mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-04 21:05:25 +02:00
master
1195 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Changqing Li
|
0115e61cdd |
kubernetes: rename CNI_NETWORKING_FILES
Rename CNI_NETWORKING_FILES to 00_cni-containerd-net.conflist. According to the following k8s doc, k8s networking file will be used when both containerd-cni and kubernetes-cni both installed. "If there are multiple CNI configuration files in the directory, the kubelet uses the configuration file that comes first by name in lexicographic order." This commit can fix following issue: PACKAGE_CLASSES = "package_deb" do_rootfs failed with error: dpkg: error processing archive /path/to/oe-rootfs-repo/corei7-64/./kubernetes-cni_v1.32.0+git0+5fe148234f_release-r0.deb (--unpack): trying to overwrite '/etc/cni/net.d/cni-containerd-net.conflist', which is also in package containerd-cni v2.0.5-r0 Refer [1], "--no-force-overwrite" is set for dpkg, so above error occurred. [1] https://git.openembedded.org/openembedded-core/commit/?id=cb95ba079960411775c57ab864d266e15a6292d1 Signed-off-by: Changqing Li <changqing.li@windriver.com> |
||
|
Chen Qi
|
a8175deded |
podman: remove ptest
The ptest was added almost three years ago and since then nobody ever fixed anything. It's almost impossible that the ptest never failed. As an evidence, for the current version, the test cases cannot even run. Remove this ptest. People who care about podman ptest should be maintaining it. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d560060e4c |
docker-compose: limit the amount of data copied
The AWS dependency includes a VERY large set of directories, which are over 9G in size. To avoid some of this data movement, we suggest shallow clones and update our vendor rsync to exclude directories over 500M. This drastically speeds up the copy and overall build time. More investigation needs to be done, and perhaps a switch away from git clones for this recipe as the data over the network during fetch is still an issue. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cbe8ceb787 |
podman: fix PACKAGECONFIG QA errors
bitbake now errors if PACKAGECONFIG is used, but doesn't have entries for the possible values in the variable. podman was using PACKAGECONFIG as a local feature variable in one case (docker) and in the other, was later adding a RDEPEND that could have been done via the packageconfig directly (rootless). The docker issue is fixed by creating a PODMAN_FEATURES variable and testing on it, and the rootless one is fixed by using PACKAGECONFIG to add the rdepends Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
48586e7ea3 |
docker-distribution: fix assignment operation whitespace
The scripted assignement operator cleanup incorrectly caught BUILDTAGS, which breaks our build. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
de9a4540ca |
cri-tools: fix assignment operation whitespace
The scripted assignement operator cleanup incorrectly caught BUILDTAGS, which breaks our build. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
33136f6c20 |
criu: update to v4.1
Along with the new commits we adjust the following:
- refreshed patches
- pytoml fixes for crit plugin
- debug prefix map for cuda
Bumping criu to version v4.1, which comprises the following commits:
b6059ff19 criu: Version 4.1 (CRISC-V)
bc1415317 criu: fix log_keep_err signal deadlock
0f6470944 namespace: skip cleaning up the uid/gid map in error cases
6826ac58c ci: run tests on a nftables only system
700a8c4b5 ci: do not run tests requiring iptables if it is missing
f22330ff0 test: print out logs if tests fail
29ccb5b62 test: others/rpc do not use nftables locking backend
95729ec32 docs: mark make commands with same format as elsewhere
2cd9d5ded docs: update INSTALL.md with a section about building CRIU
867c77303 make: allow setting the default network locking backend
720bf67e0 zdtm/vdso02: unmap vvar_vclock mappings
62a4a5874 vdso: correct data types for ELF hash table sizes
b8553d19e test/zdtm: check that PAC keys are C/R-ed
8ae5db37b arm64: C/R PAC keys
c5d46d86a restorer: Add a lock around cgroupd communication.
7748b3fe7 pstree: print clone flags in error message
d85550157 vdso: Fixes in DT_GNU_HASH handling
ed6374b48 lsm: use the user provided lsm label
d35808f5e ci: update to latest actions for codeql CI job
c298b51a6 scripts/uninstall_module: import signal module
38b9807cd coredump: enable coredump generation on arm
da90b33a4 coredump: enable coredump generation on aarch64
030fa4aff criu: fix internal representation of cgroups hierarchical structure
b7fa7d304 kerndat: run iptables with -n to not resolve service names
528c94c48 ci: install gawk for Fedora based tests
d66bc3499 Makefile: move codespell options to .codespellrc
8a06ca27c vdso: switch from DT_HASH to DT_GNU_HASH (aarch64)
6710cfce1 zdtm/netns_sub_sysctl: add ipv4/ping_group_range sysctl check
4ca74b9af net/sysctl: c/r ipv4/ping_group_range value
9c40781c2 net/sysctl: put common multiplier outside the brackets
d226bd4f6 ci: handle results from latest codespell
e2dffcbc8 lib: do not set protobuf has_* field too early
82b03429b cuda: disable CUDA plugin for pre-dump
7f0d107fe seize: use separate checkpoint_devices function
02056bf41 cuda: prevent task lockup on timeout error
f83931542 net: remember the name of the lock chain (nftables)
54795f174 criu: use libuuid for criu_run_id generation
815ef6884 ci: two check-commits.yml changes
061f4266e test/zdtm: add a new test to check non-periodic timers
09dc2e958 timer: Refine itimer_armed logic and improve timer value handling
aad66a4f7 test: fix cmdlinenv00 on aarch64
2b7492480 files-reg: fix buffer overflow on aarch64
6fdac5081 seize: Adjust the position of the log message
97398068b net: redirect nftables stdout and stderr to CRIU's log file
6dce80c53 util: added cleanup_file attribute.
260c08418 zdtm: Check CapAmb is restored correctly after C/R
6f8efad30 cr: Task CapAmb support
94b9b3c5d freeze_processes: implement kludges for cgroup v1
82f4ecda6 freeze_processes: fix logic
99e1fbd8a criu/seize.c: clang-format it
a8754905c test: run scm06 in the ns and uns flavors
15c81c126 test/java: increate the ghost file limit
dc6cef0b4 cuda: Fix return value from CHECKPOINT_DEVICES hook so that dump's fail properly
8ee2eba47 vdso: handle vvar_vclock vma-s
ed560a349 pidfd: add missing include
40b7f04b7 compel/arch/riscv64: properly implement compel_task_size()
399d7bdcb compel: fix gitignore and remove autogenerated code
21e5f4cfd test: add get-state to mocked cuda-checkpoint tool
28c2cb3fd cuda: enable checkpoint support for paused tasks
498bcf280 zdtm: Check many processes with common dead pidfd
7125bfc69 pidfd: one process creates a helper and opens all fds to it
b1cac7a8e cuda: fix check for GPU device availability
36a53fe23 ci: test interrupt-only mode with frozen cgroup
4196268ee seize: enable support for frozen containers
ff9dbef90 seize: fix error handling for check_freezer_cgroup
622b43392 criu: Initialize util before service worker starts
9052ef93c uffd: Disable image deduplication after fork
2be958d22 include: don't use GCC's __builtin_ffs on riscv64
da6b1807e ci: add workflow for riscv64
bb29067de zdtm: add riscv64 support
6d970ed04 criu: add riscv64 support to parasite and restorer
1d028ef44 images: add riscv64 core image
95359a62a compel: add riscv64 support
d8f93e7ba include: add common header files for riscv64
c49eb18f9 pidfd: block SIGCHLD during tmp process creation
5ca440069 zdtm: add inventory test plugins
5335b35f7 images/inventory: add field for enabled plugins
b524dab32 pycriu: fix lint errors
88aa7e2c1 make/lint: use 'ruff check <path>'
f29e655df zdtm: Check pidfd for thread is valid after C/R
7a64004dc zdtm: Check fd from pidfd_getfd is C/Red correctly
2e6f34845 zdtm: Check dead pidfd is restored correctly
3f30ec0ed zdtm: Check pidfd can kill descendant processes
2899d4600 zdtm: Check pidfd can send signal after C/R
3096df9ea zdtm: Check pidfd fdinfo entry is consistent
1ce408ffa criu: Support C/R of pidfds
3322d1e94 images: Add protobuf definition for pidfd
4f8f6f288 Makefile.config: set CR_PLUGIN_DEFAULT variable
f1d465448 amdgpu: remove exec permissions on source files
c2b48ff42 criu: Version 4.0 (CRIUDA)
a8cbe76d4 util: dump fsfd log messages
096c1f7a4 plugins/amdgpu - Increase maximum parameter length
60ee5ebd9 plugins/amdgpu: Zero ib_info on initialization
691899889 plugin/cuda: disable CUDA plugin if /dev/nvidiactl isn't present
e1331a4b6 fault: allow to check dont_use_freeze_cgroup
651df375b criu: Allow disabling freeze cgroups
59f49c627 codespell: fix typos
edb6fbb82 scripts/uninstall_module: fix package discovery
b1b3c14b1 cuda: unlock on timeout error
dbfa45024 ci: run aarch64 tests native via actuated
8beac656f coredump: fail on unsupported architectures early
d44fc0de5 test: only run macvlan tests if macvlan devices can be created
01c65732b test: better test for SELinux tools
615ccf98c crit: do not crash on aarch64 doing 'crit x ./ rss'
21ea718f9 plugins/amdgpu: fix printf format specifiers
3e2ed1879 plugins/amdgpu: use C99-standard types
d68205e91 ci: enable cross compile testing for amdgpu-plugin
2ee584441 plugins/amdgpu: fix cross-compilation
9a19cf34d scripts/ci: run tests with the mocked cuda-checkpoint tool
de31abb97 criu/plugin: don't call plugin device hooks for non-alive tasks
dea630591 test/zdtm: allow to run tests with the mocked cuda-checkpoint tool
67fe44e98 support user set remote mmap vma address
551cd9244 timer: fix printf specifiers for __suseconds64_t
a045c874c ci: run tests with amdgpu and cuda plugins
2453ed69a zdtm: add option to run tests with criu plugins
ad66c27a1 cuda: fix launch cuda-checkpoint
fde0b7ac6 cuda: don't leak fds to cuda-checkpoint
4dde52a30 ci/podman: show mounts
9a85fb638 ci/podman: show criu logs in case of error
8437663cc delete redundant include header files
c42b58f4f plugin: enable multiple plugins for the same hook
85050be66 seize: fix pause-devices plugin hook
21108b40d test/zdtm: mount a new tmpfs to the zdtm root /dev
fcbadfbdb plugins: set executable bit on .so files
5783706d5 docs: update amdgpu-plugin man page
089345f77 Adjust to glibc __rseq_size semantic change
b9081ca56 zdtm: make cgroup testcases run non-parallel
4f45572fd util: use close_range when it's supported
42b177da6 scripts/build: drop centos 7 targets
181583819 vdso: proxify the __vdso_clock_gettime64 function
ac22aaf57 apparmor: get_suspend_policy must return NULL in error cases
71999d888 cgroupd: unblock SIGTERM to make stop_cgroupd actually work
daed6c353 irmap: duplicate string in irmap_scan_path_add
b169e3b63 plugins/cuda: fix crosscompilation
ca971b7f8 compel: fix build on Amazon Linux 2 due to missing PTRACE_ARCH_PRCTL
bf417dd05 criu/plugin: Add NVIDIA CUDA plugin
5f486d5ae criu/plugin: Introduce new plugin hooks PAUSE_DEVICES and CHECKPOINT_DEVICES to be used during pstree collection
1012e542e criu: Restore rseq_cs state slightly earlier in the restore sequence and run the plugin finalizer later in the dump sequence
7ac453706 readme: update link to FAQ page
4f15fe8c5 make: improve check for externally managed Python
fdf546dbd ci: upgrade to Fedora 40 Vagrant images (38 is EOL)
f17164926 test/dump-crash: check code path when dump crashes
a252a240c zdtm: Distinguish between fail and crash of dump
6feb57a84 ci: remove CentOS Stream 8 test (EOL)
1da29f27f zdtm: add support for LD_PRELOAD tests
e7276cf63 pagemap-cache: handle short reads
cc88b1e1f net: Fix TOCTOU race condition in unix_conf_op
457bc6a8f criu: use proper format-specified to accommodate time_t 64-bit change
95f66d13d criu: move sigact dump/restore code into sigact.c
9c8a6927a ci: update check for SELinux
b3c3422cd test/make: remove unused target
30aa8dbe4 mount: fix unbounded write
708f872a6 sk-tcp: Add test cases for TCP_CORK and TCP_NODELAY socket options
9ba9aff77 sk-tcp: Move TCP socket options from SkOptsEntry to TcpOptsEntry
1cb75c0b1 sk-tcp: Move TCP socket options from TcpStreamEntry to TcpOptsEntry
13854a988 criu: fix a fatal failure if nft doesn't work
df178c7e5 sk-tcp: cleanup dump_tcp_conn_state error handling
4607b5356 mem: optimize debug logging of enqueued pages
f4290868b ci/vdso01: fix typo
e68a06cfd ci: update actions/checkout to v4
5aaf45021 ci: update base OS to ubuntu 22.04
1c2a3d7fa check: verify ino and dev of overlayfs files in /proc/pid/maps
e07ffa04b Makefile.config: fix/improve feature warnings.
af4058871 timer: fix wrapping allignment in function declaration
0fc83a79b ci: silence CircleCI warning about deprecated image
52623cca1 criu: move timers dump/restore code into separate file
231ba0cd2 zdtm/sched_policy00: use reset-on-fork flag
75fed59ef Add support for reset-on-fork scheduling flag
8f0e200e6 mem: fix some VMAs being incorrectly mapped wtih PROT_WRITE
a2b018a18 ci: try to fix broken docker test
a48aa33ea restorer: shstk: implement shadow stack restore
7dd583002 restore: add infrastructure to enable shadow stack
f47899c9e criu: kerndat: add kdat_has_shstk()
2ebd1a4f0 criu: shstk: prepare shadow stack parameters for restorer blob
4b6dda7ec criu: shstk: premap and prepopulate shadow stack VMAs
17eda3ce5 criu: shstk: add VMA_AREA_SHSTK flag
0aba3dcfa compel: shstk: prepare shadow stack signal frame
63a45e1c8 compel: infect: prepare parasite_service() for addition of CET support
6e491a19a compel: shstk: save CET state when CPU supports it
17f4dd095 compel: always pass user_fpregs_struct_t to compel_get_task_regs()
0b8c51eaa compiler: add ALIGN_DOWN macro
f590c2b63 zdtm/static: check that cgroup layout of threads is preserved
a0a6ec3dc cgroup: Add support for restoring a thread in a correct v1 cgroup
835afb1b8 criu-ns: fix lint error
e0b74f558 make: replace flake8 with ruff
7fd4a15e6 pb2dict: fix flake8 error
e0f91e66e kerndat: check support for PAGE_IS_SOFT_DIRTY
a808f09be amdgpu_plugin: fix lint errors
bd17bd43e sk-inet: fix codding style in restore_ip_opts
895a16c13 zdtm: Added tests for IP_TTL restore
71102e7f7 sk-inet: Added IP_TTL socket option
0d5923c95 amdgpu_plugin: Refactor code used to implement Checkpoint
733ef9631 amdgpu_plugin: Refactor code in preparation to support C&R for DRM devices
b689a6710 plugin/amdgpu: Also don't print 'plugin failed' in criu
59599dacd plugin/amdgpu: Don't print error for "No such process" during resume
92e8f9293 net: return bool with iptable_has_criu_jump_target
a62f82730 criu-log: remove unused declaration
d2511707f zdtm: socket-tcp-nft-nfconntrack: add a hook to the chain in nft case
afc0efcf7 pagemap-cache: add an ability to run tests without PAGEMAP_SCAN
cb64d73ad page-cache: use the PAGEMAP_SCAN ioctl when it is available
20628bc8a kerndat: check the PAGEMAP_SCAN ioctl
842289c7e net: add error messages for restore of nftables
d94251df7 test/nfconntrack: use nft or iptables-legacy
0ab2f9e97 net: fix network unlock with iptables-nft
d9c427d70 irmap: hardcode some more interesting paths
b419f3dfd make: fix compilation on alpine
7b689b7a4 gitignore: remove historical left-over files
2d1f4ec71 ci: disable non-root in user namespace test in container
fe8f5130c ci: fix centos-stream 9 ci errors
6679d60ff ci: do not use 'tail' for skip-file-rwx-check test
f86f1b849 tty: skip ioctl(TIOCSLCKTRMIOS) if possible
8a51639e3 Makefile: Use common warnings settings for loongarch64
37d62fa47 docker-test: downgrade docker to v24.0.7
1004625fa docker-test: fix condition for max tries
088390ea8 ci: switch to permissive selinux mode during test
900909d95 test: check for btrfs in the current directory
fc94b2d15 ci: fix rawhide netlink error
9f9737c80 comple: correct the syscall number of bind on ARM64
f8b14286b criu: Version 3.19 (Bronze Peacock)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Martin Jansa
|
3971471c05 |
metadata: relocation.inc: add whitespace around assignments
With: https://lists.openembedded.org/g/bitbake-devel/message/17508 there are many WARNINGs from this layer Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
b88da59f0b |
metadata: src_uri.inc: add whitespace around assignments
With: https://lists.openembedded.org/g/bitbake-devel/message/17508 there are many WARNINGs from this layer Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
c01273e001 |
metadata: add whitespace around assignments
With: https://lists.openembedded.org/g/bitbake-devel/message/17508 there are many WARNINGs from this layer will cover src_uri.inc files in next commit. Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
0aca307071 |
netavark: add whitespace around assignments
With: https://lists.openembedded.org/g/bitbake-devel/message/17508 there are WARNINGs like: WARNING: meta-virtualization/recipes-containers/netavark/netavark_1.14.1.bb: meta-virtualization/recipes-containers/netavark/netavark_1.14.1.bb:25 has a lack of whitespace around the assignment: 'PACKAGECONFIG[aardvark-dns]= ",,, aardvark-dns"' Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a309b738e7 |
nerdctl: update to v2.0.3
Bumping nerdctl to version v2.0.3-249-g497c7cf7, which comprises the following commits:
bd7cbb38 Stop sharding cache per containerd version
99d03ee8 Dockerfile: update buildkit to 0.20.1
cc81c720 Remove golanci-lint action
430c57c5 Update Canary and EL8 titles
1d372563 update RootlessKit (2.3.4)
27b91ecf ensure logger completion after container exit
e33a85f9 Dockerfile: remove "goversion" stage
98a531a2 Move GHA to zstd compression
bc4642a4 build(deps): bump the golang-x group across 1 directory with 6 updates
f19eb5a3 CI: simplify setting up Lima
7505c3f5 Replace hack/verify-no-patent.sh with depguard
e52580ee Adding document analyzing CI/dockerfile
f7901228 Disable buildx output for dependency stage
3daef1cb Implement updated test matrix
699c8509 Fix broken lint-license task
9182ea4e Increase wait for ensurecontainerstarted
a81136c2 Fix kubectl download url
bd5bcca4 Fix referenceutil.FamiliarMatch SIGSEGV
ce10c922 Update containerd/project-checks (1.2.2)
d80c2cf4 Fix alma ci target
34e44e7b Migrate TestRunDevice test
d9a0e87b Quiet out apt-get calls
0296acd3 Use makefile task to install golangci
0b606c7f build(deps): bump github.com/opencontainers/image-spec
121c656f build(deps): bump actions/cache from 4.2.1 to 4.2.2
678822a9 --quiet image pulls in tests
4d76aa96 CI: drop Ubuntu 20.04, add AlmaLinux 8
147ebca4 [ci] rollback setup vagrant comment
6d3c49a7 Fix test TestNoneNetworkHostName
62c1565b Add golangci and yamllint to tigron
077558c8 Lint fixes
7f049905 Move to creack pty
0020c912 Makefile fixes
ea685aed Add qemu/rosetta notes
8af2e4c2 Update containerd v2.0.3
e58ceaa6 build(deps): bump github.com/containernetworking/plugins
d432a4a1 build(deps): bump github.com/containerd/containerd/v2
ca1fd3cb build(deps): bump github.com/opencontainers/runtime-spec
37e5e59d build(deps): bump docker/setup-qemu-action from 3.5.0 to 3.6.0
898e3e46 Harden test pty error handling
e21e4b2c Cleaning variables and function names in cmd
0e883056 Fix apparmor host check to include aa-parser
a5a7f181 build(deps): bump actions/cache from 4.2.1 to 4.2.2
5220350d add hostsPath to inspect response
88e9c5d9 Rename NO_COLORS
715cb0c2 Enforce pkg isolation as part of golangci
f99a5635 build(deps): bump the docker group with 2 updates
d52eaf3e build(deps): bump docker/metadata-action from 5.6.1 to 5.7.0
166ace96 build(deps): bump docker/build-push-action from 6.14.0 to 6.15.0
18e52416 build(deps): bump docker/setup-qemu-action from 3.4.0 to 3.5.0
14b3ace1 build(deps): bump docker/setup-buildx-action from 3.9.0 to 3.10.0
44b8b584 Fix kube-hide-dupe docs typo
ef92eec5 build(deps): bump golang.org/x/crypto in the golang-x group
4b765cd8 Reorg test package
9210685b Makefile cleanup
b41e8c98 Normalize all command variables to cmd
701e5563 goimports-reviser: remove hack
7fcde18b Disable golangci preflight config validation
11f6fe2c go.mod: set minimum Go version to 1.23
7341e841 CI: set GOTOOLCHAIN=local
18df1402 update Go (1.24)
cd151127 CI: arm64-8core-32gb -> ubuntu-24.04-arm
01d3cafb Increase CI run timeout
0d62b98e Restrict EnsureContent to the requested platform
745aaf7f CI: set fail-fast to false
10ddc598 build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5
37d99587 feat: add hostConfig to nerdctl inspect response
c2c1d4a0 Rewrite signal tests
d90729c8 Add test tooling for signals
16e22577 Make subpackage test a separate module
655171c7 Remove unbuffer from container tests
c7919f93 Prevent acquire from blanking hosts file
3b59119e Cleanup XDGRuntime logic
0128d4a8 Remove forked sysinfo package
11e6d04b Tests to error on timeout
a687e2c9 Rewrite detach tests without unbuffer
8664311c feat: add signal option to containerRestart
8bef3618 docs: add --log-driver=none to run command reference
c1694998 Support bind propagation options in Compose volume long syntax
4e0688b7 build(deps): bump github.com/containerd/accelerated-container-image
a0f12369 build(deps): bump github.com/klauspost/compress from 1.17.11 to 1.18.0
59b48e63 build(deps): bump docker/build-push-action from 6.13.0 to 6.14.0
3eb9a963 build(deps): bump actions/cache from 4.2.0 to 4.2.1
d3f5d105 add tests
b45d96db build(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1
31a7ab84 build(deps): bump golangci/golangci-lint-action from 6.4.1 to 6.5.0
99210b69 add signal option to container stop command
893a3937 feat: add support for 'domainname' option in container create
5ffcba6e Fix FATA error when inspecting images in native mode
3f496b8c Cleanup old/unused helpers
105e5eba Remove require daemon version for >=1.6
8675cc6c build(deps): bump golangci/golangci-lint-action from 6.3.2 to 6.4.1
cb416319 Add pty support for testing
94c271e8 update runc (1.2.5)
974bc843 fix: network cleanup called twice
4e111d32 docs(nerdctl-compose): add missing details in command-reference.md
4722dd6f build(deps): bump github.com/compose-spec/compose-go/v2
3680b00a build(deps): bump gotest.tools/v3 from 3.5.1 to 3.5.2
3f7b70fa build(deps): bump golang.org/x/net in the golang-x group
a6086d1e build(deps): bump golangci/golangci-lint-action from 6.3.0 to 6.3.2
d64ab5a9 enable host name and default resolv.conf and hosts file in none network
402bd2a2 build(deps): bump docker/setup-qemu-action from 3.3.0 to 3.4.0
0f17259a build(deps): bump golang.org/x/crypto in the golang-x group
c6666e3f fix nerdctl-full SHA256SUMS fails
cf95ae0e Reduce file permissions
c4a795fa build(deps): bump docker/setup-buildx-action from 3.8.0 to 3.9.0
5e36bef0 build(deps): bump golangci/golangci-lint-action from 6.2.0 to 6.3.0
fd0bcbe5 build(deps): bump the golang-x group with 4 updates
2ecc3944 Fix apparmor test not running
38636145 Prevent reference filter from failing on dangling images
2b07c188 build(deps): bump github.com/spf13/pflag from 1.0.5 to 1.0.6
8a80469c Harden journald test
7565cebb build(deps): bump github.com/cyphar/filepath-securejoin
653c6de0 test: Add a test for container access with 127.0.0.2 specified in -p in rootless mode
82791bf6 fix journald logger exit and wait behavior
2a750939 Consistently use WithError when logging errors instead of %s
17bbdffd Consistently use %w instead of %s or %v when wrapping errors
6e5e943b fix: prevent panic in nydus snapshotter inspect
7f433aaa Fix socket address not being updated properly
10e4cda3 Test portability fix: ensure tini-custom is here
7c9d25ad Disable systemd test on arm64
fe59974d build(deps): bump docker/build-push-action from 6.12.0 to 6.13.0
99bd7728 Fix test time to use UTC
73520336 Skip TestRunBindMountPropagation
a6fe6c15 Fix wrong error comparison
ec6a6abd Relax error on annotations read failure
26c03224 build(deps): bump github.com/ipfs/go-cid from 0.4.1 to 0.5.0
8a0c16c0 build(deps): bump the docker group with 2 updates
af3bb999 build(deps): bump github.com/rootless-containers/bypass4netns
84caccfc build(deps): bump actions/setup-go from 5.2.0 to 5.3.0
a4fa4faa integration test: specify IPFS_PATH for IPFS service
cb7fc0d4 update BuildKit (0.19.0)
e7e27f62 update containerd-fuse-overlayfs (2.1.1)
00e21f75 update bypass4netns (0.4.2)
d786133a update RootlessKit (2.3.2)
f17df13e update Kubo (0.32.1)
8af25af6 update containerd (2.0.2)
08206c8e build(deps): bump github.com/rootless-containers/rootlesskit/v2
128e6a7c [doc] AppArmor profile setup for rootlesskit
ab027adf Correct `compose logs` command reference
9a6426d8 fix: save multiple images for the same image id to a tar archive
ae9894e3 build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0
ef26ad8f reset spec if update returned error
7a4c2528 build(deps): bump docker/build-push-action from 6.11.0 to 6.12.0
fcb900e9 test: Add an test for added logic to TestRunWithInvalidPortThenCleanUp
7bfbd31f fix: Add the logic to clean up an orphaned etchosts directory
e3d27107 test: refactor TestRunWithInvalidPortThenCleanUp
70bed8df build(deps): bump github.com/containerd/containerd/v2
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kyungjik Min
|
dd625f5d90 |
tini: Support posix basename from musl libc
This fixes building with musl libc. Signed-off-by: Kyungjik Min <dpmin7@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Zhang Peng
|
c949c06f0b |
cri-o: Add CONTAINER_DEFAULT_RUNTIME to run-ptest
CRI-O version 1.31 and later defaults to crun instead of runc. This change cause ptests to fail if crun is not installed on the target system, as the test runner verifies the runtime's availability using 'command -v "$CONTAINER_DEFAULT_RUNTIME"'. Additionally, CRI-O specifies the runtime via the VIRTUAL-RUNTIME_container_runtime variable as a dependency. This commit explicitly sets the CONTAINER_DEFAULT_RUNTIME environment variable within the run-ptest script, based on the value of VIRTUAL-RUNTIME_container_runtime. This ensures ptests execute with the expected container runtime. Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
351644d9bc |
skopeo: update to v1.18.0
Bumping skopeo to version v1.18.0-67-ge8d9f916, which comprises the following commits:
da1bf9f7 chore(deps): update dependency containers/automation_images to v20250324
7983f20a Remove obsolete build tag syntax
8d000f45 Use the new maps.Keys and slices.Sorted
1f49b2c0 Use slices.Backward
a31470d7 proxy: Add GetLayerInfoPiped
ec219604 Update github.com/hashicorp/go-multierror
1a38d976 Update github.com/dsnet/compress
49569bcf Complete paths for some transports
e7e09255 Don't complete a space after '<transport>:'
9c0f31dc In (skopeo inspect), validate the manifest against a digest reference
9fda7e73 In (skopeo layers), validate the blob against the expected digest
a0799484 Always close the blob we are reading from a registry
a5182876 fix(deps): update module golang.org/x/term to v0.30.0
b8637922 chore(deps): update dependency golangci/golangci-lint to v1.64.8
56ccf09c ROADMAP: new file
03fa889d chore(deps): update module golang.org/x/net to v0.36.0 [security]
15132e6c Update to Go 1.23
4080a631 fix(deps): update module github.com/containers/common to v0.62.2
cc743c3c chore(deps): update dependency golangci/golangci-lint to v1.64.7
91c6aa61 fix(deps): update module github.com/containers/image/v5 to v5.34.2
d00ea33d fix(deps): update module github.com/containers/storage to v1.57.2
7bd0dc21 .github: remove cirrus rerun action
547141ce fix(deps): update module github.com/opencontainers/image-spec to v1.1.1
a185498c chore(deps): update dependency golangci/golangci-lint to v1.64.6
fad5a31a chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security]
5744b9b4 chore(deps): update module github.com/go-jose/go-jose/v3 to v3.0.4 [security]
934ea727 fix(deps): update module github.com/containers/common to v0.62.1
8a44fe6c fix(deps): update module github.com/containers/image/v5 to v5.34.1
c7aaed73 Update for cobra API change
9d73060a fix(deps): update module github.com/spf13/cobra to v1.9.1
5c968d67 chore(deps): update dependency golangci/golangci-lint to v1.64.5
841a1b61 chore(deps): update dependency golangci/golangci-lint to v1.64.4
8c2eff1d chore(deps): update dependency golangci/golangci-lint to v1.64.3
f88186e6 [skip-ci] Packit/TMT: Run system tests
ff462b3d PR Labels: apply release label to release- branch PRs
8c20592d chore(deps): update dependency golangci/golangci-lint to v1.64.2
20746ae2 Bump Skopeo to v1.19.0-dev
64361bde Bump Skopeo to v1.18.0
bd1ac466 Switch to the CNCF Code of Conduct
59ec5547 fix(deps): update module golang.org/x/term to v0.29.0
04d65888 fix(deps): update module github.com/containers/common to v0.62.0
137a912c chore(deps): update dependency containers/automation_images to v20250131
52895bc6 fix(deps): update module github.com/spf13/pflag to v1.0.6
b78a4159 fix(deps): update module github.com/containers/image/v5 to v5.34.0
5eba0614 RPM: include check section to silence rpmlint
9764c99d RPM: cleanup gobuild macro for CentOS Stream
a81cb65f fix(deps): update module github.com/containers/storage to v1.57.1
85fa4dff fix(deps): update module github.com/containers/storage to v1.57.0
ed0efc69 feat: Add `--retry-delay` Option
ab53f644 fix(deps): update module github.com/containers/common to v0.61.1
653db366 fix(deps): update module github.com/containers/image/v5 to v5.33.1
6483de48 fix(deps): update module github.com/containers/storage to v1.56.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
12dcef2958 |
runc-opencontainers: update to v1.3.0-rc.1
Bumping runc to version v1.3.0-rc.1-40-g25d47644, which comprises the following commits:
bac33825 build(deps): bump github.com/opencontainers/selinux
bc96bc85 libct/seccomp: use maps and slices pkgs
370733b7 libct/cap: rm mapKeys, use maps.Keys, slices.Sorted
3a33b6a3 Make state.json 25% smaller
9c5e687b libct: Use chown(uid, -1) to not change the gid
d31e6b87 ci: bump bats to v0.11.0
8e653e40 script/setup_host_fedora.sh: use bash arrays
a76a1361 script/setup_host_fedora.sh: remove -p from mkdir
af386d1d tests/int: rm some "shellcheck disable" annotations
b48dd651 ci: bump shellcheck to v0.10.0
6e5ffb7c Makefile: bump shfmt to v3.11.0
53931553 libct: log a warning on join session keyring failure
9aeb7905 tests/int/selinux: fix skip message
5ac77ed6 libct/int: add/use needUserNS helper
1d9bea53 .cirrus.yml: install less dependencies
1afa1b86 signals: replace unix.Kill with process.Signal
346c80d7 libct: replace unix.Kill with os.Process.Signal
135552e5 CI: migrate Vagrant + Cirrus to Lima + GHA
d5fe5303 build(deps): bump golang.org/x/net from 0.36.0 to 0.37.0
000cdef7 build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
79e9cf53 doc: update spec-conformance.md
12c2e21f build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0
05e83fc6 deps: bump go-criu to v7
5d6e7e12 VERSION: back to development
a00ce11e VERSION: release v1.3.0-rc.1
10ca66bf runc exec: implement CPU affinity
d92dd226 performance improvement: setup signal notify in a new go routine
a75076b4 Switch to opencontainers/cgroups
6e01e850 CHANGELOG: fwd port 1.2.1 to 1.2.5 changes
537a2276 build(deps): bump github.com/opencontainers/runtime-spec
c43ea7d6 exeseal: do not use F_SEAL_FUTURE_WRITE
1d047e44 expose criu options for link remap and skip in flight
559bd4eb libcontainer: rename dmz -> exeseal
ad09197e libct: don't send config to nsexec when joining an existing timens
74619689 test: exec into a container with private time ns
28475f12 Retry direct unix package calls if observing EINTR
4e0f7a20 libct/cg/dev: remove specconv dependency
69792827 libct/cg: don't use utils.CleanPath
5e1dcdf5 libct/cg: add internal/path.Inner
271aa88e libct/cg/fs2: rm _defaultDirPath
7bebe68c libct/cg: stop using utils.ProcThreadSelf
42449786 CI: gha: rm ubuntu-20.04
79a4ac05 deps: bump cilium/ebpf to v0.17.3
8db6ffbe libc/utils: simplify CleanPath
26cfe142 release: explicitly set --keyserver in release signing scripts
0e3b5d5b build: bump libseccomp to v2.5.6
d237bc46 .cirrus.yml: use Go 1.24
16d73367 Require Go 1.23.x, drop Go 1.22 support
87420749 CI: add Go 1.24, drop go1.22
99f9ed94 runc exec: fix setting process.Scheduler
b9114d91 runc exec: fix setting process.ioPriority
73849e79 libct: simplify Caps inheritance
049a5f76 libct/cap: allow New(nil)
f26ec922 libct: rm Rootless* properties from initConfig
2a86c357 libct: document initConfig and friends
13277b20 build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0
4b87c7d4 Fixups for newProcess
8fbdb7e7 setupIO: optimize
c4eb0c61 libct: createExecFifo: optimize
5d2e2445 execProcess: move some code to newProcess
c283ed10 tests/int: add hooks argv[0] test
8529591c build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5
746a5c23 libcontainer/configs/validate: improve rootlessEUIDMount
055041e8 libct: use strings.CutPrefix where possible
259b71c0 libct/utils: stripRoot: rm useless HasPrefix
ecf74300 libct/cg/fscommon: GetCgroupParam*: unify
ef983f51 libct/cg/fscommon: ParseKeyValue: stricter check
d83d533b libct/cg/fscommon: GetValueByKey: use strings.CutPrefix
f1348712 libct/cg/fscommon: ParseKeyValue: use strings.Cut
e9855bda libct/cg/fscommon: use strings.Cut in RDMA parser
930cd494 libct/cg/fs2: use strings.Cut in parsePSIData
40ce69cc libct/cg/fs2: use strings.Cut in setUnified
037668e5 libct/cg/fs2: simplify parseCgroupFromReader
075cea3a libcontainer/cgroups/fs: some refactoring
4271ecf7 libct/cg/fs: refactor getCpusetStat
bfcd479c libct/cg/fs: getPercpuUsage: rm TODO
871d9186 exec: improve getSubCgroupPaths
7149781f exec: use strings.Cut to parse --cgroup
ec9b0b5f runc list: use standard os/user
52f702af libct: earlier Rootless vs AdditionalGroups check
7dc24868 libct: switch to numeric UID/GID/groups
b55167e0 tests/int/exec --user: check default HOME
ccb589bd libc/int/userns: add build tag to C file
d84388ae libct/cg/sd: set the DeviceAllow property before DevicePolicy
a274d275 build(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0
54fa0c55 capabilities: be more graceful in resetting ambient
f414b534 CI: fix criu-dev compile
8e5bb0d8 deps: roll back to cilium/ebpf v0.16.0
6c9ddcc6 libct: switch from libct/devices to libct/cgroups/devices/config
200f5631 libct/devices: move config to libct/cg/devices/config
70e500e7 deps: update to github.com/cyphar/filepath-securejoin@v0.4.1
24ec764a build(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4
33315a05 libcontainer: if close_range fails, fall back to the old way
111e8dcc libcontainer: Use MaxInt32 as the last FD to match kernel size semantics
7b26da9e libcontainer: Prevent startup hang when CloseExecFrom errors
9af79522 build(deps): bump google.golang.org/protobuf from 1.36.2 to 1.36.3
a50e6872 tests/int: simplify assignments
a22ea827 tests/int/hooks_so: don't hardcode soname
1890af6d support cgroup v1 mounted with noprefix
af929228 RELEASES: add formal release policy for runc
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
536ea278b6 |
podman-tui: update to v1.4.0
Bumping podman-tui to version v0.9.0-438-g204d054c, which comprises the following commits:
204d054c Bump to v1.4.0
59a9904e README.md fix demo link
8460ac45 Bump golang.org/x/crypto to v0.33.0
db872518 Bump github.com/containers/buildah from 1.38.1 to 1.39.1
87d8ab15 bugfix panic in system events
610cf9fc Bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5
aa8a4771 Bump github.com/spf13/cobra from 1.8.1 to 1.9.1
7c30fa9d Bump podman to v5.4.0
9a57aeb7 enhance: merge READMEs
a07daf87 docs: enhance directory structure
53146731 Bump github.com/containers/podman/v5 from 5.3.1 to 5.3.2
958a2a44 packit update epel + centos stream
af4b22fa Bump golang.org/x/net from 0.30.0 to 0.33.0
d8f0ffb3 Bump github.com/gdamore/tcell/v2 from 2.7.4 to 2.8.1
086842a2 Bump golang.org/x/crypto from 0.31.0 to 0.32.0
f1f1ff11 Bump golang.org/x/crypto from 0.29.0 to 0.31.0
0e8ff20e Bump to v1.4.0-dev
37019c2f Bump to v1.3.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
adcaf0618b |
podman-compose: update to v1.3.0 -tip
Bumping podman-compose to version v1.3.0-107-g4d899ed, which comprises the following commits:
f9489af Allow merging of args in both list and dict syntax
65b455f Fix project name evaluation order
1aa750b integration/tests: Test project name override with COMPOSE_PROJECT_NAME env variable
98b9bb9 Fix interpolation for COMPOSE_PROJECT_NAME
170411d test/integration: Test COMPOSE_PROJECT_NAME interpolation
f5a6df6 added changes to release notes
f106ea0 modifications to pass pylint test
b748c26 add try-except block to handle error in case of shutdown error
3973c47 catch SIGINT signal properly in 'up' function and call compose 'down' function for a graceful shutdown
2e7d83f Properly surface errors from build commands
8ef537e test/integration: Automate manual `selinux` test
d476071 Don't raise exception on inexistent services in 'down' command
202c377 test/integration: Automate manual `uidmaps` test
b9f2779 Add hook to check for signoff in commit messages
4cd1642 Add quiet flag to podman-compose config
fd40133 added release note to newsfragment directory
37b27fa Refactor event loop handling to simplify logic for Windows platforms
c6b3d49 Adds lint exclusions already ignored by the code
10ad739 Replaces black with ruff on pre-commit-config
784d798 Fix event loop handling for Windows platform in compose_up function
81a0a59 Add more logging tests
c289a3b Fix logging test coding style
baccce4 Fix comments related to logging
cbc5a8c Add newsfragment for interface_name option
aeaceed integration test for x-podman.interface_name option
b1eb558 Document existence of x-podman.interface_name
1cdc9e6 interface_name can be specified in net_config_
838957b test/integration: Automate manual 'secrets' test
d4e5859 Do not close file descriptors when executing podman
bfba7ba tests/integration: Automate manual `seccomp` test
43a2f1d Implement x-podman.pod_args to override --pod-args default
eaec193 tests/integration: Describe `pid` test
bfea139 tests/integration: Automate manual `no_services` test
e626f15 tests/integration: Automate manual `nets_test_ip` test
29404af tests/integration: Automate manual 'nets_test3' test
e03d675 Remove incorrect os.chdir call to fix folder error
bdb3e4e Throw a readable error on too old Python
105e390 Add support for dockerfile_inline
d9ef3d2 tests/integration: Add missing __init__.py for network_scoped_aliases
d23ef4f tests/integration: Add missing __init__.py for build_labels test
b685bce tests/integration: Move test utils to one test_utils file
7d5bf64 tests/integration: Move test "vol" to corresponding directory
9f7ae38 tests/integration: Move test "ports" to corresponding directory
3cee4e0 tests/integration: Move test "config" to corresponding directory
498a199 tests/integration: Move test "env" to corresponding directory
488908f tests/integration: Move test "env_file" to corresponding directory
f7bcc42 tests/integration: Move test "up_down" to corresponding directory
a73df71 tests/integration: Move test "build_ulimits" to corresponding directory
50dc19f tests/integration: Move test "network" to corresponding directory
9029dce tests/integration: Move test "nets_test2" to corresponding directory
a8282c7 tests/integration: Move test "nets_test1" to corresponding directory
f4b775c tests/integration: Move test "nethost" to corresponding directory
adf30e0 tests/integration: Move test "multicompose" to corresponding directory
41675c3 tests/integration: Move test "ipam_default" to corresponding directory
6caf2ea tests/integration: Move test "interpolation" to corresponding directory
3093b00 tests/integration: Move test "include" to corresponding directory
1c21d65 tests/integration: Move test "in_pod" to corresponding directory
18e5fd6 tests/integration: Move test "filesystem" to corresponding dir
24bdfd1 tests/integration: Move test "extends_w_file_subdir" to corresp. dir
c2d3e15 tests/integration: Move test "extends_w_file" to corresponding directory
ba95100 tests/integration: Move test "extends_w_empty_service" to corresp. dir
6022669 tests/integration: Move test "extends" to corresponding directory
e29df71 tests/integration: Move test "exit_from" to corresponding directory
21b9d38 tests/integration: Move test "deps" to corresponding directory
4c17ce2 tests/integration: Move test "default_net_behavior" to corresponding dir
09d54e9 tests/integration: Move test "build_secrets" to corresponding directory
f1dd9b3 tests/integration: Move test "build_fail" to corresponding directory
87af67f tests/integration: Move test "network_scoped_aliases" to corresp. dir
f1d6638 tests/integration: Move test "build" to corresponding directory
69ffff3 tests/integration: Move test "additional_contexts" to corresp. dir
9be3ec9 Add network "dns" support
6e642dc Add network "disable-dns" support
2aa042b expand service environment_variables before adding to subs_dict
bc4177f Exclude dependent containers on up if --no-deps.
8206cc3 Run should not add --requires if --no-deps.
48c6c38 build(deps): bump virtualenv from 20.25.1 to 20.26.6
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d7b7261eec |
podman: update to v5.4.1
Bumping libpod to version v5.4.1-10-g227df90eb7, which comprises the following commits:
33b4b301fc RPM: Add riscv64 to ExclusiveArch-es
64e2b91ab4 Fix HealthCheck log destination, count, and size defaults
bef77d74d7 Win installer test: hardcode latest GH release ID
88a3bfbde2 Packit: Fix action script for fetching upstream commit
405c55b4a4 Bump to v5.4.2-dev
b79bc8afe7 Bump to v5.4.1
01a55d9d5c update gvproxy version to 0.8.4
0f20d21240 Update Buildah to v1.39.2
bdcede792f Update release notes for v5.4.1
3e6e003173 Fix reporting summed image size for compat endpoint
090dbc4cee podman-import only supports gz and tar
5327df1921 quadlet kube: correctly mark unit as failed
bc37e935ba pkg/domain/infra/abi/play.go: fix two nilness issues
02e8a59774 kube play: don't print start errors twice
cd8582d4f0 libpod: race in WaitForConditionWithInterval()
ab7c54b4cf libpod: race in WaitForExit() with autoremove
180d55165d Don't try to resolve host path if copying to container from stdin.
b716aa17e2 Use svg for pkginstaller banner
bff9da4e3a Create quota before _data dir for volumes
a15623d12f Packit: clarify secondary status in CI
118aa9ef94 Packit/RPM: Display upstream commit SHA in all rpm builds
fea21e9bc0 podman run: fix --pids-limit -1 wrt runc
07d7101429 vendor: update github.com/go-jose/go-jose/v3 to v3.0.4
599a0b71a6 chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security]
b8b0639e7c wire up --retry-delay for artifact pull
5671cfe3ab Revert "silence false positve from golangci-lint"
2d18a7cc47 update golangci-lint to v1.64.4
0b31c710ce update golangci-lint to v1.64.2
fc63a340f3 silence false positve from golangci-lint
e50898e1f7 cmd/podman: refactor Context handling
11ef179de2 fix new usetesting lint issue
f5d96a5959 Packit/Copr: Fix `podman version` in rpm
fd5eb1fdf3 Remove persist directory when cleaning up Conmon files
223f827213 Bump to v5.4.1-dev
f9f7d48b24 Bump to v5.4.0
246011458c Update release notes for v5.4.0 final
3d344ffd26 In SQLite state, use defaults for empty-string checks
2612e3c233 Bump FreeBSD version to 13.4
3d917a395c docs: add v5.4 to API reference
13ebc5860c Update rpm/podman.spec
f34d6c76db RPM: set buildOrigin in LDFLAG
6218d42ed6 RPM: cleanup macro defs
18249e10c1 Makefile: escape BUILD_ORIGIN properly
d280feb96c rootless: fix hang on s390x
fa263d2cc9 Set Cirrus DEST_BRANCH appropriately to fix CI
0f01f00f03 Bump to v5.4.0-dev
ad54787bf0 Bump to v5.4.0-rc3
6c78bad0dd Update release notes for v5.4.0-rc3
02eac2979c Add BuildOrigin field to podman info
141eae99b8 artifact: only allow single manifest
d5989990d5 test/e2e: improve write/removeConf()
522f9de9e3 Add --noheading to artifact ls
9e83191c8f Add --no-trunc to artifact ls
4cd76ef27b Add type and annotations to artifact add
bc8124fd62 pkg/api: honor cdi devices from the hostconfig
57b9709b69 util: replace Walk with WalkDir
bc5de3dfc7 fix(pkg/rootless): avoid memleak during init() contructor.
8ee7b117b6 Add `machine init --playbook`
5feb81d9ff RPM: include empty check to silence rpmlint
48459db076 RPM: adjust qemu dependencies
9b67d4c285 Force use of iptables on Windows WSL
cadf081554 rpm: add attr as dependency for podman-tests
d4f5817862 update gvproxy version
fe02e390af [v5.4] Bump Buildah to v1.39.0
9e2e7f2a77 podman exec: correctly support detaching
e24ccdd27b libpod: remove unused ExecStartAndAttach()
25674e05cd [v5.4] Bump c/storage to v1.57.1, c/image v5.34.0, c/common v0.62.0
5f6adf4d80 Move detection of libkrun and intel
599da8c50b Prevent two podman machines running on darwin
03b100563e Remove unnecessary error handling
bba28688f7 Remove usused Kind() function
d475b48766 Bump to v5.4.0-dev
14f6a69dd3 Bump to v5.4.0-rc2
d52277db75 Update release notes for v5.4.0-rc2
fa0e8f0582 Safer use of `filepath.EvalSymlinks()` on Windows
1c111eead7 error with libkrun on intel-based machines
14cd6ff1d2 chore(deps): update dependency pytest to v8.3.4
97323a691a test/buildah-bud: skip two new problematic tests on remote
527a51dcc4 Fix podman-restart.service when there are no containers
3aa09dd521 Avoid upgrading from v5.3.1 on Windows
81eb84fdaa Clean up after unexpectedly terminated build
06c103469d system-tests: switch ls with getfattr for selinux tests
141bd613b8 vendor latest c/{buildah,common,image,storage}
bbf00ec6bf Makefile: Add validatepr description for 'make help' output
0d2431dca2 docs: Enhance podman build --secret documentation and add examples
016f41ab49 docs: mount.md - idmapped mounts only work for root user
4bdb947d72 Define, and use, PodmanExitCleanlyWithOptions
df9e8c3ce6 Eliminate PodmanSystemdScope
7c40e85968 Fix image ID query
11ee6c4f90 Revert "Use the config digest to compare images loaded/pulled using different methods"
6639c20278 Update c/image after https://github.com/containers/image/pull/2613
f20d9bd637 Update expected errors when pulling encrypted images
9363c8c362 Eliminate PodmanExtraFiles
44c5767460 Introduce PodmanTestIntegration.PodmanWithOptions
ce1b4f72a7 Restructure use of options
d509bb0823 Inline PodmanBase into callers
f17590b2bd Pass all of PodmanExecOptions to various [mM]akeOptions functions
f2d552f5db Turn PodmanAsUserBase into PodmanExecBaseWithOptions
51d599bce3 Avoid indirect links through quadlet(5)
5522def65a do not set the CreateCommand for API users
5181becfde Add podman manifest rm --ignore
f911d39457 Bump to v5.4.0-dev
1b3528df8d Bump to v5.4.0-rc1
6c81dc4f42 fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.2
d7553fabc7 podman artifact
b6f1364319 vendor latest c/{common,image,storage}
cfac38a0f2 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.2
6ee51c5e4f cirrus: bump macos machine test timeout
bdc195d641 pkg/machine/e2e: improve podman.exe match
dc3a7e56be pkg/machine/e2e: improve "list machine from all providers"
cfeefb3219 Remove JSON tag from UseImageHosts in ContainerConfig
805e78c2aa Set network ID if available during container inspect
969057bacc Stop creating a patch for v5.3.1 upgrades on windows
34d42514f1 compose docs: fix typo
d4f4cf0988 Document kube-play CDI support
e93f0acbee docs: Add quadlet debug method systemd-analyze
6ad44fe179 Replace instances of PodmanExitCleanly in play_kube_test.go
6ad4742ba8 docs: add 'initialized' state to status filters
ded5a2db82 fix(deps): update module google.golang.org/protobuf to v1.36.3
3fb37c588d Switch all calls of assert.Nil to assert.NoError
6565bde6e8 Add --no-hostname option
68f29df602 Fix unescaping octal escape sequence in values of Quadlet unit files
a91aa36367 Remove `.exe` suffix if any
0d0a78cc6b Add kube play support for CDI resource allocation
75b4a1b2aa add support to `;` for comments in unit files as per systemd documentation
de1aa44cc9 Use PodmanExitCleanly in attach_test.go
0c18beaea7 Introduce PodmanTestIntegration.PodmanExitCleanly
ba24512959 chore(deps): update dependency setuptools to ~=75.8.0
121caa04ca Add newer c/i to support artifacts
fca64e5429 fix(deps): update module golang.org/x/tools to v0.29.0
3be6c501c0 fix(deps): update module golang.org/x/net to v0.34.0
806722b3d6 specgenutil: Fix parsing of mount option ptmxmode
b0b1d19723 namespaces: allow configuring keep-id userns size
6dba0d9586 Update description for completion
0b3ad66a78 Quadlet - make sure the /etc/containers/systemd/users is traversed in rootless
418ea52e06 Document .build for Image .container option
c75e1c41d0 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.9.1
62c81298fd New VM Images
e9fb805522 update golangci/golangci-lint to v1.63.4
4288c81da0 fix(deps): update module google.golang.org/protobuf to v1.36.2
b23349d3bd chore(deps): update dependency setuptools to ~=75.7.0
dd76034660 Fixing ~/.ssh/identity handling
1dbd68f061 vendor latest c/common from main
17a9408c0d fix(deps): update module github.com/shirou/gopsutil/v4 to v4.24.12
481c608fd4 fix(deps): update module github.com/opencontainers/runc to v1.2.4
1e0f03b046 specgen: fix comment
7a51916e3b Add hint to restart Podman machine to really accept new certificates
a445ebde9d fix(deps): update module github.com/onsi/gomega to v1.36.2
2aff249156 fix(deps): update module github.com/moby/term to v0.5.2
6fa234a5de Pass container hostname to netavark
53e5e402aa Fix slirp4netns typo in podman-network.1.md
d1a3f96cbf Add support to ShmSize in Pods with Quadlet
de829251fc fix(deps): update module github.com/onsi/ginkgo/v2 to v2.22.1
29c29e215f chore(deps): update module golang.org/x/crypto to v0.31.0 [security]
1b1e0446a5 fix(deps): update module golang.org/x/net to v0.33.0 [security]
ecd882f9f7 Kube volumes can not container _
cbd650212a fix(deps): update module github.com/docker/docker to v27.4.1+incompatible
f2f6eb88e9 test/system: fix "podman play --build private registry" error
23d4908c8b test/system: CopyDirectory() do not chown files
8729725684 test/system: remove system dial-stdio test
153a975888 shell completion: respect CONTAINERS_REGISTRIES_CONF
10d65f30b6 fix(deps): update module github.com/cpuguy83/go-md2man/v2 to v2.0.6
8b23e6d408 When generating host volumes for k8s, force to lowercase
ff9d4e72b0 test: enable newly added test
8b90e3f9c0 vfkit: Use 0.6.0 binary
3021dbec7a gvproxy: Use 0.8.1 binary
64e94efb95 systemd: simplify parser and fix infinite loop
5f79cd3aef Revert "win-installer test: revert to v5.3.0"
e3d2463a48 Avoid rebooting twice when installing WSL
2bca5052f1 Avoid rebooting on Windows when upgrading and WSL isn't installed
af607d0de4 Add win installer patch
d582c39dc8 Bump WiX toolset version to 5.0.2
e6d8603136 test/e2e: SkipOnOSVersion() add reason field
e74df8c35a test/e2e: remove outdated SkipOnOSVersion() calls
ae9120a71d Update VM images
f1e77cf172 fix(deps): update module golang.org/x/crypto to v0.31.0 [security]
c11fd6562d fix(deps): update module github.com/crc-org/crc/v2 to v2.45.0
851ef2529f fix(deps): update module github.com/opencontainers/runc to v1.2.3
cf505fe788 quadlet: fix inter-dependency of containers in `Network=`
e4a135a6ac Add man pages to Mac installer
5848dbee68 fix(deps): update module github.com/onsi/gomega to v1.36.1
a70c418b7d fix(deps): update module github.com/docker/docker to v27.4.0+incompatible
2f31a61cce Fix device limitations in podman-remote update on remote systems
2c58af0e6b Use latest version of VS BuildTools
9c14d15f4c bin/docker: fix broken escaping and variable substitution
0a4885610d manifest annotate: connect IndexAnnotations
8f45474809 Fix panic in `manifest annotate --index`
9dbc9b5055 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.5
45c979d6b3 fix(deps): update module golang.org/x/net to v0.32.0
2c17ffa54d fix(deps): update module golang.org/x/tools to v0.28.0
a9b52fdedf fix(deps): update module golang.org/x/crypto to v0.30.0
66f9e81c17 fix(deps): update module golang.org/x/sys to v0.28.0
8f1266c717 Fix overwriting of LinuxResources structure in the database
c76932f4c6 api: replace inspectID with name
18a93ec68b fix(deps): update github.com/opencontainers/runtime-tools digest to f7e3563
e7bbcbfbf7 Replace ExclusiveArch with ifarch
c4c3fb23ce fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.1
ededb4c3c4 Improve platform specific URL handling in `podman compose` for machines
0d3a653c30 Fix `podman info` with multiple imagestores
43825122d4 Switch to fixed common
49b52227b4 refact: use uptime.minutes instead of uptime.seconds
dec8f3dca6 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.24.11
db6c2c7cdf fix(deps): update golang.org/x/exp digest to 2d47ceb
f3d250cf27 fix(deps): update github.com/godbus/dbus/v5 digest to c266b19
5bbfed2dc1 Cover Unix socket in inpect test on Windows platform
48ae52c08b Add a test for forcing compression and v2s2 format
9de7e07e56 fix(deps): update module github.com/crc-org/vfkit to v0.6.0
9475ea8fb9 Package podman-machine on supported architectures only.
156fc084a9 Fixes missing binary in systemd.
6673f5c202 stats: ignore errors from containers without cgroups
1fa27ffb62 api: Error checking before NULL dereference
4ef773d69e [skip-ci] Packit/copr: switch to fedora-all
2f1a1fb6f3 make remotesystem: fail early if serial tests fail
4b38294e92 spec: clamp rlimits without CAP_SYS_RESOURCE
6f85808707 Clarify the reason for skip_if_remote
39e08c3ffa Sanity-check that the test is really using partial pulls
5ff496ea2b Fix apparent typos in zstd:chunked tests
7f6a203558 Fix compilation issues in QEMU machine files (Windows platform)
e66b788a51 Mount volumes before copying into a container
44b0c24ca5 Revert "libpod: remove shutdown.Unregister()"
e608874004 docs: improve documentation for internal networks
697c4181d2 docs: document bridge mode option
415d762475 [skip-ci] Packit: remove epel and re-enable c9s
e5ed7847c1 chore(deps): update dependency golangci/golangci-lint to v1.62.2
e16f14a44d vendor: update containers/common
ef565b76f2 OWNERS: remove edsantiago
c2dcfca4ca fix(deps): update module github.com/onsi/gomega to v1.36.0
506fec1fa9 fix(deps): update github.com/containers/common digest to ceceb40
e4e7bc41f3 refact: EventerType and improve consistency
4f7395f93a Add --hosts-file flag to container and pod commands
dc564257a2 Add nohosts option to /build and /libpod/build
936461e3c2 fix(deps): update module github.com/stretchr/testify to v1.10.0
13affe96d6 Quadlet - Use = sign when setting the pull arg for build
916b805f97 win-installer test: revert to v5.3.0
5f907e4850 fix(deps): update module github.com/crc-org/crc/v2 to v2.44.0
34d63459ba fix(deps): update module github.com/onsi/ginkgo/v2 to v2.22.0
3096681ce3 chore(deps): update dependency setuptools to ~=75.6.0
07aaa7832a Update windows installer tests
7162c58ba2 Windows: don't install WSL/HyperV on update
c6549fc25b Switch to non-installing WSL by default
28305685f6 fix(deps): update github.com/containers/buildah digest to 52437ef
a1249425bd Configure HealthCheck with `podman update`
97ed067d1a CI: --image-volume test: robustify
e6e9d2c21c docs: add 5.3 as Reference version
926b31e053 Bump CI VMs
e60e11167e libpod: pass down NoPivotRoot to Buildah
d59794992f vendor: bump containers/buildah
cf2ef12664 fix(deps): update module github.com/opencontainers/runc to v1.2.2
61b57b7d7d Overlay mounts supersede image volumes & volumes-from
d513973237 libpod: addHosts() prevent nil deref
71f1f52894 only read ssh_config for non machine connections
cbb2820a7e ssh_config: allow IdentityFile file with tilde
a7120b50b1 ssh_config: do not overwrite values from config file
8a5ec2c505 connection: ignore errors when parsing ssh_config
7b41e28b95 Bump bundled krunkit to 0.1.4
2e22ab3bcd fix(deps): update module google.golang.org/protobuf to v1.35.2
315e7412e8 add support for driver-specific options during container creation
6809bf1d90 doc: fix words repetitions
d2d2e4a605 Update release notes on main for v5.3.0
590fcafc2b chore(deps): update dependency setuptools to ~=75.5.0
1c77ee6fc5 CI: system tests: parallelize 010
34a15ae300 fix podman machine init --ignition-path
3e47e0bc8c vendor: update containers/common
0a69aefa41 spec: clamp rlimits in a userns
8a192c8403 Add subpath support to volumes in `--mount` option
da6404ba16 refactor: simplify LinuxNS type definition and String method
0a1363d8eb test/e2e: remove FIPS test
42e8322532 vendor containers projects to tagged versions
fa335f99e0 fix(deps): update module github.com/moby/sys/capability to v0.4.0
ca7703643b chore(deps): update dependency setuptools to ~=75.4.0
969417711d system tests: safer install_kube_template()
33398ebc1e Buildah treadmill tweaks
9eca92d625 update golangci-lint to v1.62.0
8d8b98b64d fix(deps): update module golang.org/x/net to v0.31.0
e1a6c53909 fix(deps): update module golang.org/x/tools to v0.27.0
e39ddde709 Revert "Reapply "CI: test nftables driver on fedora""
b5c9fe948c Yet another bump, f41 with fixed kernel
30a82cad7a test: add zstd:chunked system tests
40534d352e pkg/machine/e2e: remove dead code
e1fe4b4b95 fix(deps): update module golang.org/x/crypto to v0.29.0
fbbfd07463 kube SIGINT system test: fix race in timeout handling
b20960b860 New `system connection add` tests
62c9627d7a Update codespell to v2.3.0
cbf1d7fcae Avoid printing PR text to stdout in system test
d49497ce6c Exclude symlink from pre-commit end-of-file-fixer
9f5bbecb95 api: Add error check
1b74ab5a85 [CI:ALL] Bump main to v5.4.0-dev
22152a2f9c test/buildah-bud: build new inet helper
fb3a0e93a8 test/system: add regression test for TZDIR local issue
f6af35c695 vendor latest c/{buildah,common,image,storage}
0e66a793bc Reapply "CI: test nftables driver on fedora"
d770069062 Revert "cirrus: test only on f40/rawhide"
ba5ce49c10 test f41 VMs
6346a11b09 AdditionalSupport for SubPath volume mounts
4e8d2dd726 wsl-e2e: Add a test to ensure port 2222 is free with usermode networking
6cf3cb1bfc winmake.ps1: Fix the syntax of the function call Win-SSHProxy
9a0c0b2eef volume ls: fix race that caused it to fail
9cb80d1856 gvproxy: Disable port-forwarding on WSL
52caa0fbb9 build: update gvisor-tap-vsock to 0.8.0
c23d9c6f23 Log network creation and removal events in Podman
c05987ddd3 api: Replace close function in condition body
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
11832b140a |
netavark: update to v1.14.1
Creates updated with: bitbake -c update_crates netavark
Bumping netavark to version v1.14.1-1-g0d623ce, which comprises the following commits:
8711e83 Release v1.14.1
0b7cbc5 Release notes for v1.14.0
389d8d9 Fix detect of Firewalld's StrictForwardPorts property
6267803 test/001-basic: Make commit test optional
99bd7d7 cirrus: do not build debug bins
ce947ad Makefile: do not rebuild if nothing changed
1e5dc1c Makefile: uninstall netavark-firewalld-reload.service
3b5bf92 docs/Makefile: several fixes
c4c37ca Makefile: build docs by default
26baf2c Makefile: do not build twice
2af9044 Release v1.14.0
c38577b release notes for v1.14.0
b086c4e update release notes from v1.13.1
35a0efb run cargo update
4fea4c0 Finalize firewalld port forwarding support
6b4ecbd chore(deps): update rust crate once_cell to 1.20.3
6f0bc1d fix(deps): update rust crate rand to 0.9.0
6e5de55 Add handling for firewalld's StrictForwardPorts setting
fd8e99b fix lint issues wirh rust 1.84
bb17a6d chore(deps): update dependency containers/automation_images to v20250131
3cd3d9e chore(deps): update rust crate tempfile to 3.16.0
f57ae66 rename macvlan_dhcp.rs to dhcp.rs
58bb08d bridge: only allow dhcp with unmanaged mode
a75c979 bridge: support DHCP ipam driver
a47b5df fix(deps): update rust crate ipnet to 2.11.0
a03cdd9 fix(deps): update rust crate serde_json to 1.0.136
b4ccb6c fix(deps): update rust crate log to 0.4.24
7562017 bridge: add vlan support
cb250d4 fix(deps): update rust crate tokio to 1.43.0
7d9edf9 fix(deps): update rust crate serde_json to 1.0.135
5789f67 New VM Images
eb49d9a fix(deps): update rust crate clap to ~4.5.23
d67e98a chore(deps): update rust crate tempfile to 3.15.0
854b8bf fix(deps): update rust crate nispor to 1.2.22
2c759c5 fix(deps): update rust crate serde_json to 1.0.134
732cc05 fix(deps): update rust crate env_logger to 0.11.6
2bf9cfd Add container hostname to DHCP requests and use container id as client id
bbc5f95 fix(deps): update rust crate mozim to 0.2.5
6217c49 generate protobuf in OUT_DIR
d0d999b fix(deps): update rust crate tower to 0.5.2
795a36b Cargo.lock: bump some versions
a2ec8cc run cargo update
cbfe8fe cargo: set rust-version
6453c23 fix new rust 1.83 lint errors
62f4570 OWNERS: remove edsantiago
73e9911 setup: on av errors cleanup again
5861afa nftables: add daddr match to port forward jump rule
2900e92 network: bridge: don't change forwarding sysctl for internal bridges
4dae6d0 network: bridge: add support for unmanaged mode
71d8a5a test-dhcp: remove deprecated ifconfig/brctl commands
55a0f25 fix new rust 1.82 lint errors
8892b7f update ci images
ceb113f fix(deps): update rust crate serde_json to 1.0.133
dc99b01 network: bridge: add support for host_interface_name option
818a19f network: add support for network-specific options
a9dcf42 fix(deps): update rust crate ipnet to 2.10.1
b41f6f5 chore(deps): update rust crate tempfile to 3.14.0
31c32a9 fix(deps): update rust crate tokio to 1.41.1
e2cb0bd fix(deps): update rust crate anyhow to 1.0.93
1fca9f9 fix(deps): update rust crate url to 2.5.3
7dea7fb [skip-ci] RPM: cleanup changelog conditionals
8425b8e fix(deps): update rust crate anyhow to 1.0.92
1d75d62 Bump to 1.14.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
a42666e77c |
Reapply "k8s: WIP [needs newer go]: not for merge: update to -tip"
We now have a new enough go in OEcore to enable this update.
This reverts commit
|
||
|
Bruce Ashfield
|
2ea9f15939 |
docker: enable docker.service by default
Some platforms are seeing long (2+ minute) start times to get the docker daemon initialized. This doesn't happen when the daemon is started on boot. To avoid this usability issue, we enable both the socket and service automatically. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
49127b1156 |
k3s: fixup SRCREV and modules.txt
The revert of the pending upgrade (that was waiting for a newer go) did not build as the upgrade was incomplete. Bumping the SCREV and modules.txt to complete the process. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
dfb45fb90a |
Reapply "k3s: WIP: [needs newer go]: not for merge: upgrade"
This reverts commit
|
||
|
Bruce Ashfield
|
ee296b08d2 |
aardvark-dns: update to v1.14.0
Bumping aardvark-dns to version v1.14.0-21-g7fa18ef, which comprises the following commits:
423ee20 Release v1.14.0
a09156c release notes for v1.14.0
6902a23 update release notes from v1.13.1
e59135d run cargo update
b053576 fix lint issues with rust 1.84
9c94509 chore(deps): update dependency containers/automation_images to v20250131
b2405f6 fix(deps): update rust crate clap to ~4.5.28
25dee01 fix(deps): update rust crate log to 0.4.25
4cdab7c fix(deps): update rust crate tokio to 1.43.0
d49caa6 chore(deps): update dependency containers/automation_images to v20250107
8dc485e fix(deps): update rust crate clap to ~4.5.23
e66de45 fix(deps): update rust crate libc to 0.2.169
1fdd24c fix(deps): update hickory-dns monorepo to 0.24.2
d5e7a2f Cargo.lock: bump some versions
eb938db run cargo update
7e7b7db cargo: set rust-version
24a0302 fix(deps): update rust crate clap to ~4.5.21
234a634 fix(deps): update rust crate libc to 0.2.167
2714706 OWNERS: remove edsantiago
ba26b80 fix(deps): update rust crate libc to 0.2.165
3a87b98 fix(deps): update rust crate libc to 0.2.164
99938cd chore(deps): update dependency containers/automation_images to v20241107
11fcad7 fix(deps): update rust crate tokio to 1.41.1
d11cd29 fix(deps): update rust crate libc to 0.2.162
9842cb4 test: make jq query work on centos stream 9
db71833 [skip-ci] Packit: disable osh-diff-scan
de9890d support ipv6 link local addresses in resolv.conf
1f26559 [skip-ci] Packit: enable c9s downstream updates
82c1697 [skip-ci] TMT: install builddeps downstream
2d5462c [skip-ci] RPM: cleanup changelog conditionals
59d5622 [skip-ci] Packit/TMT: idiomatic repo addition
02c7213 [skip-ci] Packit: Remove epel jobs
15c8e62 tmt: install dnsmasq dependency
319d871 Bump to 1.14.0-dev
8bb4806 Release v1.13.0
685b132 Update release notes for 1.13.0
e6ce710 test: use dnsmasq over slirp4netns
5db65bd coredns: forward names with no ndots as well
7e77a8d run cargo update
e002654 fix(deps): update rust crate tokio to 1.41.0
8e6a556 fix(deps): update rust crate flume to 0.11.1
9955080 fix(deps): update rust crate libc to 0.2.161
894e5b0 fix(deps): update rust crate libc to 0.2.160
9440643 fix(deps): update rust crate clap to ~4.5.20
ce0d57d cirrus: check for msrv build
b57674c define a MSRV policy
1da4b9a chore(deps): update dependency containers/automation_images to v20241010
7dbedb8 [skip-ci] Packit: constrain koji job to the fedora package
246657a dns: limit to 3 resolvers and use better timeout for them
94a210d OWNERS file audit and update
fb501cf fix new lint error with rust 1.81
2900aea test: make them pass on RHEL/Centos Stream 9
6b7741f Packit: disable F39 and separate out ELN
22293ef serve: parse resolv.conf ourselves
e9120c7 fix(deps): update rust crate libc to 0.2.159
5a21a4e coredns: allow host lookup of names
fc08648 backend: return simple Vector in lookup()
edbe4e9 coredns: use a TTL of 0 for our names
6ec9581 coredns: do not clonse the Record
5b79e12 netavark_cache_groom.sh: fix wrong branch
4f3d45c Packit: add sidetag to release with netavark
39d0043 coredns: work on tcp requests concurrently
6d76c50 tcp: add timeout to connection
16c85e4 fix(deps): update rust crate tokio to 1.40.0
6503cae fix(deps): update rust crate libc to 0.2.158
8e6021a chore(deps): update dependency containers/automation_images to v20240821
65e069c fix(deps): update rust crate tokio to 1.39.3
bd49d09 fix(deps): update rust crate libc to 0.2.156
bc93f61 Bump main version back to v1.13.0-dev
95aeb56 Release v1.12.1
e6847a3 Updated release notes for 1.12.1
9e4562b Change av cargo categories
a74d9ea Bump to 1.13.0-dev
8cfe0a6 Release 1.12.0
a7ceaf5 Release notes for 1.12
6bb82d6 config: ignore enoent errors while reading configs
6989e0f run cargo update
cc25b2f update upsteam resolvers on each refresh
c24de46 fix(deps): update rust crate syslog to v7
8326739 fix(deps): update rust crate tokio to 1.39.2
7a5e6e7 add tcp support for forwarding
a3ffae3 add tcp listening support
aa4ee01 test: add new test to check for startup error
8575b7e return bind error to caller on first start
6416ca4 add our own error type and use it over anyhow
0e239cd server: use anyhow to wrap parse_configs error
1bb0a28 server: split out main loop into new function
5e635c8 main: remove aardvark-dns error prefix
7049573 coredns: remove unnecessary try_join! call
667e5db coredns: drop pointless name var
0691689 serve: read nameservers once
48fcdee replace signal-hook with tokio::signal
48754fa serve: fix broken error logging
6f6e5a6 server: improve parent <-> child error handling
ef2dcc2 add some basic perf check script
1c08966 fix(deps): update rust crate tokio to 1.39.0
67fccab coredns: create reply_ip() function
922db0f coredns: match dns type explicitly
224756d server: use only one tokio runtime
867570e coredns: improve indentation for process_message()
7b5301a coredns: move upstream resolvers detection later
96784c3 coredns: do not clone sender
6039c8f read AARDVARK_NO_PROXY once
78e0c0e coredns: move main code out of select!
80e48df coredns: fix "name" naming
bcc5195 coredns: remove unused forward_addr/port
7d1677f coredns: fix handling of dns search domain
b6773a9 coredns: rework PTR lookup flow
2a062e0 fix(deps): update rust crate tokio to 1.38.1
b731153 [skip-ci] TMT: Reorg upstream tests for downstream reusability
003123d [skip-ci] Packit: use `packages: [aardvark-dns-fedora]` for podman-next builds
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
ca34fc497f |
buildah: drop SRCREV_FORMAT
The source comes from one repo, there's no need to use SRCREV_FORMAT any more. So drop it. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9aa357c451 |
cri-o: update to v1.32.2
Bumping cri-o to version v1.32.2, which comprises the following commits:
e37e198e8 version: bump to 1.32.2
e681a34c8 go.{mod,sum}: bump CDI deps to v0.8.1.
85214c31b vendor: bump go-jose to 4.0.5
47566d01d Fix context cancellation when image pull progress timeout is `0`
1b98ce087 test: add test coverage for LinkLogs malicious paths
d4a9f6bae internal/linklogs: sanitize the directory path before using it
f168b6b39 version: bump to 1.32.1
5c8f66f8f Bump containers/storage
99ca98117 Avoid using UpdateContainerStatus for ReopenContainerLog and add logs tests
612f43a6d watchdog: decouple CNI plugin initialization from CRI-O health checks
fffe6270d Cherry-pick changes from containers/image project
890c75c93 Cherry-pick changes from containers/storage project
b57566b9c Update containernetworking/plugins Go package release to v1.6.2
6e44ed6d7 server: fix panic when default annotations are specified
0daeb208f Refactor man page variables in Makefile.
a103688e7 config: add default_annotations
533b7d5e2 build(deps): bump actions/upload-artifact in the actions group
d80af0f80 build(deps): bump crate-ci/typos in the actions group
986b386fc maintainers: promote Sohan and Krzysztof to approvers
10621f089 Update NRI to v0.9.0
34003b146 build(deps): bump the actions group across 1 directory with 2 updates
4409a15f6 Refactoring factory/container to remove references of snadbox
3576d0822 Update mocks
b7d4c78d0 build(deps): bump the gomod group across 1 directory with 37 updates
ea7cdad90 Require go 1.23 for build
c5bdce024 Update golangci-lint to v1.62.2 and config
31b86eb6b Remove old golang build tags
a5320071d Update nixpkgs
c1a7989d9 build(deps): bump the actions group with 2 updates
08b9acb9a Don't pass seccomp section when it's disabled
a89b991bd Don't start seccomp notifier watcher when seccomp is disabled
d4a0b860e Update cni-plugins to v1.6.1
33dbcc12b Add systemd watchdog support
698025097 Update sandbox_run_linux.go
2329bd698 Update container_create.go
197f98bb8 Always clear env even when `monitor_env` is unset
634c733df Update sandbox_run_linux.go
f448fea40 Update container_create.go
a64119adf build(deps): bump crate-ci/typos in the actions group
80aa12b19 Use `monitor_env` for calling the OCI runtime
7de043007 Update sandbox_run_linux.go
cad07030e Update container_create.go
7e48c71d6 build(deps): bump crate-ci/typos in the actions group
7c3290dea Allow to remove pod sandbox on netns removal
608c89e9c Fix container restore lint report
84ac370c9 build(deps): bump crate-ci/typos in the actions group
29a0b9429 Fix NRI CLI flags
e5bddc646 Call network plugin GC on startup
7a29433e7 build(deps): bump codecov/codecov-action in the actions group
44429579c build(deps): bump codecov/codecov-action in the actions group
6ca411a93 RuntimeHandler inheritance bug-fix
72fa20e93 build(deps): bump codecov/codecov-action in the actions group
02e5817d2 Add `--pull-progress-timeout` / `pull_progress_timeout` option
8b8be22a7 Use `slices.Equal` instead of custom implementation
19ac18b4e Update golangci-lint to v1.62.0
4d79d6b75 build(deps): bump the actions group with 2 updates
76049febe RuntimeHandler inheritance
e4bd1caee refactor cert
19efac249 vendor cni 0.4.3
426244c73 Make dual-stack hostport test reuse same test data as single-stack tests
f812c5aae Update and fix nix packages
8462bc745 remove validation for TLSCA.
50fbdcc01 Further hostport unit test cleanup
7ea8faf1a Fix ids/IPs in hostport manager test cases
74598c4cd Improve HostPortManager unit tests checking
0ff4e7cc3 Split hostport test case data out of the actual test functions
f62645f93 build(deps): bump crate-ci/typos in the actions group
ee6d71d09 Use google.golang.org/protobuf instead of gogo
680efef80 build(deps): bump crate-ci/typos in the actions group
0470ab6ed Validate stream server TLS config on startup
429ef7c36 Only restore container if all bind mounts are defined
f552e82b0 Convert `interface{}` to `any`
87d6b6076 Fix `typos` in CI
2c015a3ac Remove dead code in HostportManager
9c008e890 expose Pod assigned IPs to NRI plugins
bf1c47b50 bump nri version to get PodIPs
595557cb8 build(deps): bump crate-ci/typos in the actions group
f7116fbe5 build(deps): bump the actions group with 2 updates
30f48c5ba Disable actuated runners
30a262354 Move interceptors and metrics collector packages
f50d181a1 Use context for logging in server
d4c613d39 Switch to golang native context
20bc86cde Remove unused server metrics interceptor
09ac8a590 Centralize handling of CreateContainerRequest.PodSandboxId
cdd37ebe4 Remove the option to load a sandbox ID from the snapshot image
431f66a9a Fail in CRImportCheckpoint earlier if we should be enforcing signatures
8031b6270 Consistently use someNameOf{The,This}Image for that kind of value
4302e0a63 go.{mod,sum}: update NRI deps and re-vendor.
28069c8f2 build(deps): bump crate-ci/typos in the actions group
48d45ccf5 build(deps): bump the actions group with 3 updates
b6e9d6d68 Add `crio status heap` and `/debug/heap` endpoint
a2e62f24d nix: don't build gpgme with `--enable-fixed-path`
b13e45f4b pass cliContext instead of creating a new one
0d68102f8 Remove the first return value of PullImage
06993f4ba After pulling the pause image, use the canonical reference to look it up
4c164f5e3 Add a warning about assuming per-namespace policies are stricter
b56ddca32 Add a comment warning against repeated lookups
3f9b09e44 Consistently use the UserRequestedImage for the lookup input
fffc734c8 Simplify BROKEN pullImageOutputItem
0b184e47e Return a RegistryImageReference instead of reference.Canonical from PullImage
a2e29ba09 Better document, and sometimes rename, parameters and return values
c91de5884 Add a comment about possible future handling of complex situations.
899266bb2 Inline prepareReference into its only caller
ca1b55010 Remove no longer used code
14f4c6482 Fix build on macOS
d0a64e27b build(deps): bump crate-ci/typos in the actions group
b280cb565 vendor: bump runc to v.1.2.0
722f70ca3 utils: use moby/sys/user
1b7a8dfd2 internal/dbusmgr: use moby/sys/userns
2665ada11 crio status: add `goroutines` subcommand
dcc2a7587 build(deps): bump actions/cache from 4.1.1 to 4.1.2 in the actions group
fbbc7bfd5 Refactor memory stores to use generics
3ef549868 Simplify container stop in sandbox
9e01a99ed Remove `skip_pod_runtime` build tag
83ba7fe9b Update zeitgeist to v0.5.4
509de1aba ci: bump cri-o spec version to be higher than any cri-o version running
82fe372c1 Update gomock to v0.5.0
a271b4a79 seccomp_unsupported.go: Fix lint issues
7849e3efc Re-allow building without seccomp installed
2a42045ad Use context timeout/deadline for container stop
d1e817f14 Refactor sandbox label usage
937d24316 Refactoring factory/container to remove references of snadbox
ba13b2bac upgrade runc to v.1.1.15
9254b36d5 Re-enable exit code matching in restore test
d93ce4cc7 build(deps): bump actions/upload-artifact in the actions group
a5ee1950a build(deps): bump the actions group with 2 updates
589720f14 contrib/test: avoid running setup tasks twice
a7c46dd67 build(deps): bump the actions group across 1 directory with 8 updates
098ae5d66 Use `SignatureValidationFailed` CRI error for invalid signatures
69b4635b0 Mark `release-1.28` as EOL
5a1d62f8f Update nixpkgs
d688986db build(deps): bump github.com/containers/common from 0.60.2 to 0.60.4
6a6f57011 config: fix validation of allowed annotations
236d336fb config: pass down PullOptions from the storage configuration
eda8023ff test: fix empty pinned_images test
c02f9bb21 tests: improve wait_for_log to allow multiple calls for the same message
ddb79873d build(deps): bump peter-evans/create-pull-request in the actions group
adf2ca5f4 Don't rely on vendored tools
44def2c87 build(deps): bump the actions group across 1 directory with 2 updates
dea93eeb8 Bump release-notes to v0.17.8
4a2d29e65 image: serialize RegistryImageReferences when checking signatures
c7a819d3e Update golangci-lint to v1.61.0
dc087b219 Update nixpkgs
f030d3596 Update release and branching versions
a73311497 build(deps): bump the actions group across 1 directory with 3 updates
333530298 Use go 1.23 for nix (static) builds
915393f96 Switch to `RFC3339Nano` log format
d85ae5293 Make unit tests independent from third party binaries
8b2872139 Use nanosecond timestamp for evented pleg pod status
9910c39e1 Pin govulncheck to specific version to match Go version requirements
44e0241f8 Enable more crun integration tests
66c010968 refactoring: get some spec generation code out of createSandboxContainer()
0418b5d5c cleanup: refactoring createSandboxContainers()
b0b584ac8 refactoring: create a container.SpecSetLinuxContainerResources() function
8ec1805e6 refactoring: create a container.SpecSetPrivileges() function
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
eb53a19811 |
docker-compose: update to v2.33.1
Bumping compose to version v2.26.1-364-geaf980094, which comprises the following commits:
eaf980094 build(deps): bump github.com/opencontainers/image-spec
4c2ecb542 reject compose file with bind mounts
bcd000ab4 refuse to publish compose file with local include
8092ce941 build(deps): bump github.com/docker/buildx from 0.21.1 to 0.21.2
97595066e build(deps): bump github.com/docker/docker
508309414 build(deps): bump github.com/docker/cli
b6c8a2b9f display the location of OCI or GIT Compose stack download
19571c2c8 e2e test for watch.include
0ef7bbcdd introduce watch.include
66dfa7d18 block the publication of an OCI artifact if one or more services contain only a build section
876ecc48b Test version command
c7bf302c2 wrap builder execution within a project/build span
7b3bdbe03 otel attribute to track builder implementation selected
094b48fd7 build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0
43c52e2a8 build(deps): bump tags.cncf.io/container-device-interface
6c1ee1069 support refresh pull policy
e38b729a3 fix service: additional_contexts running internal buildkit client
145bb8466 Update yaml docs
acac18413 Link to configuration file docs
3292740c1 build: only print COMPOSE_BAKE recommendation when disabled
cae8e8463 require go 1.23|1.24 (stable)
da2eff4ba add support for gw_priority, enable_ipv4 (requires docker v28.0)
20f780e95 make the mocks generator happy
cf2fc2005 go.mod: docker/docker, docker/cli v28.0.0, buildx v0.21.1
d0398a468 go.mod: github.com/moby/buildkit v0.20.0
ac40aae4c go.mod: golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f
f25fea5e6 pkg/compose: stopDependentContainers: rename var that shadowed
b27f56eb1 fix error message when detach is implied by wait
4e593ed07 Fix pull --parallel and --no-parallel deprecation warnings missing
d956ff13d don't display bake suggestion when using --progress with quiet or json option
5f7c9a2b4 report error using non-file secret|config with read-only service
fd0c23a1c build(deps): bump google.golang.org/grpc from 1.68.1 to 1.70.0
7aa64ae9c run watch standalone if menu fails to start
c23eea934 build(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1
036da4795 go.mod: remove toolchain directive
33172d5e4 let user know bake is now supported
3f1a6b72a build(deps): bump gotest.tools/v3 from 3.5.1 to 3.5.2
f9a6e6c41 build(deps): bump golang.org/x/sync from 0.10.0 to 0.11.0
18ef6e592 build(deps): bump github.com/spf13/pflag from 1.0.5 to 1.0.6
2884d6df0 Fix ls --quiet help description
4459012a4 Dockerfile: update golangci-lint to v1.63.4
6f1f76c0e pkg/e2e: fix contains: use assert.Contains (testifylint)
ed72c2187 use BlockUntilContext
fa4cfb652 build(deps): bump github.com/jonboulle/clockwork from 0.4.0 to 0.5.0
200638b02 build(deps): bump github.com/otiai10/copy from 1.14.0 to 1.14.1
a0320f12e build(deps): bump golang.org/x/sys from 0.28.0 to 0.30.0
f8a912ab9 bump compose-go v2.4.8
c23a7e728 golangci-lint: enable copyloopvar linter
49575ef49 gha: add docker engine v28.x to the test-matrix
faa46d374 go.mod: github.com/moby/term v0.5.2
6ecb8d40a Full test coverage for convert compatibility cmd
a6a39422e remove cli.args opentelemetry attribute
40cd08f31 Update link in stats --help output
5e2abb6c2 support additional_context reference to another service
4db5fcd56 fix bake uses selected builder
f14c15fa5 capture error message reported by bake and forward to compose
8d68ef587 fix exporter to only load image for default platform
cde9ae595 pass --allow for filesystem read access
806ac91cf add warning when trying to publish env variables with OCI artifact
1c073c0a0 watch should ony build selected services
840288895 add --with-env flag to publish command this flag allow publishing env variables in the Compose OCI artifact
4b70ff0cc fix support for ssh key from CLI flags
23351ece8 remove exit code per error type used by legacy metrics system
7c7407672 bump docker to v27.5.1
25cfa66a9 bump buildx v0.20.1 and docker v27.5.0
f160333e9 ci: use main branch for docs upstream validation workflow
d04b3f48e e2e test covering multi-service rebuild with common resources
ed10804e0 manage `watch` applied to mulitple services
52578c099 Properly handle "builtin" seccomp profile
bd2b49a1c add codeowners file
433a60e12 ci: fix provenance for binaries and generate sbom
489fe9cf0 add support for BUILDKIT_PROGRESS
ef1931c8d add missing tag for build during merge workflow
9be7a3c9a ci: re-use local source to build binary images
666996bee ci: use local source for binary builds
083f67621 ci: update bake-action to v6
e81de103d simplification
fa3950346 image can be set to a local ID, that isn't a valid docker ref
a35158502 can't render progress concurrently with buildkit
b6db1380e exclude one-off container running convergence
2ebb47543 Only override service mac if set on the main network.
d474515d4 remove engine v25 from e2e test matrix The 1st version available for Ubuntu 24.x is Docker Engine v26
2b21c5df9 fix relative path in compose file
1f3c10eb4 bump compose-go to v2.4.7
68ad165a5 replace tibdex/github-app-token by official GitHub create-github-app-token
3060ed279 bump golang.org/x/net to v0.33.0 to fix potential security issue https://github.com/golang/go/issues/70906
be09b2e8c checkExpectedVolumes must ignore anonymous volumes
571a1af01 When retrying to resolveOrCreateNetwork, retry with a valid network name
8f644eea7 only check bind mount conflict if sync action is involved
56e92e34b use the 3 latest major versions of the engine to run e2e step
a42a04dfe bump Golang version to v1.22.10 and update CI actions
34bcd03a7 add --pull to run command
ed61e42f9 CI to validate fmt
65696bb1c `make fmt` so any contributor can enforce formatting
446e00520 format code with gofumpt
c01c9c29f e2e test to prevent future regression
038c81f34 only check volume mounts for updated config
a20b69ac5 e2e test for recreate volume
977530c22 build(deps): bump google.golang.org/grpc from 1.68.0 to 1.68.1
d4db8b6b1 build(deps): bump golang.org/x/crypto from 0.27.0 to 0.31.0
f8ce0f04e build(deps): bump golang.org/x/sys from 0.27.0 to 0.28.0
8e0520e71 prompt user to confirm volume recreation
332311358 Recreate container on volume configuration change
df9e420dd introduce watch restart action
142f5dba8 bump otel dependencies to v1.28.0 and v0.53.0 to align with buildx, buildkit and engine versions
700c586bc bump docker/buildx to latest release
fc566509d fix support for service.mac_address
e73c2303f update xx to v1.6.1 for compatibility with alpine 3.21 and file 5.46+
624303233 build(deps): bump golang.org/x/sync from 0.9.0 to 0.10.0
a1729c52d Update pkg/e2e/watch_test.go
254224c18 first watch action for a file event wins
0861e6845 fix
af5b74850 revisit TestDebounceBatching
32a22c1f4 introduce sync+exec watch action
e6ea8fb96 log configuration error as a watch log event
043465448 do not require a build section but for `rebuild` action
1d0839086 pull --quiet should not drop status message, only progress
69a83d130 use latest engine tags
781b9f1cd Bump buildx to 0.19.1
cbff0e555 be sure everything has been cleanup at the end of each tests
e4222bff5 add local config.json to test configuration dir if exists
25197fe6d disable failing TestBuildSSH test
85cdaf9dd fix build with bake
a8469db83 bump containerd to v1.7,24
08488dae5 bump google.golang.org/grpc to v1.68.0
cc3a216f2 build(deps): bump github.com/moby/buildkit from 0.17.1 to 0.17.2
6e818b9ae build(deps): bump github.com/compose-spec/compose-go/v2
6b3e57503 only stop dependent containers ... if there's some
8e497a128 disable TestNetworkConfigChanged which is unstable on CI
5aed70437 only check attached networks on running containers
1ff9b758d fix: commit tests
9eaba5597 feat: add commit command
a85f8a40a run build tests against bake
095f65cb4 delegate build to buildx bake
208e57ded build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0
2d148faed use service.stop to stop dependent containers
43ac1e31c Update wait-timeout flag usage to include the unit
5561a778c go.mod: github.com/docker/cli v27.4.0-rc.2
ae48f488d go.mod: github.com/docker/docker v27.4.0-rc.2
5e3a09538 go.mod: github.com/docker/cli 8d1bacae3e49 (v27.4.0-rc.2-dev)
a2a3eb72e go.mod: github.com/docker/cli v27.4.0-rc.1
3513b4242 go.mod: github.com/docker/docker v27.4.0-rc.1
d4fa63fdc Update pkg/compose/convergence.go
c21d4cfb4 detect network config changes and recreate if needed
61f1d4f69 go.mod: github.com/docker/buildx v0.18.0
f7cce281d go.mod: github.com/moby/buildkit v0.17.1
bcaacc7f2 gha: test against docker engine v27.4.0
3f5898f8d push empty descriptor layer when using OCI version 1.1 for Compose artifact it fixes a repository creation issue when pushing the 1st time a Compose OCI artifact on the Hub
2bb67f270 remove ddev e2e tests
bf521fe3a implement remove-orphans on run
11e9621da ci: enable testifylint linter
a9de9abcf Emit events for building images
799ab842a Fix compose images that reutn a different image with the same ID
2f65ace2a remove obsolete containers first on scale down
aa0a4189e pass stal bot inactivity limit from 6 to 3 months
eba3ff8f3 fix(config): Print service names with --no-interpolate
6313365ba build(deps): bump golang.org/x/sys from 0.26.0 to 0.27.0
dbd51745c build(deps): bump golang.org/x/sync from 0.8.0 to 0.9.0
a8bfbc147 bump compose-go v2.4.4
fbbd6f83d Avoid starting all services on rebuild
a00097898 remove ArtifactType from Config in OCI v1.1 definition of the artifact
361c0893a build(deps): bump github.com/compose-spec/compose-go/v2
513b6128c Service being declared in a profile must not trigger re-creation
eececb9ad Add profile e2e test case to document in compose
501b5acde Update `MAINTAINERS` file
f51bc4cd0 bump compose-go to version v2.4.2
517f87a37 bump google.golang.org/grpc to v1.67.1
718049cbd bump go.uber.org/mock to v0.5.0
02371f312 bump golang minimal version to 1.22 in go.mod
a7c9de82b build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23
51ebeb544 introduce generate command as alpha command
fafaa9c5b bump compose-go to version v2.4.1
fc9c3cde0 Add license header to dockerignore_test.go
73bfbab54 fix
2ac081b4c fix(dockerignore): Add wildcard support to dockerignore.go
eeea049f1 push: Fix error message typo
26064d4b6 allow usage of -f flag with oci Compose artifact
7c46beb8a resurrect --all flag for cp to target oneoff container
aa1ec4524 connect to external networks by name
a4ee6ca7a don't warn about uid/gid not being supported while ... they are
5617eff0c bump compose-go to v2.4.0
fa24ab8e2 one-off container are not indexed, and must be ignored by exec --index command
0aad9595a don't use progress to render restart, which hides logs
813900180 compose-go clean volume target to avoid ambiguous comparisons
82417bd5b add support for bind.recursive
0cbb73c02 Improve error message to include expected network label
38e3d670a desktop: allow this client to be identified via user-agent
24c78728e bump compose-go to v2.3.0
9eeb2d315 convert gpus to DeviceRequests with implicit "gpu" capability
8da82c98e gha: set default permissions to "contents: read"
1a8c85548 Add security policy
15bd0b0c5 add support for raw env_file format
39d0f6477 build(deps): bump golang.org/x/sys from 0.25.0 to 0.26.0
3a95a0872 add support for CDI device request using `devices`
f794c79eb Support Dockerfile-specific ignore-file with watch
407d82570 Remove feature flag integration with Docker Desktop for ComposeUI and ComposeNav
82b41b9eb introduce service hooks
6c06170eb pass device.options to engine
60c1311f6 chore: remove errors depricated pkg
17add87e4 fix: validate-go-mod
bf0418bac fix: lint
b9d0c77cd feat: add export command
bdb854561 fix(convergence): Serialize access to observed state
41df35c1f Remove bind options when creating a volume type
3ef5045a0 Bump docker v27.3.1
d9df7aab6 fix(push): Fix unexpected EOF on alpha publish
c9d96b449 use compose-go version fixing extra_hosts unicity issue
1744b4576 Show watch error message and open DD only when w is pressed
87f457e7d add tests to down.go
abcc91e2b fix(down): Fix down command if specified services are not running
8b9fe8984 After container restart register printer consumer
34b18194f check secret source exists, as bind mount would create target as a folder otherwise
ce27dba52 wait for dependent service up to delay set by --wait-timeout
d2b945613 append unix-style relative path when computing container target path
9c60fe67d revert commits link to mount API over bind changes
c16df17e1 don't set propagation if target engine isn't linux
20404db12 build(deps): bump github.com/docker/docker v27.3.0-rc.2
f2ff7fd75 build(deps): bump github.com/docker/cli v27.3.0-rc.2
cb00aaad2 set propagation default
e885bc084 Remove custom codeql workflow
73d3a25eb fix import
3524bcfad chore(watch): Add debug log when skipping service without build context
1076f1d9a stop dependent containers before recreating diverged service
16652ed26 Fixed possible `nil` pointer dereference
c6a76b9bd bump github.com/docker/buildx v0.17.1
3a0e3ba7e build(deps): bump docker, docker/cli to v27.3.0-rc.1
86ef8e62c gha: test against docker engine v27.3.0
8bf0627ea show sync files only in debug level
2e1419168 chore(watch): Add changed files path/count to log
155f64182 build(deps): bump golang.org/x/sync from 0.7.0 to 0.8.0
8db0cba0a bump compose-go to version v2.2.0
a7424435b Restore compose v1 behavior to recreate containers when ran with -V
d445ebba3 fix linting issues with golangci-lint 1.60.2
f592aad10 bump golang to version 1.22.7
ef46445ed bump dependencies versions, engine and cli v27.2.1 containerd v1.7.22 buildx v0.17.0 buildkit v0.16.0
150593298 build(deps): bump golang.org/x/sys from 0.22.0 to 0.25.0
524a97e55 Fix typos
1d608e033 Use logrus instead of direct output to stderr.
329ad7392 attach: close streams when done
b633c5c3e Fix typo in pull.go
e6ef8629a Allow combination of bind mounts and 'rebuild' watches
d658fecc6 service hash must exlude depends_on
f9c7a0cc0 prefer mount API over bind
6e172d6b8 docs: duplicate documentation for root cmd
98e261ba3 docs(wait): Fix wait command description
11c7a25ae allow to add empty line in the logs when nav menu activated
234036756 upgrade docker versions
9c03797f9 initial sync files that modified after image creation
485c0eba5 initial sync for root directory
69384a9a0 Removes redundant condition from toAPIBuildOptions in build.go
1601ead7b docs: Update docker compose kill usage
ea4ccf639 Fix stop on file chane for sync-restart action
b1850ea4d bump engine and cli to v27.1.1, buildx to v0.16.1
adba639e8 remove all dependabot update PRs for OTel dependencies
d8518529c gp.mod: github.com/gofrs/flock v0.12.1
c79f15da9 go.mod: golang.org/x/sys v0.22.0
3f55382ff update to go1.21.12
44337d2bb Enhance JSON progress events with more fields.
bc733508d bump compose-go v2.1.5
c422b5447 bump github.com/docker/cli v27.1.0
e74441c90 bump github.com/docker/docker v27.1.0
2bac32a46 bump github.com/containerd/containerd v1.7.20
f278400fb gha: add docker 27.1.0
4f9db4d3e fix(containers): fix sorting logic by adding secondary sorting for one-off containers
06bf339a4 fix: typos
231ea1005 update docs generation to avoid man pages generation
46679150d bump compose-go to v2.1.4, buildx to v0.16.0, containerd to v1.7.19 and buildx to v0.15.0
d3d378b92 restore setEnvWithDotEnv
163cdfd31 empty env variable with no value must be unset in container
25f85938b exclude unnecessary resources after services have been selected
cacbca859 change time for stale bot
ecac13f27 Remove debug mode and run twice a week
14793cc2e Add stale workflow
11d5ecdc7 update docs
9549a213b feat(watch): Add --prune option to docker-compose watch command
da434013e Remove COMPOSE_MENU env from e2e tests
ace69c96a Use rawjson for the build backend.
2db04c1e4 Set logging format to JSON.
8f7cd0048 Format errors as JSON when in JSON progress mode.
5a6e1a7e2 Pass 'plain' instead of 'json' to build backend
06545d066 Add JSON stream progress writer
075fd9345 go.mod: docker/cli, docker/docker v27.0.3
d062ad739 gha: test against docker v27.0.3
7cd5209cc go.mod: docker/cli, docker/docker v27.0.2
f79c28168 Remove `console.Terminal` check and use `IsTerminal` from `streams.Out`
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2762d232a5 |
moby: update to v28.0.1
Bumping moby to version v28.0.1, which comprises the following commits:
18143632f7 Revert "contrib/check-config: add ipset related flags"
558da63444 Jump to DOCKER-INGRESS from DOCKER-FORWARD
76417bf763 Don't use ipset
c35159ed7d c8d/manifests: Fix Content size including missing content
468c2c814d Fix swarm network creation from a config-only network
8e6cc4ac48 Fix swarm net validation for config-from networks
8cc4d1d4a2 Fix daemon startup on a no-IPv6 host
341cafa611 Test with a drop rule appended to filter-FORWARD
984a610a21 Add chain DOCKER-FORWARD
21582b84fb c8d/list: Fix empty Manifests for some images
6b1b170708 c8d/inspect: Fix image not found error for index-only image
5ced8fd377 vendor: tags.cncf.io/container-device-interface v0.8.1
a92d20bcc4 Better error message for missing ip_set kernel modules
73f2a5336d libnet/d/bridge: fix compilation on i386
013c43fb56 Mark default-bridge-only opts in --help and manpage
3cf4ff971d Fix network inspect IPv6 gateway address format
501ce33bab Fix v28 regression `protocol "tcp" is not supported by the RootlessKit port driver "slirp4netns"`
ccdfac5328 contrib/check-config: add ipset related flags
ac8b4e3e75 daemon: handleContainerExit: ignore networking errors
d67f035d31 vendor: github.com/moby/buildkit v0.20.0
1fde8c4615 builder-next: fix cdi manager
cde9f0752e vendor: github.com/moby/buildkit v0.20.0-rc3
b2b55903d0 Dockerfile: fix linting warnings
a3628f3f8e docs/api: add documentation for API v1.48
9eccc20a17 c8d/list: Fix panic when listing images
4e97729f14 c8d/list: Test with SharedSize = true
322eddfb41 api/swagger: remove custom example from /containers/{id}/json endpoint
60539d0956 api/swagger: remove custom example from /containers/json endpoint
119b52f302 golangci-lint: ignore "nested context" (fatcontext) in tests
15fbd67407 Dockerfile: update golangci-lint to v1.64.5
7b6c3ebe7b api/swagger: inline Exec example values
2fc90096bf project: update status of branches
bd92f2bb92 daemon/logger/splunk: New(): combine switches for format validation
eac39ffdb8 daemon/logger/splunk: remove some intermediate variables
9bb3900c30 daemon/logger: Info.ExtraAttributes: make env-var handling conditional
cbbff10b01 daemon/logger: use consistent name for "extra attributes"
ba559c4f12 daemon/logger/fluentd: fix minor (linting) issues
b9e7e82b66 daemon/logger/splunk: plunkLogger.postMessages(): improve logs
2f82cbb5f8 daemon/logger/splunk: suppress some unhandled errors
f049d0c66b daemon/logger/splunk: don't defer in a loop
0d938b6bb3 daemon/logger/splunk: rename var that shadowed import
529a56d31a container: Container.StopSignal: fix handling of invalid signals
ef0fe1ac00 container: define defaultStopSignal as a syscall.Signal
0a4c4c9e82 container: some cleanups in view tests
49f2320bc7 container: some cleanups in tests
07aa4d96ea container: TestReplaceAndAppendEnvVars: assert with gotest.tools
0914e97df2 container: rename test file
9bcac6d573 c8d/progress: Fix panic when pulling some images
acc4d45278 container: ensure image manifest is deep copied from the container into the snapshot
903ba2f487 client: Move opts to separate files
b9319f64ed client: Change ImageSave to use functional options
ae4c688fd8 client: Change ImageLoad to use functional options
85808a6abf client: Change ImageHistory to use functional options
5719e8edf9 Don't create iptables rules when iptables is disabled
068aa86c23 client: Group deprecated functions into ImageAPIClientDeprecated
d1c6550f71 daemon: use structured logs for printing reloaded config, move to cli
838ae09a23 Dockerfile: update runc binary to v1.2.5
707d8d80b9 vendor: update buildkit to v0.20.0-rc2
c9f8758570 golangci-lint: enable reassign linter
04ae510a1e golangci-lint: enable gocheckcompilerdirectives linter
179e621019 golangci-lint: enable exhaustive linter
1f9ada6668 golangci-lint: enable errchkjson linter
8b2439a383 golangci-lint: enable durationcheck linter
d62e499bfe golangci-lint: enable dogsled linter
75fc4de8c3 golangci-lint: enable asasalint linter
7218a64e87 golangci-lint: enable wastedassign linter
55b047e49c golangci-lint: enable fatcontext linter
a97d6fe84f golangci-lint: enable nosprintfhostport linter (again)
fc09a52d85 golangci-lint: enable spancheck linter
a0ef452f0c golangci-lint: enable mirror linter
0de3c1b7e3 golangci-lint: enable makezero linter
e6e68278f6 golangci-lint: enable iface linter (with default settings)
c8ee8c6302 golangci-lint: enable nilnesserr linter
081fac187e golangci-lint: enable exptostd linter
927e07e46e API: add Platform (OS and Architecture) to /containers/json
e364e28ec8 vendor: update buildkit to v0.20.0-rc1
d47eb241bf vendor: github.com/vishvananda/netlink 655392bc778a
47ff7969b4 Add experimental feature warning for image mount
3e51818c5c Add ability to return warnings from host config
c5b226e377 vendor: github.com/miekg/dns v1.1.61
56a6383883 api: deprecation of "error" and "progress" fields in streaming responses
e36fb45eec vendor: github.com/spf13/pflag v1.0.6
bd13fc37b0 pkg/jsonmessage: JSONMessage: fix deprecation of ProgressMessage, ErrorMessage
66910da5a3 vendor: github.com/containerd/go-cni v1.1.12
3d72df0e89 vendor: google.golang.org/grpc v1.69.4
72c91e378d client: remove serverResponse and use http.Response directly
b99b5422b0 api/types: deprecate IDResponse
96dc9cb693 Don't log a warning when an IP address is already in an ipset
b23b8f1567 Restore more iptables rules on firewalld reload
9a20edf7b6 api/types/container: introduce ExecCreateResponse type
0df3a0047a api/types/container: introduce CommitResponse type
be1ac5d8e5 api/types/container: rename ContainerTopOKBody to TopResponse
f4dc38cd36 api/types/container: rename ContainerUpdateOKBody to UpdateResponse
85ff36de26 Dockerfile: update docker CLI to v28.0.0-rc.1
cc6754f3fa Dockerfile: update buildx v0.20.1
b90a2bac7d Dockerfile: bump gotest.tools/gotestsum v1.12.0
c786cdf124 update authors and mailmap
b4af9341af client: fix deprecation comment for ImageInspectWithRaw
6ba4e78066 vendor: gotest.tools/v3 v3.5.2
43532eb1e1 daemon: Daemon.Containers: make switches exhaustive (exhaustive)
10ebdbbb92 daemon: Daemon.ProcessEvent: make switches exhaustive (exhaustive)
f448d5ae3b daemon/events: make switches exhaustive (exhaustive)
d9cf097402 daemon/cluster/executor/container: make switches exhaustive (exhaustive)
bf3b4d4986 daemon/cluster/convert: make switches exhaustive (exhaustive)
4d8dfc1409 daemon/cluster: make switches exhaustive (exhaustive)
6929a3fd22 libnetwork/networkdb: make switches exhaustive (exhaustive)
827f84d3ef volume/mounts: parseMountSpec: make switch exhaustive (exhaustive)
0ee343222b daemon: eventTimestamp: make switch exhaustive (exhaustive)
b343d235a0 container: State.conditionAlreadyMet: make switch exhaustive (exhaustive)
8a35300b4a integration/internal/swarm: make switch excaustive (exhaustive)
66ab2e9e77 plugin/executor/containerd: Executor.ProcessEvent: make switch excaustive (exhaustive)
1a047bbe8b libnetwork: ignore unchecked json (Un)Marshal errors (errchkjson)
63deb55263 libnetwork/drivers/bridge: bridgeEndpoint.UnmarshalJSON: fix unhandled errors (errchkjson)
ccbcce2169 daemon/logger/templates: ignore unchecked error (errchkjson)
32153dee9f daemon: Daemon.Reload: fix unhandled errors printing config (errchkjson)
664558f916 daemon/cluster/convert: tmpfsOptionsToGRPC: ignore unchecked error (errchkjson)
4a7f891fc3 integration/plugin: fix unhandled errors in tests (errchkjson)
196a66a643 integration-cli: fix unhandled errors in tests (errchkjson)
26d30159f7 libnetwork/driverapi: ignore unchecked error (for now) (errchkjson)
b87c9fb3f4 libnetwork/diagnostic: ignore unchecked error (errchkjson)
7dbceec8aa api/server/router/volume: fix unhandled errors in tests (errchkjson)
07e2fc83ae pkg/plugins: fix "Multiplication of durations" (durationcheck)
1ffbcb566b pkg/jsonmessage: fix "Multiplication of durations" (durationcheck)
eac45daf06 runconfig: fix declaration has 3 blank identifiers (dogsled)
09c5a01346 pks/plugins/pluginrpc-gen: fix unused value assign (wastedassign)
a4dba91424 daemon/containerd: fix unused value assign (wastedassign)
f1d7bd60ab integration/image: TestRemoveByDigest fixed unused values (wastedassign)
9f8eafc101 plugin: withFetchProgress work around "nested context in loop (fatcontext)"
e9c90834fa opts: host:port should be constructed with net.JoinHostPort (nosprintfhostport)
0bf8c8b99e pkg/tailfile: avoid allocations with (*os.File).WriteString (mirror)
4e6c91cc56 pkg/pools: avoid allocations with (*bufio.Writer).WriteString (mirror)
f0a233bdc3 pkg/archive: avoid allocations with strings.Compare (mirror)
17f32e8822 libnetwork/internal/resolvconf: avoid allocations with bytes.NewBufferString (mirror)
0c8d086ed3 libnetwork: avoid allocations with regexp.Match (mirror)
6ff3dfd88a integration-cli: avoid allocations with (*os.File).WriteString (mirror)
405ce2ef15 distribution/xfer: avoid allocations with bytes.NewBufferString (mirror)
d50492a70d container/stream: avoid allocations with (*bytes.Buffer).WriteString (mirror)
dbf2cdd06c integration/networking: fix append to non-zero initialized length (makezero)
dd8ee9eeb1 libnetwork/cnmallocator: fix append to non-zero initialized length (makezero)
8e9fce7970 libnetwork/bitmap: fix append to non-zero initialized length (makezero)
f9890d97d1 libnet: kvstore/boltdb: fix append to non-zero initialized length (makezero)
1f7d497a99 errdefs: remove duplicate "causer" interface definition (iface)
1784026740 client: custom trace options
cab2157182 Dockerfile: update golangci-lint to v1.63.4
f34a1aafe9 vendor: cloud.google.com/go/compute/metadata v0.5.2
9c7112d118 daemon: configureMaxThreads: remove unused arg
9e77d05967 add //go:build directives to prevent downgrading to go1.16 language
192431cb35 pkg/idtools: un-deprecate Windows consts for now
5a703c2eda libnet/osl: scan ns ifaces to generate ifname
78b0475605 libnet/osl: AddInterface: un-alias props into local vars
56a7817b2d libnet: add support for custom interface names
6a8360012c libnet/osl: distinguish dstName & dstPrefix
2e9e7989f8 cmd/dockerd: initBuildkit: return close-func
2dc03f934f cmd/dockerd: refactor buildkit init in daemon startup
9509f27e28 rootless: use `getsubids` tool for validation if possible
a096045678 all: Replace deprecated ImageInspectWithRaw usage
3d37537f75 c8d/inspect: Add Manifests field
639a1214fa client/image-inspect: Introduce client opts
6664f1220a c8d/inspect: Avoid interim images.Image conversion
bdb6a7abdc c8d/list: multiPlatformSummary
d4fa252cd3 Wait for a route to ff02::1 before sending NAs
1126d477fd Add live-restore tests for mount image
90aea3b85f Add image subpath mounting functionality
634951457d Implement GwAllocChecker for the remote network driver
12756071f1 update to go1.23.6
294df1c447 volumes/service: OpErr: implement go1.13 unwrapper
db68c99d4b distribution: fallbackError, notFoundError implement go1.13 unwrapper
b96b14d078 cluster/executor/container: exitError: implement go1.13 unwrapper
2997c0ddc0 client: deprecate CommonAPIClient interface
846b2272e6 client: deprecate ErrorConnectionFailed helper
e93ff742e8 client: doRequest: use errors.As for error-detection
3725998e7d client: define interface for all Swarm-specific methods
a57d737a86 client: define separate interface for HijackDialer
902c06fdf0 client: make setupHijackConn a regular function
e6dabfa3b1 client: move resetting mediaType for hijack to where applicable
b0e206b807 client: separate Dialer() implementation from public API
fcb924712b integration/internal: JobComplete: require shallower interface
0f04532956 errdefs: touch-up godoc for helpers
329b2a26f3 client: normalize and validate empty ID / name arguments to fail early
844797348e Implement image mount for the snapshotter
8c58934106 Implement mount from image
c935a4609d Fix typo in API docs
30e75b8396 client: improve handling of JSON error-responses with incorrect schema
9a6e96fd9c Before sending ARPs/NAs, check the bridge is ready
8e529682af builder: wire up new gc types for buildkit prune functionality
52ea449c55 daemon: Daemon.restore: make legacy-link code conditional
9a69161992 daemon: remove Daemon.children(), Daemon.parents() wrappers
513fd86710 daemon: Daemon.getNetworkedContainer: fix errors for invalid network container
51cb066ec8 daemon: Daemon.rmLink: don't fuzzy-match container when using ID
79b0e89628 github: Clarify release notes description
c43aa0b6aa Fix concurrency issue in dind
7ac0e34dba gha/validate-pr: Also run when PR has new commits
9b5a51a881 api/types/container: remove use of errdefs package in test
02eb72380f client: remove uses of pkg/errors in tests
3f354e8c1b api/types/registry: use stdlib errors package
0ca0ccd37a client: improve test-coverage for error-responses
9fdcde7618 Add bridge gateway mode "isolated"
97b50bca2c client: WithVersion: strip v-prefix when setting API version
bbaa8af8f3 libnetwork/drivers/bridge: un-export errors
3f9698e1f6 libnetwork/drivers/bridge: TestLinkDelete: use gotest.tools
74fd2ec0cf libnetwork/drivers/bridge: TestLinkCreateNoEnableIPv6: use gotest.tools
6e9ba725f8 libnetwork/drivers/bridge: TestLinkCreateTwo: use gotest.tools
bf3323fd40 libnetwork/drivers/bridge: TestLinkCreate: use gotest.tools
7012e3ce14 libnetwork/drivers/bridge: remove NonDefaultBridgeExistError
47f6d4e1bc libnetwork/drivers/bridge: internalize ErrInvalidGateway
3a9f4e0146 libnetwork/drivers/bridge: remove ErrInvalidMtu
2f42aa0e26 libnetwork/drivers/bridge: remove IPv4AddrNoMatchError
0c1b660048 libnetwork/drivers/bridge: remove IPv4AddrAddError
dc52ecb1d0 libnetwork/drivers/bridge: remove ErrNoIPAddr
77261b5e42 libnetwork/drivers/bridge: remove "InternalError()" method from errors
2766298f49 libnetwork/drivers/bridge: remove unused errors
59c2d2a4b3 libnetwork/drivers/bridge: remove ErrInvalidDriverConfig
6bb9f581a5 libnetwork/drivers/windows: remove ErrUnsupportedAddressType
54a969d1a4 Dockerfile: Use CLI generated completions in the dev shell
510e6f4f8a libnetwork/options: rewrite tests with gotest.tools
af9ffb64cd builder/dockerfile: more consistently put "expected" on the right
86a8bfdce4 remove redundant uses of api/types/strslice.StrSlice
d216084185 libnet/d/bridge: drop remote connections to port mapped on lo
27adcd596b libnet/d/bridge: port mappings: drop direct-access when gw_mode=nat
8474153e13 integration: accessing mappings from another docker network
a7e6d0a8a3 libnet/d/bridge: releasePortBindings: append directly into 'errs'
aa3a23d4f9 Temporary debug for unsolicited NA
49b1ed6d27 libnetwork: remove ErrInvalidName
a98ecc5f79 libnetwork: remove ErrInvalidID
548b0b6290 libnetwork: remove ErrNoSuchEndpoint
7cc81407aa Add trace/logging in waitForIfUpped
30601d96b7 Dump daemon logs when TestAdvertiseAddrs fails
8705018705 daemon/cluster/executor: containerConfig: store Network instead of envelope
90323ae123 daemon/cluster/executor: networkCreateRequest: not a method
f5f4a062a5 daemon/cluster/executor: networkCreateRequest: slight DRY cleanup
16770340ea daemon/cluster/executor: networkCreateRequest don't shadow config
cef6fd2fa2 libnetwork: remove Network.EndpointByID as it must not be used
4e6535fd3e man: vendor github.com/cpuguy83/go-md2man/v2 v2.0.6
5c1fe287fc libnetwork: remove UnknownNetworkError
8f4c98e1eb libnetwork: TestControllerGetSandbox: use errdefs for error asserts
d34ca256b8 libnetwork: TestNetworkConfig: use gotest.tools for errdefs assertions
c6f0fe5fc0 libnetwork: parallelTester.Do: use errdefs for error assertions
11a6cb5fac libnetwork: TestEndpointJoin: use gotest.tools for errdefs assertions
ea7d17376e libnetwork: TestInvalidRemoteDriver: use gotest.tools for error assertions
01c87cc809 libnetwork: TestContainerInvalidLeave: use gotest.tools for errdefs assertions
9472c860de libnetwork: TestEndpointMultipleJoins: use gotest.tools for errdefs assertions
ab9d250876 libnetwork: TestEndpointDeleteWithActiveContainer: use gotest.tools for errdefs assertions
56debcfc1c libnetwork: TestNetworkQuery: use gotest.tools for errdefs assertions
874fb4d2f4 libnetwork: TestControllerQuery: use gotest.tools for errdefs assertions
53bf2e8960 libnetwork: TestUnknownEndpoint: use gotest.tools for errdefs assertions
895ee1214a libnetwork: TestDuplicateEndpoint: use gotest.tools for errdefs assertions
678a8a27f5 libnetwork: TestUnknownNetwork: use gotest.tools for errdefs assertions
9304d98757 libnetwork: TestDeleteNetworkWithActiveEndpoints: use gotest.tools for errdefs assertions
01b0fe1172 libnetwork: TestNetworkName: use gotest.tools for errdefs assertions
24df497674 libnetwork: TestNilRemoteDriver: use gotest.tools for errdefs assertions
532d36c251 libnetwork: TestUnknownDriver: use gotest.tools for errdefs assertions
400ad04c74 libnetwork: TestNull: use gotest.tools for errdefs assertions
3bb40af036 dockerd: enable shell-completion; add (hidden) completion subcommand
816f3fa516 integration: remove assertAttachedStream, check both STDERR and STDOUT
2197549e4f daemon: health: getShell: simplify logic (LCOW remnants)
d3c0825439 daemon: make daemon.getEntrypointAndArgs a regular function
65120d586b Create bridge veth in container netns
b3b9e990ee Get netns before calling moveLink
357fb9d58d Add trace/logging in waitForIfUpped
203d6530d0 libnetwork: use gotest.tools assertions
a39bee9b71 libnetwork: suppress some unhandled errors in tests
376ff6add6 libnetwork: use assert.Check in defers
71c9a45672 libnetwork: use assert.NilError (step 2)
231012996f libnetwork: use assert.NilError (step 1)
6bb69a21bf EnableIPv4:false is no longer --experimental
9a37ae3657 Test unsolicited ARP/NA on interface creation
bc130f367d bridge/macvlan endpoints always use a random MAC address
a900e0b5bb libn/netutils: put more entropy into random MACs
422e056b0f Treat failure to send an initial ARP/NA as an error
522016a842 Configurable count and interval for gratuitous ARP/NA messages
eaa84bc8f4 Send unsolicited ARP/NA requests when bringing up interfaces
2f84e2b208 libnetwork/drivers/bridge: driver.configure: move vars close to where used
3955c021ff libnetwork: remove redundant type conversion
41d502892d libnetwork/drivers/bridge: remove redundant type conversion
6e6cf999ed libnetwork: remove isNotfound test-utility
c9c322785c libnetwork: Controller.defaultGwNetwork: use errdefs to check for not-found
59722228d7 libnetwork/types: compareIPMask: make error more readable
768b152494 libnetwork/types: TestUtilGetBroadcastIP: use gotest.tools, table-tests
06ae35afb9 libnetwork/types: TestUtilGetHostPartIP: use gotest.tools, table-tests
9e11ea9287 libnetwork/types: TestCompareIPMask: use gotest.tools, table-tests
85cd2b7c94 libnetwork/types: TestErrorConstructors: use errdefs for asserting
afcf1b92a5 libnetwork: TestErrorInterfaces: use errdefs helpers to check error-types
2b4aa5eb52 gha: update DCO check to alpine 3.21
9dab00554d libnetwork/driverapi: fix GoDoc for UpdateIpamConfig
52d2d28148 libnetwork/types: align error-types with errdefs
836a5fac10 Dockerfile: update compose to v2.32.4
b75a75017d Dockerfile: update buildx to v0.20.0
1e2a828ed5 Dockerfile: update docker CLI to v27.5.0
c52c68a709 vendor: update buildkit to v0.19.0
366f2b563d Clarify code/comments in defaultipam.newPoolData
bc93bba099 Use addrset.AddrSet instead of bitmap.Bitmap in IPAM
7e247e8b13 Add addrset.AddrSet to track a set of IP addresses
46e290fec6 Don't increment "unselected" in Bitmap when clearing a 0
5e9ee1a849 gha: Adjust release branches
ae0fda655b update to go1.23.5 (fix CVE-2024-45341, CVE-2024-45336)
fc7caf96d2 Revert "libnet/d/bridge: port mappings: filter by input iface"
f658ea3152 Fix parsing of user/group during copy operation
131441b37f daemon: NewDaemon: align max backoff delay with containerd 2.0
76a496a482 daemon/links: fix duplicate env-vars and cleanup range-detection
fcdd6f4ad2 daemon/links: fix port-ranges with mixed protocols
251c68c647 daemon/links: fix port-sorting with mixed protocols
3d37d54b8c daemon/links: Link.ToEnv: simplify adding default port env-var
c508919b7c daemon/links: add BenchmarkLinkMultipleEnv
3b27e36d67 daemon/links: add EnvVars function
b54053d5da daemon/links: NewLink: simplify map to string conversion
53fec9813f daemon: Daemon.setupLinkedContainers: don't fetch linked containers if not used
6b14bdb7c7 daemon/config: validate network-diagnostic-port
370c7a30e2 libnetwork/diagnostic: rename methods
16cc0be0e1 libnetwork/diagnostic: move and improve logs for starting/stoping
8f1a49fa8c libnetwork: Controller: remove redundant mutex for diagnosticServer
e4abcad7ac libnetwork/diagnostic: make EnableDiagnostic, DisableDiagnostic idempotent
e899092b25 libnetwork/diagnostic: make DisableDiagnostic idempotent
1e6449dfc7 libnetwork/diagnostic: print newline after stackdump log path
8cc0e11823 libnetwork: un-export Controller.DiagnosticServer
bf7a87a15a docs: clarify fromImage vs tag behavior in ImageCreate
aa565ec1ef Dockerfile: update RootlessKit to v2.3.2
f3f9641f5d vendor.mod: github.com/rootless-containers/rootlesskit/v2 v2.3.2
912a64e22a vendor.mod: golang.org/x/sys v0.29.0
e8c6e7ceb0 build: don't print warning when connection was terminated
52774154c9 distribution: continueOnError: handle context cancellation / timeout
6b5f14a7bb distribution/utils: WriteDistributionProgress simplify check for broken pipe
61aa1657f7 layerStore.registerWithDescriptor: improve logs for cleaning up cache
e7bd60ee2d Allow users to ignore missing br_netfilter
66e6a0b7a1 vendor: update buildkit to v0.19.0-rc3
21870ad796 daemon: NewDaemon: update grpc options for containerd 2.0
22c02219de Bridge: on network delete, make sure it's deleted from store
feb2dabaa9 Ignore error when adding a bridge already in the ipset
0fad8324a8 libcontainer/supervisor: monitorDaemon: move options inline again
29ce3633e5 libcontainerd/supervisor: remove grpc options that are the default
b750eb87cd daemon: NewDaemon: remove grpc options that are the default
e94114305e daemon: NewDaemon: align grpc options with containerd's defaults
80b0570445 spelling fix in comments
8c236de735 ci: switch from jenkins to gha for arm64 build and tests
c817ea2159 api/server/middleware: log before, not after the request
d86920b9b3 ci(bin-image): fix bake build
078c5edcd7 Adjust test to support cgroupv1
c75e333b6f Satisfy linter
ce3e34816a Add support for bare `writable-cgroups` security-opt
f8187c0214 Error on invalid requests for writable-cgroups
bc7d118fd7 Adjust TestCgroupRW to test output before exit code
081b9d97db Update TestCgroupRW with subtests + nil case fix
b5b5b7e983 integration/container: test the writable-cgroups security option
e3cdd59a82 daemon/&container/: enable `--security-opt writable-cgroups=true` as an option
b1ea8032fa api: swagger: document StatsResponse
9ed85f487d daemon: don't discard "invalid parameter" errors for archive endpoints
c6d8a93d58 daemon: containerExtractToDir: remove handling for read-only paths on windows
ca0158b235 daemon: containerExtractToDir: combine checks for read-only target
0530750d7e daemon: containerExtractToDir: remove named error return
9ed662e72e daemon: containerExtractToDir: remove handling for copyUIDGID on windows
ca06b222e3 api/types/container: merge Stats and StatsResponse
16cbb27e4e use StatsResponse instead of Stats in tests
390cb4c2f1 Increase integration test timeout from 5m to 10m
0aa8fe0bf9 Update to containerd v2.0.2, buildkit v0.19.0-rc2
a63602472d Use local cleanup method rather than dependency
3db60168e7 pkg/ioutils: remove crypto/sha256, crypto/sha512 imports
f68eb9c3cb vendor: github.com/Microsoft/hcsshim v0.12.9
488d6972b2 vendor: github.com/stretchr/testify v1.10.0
2008799026 vendor: k8s.io/klog/v2 v2.130.1
adec695d36 vendor: github.com/fsnotify/fsnotify v1.7.0
1ef5957089 vendor: github.com/vbatts/tar-split v0.11.6
de86c46158 vendor: github.com/containernetworking/cni v1.2.3
6dd592bd49 vendor: github.com/containerd/go-cni v1.1.11
2ea97aec2d vendor: github.com/containerd/ttrpc v1.2.7
cc120c4c05 testutil: update to semconv v1.26.0
6439c46e06 vendor: github.com/containerd/errdefs v1.0.0
f40b92272c vendor: github.com/AdamKorcz/go-118-fuzz-build v0.0.0-20231105174938-2b5cbb29f3e2
eb592fecad vendor: github.com/AdaLogics/go-fuzz-headers v0.0.0-20240806141605-e8a1dd7889d6
48e6b4e8f7 vendor: otel v0.56.0 / v1.31.0
d60f164e21 vendor: github.com/creack/pty v1.1.24
a78b84c212 vendor: github.com/aws/aws-sdk-go-v2 v1.30.3
d5fe43335f vendor: google.golang.org/grpc v1.68.1, google.golang.org/genproto
5066658f39 vendor: golang.org/x/oauth2 v0.23.0
81d5487330 vendor: cloud.google.com/go/compute/metadata v0.5.0
433b1f9b17 libnet/d/bridge: port mappings: filter by input iface
49ec488036 logger/fluentd: remove deprecated fluentd-async-connect option
d560704c91 libnet/d/bridge: init driver.nlh in newDriver
5a6a980dad daemon/export: Stop when context is canceled
15df1c9c40 imageService: Remove PerformWithBaseFS
2f60d15ddf Internal macvlan networks don't need a gateway address.
8b13cde274 L3 and internal ipvlans don't need a gateway address
43f71fb582 Bridge - skip gateway allocation if no gateway is needed
38e76ebea9 Only allocate a gateway if the n/w driver wants one
64006f964a Simplify selection of gateway address
24f09ef13c Update MAINTAINER file email for laurazard
e26122c609 pkg/ioutils: remove unused NewReaderErrWrapper
2b4db9383c pkg/archive: nosysFileInfo: implement tar.FileInfoNames to prevent lookups
ce8d3d1c78 pkg/ioutils: remove deprecated NopWriteCloser
39f1abb1fb pkg/ioutils: remove deprecated NopWriter
3faa170371 pkg/ioutils: deprecate NopWriteCloser
7fa3c553e7 pkg/ioutils: deprecate NopWriter
ad860173a2 vendor: github.com/containerd/containerd v1.7.25
c12bfda3cd Dockerfile: update containerd to v1.7.25
d80e3410bc vendor: github.com/containerd/containerd/api v1.8.0
d23871469b pkg/sysinfo: Remove deprecated `NumCPU`
cdd4a7429f pkg/ioutils: remove errWriteFlusherClosed
034cd27da0 pkg/ioutils: remove deprecated NopFlusher
e183df63f9 pkg/ioutils: remove deprecated WriteCounter, NewWriteCounter
15ce2914a5 pkg/ioutils: move BytesPipe to container/streams/bytespipe
8f9c09edd4 Fix unit tests for an nftables host
818a180fce pkg/ioutils: deprecate NopFlusher
18f1ecafea c8d/snapshot: Rename variable that collided with import
15d3c99ff6 daemon: Remove "Error: " error message prefix
cd9c292de9 imageService: Unify `Mount` and `Unmount`
0cbb604665 c8d: Implement `RWLayer` and remove `PrepareSnapshot`
daed0bd4d6 container/rwLayer: Remove unused TarStreamer, ApplyDiff, Size and Name
85de28901d container/rwLayer: Remove Changes
bafebbbd8a container: Decouple RWLayer from graphdriver implementation
383503d382 pkg/ioutils: deprecate WriteCounter, NewWriteCounter
60971a66b4 pkg/ioutils: deprecate BytesPipe, NewBytesPipe, ErrClosed
3db72b255d pkg/sysinfo: Deprecate NumCPU
6d24a21643 improve validation of cpu-shares, and migrate TestRunInvalidCPUShares
400f1ed95c runconfig: TestValidateResources: use subtests
93907c904d runconfig: TestValidateResources: fix duplicate test-case
5b18a7914c deprecate pkg/parsers.ParseKeyValueOpt and move internal
aad7bcedd2 Dockerfile: update runc binary to v1.2.4
35932cdeec pkg/ioutils: un-export readCloserWrapper
392d33c98c image/save: set a stable timestamp for assets
e324df3f1b image/tarexport: patch MkDirall to accept atime, mtime
ca962cecfd image/tarexport: add fork of os.MkdirAll (non-buildable commit)
ee1a15a970 daemon: ImageService.LogImageEvent: pass through context
ea00e72c21 libnetwork/drivers/bridge: processIPAM: remove unused arg
f8a973ba4e ci: update bake-action to v6
586556eda7 runconfig: return correct error-types and touch-up error messages
fbb421efaa runconfig: cleanup TestDecodeContainerConfig
c76cab29df runconfig: cleanup TestValidatePrivileged
ff64a348cc runconfig: fix and refactor TestDecodeContainerConfigIsolation
7864454792 pkg/ioutils: move atomic file-writers to a separate (pkg/atomicwriter) package
34ab9570ad daemon/links: TestLinkMultipleEnv: assert with gotest.tools, remove TestLinkPortRangeEnv
97dc3056c6 Clear RWLayer reference under container lock
080d8e7d63 daemon/links: TestLinkEnv: assert with gotest.tools
702df89d9b daemon/links: TestLinkNaming: assert with gotest.tools
51eb0c6a24 daemon/links: TestLinkNew: assert with gotest.tools
382fb41563 daemon/links: remove newPortNoError utility
3fa5e7e6a9 Update internal use of idtools to usergroup
9c368a93b6 Split internal idtools functionality
a4ae38b010 Use bridge consts for "DefaultGatewayIPv[46]" aux-addr keys
0f7a43271c daemon/events: Move metrics to internal/metrics
90e2afd0be daemon: Move direct usages of go-metrics to internal/metrics
438f5801e1 daemon/images: Move ImageActions to metrics
51c2689427 daemon/metrics: Move out to `internal/metrics`
048fece105 Alias github.com/docker/go-metrics imports
24ad9bef9d pkg/idtools: rewrite to use moby/sys/user
f4e2cfa209 libnetwork/osl: Namespace.setSysctls: use stdlib errors
064cdf475c pkg/parsers: deprecate ParseUintListMaximum, ParseUintList
39c05177ef Check network connect/disconnect after live-restore
c2fe1d31e9 Fix live-restore of the osSbox
a77ee8b9c0 Mark endpoints as "populated" after live restore
db1ed280f1 Live-restore gw-priority
9138195cef Rename Controller.sandboxCleanup to sandboxRestore
1359772433 pkg/sysinfo: parse cpuset.cpus/mems once and memoize
35fcbc1d1a Test a container attached to l3-ipvlan and bridge networks
81f6e087c1 Treat connected routes to unspecified addrs like default gws
725defe1e9 Include iface routes to unspecified addrs when looking for default gws
0416e31876 Add comments to selectGatewayEndpoint
1b9c09e10a daemon/logger: un-export RingLogger
263c46d755 integration/internal/container: IsInState: touch up error-logs
2282279180 pkg/sysinfo: internalize parsing cpusets
aa696ffbb1 pkg/sysinfo: touch-up docs for cgroupCpusetInfo.Cpus, Mems
4597396cb5 pkg/sysinfo: define const for default Max CPUs
799501d172 pkg/sysinfo: rename vars/arguments for clarity
0d51680f91 pkg/sysinfo: stub out parsing cpusets on non-linux
b7ed099727 daemon: isOnlineFSOperationPermitted: cleanup confusing syntax
fb03a3c403 vendor: github.com/moby/term v0.5.2
be39e4f732 man: remove --allow-nondistributable-artifacts
4f9150cee5 Update swarm to latest for server alpn config
a51baca00d pkg/fileutils: move GetTotalUsedFds internal in daemon
ba8279bf1f golangci-lint: remove temporary exception for deprecated code
e45f20352d pkg/fileutils: deprecate GetTotalUsedFds
a079f62f47 Add testutil daemon.WithResolvConf
d7f59cec05 daemon/config: add basic validation of exec-opt options
a646467a66 integration-cli: migrate TestCreateByImageID to integration suite
5b31a5b370 libnetwork/drivers/windows: fix error-matching for hcsshim "not found"
1f4c9f23c3 libnetwork/drivers/bridge: format errors with '%v' for consistency
3b8ba71fe3 libnetwork/drivers/windows: fix non-constant format string
8c96e45375 distribution: fix non-constant format string
e451b698d3 golangci-lint: add forbidigo rules to prevent regex.MustCompile
86e470fe3a daemon/names: use lazyregexp
b7c88502fb internal/testutils/networking: use lazyregexp
ae13510577 daemon/logger/awslogs: use lazyregexp to compile regexes on first use
690e00733e volume/mounts: use lazyregexp to compile regexes on first use
72ebf2c309 testutil: use lazyregexp to compile regexes on first use
b5d90d746b registry: use lazyregexp to compile regexes on first use
b6b19059c5 plugin: use lazyregexp to compile regexes on first use
0fe953dff0 pkg/idtools: use lazyregexp to compile regexes on first use
48d63b99ef opts: use lazyregexp to compile regexes on first use
06948b83f3 oci: use lazyregexp to compile regexes on first use
98f7c45e7f integration-cli: use lazyregexp to compile regexes on first use
bc1dbd9ea6 daemon: use lazyregexp to compile regexes on first use
d61a6924d7 client: use lazyregexp to compile regexes on first use
0672b3b7f7 builder: use lazyregexp to compile regexes on first use
43b3aaa62d implement lazyregexp package
ce37cb3ea0 Down with the sickness (AUTO_GOPATH)
839b0afbc7 integration/container: use is.ErrorType for some tests
4504ca6bf6 integration/container: rename vars that shadowed imports
6b0085eebd integration/container: use consistent name for api-client
fa0b9f9505 integration/container: use consistent alias for test-container pkg
547151abd2 pkg/sysinfo: cleanup tests
25009ed5c0 Restore labels when re-creating Windows networks
7bd1b64058 daemon/logger/loggertest: remove workaround for OSC string terminator parsing
5149401665 vendor: github.com/Azure/go-ansiterm faa5f7b0171c
ddd885a961 daemon: don't repeatedly call NumCPU if not needed
aa7493f953 daemon: minor cleanups for getting system info
1c37a4454b daemon: adjust tests for changes in go1.24 JSON errors
c5575b5119 daemon: add missing "//go:build" directive
f8524ab041 daemon: remove workaround for go1.21 compiler bug
8e9213a6b6 daemon: remove kernel-version check for kernel < 4.0.0
86a2df8be6 pkg/parsers: rename var that collided with builtin
cfc988e4da integration-cli: TestRunInvalidCpuset.. create instead of run
8d5cf1db1e Use the roundtripper during build
f321120767 daemon: parseSecurityOpt: rename var that shadowed function
44db31b9cc remove pkg/broadcaster and make it internal to container/streams
6ab9212168 pkg/ioutils: remove OnEOFReader and move it internal
be4eac753f Remove use of bufio in cli import tests
4c251b6b03 Add pool for archive decompress stream
9189a6e0ab Fix chrootarchive test
a93a079cb4 Remove use of pools in archive
8d787e3461 builder/dockerfile: unconvert
e19e4de775 daemon: ignore some errors when setting env-vars
c759fb20d6 daemon: remove uses of deprecated system.MkdirAll
1e060d3315 daemon/graphdriver/windows: remove uses of deprecated system.MkdirAll
05ec732667 libcontainerd/supervisor: remove uses of deprecated system.MkdirAll
84bb6e5afb container: remove uses of deprecated system.MkdirAll
c02c2a3a79 cmd/dockerd: remove uses of deprecated system.MkdirAll
e783bb5c69 builder/dockerfile: remove uses of deprecated system.MkdirAll
bc61b31935 pkg/idtools: remove uses of deprecated system.MkdirAll
4472e9b7f8 pkg/system: deprecate MkdirAll and remove custom volume GUID handling
e5bf6d8ba0 libnet: pass store as an arg to netdrivers
93e9f7f75f distribution: Pass Traceparent OTEL HTTP header
524a63a958 pkg/chrootarchive: remove "// import" comments
302ca6227f pkg/chrootarchive: use stdlib errors
727ab584bb vendor: github.com/containerd/cgroups v3.0.5
275bbcd300 builder: don't fall back to defaultKeepStorage when set to zero
315891dd2e Remove import comments
e4236c93d9 Remove unused pkg/system functions
12b2b56fa6 Update archive to use fs.FileInfo over custom stat
bb3e95dfdc Update archive to use unix.Mknod directly
35b9525f9a Update archive to use its own xattr funcs
1b4cbea3a8 Update archive to use time operations directly
90fef061ec daemon/c8d: Force c8dimages alias for containerd/images
8c30e11321 c8d/delete: Consistent method receiver
1ad78f00b1 daemon/c8d: Fix duplicate containerd/images import
6bd5840675 vendor: golang.org/x/net v0.33.0
364e4790e1 docs/api: allow for an empty string for Isolation (api v1.25-v1.47)
7e9a5064dc api: Remove unused imageStore and layerStore
c452af6651 image: Remove unused `Details` fields
d9795da33e image: Remove `GetImageManifest`
4f5ec9994c pkg/reexec: deprecate and migrate to github.com/moby/sys/reexec
7fbbd52b0e add Shaun Thompson as curator
b0be1f3af8 Enable external DNS if a network has an IPv6 gateway
ec8a5b0f4c libnet/d/bridge: move iptRule to iptables pkg
1b823fb54e libnet: don't put external DNS answers in OTel spans
1aecca8bbd docs: Update example section for SwarmJoinRequest
b6594353f8 libnetwork/iptables: remove deprecated Passthrough()
d34d092b42 libnetwork/iptables: remove deprecated IPV, Iptables, IP6Tables
820dea0d2b libnet/d/bridge: hardcode chain names
bd30a51ea7 libnet/iptables: split ProgramChain and move to bridge driver
df3c78d061 Combine outgoing and ICC iptables rules
0f259dd76d Rename setupIPTablesInternal -> setupNonInternalNetworkRules
556b8eed16 Tidy setupIPTablesInternal
8fd177d79b pkg/reexec: Command: separate public API from implementation
6568c06d12 pkg/reexec: make platform-agnostic (again)
7672d60033 pkg/reexec: use const for name of test binary
0ef2b24c80 Make libnetwork responsible for DOCKER-USER setup/reload
9699284e8f Add iptablesdoc for a swarm network
6473d37002 Run commands in an L3Segment netns without failing the test.
3bf9a80818 Rename L3Segment Host.Run -> Host.MustRun
29e20fc904 Add static filter-FORWARD rules during bridge driver init
5ccc699513 Use golden testdata in TestUserChain
cd81985bfa vendor: update buildkit to v0.18.2
d688389f4a libnetwork/iptables: deprecate Passthrough
8991c4e382 Deprecate BridgeNfIptables and BridgeNfIp6tables fields
30a365f543 docs/api: version-history.md: fix markdown
01a55860c6 libnetwork/drivers/bridge: setupIPChains: fix defer checking wrong err
31fc7dd750 libcontainer: ReplaceContainer: fix var shadowing import
4e9df46a6e docs/api: document correct case for Api-Version header
53a9127349 integration/build: make TestBuildEmitsImageCreateEvent less noisy
504e1d4686 pkg/archive: replace uses of pkg/errors for stdlib errors
f0ce367e1e pkg/system: deprecate types and functions that are only used internally
f053beb34c libnet/osl: drop netns path GC
27deff4da1 libnet/iptables: deprecate type IPV
c8f19e5e4c libnet/iptables: remove mutex-based serialization
537eea8744 vendor: golang.org/x/net v0.32.0
678ef1a267 libnet/d/bridge: unconditionally error out if LinkSetMTU fails
5c358743af daemon: info: remove bridge-nf-call-iptables / ip6tables warnings
d8358ebc87 otel: Use non-noop tracer provider for grpc
96ef85272f c8d/pull: Show `Extracting` layer status
899360b649 integration/build_traces: Create own tracer provider
4847557d1b otel: Avoid excessive memory allocations if not configured
927ff16860 vendor: github.com/opencontainers/runc v1.2.3
88a08a070e vendor: github.com/cyphar/filepath-securejoin v0.3.5
ba90fd8da0 Decouple pkg/archive from pkg/ioutils
ec5c9e06e3 Dockerfile: update runc binary to v1.2.3
e6443e4af2 vendor: golang.org/x/crypto v0.31.0
035eeee209 vendor: golang.org/x/text v0.21.0
df8b3e787c vendor: golang.org/x/sync v0.10.0
c4f80dd931 vendor: golang.org/x/sys v0.28.0
8b243a1a82 docs/api: deprecate non-distributable artifacts
1932091e21 remove support for non-distributable artifacts and deprecate API fields and config
e394ff695c Dockerfile: remove libbtrfs-dev dependency
7d79b301bc Dockerfile: remove libsecret-1-dev dependency
3192b2aba7 Dockerfile: remove libudev-dev dependency
7c4afb1e6b Dockerfile: remove dpkg-dev dependency
7bba43a731 Dockerfile: remove libapparmor-dev dependency
b08ff81204 builder: fall back to defaultKeepStorage if keepStorage is unset for GC policy
1a453abfb1 integration-cli: don't skip AppArmor tests on SLES
be9e39b48b registry: ConvertToHostname: use strings.Cut to reduce allocations
a6f98dc60d registry: Service.lookupV2Endpoints: add arg to skip mirrors
50215913db registry: loginV2: move variables closer to where they're used
c1ef39e56e registry: loginV2: don't contact registry when failing to construct request
a7da6fb2a7 man: vendor: github.com/cpuguy83/go-md2man v2.0.5
89899b71a0 update xx to v1.6.1 for compatibility with alpine 3.21
9da0e69608 api/server: Server.CreateMux: pass context and use structured logs
9c1ff095e8 cmd/dockerd: pass debug-router instead of constructing in CreateMux
27294df576 api/server: Server.CreateMux: also register API-version debug endpoints
e2d2834be1 api/server: Server.CreateMux: register debug endpoints with correct methods
2f5412de8d api/server: set /debug prefix as part of debug-router routes
694c01620b chore: fix some function names in comment
76a5ca1d4d Accurately reflect the canonical casing of `API-Version` and `OS-Type` headers
5fc32c12c7 cmd/dockerd: ignore some unhandled errors
b0ec823cc7 daemon: remove Daemon.NetworkControllerEnabled
59bfc32a33 daemon/containerd: hostsWrapper: remove unused regService argument
3014d6d7a3 registry: deprecate APIEndpoint.TrimHostName
fe2637a05b api/types/network: add godoc for EndpointSettings.GwPriority
15ba03c8fc Jenkins: don't modprobe kernel module
2af19b6b7c Don't try to modprobe ip6_tables in the moby dev container
f2e1f52a04 Try to load kernel module ip6_tables, when necessary.
4740820716 Use ioctl to try to trigger kernel module loads
56eb47c622 Ignore kernel-assigned LL addrs when selecting "bip6"
404118c22b vendor: google.golang.org/protobuf v1.35.2
20ddbe2a0b vendor: golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f
1e51b7a28c vendor: golang.org/x/tools v0.27.0
750d6f4423 vendor: golang.org/x/mod v0.22.0
99f593b762 vendor: golang.org/x/net v0.31.0
e5895eacac vendor: golang.org/x/crypto v0.29.0
fb9977e42e vendor: golang.org/x/text v0.20.0
115acf7c15 vendor: golang.org/x/sync v0.9.0
e542dee0a6 vendor: golang.org/x/sys v0.27.0
8fee8a759f Remove test env var DOCKER_TEST_CREATE_DEFAULT_BRIDGE
0eb3d431c0 Run tests that change docker0 in their own netns
52d7e407b7 update to go1.23.4
504ee465fc vendor: update buildkit to v0.18.1
4e30acb63f Dockerd rootless: make {/etc,/var/run}/cdi available
820520affd distribution: verifySchema1Manifest: pass through context
9a0b61ab29 daemon/daemon_linux.go: Fix a minor typo
d75394bf77 Wait longer for a stable goroutine count in tests
dd7831187d Fix typo in waitForStableGourtineCount
f91afea6ea c8d/commit,import,build: Preserve overriden image
f0c8becffb c8d/tag: Extract createOrReplaceImage
0194a18ca8 registry: remove assignment of default values in some tests
a93f6c61db c8d/tag: Don't log a warning if the source image is not dangling
28a700bf5b registry: override net.LookupIP per test, not globally
d17cd847ea registry: isCIDRMatch: don't try to resolve host if not needed
5f91c769f5 registry: deprecate RepositoryInfo.Class
3903f71f9f registry: remove deprecated APIEndpoint.Version and APIVersion type
0bd8738e33 registry: isCIDRMatch: return early if no CIDRs are set
cce5dfe1e7 Jenkinsfile: modprobe br_netfilter
59c5919b12 Put --help before --host in the dockerd manpage
2fbb18ece2 Add --host-gateway to the dockerd manpage
0aba67203a Implement gateway mode "nat-unprotected"
07dff11a7e Wrap errors rather than using err.Error()
d3c2376ff1 cmd/dockerd: change routerOptions.Build to a regular func
5b752fab32 api: add Priority field to EndpointSettings
229dc6676c daemon: early-return from buildJoinOptions
c9f17bedc7 daemon/config: extract validation of userland-proxy config
83f8f4efd7 daemon/config: deprecate Config.ValidatePlatformConfig
74a00f183b daemon/config: move utility-functions separate from Config methods
a4714fa04d daemon/config: verifyDefaultCgroupNsMode: update error message for consistency
2c000b8ac4 daemon: Daemon.RegistryHosts: use internal method to get daemon config
16be996b6b ci: use edge releases of buildx
3e4f437697 cmd/dockerd: newRouterOptions: rename arg that shadowed import
68a98a7263 daemon: getCD: remove use of parsers.ParseKeyValueOpt
003e35fea5 libnetwork/ipams/null: gofumpt code
a8e5a19706 libnetwork/drivers/bridge: gofumpt code
da5e86a82b daemon: gofumpt code
fb6e650ab9 integration: add wait
e7d15d4d58 daemon/graphdriver/zfs: ignore non-existent dataset on removal
264c15bfc4 Fix br_netfilter module loading logic
b4769e86a4 vendor: update buildkit to v0.18.0
b57aa7f3b7 integration: remove default poll delay and timeouts
c9a1e4dc8c Test host-gateway addresses from docker0
af0b973595 Allow IPv4 and IPv6 host-gateway-ip addresses
01e2168c1e Move Linux-only integration/network tests into Linux-only file
90250ce93a vendor: update buildkit to v0.18.0-rc2
b7f43c3729 Remove buildkit init timeout
0b5b1db1c1 Use default ULA prefix if fixed-cidr-v6 is not specified
fdd2591cbe Separate IPv4 IPAM conf from the rest of default bridge conf
cc538b2bf0 Drop fixed-cidr if not within user-managed bridge subnet
311a8bc899 Allow increase of fixed-cidr subnet size
85159ce09f Allow non-overlapping change of fixed-cidr
237654a553 Refactor IPAM config for default bridge
90baa2bc36 Fix selection of subnet from user-managed default bridge
63b558af77 Don't clear top bits of IP then check if it's global unicast
facb2323a0 Add tests for IPAM Config of default bridge
4a2bd1085e Move default bridge test into linux-only file
46a91a947e api/types/filters: reduce uses of non-exported fields in tests
cffee85725 api/types/filters: also test generated JSON
848f11aa7c api/types/filters: rewrite tests with gotest.tools
4becdaca72 Add label on PrepareSnapshot to warn about non-expiring leases
eef6b83e53 Update containerd image builder to use lease prune label
e6170a5c4f Fix lease management during image operations
1a26e627bc vendor: github.com/vishvananda/netns v0.0.5
0666d4a585 vendor: github.com/moby/buildkit 94d0f6ed85e5 (master / v0.18.0-rc.2)
557e4ed83b tests: migrate simple cases to assert.ErrorIs
caae3c051d tests: migrate to assert.ErrorContains when possible
1b470d15d8 tests: migrate away from assert.Assert(v == nil)
0553d3d994 tests: migrate away from assert.Assert(err == nil)
5e4e34a966 tests: migrate strings.Contains -> is.Contains in assertions
48b237f7af vendor: update buildkit to v0.18.0-rc1
44f9eec1ae vendor: github.com/tonistiigi/go-actions-cache 394979b8119e
1551d95727 vendor: resenje.org/singleflight v0.4.3
b9a904c48a integration/container: TestCDISpecDirsAreInSystemInfo: use fixtures
d23bc11b97 vendor: github.com/containerd/continuity v0.4.5
8cecf3a71c Dockerfile: update containerd to v1.7.24
a650dbd951 Update containerd to v1.7.24
821d974789 volume/testutils: simplify fakePluginGetter
b656cffe4c Disallow "network generic data" with type options.Generic
223929a44d Test routed n/w inter-network communication
0546d9084f Routed networks accept traffic from anywhere.
10338053f0 Don't add default-RETURN rules to DOCKER-ISOLATION chains
939bc14616 Tidy bridgeNetwork.isolateNetwork
255fff4acd Propagate error from INC rule setup
d3b7d84b23 Simplify setINC()
1a607cf257 Rename gwMode.natDisabled() to gwMode.routed()
9c9eccfb23 client: support multiple platforms on save and load
e257856116 Dockerfile: update to runc v1.2.2
44ed3067ca c8d/container/inspect: Return `ImageManifestDescriptor`
0020c41e3a daemon: Best-effot container `OS` to `ImagePlatform` migration
638172417c container: Add `ImagePlatform` field and deprecate `OS`
60cd165012 Dockerfile/frozen-images: Add amd64 and arm64 hello world
f303531757 client: ImageImport: omit empty query-parameters
f96994ec17 Skip tests that are flaky for 4 already
be36ac13e5 .golanci.yml: rm runc exception
acf920823b update golangci-lint to v1.62.0
329d35bcca vendor: github.com/opencontainers/runc v1.2.2
4b26582bc6 vendor: google.golang.org/grpc v1.66.3
1eccc326de vendor: github.com/golang-jwt/jwt/v4@v4.5.1
a333c2990f client: TestImageImport: use table-test, asserts, add platform test-case
2bab030d6c client: TestImageSave: use table-test, asserts, add platform test-case
1ea24b7be3 client: TestImageLoad: add test-case for platform
613538469b client: TestImageLoad: rewrite to use table-tests, use asserts
b0b6357701 Makefile: don't automatically inherit graph-driver from host
d88ab0f3a2 c8d/image/inspect: Return `Descriptor`
c2c0046d11 remove logentries check and migration code
5ef5ca3adc EnableIPv4 will be in API 1.48, not 1.47
1a16f5099b daemon/logger: logDriverError: use WithFields for logs
451fee91c5 libnetwork: add missing go:build tag
0f0c5eeaca api/server/router/container: add missing go:build tag
835b1f1063 daemon/containerd: add missing go:build tag
354dfdb928 Delete /etc/hosts entries on network disconnect
c1bf84fdbc Move Austin Vazquez (austinvazquez) to maintainers
82fdae7730 daemon/images: fix godoc for ImageActions
4a2c48e231 Dockerfile: update compose to v2.30.3
ee95c7bd89 Dockerfile: update buildx to v0.18.0
8a81a97af5 Only delete /etc/hosts entries for disconnected network
b034dc41a2 deprecate pkg/platform and move internal
b15cd283d8 c8d/list: Return `Descriptor`
fc590032f3 hack: Add explicit containerd feature to `daemon.json`
7d89d83485 golangci-lint: enable copyloopvar linter
d67a21b6fc pkg/idtools: remove redundant capturing of loop vars (copyloopvar)
3350920788 integration/service: remove redundant capturing of loop vars (copyloopvar)
70b354713b runconfig: remove redundant capturing of loop vars (copyloopvar)
1a89c1e4a6 pkg/archive: remove redundant capturing of loop vars (copyloopvar)
517baee5f2 distribution: remove redundant capturing of loop vars (copyloopvar)
04d8766d4e integration/network/bridge: remove redundant capturing of loop vars (copyloopvar)
020b7102e3 daemon/logger/syslog: remove redundant capturing of loop vars (copyloopvar)
59f68d3f99 api/server/middleware: remove redundant capturing of loop vars (copyloopvar)
243442280e integration/system: remove redundant capturing of loop vars (copyloopvar)
bb682f75f9 integration-cli: remove redundant capturing of loop vars (copyloopvar)
a19b892c29 integration/volume: remove redundant capturing of loop vars (copyloopvar)
cd5e043aff daemon/cluster/executor/container: remove redundant capturing of loop vars (copyloopvar)
f797d70649 api/types/container: remove redundant capturing of loop vars (copyloopvar)
08dbb7a593 integration/build: remove redundant capturing of loop vars (copyloopvar)
ee54e43bf1 integration/daemon: remove redundant capturing of loop vars (copyloopvar)
9a7278fbdc integration/capabilities: remove redundant capturing of loop vars (copyloopvar)
ff97ff8320 daemon/logger/loggerutils: remove redundant capturing of loop vars (copyloopvar)
67d91e7622 volume/local: remove redundant capturing of loop vars (copyloopvar)
f7b547ba0d integration/network/ipvlan: remove redundant capturing of loop vars (copyloopvar)
b5c0f6cd70 daemon: remove redundant capturing of loop vars (copyloopvar)
d885d097ef libnetwork/ipams/defaultipam: remove redundant capturing of loop vars (copyloopvar)
7db58fefdc internal/mod: remove redundant capturing of loop vars (copyloopvar)
74e44345e7 distribution/xfer: remove redundant capturing of loop vars (copyloopvar)
874ad2fcf0 api/types/filters: remove redundant capturing of loop vars (copyloopvar)
3a34264129 volume/mounts: remove redundant capturing of loop vars (copyloopvar)
a505b19170 integration/plugin/common: remove redundant capturing of loop vars (copyloopvar)
742509150b libnetwork/bitmap: remove redundant capturing of loop vars (copyloopvar)
082a52e8ac oci: remove redundant capturing of loop vars (copyloopvar)
e9b009fef5 integration/networking: remove redundant capturing of loop vars (copyloopvar)
53d78d73e6 integration/container: remove redundant capturing of loop vars (copyloopvar)
0b2d687b06 daemon/containerd: remove redundant capturing of loop vars (copyloopvar)
b5b077f2ea api/types/network: remove redundant capturing of loop vars (copyloopvar)
0fc7b1c201 daemon/cluster/convert: remove redundant capturing of loop vars (copyloopvar)
6a85a13c0a internal/testutils/specialimage: remove redundant capturing of loop vars (copyloopvar)
1c6958bf13 integration/network/macvlan: remove redundant capturing of loop vars (copyloopvar)
88e24ccda6 image/cache: remove redundant capturing of loop vars (copyloopvar)
89add8c64f libnetwork/drivers/overlay: remove redundant capturing of loop vars (copyloopvar)
ce1a39ab34 client: remove redundant capturing of loop vars (copyloopvar)
ea10382ffa integration/image: remove redundant capturing of loop vars (copyloopvar)
69d0c773ca daemon/logger/fluentd: remove redundant capturing of loop vars (copyloopvar)
c2e22d85b3 api/server/httputils: remove redundant capturing of loop vars (copyloopvar)
aea8a0724a integration/network: remove redundant capturing of loop vars (copyloopvar)
f0b896c5f2 builder/remotecontext/git: remove redundant capturing of loop vars (copyloopvar)
4768d680d1 libcontainerd/remote: remove redundant capturing of loop vars (copyloopvar)
443a074fa4 profiles/seccomp: remove redundant capturing of loop vars (copyloopvar)
93f98535c3 daemon/logger/loggertest: remove redundant capturing of loop vars (copyloopvar)
35aa84fbc2 pkg/plugins: remove redundant capturing of loop vars (copyloopvar)
63f0b9a1d5 opts: remove redundant capturing of loop vars (copyloopvar)
c0de852afa integration/config: remove redundant capturing of loop vars (copyloopvar)
41bf78226f daemon/config: remove redundant capturing of loop vars (copyloopvar)
b01a37a6b7 libnetwork/drivers/bridge: remove redundant capturing of loop vars (copyloopvar)
53e48e8623 libnetwork: remove redundant capturing of loop vars (copyloopvar)
8b190b16df registry: remove redundant capturing of loop vars (copyloopvar)
21e1038d12 golanci-lint: sync comments with docker/cli
b453aa65fa update go:build tags to use go1.22
bf251c33d0 Only masquerade access to own published ports for userland-proxy=false
3dea9fd4e6 Add TestFilterForwardPolicy
3cadadb4eb Add daemon option --ip-forward-no-drop
5823b05c97 Modify IP forwarding and filter-FORWARD DROP setup.
a4d74c6383 Move setupIPv6Forwarding() to setup_ip_forwarding.go
24f53eba7f Move integration/network/bridge_test.go to bridge subdir
ca273f465a Dockerfile: update registry to v3.0.0-rc.1
c9570da15b chore(libnetwork): fix some comments
756586e437 vendor: update buildkit to v0.17.1
a6e5f7f86b Structured logs in sbJoin/sbLeave and funcs they call
18327745c0 Allow separate IPv4/IPv6 gateway endpoints.
869f7996fc Option to disable implicit mapping IPv6 host to IPv4.
4ac7f14e99 Add EnableIPv4 to the bridge driver
c0045476b8 all: Remove redundant `units` alias for `go-units`
20818454c4 update to go1.23.3
16f6fd1a95 Add a comment explaining host-networking hosts file generation
7c1e41a06d libnetwork: Sandbox.buildHostsFile: remove intermediate var
6a5ab42f28 libnetwork/etchosts: Delete: truncate file instead of close and write
7d98e45a6e libnetwork/etchosts: Add: combine with "mergeRecords()"
28d029cf9f libnetwork/etchosts: don't panic on invalid regex
80e4631998 Use netip.Addr instead of string when building /etc/hosts
c2a09d2721 Don't update /etc/hosts separately for each initial network
0af6203b46 vendor: github.com/containerd/typeurl v2.2.3
84965c0752 Windows: Run containerd as managed process
5014c90516 api/swagger: Improve description for platform in images/push
7766b35d74 golangci: govet: enable more rules
24bd11ce22 pkg/plugins: TestLocalSocket ignore deepequalerrors (govet)
626d9b421b distribution: TestLayerAlreadyExists: fix deepequalerrors (govet)
06bf2a2699 distribution: manifestStore.Put: fix unusedwrite (govet)
facdfc1751 daemon/images: onlyFallbackMatcher.Match: fix unusedwrite (govet)
406e3a0ff7 daemon/containerd: storeJson: fix redundant err-check (govet)
8e76998aee integration-cli: loadSpecialImage: fix shadowed variables (govet)
a0b84a34c2 layer: verifiedReadCloser.Read: fix shadowed variables (govet)
38db7265fc pkg/plugins: loadWithRetry: fix shadowed variables (govet)
a28e6e2d21 daemon/graphdriver/btrfs: Driver.parseStorageOpt: fix shadowed variables (govet)
b3705f12cd distribution: pushDescriptor.layerAlreadyExists: fix shadowed variables (govet)
0c8c098719 libnetwork: Network.rmLBBackend: fix shadowed variables (govet)
544b1574e2 builder/dockerfile: fix shadowed variables (govet)
bb9251c46d daemon/containerd: fix shadowed variable in tests (govet)
979227484f daemon/containerd: ImageService.imageDeleteHelper: fix shadowed variable (govet)
6dc31171c5 builder/builder-next/exporter: patchImageConfig: fix shadowed variable (govet)
b019372446 libnetwork/bitmap: fix shadowed variable in tests (govet)
32aa56af00 pkg/idtools: fix shadowed variable (govet)
6f3dd5f040 plugin: TestPluginAlreadyRunningOnStartup: fix shadowed variable (govet)
e46e159001 plugin: Manager.getManifestDescriptor: fix shadowed variable (govet)
d058e09200 daemon/graphdriver/overlay2: fix shadowed variable (govet)
ee425a9773 builder/builder-next: fix "id" variable being shadowed (govet)
79c5b938f4 daemon: Daemon.autoRemove: fix shadowing (govet)
007daf5045 daemon: Daemon.handleContainerExit rename vars to prevent shadowing (govet)
738fb74a1a libnetwork/datastore: MockStore.AtomicPut: remove redundant nil check (govet)
473b1d419c golangci: run gosec on test files as well
f6d86126c4 distribution/xfer: createChainIDFromParent: ignore G602 false positive (gosec)
a309e88dff pkg/tarsum: renderSumForHeader: ignore G110 in tests (gosec)
41b5645ba2 integration-cli: TestDaemonStartWithDefaultTLSHost: fix G402: TLS MinVersion too low
4bb96a5a4a awslogs: TestNewAWSLogsClientCredentialEndpointDetect: ignore G101 (gosec)
6f220c3340 daemon/logger/splunk: HTTPEventCollectorMock: fix G114 (gosec)
79196deae9 pkg/authorization: fix G112 Potential Slowloris Attack (gosec)
e6e6f0cdca client: TestTLSCloseWriter: fix G112 Potential Slowloris Attack (gosec)
963a9d7504 integration-cli: ignore some file-permissions issues (gosec)
7d7412af31 integration-cli: TestRunCreateVolumesInSymlinkDir: adjust file perms (gosec)
0d1c645919 integration-cli: writeFile: fix file permissions (gosec)
6ca0d3b1b1 integration-cli: inspectMountPoint: fix implicit memory aliasing (gosec)
c8e085b56a volume/mounts: TestConvertTmpfsOptions: fix implicit memory aliasing (gosec)
c3fa5b2e57 integration/plugin/logging: adjust file permissions in test (gosec)
9fc2b45fa5 fix vendor of github.com/containerd/containerd
73fae59cef golangci: remove invalid govet config
1188e80cc5 golangci: move gosec exclusions to linters-settings section
a0807e7cfe golangci: set go version to prevent fallback to go1.17 semantics
29e5bfb0f0 golangci: fix deprecated run option
7809dc08f1 golangci: remove global ignore for EXC0006 / G103 (gosec)
79e9619412 pkg/archive: ignore G103 (gosec)
88c178328f libnetwork/drivers/bridge: ignore G103 (gosec)
62e137377b integration/image: ignore G103 (gosec)
e567b816d2 golangci: sort linters-settings
0940460c2f libnetwork: endpointJoinInfo.UnmarshalJSON: fix shadowed variable (govet)
e601e71681 Remove function isLinkable
083d595286 client: TestImageHistory: add minimal test for platform
73fabd5a21 client: TestImageHistory: use fixture for JSON response
5cfd326aa4 client: Client.ImageHistory: don't decorate error twice
caf2d5dc7c Change meaning of return from DNSBackend.ResolveName
ec3dde7001 Only allocate IPv6 addresses if IPv6 is enabled.
fe856b94b5 Configure network endpoints after creating a container
788db583b1 Make buildSandboxOption a function instead of a Daemon method
4c553defce Separate Sandbox/Endpoint construction
a715ccaaa3 Unconditionally update NetworkSettings
933fcc9814 Re-remove the SetKey OCI prestart hook
035b8afe04 chore: fix function name
330e717403 fix(systemd): start Docker engine *after* DNS resolution is ready
96039276b6 client: add utilities to encode platforms
816dbbfddc ci: re-enable firewalld jobs
8c3945c761 client: rename vars for consistency
0e72863b9d vendor: update buildkit to v0.17.0
17b76511d5 Fix: Duplicate event on network disconnect #48797
fbb595cb66 Remove libnetwork_test.TestMain
5f39567e56 vendor: github.com/containerd/containerd v1.7.23, hcsshim v0.12.8
741cc494cd builder-next: exporter: emptyImageConfig: use platform directly
9be6e902b5 Restore 27.x path for libnet's Bolt database
2cc21208e6 vendor: update buildkit to v0.17.0-rc2
cb966073ce container create: add warning for volumeDriver together with mounts
93255bd748 vendor: github.com/Microsoft/hcsshim v0.12.7
3dc042b1df vendor: sigs.k8s.io/yaml v1.4.0
2807c0c2d2 Revert "ci: run integration tests with firewalld enabled"
db68a019fd c8d/save: Add tests
3cc736e95c chore: fix some function names
ba454f573b c8d/inspect: Fix duplicate RepoDigests
ae87c1d84c remove deprecated pkg/directory
2054fd99b1 pkg/longpath: remove deprecated Prefix const
c1652ab357 volume/service: use local driver as default for anonymous volumes
31880791a4 volumes/mounts: test the actual MountConfig returned
275609eb37 volumes/mounts: test the actual error returned
6b0c4b5216 volumes/mounts: don't set "expected" values for fail cases
e141be8752 volumes/mounts: remove backticks from test logs
be7d57367b volumes/mounts: remove backticks from errors
0b290094b5 volume/mounts: windowsParser.ConvertTmpfsOptions don't use runtime.GOOS
75e8f57579 internal/safepath: Join(): remove workaround for ECI / Sysbox
4b60c68803 internal/safepath: Join(): log some unhandled errors
5fc5b0574b internal/safepath: kubernetesSafeOpen: explicitly suppress unhandled err
4e5c7eeafc daemon: cdiHandler.getErrors: remove var that shadowed import
0c43bc6891 demon: ImageService.Mount: use structured logs
5c48736863 remove redundant alias for runtime-spec
352b4ff2f1 volume: VolumesService.Create: fix log-level for debug logs
2aaae08ade Cleanup legacy mirror string to registry host
b3569ebd5a Add HTTP fallback to all insecure registries
1c34581812 Use daemon config to check for legacy config
8b4cb6f58c Update host resolver to use containerd host config
8e0bf25bc3 container: update confusing GoDoc for Container and State
f2a3acc104 vendor: go.opentelemetry.io/contrib/instrumentation/xxx v0.53.0
d9a2ca7b49 vendor: go.opentelemetry.io/otel v1.28.0
070d6c75a7 vendor: google.golang.org/genproto/googleapis/api f6361c86f094
c2029cb257 Update tmLanguage file to cover first escape character
95959f7000 vendor: github.com/prometheus/client_golang v1.20.5
10d57fde44 volume/mounts: fix anonymous volume not being labeled
7d7089247c api/types/filters: GetBoolOrDefault: remove unreachableCode
f31188bc4c vendor: github.com/cenkalti/backoff/v4 v4.3.0
c3cab4170b vendor: github.com/go-logr/logr v1.4.2
d2557466c6 vendor: google.golang.org/protobuf v1.34.2
c98c6d4f08 vendor: github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161
a6d5b48e67 vendor: github.com/opencontainers/runc v1.2.0
bb364cc0f3 inte/t/networking: delete veth ifaces before netns
4ab7644d8d c8d/load: Don't ignore missing platform when requested
533e7d150a From 28.0.0, don't migrate per-endpoint sysctls.
b79bba6b68 Remove feature flag "windows-dns-proxy"
88b90ebbd2 vendor: github.com/opencontainers/selinux v1.11.1
5c72a95a30 client: prevent idle connections leaking FDs
0105091745 vendor: github.com/cilium/ebpf v0.16.0
51dd387bc9 vendor: github.com/cyphar/filepath-securejoin v0.3.4
6be2074aef daemon: use OwnCgroupPath in withCgroups
d4159a7e73 ci/gha: enable go caching
0acdc37a20 container: remove deprecated ErrNameReserved, ErrNameNotReserved
1dcb7af2cb daemon: remove Daemon.containerRoot, Daemon.newBaseContainer
7c087c3267 Fork buildkit resolver logic to daemon package
aba8df74a1 Add TestDirectRoutingOpenPorts
c9fdeaf70e Explicitly DROP packets for ports/protos that aren't mapped.
6634fc5136 Allow ICMP in routed mode
6131322c6f daemon: remove deprecated Daemon.IsPaused
692024a18c daemon: remove deprecated Daemon.Exists
3bbb9749f4 c8d/test: Add memoryLabelStore
3f745f2b21 c8d/list: Extract fake service helpers
1bb5f8bb67 update to go1.23.2
a8cd0fc4d4 vendor: go.etcd.io/etcd/server/v3 v3.5.16
5f994c49e8 vendor: go.etcd.io/etcd v3.5.16
ac6e32cb5c daemon: deprecate Daemon.IsPaused
d47c31ffdd daemon: deprecate Daemon.Exists
d9ae34289a daemon: Daemon.newContainer: explicitly return nil-error
303530c1f5 daemon: Daemon.newContainer: inline Daemon.generateHostname
7faaa3afa8 client: explicitly return zero-type on failures in prune functions
0539b7073e pkg/stringid: optimize GenerateRandomID
7ebe625db7 pkg/archive: move deprecated NewTempArchive, TempArchive to test-utils
b313fcb8ff pkg/archive: remove deprecated CanonicalTarNameForPath
c837027a9c pkg/stringid: replace TestShortenIdXXX with TestTruncateID table test
83f17b0cbb pkg/stringid: remove deprecated IsShortID, ValidateID
77f97926ad daemon: remove secretsSupported utility
c0b86dd068 daemon: remove configsSupported utility
5208e2954c daemon: deprecate Daemon.Register and make it internal
d122ea0aea api: GET /images/json: preserve original manifest order
1aba291cd4 Releases container layer on export
66f159dc24 build: log when build is cancelled
cca7085464 cmd/dockerd: Add workaround for OTEL meter leak
21b0d5f0c1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20241017191044-e8ecf83ee08e
fafdcd1194 dockerd-rootless-setuptool.sh: let --force ignore smoke test errors
e7e555f573 distribution: remove formatPlatform utility
abed0e1f97 client: ContainerResize, ContainerExecResize: don't overflow width/height
ed44a05607 api: backend.ContainerExecResize: pass context and use uint32 for width, height
2b2aa69100 api: exec resize: improve errors for invalid width/height
8553d34593 api: backend.ContainerResize: pass context and use uint32 for width, height
d19aa0c590 api: container resize: improve errors for invalid width/height
1dd9d2c780 api/server/httputils: add Uint32Value utility
0548fe251c Enable bridge netfiltering if userland-proxy=false
039e164bf5 api/server/httputils: DecodePlatform: improve test-coverage
a8bfa83667 Fix: setup user chains even if there are running containers
1701bce9e0 api/server/middleware: use structured logs for debug-logs
4e840b9e29 volume/service: change some logs to use structured logs
bca54a6838 daemon: killWithSignal: use more structured logs
44010e76c2 integration/container: add TestExecResize
944dc4a559 integration/container: TestResize: add more test-cases
3f2e9da010 api/server/router/container: move API adjustments to API
0c595fe781 api/server/router/container: fix inconsistent receiver name
59cf8e8565 Add iptables doc for a gateway-mode=routed network
19328fdd4f Add iptables doc for a --internal network
bc84b4b6d9 Add iptables doc for a network with icc=false
a8eaeba3f9 Add iptables doc for a network with userland-proxy disabled
ac4a95d1d0 Add iptables doc for a user-defined network
20571e453b Generate iptables documentation
a602054826 daemon: fix restoring containers with name matching an ID
71977a841c daemon: Daemon.registerName: inline validateID utility
4e567e1622 ci: run integration tests with firewalld enabled
8883db20c5 hack: run firewalld when $DOCKER_FIREWALLD is set
6c6174b371 cmd/docker-proxy: UDP: reply to clients with original daddr
a0a0bbae6c Discard ErrDumpInterrupted and return data after maxRetries
3cf90ca73f container: deprecate ErrNameReserved, ErrNameNotReserved
0200c58c4a container: viewDB.ReserveName, view.GetID: return errdefs errors
0603bd9577 container: viewDB.withTxn: don't wrap errors
0d36ab1875 container: TestNames: don't string-match error assertions
d9627b6159 docs: api: document w (width) and h (height) query params as required
2a3a7e8ee8 api: document w (width) and h (height) query params as required
a051aba82e gha: shorter time limits for smoke, validate
91c448bfb5 gha: use "ubuntu-24.04" instead of "ubuntu-latest"
9a14299540 gha: dco: small tweaks to running the container
3cb98d759d gha: dco: update ALPINE_VERSION to 3.20
7da4ab9a91 README: add some badges
cfe0d2a131 gha: build (binary), build (dynbinary): limit to 20 minutes
e75f7aca2f gha: dco: limit to 10 minutes
4a2361ea09 pkg/authorization: update link to API documentation
5b149d3faa client: update link to API documentation
0f8f143a27 docs/api: version-history: update documentation links
e06245a2a6 client: imageBuildOptionsToQuery: omit "default" networkmode
b13cf4fc5f client: imageBuildOptionsToQuery: only send "rm" when disabling
805e2c67e2 builder/builder-next: Builder.Build: use network-mode consts
740798da34 client: imageBuildOptionsToQuery: omit empty values from query
c68c9aed8c gha: restrict cross and bin-image to 20 minutes
7fe04c142d vendor: github.com/moby/buildkit v0.17.0-rc1
cd551b936b daemon/containerd: getPushDescriptor: fix formatting of platform in errors
c16be54040 daemon/containerd: touch-up errPlatformNotFound error
91f74c2fe0 Disable iptables/ip6tables in two tests to remove conflict
8681b3c2ac images: GetImage: touch-up error message for missing platform
d31c241ea5 PushImage: remove misleading error about --platform without containerd
037bac89fc gha: remove stray double empty line
26049febb2 api: Allow for an empty string for Isolation in Swagger specs This adds an empty string as a valid option for the Isolation field when inspecting a container. On non windows systems, this is always empty, so no error should be returned. Fixes #47452
6b7e2783d1 gha: add guardrails timeouts on all jobs
7fa6d3c230 integration/build: remove TestBuildWithSession, and fsutil direct dependency
2e699872bc vendor: google.golang.org/grpc v1.66.2
e007ef71c1 vendor: google.golang.org/protobuf v1.34.1
30b6e58242 vendor: github.com/cespare/xxhash/v2 v2.3.0
4592ce42b6 vendor: golang.org/x/tools v0.25.0
36549fb56e vendor: golang.org/x/mod v0.21.0
cc80652bcd vendor: golang.org/x/net v0.29.0
9d6db83acc vendor: golang.org/x/crypto v0.27.0
6e32888caa vendor: golang.org/x/text v0.18.0
51cf0ed303 vendor: golang.org/x/sys v0.25.0
6b7565ba40 vendor: go.etcd.io/bbolt v1.3.11
02d4fc3234 gha: buildkit: make sure expected Go version is installed
d7ff538467 Fix iptables rule descriptions
77e51657fe cmd/docker-proxy: re-add SO_REUSEADDR
38f0483ea7 Set NODAD on bridge IPv6 addresses
58f4e916a3 build: create distinct history db for each store
367125e0cc Use `pools.Copy` for archive file copy operations
2f02f456f5 Fix comments
fd0d008504 vendor: github.com/vishvananda/netlink v1.3.1-0.20240922070040-084abd93d350
7ca9e9b496 libnet/d/bridge: port mapping: proxy LL connections
49ab30ea2c Fix vendoring for moby/docker-image-spec
7eb508e14c api: postImagesLoad: fix API version for platform
5875b6e8cf inte/networking: test access to published ports from remote host
2552782c1d inte/networking: test accessing a published port from the host
98efe665a5 Log rather than error if port mapping is overspecified
339592f59b Pass context to the port mapping code
ca4c68ab95 update to go1.22.8
c866a7e5f8 daemon/exec: don't overwrite exit code if set
4babd72186 tests: skip docker-py exec exit code test
e6488c9c0e runconfig: validateNetContainerMode: simplify validation
5bdbc2f026 client: ContainerCreate: normalize CapAdd, CapDrop capabilities
be248d18b5 client.ContainerCreate: use container.CreateRequest instead of local type
98d74e3a3c Update download-frozen-image-v2.sh added OCI v1 support
91df504bf1 inte/networking: move port mapping tests into a dedicated file
6a1d8a9899 daemon: add IPv6 loopback as insecure registry
7624a6bfa5 Dockerfile: update compose to v2.29.7
233dce3dba Dockerfile: update docker CLI to v27.3.1
edcefd4efb libnet/i/kv/boltdb: fail fast in case of contention
ed08486ec7 libnet/ds: simplify datastore.New()
3ca91a6a12 libnetwork: unit tests: drop OptionBoltdbWithRandomDBFile
450200b4a6 gha: add CodeQL Analysis workflow
32b9e7b8b9 libnet/i/kv/boltdb: remove unused field 'timeout'
4f1d739de5 gha: govulncheck: make sure read permissions are set
8c598b1005 cmd/dockerd: runDaemon: extract platform-agnostic code
5228850225 cmd/dockerd: windows: don't use Fatal log to prevent early exit
0aebbd0ba9 cmd/dockerd: use golang.org/x/sys/windows/service param-change consts
b186261b84 cmd/dockerd: un-export DaemonCli, NewDaemonCli
6f83fda310 cmd/dockerd: construct context in main
52694ebe16 cmd/dockerd: windows: move setting PIDFile location to setPlatformOptions
44a3bba2a2 cmd/dockerd: apply options when creating daemonCLI, not when starting
5c1b037ff5 cmd/dockerd: rename loadCLIPlatformConfig to setPlatformOptions
1388d959bc cmd/dockerd: set default configfile location as part of newDaemonOptions
19a8e7ff7e cmd/dockerd: getDefaultDaemonConfigFile: add GoDoc for Windows implementation
388c0a8cda cmd/dockerd: remove unused error-returns
1624ae197e cmd/dockerd: move Windows code for data-root
333cfa6402 Fix merge problem
db25b0dcd0 Only enable bridge netfiltering when needed
605f51172a Dockerfile: update compose to v2.29.4
3d4831a23f Dockerfile: update buildx to v0.17.1
45a9dde660 man: dockerd: add description for --log-format option
c4aaa97f02 man: remove docs for deprecated --api-cors-header
c2fc1f4a40 internal/opts: SetOpts: invalidate empty option-names
908bb959e7 internal/opts: SetOpts.Set: remove redundant var assignment
758cca6036 internal/opts: SetOpts,NamedSetOpts: test for optional value
50e83a0713 man: dockerd: value is optional for --feature flag
f9c0103413 Do not DNAT packets from WSL2's loopback0
2b6550bb2e man: fix duplicate word in --feature flag description
edaa0eb56d Add linting rules to spot use of un-wrapped netlink functions.
00bf437d84 Add nlutil functions to retry on netlink EINTR
8b0e94ffaf Update dlv in the dev-env
3dd96ce3c4 Fix enableIPv4 for old networks
fa06acc851 man: update dockerd man-page to include --feature flag
ff191c58f7 api: info: deprecate "Commit.Expected" fields
f13c08246d Add feature to daemon flags
fefa98ae90 c8d/prune: Keep deletion order stable
521fa833fe images: Support platform selection on graphdrivers
f143f4ec51 image/save&load: Support `Platform` parameter
ab075ecd10 image/history: Support `Platform` parameter
5128007116 Explicitly disable nvidia device injection for --gpus=0
adb00d3d55 TestIPRangeAt64BitLimit: remove colon after XFAIL to help grepping
23e79a261e c8d/prune: Add OTEL spans
e4c2eb9d8a c8d/prune: Keep the last tagged image instead of creating dangling image
962da27cdf Dockerfile: update compose to v2.29.2
2b43979395 API: bump version to 1.48
e5e8addeee Dockerfile: update buildx to 0.17.0
d291722110 Dockerfile: update docker CLI to v27.2.1
c095dbe512 project: update 23.0 EOL and add 25.0 LTM branch
43036f350a Dockerfile: update RootlessKit to v2.3.1
c98aad0518 vendor.mod: github.com/rootless-containers/rootlesskit/v2 v2.3.1
829aa845bb integration/system: rename vars to prevent shadowing imports
71e449de0a vendor: update buildkit to v0.16.0
7263cd226f image/tarexport: saveSession.save: inline variables
2e4079ff31 image/tarexport: saveSession.save: remove redundant Platform
ab5c5df1d5 image/tarexport: rename variables that shadowed imports
5fd3cd2d77 layer: layerStore.deleteLayer(): remove redundant error-check
f5cc04284d remove deprecated image/spec package
92195c1333 Dockerfile: update containerd binary to v1.7.22
b4a3e8a307 vendor: github.com/containerd/containerd v1.7.22
6f37e5a168 vendor: update buildkit to v0.16.0-rc2
1161b790cf seccomp: add riscv64 mapping to seccomp_linux.go
16d686c7bc internal/unix_noeintr: fix godoc for package
47d5ce0ef8 gha/bin-image: Also run on branches like `27.x`
09fc6ab2d9 docs/api: update deprecation version for erroneous fields (v1.46, v1.47)
3df03d8e66 api/swagger: update deprecation version for erroneous fields
aca38a4218 docs: api: fix documentation for image push endpoint (API v1.25-v1.47)
07e31e393a api: swagger: fix documentation for image push endpoint
fb6da4f4b7 daemon/logger/loggerutils: add //go:build directives to prevent downgrading to go1.16
5403e3f4de libnetwork/networkdb: add //go:build directives to prevent downgrading to go1.16
928e5aa524 container/stream: Config.CloseStreams(): use errors.Join
59eba0ae13 Fix typos
a2e14dd8bd update to go1.22.7
5ebc179cb1 test: update since session signature has changed
f4261dbb75 vendor: update buildkit to v0.16.0-rc1
b5ec31f090 vendor: github.com/opencontainers/runc v1.1.14
2189aa2426 update runc binary to 1.1.14
4e0d1dfc17 docs/api: add documentation for API v1.47
d000f12fcc hack/make/.binary: enable pie mode on windows/arm64
28dc2f6fac Increase test handler sleep, replace deprecated assert
c7f8557310 c8d/pull: Same error message for non-matching platform
f5108e9c6b golangci-lint: temporarily disable G115: integer overflow conversion
9b11bb507b update golangci-lint to v1.60.2
3df59c9dcf update to go1.22.6
4cd5c2b643 hack/make/.binary: set CGO_LDFLAGS=-latomic for arm/v5
e853c093bf hack/make/.binary: set CCGO_CFLAGS=-Wno-atomic-alignment for arm/v5
bb899c654a api/types: move RequestPrivilegeFunc to api/types/registry
88b118688e man: create parent directories in install recipe
9bbe5a50dd Dockerfile: update registry to v3.0.0-beta.1
f4e82e2fb0 c8d/list: Don't exclude non-container images
d6446d81d8 vendor.mod: golang.org/x/net v0.28.0, etc.
65fdd363a0 vendor.mod: golang.org/x/time v0.6.0
4bfdfd6f72 vendor.mod: golang.org/x/sys v0.24.0
78d0ef5e87 vendor.mod: golang.org/x/sync v0.8.0
492fe40052 vendor.mod: golang.org/x/mod v0.20.0
d7ff6b5085 vendor.mod: drop direct dependency on golang.org/x/exp
8e580efb73 portallocator: un-export PortAllocator.Begin, PortAllocator.End
fb1ae4bdb7 portallocator: RequestPortsInRange: validate range once
05d784d6da portallocator: make newPortMap a regular constructor
c00f6281d9 portallocator: RequestPort: skip RequestPortInRange as intermediate
78d88d06dc portallocator: use net.IPv4zero for defaultIP, and make it a property
630a47177b portallocator: use new instance in tests
1897a21d60 portallocator: ReleaseAll: remove unused error-return
2a2176f317 portallocator: RequestPortInRange: fix doc-link in godoc
a88efd7359 vendor: github.com/containerd/containerd v1.7.21
de4fc1c927 Dockerfile: update containerd binary to v1.7.21 (static binaries and CI only)
1ad5b5abb2 daemon: fix non-constant format string in call (govet)
005b488506 api/types: fix non-constant format string in call (govet)
0fd3a53c12 api/server/router: fix non-constant format string in call (govet)
4a93233b88 container/stream: fix non-constant format string in call (govet)
068c1bf3be libnetwork/drivers/bridge: fix non-constant format string in call (govet)
f434cdd14a volume/testutils: fix non-constant format string in call (govet)
81a1ca0217 builder/dockerfile: parseChownFlag: fix non-constant format string in call (govet)
b56c58a860 layer: ignore G602: slice index out of range (gosec)
c308bd3e0e internal/cleanups: fix non-constant format string in call (govet)
7b60a7047d libnetwork/cnmallocator: fix non-constant format string in call (govet)
06bfe8bab3 cmd/dockerd: fix non-constant format string in call (govet)
6008c42ca2 libnetwork: fix non-constant format string in call (govet)
b79a4696ee integration-cli: fix non-constant format string in call (govet)
6bbacbec26 integration-cli: DockerSwarmSuite: rm redundant Fprintf, handle errors
3ca38f0b5e integration-cli: DockerNetworkSuite: rm redundant Fprintf, handle errors
2b7a687554 integration-cli: use erors.New() instead of fmt.Errorf
c7b36f8953 libnetwork: TestDNSOptions: remove redundant skip check
6bd7835cb6 integration-cli: remove redundant platform checks
0afe684685 c8d/pull: Replace pointer to interface with interface
db40a6132b c8d/pull: Keep the replaced image as dangling
6ebe6a7353 c8d/load: Only unpack host platform images
728894b7d0 c8d/load: Don't fail whole operation if unpack failed
0db71bb629 vendor: dario.cat/mergo v1.0.1
2c498c6a74 vendor: github.com/vishvananda/netlink v1.3.0
6d0a5e31d7 vendor: github.com/vishvananda/netlink v1.2.1
55f693e7b7 integration/TestAPIImagesListManifests: Check `Containers`
29a2f6d339 c8d/list: Update benchmark to also have containers
a5d75f6d27 c8d/list: Fix race condition when traversing containers
2f0180934d vendor: tags.cncf.io/container-device-interface v0.8.0
fe307b5dab libnetwork: resolvconf: remove dependency on errdefs
afdfc04e10 libnetwork: resolvconf: remove var that shadowed import
6d94122217 logger/journald: plumb contexts into reader
9b6ba18fc9 logfile: Close reader when caller cancels
c4ba1f4718 Dockerfile: update xx to v1.5.0
abcb9e972b libcontainerd/supervisor: set log-level through the config-file
edfde78355 man: support bringing your own go-md2man
05d7008419 man: build dockerd man pages using make
1804f0c911 integration/container: rename var that collided with import
62bcc6ef50 libcontainerd/supervisor: consolidate platform-specific defaults
f49fad75eb vendor.mod: github.com/microsoft/hcsshim v0.12.5
b93cf37dcd c8d/list: Don't require `opts.ContainerCount` for manifest containers
cd148d39d9 feat(stream): log the event when stream copy failed
c459986399 vendor: update buildkit to v0.15.2
6bb6befc37 c8d: Rename readConfig to readJSON
495fab8e66 c8d/list: Add test for total and content size
469c2ef3ec c8d/list: Fix `Total` size calculation
e77e543b58 api/types/registry: fix godoc, and add some doc-links
218c08b283 plugin: fix deprecation comments
771377f9fa Test ipvlan IPv6-only
390713607f Allow ipvlan containers with no address
b95f8e7799 Fix some ipvlan error types for the API
660e8118a4 Allow no-IPv4 on an ipvlan network
8427de3bac Test macvlan IPv6-only
d599cc5842 Allow macvlan containers with no address
f57e0dc2ff Fix some macvlan error types for the API
a7a5de676d Allow no-IPv4 on a macvlan network
496b457ad8 Allow --ip-range ending on a 64-bit boundary
9c6d30481d remove leftovers for building docker-proxy on Windows
3cd28504de govulncheck to report known vulnerabilities
a308f12ed8 add Austin Vazquez (austinvazquez) to curators
7b0ef10a9a migrate to github.com/moby/sys/userns
8411ecb5e3 Makefile: Add BIND_GIT variable
050afe1e1a api/list: Expose manifests
f8b638b98f c8d/list: Use ReadConfig helper
85e9102dc9 api: Bump default version to 1.47
efb3c50799 swagger: Disable ImageSummary model generation
b24c2e95e5 update to go1.21.13
925b484a40 No fallback nameservers for internal resolver
d29767431c Use host netns for host's ext-dns servers
344039b9ae Populate DNS records for IPv6-only endpoints
b4cee5c3ee Removed all mentions of "please" from docs and messages
f1ec84314d docs: add default-network-opt daemon option
23812190c3 docs: remove devicemapper
690d166632 man/dockerd.8: assorted formatting fixes
374b779dd1 man/dockerd.8: escape asterisks and underscores
386d0c0fbc docs: update dockerd usage output for new proxy-options
54971ac807 Fix styling of arguments
a8b8f9b288 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
68e9223289 docs: remove documentation about deprecated cluster-store
6c702167bf Document `--validate` daemon option
af45195a21 Update man-page source MarkDown to work with go-md2man v2
562a6d2b13 docs: update for cgroup v2 and rootless
7cf2132655 docker run: specify cgroup namespace mode with --cgroupns
1cbcd5d47a daemon: document --max-download-attempts option
3cfa74724c Update document links and title.
462f38bd8b Allow user to specify default address pools for docker networks This is separate commit for CLI files to address PR 36054
13ff896b38 Update docs and completion-scripts for deprecated features
f3c3b05b50 Added docs for dockerd
20f8455562 fix a number of minor typos
c23d4b017a Introduce/document new IPC modes
25baee8ab9 docs: add documentation for dm.libdm_log_level
7d3f09a9c3 Restore dockerd man page
ea914a66a2 Use retErr in Network.ipamAllocate
cdea750966 Tell RootlessKit about port mappings when --userland-proxy=false
b3fabedecc Create docker-proxy TCP/UDP listener sockets in the daemon
dac7ffa340 Remove rootlesskit-docker-proxy
f1e0746c08 Tell RootlessKit about docker-proxy port mappings
384ca56d90 Fix error type used for ProgramExternalConnectivity
7a8663c9ea cmd/docker-proxy: drop FrontendAddr() method
88fb0c9fec cmd/docker-proxy: drop unused BackendAddr() method
ba2f3c0a98 cmd/docker-proxy: pass open listener to proxy impl
e0c7a839a8 Only build docker-proxy for Linux
ee766ae7b1 c8d: Wrap matchRequestedOrDefault result with a platform
842c5c584e c8d/image: Add `matchRequestedOrDefault`
6617cdc66b daemon/c8d: Fill wanted platform in GetImageManifest
427b111943 c8d/history: Unmarshal only a subset of ImageConfig
b9d04c07c4 c8d: Simplify `presentImages` into `getBestPresentImageManifest`
23d565cae3 c8d: Improve error message for platform not found
e73c2a05b2 daemon/c8d: Simplify `presentImages` signature
af84ddec13 vendor: github.com/containerd/nydus-snapshotter v0.14.0
1e5c0c4d77 vendor: github.com/containerd/nydus-snapshotter v0.13.14
dfe36fa226 touch-up security policy
3b1341972b Only assign an IPv4 address if required
15e5f6868a Don't auto-allocate IPv4 IPAM if !enableIPv4
c0a6145f6d Enable IPv4 in the unit tests that will need it.
b42f4b96aa Check for an IPv6 gateway before connecting to docker_gwbridge
034a5a8986 Reject swarm n/w creation with IPv4 disabled.
c91dc7e6dc Reject Windows network creation with IPv4 disabled.
a86a9e3aa4 API 1.46: end per-interface sysctl migration in major release
17adc1478b Migrate per-endpoint sysctls until 28.0.0
d44f869a2d vendor: google.golang.org/grpc v1.62.0
716ec490db vendor: golang.org/x/time v0.5.0
ac145a82fd api/types: NewHijackedResponse: fix typo in GoDoc
80822715cd plugin: fix typos in GoDoc
1f542d5d6c Set EnableIPv4 for predefined networks
903daa4dc4 Add flag 'enableIPv4' to libnetwork.Network
d4d8611164 Added API create/inspect option EnableIPv4
c7dec1c67a docs/api: swagger: fix x-nullable for SystemInfo.Containerd (api v1.46)
66b5b8bfa8 api/swagger: fix x-nullable for SystemInfo.Containerd
3279b4f8f4 hack/make: suppress "not mounted" message
a23dcf4798 Bump API version to 1.47
403f9dbc42 project: update supported release branches
96762a28c7 libcontainerd/supervisor: remove remnants of adjusting oom-score
2a71815b83 daemon: remove unused import
2b5ffa0b63 gha: set permissions to read-only by default
7a92f21445 daemon: isPermissibleC8dRuntimeName: use local utility to reduce c8d deps
2847c4b7fe libnetwork/networkdb: switch to go-immutable-radix v2
fca57ac32f Split Linux/bridge and Windows/nat integration tests
ef8e2fe282 Use retErr in Endpoint.sbJoin
58808e7748 Remove code to update Network.enableIPv6 if false
8f1989556a Trivial tidy-up of Endpoint.assignAddress()
6fe26e0629 Add IPv6 to the null IPAM driver
dcf922e266 daemon: openContainerFS: log cleanup errors
aa60f7891b daemon: openContainerFS: rename output var
3539fef440 daemon: setupMounts: rename var that shadowed import
a19c2ccc7b daemon: rename "mounts" type to reduce shadowing
39c79e08e4 daemon: move sortMounts to a platform-agnostic file
cdbfae1d3e api/server/router/grpc: NewRouter: set correct MaxRecvMsgSize, MaxSendMsgSize
cd11843df8 images: Extract ImageInspect from GetImage
1baf8f9e60 vendor: update buildkit to v0.15.1
2ce811e632 migrate to github.com/moby/sys/user/userns
91dfc326cf vendor: github.com/moby/sys/user v0.2.0
1e2ccf8046 vendor: github.com/gofrs/flock v0.12.1
077b32ac4e vendor: golang.org/x/sys v0.22.0
4c97ff777d Clean up networks in 'integration/network' tests
e2237240f5 dockerd-rootless-setuptool.sh: move RootlessKit smoke test
a3efa3026b contrib/check-config.sh: remove special case for userns on CentOS/RHEL 7
6d0b508699 daemon: remove setMayDetachMounts (set may_detach_mounts=1 on startup)
ae96ce866f remove support for setting CORS headers (deprecated)
dbf6873f45 Logfile: Add tracing spans
1b46faf233 Logfile: skip files that are corrupted
77f2d90e27 Refactor logfile reads
b37c8a03c0 Fix time comparison in sharedtemp implementation
21fd5a3f30 vendor: github.com/moby/sys/sequential v0.6.0
e0b98a3222 gha: check-pr-branch: fix branch check regression
fbbda057ac update containerd binary to v1.7.20
f460110ef5 gha: check-pr-branch: verify major version only
6a6b49f2de vendor: github.com/moby/sys/symlink v0.3.0
68636d56fc vendor: github.com/moby/sys/signal v0.7.1
44b266ab59 vendor: github.com/moby/sys/mount v0.3.4
dc4a12874e vendor: github.com/moby/sys/mountinfo v0.7.2
55a5f3fcaa vendor: github.com/containerd/containerd v1.7.20
a42f7fd717 Dockerfile: update compose to v2.29.0
97b51c6b72 Dockerfile: update buildx to v0.16.1
b37c983d31 README: replace obsolete Docker EE mention
508939821b daemon/containerd: rm use of regexp
b66d4b567a image/v1: rm regexp use
1c0dc8a94f layer: rm regexp use
499c842c52 hack: explicitly control enabling the journald logging driver
5282cb25d0 If url includes scheme, urlPath will drop hostname, which would not match the auth check
2ac8a479c5 Authz plugin security fixes for 0-length content and path validation Signed-off-by: Jameson Hyde <jameson.hyde@docker.com>
0fa71a4cfc vendor: cloud.google.com/go/logging v1.9.0
eafad2cb86 vendor: golang.org/x/oauth2 v0.21.0
9b782b8ff7 vendor: cloud.google.com/go/compute/metadata v0.3.0
68bd630830 vendor: update buildkit to v0.15.0
f649fd0c97 Fix API version in TestSetInterfaceSysctl
7f04a603f6 docs/api: Add missing `
89781912c1 vendor: update buildkit to v0.15.0-rc2
8be292a7bb By-default, don't create an iptables rule to checksum SCTP
1787c364e0 vendor: update buildkit to v0.15.0-rc1
688301caf4 daemon/graphdriver: remove Capabilities, CapabilityDriver
185b1e3d69 Add lint rule to forbid old-style atomic ops
5e64a7a003 volume/service: switch to Go 1.19 atomics
1c102140f8 libnetwork: switch to Go 1.19 atomics
46133bdb8e libnetwork/diagnostic: drop unsound use of atomics
5044778433 distribution: switch to Go 1.19 atomics
2ab618696a daemon/images: switch to Go 1.19 atomics
30d740ada0 daemon/logger/ring: switch to Go 1.19 atomics
7ef0c7acbe d/logger/loggerutils: switch to Go 1.19 atomics
e612990994 daemon/logger/journald: switch to Go 1.19 atomics
78893cdc05 daemon/logger/gcplogs: switch to Go 1.19 atomics
508f51044d daemon/containerd: switch to Go 1.19 atomics
71a299ff6a daemon: switch to Go 1.19 atomics
206445fa4f rootless: add `Requires=dbus.socket`
4776e6dd60 Remove IPv6 bridge RouteAdd() that always fails
066b7fa83c vendor: golang.org/x/net v0.25.0
7721408db7 vendor: golang.org/x/crypto v0.23.0
f43436e6b8 vendor: golang.org/x/text v0.15.0
342ce515ab vendor: golang.org/x/sys v0.21.0
2e58a29023 vendor: github.com/klauspost/compress v1.17.9
fb18966aa5 api/types/container: InspectResponse: keep old name for embedded type
837289ba62 update to go1.21.12 [part 2]
4d1d7c3ebe update to go1.21.12
398e15b7de update containerd binary to v1.7.19
d0aa3eaccf Migrate to github.com/containerd/platforms module
8983957ac5 vendor: github.com/containerd/containerd v1.7.19
73979f3f04 daemon/logger/journald: add //nolint:unused for readSyncTimeout
ef356c53ba api/types: remove deprecated ContainerNode, ContainerJSONBase.Node
5b9ed8081b api/types: remove deprecated ImageLoadResponse
d3defe9140 api/types: remove deprecated ImageImportSource
6cdb123b6f api/types: remove deprecated ImageSearchOptions
67b7b15674 api/types: remove deprecated EventsOptions
3cbc166d2e api/types: remove deprecated container stats types
ec5cede0a2 api/types: remove deprecated ContainerStats
4ffe497ba4 api/types: remove deprecated CopyToContainerOptions
345e31ab96 api/types: remove deprecated ContainerPathStat
2bceb34717 api/types: remove deprecated ContainersPruneReport
0e64c9e93b api/types: remove deprecated ContainerExecInspect
6f0caec226 api/types: remove deprecated ExecStartCheck
13fbd394ee api/types: remove deprecated ExecConfig
665eef54db api/types: remove deprecated NetworksPruneReport
d2256faa0e api/types: remove deprecated NetworkResource
ffdd2de674 api/types: remove deprecated EndpointResource
f0f2b8f7cb api/types: remove deprecated NetworkDisconnect
cf9d9ff50d api/types: remove deprecated NetworkConnect
39c7b5f3e3 api/types: remove deprecated NetworkInspectOptions
64583771f0 api/types: remove deprecated NetworkCreateResponse
c99e0bc8ae api/types: remove deprecated NetworkListOptions
48f147e8d3 api/types: remove deprecated NetworkCreate
ff1f1c58d5 api/types: remove deprecated NetworkCreateRequest
4117a9308d api/types: remove deprecated VolumesPruneReport
e0156f0f16 api/types: remove deprecated ImagesPruneReport
1abc8f6158 api/types: move container-inspect types to api/types/container
05b0e653dd api/types: move Container to api/types/container
84ffc644ef api/types: move ContainerState to api/types/image
7053007f71 api/types: move ImageInspect and RootFS to api/types/image
da039ca918 api/types: move GraphDriverData to api/types/storage
e12b7493b9 api/types: move Port to api/types/container
5517322cf9 api/types: move MountPoint to api/types/container
c130ce1f5d api/types: move container Health types to api/types/container
df22a511cb api/types: move container-networksettings types to api/types/container
53bc396ef4 c8d/build: Log `image tag` event when image was built with Buildkit
1506bbcfe8 builder-next: Add ImageNamedByBuildkit callback
bce76d486e builder-next: Don't return error from exported callback
e4d792a06d api/types/system: remove Info.ExecutionDriver
0f3273e71a daemon/graphdriver: move RefCounter to an internal package
efdaca2792 pkg/rootless/specconv: move to internal
b7d26f2f8f pkg/dmesg: remove deprecated package
3a3bb1cb50 pkg/directory: deprecate, and move to internal
80900bdbcd pkg/directory: fix comment, and remove import comments
e55897977c daemon/graphdriver: simplify Checker, remove NewFsChecker, NewDefaultChecker
554db8f113 daemon/internal/fstype: make FsMagic values not platform-dependent
49f6e004f1 daemon/graphdriver: move FsMagic utilities to an internal package
09f62a8a61 runconfig/opts: remove deprecated ConvertKVStringsToMap
4a30231d05 runconfig: remove deprecated IsPreDefinedNetwork
ed712ad0b9 runconfig: remove deprecated DefaultDaemonNetworkMode
13984ef185 runconfig: remove deprecated SetDefaultNetModeIfBlank
6e2b6399d7 runconfig: remove deprecated ContainerConfigWrapper
d80a3f2e48 pkg/capabilities move to daemon/internal
625c795785 errdefs: FromStatusCode(): use early returns
81be279c6b daemon/logger, volume/drivers: remove redundant import-aliases
f2970e5358 pkg/containerfs: move to internal
a3e6ce95c4 pkg/containerfs: cleanup GoDoc, and make Windows a proper wrapper
e2ae6907c6 pkg/containerfs: remove CleanScopedPath and make it internal
fa150ca759 cleanup: Remove unnecessary return value
a2fe103f0d vendor: github.com/microsoft/hcsshim v0.11.7
dfbcddb9f5 Fix incorrect validation of port mapping
4de54ee14c Fix duplicate subnet allocations
6521057bb2 daemon/graphdriver/overlay2: set TarOptions.InUserNS for native differ
969993a729 pkg/archive: createTarFile: consistently use the same value for userns
379ce56cd8 pkg/archive: handleTarTypeBlockCharFifo: don't discard EPERM errors
af85e47343 pkg/archive: getWhiteoutConverter: don't error with userns enabled
080a8e1b6b libcontainerd: gofumpt
56fa45773f pkg/plugins: gofumpt
0e2d40c24a pkg/archive: gofumpt
84e43da752 libnetwork: gofumpt
bb1b766ddb layer: gofumpt
07469b4509 internal: gofumpt
8e50a96a78 integration: gofumpt
c3ac7fee26 integration-cli: gofumpt
e765dd90ee daemon: gofumpt
181101c4a8 daemon/containerd: gofumpt
46b0102da4 daemon/config: gofumpt
4a89963f1e builder: gofumpt
8768145519 api/types: gofumpt
92346bcec6 api/server: gofumpt
6ada1cff02 fix some gofmt issues reported by goreportcard
84cabde357 daemon/graphdriver: deprecate GetDriver(), and remove its use
b7896056c1 daemon/graphdriver: New(): update GoDoc
25d12b54d3 daemon/graphdriver: combine GetDriver and getBuiltinDriver
3928165cf7 Dockerfile: update docker CLI to v27.0.2
555dac5e14 daemon/graphdriver: remove support for external graphdriver plugins
bc4991e443 layer: rename vars that shadowed imports
0ed172b700 daemon/graphdriver: rename vars that shadowed imports
bbced07f96 builder/builder-next: applySourcePolicies: remove redundant check and vars
790035f754 Dockerfile: update compose to v2.28.1
95fae036ae update golangci-lint to v1.59.1
d4160d5aa7 pkg/archive: reformat code to make #nosec comment work again
04bf0e3d69 builder/remotecontext: reformat code to make #nosec comment work again
1fc9236119 api/types: deprecate ContainerJSONBase.Node, ContainerNode
ca396dfaaa awslogs: Prevent close from being blocked on log
9893520c62 libnetwork: Mark flaky tests
d0d8d5d97d hack/unit: Rerun failed flaky libnetwork tests
a52aab8598 project,vendor.mod: document more clearly that we are not a Go module
1e28299f77 project: document currently known packagers
f502f49e49 project: document modern branch and tag practices
Bumping docker-cli to version v28.0.1, which comprises the following commits:
d75f8d83d Add detailed descriptions for --ulimit options in docker run documentation
75595836f vendor: github.com/go-jose/go-jose/v4 v4.0.5
4e7497e9c Update dockerd command line ref, default bridge opts
be669099c Update dockerd command line ref, changes in 28.0
427c1361c gha: add docker 28 to test matrix
aad2ae50e docs: network ls add heading and anchor for "--no-trunc"
8a1b096e7 docs: fix missing anchors in swarm reference pages
c99d3312e docs: fix broken anchor-link in "container restart" reference
0cff34098 cmd/docker: do not print error status on exec/run
8f5573857 completion: add completion for docker service flags
768d10767 completion: add completion for docker node flags
d5e6e2ec6 completion: add completion for node names
7e71782ba cli/command/context: fix error-handling of skip-tls-verify
762d59359 completion: use service names, and support DOCKER_COMPLETION_SHOW_SERVICE_IDS
33f327a98 vendor: github.com/docker/docker v28.0.0-dev (af898abe4466)
f977b923c Fix missing link from Configure node healthcheck heading
f53cee5dd vendor: github.com/docker/docker v28.0.0-rc.3
fe349e6a6 vendor: github.com/docker/docker 00ab386b5a2e (master, v28.0.0-rc.3)
136901961 vendor: github.com/docker/docker v28.0.0-rc.2
a8affefee golangci-lint: replace deprecated `tenv` linter in favor of `usetesting`
1c8243cc9 golangci-lint: fix invalid nakedret config, disallow for any func length
a5020ea16 cli/command/container: don't use naked returns (nakedret)
e569b9f74 cli/internal/oauth: don't use naked returns (nakedret)
3e9fa43ef cli/command/trust: fix "usetesting" linting errors
aca0bd775 cli/command/trust: fix "usetesting" linting errors
b2f3c1249 Dockerfile: update golangci-lint to v1.64.5
2b169c1ab golangci-lint: enable revive "line-length-limit" linter
a67c65657 golangci-lint: enable revive "unused-receiver" rule
71c40dfa7 golangci-lint: sort revive rules
a35b899df cmd/docker: fix "unused-receiver" linting
1a4491f8c cli/command/stack: fix "unused-receiver" linting
994e1b7ca cli/command/service: fix "unused-receiver" linting
5ef673bb1 cli/command/system: fix "unused-receiver" linting
e71380eb5 cli/command/container: fix "unused-receiver" linting
4827fdef9 cli/command/trust: fix "unused-receiver" linting
3e44cc4d0 cli/command/image: fix "unused-receiver", "line-length-limit" linting
e2f28fac4 cli/command/registry: fix "unused-receiver" linting
a54d356a7 cli/command/swarm: fix "unused-receiver" linting
25e6b2da0 cli/command/formatter: fix "unused-receiver" linting
450768c31 cli-plugins/manager: fix "unused-receiver" linting
e5f3cc14c internal/test: fix "unused-receiver" linting
1b3718f45 cli/command: fix "unused-receiver" linting
d27f6a61a cli/registry: fix "unused-receiver" linting
72b32c69c internal/test/notary: fix "unused-receiver" linting
ba3f4fb41 cli/internal/oauth/manager: fix "unused-receiver" linting
f0f19c6d4 cli/trust: fix "unused-receiver" linting
c8bd0a7e5 cli/manifest: fix "unused-receiver" linting
20b4ab366 cli/compose: fix "unused-receiver" linting
1e7add9f4 cli/internal/oauth/api: fix "unused-receiver" linting
9b62e5740 cli/config/configfile: fix "unused-receiver" linting
f79193c22 opts: fix "unused-receiver", line-length-limit linting
d0c3380ce cli/connhelper/commandconn: fix "unused-receiver" linting
fdc665820 cli/config/credentials: fix "unused-receiver" linting
88b2e78e0 internal/tui: fix "unused-receiver" linting
20c15cee9 cli/compose/loader: shorten skip-comment to please the linters
cac88ca34 cli/command: wrap some long lines (revive)
eef4127de cli/internal/oauth/manager: ignore line-length-limit
d8e76bc33 cli: define const for magic value
9fda9134a cli/command/service/progress: define const for magic value
3825d3792 cli/command: define some consts for repeated values
2f65cf7d1 cli/command: fix some unused-receiver linting
a368e3eb5 cmd/docker: fix unused-receiver (revive)
add32e4b5 cli/compose: Handle Volume Subpath
4cc2dce80 cli/compose: Fix Image Subpath
e868f0f58 cli/command/container/opts_test: Fix entrypoint parsing logic
c2ba77de4 vendor: github.com/docker/docker 57d4d23825f4 (master, v28.0.0-rc.2)
1d3eb6f95 vendor: github.com/docker/docker 5cc3f1dab895 (master, v28.0.0-rc.2)
591fcb273 vendor: golang.org/x/sys v0.29.0
1edc4e07d gha: Mirror PR template and validate PR workflow from moby
a656dfd40 Restrict completion for some commands with a limit paramter for ImageNames
04b1b4e08 Add image mount options
c6a7f9a64 vendor: github.com/docker/docker b570831cc3a3 (master, v28.0.0-rc.2)
018bf1b23 vendor: google.golang.org/grpc v1.69.4
558ebd592 vendor: github.com/spf13/pflag v1.0.6, remove local IPNetSliceVar fork
2c17edf80 cli/connhelper/commandcon.New: pass context with WithoutCancel
61a3b4bd5 Remove preceding white space from cobra help template
1acf32cdc Dockerfile: dev-container: update buildx v0.20.1
bb74513ef Dockerfile.dev: bump github.com/josephspurrier/goversioninfo to v1.4.1
7b3f264a6 Dockerfile.dev: bump mvdan.cc/gofumpt to v0.7.0
aecc31039 Dockerfile: bump gotest.tools/gotestsum v1.12.0
e1a9d1cd3 Dockerfile: update golangci-lint to v1.63.4
df8c19d8f vendor: gotest.tools/v3 v3.5.2
3c0d703ac vendor: github.com/docker/docker/v28.0.0-rc.1
2815d2337 add //go:build directives to prevent downgrading to go1.16 language
01da8a582 vendor: github.com/docker/docker 6c3797923dcb (master, v28.0-dev)
76e0088b5 minor cleanup
85a77af59 Don't print "context canceled" if user terminated
7e83ff773 bump version to v28.0.0-dev
6d7afd48a login: improve text on already authenticated and on OAuth login
1d9d349c1 update to go1.23.6
81da375c4 cli/command/service: runScale: use errors.Join, and cleanup
09b513ecf cli/command/service: runRollback: remove intermediate vars
aa96cb7aa cli/command/volume: use errors.Join
be985bd28 cli/command/stack/swarm: use errors.Join
f1193effc cli/command/service: use errors.Join
f9e433556 cli/command/secret: use errors.Join
2a9fd4a93 cli/command/node: use errors.Join
f8729c6da cli/command/manifest: use errors.Join
1fd9d0dd3 cli/command/manifest: pass manifest-store and handle context
f431f6156 cli/command/inspect: use errors.Join
7147e85f6 cli/command/image: use errors.Join
2b9a4d5f4 cli/command/context: use errors.Join
150f27b68 cli/command/container: use errors.Join
791e06b43 cli/command/config: RunConfigRemove: use errors.Join
632f179e8 cli/command/image: minor cleanups
e81d76ffe cli/command/container: minor cleanups
deaa60118 cli/command/config: minor cleanups
c950d48f7 image/tree: Chips to represent "in use"
c51be7776 cmd/docker: add cause to user-terminated `context.Context`
8169a5142 jsonstream: Display: rename var that shadowed type
a4288003b service/progress: ServiceProgress: avoid fuzzy matching service ID in loop
e88b1939f service/progress: newReplicatedJobProgressUpdater: slight cleanup
dea59eabb cli/command/stack/swarm: waitOnServices remove redundant check for multi-error
37b25f226 cli/command/plugins: runRemove: fix incorrect use of errors.Join
007e88ec3 TestCheckpointCreateWithOptions check both "keep-running=true/false"
31b819828 cli/command/volume: TestVolumeCreateClusterOpts: minor fixes and refactor
5b8c08d19 cli/command/volume: TestVolumeCreateCluster: minor fixes and refactor
a8265e72b cli/command/volume: TestVolumeCreateWithFlags: minor fixes
8b5e5539e cli/command/volume: TestVolumeCreateWithName: minor fixes and improvements
2e266001c cli/command/volume: TestVolumeCreateErrors: assert unhandled errors
987da0957 cli/command/volume: remove example and var for long description
13ef82974 cli/flags: suppress some errors
dc5a4501a cli/command: minor cleanups: use Println, suppress errors
cd6d902df cli/command/inspect: remove additional newline from log
10f5b3f73 cli/command/volumes: minor cleanups: use Println, rename vars
299aae041 cli/command/trust: minor cleanups: use Println, rename vars
5cfc89c1c cli/command/system: minor cleanups: use Println, rename vars
8c5e85d4c cli/command/swarm: minor cleanups: use Println, rename vars
925b8fe34 cli/command/stack: minor cleanups: use Println, rename vars
aa74f931d cli/command/service: minor cleanups: use Println, rename vars
016dbef44 cli/command/registry: minor cleanups: use Println, rename vars
53aed6119 cli/command/plugin: minor cleanups: use Println, rename vars
35e74d58e cli/command/node: minor cleanups: use Println, rename vars
886f2295c cli/command/network: minor cleanups: use Println, rename vars
5d3bdf8ac cli/command/manifest: minor cleanups: use Println, rename vars
c8f27b027 cli/command/image: minor cleanups: use Println, rename vars
a0ca41e6f cli/command/formatter: suppress some errors
82e2efbbf cli/command/context: minor cleanups
c462eaee1 cli/command/container: minor cleanups: use Println
8650ffef3 cli/command/checkpoint: minor cleanups: use Println, rename vars
b10b79e6f cli-plugins: minor cleanups: use Println
2e26ce145 e2e/testutils: remove uses of pkg/errors in tests
4de5e9212 internal/test: remove uses of pkg/errors in tests
c55b39a2e cli/config/credentials: remove uses of pkg/errors in tests
832f5fa2c cli/compose/convert: remove uses of pkg/errors in tests
45d81f849 cli/command: remove uses of pkg/errors in tests
a85a94f46 cli/command/system: remove uses of pkg/errors in tests
694d24800 cli/command/swarm: remove uses of pkg/errors in tests
8b09ee1e1 cli/command/stack: remove uses of pkg/errors in tests
ec5ae0c2d cli/command/secret: remove uses of pkg/errors in tests
c50068f7e cli/command/plugin: remove uses of pkg/errors in tests
2b02e05f9 cli/command/node: remove uses of pkg/errors in tests
38f61539e cli/command/network: remove uses of pkg/errors in tests
d6c26471d cli/command/manifest: remove uses of pkg/errors in tests
f29fdd309 cli/command/image: remove uses of pkg/errors in tests
d30c894af cli/command/idresolver: remove uses of pkg/errors in tests
5a99ea9ad cli/command/container: remove uses of pkg/errors in tests
0d913efe8 cli/command/config: remove uses of pkg/errors in tests
957be84a3 cli/command/checkpoint: remove uses of pkg/errors in tests
10aca7dd5 cli/command/volume: remove uses of pkg/errors in tests
a87cb974f remove dockerd man-page (moved back to moby repository)
6ab9b92aa Makefile: add "shell-completion" target
0760e8513 Dockerfile: update to alpine 3.21
2c35778a6 Allow '--link' with '--network bridge'
1546f023f Dockerfile: update compose to v2.32.4
7b0724270 Dockerfile: update buildx to v0.20.0
91adb70d6 pkg/command: wrap `jsonmessage.DisplayJSONMessagesStream` with go context
81b0bb58b gha: Adjust release branches
3c0691146 update to go1.23.5 (fix CVE-2024-45341, CVE-2024-45336)
26010e4c3 image/tree: Print longest names first and use full width
f906139fc cli/tree: Use single character triple dot
4c2fece0c cmd/docker: enable cobra completion descriptions
48dbdc6f2 fix(dockerfiles): Update CMD instruction in 'Dockerfile.dev' to use exec form instead of shell form
58bf0f184 switch to gopkg.in/yaml.v3
9abd0ebdf cli/command: update semconv to 1.26.0
2f42b3272 vendor: otel v0.56.0 / v1.31.0
3d9b86116 vendor: github.com/mattn/go-runewidth v0.0.16
aa540679e vendor: github.com/containerd/platforms v1.0.0-rc.1
d3ca99585 vendor: github.com/creack/pty v1.1.24
b412f7199 vendor: google.golang.org/grpc v1.68.1, google.golang.org/genproto 324edc3d5d38
7244f7d42 update cli-docs-tool to v0.9.0
6f3ba987b vendor: github.com/docker/cli-docs-tool v0.9.0
97a14c456 update go-md2man to v2.0.5
acbdad955 completion: replace fluentd-async-connect with fluentd-async
3da5f5893 docs: mark logger opt 'fluentd-async-connect' as removed
0df55307c vendor: github.com/docker/docker 69687190936d (master, v28.0-dev)
cc571902b ci: update bake-action to v6
987befaea gha/build: Publish bin image for release branches
216674c3e vendor: github.com/docker/docker 50212d215ba7 (master, v28.0-dev)
bf2dae22d cli/command/plugin: runCreate: minor cleanup
a289f11ac vendor: github.com/moby/swarmkit/v2 v2.0.0-20250103191802-8c1959736554
7e8f94903 docs, man: remove --allow-nondistributable-artifacts flag
760326694 contrib/completion: remove --allow-nondistributable-artifacts flag
2334df110 Deprecate configuration for pushing non-distributable artifacts
2fc32c707 vendor: github.com/moby/term v0.5.2
e1a0c377b vendor: github.com/Azure/go-ansiterm faa5f7b0171c
f42c0ccd0 contrib/completion: remove deprecated --api-cors-header
2db88599f contrib/completion: remove --oom-score-adj daemon flag
eb5c507cd docs: dockerd: --oom-score-adj flag
7b37f30da Use io.copy for build context compression
7b7a4c020 docs, man: remove confusing example for "--isolation"
25f02bc04 vendor: github.com/docker/docker 6f6c3b921180 (master, v28.0.0-dev)
8c0cb3051 Fix cp test to separate source and destination
c8c47b1dd golangci-lint: depguard: prevent uses of pkg/system
76ec0ea2e vendor: github.com/docker/docker a72026acbbdf (master, v28.0.0-dev)
a8f83d5d9 TestRunCopyFromContainerToFilesystem: use Tar without options
0c04dc05b golangci-lint: sync some depguard settings with moby/moby
cc65127cb vendor: github.com/docker/docker ad6929339acd (master, v28.0.0-dev)
6f47bce41 vendor: golang.org/x/net v0.33.0
83156e662 vendor: golang.org/x/net v0.32.0
450f6b995 vendor: golang.org/x/crypto v0.31.0
b74302eb5 vendor: golang.org/x/text v0.21.0
cb2e35286 vendor: golang.org/x/sync v0.10.0
e56b665d8 vendor: golang.org/x/sys v0.28.0
1eda49878 cli/command/container: use local copy of pkg/system.IsAbs
ffe0354c2 cli/command/system: remove BridgeNfIptables, BridgeNfIp6tables in tests
73ff81b65 cli/command/system: TestEventsFormat: set cmd.Args to prevent test-failures
55e404e7a cli/command/system: remove netfilter warnings from tests
eaa8b5716 update go-md2man to v2.0.5
b8fd20517 Makefile: use go1.22 semantics for gofumpt
6a2cde6c7 Add option '--ipv4'
5c896c95d Docs: emphasise that some options that are for docker0
a5353e55d Docs: include --fixed-cidr-v6 and --bip6 docker0 options
1e51ae7af update xx to v1.6.1 for compatibility with alpine 3.21
b39f48287 update golangci-lint to v1.62.2
2a5ac8f5a vendor: github.com/docker/docker b249c5ebd214 (master, v28.0.0-dev)
afab76501 registry/client: remove uses of APIEndpoint.TrimHostName
7dab597e6 tests: cleanup comment
30c4637f0 run: don't hang if only attaching STDIN
2eb77f4ed vendor: github.com/docker/docker 5d72419486fe (master, v28.0.0-dev)
b51a71148 cli/command/system: don't use "non-distributable-artifacts" fields in tests
f50dea6c4 vendor: google.golang.org/protobuf v1.35.2
9399483f7 vendor: golang.org/x/net v0.31.0
6751bcc97 vendor: golang.org/x/crypto v0.29.0
d41ab7703 vendor: golang.org/x/term v0.26.0
5972025fa vendor: golang.org/x/text v0.20.0
feb1e2a34 vendor: golang.org/x/sync v0.9.0
4c27c895f vendor: golang.org/x/sys v0.27.0
a1e57ac72 update to go1.23.4
e398d16c0 cli/command/registry: return status only instead of whole response
297afb2a2 cli/command/registry: TestLoginWithCredStoreCreds slight refactor
575e37366 cli/command/registry: rename some vars that collided with imports
d4db289eb run, create, connect: add support for gw-priority
cf89afb32 cli/command/registry: storeCredentials: accept configfile as arg
b5a00d0b0 cli/command/registry: loginWithRegistry: use shallower interface
13f0d4641 cli/command/registry: don't return creds on error
a3d9fc494 run: cleanup – remove `errCh` nil check
446f36ce5 run: cleanup – move "detached" early exit earlier
843129882 run: cleanup – use `attached` where applicable
aee9eebf3 run: return error code when only STDIN attached
ed9fcf31e cli/trust: GetNotaryRepository: remove uses of RepositoryInfo.Class
c629eca89 Put --help before --host in the dockerd manpage
ea84e8f94 Add --host-gateway to the dockerd manpage
cf88ab074 Docs: host-gateway-ip daemon option IPv4+IPv6
ae54c9d97 Add --bip6 to the dockerd manpage
1911dedcf Add --ip-filter-forward-drop
0f058041c docs: fix janky rendering of toc on docs.docker.com
fcd94feef cli-plugins: Simplify addPluginCandidatesFromDir
6de3d71ab cli-plugins: Fix searching inaccessible directories
30a73ff19 fix: ctx should cancel image pull on run
1d4a7ae08 tests: cleanup table test names
4a219b1a4 chore: update commit guidelines in CONTRIBUTING.md
d41b80faf vendor: github.com/docker/docker e5c2b5e10d68 (master, v28.0.0-dev)
11fbc9993 vendor: github.com/tonistiigi/go-rosetta v0.0.0-20220804170347-3f4430f2d346
b0c0cd5e3 build(deps): bump codecov/codecov-action from 4 to 5
f6599300f vendor: github.com/go-viper/mapstructure/v2 v2.2.1
446d4138e vendor: github.com/moby/sys/capability v0.4.0
07e5ddd05 update golangci-lint to v1.62.0
93a931920 Dockerfile: bump github.com/josephspurrier/goversioninfo to v1.4.1
cb2f95cee Optimise `docker stats` to not require clearing the whole screen
d1d535326 cli/command/container: fix missing go:build tag
3dd762124 Dockerfile: update compose to v2.30.3
4242cda82 Dockerfile: update buildx to v0.18.0
7c80e4f93 update go:build tags to use go1.22
06260e68f Handle null completions with a default callback
4525fe37b Add completion for `--volume-driver`
db0ed1e21 Add completion for `--cgroupns`
291574927 Add completion for `--uts`
3a2503fa4 Add completion for --log-driver` and --log-opt`
9a9ae231a Add completion for `--security-opt`
5f7c43e5e Add completion for `--detach-keys`
3292afe6e Add completion for `--userns`
5d709a8d9 Add completion for `--ulimit`
2d89339b3 Add completion for `--storage-opt`
ac7bde6f6 Add completion for `--pid`
e51345424 Add completion for `--link`
c555327f0 Add completion for `--ipc`
b598ec8cd Add completion for `--attach`
761d76750 Share the container completions
382d4c34a update to go1.23.3
1440f9f8c docs: change link to desktop docs
fafaac59f Add --bip6 to dockerd cmdline ref
13754f677 deps: update `go-jose/go-jose` to `v4`
172f34011 docs: update example redis tags from 3.0.x to 7.4.x
4a7b04d41 golangci-lint: set go version to prevent fallback to go1.17
d77760fe5 cli-plugins/manager: remove redundant capturing of loop vars (copyloopvar)
32b40deb4 cli/command/service: remove redundant capturing of loop vars (copyloopvar)
40833fd29 cli/compose/loader: remove redundant capturing of loop vars (copyloopvar)
78a7e1503 cli/command/container: remove redundant capturing of loop vars (copyloopvar)
4a71ce02e cli/command/image: remove redundant capturing of loop vars (copyloopvar)
7d9ea2556 templates: remove redundant capturing of loop vars in tests (copyloopvar)
046ac9714 service: remove redundant capturing of loop vars in tests (copyloopvar)
762b5a8df opts: remove redundant capturing of loop vars in tests (copyloopvar)
417974cdc cmd/docker: remove redundant capturing of loop vars in tests (copyloopvar)
bf37e26b3 cli/manifest: remove redundant capturing of loop vars in tests (copyloopvar)
6489a777e e2e: remove redundant capturing of loop vars in tests (copyloopvar)
20de86113 cli/config: remove redundant capturing of loop vars in tests (copyloopvar)
1448cecba cli/compose: remove redundant capturing of loop vars in tests (copyloopvar)
67458f710 cli/command: remove redundant capturing of loop vars in tests (copyloopvar)
0c999fe95 docs: Correct `run` exit code 126 description
5f1311ae8 vendor: github.com/docker/docker 6ac445c42bad (master, v28.0-dev)
10c5a5792 vendor: go.opentelemetry.io/contrib/instrumentation/xxx v0.53.0
5e40d288c vendor: go.opentelemetry.io/otel v1.28.0
9ba73a1a0 vendor: github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0
f3cf1b421 vendor: go.etcd.io/etcd/raft/v3 v3.5.16
cae19e392 vendor: github.com/AdaLogics/go-fuzz-headers v0.0.0-20240806141605-e8a1dd7889d6
074d1028b vendor: update prometheus dependencies
1dbcce205 vendor: google.golang.org/grpc v1.67.1
1bba00994 vendor: google.golang.org/protobuf v1.35.1
e3942d46a vendor: github.com/klauspost/compress v1.17.11
97ff1b7c0 vendor: github.com/go-logr/logr v1.4.2
4c85feb4d vendor: github.com/cenkalti/backoff/v4 v4.3.0
3b48a57b0 vendor: github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161
36e6c4297 vendor: golang.org/x/net v0.30.0
84bfa52a6 vendor: golang.org/x/crypto v0.28.0
7a94f592e vendor: golang.org/x/text v0.19.0
ef197f731 vendor: golang.org/x/term v0.25.0
02b92c699 vendor: golang.org/x/sys v0.26.0
42cda3884 update to go1.23.2
0b16070ae Buffer 'docker stats' text to avoid terminal flickering
9af049c61 bump golangci-lint to v1.61.0
745629bd5 golangci-lint: update comment, and disable "exclude-dirs-use-default"
7451339ab golangci-lint: move gosec excludes to linters-settings
020f3a7ad golangci-lint: enable G204, add #nosec comments instead
e1c5180db Add tests for completions that call the API
d4f4cf141 Add completion for `events --filter`
59b90305f cli/command/container: parse: remove client-side warning
e9ae9f788 docker inspect: add support for swarm configs
3c7806924 cli/config/credentials: add test for save being idempotent
0dd6f7f1b cil/config/credentials: remove newStore() test-utility
5f4b14950 cli: remove deprecated Errors type
d96f8b7f9 cli/config: improve error when failing to parse config file
d3f6867e4 cli/config/credentials: skip saving config-file if credentials didn't change
6b9083776 cli/command: AddPlatformFlag: suppress unhandled error
fb61156b0 cli/command/registry: fix minor linting issues
3f7b156c8 Fix bash completion for `events --filter daemon=`
4b7a1e461 cli/command: PromptUserForCredentials: suppress unhandled errors
378a3d7d3 cli/command: PromptUserForCredentials: use consts for all hints
54e3685bc cli/command: ConfigureAuth: fix deprecation comment
3d8b49523 cli/command: PromptUserForCredentials: print error on terminal restore fail
a21a5f424 cli/command: PromptUserForCredentials: always trim password
eda78e9cd cli/command: PromptUserForCredentials: move trimming where it's used
581cf36bd cli/command: PromptUserForCredentials: move "post" check for empty name
a55cfe5f8 cli/command: PromptUserForCredentials: inline isDefaultRegistry
3a8485085 cli/command: PromptUserForCredentials: remove named output variables
d3bafa5f3 cli: deprecate Errors type
71ebbb81a cli/command/plugins: use errors.Join instead of custom cli.Errors
87acf77ae cli/hints: add tests
9b525bc9d vendor: github.com/docker/docker 36a3bd090489 (master, v28.0-dev)
670f81803 cmd/docker: add tests for flag-completions, and refactor
12dcc6e25 templates: add test for HeaderFunctions
cbbb91732 vendor: github.com/moby/swarmkit/v2 v2.0.0-20241017191044-e8ecf83ee08e
2c6b80491 docs: update prose about image tag/name format
50ef0c58c docs: corrected the max events returned
35d7b1a7a cli/command/container: TestWaitExitOrRemoved use subtests
3b38dc67b cli/command/container: set empty args in tests and discard output
e1c472a43 completion: add test for VolumeNames
302d73f99 completion: add test for NetworkNames
ab418a38d completion: add test for ImageNames
f3b4094eb completion: add test for ContainerNames
be197da6b completion: add test for NoComplete
51713196c completion: add test for FromList
a5ca5b33f completion: add test for FileNames
8f2e5662e completion: add test for EnvVarNames
b8cddc63a completion: ContainerNames: don't panic on nil filter
a58faf797 README: update pkg.go.dev badge, add OpenSSF scorecard
b6d27ff60 vendor: google.golang.org/grpc v1.66.2
200225f53 vendor: google.golang.org/protobuf v1.34.1
9599251d0 vendor: github.com/cespare/xxhash/v2 v2.3.0
ea8aa2a41 vendor: golang.org/x/net v0.29.0
61867feec vendor: golang.org/x/crypto v0.27.0
843ae6d7e vendor: golang.org/x/term v0.24.0
bea4ee658 vendor: golang.org/x/text v0.18.0
a88ee33f7 vendor: golang.org/x/sys v0.25.0
147630a30 Only complete removable containers if --force is not given
d085e2445 image/history: Add `--platform` flag
b0bb4ba7f image/load: Add `--platform`
a20eb45b2 image/save: Add `--platform`
0319795d4 cli/compose: implement the ports validation method
839dbbcf2 cli/command/images: set cmd.Args to prevent test-failures
19eeb1015 cli/command/image: fix TestNewSaveCommandSuccess to actually test
d42cf96e1 cli/command/image: add shell completion for --platform flags
8c7f713db cli/command/container: add shell completion for --platform flags
ce1aebcc3 cli/command/completion: add Platforms
2f2b16a96 docs: fix inaccurate description of --restart=unless-stopped
c70b2165a docs: Link supported Go duration strings
442c38636 command: add tests for container kill, commit, and pause
a6ab65948 ci: update to go1.22.8
9ecfe4f5a move parsing key-value files to a separate package
76196dbb0 opts: parseKeyValueFile: cleanup and remove redundant trimming
95e221ef4 opts: remove ErrBadKey as it's not used as a sentinel error
b129660dd opts: cleanup ParseEnvFile tests
d49e72c0a cli/command/container: add unit tests for completion helpers
462e08219 cli/container: use github.com/moby/sys/capability for completions
bd96bdaf1 align "conflicting options" errors for consistency
df8b34595 cli/command/container: stop, restart: rename "--time" to "--timeout"
607530348 docs/reference: stop, restart: add flag descriptions
8fca0a1f2 Check that --ip-range is a CIDR address
ac502b590 cli/command/container: add unit tests for container stop
16aa99425 cli/command/container: add unit tests for container restart
54a20ce54 docs: fix a typo in run.md
b12ac897f vendor: github.com/docker/docker 164cae56ed95 (master, v-next)
df52ddcfc Images Tree: Change 'Used' to 'In Use'
17040890e Do not underline image name
46b360b05 command: add tests for container diff and rename
465e87afc docs: fix anchor link to web-based login section
8a3d838a1 docs: use important callout for buildkit vs legacy builder
3e271461e cli/formatter: fix unbracketed IPv6 addrs
91c90a979 Update `VERSION` file to `v27.3.1-dev`
ce26ebc0e Dockerfile: update compose to v2.29.7
1355d7e9f telemetry: fix early meterprovider shutdown
f46860616 gha: codeql: minor touch-ups and fixes
3472bbc28 command: change drive to lowercase for wsl path
e1213edcc gha: update codeql workflow to go1.22.7
b1956f507 telemetry: pass otel errors to the otel handler for shutdown and force flush
f7a513cff Dockerfile: update compose to v2.29.4
42ce06aa5 Dockerfile: update buildx to v0.17.1
baceb4b15 docs: dockerd: add documentation for --log-format option
a42ca1148 docs/reference: dockerd: add docs for --feature option
9ae514fdc man: dockerd: add description for --log-format option
1a0e32099 docs: dockerd: remove --api-cors-header (deprecated)
9bfd0e1a4 man: remove docs for deprecated --api-cors-header
a357db0ab man: dockerd: value is optional for --feature flag
fb056d2ce man: fix duplicate word in --feature flag description
610f9157f man: update dockerd man-page to include --feature flag
605c9bf16 docs: Fix --rm=false flag in container_run.md
dccb8bfa5 vendor: google.golang.org/grpc v1.62.0
8cdf90cd9 vendor: tags.cncf.io/container-device-interface v0.8.0
a5f15bee7 vendor: golang.org/x/net v0.28.0
b93fc3963 vendor: golang.org/x/crypto v0.26.0
3a63df265 vendor: golang.org/x/text v0.17.0
c6e534193 vendor: golang.org/x/term v0.23.0
5f9fe33b6 vendor: golang.org/x/time v0.6.0
7074e5011 vendor: golang.org/x/sync v0.8.0
958fff82f vendor: golang.org/x/sys v0.24.0
fb264ffc0 vendor: dario.cat/mergo v1.0.1
38c3fef1a command: check for wsl mount path on windows
5b81f0dcb chore: remove duplicated `govet` linter config
88ca4e958 info: stop printing "Expected" commits
daea277ee volume/update: require 1 argument/fix panic
0fcaffb7e chore: fix style/lint issues in deprecated.md
45d55961d Fix broken links in CONTRIBUTING.md
0b9d58245 cli/command: fix docstring for ContainerFormat.CreatedAt
4a6ab2b37 fix: binary file line endings
3bf39d25a update to go1.22.7
1b8180a40 vendor.mod: put github.com/pkg/browser in the right group
5ca40e0a3 docs: add front matter title to deprecated.md
071f6f939 docs: rename plugins index file and add linkTitle
bbb6e7643 login: handle non-tty scenario consistently
60d045028 oauth/api: drain timer channel on each iteration
d7d56599c update to go1.22.6
9e2996796 scripts/build/plugins: don't override CGO_ENABLED set by .variables
81744d7aa copynit: s/WEB BASED/WEB-BASED/
2f206fff3 docs: update docker login reference
1e6cbbc3f Dockerfile: update xx to v1.5.0
e532eead9 login: use normalized hostname when storing
dab9674db Revert "login: normalize `registry-1.docker.io`"
c4a55df7c cli: rename args that collided with builtins (predeclard)
9c8789127 e2e/global: fix n-constant format string in call (govet)
f101f07a7 cli/command: fix n-constant format string in call (govet)
cc1d7b7ac cli/command/system: remove redundant nil-check (gosimple)
964155cd2 cli/formatter: bracket IPv6 addrs prepended to ports
a327476f7 login: add e2e tests for oauth + escape hatch
c974a8339 chore: update link to docker engine api reference
846ecf59f login: add oauth escape hatch
7b9164794 list/tree: No extra spacing for graphdriver
351249dce list/tree: Print <untagged> as dangling image name
6979ab073 list/tree: Fix some escape codes included in nonTTY
a9b78da54 list/tree: Add spacing before the content and first image
0242a1e3c list/tree: Capitalize column headers
d417d0668 list/tree: Add an experimental warning
b1a08f784 list/tree: Sort by created date
18ab78882 list/tree: Align number right, text left
ea8aafcd9 cli/tree: Add `Content size` column
be11b74ee image/list: Add `--tree` flag
f1befabe9 docs: use gh alert syntax for callouts
c3fe7bc33 fallback to regular login if oauth login fails to start
5eb3275c2 filestore: don't print warning multiple times
e6624676e login: normalize `registry-1.docker.io`
6e4818e7d Refactor `cli/command/registry`
fcfdd7b91 auth: add support for oauth device-code login
2dd4eb06a docs: update link to moved build context doc
0fd3fb084 cli/connhelper: getConnectionHelper: move ssh-option funcs out of closure
f3c2c26b1 disable pseudoterminal creation
d4a362aa1 docs: update internal links after refactor
78a8fba2c docs: fix link to http proxy document
6440816c7 vendor: github.com/docker/docker 2269acc7a31d (master, v-next)
b8a53ee34 vendor: github.com/docker/docker master (f3cf9359bdf6)
9c4480604 plugins: don't panic on Close if PluginServer nil
434d8b75e update to go1.21.13
73e78a582 run: fix GetList return empty issue for throttledevice
e29292f92 add security policy
40a5b297b vendor: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.21.0
e4d99b4b6 gha: set permissions to read-only by default
eac83574c tests/run: fix flaky `RunAttachTermination` test
7b46bfc5a attach: wait for exit code from `ContainerWait`
f0a29af0f vendor: docker/docker 2b1097f08088 (removes containerd dependency)
b34e8e4df vendor: github.com/moby/sys/sequential v0.6.0
ea37ac9ba vendor: github.com/moby/sys/symlink v0.3.0
435c65833 vendor: github.com/moby/sys/signal v0.7.1
501904d48 vendor: golang.org/x/sys v0.22.0
cc4163296 lint: replace deprecated linter names
66aa0f672 attach: don't return context cancelled error
4a7388f0d tests: fix other flaky `connhelper` tests
cc68c66c9 tests: fix flaxy `TestCloseRunningCommand` test
b36522b47 docs: refresh image versions in examples
aa2c2cd90 Allow for OomScoreAdj
401048b9c vendor: github.com/containerd/containerd v1.7.20
6638deb9d add support for DOCKER_CUSTOM_HEADERS env-var (experimental)
9617e8d0c gha: update to macOS 13, add macOS 14 arm64 (Apple Silicon M1)
6d8fcbb23 gha: check-pr-branch: verify major version only
77c0d8360 Dockerfile: update compose to v2.29.0
d00e1abf5 Dockerfile: update buildx to v0.16.1
ab80ea355 cli/config/credentials: move warning to fileStore
fcefe44bd login: slightly cleanup warning about unencrypted store
a78ab6380 login: don't print "unencrypted" warning when failing to save credentials
90058df30 cli/command/container: remove reportError, and put StatusError to use
64a3fb82d docs: fix typos and version for cli-docs-tool scripts
e3e9b9901 vendor: github.com/docker/cli-docs-tool v0.8.0
f28fc7f82 cli: FlagErrorFunc: don't print long usage output for invalid flags
b1c0ddca0 cli/command/container: add completion for --stop-signal
d6f78cdbb cli/command/container: add completion for --volumes-from
7fe7223c2 cli/command/container: add completion for --restart
f30158dbf cli/command/container: add completion for --cap-add, --cap-drop
e4dd8b189 cli/context/store: Names(): fix panic when called with nil-interface
42b68a3ed cmd/docker: fix completion for --context
162d9748b cli/command/container: provide flag-completion for "docker create"
5e7bcbeac cli/command/completion: add FromList utility
e3427f341 cli/command/completion: add EnvVarNames utility
9207ff104 cli/command/completion: add FileNames utility
eed0e5b02 cli/command/container: NewRunCommand: slight cleanup of completion
e8baee9c7 vendor: github.com/docker/docker aae044039ca4 (master, v-next)
a77ba7eda vendor: google.golang.org/genproto/googleapis/api 49dd2c1f3d0b
caa5d15e9 vendor: github.com/prometheus/procfs v0.15.1
0f712827f vendor: github.com/containerd/containerd v1.7.19
b28a1cd02 vendor: golang.org/x/sync v0.7.0
991b1303d chore: restore ctx without cancel on container run
6c04adc05 push: Improve note message and colors
0579cd797 test: e2e SIGTERM attached container on `docker run`
d40199440 c8d: Remove `docker convert` mention
4ce6e50e2 push: Don't default to DOCKER_DEFAULT_PLATFORM
3f3ecb94c Makefile: add completion target
150fb55a8 fix: container stream should not be terminated by ctx
3d80b7b0a Dockerfile.dev: install bash-completion in dev container
eae75092a cmd/docker: split handling exit-code to a separate utility
b7695d6c7 cli-plugins: RunPlugin(): rename error-variable that's possibly shadowed
350a0b68a cli-plugins: Run(): don't discard cli.StatusError errors without message
3dd6fc365 cmd/docker: don't discard cli.StatusError errors without custom message
2f83064ec e2e/cli-plugins: check for exit-errors in tests
baf35da40 e2e/cli-plugins: use cmd.CombinedOutput() instead of custom buffer
c6b40640c e2e/cli-plugins: use identifiable output for test
e9f32edac e2e/cli-plugins: explicitly ignore fmt.Printxx errors
5e7948ec8 e2e/cli-plugins: rename var that shadowed import
c60b360c3 cli: improve argument validation output
a6e96c758 cli: improve output and consistency for unknown (sub)commands
bca209006 cli: make cli.StatusError slightly prettier
88896eeaa cli/command/container: TestSplitCpArg: cleaner skip
b194274be replace uses of deprecated API types
4cac8efb5 vendor: github.com/docker/docker 508cc7c61226 (master)
dc22572e3 chore: regenerate docs
8549d250f docs: update cli-docs-tool (v0.8.0)
3d4c12af7 docs: update links to docker cli reference
bf33c8f10 docs: regenerate base command
b0650f281 docs: align heading structure for base command
cfea2353b docs: remove frontmatter for base command
03961449a docs: rename cli.md to docker.md (base command)
a68382338 docs: remove empty docker base command reference
a0c4e56de vendor: golang.org/x/net v0.25.0
723130d7f vendor: golang.org/x/crypto v0.23.0
d33ef57dc vendor: golang.org/x/text v0.15.0
21dbedd41 vendor: golang.org/x/sys v0.21.0
f8e7c0a0d vendor: github.com/klauspost/compress v1.17.9
10a015f87 cli/command/network: NewPruneCommand: explicitly ignore error
b3d8809f4 cli/command/network: rewrite consolidateIpam to take an option-struct
ab230240a test spring-cleaning
c7d46aa7a Enable completion for 'image' sub commands
2eb61318b cli/command/network: some cleanup and pass smaller interfaces
b711372ca cli/command/container: TestNewAttachCommandErrors: use struct-literals
229616e17 cli/command/image: fakeClient.ImagesPrune: fix unhandled err-return
42ba29395 rename vars to prevent colliding with imports
3a77fdd91 cli/command/trust: unconvert
26223f701 cli/command/formatter: don't use unkeyed structs
c56f4a1ef workflow: remove git `autocrlf=false` setup on windows
d73d7d4ed update to go1.21.12
e91f0ded9 docs: make buildx build the canonical reference doc
c15ade0c6 fix: ctx cancellation on login prompt
2bd4e95bf feat: force lf line endings by default
be14edca2 cli/command/stack: fix faulty sort for sorting stacks
0f6370c94 vendor: github.com/fvbommel/sortorder v1.1.0
2e6aaf05d vendor: github.com/docker/docker v27.0.3
9455d6176 vendor: github.com/docker/docker v27.0.2
1382fbe61 vendor: github.com/docker/docker v27.0.2-dev (e953d76450b6)
ab0898ee3 vendor: github.com/docker/docker v27.0.2-dev (861fde8cc974)
cfec21f28 vendor: github.com/docker/docker v27.0.1
8b0a7b025 cli/config/credentials: ConvertToHostname: handle IP-addresses
238048160 re-introduced support for port numbers in docker registry URL
60775b615 gha/e2e: Update latest version to 27.0
b5d1b4de1 update golangci-lint to v1.59.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2cf2a1945e |
crun: update to 1.20
Bumping crun to version 1.20-53-g4d6eae2e, which comprises the following commits:
107214b1 build(deps): bump uraimo/run-on-arch-action from 2.8.1 to 3.0.0
c954b1b6 criu: use a process to initialize the cgroup
959cc6c4 cgroup: extend function
e3866cc5 cgroup: fix ownership of dfd in read_pids_cgroup
0f16ced1 linux: set subsystem_path before use in error
6ed12c63 linux: remove dead code
6c049b81 criu: hide feature if dlopen is not present
73d00079 tests: map all IDs into the user namespace
0037d567 ci: fail on "sudo make check"
f82ead82 tests: fix test_resources_unified_invalid_controller()
37213555 utils: improve error message if path not executable
5f5454b5 utils: do not use hardcoded path buffer
4948e451 utils: check for eaccess existence
410f0d53 container: pass down executable path to custom handler
bb56343c utils: move error handling inside find_executable()
a77702c0 tests: do a shallow git clone for podman
f941be48 error: silence compiler warning
b8b25ea1 Prevent dlopen() for CRIU in static link'ed binary
990b5f68 krun: fix libkrun_unload
79b7e6b3 libcrun: use an hash map to lookup the key
51fa411b libcrun: move annotations handling to a separate struct
9abef0da linux: fix dup error
14d5baa4 README: add CentOS Stream 9 & 10, rm 8
e735b4bc krun: fix libkrun_exec return value
90a321c6 container, error: update error handling
620b91b5 utils: fix PATH lookup
48470009 Downstream Fedora: fix gating config
7949fbc6 tests: disable new test that does not use the runtime
7f76fcd4 utils: add missing crun_error_release()
6598c99b utils: add O_NOFOLLOW
9c9a76ac NEWS: tag 1.20
0aec82c2 krun: fix CVE-2025-24965
793188c2 krun: initialize bool
ac956685 utils: add O_WRONLY to WRITE_FILE_DEFAULT_FLAGS
dcf4f78b utils: drop rootfs_len from safe_openat function
de33f0a8 utils: write_file_at_with_flags uses safe_write
c460b253 utils: safe_write uses size_t for the buffer length
12778089 utils: drop function write_file_with_flags
f1ef3bb4 utils: move write_file* wrappers to utils.h
3e2344b0 utils: fix partial writes with write_file_at_with_flags
7930c13d krun: drop unused variable
f7987aa9 linux, mono: remove unneeded crun_error_release()
b548479c utils: reduce memory consumption in safe_readlinkat
3b653170 chroot_realpath: remove dead code
17135c1b chroot_realpath: do not return non-existing paths
7ab1acd3 container: fix error after read
490d5502 linux, utils: remove dead code crun_ensure_file*()
432a66d9 status: validate container id
73bcfabb status: report errors from get_state_directory_status_file
30d22ba3 status: report errors from get_run_directory
873db607 status: report errors from libcrun_get_state_directory
f5e7718c linux: improve error writing to net.ipv4.ping_group_range
5c35f278 tests: make python script executable
5b51cca8 github: disable aarch64, ppc64le and s390x build
84d50992 github: cat config.log on configure failures
7aa2cd85 github: add r/w permissions
4f823090 github: show apt-get output
2d08f586 exec: always call setsid
b788f338 scheduler: ignore ENOSYS when resetting affinity mask
e292c9e9 src/linux: handle EINVAL during pidfd_open gracefully
869804f4 TMT: account for environments on internal testing farm ranch
65484cb9 TMT: Replace `adjust` with `prepare` conditionals
a4dcb9c6 cgroup: Show the absolute path to cgroup.controllers when a controller is not available
179686b7 Revert "cgroup: remove tun/tap from the default allow list"
68e8d9ab test: use wasm32-wasip1 instead of wasm32-wasi
3158e491 criu: improve error handling for CRIU function calls
3cd9c2c9 criu: do not set network_lock if not specified
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
578c27a645 |
containerd: update to v2.0.3
Bumping containerd to version v2.0.3, which comprises the following commits:
eaa7ca80d proxy: break up writes from the remote writer to avoid grpc limits
c7f64196f Fix privileged container sysfs can't be rw because pod is ro by default
569af34cb Prefer runtime options for PluginInfo request
b8dde9189 Prepare release notes for v2.0.3
0ce93e16a prevent oom watcher depend on shim pkg.
f3284aa68 CI: arm64-8core-32gb -> ubuntu-24.04-arm
92ae2951f Update CDI dependency to v0.8.1.
f95a426b8 move the device after the options when using mkfs.ext4
4d19a6adf update build to go1.23.6, test go1.24.0
c738c3aab build(deps): bump actions/cache from 4.1.2 to 4.2.0
b5313993c Revert "Add timestamp to PodSandboxStatusResponse for kubernetes Evented PLEG"
697c59c63 Update runc binary to v1.2.5
fcf64305c Update vendor files to fix build failure
d3437eb29 Upgrade x/net to 0.33.0
0785bd8cc Update install-imgcrypt to allow change install repo
06891f899 fix go-cni race condition
79cdbf61b cri,nri: block NRI plugin sync. during event processing.
9d5cfce83 Update github.com/containerd/imgcrypt to v2.0.0
1f4e5688e update to go1.23.5 / go1.22.11
f58939c33 Remove deprecated WithCDIDevices in oci spec opts
3d53430fe Move CDI device spec out of the OCI package
3a6ab80d0 build(deps): bump google.golang.org/protobuf from 1.35.1 to 1.35.2
cdaf4dfb4 Prepare release notes for v2.0.2
eb125e1dd Update platforms to latest rc
468079c5c Remove confusing warning in cri runtime config migration
a2d9d4fd5 Fix runtime platform loading in cri image plugin init
184ffad01 Add integ test to check tty leak
17181ed33 fix master tty leak due to leaking init container object
8666e7422 Bump up otelttrpc to 0.1.0
7373ddd70 update runc binary to v1.2.4
c4270430d ctr: `ctr images import --all-platforms`: fix unpack
f34147772 downgrade go-difflib and go-spew to tagged releases
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d305fb05be |
buildah: update to v1.39.1
Bumping buildah to version v1.39.1-1-g1c4d85879, which comprises the following commits:
9347a39c2 Tag v1.39.1
717fb39c4 CI config: post-branch update
7dbd71040 chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security]
4c0c3f0b9 chroot createPlatformContainer: use MS_REMOUNT
c15ab104a Bump to Buildah v1.39.0
298a64106 Bump c/storage v1.57.1, c/image 5.34.0, c/common v0.62.0
3c7c611c7 Update module github.com/containers/storage to v1.57.0
d11bd71f4 CI, .cirrus: parallelize containerized integration
bd2d78e40 ed's comment: cleanup
ea39556a6 use seperate blobinfocache for flaky test
72161b3a1 bump CI VMs to 4 CPUs (was: 2) for integration tests
56078ef2d cleanup, debug, and disable parallel in blobcache tests
708fe0aff bats tests - parallelize
670a7bec6 pkg/overlay: cleanups
ca957c487 RPM: include check section to silence rpmlint
6cee07f52 RPM: use default gobuild macro on RHEL
2119c8da3 tests: remove masked /sys/dev/block check
4887a4fb1 vendor to latest c/{common,image,storage}
4383e34c0 build, run: record hash or digest in image history
3541a3ce2 Accept image names as sources for cache mounts
9e00b6b39 Run(): always clean up options.ExternalImageMounts
59024c41a refactor: replace golang.org/x/exp with stdlib
a67b07957 Update to c/image @main
d694644ae fix broken doc link
e40f62941 run_freebsd.go: only import runtime-spec once
eca1c8e90 fix(deps): update module github.com/docker/docker to v27.5.1+incompatible
678dca8fd bump github.com/vbatts/tar-split
9b9c161ff Add more checks to the --mount flag parsing logic
1ccc34515 chroot mount flags integration test: copy binaries
80100ac44 fix(deps): update module github.com/moby/buildkit to v0.19.0
e7f790296 relabel(): correct a misleading parameter name
6e62bd083 Fix TOCTOU error when bind and cache mounts use "src" values
c30f5784d define.TempDirForURL(): always use an intermediate subdirectory
25a3b385a internal/volume.GetBindMount(): discard writes in bind mounts
0f5c6fc50 pkg/overlay: add a MountLabel flag to Options
c0efbe821 pkg/overlay: add a ForceMount flag to Options
50210d51c Add internal/volumes.bindFromChroot()
f7155c0ab Add an internal/open package
9a9fa9607 fix(deps): update module github.com/containers/common to v0.61.1
ccfd61bdd fix(deps): update module github.com/containers/image/v5 to v5.33.1
9beaf1018 [CI:DOCS] Touch up changelogs
9b55ec998 fix(deps): update module github.com/docker/docker to v27.5.0+incompatible
65b634b7d copy-preserving-extended-attributes: use a different base image
292ecfe0f fix(deps): update github.com/containers/luksy digest to a3a812d
67991e0d5 chore(deps): update module golang.org/x/net to v0.33.0 [security]
6b53330c3 fix(deps): update module golang.org/x/crypto to v0.32.0
727f00bf4 New VM Images
e2b33d252 fix(deps): update module github.com/opencontainers/runc to v1.2.4
ac9815992 fix(deps): update module github.com/docker/docker to v27.4.1+incompatible
5a336bf1a fix(deps): update module github.com/containers/ocicrypt to v1.2.1
adf54cde0 Add support for --security-opt mask and unmask
77e357020 Allow cache mounts to be stages or additional build contexts
a1dede87e [skip-ci] RPM: cleanup changelog conditionals
d18344416 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.6
d77314a7a fix(deps): update module github.com/moby/buildkit to v0.18.2
62709d718 Fix an error message in the chroot unit test
cfd98d782 copier: use .PAXRecords instead of .Xattrs
4adca286f chroot: on Linux, try to pivot_root before falling back to chroot
5f3975333 manifest add: add --artifact-annotation
c41f02130 Add context to an error message
f81b26560 Update module golang.org/x/crypto to v0.31.0
e9932b7bb Update module github.com/opencontainers/runc to v1.2.3
ad5b02cdc Update module github.com/docker/docker to v27.4.0+incompatible
2b7e1e9be Update module github.com/cyphar/filepath-securejoin to v0.3.5
a82826f56 CI: don't build a binary in the unit tests task
8eb6b10b0 CI: use /tmp for $GOCACHE
36f6038d3 CI: remove dependencies on the cross-build task
83b280599 CI: run cross-compile task with make -j
2b6cf6452 Update module github.com/docker/docker to v27.4.0-rc.4+incompatible
4afa31d07 Update module github.com/moby/buildkit to v0.18.1
c35374f9c Update module golang.org/x/crypto to v0.30.0
041c1f26f Update golang.org/x/exp digest to 2d47ceb
058a2d37f Update github.com/opencontainers/runtime-tools digest to f7e3563
a34792457 [skip-ci] Packit: remove rhel copr build jobs
7a8312a61 [skip-ci] Packit: switch to fedora-all for copr
564f90f09 Update module github.com/stretchr/testify to v1.10.0
7b45052fd Update module github.com/moby/buildkit to v0.17.2
17ee51d75 Makefile: use `find` to detect source files
75c8852a8 Tests: make _prefetch() parallel-safe
8e525d445 Update module github.com/opencontainers/runc to v1.2.2
eb7a42217 executor: allow to specify --no-pivot-root
6cfd93424 Update module github.com/moby/sys/capability to v0.4.0
135431f8d Makefile: mv codespell config to .codespellrc
c2b42c5e4 Fix some codespell errors
f0361414d Makefile,install.md: rm gopath stuff
c07a5eb56 Makefile: rm targets working on ..
5adb14cbf build: rm exclude_graphdriver_devicemapper tag
967fb5ec1 Makefile: rm unused var
f4d4bb240 Finish updating to go 1.22
6832420b6 CI VMs: bump again
147765b45 Bump to Buidah v1.39.0-dev
7aa3b5ee0 Bump to Buildah v1.38.0
e911fe4a2 Bump to c/common v0.61.0, c/image v5.33.0, c/storage v1.56.0
356e4d41e fix(deps): update module golang.org/x/crypto to v0.29.0
6b1e4a58c fix(deps): update module github.com/moby/buildkit to v0.17.1
3a583bf04 fix(deps): update module github.com/containers/storage to v1.56.0
e3950407f tests: skip two ulimit tests
4703b5b0c CI VMs: bump f40 -> f41
2cba66285 tests/tools: rebuild tools when we change versions
3cf2ec21b tests/tools: update golangci-lint to v1.61.0
a7c316ab7 fix(deps): update module github.com/moby/buildkit to v0.17.0
701d6bbe9 Handle RUN --mount with relative targets and no configured workdir
9a5b88d3e tests: bud: make parallel-safe
953fb3259 fix(deps): update module github.com/opencontainers/runc to v1.2.1
d8d117534 fix(deps): update golang.org/x/exp digest to f66d83c
fddd1be38 fix(deps): update github.com/opencontainers/runtime-tools digest to 6c9570a
3c4e552eb tests: blobcache: use unique image name
1cd6346b3 tests: sbom: never write to cwd
2797d22ab tests: mkcw: bug fixes, refactor
aa7077164 deps: bump runc to v1.2.0
e213d65be deps: switch to moby/sys/userns
855ec0f0c tests/test_runner.sh: remove some redundancies
5abf038dd Integration tests: run git daemon on a random-but-bind()able port
27324c256 fix(deps): update module github.com/opencontainers/selinux to v1.11.1
8b7adfa2c go.mod: remove unnecessary replace
6c85740ba Document more buildah build --secret options
aeb6ffeec Add support for COPY --exclude and ADD --exclude options
57bba3469 fix(deps): update github.com/containers/luksy digest to e2530d6
9cf613a2b chore(deps): update dependency containers/automation_images to v20241010
6349dc4a2 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.4
873beddba Properly validate cache IDs and sources
0d27af46f [skip-ci] Packit: constrain koji job to fedora package to avoid dupes
e0b7b10e6 Audit and tidy OWNERS
714a23c26 fix(deps): update module golang.org/x/crypto to v0.28.0
c7dd90dd7 tests: add quotes to names
a018ec2b0 vendor: update c/common to latest
732f77064 CVE-2024-9407: validate "bind-propagation" flag settings
95f2e1020 vendor: switch to moby/sys/capability
37a6bde53 Don't set ambient capabilities
5193f21b0 Document that zstd:chunked is downgraded to zstd when encrypting
271093d51 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.3
03ca93fb0 buildah-manifest-create.1: Fix manpage section
fea5c3d49 chore(deps): update dependency ubuntu to v24
d0819591d Make `buildah manifest push --all` true by default
2ff91b8b0 chroot: add newlines at the end of printed error messages
5e82f27fb Do not error on trying to write IMA xattr as rootless
c07ae2b4c fix: remove duplicate conditions
4bc98d54d fix(deps): update module github.com/moby/buildkit to v0.16.0
128117224 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.2
1f02b65c6 Document how entrypoint is configured in buildah config
baf91f2b0 In a container, try to register binfmt_misc
81d1256bd imagebuildah.StageExecutor: clean up volumes/volumeCache
80e15584c build: fall back to parsing a TARGETPLATFORM build-arg
edc43c4e6 `manifest add --artifact`: handle multiple values
b2defd39e Packit: split out ELN jobs and reuse fedora downstream targets
0494df68b Packit: Enable sidetags for bodhi updates
81b357e36 fix(deps): update module github.com/docker/docker to v27.2.1+incompatible
71fc845d0 tests/bud.bats: add git source
47297b3d5 add: add support for git source
5184bf161 Add support for the new c/common pasta options
7bf7da57a vendor latest c/common
8d7286762 fix(deps): update module golang.org/x/term to v0.24.0
e08437000 fix(deps): update module github.com/fsouza/go-dockerclient to v1.12.0
a35380059 packit: update fedora and epel targets
909cca8b1 cirrus: disable f39 testing
db2a666dd cirrus: fix fedora names
3f047d49b update to go 1.22
ed881abfe Vendor c/common:9d025e4cb348
9e374f9fd copier: handle globbing with "**" path components
cee3c1311 fix(deps): update golang.org/x/exp digest to 9b4947d
9ab093138 fix(deps): update github.com/containers/luksy digest to 2e7307c
f88579d1f imagebuildah: make scratch config handling toggleable
01a58991c fix(deps): update module github.com/docker/docker to v27.2.0+incompatible
09c231f83 Add a validation script for Makefile $(SOURCES)
510dd75f6 fix(deps): update module github.com/openshift/imagebuilder to v1.2.15
344366935 New VMs
e8e83bb8b Update some godocs, use 0o to prefix an octal in a comment
a2629f528 buildah-build.1.md: expand the --layer-label description
b695098b0 fix(deps): update module github.com/containers/common to v0.60.2
d0988936b stage_executor: set avoidLookingCache only if mounting stage
f1cd5ae4a imagebuildah: additionalContext is not a local built stage
0ade01048 run: fix a nil pointer dereference on FreeBSD
ca3b80eb0 CI: enable the whitespace linter
0ad0ffaad Fix some govet linter warnings
662abee0b Commit(): retry committing to local storage on storage.LayerUnknown
8ae99121c CI: enable the gofumpt linter
d07c3dfb0 conformance: move weirdly-named files out of the repository
a60788c56 fix(deps): update module github.com/docker/docker to v27.1.2+incompatible
ec87847c9 fix(deps): update module github.com/containers/common to v0.60.1
fd3aba991 *: use gofmt -s, add gofmt linter
24da18800 *: fix build tags
57d820d37 fix(deps): update module github.com/containers/image/v5 to v5.32.1
3ea43566a Add(): re-escape any globbed items that included escapes
05da9a745 conformance tests: use mirror.gcr.io for most images
c39f622d0 unit tests: use test-specific policy.json and registries.conf
a1ce1c1ee fix(deps): update module golang.org/x/sys to v0.24.0
c7b7f1272 Update to spun-out "github.com/containerd/platforms"
832ff6cb8 Bump github.com/containerd/containerd
ed6dd4227 test/tools/Makefile: duplicate the vendor-in-container target
f52158f0e linters: unchecked error
abea603df linters: don't end loop iterations with "else" when "then" would
fdf1c75cd linters: unused arguments shouldn't have names
6224e9a44 linters: rename checkIdsGreaterThan5() to checkIDsGreaterThan5()
ae0d9d002 linters: don't name variables "cap"
282cc38c3 `make lint`: use --timeout instead of --deadline
d01e4ede3 Drop the e2e test suite
c65328683 fix(deps): update module golang.org/x/crypto to v0.26.0
23f241e6f fix(deps): update module github.com/onsi/gomega to v1.34.1
277d40a2e `make vendor-in-container`: use the caller's Go cache if it exists
aac50f661 fix(deps): fix test/tools ginkgo typo
dd8715976 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.1
34a7ce99b Update to keep up with API changes in storage
00d67a48f fix(deps): update github.com/containers/luksy digest to 1f482a9
987e63a2d install: On Debian/Ubuntu, add installation of libbtrfs-dev
e3c1953f7 fix(deps): update module golang.org/x/sys to v0.23.0
5f96e0392 fix(deps): update golang.org/x/exp digest to 8a7402a
9254e5ca8 fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.2
edc1b7752 Use Epoch: 2 and respect the epoch in dependencies.
4e78b5723 Bump to Buildah v1.38.0-dev
5f18ba259 AddAndCopyOptions: add CertPath, InsecureSkipTLSVerify, Retry fields
c467bd139 Add PrependedLinkedLayers/AppendedLinkedLayers to CommitOptions
8aa9a1c22 integration tests: teach starthttpd() about TLS and pid files
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
hongxu
|
2b0e119d5c |
nerdctl: fix do_compile failed
Using latest poky + meta-virtualization + meta-openembedded, build multlib failed ...local.conf... MACHINE = "qemux86-64" require conf/multilib.conf MULTILIBS = "multilib:lib32" DEFAULTTUNE:virtclass-multilib-lib32 = "x86" $ bitbake lib32-nerdctl ... -buildmode=pie requires external (cgo) linking, but cgo is not enabled make: *** [Makefile:63: nerdctl] Error 1 ... Get back the patch to allow external specification of build settings and rebase to v2.0.2 Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Xiangyu Chen
|
7932f4a2fa |
lxc: disable lxc-staticdev buildpaths checking
lxc enabled the ffat-lto-objects option since 6.0.3[1], that
liblxc.a object files contain both the intermediate language
and the object code, that cause yocto QA report a QA warning.
Ref:
[1]
|
||
|
Paolo Barbolini
|
fc423a7cb8 |
docker: switch libnetwork to moby version
Some time ago libnetwork was moved from it's own repository to moby. This patch updates the docker recipe to use the new location Signed-off-by: Paolo Barbolini <paolo.barbolini@m4ss.net> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
3763a3a9a6 |
cri-o: fix textrel QA issue
Basically we pass "-buildmode=pie" to fix textrel QA issue. A new patch is added and submitted to upstream: 0001-Makefile-introduce-GO_TEST-for-more-flexible-configu.patch. With this new patch, the old patch, 0001-Add-trimpath-to-build-nri.test.patch, could be dropped. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
7834a259ad |
cri-o: fix already-stripped QA issue and clean up
Set DEBUG=1 to avoid stripping. See https://github.com/cri-o/cri-o/blob/main/Makefile#L93 Set STRIP=true to avoid stripping bin/pinns. See https://github.com/cri-o/cri-o/blob/main/pinns/Makefile#L4 ALLOW_EMPTY:${PN} = "1" is not needed. Remove it. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
af1d32686e |
go-metalinter: remove it from podman's DEPENDS
This package is pure source package and its only user is podman's DEPENDS. The current podman does not need it to be built successfully. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
fd1d4c65e4 |
Revert "k3s: WIP: [needs newer go]: not for merge: upgrade"
This reverts commit b2a271ea4d9c0703812bee1f00dd2735e4ae8afc. |
||
|
Bruce Ashfield
|
3ec3b06050 |
Revert "k8s: WIP [needs newer go]: not for merge: update to -tip"
This reverts commit e27c332dc3fc55c6892c5dcd4c31264c4033b40b. |
||
|
Bruce Ashfield
|
054b06692c |
Revert "docker-compose: WIP [needs go 1.22.10+]: not for merge: update to v2.32.2"
This reverts commit 61c4511b2ac313c587a42012bd0e188b9b196758. |
||
|
Bruce Ashfield
|
a8d5387479 |
k3s: WIP: [needs newer go]: not for merge: upgrade
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d5633843dd |
k8s: WIP [needs newer go]: not for merge: update to -tip
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cdc4719904 |
docker-compose: WIP [needs go 1.22.10+]: not for merge: update to v2.32.2
Bumping compose to version v2.26.1-287-gfa3950346, which comprises the following commits:
fa3950346 image can be set to a local ID, that isn't a valid docker ref
a35158502 can't render progress concurrently with buildkit
b6db1380e exclude one-off container running convergence
2ebb47543 Only override service mac if set on the main network.
d474515d4 remove engine v25 from e2e test matrix The 1st version available for Ubuntu 24.x is Docker Engine v26
2b21c5df9 fix relative path in compose file
1f3c10eb4 bump compose-go to v2.4.7
68ad165a5 replace tibdex/github-app-token by official GitHub create-github-app-token
3060ed279 bump golang.org/x/net to v0.33.0 to fix potential security issue https://github.com/golang/go/issues/70906
be09b2e8c checkExpectedVolumes must ignore anonymous volumes
571a1af01 When retrying to resolveOrCreateNetwork, retry with a valid network name
8f644eea7 only check bind mount conflict if sync action is involved
56e92e34b use the 3 latest major versions of the engine to run e2e step
a42a04dfe bump Golang version to v1.22.10 and update CI actions
34bcd03a7 add --pull to run command
ed61e42f9 CI to validate fmt
65696bb1c `make fmt` so any contributor can enforce formatting
446e00520 format code with gofumpt
c01c9c29f e2e test to prevent future regression
038c81f34 only check volume mounts for updated config
a20b69ac5 e2e test for recreate volume
977530c22 build(deps): bump google.golang.org/grpc from 1.68.0 to 1.68.1
d4db8b6b1 build(deps): bump golang.org/x/crypto from 0.27.0 to 0.31.0
f8ce0f04e build(deps): bump golang.org/x/sys from 0.27.0 to 0.28.0
8e0520e71 prompt user to confirm volume recreation
332311358 Recreate container on volume configuration change
df9e420dd introduce watch restart action
142f5dba8 bump otel dependencies to v1.28.0 and v0.53.0 to align with buildx, buildkit and engine versions
700c586bc bump docker/buildx to latest release
fc566509d fix support for service.mac_address
e73c2303f update xx to v1.6.1 for compatibility with alpine 3.21 and file 5.46+
624303233 build(deps): bump golang.org/x/sync from 0.9.0 to 0.10.0
a1729c52d Update pkg/e2e/watch_test.go
254224c18 first watch action for a file event wins
0861e6845 fix
af5b74850 revisit TestDebounceBatching
32a22c1f4 introduce sync+exec watch action
e6ea8fb96 log configuration error as a watch log event
043465448 do not require a build section but for `rebuild` action
1d0839086 pull --quiet should not drop status message, only progress
69a83d130 use latest engine tags
781b9f1cd Bump buildx to 0.19.1
cbff0e555 be sure everything has been cleanup at the end of each tests
e4222bff5 add local config.json to test configuration dir if exists
25197fe6d disable failing TestBuildSSH test
85cdaf9dd fix build with bake
a8469db83 bump containerd to v1.7,24
08488dae5 bump google.golang.org/grpc to v1.68.0
cc3a216f2 build(deps): bump github.com/moby/buildkit from 0.17.1 to 0.17.2
6e818b9ae build(deps): bump github.com/compose-spec/compose-go/v2
6b3e57503 only stop dependent containers ... if there's some
8e497a128 disable TestNetworkConfigChanged which is unstable on CI
5aed70437 only check attached networks on running containers
1ff9b758d fix: commit tests
9eaba5597 feat: add commit command
a85f8a40a run build tests against bake
095f65cb4 delegate build to buildx bake
208e57ded build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0
2d148faed use service.stop to stop dependent containers
43ac1e31c Update wait-timeout flag usage to include the unit
5561a778c go.mod: github.com/docker/cli v27.4.0-rc.2
ae48f488d go.mod: github.com/docker/docker v27.4.0-rc.2
5e3a09538 go.mod: github.com/docker/cli 8d1bacae3e49 (v27.4.0-rc.2-dev)
a2a3eb72e go.mod: github.com/docker/cli v27.4.0-rc.1
3513b4242 go.mod: github.com/docker/docker v27.4.0-rc.1
d4fa63fdc Update pkg/compose/convergence.go
c21d4cfb4 detect network config changes and recreate if needed
61f1d4f69 go.mod: github.com/docker/buildx v0.18.0
f7cce281d go.mod: github.com/moby/buildkit v0.17.1
bcaacc7f2 gha: test against docker engine v27.4.0
3f5898f8d push empty descriptor layer when using OCI version 1.1 for Compose artifact it fixes a repository creation issue when pushing the 1st time a Compose OCI artifact on the Hub
2bb67f270 remove ddev e2e tests
bf521fe3a implement remove-orphans on run
11e9621da ci: enable testifylint linter
a9de9abcf Emit events for building images
799ab842a Fix compose images that reutn a different image with the same ID
2f65ace2a remove obsolete containers first on scale down
aa0a4189e pass stal bot inactivity limit from 6 to 3 months
eba3ff8f3 fix(config): Print service names with --no-interpolate
6313365ba build(deps): bump golang.org/x/sys from 0.26.0 to 0.27.0
dbd51745c build(deps): bump golang.org/x/sync from 0.8.0 to 0.9.0
a8bfbc147 bump compose-go v2.4.4
fbbd6f83d Avoid starting all services on rebuild
a00097898 remove ArtifactType from Config in OCI v1.1 definition of the artifact
361c0893a build(deps): bump github.com/compose-spec/compose-go/v2
513b6128c Service being declared in a profile must not trigger re-creation
eececb9ad Add profile e2e test case to document in compose
501b5acde Update `MAINTAINERS` file
f51bc4cd0 bump compose-go to version v2.4.2
517f87a37 bump google.golang.org/grpc to v1.67.1
718049cbd bump go.uber.org/mock to v0.5.0
02371f312 bump golang minimal version to 1.22 in go.mod
a7c9de82b build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23
51ebeb544 introduce generate command as alpha command
fafaa9c5b bump compose-go to version v2.4.1
fc9c3cde0 Add license header to dockerignore_test.go
73bfbab54 fix
2ac081b4c fix(dockerignore): Add wildcard support to dockerignore.go
eeea049f1 push: Fix error message typo
26064d4b6 allow usage of -f flag with oci Compose artifact
7c46beb8a resurrect --all flag for cp to target oneoff container
aa1ec4524 connect to external networks by name
a4ee6ca7a don't warn about uid/gid not being supported while ... they are
5617eff0c bump compose-go to v2.4.0
fa24ab8e2 one-off container are not indexed, and must be ignored by exec --index command
0aad9595a don't use progress to render restart, which hides logs
813900180 compose-go clean volume target to avoid ambiguous comparisons
82417bd5b add support for bind.recursive
0cbb73c02 Improve error message to include expected network label
38e3d670a desktop: allow this client to be identified via user-agent
24c78728e bump compose-go to v2.3.0
9eeb2d315 convert gpus to DeviceRequests with implicit "gpu" capability
8da82c98e gha: set default permissions to "contents: read"
1a8c85548 Add security policy
15bd0b0c5 add support for raw env_file format
39d0f6477 build(deps): bump golang.org/x/sys from 0.25.0 to 0.26.0
3a95a0872 add support for CDI device request using `devices`
f794c79eb Support Dockerfile-specific ignore-file with watch
407d82570 Remove feature flag integration with Docker Desktop for ComposeUI and ComposeNav
82b41b9eb introduce service hooks
6c06170eb pass device.options to engine
60c1311f6 chore: remove errors depricated pkg
17add87e4 fix: validate-go-mod
bf0418bac fix: lint
b9d0c77cd feat: add export command
bdb854561 fix(convergence): Serialize access to observed state
41df35c1f Remove bind options when creating a volume type
3ef5045a0 Bump docker v27.3.1
d9df7aab6 fix(push): Fix unexpected EOF on alpha publish
c9d96b449 use compose-go version fixing extra_hosts unicity issue
1744b4576 Show watch error message and open DD only when w is pressed
87f457e7d add tests to down.go
abcc91e2b fix(down): Fix down command if specified services are not running
8b9fe8984 After container restart register printer consumer
34b18194f check secret source exists, as bind mount would create target as a folder otherwise
ce27dba52 wait for dependent service up to delay set by --wait-timeout
d2b945613 append unix-style relative path when computing container target path
9c60fe67d revert commits link to mount API over bind changes
c16df17e1 don't set propagation if target engine isn't linux
20404db12 build(deps): bump github.com/docker/docker v27.3.0-rc.2
f2ff7fd75 build(deps): bump github.com/docker/cli v27.3.0-rc.2
cb00aaad2 set propagation default
e885bc084 Remove custom codeql workflow
73d3a25eb fix import
3524bcfad chore(watch): Add debug log when skipping service without build context
1076f1d9a stop dependent containers before recreating diverged service
16652ed26 Fixed possible `nil` pointer dereference
c6a76b9bd bump github.com/docker/buildx v0.17.1
3a0e3ba7e build(deps): bump docker, docker/cli to v27.3.0-rc.1
86ef8e62c gha: test against docker engine v27.3.0
8bf0627ea show sync files only in debug level
2e1419168 chore(watch): Add changed files path/count to log
155f64182 build(deps): bump golang.org/x/sync from 0.7.0 to 0.8.0
8db0cba0a bump compose-go to version v2.2.0
a7424435b Restore compose v1 behavior to recreate containers when ran with -V
d445ebba3 fix linting issues with golangci-lint 1.60.2
f592aad10 bump golang to version 1.22.7
ef46445ed bump dependencies versions, engine and cli v27.2.1 containerd v1.7.22 buildx v0.17.0 buildkit v0.16.0
150593298 build(deps): bump golang.org/x/sys from 0.22.0 to 0.25.0
524a97e55 Fix typos
1d608e033 Use logrus instead of direct output to stderr.
329ad7392 attach: close streams when done
b633c5c3e Fix typo in pull.go
e6ef8629a Allow combination of bind mounts and 'rebuild' watches
d658fecc6 service hash must exlude depends_on
f9c7a0cc0 prefer mount API over bind
6e172d6b8 docs: duplicate documentation for root cmd
98e261ba3 docs(wait): Fix wait command description
11c7a25ae allow to add empty line in the logs when nav menu activated
234036756 upgrade docker versions
9c03797f9 initial sync files that modified after image creation
485c0eba5 initial sync for root directory
69384a9a0 Removes redundant condition from toAPIBuildOptions in build.go
1601ead7b docs: Update docker compose kill usage
ea4ccf639 Fix stop on file chane for sync-restart action
b1850ea4d bump engine and cli to v27.1.1, buildx to v0.16.1
adba639e8 remove all dependabot update PRs for OTel dependencies
d8518529c gp.mod: github.com/gofrs/flock v0.12.1
c79f15da9 go.mod: golang.org/x/sys v0.22.0
3f55382ff update to go1.21.12
44337d2bb Enhance JSON progress events with more fields.
bc733508d bump compose-go v2.1.5
c422b5447 bump github.com/docker/cli v27.1.0
e74441c90 bump github.com/docker/docker v27.1.0
2bac32a46 bump github.com/containerd/containerd v1.7.20
f278400fb gha: add docker 27.1.0
4f9db4d3e fix(containers): fix sorting logic by adding secondary sorting for one-off containers
06bf339a4 fix: typos
231ea1005 update docs generation to avoid man pages generation
46679150d bump compose-go to v2.1.4, buildx to v0.16.0, containerd to v1.7.19 and buildx to v0.15.0
d3d378b92 restore setEnvWithDotEnv
163cdfd31 empty env variable with no value must be unset in container
25f85938b exclude unnecessary resources after services have been selected
cacbca859 change time for stale bot
ecac13f27 Remove debug mode and run twice a week
14793cc2e Add stale workflow
11d5ecdc7 update docs
9549a213b feat(watch): Add --prune option to docker-compose watch command
da434013e Remove COMPOSE_MENU env from e2e tests
ace69c96a Use rawjson for the build backend.
2db04c1e4 Set logging format to JSON.
8f7cd0048 Format errors as JSON when in JSON progress mode.
5a6e1a7e2 Pass 'plain' instead of 'json' to build backend
06545d066 Add JSON stream progress writer
075fd9345 go.mod: docker/cli, docker/docker v27.0.3
d062ad739 gha: test against docker v27.0.3
7cd5209cc go.mod: docker/cli, docker/docker v27.0.2
f79c28168 Remove `console.Terminal` check and use `IsTerminal` from `streams.Out`
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
0b75eead63 |
lxc: update to v6.0.3
Bumping lxc to version v6.0.3, which comprises the following commits:
fe31d844e Release LXC 6.0.3
b63c630fd github: Improve progress reporting
eb5095c3c github: Cleanup OSS-fuzz
8fa61eea5 github: Rework test workflow
0be2aed41 github: Introduce shared testsuite logic
1fce28876 github: Introduce shared build logic
8fde2ff28 github: Update coverity workflow
787a0f821 lxc.init: Allow SIGHUP from outside the container
17fea37cc lxc.init: Ignore user signals coming from inside the contianer
5dead1d05 lxc.init: Switch to sigaction
3011e79f9 lxccontainer: fix enter_net_ns helper to work when netns is inherited
537986ec8 fix return code of recursive all of cgroup_tree_prune
7f148c284 lxc-net: Replace random IPv6 subnet
1fc5314ff meson: fix minor typo
f7681840a Avoid null pointer dereference when using shared rootfs. rootfs->storage not set by lxc_storage_prepare when using a shared rootfs.
27f02b8c8 create_run_template: don't use txtuid and txtguid out of scope
acc334a9c Add suppport for PuzzleFS images in the oci template
f9992d819 meson.build: drop suggest-attribute=noreturn build option
277ac3640 meson.build: add -ffat-lto-objects
2444f5841 Release LXC 6.0.2
a85dc4b3d fix possible clang compile error in AARCH
f5a5ea3cf README: Update security contact
226fe3d54 doc: Fix definitions of get_config_path and set_config_path
a4c5d7ee0 Exit 0 when there's no error
19e14a26f idmap: Lower logging level of newXidmap tools to INFO
704504e3d Remove unused function
f1be0d814 Release LXC 6.0.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
876864dd59 |
riddler: update to v0.6.4
We refresh a patch and re-organize the go src for building Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
b6460736c9 |
riddler: update to v0.6.4
Bumping riddler to version v0.6.4-1-g66698f2, which comprises the following commits:
66698f2 update generation
11e1ff9 Bump version to v0.6.4
111df66 docs: Update TOC
94c8242 update to github actions
97bd55f update vendor
1f6525f update travis
77bd627 Update ToC for README.md
875f920 toc
0b055dd update travis
e5f037e Fix golint import path (#21)
80f5b35 update vendor
d0acd29 update vendor
de29e40 update vendor
dd2873d Bump version to v0.6.3
0e5c8db update vendor
8b87d31 update makefile
692c487 update makefile
417bb3d Sometimes the field "c.HostConfig.Resources.MemorySwappiness" is nil. (#20)
6148709 Bump version to v0.6.2
a86aac4 update cli pkg
1fdb9b1 update generated project files
eb5bf13 Bump version to v0.6.1
da3cd49 update deps
350749b update project template
d2f5596 update deps
bb1c9ed update makefile
dd24e84 update generated project files
7a7c7c9 remove deadcode
ecc2b82 update deps
5a3924a move repo from jessfraz to genuinetools and update paths
e2650aa update generated project files
114151b update deps
fbfdbf7 fix travis
ac17aed Bump version to v0.6.0
64fdb81 update gofmt
657e255 Bump version to v0.5.0
7220bc6 fix gofmt
894bdd7 Bump version to v0.4.0
d059cb5 update vendor
1b91705 Bump version to v0.3.0
7333db3 update vendor
26fbf35 Bump version to v0.2.0
4354179 fix lint
f72494d fix staticcheck
99043f1 update readme
c945270 Bump version to v0.1.0
e96ba2a update build
69e4f0b fix main.go
fd7d91d update generated project files
ebd6e08 fixups
eab9733 update readme
bdef87d update
4cb0876 Update spec version to current version
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6b4793ce2e |
umoci: update to v0.4.7 -tip
Bumping umoci to version v0.4.7-260-g8f807a3, which comprises the following commits:
e9fff47 pkg: fmtcompat: remove now that there are no users
63bbda0 errors: drop remaining errors.Wrap-like fmtcompat.Errorf users
73fffb3 errors: drop fmtcompat.Errorf for complicated err != nil checks
00a632e errors: drop fmtcompat.Errorf for explicit err != nil checks
5339feb errors: drop fmtcompat.Errorf for non-%w errors
1c67765 *: migrate to Go stdlib error wrapping
cd18171 pkg: fmtcompat: add a compatibility shim for fmt.Errorf
aaa6de8 fmt: use %q for quoting
97cbde3 *: fix new golint warnings
094e766 gha: enable CodeQL scanning
e597e6a idtools: return errors for >u32 specification
71d012d oci: casext: mediatype: switch to generics for parser functions
0a5d0dc build(deps): bump github.com/klauspost/pgzip from 1.2.5 to 1.2.6
3405ba8 Fixed typo in rootless.md
3cf87e0 build(deps): bump codecov/codecov-action from 4 to 5
7bc95ad build(deps): bump golang.org/x/sys from 0.22.0 to 0.25.0
a357a4e build(deps): bump github.com/moby/sys/user from 0.1.0 to 0.3.0
7e48118 build(deps): bump opensuse/leap from 15.5 to 15.6
3e5ade3 build(deps): bump actions/cache from 3 to 4
a59f5ba build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2
3078d6b build(deps): bump github.com/vbatts/go-mtree from 0.5.3 to 0.5.4
ce130df build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0
6fd54fc build(deps): bump codecov/codecov-action from 3 to 4
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
617bca3a4b |
skopeo: update to v1.17.0
Bumping skopeo to version v1.17.0-41-g0633de63, which comprises the following commits:
6483de48 fix(deps): update module github.com/containers/storage to v1.56.1
b5a13bcc systemtest: update quay.io registry image
eae9e886 chore(deps): update dependency containers/automation_images to v20250107 (#2488)
b68afb1a fix(deps): update module golang.org/x/term to v0.28.0
2a47dff7 chore(deps): update dependency golangci/golangci-lint to v1.63.4
83efeea4 chore(deps): update dependency golangci/golangci-lint to v1.63.3
deda9663 chore(deps): update dependency golangci/golangci-lint to v1.63.2
fb777d39 fix(deps): update golang.org/x/exp digest to b2144cd
568d5d1c chore(deps): update module golang.org/x/net to v0.33.0 [security]
1866ecbd fix(deps): update module github.com/containers/ocicrypt to v1.2.1
b116c5bd fix(deps): update module golang.org/x/term to v0.27.0
27baed91 Fix handling of errorShouldDisplayUsage
a71a8b4c fix(deps): update golang.org/x/exp digest to 2d47ceb
4541d649 Packit: remove rhel (epel) jobs
96f38043 Packit: switch fedora copr targets to fedora-all
e9755957 fix(deps): update module github.com/stretchr/testify to v1.10.0
2a3c8ee5 chore(deps): update dependency golangci/golangci-lint to v1.62.2
f423f01d Update an expected error message
186e9b4f fix(deps): update module github.com/masterminds/semver/v3 to v3.3.1
f818827f chore(deps): update dependency golangci/golangci-lint to v1.62.0
bae8ccd7 fix(deps): update module github.com/moby/sys/capability to v0.4.0
293ac065 Bump to c/Skopeo v1.18.0-dev
e354a143 Bump to c/Skopeo v1.17.0
34f06441 Bump c/common to v0.60.0
fa1762f5 fix(deps): update module github.com/containers/image/v5 to v5.33.0
15f69ac6 Trigger a rebuild of the ostree-rs-ext container
33a629dd Update contrib/cirrus/ostree_ext.dockerfile for DNF 5
bc57843b update CI images to f41
8d3fb4b3 cirrus: use dnf remove over erase
c0cc7ed2 fix(deps): update golang.org/x/exp digest to f66d83c
602c121f fix(deps): update module github.com/containers/storage to v1.55.1
7fbdd714 Fix format string inconsistency causing a build failure
3f66d002 proxy: Add various debug logging
43d066e0 chore(deps): update dependency containers/automation_images to v20241010
10a9e24d * Added option to create digest file for syncing images. * Digest file output would have docker reference of source and sha of of the mainfest sync'd with the target. This file would not be created if dry-run flag is enabled * improved the sync document to include the correct output for manifest file. * added new line for the manifest file once all images are sync'd * Ensuring we log on manifest digest if the copy operation was successful. * Check for errors if any once sync process is complete. * Ensure to capture the failure when closing the manifest file. * Ensure we are not writing manifest sha for failed copy of imagesand aborting the process in case write to file fails
6ad77a1b Packit: constrain downstream koji job to fedora package
9b960383 fix(deps): update module golang.org/x/term to v0.25.0
01ad0ed0 fix(deps): update module github.com/containers/common to v0.60.4
60b5f0e8 fix(deps): update golang.org/x/exp digest to 701f63a
f240ce07 vendor: switch to moby/sys/capability (#2428)
ee618142 Document that zstd:chunked is downgraded to zstd when encrypting
0fd65fb7 fix(deps): update module github.com/containers/common to v0.60.3
e39efb10 Packit: split out ELN jobs and reuse fedora downstream targets
7da6ea07 Packit: Enable sidetags for bodhi updates
6d2672c9 chore(deps): update dependency golangci/golangci-lint to v1.61.0
b113a2de fix(deps): update module golang.org/x/term to v0.24.0
9166a97b Use a range expression
795705e4 Update to Go 1.22
bebbbaee Restrict Packit targets to those that support Go 1.22
6b13950b fix(deps): update golang.org/x/exp digest to 9b4947d
115a6de9 chore(deps): update dependency containers/automation_images to v20240821
a8170067 Update skopeo-generate-sigstore-key.1.md
dd5ce5d9 [CI:DOCS] Update dependency golangci/golangci-lint to v1.60.3
229c9fad fix(deps): update module github.com/masterminds/semver/v3 to v3.3.0
6e0b7a12 fix(deps): update module github.com/containers/common to v0.60.2
b9620327 [CI:DOCS] Update dependency golangci/golangci-lint to v1.60.2
3151e088 fix(deps): update module github.com/containers/image/v5 to v5.32.2
d3827613 Replace egrep with grep -E
df598d7f [CI:DOCS] Update dependency golangci/golangci-lint to v1.60.1
17da5826 fix(deps): update module github.com/containers/common to v0.60.1
38e29cdf fix(deps): update module github.com/containers/image/v5 to v5.32.1
84558d45 fix(deps): update module golang.org/x/term to v0.23.0
39dccc2a The fakeroot package doesn't exist in RHEL.
d17c8093 Bump Skopeo to v1.17.0-dev
88aad2e5 Bump Skopeo to v1.16.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ea15fd0614 |
runc: drop runc-docker
The changes carried in runc-docker are no longer required, and if they become relevant again, they don't belong in the base recipe. This is the first part of the change, we drop runc-docker + patches and update runc-opencontainers to RPROVIDE runc-docker in case there are referenced that we don't know about. There shouldn't be any, since virtual-runc has been the RPROVIDE of choice for some time. We keep runc-opencontainers for now, since there may be alternate runc implementations in the future. In about a year, we'll unify the .inc and .bb if no new implementations have been proposed. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |