --os flags to work correctly
a86d23c75 Bump github.com/google/uuid from 1.1.5 to 1.2.0
75698b4b7 Fix typo
393a8f026 disable dnsname when --internal
ef76b92b8 swagger.go: Fix compilation error
8c1768e38 Fix fish completion issue if the command is prefixed with a space
a457c5c92 Bump golang.org/x/crypto
0ba1942f2 networking: lookup child IP in networks
c182091b0 Small API test improvement for compatibility search endpoint
6e6a38b41 podman manifest exists
c9baa6b93 Accept and ignore 'null' as value for X-Registry-Auth
4b8df5903 Turn on some remote test
94f96c78a Add a notice to remove pod before starting service
ef654941d libpod: move slirp magic IPs to consts
5e65f0ba3 rootlessport: set source IP to slirp4netns device
37319dec1 vendor: update rootlesskit to v0.12.0
2fa67fe4b api: fix import image swagger definition
9d31fed5f podman volume exists
4e4d318b7 Cirrus: Upload swagger YAML in every context
dbb99433d [CI:DOCS] Cirrus: Skip smoke task on branch-push
836fa4c49 Move the cni lock file into the cni config dir
c1cd512cb Use random network names in the e2e tests
3fedb2b6d [CI:DOCS] Update project name in Code of Conduct
f43046745 Set log driver for compatability containers
c3cbaa355 Make generate systemd --new robust against double curly braces
6518391e8 Fix man page for fuse-overlayfs config in rootless mode
a3621a7cf Cirrus: add bindings checks
e7df73efa Fix handling of container remove
41a7e11c7 make bindings generation explicit
f302ce578 make bindings generation more robuts
175fc3867 Revert "ginkgo: install on demand via `go get -u`"
37abec240 [CI:DOCS] fix go-md2man HTMLSpan warnings
9f6bb3563 CI: smoke test: insist on adding tests on PRs
a45d22a1d podman network exists
de05e5816 ginkgo: install on demand via `go get -u`
d2ee3d815 runner.sh : deal with bash 'set -e'
4ccb0729b Add binding options for container|pod exists
683bab03f [CI:DOCS]Do not run compose tests with CI:DOCS
2df59829e simplify bindings generation
462994268 make: generate bindings: use vendor
caaaa2c5e hack/install_golangci.sh: smarter install
f38b7f48c golangci-lint: install to ./bin
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cd75395b16 |
k8s: move to 1.21 release
Updating kubernetes to the 1.21 release. Minor build changes and patch refreshes were required. The changelog is massive, so we won't list it here. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
77f8a0b4d4 |
k3s: update to v1.20.6
Bumping to the latest 1.20.x release, which comprises the following commits: b06a5ffc2f Update to v1.20.6 77390596e6 add cloud controller manager fixes from master ef28edaf9a Update to v1.20.6 1521e3b085 Resolve local retention issue when S3 in use. 221c9ae589 add hidden attribute to disable flags 9a572ecae0 delete nocluster file and remove build tag 3f73665131 remove hidden attribute from cluster flags and related code 29f6275aae add etcd s3 secret and access key flags and env vars to secret data 355fff3017 Update to Kubernetes v1.20.5 (#3094) c09142a3a7 put etcd bootstrap save call in goroutine and update comment a2b1d28c68 [release 1.20] containerd: v1.4.4-k3s1 (#3086) 62839b302a remove duplicate method 0167f86f5d Have Bootstrap Data Stored in etcd at Completed Start (#3038) 1da86eaa0b Etcd Snapshot/Restore to/from S3 Compatible Backends (#2902) 0a3360fc6f Add ability to perform an etcd on-demand snapshot via cli (#2819) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
47cb6b4e18 |
containerd: update to v1.5.x series
Bumping containerd to the 1.5.x development series. We refresh patches and add new build dependencies, but otherwise the overall structure is the same. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
2cc2bc1acf |
docker-ce: update to v20.10-beta
moby has moved on to the 20.10+ series, while docker-ce has stayed behind a bit. Master of docker-ce now has imports from moby and is getting ready for release. To keep our variants from diverging, we switch to master (for now) and will track the new development. We adapt some patches from the moby build to work for docker-ce, in particular, we cannot use docker to build docker, so we port the cli building from moby. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
34087227ee |
docker/moby: update to 20.10.6
Bumping to the lastet 20.10 series. This includes the following moby commits: 255c79a1e8 Move cgroup v2 out of experimental f2c0b3688a Pin arm64 machines to a specific Ubuntu version 29ff2af2d3 Fix flaky TestInspect 60310e2409 Use docker media type for plugin layers 8088859bab btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18) d22dde8eb1 rootless: fix getCurrentOOMScoreAdj c1e7924f7c archive: do not use overlayWhiteoutConverter for UserNS 22dc1597b9 overlay2: doesSupportNativeDiff: add fast path for userns daae27bfce overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true e974cb638c rootless: bind mount: fix "operation not permitted" 7022b1e12e bump up rootlesskit to v0.14.1 88470052e7 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46 d26ed2c33b fix assertPortList normalizing being too strict 915b239519 builder: produce error when using unsupported Dockerfile option ef2351b416 integration-cli: rely less on "docker port" output format 86d98f5711 integration: update getExternalAddress to prefer IPv4 b41e2d4dc1 integration/container: wrap some long lines for readability 407a61cdb2 hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7 a35e1f451e update rootlesskit to v0.14.0 9780942e20 Remove cli test for duplicate --net/--network opts e1ee2823ec TestPushMultipleTags: Add support for 20.10 CLI 969bde2009 jsonfile: more defensive reader implementation cb501700e8 Fix handling for json-file io.UnexpectedEOF 2d39a44c1c overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0 95d2b686be overlay2: support "userxattr" option (kernel 5.11) 074270703c Use buster backports to build with libseccomp-2.4.4 fed6ba2790 Include VPNkit binary for arm64 2ab3cd8c9e update containerd binary to v1.4.4 d3188dc164 Dockerfile: switch to "stable" dockerfile front-end 98273a606a dockerd-rootless-setuptool.sh: create CLI context "rootless" a0670c6d3d pkg/archive: TestUntarParentPathPermissions requires root 04d9b581e9 Update documentation links 1015b5b438 dockerd-rootless.sh: prohibit running as root 35f5f9e624 builder: fix incorrect cache match for inline cache with empty layers 3ce37a6aa4 vendor: github.com/moby/buildkit v0.8.2 5e8c1b4f7d dockerd-rootless.sh: add typo guard a24d92f95b check-config.sh: add NETFILTER_XT_MARK 80019e1b0e builder: fix blobs releasing via leases after pull 2a220f1f3d Update Swarmkit to pick up fixes to heartbeat period and stalled tasks da1a672102 builder: fix pull synchronization regression 0e001154f9 Check the length of the correct variable #42039 3beb2e4422 Move cpu variant checks into platform matcher 0caf485abb Fallback to manifest list when no platform match a6a88b3145 profiles: seccomp: update to Linux 5.11 syscall list e3750357a5 builder: ensure libnetwork state file do not leak ab5711e619 Fix builder inconsistent error on buggy platform df2a989769 Add shim config for custom runtimes for plugins d13e162a63 Handle long log messages correctly on SizedLogger 34446d0343 replace json.Unmarshal with NewFromJSON in Create c00fb1383f docs: fix double "the" in existing API versions b7e6803ec4 swagger.yaml: Remove extra 'the' wrapped by newline 420de4c569 contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT 8412078b1e contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED bb0866f04e contrib/check-config.sh: fix MEMCG_SWAP_ENABLED db47bec3c7 contrib/check-config.sh: fix NF_NAT_NEEDED 6bc47ca4b4 contrib/check-config.sh: fix NF_NAT_IPV4 491642e696 contrib/check-config.sh: support for cgroupv2 cda6988478 Fix Error in daemon_unix.go and docker_cli_run_unit_test.go 1640d7b986 Fix daemon panic when starting container with invalid device cgroup rule 6e3f2acdac docs: fix NanoCPUs casing ad777ff3bc api: fix NanoCPUs casing in swagger 94d2467613 Fix userns-remap option when username & UID match acb8a48a3c update runc binary to v1.0.0-rc93 5d442b1cb7 pkg/archive: Unpack() use 0755 permissions for missing directories 5db18e0aba archive: avoid creating parent dirs for XGlobalHeader 94feac18d2 Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses cc377d27ac Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind) fc07fecfb5 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed f7893961de TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name d31b2141ae Jenkinsfile: add cgroup2 5de9bc7e01 TestInspectOomKilledTrue: skip on cgroup v2 ff49cb3e33 Dockerfile.simple: Fix compile docker binary error with btrfs 49e706e14c Dockerfile.buildx: update buildx to v0.5.1 0211909bde testing: update docker-py 4.4.1 faf6442f80 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image f0e526f43e Make test work with rootless mode a287e76e15 pkg/archive: allow mknodding FIFO inside userns And the following cli commits: dc017bdda bake: remove windows targets other than windows/amd64 feb6f439e Makefile: have binary, cross, dynbinary targets not use docker for backwards compat 8bc4062fc set default version from git 84cc7d87c update readme with new examples c1c3d3b3a remove unused targets 048a84614 update circleci cross target 33dacda24 add windows/arm64 target fcc05e5ea update windows resources generation 58061d25f dockerfile based binary building 4c3b87d92 config.Load() remove unneeded locks 019609872 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202 6ebf76504 vendor: update notary to 5f1f4a34 f508ce9db vendor: github.com/theupdateframework/notary v0.7.0 2c0435431 docs: remove trailing spaces to prevent yamldocs using "compact" notation ff945151e docs: improve example for "remove all stopped containers" 4571d90f2 config: print deprecation warning when falling back to ~/.dockercfg f33a69f6e [20.10] Revert "Ignore SIGURG on Linux." d6eeeb625 service rollback: always verify state 3e157d529 docker service rollback: fix non-zero exit code in some cases 1fdf84b8e fix --update-order and --rollback-order flags 376b99c6d Rename bin/md2man to bin/go-md2man 0de4e6e9a Fix reading context and dockerfile from stdin with BuildKit de40c2b17 Fix panic when failing to get DefaultAuthConfig d513e46bf cli/config: prevent warning if HOME is not set 2b74b90ef Add docs and completion for docker node ls --filter node.label 05343b36a fix docker-run man page table formatting f90db254d docs: Fix wrong variable name 0dcfdde33 Removed format flag for inspect 03cd1dc50 Added zsh completion for docker context subcommands 42811a7eb docs: add redirect for old reference URL be966aa19 docs: fix typo in deprecated.md b22fe0fb1 deprecate blkio-weight options with cgroups v1 4eb050071 Update bash completion for fluentd --log-options 08c4fdfa7 Add bash completion for `dockerd --ip6tables` 6aa1b37c8 Add bash completion for `docker run|create --pull` e82920d76 Remove duplicate word in push.md 82123939f Add bash completion for jobs Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0134bf3a20 |
podman: update to v3.1
Bumping to v3.1, which comprises the following commits:
bce3e6c5f Fix tests
ec1a512ac Bump to v3.1.1-dev
9f09fb62c Bump to v3.1.0
1386f9046 Fix test failure
38bb77c5b Update release notes for v3.1.0 final release
670e1ac67 [NO TESTS NEEDED] Turn on podman-remote build --isolation
ac4bdd265 Fix long option format on docs.podman.io
96ffce219 Fix containers list/prune http api filter behaviour
e772719bf [CI:DOCS] Add note to mappings for user/group userns in build
52cd3ce2d Validate passed in timezone from tz option
633ae014e Generate Kubernetes PersistentVolumeClaims from named volumes
c9640bab7 libpod/image: unit tests: use a `registries.conf` for aliases
43c772aa2 libpod/image: unit tests: defer cleanup
396a59b02 libpod/image: unit tests: use `require.NoError`
a01b387e8 Unification of until filter across list/prune endpoints
183a68a81 Unification of label filter across list/prune endpoints
d1589f280 fixup
31351ad94 fix: build endpoint for compat API
7148544df [NO TESTS NEEDED] Remove /tmp/containers-users-* files on reboot
88672b58c Check if stdin is a term in --interactive --tty mode
23f3805df [NO TESTS NEEDED] Fix rootless volume plugins
5e3445e6e Ensure manually-created volumes have correct ownership
6b6989206 Support multi doc yaml for generate/play kube
d560f168f Correct json field name
573ed9220 Fix filters in image http compat/libpod api endpoints
1b349d79a podman generate systemd --new do not duplicate params
1089f83a4 Fix podman build --pull-never
be02c8581 man pages: correct seccomp-policy label
62b49e176 [NO TESTS NEEDED] Use same function podman-remote rmi as podman
3d1aaffdb Add problematic volume name to kube play error messages
d498022fd Fix list pods filter handling in libpod api
66b1c2bd9 [NO TESTS NEEDED] Fix for kernel without CONFIG_USER_NS
b55730180 Remove resize race condition
e7dc66d83 [NO TESTS NEEDED] Vendor in containers/buildah v1.20.0
57e0d8f29 Use TMPDIR when commiting images
505f43c08 Add RequiresMountsFor= to systemd generate
15da607d1 Fix swapped dimensions from terminal.GetSize
0127cc184 Revert go-systemd to v2.22.0
4f11517c0 Cirrus: Update configuration for v3.1 branch
834f4caaa Bump to v3.1.0-dev
1b56ea2d9 Bump to v3.1.0-rc2
1ae87ff46 Update release notes for v3.1.0-RC2
3b609a706 Bump github.com/coreos/go-systemd/v22 from 22.1.0 to 22.3.0
1dfbdd5d9 Fix system prune cmd user message with options
afce37671 System tests: reenable a bunch of skipped tests
417f36281 Cleanup /libpod/images/load handler
adf652e2a vendor: drop replace for github.com/syndtr/gocapability
e85cf8f4a security: use the bounding caps with --privileged
f46b34ecd Bump github.com/containers/common from 0.35.0 to 0.35.3
5a18b5eb7 Bump k8s.io/apimachinery from 0.20.4 to 0.20.5
aa2d6e6e6 Fix volumes and networks list/prune filters in http api
ec1651fbf Bump github.com/containers/storage from 1.25.0 to 1.28.0
1ca74b00d add a dependabot config to automate vendoring
a596d1f5d Bump github.com/onsi/ginkgo from 1.15.1 to 1.15.2
8ea02d0b6 network prune filters for http compat and libpod api
8da5fd820 test: check for io.stat existence on cgroup v2
592aae4f9 test: fix test for last crun/runc
1c873c7da test: simplify cgroup path
af3499db5 Latest crun/runc should handle blkio-weight test
82858a97c fix user message image prune --all
3d01d42f2 Docs: removing secrets is safe for in-use secrets
21f229a3d Downgrade github.com/coreos/go-systemd/v22
e8918ff10 pkg/bindings/images.Build(): fix a race condition in error reporting
310eae4ba Switch all builds to pull-never
963d19c75 System test cleanup
f4b2d597a Fix for volumes prune in http compat api
8de560703 Fix remote client timezone test
57e8c6632 Do not leak libpod package into the remote client
762148deb Split libpod/network package
955aaccc5 fix use with localhost (testing)
9251b6c8c add /auth for docker compatibility
3803d0a4a create endpoint for querying libpod networks
12fb9e465 Bump github.com/sirupsen/logrus from 1.8.0 to 1.8.1
660a72993 sdnotify tests: try real hard to kill socat processes
7b0155cf7 Fix array instead of one elem network http api
92a8d69a7 Delete all containers and pods between tests
258749e43 apiv2 tests: finally fix POST as originally intended
c9ef26071 Document CONTAINERS_CONF/CONTAINERS_STORAGE_CONF Env variables
f1eb8e816 Removing a non existing container API should return 404
dc0c72a48 Docs: Add docs to access APIs inside container
6d4899745 options: append CLI graph driver options
930bec4d3 podman load: fix error handling
1f2f7e745 podman cp: evaluate symlink correctly when copying from container
2033fa4c7 rm pkg/api/handlers/libpod/copy.go
31b11b5cd podman cp: fix copying to a non-existent dir
a61d70cf8 podman cp: fix ownership
2abfef380 podman cp: ignore EPERMs in rootless mode
d175fbfdb vendor buildah@v1.19.8
e33f52390 apiv2 tests: add helpers to start/stop a local registry
e926b5d73 Bump to v3.1.0-dev
aa9616cd4 Bump to v3.1.0-rc1
e9db60492 allow the removal of storage images
9eac4a7f7 podman-remote build does not support volumes
d1878cc67 Compat API: Avoid trying to create volumes if they already exist
7e289833e Bump github.com/onsi/gomega from 1.10.5 to 1.11.0
0e36e65ea Allow users to generate a kubernetes yaml off non running containers
80390dd18 Bump github.com/onsi/ginkgo from 1.15.0 to 1.15.1
d0d084dd8 turn hidden --trace into a NOP
320df8388 pkg/terminal: use c/storage/pkg/homedir
cc7a7568a Update nix pin with `make nixpkgs`
9e75cafd5 build-arg
326f3eda3 Handle podman build --dns-search
01ffe2c30 podman build --build-arg should fall back to environment
2c500a814 Add support for podman build --ignorefile
1a33b7648 replace local mount consts with libpod/define
e4da5096b separate file with mount consts in libpod/define
9fc29f63e Correct compat images/{name}/push response
a910f74ea [NO TESTS NEEDED] Bump pre-commit-hooks version
3ae580b0e [ci skip] Bad formatting fix in build documentation
803e58b36 Bump github.com/containernetworking/plugins to v0.9.1
d107c3729 podman-remote stop -time 0 does not work
5bb8fa30b Do not return from c.stop() before re-locking
2bcc95257 Fix for podman network rm (-f) workflow
3396343d4 Bump github.com/coreos/go-systemd/v22 from 22.1.0 to 22.2.0
efc592fba Bump github.com/containers/buildah from 1.19.6 to 1.19.7
793c52dd5 Add tests for selinux kvm/init labels
8453424e2 Respect NanoCpus in Compat Create
a090301bb podman cp: support copying on tmpfs mounts
e43385eca image removal: ignore unknown-layer errors
aa0a57f09 Fix cni teardown errors
f86d64130 Use version package to track all versions
252aec1c9 Check for supportsKVM based on basename of the runtime
53d22c779 Compat API: create volume source dirs on the host
61e626c85 Makefile: add install.docker-docs-nobuild for packaging use
81a3f8a43 Add /sys/fs/cgroup as readonly path in docs
8f2192922 Add network summary to compat ps
4eed89aca Fix possible panic with podman build --iidfile
9391bfc52 Add version field to secret compat list/inspect api
b19791c0b Tidy duplicate log tests
5df625140 Fix support for podman build --timestamp
43e899c2e Rewrite Rename backend in a more atomic fashion
91b2f07d5 Use functions and defines from checkpointctl
bf92e2111 Move checkpoint/restore code to pkg/checkpoint/crutils
bd819ef7d Vendor in checkpointctl
2c8c5393a Support label type dict on compat build
ac992e4b0 Makefile: install systemd services conditionally
63a3b8a09 podman-system-service.1.md: fix timeout example
774aea45e swagger: update the libpodPutArchive operation verb
3908c0079 Makefile: split install.docker-docs from install.docker
2f0fc2911 Bump RootlessKit v0.14.0-beta.0
8b7caa6d0 Compat api containers/json Ports field is null
14d5bd164 Bump github.com/cri-o/ocicni to latest master
7927fe01f Refactor python tests to run against python3.9
9435e5b79 APIv2 tests: make more maintainable
e9d94dc90 [CI:DOCS] Improve release process docs
375201633 podman rmi: handle corrupted storage better
d9cb135b6 Enable cgroupsv2 rw mount via security-opt unmask
cc679d952 podman-image-sign.1.md: typo fix
f54ed7269 compat api network ls accept both format options
680dacaea Enable no_hosts from containers.conf
fcce1da1b Correct compat images/create?fromImage response
ba319e3ba [Compat API] Also print successfully tagging images in /build endpoint
43d010bd0 Fix parsing of Tmpfs field in compat create
24d9bda7f prune remotecommand dependency
bee21f1e4 system test image: build it multiarch
ef549235e Updated based on Jhonce comments
ccbe4ff73 updated common to 0.35.0
836bfebb4 Refactored file
1aa96ed2e swagger: removes the schema type for PodSpecGenerator $ref
431f75519 podman-system-connection.1.md: fix copy/paste error
90050671b Add dns search domains from cni response to resolv.conf
f152f9cf0 Network connect error if net mode is not bridge
fc32ec768 Sort CapDrop in inspect to guarantee order
79eaadd3f podman upgrade tests
3947feb4b test: ignore named hierarchies for cgroups=split
e5ac28f3b container removal: handle already removed containers
a775c5920 Bump github.com/rootless-containers/rootlesskit from 0.13.1 to 0.13.2
0ab32d11d Bump k8s.io/apimachinery from 0.20.3 to 0.20.4
874f2327e Add U volume flag to chown source volumes
fcf669fd9 Replace Labels and Options nulls with {} in NetworkResource
4875a8fb4 Cirrus: Temp. disable prior-fedora (F32) testing
f3a8e3324 podman cp: test /dev/stdin correctly
8577be72e podman cp: treat /dev/stdout correctly
e87c5b6c1 cgroup: change cgroup deletion logic on v1
9d818be73 Fix podman network IDs handling
d9655b0f0 pr-should-include-tests: recognized "renamed" tests
d2f3098c6 --no-header flag implementation for generate systemd
af7a68fa8 [NO TESTS NEEDED] Make binding util internal
c236aebb9 Two variations of --new flag added to e2e
a2e1b3eab swagger: add missing schema properties
5dded6fae bump go module to v3
d333ef82b Fix 'storage.options' indent
d886cd930 Bump github.com/sirupsen/logrus from 1.7.1 to 1.8.0
b40d778f4 Bump github.com/containers/buildah from 1.19.4 to 1.19.6
05eb06f56 Turn on journald and k8s file logging tests
f06dd45e0 Allow podman play kube to read yaml file from stdin
43a581904 Log working dir when chdir fails
d6b0b5412 Fix segfault in run with memory-swap
e1ad50654 leak fix in rootless_linux.c fcn can_use_shortcut
612ba6aa8 Fix journald logs with more than 1 container
9016387bb Fix journald logs --follow
f2d057c94 Fix journald logs --since
fbc50e528 fix journald logs --tail 0
cf2a55189 [CI:DOCS]basic networking guide
71689052a cp: treat "." and "/." correctly
caa0bc157 [CI:DOCS] [NO TESTS NEEDED] Update swagger doc for libpod container wait
31eca5c20 Bump k8s.io/apimachinery from 0.20.2 to 0.20.3
e022c1975 Don't switch on a single case
3e168b19f Quote URL
b3f9559c8 bindings: support simple types that implement fmt.Stringer interface
9699e81a0 API: fix libpod's container wait endpoint condition conversion
a9d548bf7 Change source path resolution for volume copy-up
e2d5a1d05 podman ps --format '{{ .Size }}' requires --size option
12b6342c3 infra: downgrade warning to debug
12a577aea Ignore entrypoint=[\"\"]
684290725 Bump github.com/sirupsen/logrus from 1.7.0 to 1.7.1
68a8d397c Add missing early returns in compat API
5d1ec2960 Do not reset storage when running inside of a container
958f90143 podman kill should report rawInput not container id
759fc9334 Fix an issue where copyup could fail with ENOENT
2ec0e3b65 do not set empty $HOME
2a21ecafa images/create: always pull image
f2f18768a Fix panic in pod creation
0fd480708 Bump github.com/rootless-containers/rootlesskit from 0.13.0 to 0.13.1
2845f7b83 podman build: pass runtime to buildah
39c1fdb15 correct startup error message
690c02f60 Add missing params for podman-remote build
a532994f8 Fix typo podman run doc in flag -pid=mode "efault"
4a9bd7a18 When stopping a container, print rawInput
714acf326 fix create container: handle empty host port
3d50393f0 Don't chown workdir if it already exists
bf083c185 Fix broken podman generate systemd --new with pods
227c54813 fix dns resolution on ubuntu
0ab5bfd31 e2e: fix network alias test
704fa8b55 fix failing image e2e test
9a24d5098 Update troubleshooting.md
6ffd05d0b [NO TESTS NEEDED] Refactor generated code
2c31f3839 Fix superfluous response.WriteHeader call in WaitContainerLibpod()
4067f3a4d change ps Created to unix
78b419909 Enable more golangci-lint linters
adfcb7460 make layer-tree lookup errors non-fatal
78c8a8736 Enable whitespace linter
69ab67bf9 Enable golint linter
ef2fc90f2 Enable stylecheck linter
40c3c972d Update Master to reflect the 3.0 release
660a06f2f utils: takes the longest path on cgroup v1
5f999b6bc container ps json format miscue
8e2fae186 Bump github.com/spf13/cobra from 1.1.2 to 1.1.3
1b5f3ed24 utils: create parent cgroups
9196a5ce3 utils: ignore unified on cgroupv1 if not present
f4fd25a00 utils: skip empty lines
f28b08fe9 Correct compat network prune response
5ccb1596b Display correct value for unlimited ulimit
fdf39e169 apiv2: handle docker-java clients pulling
ea910fc53 Rewrite copy-up to use buildah Copier
31b2b2cc2 bump to v3.1.0-dev
68133414f [NO TESTS NEEDED] Update linter
46b014bad Bump github.com/spf13/cobra from 1.1.1 to 1.1.2
1cc387bf7 Add shell completion tests for secrets
f4ece018b Docker APIv2 push sends digest in response body
f2a856203 Fix compat networks endpoint for a empty result
21deafba8 hardening flags for fedora rpmbuilds
e15e170ac [CI:DOCS]First pass at release process
46385dd60 Restart service when CONTAINERS_CONF changes
cc846a8cd Support annotations from containers.conf
68414537c vendor github.com/containers/image v5.10.2
ea704da72 APIv2 tests: lots of cleanup
721a1e104 Fix Docker APIv2 push endpoint
48c612cf6 generate kube: support --privileged
08d8290f1 Bump github.com/containers/ocicrypt from 1.0.3 to 1.1.0
832a69b0b Implement Secrets
45981ba29 Bump containers/buildah to v1.19.4
1caace8f4 Allow path completion for podman create/run --rootfs
6c75419a8 Cirrus: Send cirrus-cron report e-mail to list.
feecdf919 make `podman rmi` more robust
407e86dcd Implement missing arguments for podman build
3c3e644c1 vendor latest containers/common
91ea3fabd add network prune
821ef6486 fix logic when not creating a workdir
002f2aca7 Bump remote API version to 3.0.0
6c713984e play kube selinux test case
5c6ab3075 Fix podman network disconnect wrong NetworkStatus number
05444cb2c Fix per review request
c995b5460 generate kube: handle entrypoint
96adf0e2a play kube selinux test case
2b8d6ca09 Increase timeouts in some tests
3c57bc845 Add test for Docker APIv2 wait
4a219aa23 Implement Docker wait conditions
fc385806d Improve ContainerEngine.ContainerWait()
570e1587d Improve container libpod.Wait*() functions
6a6e86829 Cirrus: Collect ginkgo node logs artifacts
ebc42f508 Bump github.com/containers/storage from 1.24.5 to 1.25.0
9dc795191 Bump github.com/containernetworking/cni from 0.8.0 to 0.8.1
bc149a4dd bindings: attach: warn correct error
d87f54fbb Fix invalid wait condition on kill
dfa9a340a Makefile: make bin/* real targets!
3d105015f typo
c40cd1be9 Bump github.com/onsi/gomega from 1.10.4 to 1.10.5
bda95bdb6 Update nix pin with `make nixpkgs`
1c50e09b0 System test for #9096 (truncated stdout)
432ee04c5 play kube selinux label test case
e0bc8ffb5 Gating tests: diff test: workaround for RHEL8 failure
bde23a021 [NO TESTS NEEDED] style: indendation
89df89b5f [NO TESTS NEEDED] fixup: remove debug code
7e4d696d9 Report StatusConflict on Pod opt partial failures
bd0e22ed1 Honor network options for macvlan networks
095919680 Make slirp MTU configurable (network_cmd_options)
ac3bd4c33 [NO TESTS NEEDED] Generated files
5a746c08f [NO TESTS NEEDED] Improve generator
c68b59f97 play kube selinux label issue
e9f936a29 Makefile: refactor ginkgo * ginkgo-remote
931ea939a Allow pods to use --net=none
323ab314e Bump github.com/onsi/ginkgo from 1.14.2 to 1.15.0
077fd670b Update release notes for v3.0.0
ee8ee651d New 'make completions' target
e11d8f15e add macvlan as a supported network driver
5352df226 Fix podman generate systemd --new special char handling
eaafd975a Bump github.com/rootless-containers/rootlesskit from 0.12.0 to 0.13.0
51c11fea8 Endpoint that lists containers does not return correct Status value
3cfd4ce45 Fix --network parsing for podman pod create
9b5b03d1e list volumes before pruning
4a6d042c2 Docker ignores mount flags that begin with constency
cdbbc6120 podman generate kube ignores --network=host
073f76c13 Switch podman stop/kill/wait handlers to use abi
b842d97f5 [CI:DOCS]build instructions for macOS
280f332bd Vendor in containers/buildah v1.19.3
ca0dd76bf Honor custom DNS in play|generate kube
d7c356552 Podman-remote push can support --format
b74f939fb Bump github.com/containers/image/v5 from 5.10.0 to 5.10.1
8d979e093 Cirrus: Build static podman-remote
c0bf0ba9e podman build --pull: refine help message and docs
c450092fd Revert "podman build --pull: use correct policy"
75c3b3389 Bump github.com/containers/image/v5 from 5.9.0 to 5.10.0
59076888d Cleanup bindings for image pull
89bb8a9b3 Don't fail if one of the cgroups is not setup
1fac43654 Add support for rootless network-aliases
c717b3cac Allow static ip and mac with rootless cni network
15caebfe5 podman build --pull: use correct policy
bfc1b66be Cirrus: Fix running Validate task on branches
f8bf509d1 Fix static build cache by using cachix
84f7bdc4d Switch podman image push handlers to use abi
fee2fadc3 e2e tests: synchronize test results
21cb3043f podman-remote ps --external --pod --sort do not work.
f79d68eea Fix podman history --no-trunc for the CREATED BY field
c63599d36 remote exec: write conmon error on hijacked connection
e9f4fb975 Fix #9100 Change console mode message to debug
02ec5299f Add default net info in container inspect
1ae410d19 Ensure the Volumes field in Compat Create is honored
35c89ccc5 [CI:DOCS]update state of restful service
0f668aa08 workdir presence checks
7b186dcb9 libpod: add (*Container).ResolvePath()
74a63df05 Fixup search
97f5e9458 Pass DefaultMountsFile to podman build
5350254f0 Ensure shutdown handler access is syncronized
33179c281 System tests: cover gaps from the last month
5623cb9d3 Fix --arch and --os flags to work correctly
a86d23c75 Bump github.com/google/uuid from 1.1.5 to 1.2.0
75698b4b7 Fix typo
393a8f026 disable dnsname when --internal
ef76b92b8 swagger.go: Fix compilation error
8c1768e38 Fix fish completion issue if the command is prefixed with a space
a457c5c92 Bump golang.org/x/crypto
0ba1942f2 networking: lookup child IP in networks
c182091b0 Small API test improvement for compatibility search endpoint
6e6a38b41 podman manifest exists
c9baa6b93 Accept and ignore 'null' as value for X-Registry-Auth
4b8df5903 Turn on some remote test
94f96c78a Add a notice to remove pod before starting service
ef654941d libpod: move slirp magic IPs to consts
5e65f0ba3 rootlessport: set source IP to slirp4netns device
37319dec1 vendor: update rootlesskit to v0.12.0
2fa67fe4b api: fix import image swagger definition
9d31fed5f podman volume exists
4e4d318b7 Cirrus: Upload swagger YAML in every context
dbb99433d [CI:DOCS] Cirrus: Skip smoke task on branch-push
836fa4c49 Move the cni lock file into the cni config dir
c1cd512cb Use random network names in the e2e tests
3fedb2b6d [CI:DOCS] Update project name in Code of Conduct
f43046745 Set log driver for compatability containers
c3cbaa355 Make generate systemd --new robust against double curly braces
6518391e8 Fix man page for fuse-overlayfs config in rootless mode
a3621a7cf Cirrus: add bindings checks
e7df73efa Fix handling of container remove
41a7e11c7 make bindings generation explicit
f302ce578 make bindings generation more robuts
175fc3867 Revert "ginkgo: install on demand via `go get -u`"
37abec240 [CI:DOCS] fix go-md2man HTMLSpan warnings
9f6bb3563 CI: smoke test: insist on adding tests on PRs
a45d22a1d podman network exists
de05e5816 ginkgo: install on demand via `go get -u`
d2ee3d815 runner.sh : deal with bash 'set -e'
4ccb0729b Add binding options for container|pod exists
683bab03f [CI:DOCS]Do not run compose tests with CI:DOCS
2df59829e simplify bindings generation
462994268 make: generate bindings: use vendor
caaaa2c5e hack/install_golangci.sh: smarter install
f38b7f48c golangci-lint: install to ./bin
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b63523eeac |
docker-compose: update to 1.29.1
The following changes are part of this version bump: 1.29.1 (2021-04-13) ------------------- Bugs Fix for invalid handler warning on Windows builds Fix config hash to trigger container recreation on IPC mode updates Fix conversion map for placement.max_replicas_per_node Remove extra scan suggestion on build 1.29.0 (2021-04-06) ------------------- Features Add profile filter to docker-compose config Add a depends_on condition to wait for successful service completion Miscellaneous Add image scan message on build Update warning message for --no-ansi to mention --ansi never as alternative Bump docker-py to 5.0.0 Bump PyYAML to 5.4.1 Bump python-dotenv to 0.17.0 1.28.6 (2021-03-23) ------------------- Bugs Make --env-file relative to the current working directory and error out for invalid paths. Environment file paths set with --env-file are relative to the current working directory while the default .env file is located in the project directory which by default is the base directory of the Compose file. Fix missing service property storage_opt by updating the compose schema Fix build extra_hosts list format Remove extra error message on exec Miscellaneous Add compose.yml and compose.yaml to default filename list 1.28.5 (2021-02-25) ------------------- Bugs Fix OpenSSL version mismatch error when shelling out to the ssh client (via bump to docker-py 4.4.4 which contains the fix) Add missing build flags to the native builder: platform, isolation and extra_hosts Remove info message on native build Avoid fetching logs when service logging driver is set to 'none' 1.28.4 (2021-02-18) -------------------- Bugs Fix SSH port parsing by bumping docker-py to 4.4.3 Miscellaneous Bump Python to 3.7.10 1.28.3 (2021-02-17) ------------------- Bugs Fix SSH hostname parsing when it contains leading s/h, and remove the quiet option that was hiding the error (via docker-py bump to 4.4.2) Fix key error for '--no-log-prefix' option Fix incorrect CLI environment variable name for service profiles: COMPOSE_PROFILES instead of COMPOSE_PROFILE Fix fish completion Miscellaneous Bump cryptography to 3.3.2 Remove log driver filter Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
37a794296e |
python3-cached-property: Upgrade 1.3.0 -> 1.5.2
Upgrade to release 1.5.2: - Add formal support for Python 3.8 - Remove formal support for Python 3.4 - Switch from Travis to GitHub actions - Made tests pass flake8 for Python 2.7 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
dd47dbea25 |
python3-sphinx: Upgrade 3.4.3 -> 3.5.4
Upgrade to release 3.5.4: - Restrict docutils to 0.16 - autodoc: Async staticmethods and classmethods are considered as non async coroutine-functions with Python3.10 - html theme: The style are not applied with docutils-0.17 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
8498fdfc4c |
python3-flask-cors: Upgrade 3.0.8 -> 3.0.10
Upgrade to release 3.0.10: - Adds support for PPC64 and ARM64 builds for distribution Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
c43df272bf |
python3-botocore: Upgrade 1.20.36 -> 1.20.51
Upgrade to release 1.20.51: - api-change:lightsail: Documentation updates for Amazon Lightsail. - api-change:sts: This release adds the SourceIdentity parameter that can be set when assuming a role. - api-change:comprehendmedical: The InferICD10CM API now returns TIME_EXPRESSION entities that refer to medical conditions. - api-change:rds: Clarify that enabling or disabling automated backups causes a brief downtime, not an outage. - api-change:redshift: Added support to enable AQUA in Amazon Redshift clusters. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
48eb8cf5a9 |
python3-boto3: Upgrade 1.17.48 -> 1.17.51
Upgrade to release 1.17.51: - api-change:lightsail: [botocore] Documentation updates for Amazon Lightsail. - api-change:sts: [botocore] This release adds the SourceIdentity parameter that can be set when assuming a role. - api-change:comprehendmedical: [botocore] The InferICD10CM API now returns TIME_EXPRESSION entities that refer to medical conditions. - api-change:rds: [botocore] Clarify that enabling or disabling automated backups causes a brief downtime, not an outage. - api-change:redshift: [botocore] Added support to enable AQUA in Amazon Redshift clusters. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
b8eac95121 |
python3-bugsnag: Upgrade 3.6.1 -> 4.0.2
Upgrade to release 4.0.2: - Fixed an issue preventing code being fetched from files in the project root but not in the PWD - Fix issue where types were not packaged with the library - Added __all__ lists throughout to indicate the boundaries of the public interface. This may affect your integration if using import *. - Removed Configuration.use_ssl and Configuration.get_endpoint() in favor of including the protocol in Configuration.endpoint - Configuration.send_environment is now False by default. Enable it as a part of your configuration to send the full request context (if any) as a part of each event. - Removed bugsnag.utils.ThreadLocals as it has been superseded by the contextvars API - Removed bugsnag.utils.merge_dicts, an unused helper function - Removed bugsnag.send_sessions - Deprecated bugsnag.notification.Notification in favor of bugsnag.event.Event to better align with Bugsnag libraries on other platforms. The Notification class is functionally equivalent and will be removed in a future release. - Added a request property to Event. - Added type signatures throughout the library. - [WSGI] Use X-Forwarded-For header if present to determine the IP address used as the default user ID. The remote address remains available in the request metadata attached to the event. License-Update: Check only a single line from PKG-INFO Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f3e19029b0 |
conf/layer.conf: add honister to compatibility list
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
1f9a36fa1a |
python3-boto3: Upgrade 1.14.7 -> 1.17.48
Upgrade to release 1.17.48:
- api-change:lookoutequipment: [botocore] This release introduces
support for Amazon Lookout for Equipment.
- api-change:kinesis-video-archived-media: [botocore]
Documentation updates for archived.kinesisvideo
- api-change:robomaker: [botocore] This release allows RoboMaker
customers to specify custom tools to run with their simulation
job
- api-change:appstream: [botocore] This release provides support
for image updates
- api-change🐏 [botocore] Documentation updates for AWS RAM
resource sharing
- api-change:customer-profiles: [botocore] Documentation updates
for Put-Integration API
- api-change:autoscaling: [botocore] Amazon EC2 Auto Scaling
announces Warm Pools that help applications to scale out faster
by pre-initializing EC2 instances and save money by requiring
fewer continuously running instances
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Leon Anavi
|
3939517428 |
python3-dotenv: Upgrade 0.13.0 -> 0.17.0
Upgrade to release 0.17.0: - Make dotenv get <key> only show the value, not key=value - Add --override/--no-override option to dotenv run Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
0099422962 |
python3-newrelic: Upgrade 6.0.1.155 -> 6.2.0.156
Upgrade to release 6.2.0.156: - Improved CPU metric sampling - Improved memory metric sampling - Increased custom attribute limit from 64 to 128 - Fixed a TypeError with Uvicorn and unix sockets - Fixed a crash when using a FIPS compliant system with Cross Agent Tracing enabled Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
91dc9ce226 |
python3-webob: Upgrade 1.8.5 -> 1.8.7
Upgrade to release 1.8.7: - Decoding deflate-encoded responses now supports data which is packed in a zlib container as it is supposed to be. The old, non-standard behaviour is still supported. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leon Anavi
|
d4025d3d97 |
python3-paramiko: Upgrade 2.7.0 -> 2.7.2
Upgrade to release 2.7.2: - Update our CI to catch issues with sdist generation, installation and testing. - Add missing test suite fixtures directory to MANIFEST.in, reinstating the ability to run Paramiko's tests from an sdist tarball. - Remove leading whitespace from OpenSSH RSA test suite static key fixture, to conform better to spec. - Fix incorrect string formatting causing unhelpful error message annotation when using Kerberos/GSSAPI. - Fix incorrectly swapped order of p and q numbers when loading OpenSSH-format RSA private keys. At minimum this should address a slowdown when using such keys, and it also means Paramiko works with Cryptography 3.1 and above (which complains strenuously when this problem appears). Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cbec1240f9 |
crun: bump to latest
As part of this update to crun, we now much run autogen.sh before running configure. Otherwise, these are incremental changes and comprise the following commits: 9effaeb On exec, honor additional_gids from the process spec, not the container definition c25a2db tests: add explicit python3-pip dependency e67a756 NEWS: tag 0.19 18c0274 gitignore: update 471a7b8 libocispec: update from upstream f642968 tests: fix check for cgroup v2 3e7fa1d linux: always remount bind mounts 78aeac9 linux: ignore unknown capabilities f11d742 Add linuxdevicecgroup to maintain parity with runc spec 9aa382b cgroup: skip parsing empty file d9c9fd0 container: initialize tmp_err 00371ae src: initialize statx struct 2e88d19 src: initialize first_arg 5e4efb7 seccomp: always NUL terminate lowercase_arch 7812572 tests: add test for seccomp listener f80e98d init: add check for seccomp listener 5d9010b init: fix check for nargs 5a627f4 seccomp: support notify listener c3361c1 status: use function to convert from yajl errors 873b62d container: use new error function for hooks JSON 14083ab error: new function to convert from yajl errors 6e19235 linux: pass own pid to container process 8fd3320 contrib: new tool to test seccomp notifications 8722858 crun: always use absolute path for the bundle ae9ea92 container: improve OOM error message 919aac9 utils: receive fd detect closed connection a52e480 cgroup: new function to detect OOM 2e37d2a sync-libocispec 75ad96b Let autogen.sh generate m4 14c260f libcrun_warn if newuidmap/newgidmap invoke fails 5598401 README.md: drop pids limit comparison 9ea6857 github: add fuzzing test 0fd03ba tests: add container image for fuzzing libcrun bbd5c7d fuzzer: reap child processes c7350ef tests: add more fuzzing tests 816f95b fuzzer: merge two tests effa508 linux: cleanup zombie on errors b32f1eb linux: release only on error 5ca72f5 status: attempt open again on interrupts 9b5d4c1 Added static analysis Adding clang compilation Fixing comparison of integers of different signs 3b199ef Update GNUmakefile dcd1a34 linux: label the tmpfs for masked directories edf7f15 seccomp: check if the action supports errnoRet bc222b6 seccomp: fail if no default action specified 0c5b920 seccomp: honor default errno value 92c0afe yajl: support static link of containers/yajl f3d920d src: fix unitialized variable 7d89a02 src: add error check 765971c status: fix memory leak on error 31274d8 utils: fix check for fd 62d1c4d tests: add test to feed honggfuzz ab75091 ebpf: return the program instead of NULL 8b16552 src: check if seccomp is defined f721efb container: fix error ownership 4472e35 container: allow config from memory 6b369b8 container: fix memory leak 0fede0f container: initialize variable 2b6c0b6 container: fix dereference of def->linux if NULL 1dd9b5b container: check for def->process before deref 1b1a691 fix: cross-compiling for Android b25cb2d tests: add device access test 86251b0 ebpf: handle access(dev_name, F_OK) call correctly e2d79dc fix: access violate if ret < -2 4f35406 cgroup: read controllers from /proc/self/cgroup Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ff18ca2317 |
ipset: drop recipe
In the time between the k3s work starting and ending, meta-networking picked up the support we need for ipset. Now that the recipe is in a layer we already depend on, we don't need our own copy. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
3124f23254 |
openvswitch: fix clobbered SRC_URI
commit
|
||
|
Martin Jansa
|
27f8c49f8c |
dev86: fix ldflags QA issue by passing LDFLAGS
ERROR: dev86-0.16.21-r0 do_package_qa: QA Issue: File /usr/lib/bcc/unproto in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/lib/bcc/bcc-cpp in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/lib/bcc/copt in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/lib/bcc/bcc-cc1 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/ld86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/ar86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/size86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/nm86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/as86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/objdump86 in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) File /usr/bin/bcc in package dev86 doesn't have GNU_HASH (didn't pass LDFLAGS?) [ldflags] ERROR: dev86-0.16.21-r0 do_package_qa: QA run found fatal errors. Please consider fixing them. Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
f108906d2b |
dev86: upgrade to 0.16.21 and fix SRC_URI
* don't use github archives
* upgrade to fix build with security-flags.inc enabled, fixed upstream in:
|
||
|
Martin Jansa
|
8f06d92095 |
ipxe: force using ld.bfd even when ld-is-gold is in DISTRO_FEATURES
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
b7dba4e73f |
ipxe: fix SRC_URI
* git.ipxe.org is gone: fatal: unable to access 'https://git.ipxe.org/ipxe.git/': Couldn't connect to server Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
04f8621d82 |
cri-o, podman, packagegroup-container: replace anonymous python function calling bb.parse.SkipRecipe with conditional PNBLACKLISTs
* PNBLACKLISTs are IMHO a bit easier to read and easier to override from distro which e.g. provides own recipe for libseccomp Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
4c07340275 |
ipxe: add the same COMPATIBLE_HOST restriction as syslinux
* this depends on syslinux Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
32267ea487 |
nagios-*: add conditional PNBLACKLIST, because of the dependency on meta-webserver
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
4ea3d76821 |
packagegroup-container: skip without meta-security because of podman
* copy the skip from podman recipe, because this packagegroup depends on podman Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
1dda063e0c |
packagegroup-kubernets: add seccomp to REQUIRED_DISTRO_FEATURES
* fixes world build: ERROR: Nothing RPROVIDES 'k3s-server' (but meta-virtualization/recipes-core/packagegroups/packagegroup-kubernetes.bb RDEPENDS on or otherwise requires it) k3s RPROVIDES k3s-server but was skipped: missing required distro feature 'seccomp' (not in DISTRO_FEATURES) NOTE: Runtime target 'k3s-server' is unbuildable, removing... Missing or unbuildable dependency chain was: ['k3s-server'] ERROR: Required build target 'meta-world-pkgdata' has no buildable providers. Missing or unbuildable dependency chain was: ['meta-world-pkgdata', 'packagegroup-kubernetes', 'k3s-server'] Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bartosz Golaszewski
|
5be55ac5cf |
boto3: satisfy runtime dependencies
Currently boto3 can be built into an image but it won't work without additional dependencies. First: botocore is needed at run-time, second: there are other packages available in meta-python that need adding. Signed-off-by: Bartosz Golaszewski <brgl@bgdev.pl> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Zqiang
|
2e5f311548 |
ceph: uprev from 15.2.8 to 15.2.9
Notable Changes: 1. progress module can now be turned on/off, using the commands: ceph progress on and ceph progress off. 2. PG removal has been optimized in this release. Signed-off-by: Zqiang <qiang.zhang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Zqiang
|
31a5facbef |
libvmi: uprev from 0.12 to 0.14
Bump version to 0.14. This upgrade is mainly to fix some BUG. Signed-off-by: Zqiang <qiang.zhang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
438ed8b506 |
runx: update to v1.0
bumping runX to the 1.0 tag - drop patches that are part of the release - bump kernel to v5.4.104 to work with our gcc10 - tweak initrd install to use externally provided busybox Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
690761393c |
go-build: export GO111MODULE=off
We aren't setup for go module builds, so we need to disable it in the go-build recipe. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
46dc0363e3 |
k8s: update to v1.20.4
Moving off the 1.20.x-rc and onto a dot release tag. This pulls in the following commits: e87da0bd6e0 Release commit for Kubernetes v1.20.4 5682545c2da Update CHANGELOG/CHANGELOG-1.20.md for v1.20.3 f8f2fa827d3 Release commit for Kubernetes v1.20.4-rc.0 01849e73f3c Release commit for Kubernetes v1.20.3 58c5493f22a kube-cross: update image to use v1.15.8-legacy-1 e000e9722bb [go1.15] build: Update to k/repo-infra@v0.1.4 (supports go1.15.8) 3365196e9d8 Use go-runner:buster-v2.3.1 image (built on go1.15.8) 91f2745f08c staging/publishing: Set default go version to go1.15.8 3c777448311 Update to go1.15.8 b570189cf1f Revert "make hostPort match test linuxonly" 6698a4e7afc Revert "conformance changes" 6a31f8d17ef dockershim hostport respect IPFamily a456eb4eaf6 dockershim hostport manager use HostIP 5d9910a0172 Cherry pick of #98254:Fix the kube-scheduler binary's description of the --config parameter is inaccurate ac866d63911 make podTopologyHints protected by lock b84ee98db74 kubelet: Fix mirrorPodTerminationMap leak d381d6c52cc kubelet: Delete static pods gracefully b2576fb35f7 kubelet logs print 'kubelet nodes sync' frequently 7826a1c6b87 WIP: node sync at least once Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9efb8a0592 |
runc-docker: update to latest -rc93
Bumping the runc version to incorporate the following commits: 2ae56653 Move fuzzers upstream 053e15c0 tests/checkpoint: show full log lazy pages cpt e618a6d5 curl: add --retry 5 4b98e4a7 MAINTAINERS: update Aleksa's email 8a3484b7 libcontainer/factory*: adjust the file mode 71ca6432 fix integration tests README.md 916654ff libcontainer: fix LinuxFactory comments c3ffd2ef Do not convert blkio weight value using blkio->io conversion scheme 38b2dd39 runc exec: report possible OOM kill 5d0ffbf9 runc start/run: report OOM 7e137b90 libct/cg/fs2/hugetlb: use fscommon.GetValueByKey 9fa65f66 libct/cg/fscommon: add GetValueByKey c54c3f85 libcontainer/notify_linux_v2: use fscommon.ReadFile 494f900e libct/cg/fscommon: rename/facelift GetCgroupParamKeyValue 1880d2fc libct/cg/fs/memory: handle EBUSY 27fd3fc3 libct/cg/fs: setMemoryAndSwap: refactor 3cced523 libct/cg/fs/memory: optimize Set 65c2d3c2 tests/int/update: add test case for PR #592 53d3b552 Update README.md for libcontainer 6c5ed0db Fix memory stats for cache in fs2 af521ed5 libct/cgroups/systemd: don't set limits in Apply fa52df94 libcontainer: fix the file mode of the device d0cbef57 Makefile: rm go 1.13 workaround 4019f08d make validate: rm go vet f9c21133 make lint: use golangci-lint 671bb978 Makefile: remove ci target 95940855 script/validate-gofmt: rm 91f0ae18 ci/gha: bump go 1.16-rc1 -> 1.16.x 5b14a261 README: add gha badges f3f563bc apparmor: try attr/apparmor/exec before attr/exec 41670e21 tests/int: rework/simplify setup and teardown d73b4443 ci: enable -race from matrix b7744547 libct/int: fix a data race c34a9b10 tests/int/hooks.bats: don't use DEBIAN_BUNDLE e40a369e tests/int/list.bats: don't use $BUSYBOX_BUNDLE 985546b4 tests/int: BATS_TMPDIR -> BATS_RUN_TMPDIR 85d5fea4 tests/int: stop reusing HELLO_BUNDLE for alt root 76532fac tests/int/events: rm unneeded eval 49766140 tests/int: use wait_for_container where appropriate 4d6ffa39 tests/int/helpers: reimplement wait_for_container e7052dcd tests/int/spec.bats: don't use HELLO_BUNDLE 0cfc2e32 tests/int: rm teardown_running_container_inroot 78f0e4b2 tests/int: rm wait_for_container_inroot 64d5702f tests/int: don't depend on BUSYBOX_BUNDLE var efb8552b tests/int: add device access test 81707abd ebpf: fix device access check c3428722 libct/config: fix a data race 51ec5db1 ci: add i386 unit test run b142a70e libct/seccomp/patchpbf/test: fix for 32-bit 2831fb55 cgroup2: devices: handle eBPF skipping more correctly d1007b08 cgroupv1 freezer: thaw to increase freeze chances Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a57bd00854 |
containerd: initial README
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a50389a985 |
k3s: clean up README
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5d7d39943f |
k3s: rrecommend required kernel modules
If the required modules aren't in the image, k3s will fail to start. Set the requirements as RRECOMMENDS for image types that don't install the kernel-modules meta-package. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d891808b45 |
k3s: drop ctr symlink
We build and depend on our own containerd, we don't need the ctr symlink to k3s for proper operation. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cad10c54f2 |
k3s: add additional build tags
To more closely align with the rancher/upstream build, we add additional tags to the build. To make them easier to manage, we also introduce a variable and use it in the go build line. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
98daf1fa93 |
k3s: add seccomp distro feature requirement
k3s requires seccomp, and a runc with seccomp enabled for proper operation. runc has a distro feature check to enable seccomp, so if we enforce it as k3s feature, we'll also get a properly built runc and we'll work out of the box. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5ee98852fb |
runc: update to latest -rc93
Bumping the runc version to incorporate the following commits: 2ae56653 Move fuzzers upstream 053e15c0 tests/checkpoint: show full log lazy pages cpt e618a6d5 curl: add --retry 5 4b98e4a7 MAINTAINERS: update Aleksa's email 8a3484b7 libcontainer/factory*: adjust the file mode 71ca6432 fix integration tests README.md 916654ff libcontainer: fix LinuxFactory comments c3ffd2ef Do not convert blkio weight value using blkio->io conversion scheme 38b2dd39 runc exec: report possible OOM kill 5d0ffbf9 runc start/run: report OOM 7e137b90 libct/cg/fs2/hugetlb: use fscommon.GetValueByKey 9fa65f66 libct/cg/fscommon: add GetValueByKey c54c3f85 libcontainer/notify_linux_v2: use fscommon.ReadFile 494f900e libct/cg/fscommon: rename/facelift GetCgroupParamKeyValue 1880d2fc libct/cg/fs/memory: handle EBUSY 27fd3fc3 libct/cg/fs: setMemoryAndSwap: refactor 3cced523 libct/cg/fs/memory: optimize Set 65c2d3c2 tests/int/update: add test case for PR #592 53d3b552 Update README.md for libcontainer 6c5ed0db Fix memory stats for cache in fs2 af521ed5 libct/cgroups/systemd: don't set limits in Apply fa52df94 libcontainer: fix the file mode of the device d0cbef57 Makefile: rm go 1.13 workaround 4019f08d make validate: rm go vet f9c21133 make lint: use golangci-lint 671bb978 Makefile: remove ci target 95940855 script/validate-gofmt: rm 91f0ae18 ci/gha: bump go 1.16-rc1 -> 1.16.x 5b14a261 README: add gha badges f3f563bc apparmor: try attr/apparmor/exec before attr/exec 41670e21 tests/int: rework/simplify setup and teardown d73b4443 ci: enable -race from matrix b7744547 libct/int: fix a data race c34a9b10 tests/int/hooks.bats: don't use DEBIAN_BUNDLE e40a369e tests/int/list.bats: don't use $BUSYBOX_BUNDLE 985546b4 tests/int: BATS_TMPDIR -> BATS_RUN_TMPDIR 85d5fea4 tests/int: stop reusing HELLO_BUNDLE for alt root 76532fac tests/int/events: rm unneeded eval 49766140 tests/int: use wait_for_container where appropriate 4d6ffa39 tests/int/helpers: reimplement wait_for_container e7052dcd tests/int/spec.bats: don't use HELLO_BUNDLE 0cfc2e32 tests/int: rm teardown_running_container_inroot 78f0e4b2 tests/int: rm wait_for_container_inroot 64d5702f tests/int: don't depend on BUSYBOX_BUNDLE var efb8552b tests/int: add device access test 81707abd ebpf: fix device access check c3428722 libct/config: fix a data race 51ec5db1 ci: add i386 unit test run b142a70e libct/seccomp/patchpbf/test: fix for 32-bit 2831fb55 cgroup2: devices: handle eBPF skipping more correctly d1007b08 cgroupv1 freezer: thaw to increase freeze chances Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a92e3ff714 |
runc: add selinux and seccomp package configs
runc can be built with both selinux and seccomp tags. These tags are a requirement for proper operation with some frameworks (like k3s). So we add checks for the appropriate distro features and then automatically add them to the build tags, allowing us a coordinated enabling of the functionality. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0a35ee512c |
k3s: bump to v1.20.4
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |