mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2026-01-27 10:41:26 +01:00
master
1267 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Vishwas Udupa
|
03fe48aa5c |
lxc: delete empty lxc state directory
lxc systemd service [1] defines a StateDirectory to ensure that
the /var/lib/lxc directory is automatically created and managed
by systemd during service startup.
Do not create lxc directory at build time for systemd.
[1]
|
||
|
Bruce Ashfield
|
e9bd9c9e61 |
nerdctl: regenerate go-mod/shallow/hybrid
There were some issues with hyrid vcs mode and shallow clones. The tools have been updated to deal with those issues, so we regenerate to pick them up. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
58dd80d89d |
k3s: regenerate go-mod/shallow/hybrid
There were some issues with hyrid vcs mode and shallow clones. The tools have been updated to deal with those issues, so we regenerate to pick them up. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
56a7b72a93 |
docker-compose: regenerate go-mod/shallow/hybrid
There were some issues with hyrid vcs mode and shallow clones. The tools have been updated to deal with those issues, so we regenerate to pick them up. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
8fbc17f8db |
docker-compose: refresh hybrid gomod files
After a hybrid fetcher fix to remove duplicates, the following
was run:
python3 scripts/oe-go-mod-fetcher-hybrid.py \
--recipedir recipes-containers/docker-compose/ \
--git "github.com/containerd,github.com/kubernetes"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ce23494e15 |
nerdctl: convert to hybrid gmod-vcs
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e05c2caec1 |
k3s: convert to hybrid gmod-vcs
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
175bf1f03c |
docker-compose: convert to hybrid gmod-vcs
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
38e9d728a3 |
docker-compose: update to v5.0.0
Bumping compose to version v2.26.1-849-g9fada6cc2, which comprises the following commits:
9fada6cc2 Bumped build images: tonistiigi/xx:1.9.0, crazymax/osxcross:15.5
85ea24b62 Fix grammar: pluralize 'service' and remove apostrophes in lets
000a4a4b9 check buildx version before comparing it
08de90c26 bump golang 1.24.11
cfcee45a8 fix SDK example
13d70b1c1 refactor: replace interface{} with any for clarity and modernization
72f4d655e Bump compose go to v2.10.0
dc66e6bad golangci-lint: use gci formatter instead of goimports
8d9d5259e Fix grammar: change 'adopted' to 'adopt' in Docker Swarm note
b32297dcc add --wait option to start command
af8cac576 just warn user
8477a85ce feat(model): reject runtime flags in model configuration
6ee714635 build(deps): bump golang.org/x/crypto v0.45.0
f28503426 build(deps): bump github.com/hashicorp/go-version from 1.7.0 to 1.8.0
e0977c2df only check for env_file
2d569916f skip includes preparing publish
3975f0215 refactor: use strings.Builder to improve performance
fa832d72d Added support for build.no_cache_filter
822f5a702 refactor: replace Split in loops with more efficient SplitSeq
68bb7a71b bump dependencies
6f365395e Fix support for port range
305293462 build(deps): bump github.com/docker/buildx from v0.29.1 to v0.30.0
428abab16 build(deps): bump github.com/moby/buildkit from v0.25.2 to v0.26.0
755618e70 build(deps): bump go.opentelemetry.io/otel v1.38.0, go.opentelemetry.io/contrib v0.63.0
c47b8c32e Dockerfile: update golangci-lint to v2.6.2
89d394483 fix linting issues
f2b14fe1a gha: use custom names for matrix
bd2257b6d gha: test against docker v29, v28
d7e5f20eb images command should display image Created time or N/A if not available
2b4543935 next release will be major version v5.x
f0dce1b97 sdk docs: patch
6e55832b1 add (restore) support for detach keys
45def5111 make DRYRUN_PREFIX a display attribute, move DryRunClient out of pkg/api
aff5c115d move progress UI components into cmd
5ef495c89 removed unecessary check
9de7e2a38 SDK docs
dc90c4e44 Grammatical fix
91e1753d8 Grammatical fix
9db27a65c Making the American/British spellings consistent to the error messages
efd7424da build(deps): bump golang.org/x/sync from 0.17.0 to 0.18.0
02109c8d3 build(deps): bump golang.org/x/sys from 0.37.0 to 0.38.0
c37ede62d on up buildOptions must include all enabled services
7eb5adeef introduce --insecure-registry, reserved for testing purpose
0793ad7c6 document support for OCI and Git remote resources
8137b2bce build(deps): bump github.com/docker/cli
4e3372b47 build(deps): bump github.com/containerd/containerd/v2
fef26fb37 build(deps): bump github.com/docker/docker
a32e13a2b build(deps): bump github.com/moby/buildkit from 0.25.1 to 0.25.2
67e39a41f fixes
dc1283289 fix: use NewParallelCLI in compose_run_build_once_test.go
0c596ed3c build(deps): bump github.com/containerd/platforms
13870006f disable progress UI when build is ran with --print
af579ebd4 drop support for internal buildkit builder
fc2a7d13f from Compose CLI, we know the streams used to configure LogConsumer
d70bb8cf5 distinguish event (short) status text and details
bff3d3530 render events in order they were first received
b80bb0586 Migrate CLI commands to use LoadProject API
d74274bc0 Add LoadProject method to Compose SDK API
10f15cacd fix typo in error message
3658a063b add AlwaysOkPrompt to replace 'AlwaysYes' current implementation'
74a4ccdd8 fix various linting issues
6719f47bd test checking bake internal load build definition
3eb2934eb bump compose-go to version v2.9.1
c416ea703 fix compose_run_build_once_test.go
0d396bbac fix(git): Add validation for Git subdirectory paths to prevent traversal
fc74c7896 Update e2e tests in compose_run_build_once_test.go to use project names for Docker Compose commands.
658bff335 Revert "no parallel in compose_run_build_once_test.go"
80030e139 no parallel in compose_run_build_once_test.go
6a35be511 lint fix
0c854a6ab add e2e tests
557e0b6ec fix(run): Ensure images exist only for the target service in run command
a8933c91e stop progress UI during build to prevent interference with buildkit Display
7e3993bca skip Start[ed|ing] events to avpd mix with container logs
fd4f2f99c register TTYWritter as an Event Processor
ae25d27e5 remove unused RunWithStatus, always pass operation as title
394466683 use eventBus to collect tasks progress
e5c8b6864 decouple Event from tty progress writer
bf50c9919 pretend cli.Out is a containerd console.File
8274be8d0 configure Compose service with io.Reader and io.Writer remove usage of internal IO interfaces
86e91e010 Add streamOverrideWrapper to intercepts command.Cli stream methods and transparently returns custom streams when provided via options Add new GetConfiguredStreams function to Compose API definition
e1678c5c4 Introduce abstractions to support SDK usage without requiring Docker CLI
5924387e8 run hooks on restart
7f668bd7f Setup Compose service using functional parameters This commit introduces WithMaxConcurrency and WithDryRun to replace direct mutators on composeService commands and flags are translated into a set of functional parameters which are eventually applied as a ComposeService is created just before being actually used by a command
3ce52883c prompt default implementation to prevent a panic
ac3b8fd8a Code Cleanup
8619f5d72 Fix help output for "exec --no-tty" option
e59150baa fix OCI compose override support
6a90742ef Test to check writeComposeFile detects invalid OCI artifact
6007d4c7e publish env_file references as opaque hash to prevent paths conflicts
69bcb962b Enforce compose files from OCI artifact all get into the same target (cache) folder
9b4fcce03 introduce WithPrompt to configure compose backend to use a plugable UI component for user interaction
da5c57c29 test digest or canonical reference, not only tag, when checking if an image is already present
e25265dd5 remove unused code to only rely on api.Service
e19e1278b fail build if minimal required version of buildx isn't installed
585c4db4f Compose can't create a tar with adequate uid:gid ownership as we can't get container UID/GID as int by ContainerInspect revert https://github.com/docker/compose/pull/13288
be8c7e6c6 make CTRL+Z a no-op operation on Windows
27f59d7f4 Detect failure to access os.TempDir
2681ed17a mutualize code from injectSecrets / injectConfigs
ee75be342 Set secret/config uid:gid to match container's USER
157617480 fix race-condition bug in publish command
88aae9c46 support Ctrl+Z to run compose in background
775530234 use fixed version of compose bridge transformer images to avoid CI issue on Compose when a new version is released and change the outputs
147923c44 bump golang to version 1.24.9
289faae5f fix(publish): in `publish()`, select all profiles in the `project` to publish.
e7aa484b7 fix(publish): in `processFile()`, load the compose file passing the `project.Profiles` to the `loader.Options`.
ae3309afa pkg/compose: build with bake: drop support for buildx v0.16 and lower
0b5fb36eb build(deps): bump docker/buildx v0.29.1, moby/buildkit v0.25.1
63920c4cc pkg/compose: align classic builder implementation with docker/cli
a03f2562d bake only interpolates ${*}
a07f2b8de build(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0
f45a3ebcf build(deps): bump github.com/docker/cli
7fec70b6c build(deps): bump github.com/docker/docker
ce463d50b Fix: set PWD only if not set
fa7e85ed8 Write error to watcher error channel if Start() fails
d9423f687 build(deps): bump github.com/docker/cli
5add90240 build(deps): bump github.com/docker/docker
07602f207 publish Compose application as compose.yaml + images
cf7e31f73 escape $ in bake.json as interpolation already has been managed by compose
fa0812745 use containerd client for OCI operations
4ee52ad16 pass bake secrets by env
4a4776ec5 cmd/compose: fix minor linting issues
713de5bb9 pkg/compose: explicitly map AuthConfig fields instead of a direct cast
9ded1684c gha: update test-matrix: remove docker 26.x
8bc8593fd provider services: use '--project-name=' notation
8978c1027 use containerd registry client
032e0309e cmd: pluginMain: use WithUserAgent option
38ba35e16 pkg/mocks: re-generate mocks
56e0ba808 build(deps): bump github.com/docker/docker, docker/cli v28.5.0-rc.1
9752fa550 pluginMain: remove uses of DockerCLI.Apply
4761fd88b pkg/compose: build: remove permissions warning on Windows
02c8e6354 pkg/watch: remove unused IsWindowsShortReadError
ab7a6e932 pkg/compose: remove uses of deprecated mitchellh/mapstructure module
2ca7b96e3 resolve secrets based on env var before executing bake
a32dc3da7 test: Set stop_signal to SIGTERM
db260938c bump compose-go to version v2.9.0
5aea94794 Update comment on run command with tty & piped command
d07c437ce dectect if piped run command and disable tty if so
da72230c3 remove tty attribute from run options and use dedicated variable to avoid confusion
a429c09df fix support for build with bake when target docker endpoint requires TLS
df3c27c86 add deprecation warning for x-initialSync + e2e test
956891af5 add support of develop.watch.initial_sync attribute
a47334105 volume ls command can run without a project
385b3f5c9 bump compose-go to version v2.8.2
2d482e61c propagate docker endpoint to bake using DOCKER_* env variables
c75418ee0 Apply suggestions from code review
0cdc5c9bf rename --no-TTY => --no-tty for consistency
b768232c0 document (hidden) --tty --interactive flags
09689400e fix run --build support for service:* reference in additional_context
cb3691154 detect container is restarted
b387ba4a0 only load COMPOSE_* from $PWD/.env
7cd569922 only propagate os.Env to bake, not the whole project.Environment
eec2bb7ea only force plain mode build if progress is set to auto
2c15aef2e build(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0
290366205 build(deps): bump golang.org/x/sync from 0.16.0 to 0.17.0
a91ca95a7 bump golang to version 1.24.7 to align with moby/moby version
beb81a73f pkg/compose: remove aliases for container-state consts
f21720787 pkg/compose: use state consts from moby API
02ffe2ac6 prefer application container vs one-off running `exec` without index
f48131fb6 build(deps): bump github.com/spf13/pflag from 1.0.9 to 1.0.10
4dd369bdc fix sigint/sigterm support in logs --follow
ad73766bf build(deps): bump github.com/docker/buildx from 0.28.0-rc2 to 0.28.0
3c1f5a181 go.mod: bump github.com/docker/docker, docker/cli v28.4.0
42d1e4c33 build(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1
6ca8663bd build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.9
b33ecf65e go.mod: bump buildx v0.28.0-rc2, buildkit v0.24.0-rc2
04b8ac5fe Unquote volume names in creation events
d09948da4 build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
f1efbb832 use enum-consts for State and Health
1d52012b8 go.mod: bump buildkit v0.24.0-rc1, buildx v0.28.0-rc1
1d69f4a68 pkg/compose: composeService.Up: rewrite without go-multierror
6078b4d99 Fix: use image created time when last tag time is not present Signed-off-by: Kian Eliasi <kian.elbo@gmail.com>
73e593e69 Fix: incorrect time when last tag time is not set
51499f645 pkg/compose: pull: use native multi-errors
5165b0f81 internal/tracing: replace go-multierror.Group with sync.WaitGroup
93dd1a455 internal/sync: replace go-multierror.Group with golang.org/x/sync/errgroup
ba3f5664c cmd/formatter: remove unused SetMultiErrorFormat
c420bc44c check the assume yes publish flag command before the presence of bind mounts
60681a824 Add e2e test to verify `docker compose down` works even when env file is missing
19ad737ee Fix runtime ops with missing env file
d3a260e53 add completions for the --progress flag
e75329dce build(deps): bump go.uber.org/mock from 0.5.2 to 0.6.0
1dc0be2c3 go.mod: github.com/docker/buildx v0.27.0
3bac9ffd0 Refactor to use maps.Copy
f266715dd add --provenance and --sbom flag to generated bake command line, also add attestation per-service configuration to generated bake target
c2cb0aef6 only monitor attached services on up command
fbc62d111 bump golang to 1.23.12
0d40064ce build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
91a6eafa1 build(deps): bump github.com/docker/go-connections from 0.5.0 to 0.6.0
f36ee00f7 Add go as a prerequesite in build instructions
29ede3ba7 build(deps): bump github.com/containerd/containerd/v2
bf6d7bf47 define pull and no_cache from either service or flags values when building with bake
fc66da06d pkg/compose: simplify getting auth-config key
909211dd6 use cli-plugins/metadata package
0dc9852c6 build(deps): bump github.com/docker/docker
a47870223 build(deps): bump github.com/docker/cli
2c12ad19d use log API for containers we didn't attached to
038ea8441 apply BUILDKIT_PROGRESS value when building with bake
9e98e6101 add missing _MODEL suffix to model variable pass to dependent services of a model
52f04229c fixed lint error
28895d032 fix lint error
a926f7d71 Elimneted magic string
fe046915e buildkit require os.Stdout to access the raw terminal
adbd61e5d fixed lint error
e37ac0432 deleted useless comment
cab2c2a44 Refactoring of redundant condition checks
1946de598 improved lint error
8e29a138a improved test
3c8da0afe Add test of json.go
1b12c867c add Streams Comment
1a4fc55fd bump compose-go to v2.8.1
efc939dce add info about models usage to OpenTelemetry spans
d6e9f79ba Integration of SetAttributes calls
b4c44a431 Eliminate magic number in init functions
fb5a8644c Efficiency of ansiColorCode function
95660c5e5 bump buildx to v0.26.1
f6ddd6ae8 use output registry when push true and load to docker store if not
4ae706695 build(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2
fd954f266 show build progress during watch rebuild
d62e21025 forward git command error to user
6a2d16bd1 bump compose-go to version v2.8.0
4d47da6dc do not pass user id on Windows system as engine is not able to handel it
8f91793fb introduce build.provenance and sbom support
1d2223fb2 pkg/compose: use local copy of pkg/system.IsAbs
d4f600071 remove import aliases for containerd/errdefs
c50d16cd7 pkg/compose: remove uses of moby/errdefs
3875e13fa simpler stop UI
c89f30170 force plain displaymode if stdout isn't a terminal
41a9b9188 warn user COMPOSE_BAKE=false is deprecated
5fc2b2a71 fix yaml indentation
b1cd40c31 swarm
362ab0733 build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7
f35d2cfb3 monitor must watch events even when context is cancelled
17ba6c718 abstract model-cli commands execution with a model (pseudo) API
1c37f1abb use logs API with Since to collect the very first logs after restart
485b6200e (refactoring) introduce monitor to manage containers events and application termination
8c17a3560 don't run navigation menu if stdin isn't a terminal
6b9667401 fix the helm bridge e2e tests after the latest update of the templates
9a1e589ce Fix report image name in bake result
5e147e852 add default compose labels to images built from bake
29308cb97 keep containers attached on stop to capture termination logs
0b0242d0a add dry-run support to bake build
5a704004d Add a space character to separate the timestamp from the log message
cb9591001 chore: print model attribute instead of model name used in compose file
f42226e35 feat: add --models flag to config command
0cc3c7a55 bump dependencies
f7ee9c8a0 feat(os): add FreeBSD support
35efa97b7 feat: add since & until flags to events command
9e17a091b build(deps): bump github.com/docker/docker
4bbc6c609 add USER_AGENT variable to cmd when shellouting
69f1430a4 resolve Dockerfile symlink but file name
7cf7c6414 build resolves enabled service after project has been loaded
0e0ed91a3 fix: lint errors
66524e772 feat: add --networks flag to config command
c626befee fix the way we're checking if the provider metadata are empty or not
60ee6adcd a single place for shell-out command setup
8faf1eb80 build(deps): bump github.com/docker/cli
3b0601b67 build(deps): bump github.com/moby/buildkit from 0.23.1 to 0.23.2
f42374bb1 add a Done event to model progress display
b046a5ef7 chore: fix some minor issues in the comments
1570c6c07 bump go-viper/mapstructure to version v2.3.0 Fix https://github.com/advisories/GHSA-fv92-fjc5-jj9h
674e13fb6 bump golang to v1.23.10 Fix Vulnerability Report: GO-2025-3751
6fa173124 (reactoring) avoid a global variable by introducing logConsumer decorator
2c69fc3d4 pkg/compose: remove redundant uses of strslice.StrSlice
317ebcd3b implement model_variable
5cf1f0e2a bump compose-go to version v2.7.1
6198ed5bd fix linting errors
00ccddbde add volumes command test cases
63b441401 add volumes docs/reference/
3a7982fe4 add service filter to volumes command
5430caa17 add volumes command
ee1b1e0a9 run docker model configure
26e46d7cc e2e tests in CI
a9e76943f introduce support for models
b6a0df8d3 e2e compose run --env
5a063b751 fix provider concurrent environment map accesses
ae49bba9b build(deps): bump github.com/docker/docker
51acc5845 mount /var/run/docker.sock for --use-api-socket
7c999d7f9 improve publish bind mount warning message
ad750d614 remove publish limitation on bind mount list all bind mounts and ask user validation before publishing
fe382df50 build(deps): bump github.com/docker/cli
6501d59ef pass project.environment to bake
33a782572 fix: typos
65803ea12 remove error message from exec outpout by default Add the error as a log for verbose mode
f61337937 make sure the post_start hooks fails before we were assuming the container will be close before the post_start will be executed
3553aa26a add a default statut messsage to exec error to avoid empty line display
257ea7b75 Swap to Reader in bake to avoid hangs on output
d219aa66f don't fail down cmd if services with pre_stop hook already stopped/removed
c9ebfad78 exclude provider services from the list of dependencies that Compose should wait for
8e57362a0 use errdefs.IsNotImplemented to check if the logging is not implemented
29630f184 check progress default value instead of empty string to use BUILDKIT_PROGRESS env variable value
6514c680a only expose API socket to service asking for it
3394bf031 propagate target docker host set by --host to Bake
832a08f57 build(deps): bump github.com/moby/buildkit from 0.23.0 to 0.23.1
aadce87b1 inject secrets/config just before container is started
b3207c455 setting buildOptions.Services triggers image to be always rebuilt
769b7391b don't create from run command during dependencies creation process
149b882eb don't create from run command during dependencies creation process
c97e40e2b pkg/compose: remove uses of ExecOptions.Detach
22e23bd4d networkMode
2dde5faeb add support for cache_to with bake
f7825a56b bump buildx to v0.25
4cf075ea0 bump compose-go to v2.6.5
4f491ffa9 fix panic using w shortcut on project without watch support
ea1c26d22 restore ContainerName in images --json
9a5fa05ad add (temporary) support for use_api_socket
276c22945 move `run` logic inside backend
eef448dc6 build(deps): bump github.com/containerd/containerd/v2
343117233 build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
f599a8cdd add support for extra_hosts building with bake
63b06f556 fix panic on failure starting plugin server
1d34661e9 fix support for additional_contexts with service sub-dependencies
0f9e6ab83 Fix the generated manifest for compose artifacts so that the empty config is not added as a layer.
15c9651a3 restore os.Remove(metadataFile)
4893a8b9a don't create metadatafile, just generate a random name
97530790f only look for required image in bake metadata
213c03f99 produce bake targets for all services, group for services to build
ebd7b761f sanitize service name so they can be used as bake targets
ea48480d8 Restore images format list format behaviour
8151b5928 bump golang.org/x/sync v0.15.0
ec49baca5 do not forgot to remove the bake metadata file few DD e2e tests failed on Windows due to permission issues
7b9ad9624 fix SIGSEGV on Enable Watch
9b67a48c3 (refactoting) Move watch logic into a dedicated Watcher type
0d0e12cc8 use Bake by default
92fafccfb add validation for required parameters of provider service when metadata are available
fee8aee8f save provider metadata for Docker LSP
40f5786e6 add support of metadata subcommand for provider services This command will let Compose and external tooling know about which parameters should be passed to the Compose plugin
61e44da93 debug message to help diagnose platform mismatch
0bf7d1ea2 pull does not require env_file being resolved
80ace63df build(deps): bump google.golang.org/grpc from 1.72.1 to 1.72.2
27e90a3fd end-to-end test
3ca75bdf5 Fix the inability to restart the Compose stack after network configuration change
eb3074bbd include platform and creation date listing image used by running compose application
f4fc010d6 build dependent service images when required
693b9ef07 fix support for BUILDKIT_PROGRESS
046879a4a replace uses of golang.org/x/exp/(maps|slices) for stdlib
7c79b2300 pkg/bridge: fix importShadow: shadow of imported package (gocritic)
ad4cbee49 bump github.com/docker/docker, docker/cli v28.2.2
60256a875 fix typo in suggestion log
45bd60c33 resolve symlinks while making dockerfile path absolute
cf89fd1aa also (re)start dependent services after watch rebuilt image
23fef850b prefer use of slices.DeleteFunc
12b73bea7 remove utils.Contains to prefer slice.ContainsFunc
2e71440be refactor: use slices.Contains to simplify code
d49a68ecb bridge - run transformer container as current user
be83f63f2 add e2e tests for bridge convert and transformers ls commands
9a9227ce6 add new bridge commands documentation
024f8ebdc add convert subcommand to bridge command
8c622da20 add bridge command and transformations subcommands
bbb2b76a1 bump cli-doc-tools to v0.10.0 and update the documentation to pass CI checks
e45e58b3e bumpd buildkit v0.22.0 and buildx v0.24.0
f52af4c86 bump compose-go to v2.6.4
a54814ff3 e2e test
a2d7548ca fix up --build with additional_context dependency
8a2cb90a3 example provider implementation
cc50ada72 report error (re)creating container
5c74f0799 build(deps): bump github.com/containerd/containerd/v2
7e198ee6a remove provenance build flag for now
0566431c6 only use attestation when building image outside the development inner loop when building a image, by default attestation are generated and modify the image ID which trigger a container recreation on up, run command even if there isn't any changes on the image content itself
4f6cc2a33 run ContainerStart sequentially
2352a4a01 introduce config --lock-image-digests
1f076a378 bump compose-go to v2.6.3
009a23951 remove convert alias from config command
305957428 build(deps): bump google.golang.org/grpc from 1.72.0 to 1.72.1
1229a6938 build(deps): bump github.com/containerd/containerd/v2
f2a88e02a ensure build dependencies are enabled
7f9101845 report cancelled pull after another one failed
944e5e67a do not throw an error on build with provider services
23fc76a54 Fix quiet option when using COMPOSE_BAKE=1
053d22582 append .exe to provider name doing executable lookup on windows
93b597cce remove Docker EULA licensing which isn't relevant since Docker switched to a subscription model
4dcaf94c3 add support of 'debug' messages in the communication between Compose and provider binaries
07e7619f4 set provider environment
ed81185c5 fix provider info message
22f8a7009 provider.options can be an array
91a0aa026 skip push step for provider services
7cea455c4 simplification
559a51e59 build(deps): bump golang.org/x/sys from 0.32.0 to 0.33.0
480a556bf build(deps): bump golang.org/x/sync from 0.13.0 to 0.14.0
626336119 build(deps): bump github.com/moby/buildkit from 0.21.0 to 0.21.1
9ee03c3fe bump compose-go to v2.6.2
4bf18d232 docs: regenerate
f0f47a8aa e2e: add tests
d6e3fa6d7 Fix config --variables not honoring the --format flag
16e83f002 introduce build --check
2dbef234d document behavior on missing extension
20f0ffec0 seach for provider binary in PATH
cee6a3c66 document extensibility using service.provider
fc8c56b40 select services implicitly declared by a service:xx build dependency
9c998a934 fix collect image digests for service images built by bake
0403f0d76 e2e test for start_interval
91d04a5ca build(deps): bump go.uber.org/mock from 0.5.1 to 0.5.2
d2274ebe6 display proper event message for provider services on up and down
6e3565218 fix support for remote absolute path
5bb46035c Set --progress flag default value from env if provided
f8dae06df Add support for COMPOSE_PROGRESS env variable
955e4ed94 introduce networks.interface_name
60385e606 bump compose-go to v2.6.1 fixing parsing of npipe as volume type
f5491328b remove support of Synchronize File Shares integration with Docker Desktop
f46689a75 build(deps): bump github.com/containerd/containerd/v2
8fd0c297f build(deps): bump google.golang.org/grpc from 1.71.1 to 1.72.0
f3bbfdae5 build(deps): bump github.com/docker/docker
322c531a8 build(deps): bump github.com/docker/cli
bf6b44726 fix: concurrent map writes when pulling
a96c305b2 build: write --print output to stdout
2d7cd2a99 go.mod: bump github.com/docker/cli v28.1.0
cbb616ca0 go.mod: bump github.com/docker/docker v28.1.0
640c7deae downgrade go-difflib and go-spew to tagged releases
75b48cfc8 go.mod: bump github.com/docker/buildx v0.23.0
047899c3e go.mod: bump github.com/moby/buildkit v0.21.0
f91b41875 go.mod: bump github.com/docker/docker-credential-helpers v0.9.3
42cccb1fe go.mod: bump golang.org/x/net v0.39.0
674af0d66 go.mod: bump golang.org/x/crypto v0.37.0
877d23233 go.mod: bump golang.org/x/term v0.31.0
4bba13233 go.mod: bump golang.org/x/text v0.24.0
a786e70b0 go.mod: bump golang.org/x/time v0.11.0
13cd780f3 migrate to use github.com/moby/go-archive
8e2f799cd chore: make function comment match function name
2a84dfecf build(deps): bump golang.org/x/crypto from 0.32.0 to 0.35.0
f6913b086 build(deps): bump go.uber.org/mock from 0.5.0 to 0.5.1
d629fffa9 build(deps): bump google.golang.org/grpc from 1.71.0 to 1.71.1
7471e16d8 build(deps): bump github.com/moby/buildkit from 0.20.1 to 0.20.2
51907d9f7 fix zizmor security alerts on GHA workflows
a3f88a0a1 test to cover preference for bind API
c83f1285a use bind API for bind mounts
29e642e23 ci(bin-image): free disk space
0c37c1096 mount API is not strictly equivalent to bind
43cc2be8c build(deps): bump github.com/compose-spec/compose-go/v2
01e83defc introduce volume.type=image
846161d44 Fix linting issue with resp.Body.Close()
0bcc629fb refactor: improve Desktop client structure
482b62228 pkg/compose: implement Export using atomicwriter
ee3314302 capture git fetch output when debug output is enabled
cb0b5f6e2 build(deps): bump golang.org/x/sync from 0.12.0 to 0.13.0
138485353 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
096b1e32d plugin provider support: check docker model runner status
bf71138df cleanup runPluging function
a1f673dcf Update secret detector to fix vulnerability https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp
02c747a7d bump compose-go to custom version of v2.5.0 should be replace by v2.5.1 it will be released
88f4f265d communicate with plugin using json events
e67348222 DRAFT external services plugin support
b54338070 feat(run): Add --quiet and --quiet-build options for the run command
2e75185a0 bump golang to 1.23.8
7bedb5a02 bump golangci-lint to version v2.0.2 and apply migration script
f9cd4d0b1 bump docker,cli,buildx
0badcf3c8 include implicit build dependencies in build command
ec49db98d fix: replace docker-compose.yml with compose.yaml
e5a353b34 fix: replace docker-compose.yml with compose.yaml
43e456145 fix scale completion
75368c785 introduce `build --print` to dump equivalent bakefile
6e814eac3 fix(secrets): Reverted secrets file mode 440 -> 444
a0d1c3f94 introduce config --no-env-resolution
0c5bd16da bake parses "${}" in DockerfileInline as a variable
b0badf1eb Set watch option --prune=true as default
342a2a9e7 Fix support for depends_on.restart in up and restart commands
7814e5798 build(deps): bump github.com/containerd/containerd/v2
42b2e1109 build(deps): bump github.com/docker/buildx from 0.21.2 to 0.21.3
6a8c0988c run only loads required service env_file and ignores others
9129abe51 Fix edge-case bug path prefix check for watch & bind mounts
f38f3f754 PWD
ea07ba8e2 fix support for secret set by env inside included file
432ae23b0 Test commandName subcommand order
b6f313b8a bump compose-go to version v2.4.9
13618756d make publish a regular command of Compose
6c1e21572 lint: address gofumpt issues
33e863ac6 fix linting issue
f70209cf1 review: move Summary/Replica collection from cmd/ to pkg/
62e832eb5 compose top: reduce tabwriter padding
80e8fda14 compose top: ensure CMD is right-most column
375a27978 top: expose container labels
a766e1669 condense output of `compose top`
793c6f171 add cli.isatty attribute to spans generated by compose
8e3e1f7f8 build(deps): bump tags.cncf.io/container-device-interface
83cafe283 Add support to pass env-from-file to docker compose run
55b5f233c use Defang secret-detector to identify potential secret leaks before publishing OCI artifacts
c3a0c3568 implement extends.file replace without yqlib
8615e9a7c deprecate --y, prefer --yes
b23728941 only load env_file after services have been selected
1a7343bc8 build(deps): bump github.com/moby/buildkit from 0.20.0 to 0.20.1
41e609404 add warning message when a remote configuration include an another remote config
66a47169d Publish compose file with required siblings used by `extends`
4c72d3a0e build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
59f39b999 build(deps): bump google.golang.org/grpc from 1.70.0 to 1.71.0
7ab65ba12 build(deps): bump golang.org/x/sync from 0.11.0 to 0.12.0
d9f05d72d improve message suggesting using bake
7b88c5b0e display interpolation variables and their values when running a remote stack
eaf980094 build(deps): bump github.com/opencontainers/image-spec
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
9d5c2aed90 |
docker-compose: update to go-mod-vcs format
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
233ad1457f |
nerdctl: update to to v2.2.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
b4dfb683a9 |
nerdctl: update to go-mod-vcs format
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
02f6761794 |
k3s: convert to go-mod-vcs based build
Convert k3s from the old vendor/modules.txt approach to the new go-mod-vcs build system that fetches Go modules via git. Changes: - Update k3s_git.bb to inherit go-mod-vcs class - Add go-mod-git.inc with SRC_URI entries for all module git repos - Add go-mod-cache.inc with module path mappings - Remove old src_uri.inc, relocation.inc, and modules.txt - Update to k3s v1.34.1+k3s1 The go-mod-vcs class will: 1. Fetch all module sources via git (defined in go-mod-git.inc) 2. Build GOMODCACHE with proper zip files and hashes 3. Enable fully offline, reproducible Go module builds This eliminates the need for vendored dependencies or network access to Go module proxies during the build. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jaeyoon Jung
|
71801fb8a1 |
lxc: Fix build with musl
Signed-off-by: Jaeyoon Jung <jaeyoon.jung@lge.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5459ca4fdc |
lxc: update to v6.0.5-tip
Bumping lxc to version v6.0.5-17-gf9ff9ea2a, which comprises the following commits:
f9ff9ea2a build(deps): bump actions/checkout from 5 to 6
c21296262 apparmor: skip /proc and /sys restrictions if nesting is enabled
be5ce5529 Update lxc.spec.in to use meson
e716bd6c8 config/apparmor/abstractions: Drop manually generated container-base file
5d0182b0d config/apparmor/abstractions: Fix meson build generation of container-base
539424964 build(deps): bump actions/upload-artifact from 4 to 5
fdc302322 builds workflow: make .orig.tar.gz unique per build
d0d4f9896 github: Drop focal source packages
944118acd add MFD_EXEC and MFD_NOEXEC_SEAL flag to memfd_create
ca9ecef01 Automatically detect compression format in the lxc-local template
50bddb8e3 lxccontainer: check if target exists before remove in create_mount_target()
d692ba5a9 Standardize log file create mode to 0640
0e84c43d7 Enable systemd to create /var/lib/lxc at runtime with StateDirectory
277634689 commands: Fix indent
9184960a8 README: update links
7e0e0d1ae Rename CONTRIBUTING to CONTRIBUTING.md
675ffcd71 README: Fix CI links
9e4e69ed1 Release LXC 6.0.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Matt Fischer
|
19241a745f |
Add gpgme as a RDEPENDS for podman
podman needs gpgme in order to run. In some usages, this is being pulled in transitively by skopeo, but since skopeo was removed as a podman dependency last year, it now needs to be direct. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cd391e5d74 |
umoci: update to v0.6.0
Bumping umoci to version v0.6.0-3-gd631328, which comprises the following commits:
d631328 deps: update github.com/AdaLogics/go-fuzz-headers to latest
35992ba VERSION: back to development
1c44d6f VERSION: release v0.6.0
7fb9b5a man: umoci-stat: update output examples
0242283 umoci new: include host ARM variant by default
74874af config: add support for platform variants
2ac8e55 oci: config: fix annotation precedence
a8b1c9a test: config: add umoci-stat verification checks
737f534 test: config: add tests for config.json annotation conversions
4a95896 test: check annotations for config --{os,architecture}
61f658e config: add "platform" prefix to "os" and "architecture" setting names
21806cb deps: update to runtime-spec v1.2.1
f7fb0ec test: disable oci-runtime-tool validation
8873e3a build(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0
b3e5a6a build(deps): bump github/codeql-action from 3 to 4
bce0b02 mutate: only embed <=10kB blobs in embedded descriptor test
a058839 gha: reduce ClusterFuzzLite time limit
b7bb5d2 gha: use mode=min caching
94a7c04 gha: run rootless and rootful integration in parallel
b3f2eda gha: add 'complete' job
9726fba CHANGELOG: add image-spec v1.1.1 reference
fe8c448 stat: do not error out for "invalid" config blobs
3668aa9 casext: add handling for empty JSON media-type
b668139 casext: add basic support for embedded descriptor data
a41097f cas: dir: use image-spec-defined constants
cb23ce1 stat: pretty-print image-spec v1.1 fields
eb9098b deps: bump to image-spec v1.1.1
157f759 mutate: handle DescriptorPath rewriting more delicately
5aaf54e pprint: add tests for manifest and config pprint
de8512a casext: improve Blob.RawData sanity check
210b31f assert: move most panics to be in an assertion form
4d6497e build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
f294007 oci: config: use generics more effectively
8b8f449 cmd: add more info to --version
bf94833 CHANGELOG: mention --created and SOURCE_DATE_EPOCH
5be7a47 pprint: add tests for struct pprint
38b2ebe pprint: quote-wrap strings that contain spaces
f8a27d2 pprint: add (empty) suffix when printing collections
97e33f2 pprint: add unit tests
0b3bab0 pprint: quote map keys as well
3856c27 pprint: copy value slice before quoting
1a963c5 make: add empty TESTS variable declaration
72fe818 pathtrie: add benchmarks for PathTrie operations
01fc37c README: move repology to install section
e224b24 test: add 'umoci raw mtree-validate' tests
31e611a tests: use --strict mode for gomtree validation
560465e gomtree: switch to umoci branch
3b97fab test: use "umoci raw mtree-validate" in tests
d207716 umoci: add raw-mtree-validate helper to replace "gomtree --rootless"
0b657e2 oci: layer: truncate mtime when generating archives
b7c5f9f build(deps): bump github.com/cyphar/filepath-securejoin
a5ade2f *: use personal email
a821fb8 build(deps): bump golang from 1.24 to 1.25
b431280 gha: switch to buildx-friendly caching
41a35b9 Dockerfile: migrate to multi-stage builds
7f961b3 test: add SOURCE_DATE_EPOCH tests
ad66eeb oci: add SOURCE_DATE_EPOCH support for reproducible builds
f11b243 CHANGELOG: mention new umoci-stat features
65a984b test: add 'golden output' tests for umoci-stat
fa4d5be stat: include manifest information
4bf1adc umoci stat: include image config information
0fce71a umoci stat: improve quoting of control characters
60e4744 test: only check for history subset of umoci-stat
4a02437 casext: provide raw blob data when fetching parsable blobs
33be2bc dockerfile: build with go1.24
a96b1bb build(deps): bump github.com/vbatts/go-mtree from 0.5.4 to 0.6.0
f87f803 build(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0
52d147a *: apply go fix
6bf0ba1 *: apply gopls modernize
e3d8f81 go: update to Go 1.24
37a7b99 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
911252e gha: use registry.opensuse.org for openSUSE image
2cbd4c4 dockerfile: update to Leap 16.0
44f6ab8 oci: config: gracefully fallback if /etc/resolv.conf doesn't exist
fb3f860 VERSION: back to development
4ff26a3 VERSION: release v0.5.1
df3a23e tests: fix failures on SELinux-enabled systems
c5ac633 oci: casext: properly return errors for GetVerifiedBlob
38fc012 pkg: hardening: disallow negative ExpectedSize
3037f87 oci: casext: explicitly disallow negative-size descriptors
5f31a52 oci: cas: use blob file size as ExpectedSize
8438892 pkg: hardening: improve trailing data test
848aba9 build(deps): bump actions/setup-go from 5 to 6
a90680d build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
88b22f2 dockerfile: install 'file' explicitly
8eaf1be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
fcac36d912 |
skopeo: update to v1.20.0-tip
Bumping skopeo to version v1.20.0-87-gd2a1740f, which comprises the following commits:
144e9151 Add missing newline to the output of (skopeo generate-sigstore-key)
a45ceb03 fix(deps): update module golang.org/x/term to v0.36.0
d287ec07 Fold the test cases of TestSyncTLSPrecedence to a single line each
286c5990 Remove the explicit test name
5699f10b Construct the source context from CLI instead of manually
6d2144e6 Use a real YAML fragment instead of constructing inputs manually
1e6817a1 Merge the two TestTLSPrecedence tests
d80c776b Update dependency golangci/golangci-lint to v2.5.0
c7a3a907 Update github.com/opencontainers/image-spec digest to 6519a62
dbd18b97 sync: honor CLI/global tls-verify unless YAML explicitly sets tls-verify
a489ea39 test-integration-local: use SKOPEO_BINARY if set
f59e8938 Add --sign-by-sq-fingerprint and an integration test
9753a1a1 Also build+test with Sequoia
cba21646 Update CI images
b258da23 Update conditions for signing tests
86853ba4 Update module golang.org/x/term to v0.35.0
0114569b Use strings.SplitSeq
24c2a374 Use bytes.SplitSeq
afc0c0f0 Rely on Go-maintained commit value instead of handling that ourselves
509ed8e1 Update to Go 1.24
53bba51c RPM: build with sequoia for F43+
85e4414c RPM: Re-org distro conditionals
af27d1d8 Packit/RPM: Epoch and version fetching fixes
193b5136 Update CONTRIBUTING.md
cf5b488b [skip-ci] Update actions/stale action to v10
a3cb7bf3 Packit: re-enable CentOS Stream jobs on PRs
8675dece Packit/TMT: enable ELN testing on PRs
e5cf4ec7 Update to tagged container-libs releases
5489763c Update module github.com/spf13/pflag to v1.0.10
4e452f97 Add --dest-force-compress-format option on copy
31ca77ce Packit: enable ELN
9558c9c0 Packit: replace files_to_sync with prepare-files
cd978903 RPM: skopeo-tests only installs dependencies
d5881b94 TMT: additions to make local TMT runs similar to testing-farm
dea3a8f1 Update module github.com/spf13/cobra to v1.10.1
11dedf8b Update module github.com/spf13/pflag to v1.0.9
75eb26e6 Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY]
19f1202c TMT: run systemtest via `make test-system-local`
02055fb0 Makefile: inline logic for test-integration-local
7e235ea3 Makefile: test-system-local checks for SKOPEO_BINARY
bb1f0575 Makefile: validate-local depends on tools
885a4fba fix(deps): update module github.com/stretchr/testify to v1.11.1
d6463199 Migrate storage, image and common to monorepo and remote go.podman.io imports.
2451f10d Allow running CI from rawhide images
8602d2e5 Stop using fgrep
0a70844b Update tests to work with the Sequoia c/image backend
01252ab8 chore(deps): update dependency golangci/golangci-lint to v2.4.0
056d83e6 Adding mohanboddu as community manager to MAINTAINERS.md
2d34849c fix(deps): update module golang.org/x/term to v0.34.0
5538ce8c fix(deps): update module github.com/containers/common to v0.64.1
12340b3e fix(deps): update module github.com/containers/image/v5 to v5.36.1
94ef22e9 fix(deps): update module github.com/containers/storage to v1.59.1
f9d10b3c chore(deps): update dependency golangci/golangci-lint to v2.3.1
af9f6d73 Bump to v1.21.0-dev
e2c1eecd Bump to v1.20.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3fdf80a484 |
runc: update to v1.4.0-rc.2
Bumping runc to version v1.4.0-rc.2-13-g13a5c4ed, which comprises the following commits:
ae199719 ci: only run lint-extra job on PRs to main
8bb53e42 ci: bump golangci-lint to v2.5
52ee0fed all: format sources with gofumpt v0.9.1
61070cc0 CI: remove deprecated lima-vm/lima-actions/ssh
42b405d5 libct: refactor setnsProcess.start
e8e22ae1 libct: close child fds on prepareCgroupFD error
5aa229f7 [1.4] libct: switch to (*CPUSet).Fill
18fbdbe9 [1.4] deps: update to golang.org/x/sys@v0.37.0
46331735 VERSION: back to development
8aeb2a4b VERSION: release v1.4.0-rc.2
a2f2cf31 CHANGELOG: add note about cpu shares changes
0b8a41e3 fix(seccompagent): close received FDs, not loop index
1f9157d6 libcontainer/intelrdt: add support for EnableMonitoring field
d792f9fd [1.4] runc exec: use CLONE_INTO_CGROUP when available
33382519 [1.4] libct: use manager.AddPid to add exec to cgroup
7db9930f [1.4] libct: move exec sub-cgroup handling down the line
f19a4c71 [1.4] libct: split addIntoCgroup into V1 and V2
207a497c [1.4] libct: factor out addIntoCgroup from setnsProcess.start
c443aee7 [1.4] script/setup_rootless.sh: chown nit
910f1345 [1.4] Add memory policy support
12ed7f73 [1.4] events/intelrdt: report full schemata
517e7996 [1.4] libcontainer/intelrdt: add support for Schemata field
3009f9d7 [1.4] libcontainer/intelrdt: refactor tests
a0858eaf [1.4] Update runtime-spec
fb0268a0 libcontainer: remove deprecated package "userns"
edef954c test: runc run with personality syscall blocked by seccomp
a6efa62d libct: setup personality before initializing seccomp
b72f4a8d tests/int/cgroups: Use 64K aligned limits for memory.max
bce56e00 libcontainer/validator: allow setting user.* sysctls inside userns
6297cb16 [1.4] VERSION: back to development
b2ec7f92 VERSION: release v1.4.0-rc.1
081b8c25 CHANGELOG: forward-port v1.3.1 changelog
1931ebf7 CHANGELOG: forward-port v1.2.7 changelog
edc2eb60 build(deps): bump actions/setup-go from 5 to 6
779c9e1d libct: user: remove deprecated module
c04d9c44 ci/validate: add modernize run
76281949 libcontainer/configs/validate: add doc.go
ba68a17a libcontainer/configs: add validator unit tests for intelRdt
b8a83ac2 libcontainer/intelrdt: support explicit assignment to root CLOS
89e59902 Modernize code for Go 1.24
b042b6d4 types/events: use omitzero where appropriate
26602650 Add go 1.25, require go 1.24
237cc980 libct/sys/rlimit_linux: drop go:build tag
a38f42ab tests/int/help: simplify and fix
c5e7bc87 tests/int/selinux: fix for non-standard binary name
121192ad libct: reset CPU affinity by default
d1f6acfa tests: add RUNC_CMDLINE for tests incompatible with functions
ea385de4 tests: add sane_run helper
a8faf925 CHANGELOG: document breaking change of runc update
a876347d build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
eedec9c5 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
96f4a90a Switch to packaged criu on arm
9e0f9890 ci: bump golangci-lint to v2.4.x
cfb22c9a build(deps): bump actions/checkout from 4 to 5
10567484 ci: use criu built from source on gha arm
1cf09680 CI: switch to GHA for arm
db26a717 build(deps): bump golang.org/x/net from 0.42.0 to 0.43.0
8f0bb877 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
bf33fe5f build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
620956c2 libcontainer/intelrdt: use Mkdir/Remove instead of MkdirAll/RemoveAll
f6a52d7f build(deps): bump github.com/seccomp/libseccomp-golang
3b533b23 script/lib.sh: remove obsoleted comment
3a962655 libcontainer/intelrdt: use SecureJoin in NewManager
e6b4b5a1 tests: bfq: skip tests on misbehaving udev systems
ceef984f tests: clean up loopback devices properly
f73e2837 libcontainer/intelrdt: refactor path handling
85801e84 runc update: refuse to create new rdt group
e846add5 libcontainer/configs/validate: check that intelrdt is enabled
57b6a317 runc update: don't lose intelRdt state
314dd812 tests/cmd: simplify getting net.UnixConn
87b8f974 setupIO: close conn on error
7d2161f8 setupIO: simplify getting net.UnixConn
1a26cf3a ci: speed up criu-dev install
1c2810be ci: bump golangci-lint to v2.3.x
66a533eb tests/int/events.bats: don't require root
3620185d rootfs: remove /proc/net/dev from allowed overmount list
46dac589 tests/int/update: fix getting block major
6a0644df build(deps): bump golang.org/x/net from 0.41.0 to 0.42.0
859feb8e build(seccomp): Add audit support for loong64
fc8162e6 build(deps): bump github.com/opencontainers/cgroups from 0.0.3 to 0.0.4
b3432118 tests/int/cgroups.bats: exclude dmem controller
4a6ef6b9 build(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0
a09e7038 docs/systemd.md: amend
aa0e7989 libcontainer: close seccomp agent connection to prevent resource leaks
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
ce3cd423 criu: simplify isOnTmpfs check in prepareCriuRestoreMounts
f91fbd34 criu: inline makeCriuRestoreMountpoints
b8aa5481 criu: ignore cgroup early in prepareCriuRestoreMounts
0c93d41c criu: improve prepareCriuRestoreMounts
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
e0282287 bug:fix runc delete run before delete exec.fifo
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
bc96bc85 libct/seccomp: use maps and slices pkgs
370733b7 libct/cap: rm mapKeys, use maps.Keys, slices.Sorted
3a33b6a3 Make state.json 25% smaller
9c5e687b libct: Use chown(uid, -1) to not change the gid
d31e6b87 ci: bump bats to v0.11.0
8e653e40 script/setup_host_fedora.sh: use bash arrays
a76a1361 script/setup_host_fedora.sh: remove -p from mkdir
af386d1d tests/int: rm some "shellcheck disable" annotations
b48dd651 ci: bump shellcheck to v0.10.0
6e5ffb7c Makefile: bump shfmt to v3.11.0
53931553 libct: log a warning on join session keyring failure
9aeb7905 tests/int/selinux: fix skip message
5ac77ed6 libct/int: add/use needUserNS helper
1d9bea53 .cirrus.yml: install less dependencies
1afa1b86 signals: replace unix.Kill with process.Signal
346c80d7 libct: replace unix.Kill with os.Process.Signal
135552e5 CI: migrate Vagrant + Cirrus to Lima + GHA
d5fe5303 build(deps): bump golang.org/x/net from 0.36.0 to 0.37.0
000cdef7 build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
79e9cf53 doc: update spec-conformance.md
12c2e21f build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0
05e83fc6 deps: bump go-criu to v7
5d6e7e12 VERSION: back to development
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b867f8745c |
podman: update to v1.8.1
Bumping podman-tui to version v0.9.0-587-gcf755526, which comprises the following commits:
cf755526 Bump to v1.8.1
f4dd02c0 Windows style use default colors
6c7ddd29 Bump to v1.8.0
c95ae167 Bump github.com/containers/podman/v5 from 5.6.0 to 5.6.1
d4632385 Bump actions/setup-python from 5 to 6
7d786a06 Bump actions/stale from 9 to 10
e862e758 Bump actions/setup-go from 5 to 6
0929eb9f Bump github.com/spf13/cobra from 1.9.1 to 1.10.1
31a6ba04 Bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
3991403a ui adoption to tview v0.42.0
80c42437 Bump github.com/rivo/tview
ac941ce9 Bugfix ui views - update selected row after last row removal
97377e57 Bump github.com/gdamore/tcell/v2 from 2.8.1 to 2.9.0
e2f0ce0a bats functionality tests update
f378359d System and secret view sort dialogs + code enhancement
8185525e Network view sort dialog
d13317c9 Image view sort dialog
57a2e0f7 Volumes view sort dialog
7bfde770 Pods view sort dialog
7aeb812e Containers view sort dialog
4f9d6429 Bump github.com/containers/podman/v5 from 5.5.2 to 5.6.0
ced73692 golangci-lint v2.3.1 update for podman v5.6.0
2d5c903e golangci-lint update to v2.3.1
5e752b13 Bump actions/checkout from 4 to 5
9320b4b5 Bump golang.org/x/crypto from 0.40.0 to 0.41.0
7e7e0198 Enable packit EPEL10 build
e120c2a1 Bump to v1.8.0-dev
611535d9 Bump to v1.7.0
2affb5c0 Bump golang.org/x/crypto from 0.39.0 to 0.40.0
a28f4f98 Remove unused BUILDTAGS
e6cf0675 Bump github.com/containers/podman/v5 from 5.5.1 to 5.5.2
04b6c478 Bugfix invalid error when default remote connection is not defined
a2eb9b48 Add feature to use podman remote connections config if exist
58b4fbdc Using json format for app config file
9ed811d2 packit - set rpm build for fedora-all
6e59fa69 Added pod create namespace category
cd74eeb5 Added pod create namespace category
196004fe Added container create namespace (ipc, userns, uts, ...) category
e3242f37 Bugfix - connection list lock
92b96533 UI code cleanup + set max with for container view image name
5fc35157 Bump github.com/containers/podman/v5 from 5.5.0 to 5.5.1
5a9541f9 Bump golang.org/x/crypto from 0.38.0 to 0.39.0
5ab12464 Bump to v1.7.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
17e2c213c6 |
netavark: update to v1.16.1
Bumping netavark to version v1.16.1-1-g64b453a, which comprises the following commits:
c95689f release v1.16.1
72706df release notes for v1.16.1
b032159 Revert "[skip-ci] Update actions/download-artifact action to v5"
00c8234 update nftables to v0.6.3
99f73d4 release v1.16.0
97ee174 release notes for v1.16.0
ebe61f2 sync release notes from 1.15 branch
38b098f fix new lint warnings on rust 1.89
e6ef79e [skip-ci] Update actions/checkout action to v5
9b3e332 [skip-ci] Update actions/download-artifact action to v5
e5a773a fix(deps): update rust crate tokio to 1.47.1
6c72a58 fix(deps): update rust crate clap to ~4.5.42
8bc9a2d fix(deps): update rust crate serde_json to 1.0.142
6eed183 fix(deps): update rust crate tokio to 1.47.0
9002adc fix(deps): update rust crate hyper-util to 0.1.16
f7c3883 exec_netns macro: update comment
dbc9200 test: add new test program for connection checks
c984a9f add .cargo/config.toml to runs tests via unshare -rn
43e979d fix(deps): update rust crate rand to 0.9.2
2369c96 fix(deps): update rust crate serde_json to 1.0.141
1614faf fix(deps): update rust crate zbus to 5.9.0
2fee844 log default route mtu
57e37bb get_mtu_from_iface_attributes: return error without mtu
fbedef9 make get_default_route_interface return the full LinkMessage
38cbf3a bridge: early break out of loop
047ef70 change exec_netns macro to return result
cd4d1ff Set bridge MTU to match default route.
5c39692 fix(deps): update rust crate zbus to 5.8.0
c40ee94 fix(deps): update rust crate hyper-util to 0.1.15
4c5833d fix(deps): update rust crate tokio to 1.46.1
e2d1f6e fix(deps): update rust crate tokio to 1.46.0
e5b23f0 fix new rust 1.88 lint errors
083e525 fix(deps): update rust crate clap to ~4.5.40
7e93c15 fix(deps): update rust crate hyper-util to 0.1.14
7105bee make more use of NetavarkError
bc1eeda drop DhcpProxy error type from NetavarkError
8188984 update nix to v0.30.1
6a08cd6 fix(deps): update rust crate clap to ~4.5.39
204dc49 fix(deps): update rust crate zbus to 5.7.1
060f55d write bridge sysctl to config file
b67d91b extract systemd path check to core_utils
35f1db6 move sysctl code into separate module
1d5ee4e wrap sysctl name in error
cdf7302 drop sysctl dependency
f6604eb update MSRV to v1.83
acd3949 dhcp_proxy: set timeout_sender only if required
769a2ac cargo: bump mozim to 0.2.6
b6e12b2 fix(deps): update rust crate hyper-util to 0.1.13
03f1269 Revert "remove search domain from response"
0a6db8d fix(deps): update rust crate tokio to 1.45.1
fca86bb update netlink-packet-route to v0.23.0
3514007 update nix to v0.30.1
23ba475 remove unused nispor from Cargo.toml
ecb32b3 fix(deps): update rust crate zbus to 5.7.1
c24391b fix(deps): update rust crate hyper-util to 0.1.12
a1046af rpm: update description
8f6f84d bump to v1.16.0-dev
c382840 fix(deps): update rust crate zbus to 5.7.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
227651bf69 |
lxc: update to v6.0.5
Bumping lxc to version v6.0.5, which comprises the following commits:
9e4e69ed1 Release LXC 6.0.5
a0fb994a5 build(deps): bump actions/checkout from 4 to 5
93a06e70f lxc/conf: do not leak opts.data memory in __lxc_idmapped_mounts_child()
97eeb8a9a lxc/network: null-terminate ifname string in lxc_network_recv_name_and_ifindex_from_child()
7a94d11d9 tests/lxc-test-snapdeps: try to load overlay kernel module
0bf6aedf0 tests/lxc-test-rootfs: add idmapped rootfs testcase
98ebede63 lxc/lxccontainer: stop printing misleading errors in enter_net_ns()
7111f9d83 lxc/process_utils.h: use strsignal() or sys_siglist[] for Non-GNU distros
032290ec8 meson.build: use has_header_symbol() instead of get_define() to improve compatibility
85c5312be meson.build: fix checks for fsconfig and calls
4da694582 meson.build: set `LXC_DISTRO_SYSCONF` when `-Dspecfile=true`
e4cddef06 Add loong64 to list of recognized architectures
e9980ac90 Revert "re-add onexec for apparmor, move label assumption until after container has been setup for attach"
ab55d52a5 src/tests/oss-fuzz: pin meson to 1.7.2 to workaround build failures
9041ae313 lxc/conf: support flag kind of mount options in lxc.mount.entry options
859f736f0 lxc/conf: support nosymfollow mount flag
c42951b71 conf: Add support for "move" mount flag
e6bce2a2d src/tests/lxc-test-unpriv: prevent fail on cleanup path
601576a08 src/tests/lxc-test-apparmor-mount: prevent fail on cleanup path
b12d1bf89 src/tests/lxc-test-apparmor-generated: enable test
e35133a54 meson.build: remove quirk for Ubuntu 14.04 libcap-dev
cbe34bcc2 apparmor test: add an overlay container start
1541bd8f2 re-add onexec for apparmor, move label assumption until after container has been setup for attach
8ab6ad25b lxc/conf,start: fix setting container_ttys environment variable
b185e523f selinux: fix typo (AppArmor)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f281a3e744 |
kubernetes: update to v1.34.1
Bumping kubernetes to version v1.34.1-54-g03a5f06c269, which comprises the following commits:
30fd2664059 Do not validate etcd version for aggregated server conformance test
f3b637f6c3a Bump etcd to v3.6.5
6ebab3f180f Include relevant dimensions in pod controller indexing
8cd6b631ceb update setcap and debian-base to bookworm-v1.0.6
2674d8a049a Bump images, dependencies and versions to go 1.24.9 and distroless iptables
bddc18b0948 Add integration test for invalid SAN certificate handling
f40e4ce5529 Remove invalid SAN certificate construction
ed6bf3e5db3 kubeadm preflight checks: fix host URL construction
5be5dc9d54a With new changes we will also have a VolumeModifying condition
ea75d2aa00a gce: Fix etcd manifest
61c0fb13a70 Disable SchedulerAsyncAPICalls feature gate due to a known regression
40899107c1d upgrade to cos 121
2bfc98b313c Update pod resize test to accept new cpu.weight conversion.
3ffc54a9e96 kubeadm: rework the FetchInitConfigurationFromCluster node flags
e9f5e892f74 kubeadm: use JoinHostPort in WaitControlPlaneClient
663664c6171 kubeadm: ensure waiting for apiserver uses a local client
3f170932be0 Revert "Merge pull request #133213 from sanposhiho/second-trial-conor"
09ddc5ebbf2 Bump images, dependencies and versions to go 1.24.7 and distroless iptables
b245b551f74 Split preemption integration tests to mitigate the timeout
560cc36db21 fix incorrect warning whenever headless service is created/updated
07ac83c146b fix: use iifname for input interface name matches
35b87e4c188 Wait for quota to report used before creating pvc
856ac4923d7 release-1.34: pin system-validators to v1.10.2
7d43ddbbfb6 Fix ClusterIP load balancer disappearing when InternalTrafficPolicy: Local is set.
4a40ddf1e6b gofmt and review feedback
4ae3b64b736 fix: Update unit test to catch actual nil Labels case and fix functionality to handle nil Labels
16e3f7c1793 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.1
93248f9ae09 Release commit for Kubernetes v1.34.1
988bdd12587 Do not remove PVC ClaimRef to fix flaky VAC test
b97399727e0 DRA kubelet: avoid deadlock when gRPC connection to driver goes idle
76ab5f06640 kubelet/metrics: fix multiple Register call
04fd1ada6f4 kubelet/metrics: misc optimization
7bd2900b1e6 fix: Only warn for unrecognized formats on type=string
f779cf63819 Disable estimating resource size for resources with watch cache disabled
96739661c7c Disable collecting stats for resources not setting prefix to prevent error logs
2631a5f21ea Fix linter
94c0e478827 Fix completion of resource names
08515c751b0 Fix missing control plane health check timeout
a75938d9e5f Fix DaemonSet misscheduled status not updating on node taint changes
3ebbe57311f Add a note about Conflicts return value
98dca817c91 Fix SELinux label comparison
3e75f388199 Add missing cases to SELinuxMount tests
d1337421461 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0
f28b4c9efbc Release commit for Kubernetes v1.34.0
f2170bc6c3d kube-proxy: log but don't exit if ipv4 or ipv6 is not available
f47e9696d72 CHANGELOG: Update directory for v1.34.0-rc.2 release
78405b2c893 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.2
ed3ccdbe323 Release commit for Kubernetes v1.34.0-rc.2
db01f940320 Remove patch/update from ServiceCIDR API conformance test
d49e3d67cb3 Fix storage counting all objects instead just objects for resource
747a295caca fix flake in dra test 'TestPlugin'
4ebe560c74f DRA allocator: fix data race around `claimsToAllocate`
41013e7bf0a e2e_dra: use latest release if stable doesn't exist
e49f6116f9e clarify that staging repos are automatically published
ada2ed84877 add pointer to CONTRIBUTING.md for more details on contributing, clarify read-only
8919ac43c81 special case that kubectl staging repo is currently used to track issues, and only pull requests should be redirected back to the main repo.
011d5001975 link to what a staging repository is
7c43e6d2fdb docs: clarify that this is a staging repository and not for direct contributions
f8bad82c212 update go version for publishing bot rules
bf6c86b562d DRA: wait for stats to converge in "creates slices" e2e test
020b7052ca8 Bump dependencies, images and versions used to Go 1.24.6 and distroless iptables
c8ab780edbd dra plugin: assume claim after api call in bindClaim
81affffa1b8 CHANGELOG: Update directory for v1.31.12 release
8311c1d3d70 CHANGELOG: Update directory for v1.33.4 release
edfa9a5bd28 added WithFlaky() to the device plugin test case: supports extended resources together with ResourceClaim
48a4967718e CHANGELOG: Update directory for v1.32.8 release
064b5916172 improve CRD handling in VolumePopulator test
944b0a49235 do not allow the node to update it's owner reference
0bd039e89af Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.1
4d6b49b3fd4 CHANGELOG: Update directory for v1.34.0-rc.1 release
a956ef48629 Release commit for Kubernetes v1.34.0-rc.1
e073a91256e Add release-1.34 configuration
cbd6fb867ba Remove DeprecatedVersion for apiserver_storage_objects, adjust help text
89b5034d562 Make podcertificaterequestcleaner role feature-gated
2629fe25faa Use Delete() instead of DeleteLabelValues() for etcd metrics
13ced7b7ddc CHANGELOG: Update directory for v1.34.0-rc.0 release
40e8ad9517f Release commit for Kubernetes v1.34.0-rc.0
b7969189866 reduced numPods to 5 from 10 to fix flaky test (supports reusing resources) due to timeout.
2a026f6d659 1/ added retries to AssumeClaimAfterAPICall for the object which is not present in the cache (dynamicresources.go) 2/ modified the assume cache verification to not error out as long as the expected claim is in the cache, no matter its latest and api object are different or not. (dynamicresources_test.go). 3/ fixed nil panic as seen from https://prow.k8s.io/view/gs/kubernetes-ci-logs/pr-logs/pull/133321/pull-kubernetes-integration/1952472629470302208
01470d973b2 Fix memory limit decrease test on cri-o
aca402f25b3 e2e: node: skip breaking tests
0fbc8cd44ce Remove integration-test labels from long running scheduler_perf workloads
e83e5815e5e always pull pause image for eviction tests
418e96bf1af Update prerelease lifecycle to v1.34
65fda6dd34e fixed exended resource scheduling performance test, added more nodes for scheduling the init pods
9eda4789c02 Fix potential race in PodStatusPatchCall implementation
dbfeb9c351a Fix potential race in closing API dispatcher
c7db6362fe6 Move NominatedNodeName preemption-related integration tests to a new package
46b858aa130 fix: return false to apply the patch
07c71097d33 Split DRA scheduler_perf tests into multiple packages
988c9b03fd1 Demote KEP-5278 feature gates ClearingNominatedNodeNameAfterBinding and NominatedNodeNameForExpectation to Alpha
0a12f00e9d3 fix nil panic in hasBindingConditions, it cannot assume claim has allocations
7f052afaef5 KEP 5075: implement scheduler
3e3b2447ffe Promote PodLevelResources to Beta (#132999)
59bba927178 KEP-5075: generated codes from make update
5ad969588d5 KEP-5075: API updates
29d1951eb76 fixes scheduler nil panic due to empty init container request&limit
23d6f73e720 extended resource backed by DRA: test
34a64db2c73 extended resource backed by DRA: implementation
a3a767b37ec WIP: fix e2e tests
4ca47255a8b node: disable resource managers when pod-level resources are enabled
3068b60b830 extended resource backed by DRA: codegen
1f2fd18ac86 extended resource backed by DRA: API types.go
7fbf63a23fc HPA support for pod-level resource specifications (#132430)
6e9b60e3fd8 Add / update kubelet and DRA API owners
60fa65db883 Clear pod.Status.NominatedNodeName when pod is bound
15b1a7fd317 Revert "CPU and Memory manager event when using pod level resources"
aea0a3cca29 Run all relevant test cases with the feature gate enabled and disabled
856e7d2383c scheduler: Stop clearing NominatedNodeName on all cases
6653ef652b3 KEP-5007 DRA Device Binding Conditions: Add dra integration test
9e82c133010 KEP-5007 DRA Device Binding Conditions: Implement DRA logic
e8c3af1f5cc KEP-5007 DRA Device Binding Conditions: Implement scheduler logic
ac81b829e4a KEP-5007 DRA Device Binding Conditions: Run make update
987ad395167 KEP-5007 DRA Device Binding Conditions: API Related code Update
34c3b093835 KEP-5007 DRA Device Binding Conditions: API Update
ac9fad60301 feat: trigger PreFilterPreBind in the binding cycle
48eef9ce9af test: fix TestStructuredAuthenticationConfigReload flake by handling expected network errors
4874d41665b Pod Certs: Fix kubelet volume host arg order
f9bb14fcf06 Fix apiserver service proxying e2e test flakiness
8ace0fb89fb remove failing test that depends on expired credential, remove credential, add TODOs
f07dcd443d7 fix flake on TestStreamTranslator_WebSocketServerErrors
7ba22700bfd websocket streamtranslator increament metrics before writing status
0aea6a1e45d TestStreamTranslator_BlockRedirects use subtests
4b698656bec Returning early if podResources is nil to avoid nil pointer dereferencing
766d011bba2 E2E tests for no hints nor aligment of CPU and Memory managers
5672750e6a3 Unit tests for no hints nor aligment of CPU and Memory
7804b51f420 CPU and Memory manager event when using pod level resources
fd206a0efb3 Add comments for restart rules not used for unknown container status and probes
4b479da4b5b Remove the feature from e2e test
6997fbd1edc Fix incorrect validation on the kubelet
48f8458c41f validation: Fix user-namespaces test case name
50a7a8af4d2 validation: Align usage of hostUsers in error messages
5f7e611f736 validation: Return error if hostUsers=false && volumeDevices
f3466f8adc1 fix: flake integration test
ed74d4cd52f Revert "Revert "fix: handle corner cases in the async preemption""
e8dc272c533 Update etcd to 3.6.4
0f7cd149596 Fix prerelease-lifecycle for volumeattributesclass
9c8dacb0374 ContainerRestartRules feature gate should work with probes
48fd30113c6 [PodLevelResources] Add missing label to Downward API test
57ceb56c6fa Bump etcd sdk to v3.6.4
b562335cb36 Build etcd v3.6.4 image
17d733e2433 KEP-5229: Send API calls through dispatcher and cache
40a90df3b36 DRA E2E: remove stress test
b956484c25a KEP-5229: Add metrics for async API dispatcher
006d7620a8c Revert "fix: handle corner cases in the async preemption"
727a6e6db50 Reject pod when attachment limit is exceeded (#132933)
a652896307c Allow white-spaced CABundle during webhook client creation and validation (#132514)
f1737db166b Update DRA Pod spec comments
b7de71f9ce7 feat(kubelet): Add ResourceHealthStatus for DRA pods
d4a83b9a522 fix(golangci-lint): skip config verification when -c none is used
252513a1b99 Add WithFeature and WithSerial, also check if cgroup v2 is used in test
1bc995c195e Generated files
f925e555483 E2E tests for container hugepage resources immutability
9f5b09eb7bb Unit test pod level hugepage Default and Validation logic
845e94d3707 Validation logic and Defaulting update for pod level hugepages
c15a54f8c0c draadminaccess: move metrics test from e2e to integration
d176808d3a9 Rename hack/*-yamlfmt to -owners-fmt
7adcd21148f Replace cmd/yamlfmt with k-sigs/yaml/yamlfmt
79833578f66 KEP-3695: add kubeletPodResources feature gate to Beta
2cb955d8cca Add KYAML support to kubectl
8182a27f3b0 Re-vendor sigs.k8s.io/yaml @ v1.6.0
94bf8fc8a9d Promoted API `VolumeAttributesClass` and `VolumeAttributesClassList` to `storage.k8s.io/v1`.
8e3f93c8796 Unit test propagate pod level hugepages to containers
52b457421a9 Pod level hugepage cgroup when unset in container
add7132a6db E2E tests for pod level resources Kubelet Preemption
976a617d059 E2E tests for pod level resources eviction manager
13b122b6ffe Unit tests for pod level resources eviction manager
9a3ca05f6bc Use pod level resources for eviction manager
b34f8782e2f Add e2e tests
9086e52feeb Implement restart rules in kubelet
af595a44aef Add container restart rules to API
5dc2030c027 4033: GA KubeletCgroupDriverFromCRI feature gate
27e16751538 Make PSA host enforcement honor emulation version
32053b1d2f3 chore: replace ptr caster with unified ptr.To
83a0d0c660a kubelet: add metric for version CRI implementation will lose support
ffe306d6795 client-go, kubectl: Replace deprecated ErrWaitTimeout with recommended method (#132718)
cb33accc8fc JSON & YAML output for kubectl api-resources (#132604)
8a2db4da426 fix: adjust the log level in the preemption
4c9bf4719b8 fix: handle cornor cases in the async preepmtion
bf98e45afb3 Migrate pkg/kubelet/volumemanager to contextual logging
aecd37e6fb4 Moving Scheduler interfaces to staging: Move PodInfo and NodeInfo interfaces (together with related types) to staging repo, leaving internal implementation in kubernetes/kubernetes/pkg/scheduler
c954e13255a Revert "DRAAdminAccess: add upgrade downgrade test"
12d67506661 client-go/metadata/fake: sets opts.Watch to true
b37fd0cab28 [KEP-4816] DRAPrioritizedList to Beta
6767d54bba6 Bump DRA API version to "v1" in "deviceattribute" package in "k8s.io/dynamic-resource-allocation" module
449763fb115 e2e: podresources: disable memory manager integration
b768c1d1d5b DRA API: bump storage version to v1beta2
24de875cebc DRA: graduate DynamicResourceAllocation feature to GA
d8df1dc1b89 DRA RBAC: fix kube-scheduler bootstrap policy
21d929f5992 integration: use --runtime-config-emulation-forward-compatible
5c4f81743c2 DRA: use v1 API
cff91579e80 DRA API: v1 registration + tests
4e592f6c145 DRA API: s/v1beta2/v1/ and generated files
1f2f433f76d DRA API: verbatim copy v1beta2 -> v1
837b7395d29 kubelet: DRA: Close gRPC connection when removing DRA plugin
c7d6c096833 List available endpoints for kube-apiserver (#132581)
5f4a1aa58c3 chore: ptrTo util removal with ptr.To
a82187cf11a [PodLevelResources] Update Downward API defaulting for resource limits
4c87e60d0db Tests using .host field in probes must be at priviledged level
f94fcac8680 Add new fixture testData for 1.34 PSA
fc0474d7718 Copy test fixtures to 1.34 from 1.32
9540a963964 Copy test fixtures to 1.33 from 1.32
4a3ebf886c4 update the minimal version to fix unit/fixture tests
333b19b4416 Add PSA for blocking .host field on pod probes and lifecycle
c7bf3b81f6a Add flake debugging for admission test
a806e069e26 Remove WinDSR feature gate unit test
765d84e9bff Test only EndpointSlices, not Endpoints, in dual-stack e2e tests
2cb48f77f0f schedule pod availability checks at the correct time in ReplicaSets
61cc6cf8072 draadminaccess test make it serial
33b45c8383e Update "should proxy through a service and a pod" to look at EndpointSlices
d70e7e223cf Port aggregated apiserver discovery to EndpointSlices
41dc2d3b024 Add utilities for getting EndpointSlices for a Service
f7109ed281a [KEP-3751] Allow PVC VACName to update to nil or empty when status.currentVAC is nil
c35e4ad2b24 add codes for drop disabled pod fields
8d65e1e98ee Add e2e tests.
f31aeca4256 Add code for overriding hostnames
88b76214343 Add validation for the HostnameOverride field.
c889ee17a2f Convert kubelet plugin manager from gogo to protoc
abb1b26d508 DRA: Add experimental allocator variant
17cc5e9ecd8 e2e: node: podresources: exercise with dynamicresources enabled
ee8ef383bec Update kubectl kustomize to kyaml/v0.20.1, cmd/config/v0.20.1, api/v0.20.1, kustomize/v5.7.1
af6c97bd14f add Feature Gate.
8b3814c4ab8 Add the HostnameOverride field to the Pod API
c2a06e7912c DRA: skip flaky test case on Windows
f6061605fb5 DRA E2E: run multi-node control plane tests also with two nodes
f0e29208985 DRA E2E: simplify "control plane" test names
603751ee80d DRA E2E: remove redundant test
21ed19798ea kubelet: DRA: Handle grpc.ErrServerStopped in plugin tests
61bd5789be4 Updated to not directly change the global variable `claim`
4f0a5771abd test: add e2e case for mutating named port
db9b9b5a429 Build etcd v3.6.3 image
179551a7cb3 feat: Implement warnings for unrecognized formats in CRDs
437a2ad693f feat: Add func to export the supportedVersionedFormats
d943239c57b added debug_redact to cri api secrets
88af8b6060a Add PodLevelResources to the Windows OS limitations in the API doc
c2b26617bec Check OS for PodLevelResources in kubelet
e2c308aff93 Check OS for PodLevelResources in API server
f6aee636906 add validation logic for APIVersion fields of HPA
6f3b6b91f08 KEP-3721: Support for env files (#132626)
0b60c121947 KEP-4222: Adopt text and JSON transcoding support for CBOR.
917659269af Bump to github.com/fxamacker/cbor/v2 v2.9.0.
216f7485bd9 DRAAdminAccess: add upgrade downgrade test
303a7056ffc e2e: node: podresources: enable multi-container tests
38a9a8a59dc e2e: node: podresources: add tests for missing pod
19b00ecc941 update CCM image to v33.1.1
b070b0a5c5f chore: residual boolptr and intptr removal
407bcf88645 kubelet: add metrics for userns pods
e5ccc31e704 chore: replace float64Ptr with ptr.To helper in validation and integration tests
545b36ba295 fix uncore e2e check
b97decb7d91 client-go/dynamic/fake: sets opts.Watch true
f626e847e72 Migrate pkg/kubelet/winstats to contextual logging
ce2d979390e Run Unschedulable scheduler_perf test case with SchedulerAsyncAPICalls feature gate enabled
0da0897c18d Bump external snapshotter for vgs tests
78bf3410c88 DRA E2E: revisit conformance classification of tests
911df655d3b chore: migrate kubelet lifecycle to contextual logging.
872f0682d58 Use "k8s.io/api/resource/v1beta2" instead of "k8s.io/dynamic-resource-allocation/api" for resource API imports.
31d2de59dd9 Split the symlink target error cases into for each condition
a4fb1562f4a introduce resolvePCIeRoot instead of resolveSysDevicesPath
f3d4b216f3a assign return value to a variable instead of using it directly
7f27c88d0fb Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
ee26a5837c4 Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
8b558a1bc3e fix(validation-gen): correct typos in comments and documentation
63a958ff344 chore(validation-gen): remove TODO regarding ratcheting behavior for slices and maps
c659b418265 e2e test for mirror pod with pod generation
a5b9c7a7981 bump resource claim controller concurrent syncs to 50
6d4000f844e Pod Certificates: make update
4624cb9bb92 Pod Certificates: Basic implementation
facbb66142e Temporarily revert restart-on-node-IP-change behavior of proxy NodeManager
e2d37f3cd7e kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
0dc51b16f9e kube-proxy: merge NodeEligibleHandler with NodeManager
d4892fef768 kube-proxy: merge NodePodCIDRHandler with NodeManager
373fb487f60 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
d21ca8674ce kube-proxy: add NodeTopologyConfig for tracking topology labels
8acda3631f7 Belatedly add tests of proxy NodeConfig and ServiceCIDRConfig
edf4654d76d generate proto
18918e20085 add CSR declarative_validation_test.go tests
69a8a169d59 add WithOrigin and MarkedByDeclarative, update hand-written to error at list instead of list item field, add additional tests for approved+denied case
6a2d5a1e644 feat: add CSR status.conditions approved+denied declarative validation tags and associated declarative validation tags to v1 and v1beta1 types.go
248ad21610b graduate prefer-align-cpus-by-uncorecache to beta
6e77bff18b8 pod sandbox image is not being used by kubelet any longer
43706d6b7a8 add warnings when creating headless service with specified load balancer ip,external ips and/or session affinity
53aa4332b56 fix integration tests
8996e81fc87 fix unit tests
dd4dd3d8ea4 feat: Enabledeclarative validation in CertificateSigningRequest subresources updates
ccc82775f45 expand test coverage for uncore alignment
cb29414b44f Extend E2E test coverage for PSI metrics under pressure
4ed231da063 kubelet/imagePullManager: add benchmarks for image pull record accessors
5486e6f44e2 DRAAdminAccess: move to beta
5d4010d2d24 Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta
4fc9546e0e2 KEP-5229: Implement API dispatcher
549f7c4fc98 image pull manager: add in-memory LRU intents/pulled records caching
ea326373ef3 e2e: node: cpumanager cgroup v1 compatibility
b8d74e75c7b Add test case to prove MaxElements correctly set on IntOrString
7e5aafcb164 ci: remove unnecessary test harness
457df1cf981 ci cleanup: make sure to remove test KUBECONFIGs
3026020b44a Convert `k8s.io/kubelet/pkg/apis/deviceplugin` from gogo to protoc
4f9f6c05363 scheduler_perf: hide "metric ... not found" errors
b8758ac31b7 node: mm-mgr: migrate to contextual logging
2e756e7412c fix data race in OIDC integration tests by serializing test server starts
03acd266a31 chore: residual uint64ptr removal with ptr.To
b84271a7795 DRAAdminAccess: add e2e
ab839c93ff8 feat(kubelet): migrate kuberuntime to contextual logging
30e5cdd6412 kubelet: don't fetch image credentials if the image is present and if we don't need to check if the pod is allowed to pull it
cbba3281a3a integration: fix etcd output handling
d0fc938a07f DRA client: fix conversion of watch channel
f77ce8951e6 DRA: debug output for list/watch client
9d7d3a61722 Bump sample-device-plugin base image to alpine:3.22
7ddb0426266 feat(cmd/kubelet): support structured and contextual logging
fb4e2522240 test: add batch pod deletion for kubelet e2e tests
4b8dd9612ff cleanup: remove example plugins
067bd16b154 Add unit tests to check if right feature gate is checked based on resize request.
f71080c930e Create separate feature gates for static CPU Manager and static Memory Manager support
07ef7842be2 Change memory manager static policy to a public const
ae5247afc18 address feedback
65951744564 unit test for HandlePodReconcile retrying pending resizes
0d24c3b57f0 add sourcesReady parameter to fakeKubelet constructor
6e86af48ccb fix check if requests have shrunk
6a40bcb4268 Retry pending resizes if a status update leads to aggregate requests shrinking
22d724969c9 kubelet: record container_resize_requests metric for all resize updates
13a6d2121c1 check a couple extra failure scenarios
8957109b76b only record resizes in progress and pending after all pods are added
d51375dccf2 record 'kubelet_pod_deferred_resize_accepted_total' metric
b8fc1b6750f record 'kubelet_pod_infeasible_resizes_total' metric
d845e1fd6b8 record 'kubelet_pod_pending_resizes' metric
23005281f74 record 'kubelet_pod_in_progress_resizes' metric
0595ddaafa6 record 'kubelet_container_requested_resizes_total' metric
468aa5e30c4 record 'kubelet_pod_resize_duration_milliseconds' metric
12966276334 define and register ippr metrics
3964fbeab14 kubelet: integrate sa creds in image pull manager
f1728bd584a Add ServiceAccount coordinates to ImagePullCredentials v1alpha1
b9dd2fdec03 credentialprovider: track service account cred source in ext provider keyring
9a4c0f9b2f1 scheduler_perf: Add memory tracking to performance tests
8a42f4ccce5 Add support for CEL list library.
5d31866313a dedupe fetching allocatable and available resources in node test
79dc0b8a414 Add jitter to priodically executed process in storage to avoid too concurrent executions
a48420e3ceb promote PodObservedGenerationTracking to beta
336b5aff452 Check for valid UID range when runasnonroot is true
e9492239b24 Promote windows graceful shutdown to Beta
00bf3b37a74 Graduate PodLifecycleSleepActionAllowZero to GA
99059895f4f Account for caching and maximum object size when estimating LIST request
2256f5747dd Add resize completed event after Inprogress conditionCleared is cleared
d42a1d58d0e DRAAdminAccess: add metrics
f5d12ed39a1 fix: Compare versions instead of pointer comparison
8dc20a0f62d Fix IntOrString cost estimation when schema has a MaxLength constraint
a2e9e9f6677 fix pass ctx into a revised HandleError function
729cd583ad9 scheduler integration: fail test instead of existing
bfa33b18a08 fix(kube-proxy) avoid add zero-masked loadBalancerSourceRanges to ipset
d6e85b504d0 Add kubelet_credential_provider_config_info metric
14a5ef56a34 fix pipeline failure
21e2fcea9ec Add automatic_reload_last_config_info metric for auth configs
5f829195e6b Only warn when AppArmor annotation doesn't match pod field
f2c48ffec9e Add generic config info custom collector
11921f75857 [KEP-5100] WinOverlay feature gate to GA
e417232f92b Warn when using AppArmor annotations with a pod field
4fdf09fdc1b Stop syncing AppArmor fields to annotations
3ecb3d230f3 Remove unused appArmor*InUse functions
75ae2d727a0 Add an E2E test for memory limit decrease usage check
2a9388c3036 Move memory limit decrease e2e test to success cases
c7a78185c25 Remove the restriction on memory limit decrease
d9c91127d06 Check memory usage before decreasing limits
465f7281419 use gomega.BeComparableTo instead of Equal for resource quantity check in resize test
cedcbfb94c3 Update cel-go to v0.26.0
24065780ed7 Add e2eendpointslice.WaitForEndpointPorts, use in some tests.
f456a70bdea use CreateBatch and MakeResizePatch
5cea72d5649 DRA integration: add test case for FilterTimeout
241ac018e25 DRA integration: remove unnecessary anonymous import
bc338e7505c DRA scheduler: implement filter timeout and cancellation
430c79b53fc chore(validation-gen): hold uniqueness check of listmap
1745094c405 Update VolumeAttributesClass API Description
2cb30c77949 Refactor target check
86bc1bf0a45 more complex e2e test for deferred resizes
66de1960a5d Increase maxSeats for List requests
025c606e398 DRA scheduler: add plugin configuration
ee38a001311 DRA scheduler: add DRASchedulerFilterTimeout feature gate
837ef29f5a2 scheduler: enhance and document Filter cancellation
7910b43cd39 scheduler_perf: document benchstat usage
b9ce92d50eb edit versioned_feature_list.yaml
070621bf776 Remove unit tests that rely on feature gate enablement check
3f847d97c32 GA the NodeSwap feature gate
1a7630c0979 Remove deprecated LegacySidecarContainers feature gate
300c7b815a2 set the timeout to Get method
2b13b87e609 chore: replacing timer ptr with ptr.To
532d48fe6ad Convert `k8s.io/kubelet/pkg/apis/podresources` from gogo to protoc
cf68f75fc33 Deprecate apiserver_storage_objects and replace it with apiserver_resource_objects metric using labels consistent with other metrics
db342010f46 kube-controller-manager: enable WatchListClient
cef9f9edb6e kubeadm: fix a bug where it should generate default etcd command based on etcd version when the etcd image tag supports semver
ace2a224926 drop rules for release-1.30 as it is EOL
6737c31d0f7 update publishing bot go rules for release-1.31/1.32
a1a85ddb161 SSA: test optional map keys
4d34975a466 sigs.k8s.io/structured-merge-diff/v6 v6.3.0
3357e8fc057 SSA: add integration tests
a2a3839a8ee DRA scheduler: add pohly as approver
4bc2ad6eea7 migrate pkg/kubelet/preemption to contextual logging
b96e3cac741 migrate pkg/kubelet/pod to contextual logging
0cb31bc4073 migrate pkg/kubelet/nodeshutdown to contextual logging
75ccd69babe migrate pkg/kubelet/kubeletconfig to contextual logging
1d0fd592881 kubectl: add port names to describe pod output
7dad9e2af6f migrate pkg/kubelet/apis to contextual logging
f141907ddd8 DRA kubelet: add v1 gRPC
1b5a08cbfb5 cleanup: fetch individual PodResourceInfo from allocated resource state
6e7e6b37c7e Fix the cost issue to match the bug fix for target being nil in CEL side.
ad220eb6c32 chore: remove residual int64ptr usage with ptr.To
a9644686381 Add PodCPUAndMemoryStats to stats.Provider interface
8f4a624a593 Fix pipeline errors
e8536c01910 add item + union and item + zeroroneof output tests
be72d963b88 add validate/zeroorone_test.go and add +k8s:zeroOrOneOfMember output tests
10b20852e3c feat(validation-gen): add +k8s:zeroOrOneOfMember tag validator and associated validate method
81f18759e6e add validate/union_test.go and add +k8s:unionMember and +k8s:unionDiscriminator output tests
5bc9b691141 feat(validation-gen): add +k8s:unionMember and +k8s:unionDiscriminator tag validators and associated validate methods
bfb42fc31c9 refactor item.go with buildMatchConditions, make itemTagValidator a LateTagValidator
5d1c5ebd8cb add ParentPath to context, remove Parent from context and plumb changes in validators
c50da38aa18 allow field validators to generate variables
e7aeb4ff5c1 Promote MutableCSINodeAllocatableCount to Beta
9bcaa8c86b1 Fix conversion-gen caching incorrect memory equality comparisons
b35ad4e9b01 Add e2eendpointslice.WaitForEndpointPods, use in various test
dbecdd18763 Use e2eendpointslice.WaitForEndpointCount in more network tests
b7998a397b5 Add e2eendpointslice.WaitForEndpointCount, use it in some network tests
dd3691b1698 refactor allocator, removed claimsToAllocate from NewAllocator(), instead, passed it through Allocate()
8e6651520e6 Convert `k8s.io/kms/apis` from gogo to protoc
2f605f49fcf CHANGELOG: Update directory for v1.34.0-beta.0 release
9cf00ec6d17 kube-apiserver: promote WatchList feature to beta
e4320fe25cf e2e_node: DRA: test handling fatal serving failures
ea05ad8887b e2e_node: DRA: add errorOnCloseListener
fc21d3f37dc e2e: DRA: enable test plugin to cancel main context on error
1981c985b17 e2e: DRA: support test and public options
d44b737447f DRA: handle grpc.Server.Serve failures
169965350cc e2e_node: Refactor DRA tests to use variadic options
52fab5969cc Add NominatedNodeNameForExpectation feature flag
fd23fa3d423 Graduate ListFromCacheSnapshot to Beta
665599417ab Add e2eendpointslice.WaitForEndpointSlices, use it in a few places
b5931f53dd7 Auto update openapi spec
a100dfdfaa5 Using alpha as the stored version for one release.
6e932445326 Add validation of volumeClaimTemplates in StatefulSet
ae4a43de6dd Refactor: isolate flag registration to kube-apiserver to eliminate global state
5b4c1872a0f chore: residual intptr removal with ptr.To
e9aab4648fd CHANGELOG: Update directory for v1.31.11 release
dc0ca0be3f8 CHANGELOG: Update directory for v1.33.3 release
d6caa36dcc7 CHANGELOG: Update directory for v1.32.7 release
d460611e77c Add more checks
b69fd9d42c4 Add egress selector support to JWT authenticator
e9c1ca724f0 Add conversion-gen memory equality test
62521d83508 fix observedGeneration in pod resize conditions
38637260281 add unit-test for ensuring authn latency annotation
760eb7d5dea fix: record authentication latency before audit filter wraps up
26c8ee7b858 DRA: Improve allocator with better backtracking
d383c8e0243 Update history of checkpoint support in Kubelet
20914ef4e90 Prevent running two HPA cachers for different API versions
bc5088cbf35 Revert "Kube proxy node manager"
f8c7131b46b Drop experimental- prefix from etcd flags
d8747d716e4 Use object size estimation for non-recursive list
05e1c4b4893 e2e: node: fix podresources API feature label
6e1875fac94 local-up-cluster.sh: don't require to be invoked in the root
356be5ae30f DRA E2E: move upgrade/downgrade test into test/e2e_dra
c8ca9249acd DRA integration: add upgrade/downgrade testing with local-up-cluster.sh
60e9316c0cc DRA E2E: refactor helper code
2e3228e2ca9 DRA E2E: support deploying driver on localhost
e5f57d2cfab ktesting: add WithoutCancel
e01603b2e33 ktesting: document side effect of SetDefaultVerbosity during init
0b1bed1a1e0 ktesting: WithCancel does not cancel on test completion anymore
f381d737247 DRA E2E: retry exec of hostpathplugin
c2080e7e45d DRA E2E: support using ktesting
906505281fc ktesting: add step Begin/End
b7c2d6aba50 ktesting: skip logging error when capturing it
4977163860b DRA E2E: reduce port proxy verbosity
5721c927e6a DRA E2E: increase verbosity of resource claim controller
1a284472f17 E2E framework: retry also on EOF errors
6a7b9589f61 E2E framework: support setting REST config
bd30b0adef6 remove general avaliable feature-gate DevicePluginCDIDevices
9c0e65b085d test/apimachinery/watchlist: server supports sending resources in Table format
2dfc4e25a9a endpoints/handlers/respone: include metadata when IncludeNone and watchlist requested
e1a0cf6244f handle stoppedCh and listenerStoppedCh returned by cc.SecureServing.Serve
6cd00cdcba0 Auto gen
a3ecea296c1 manual change
4f3334b7cee Promote feature gate
0d8fd61e64c address review comments
32afbd9ea5d Inconsistency resets cache snapshots and prevents collection of new ones until cache is marked consistent again
4f77a461863 Generated files
a04e7cf5eb8 KEP-4601: Graduate selector authorization to stable
6f4be0d8c93 DRA allocator: skip unsupported test cases
740e568468e address review comments
61542e7a987 Cleanup: Remove field name from invalid field detail message
14f3c26842d Remove redundant metric field.
ad03cb87336 chore: residual strPtr utility removal with ptr.To
af249fb2e97 DRA E2E: test mixture of extended resources + ResourceClaim
9a7dddf5a71 fix test
09ec6f74483 chore
85adda5e68f Use object size to estimate list cost assigning 1 sear per 100KB
f20be4c094c add test which checks release method calls Get
7d9eb2b3d0d test/apimachinery/watchlist: update tests that receive resources in Table format
da7c55e0d2f reflector: detects unsupported meta.Table gvks for watchlist
ebc1ccc491c Bump k8s.io/kube-openapi to latest SHA (f3f2b991d03b)
8d1cbc83d8c endpoints/handlers/get: remove watchListEndpointRestrictions
14d1bbf36f4 chore: maxPtr utility removal with ptr.To
6462ad918e7 codegen tool: resolves GOBIN via `go env`
1073b3b9055 Add unit tests for AddPod()
fcb595a2df7 service-ip-alloc: delay ip processing on service recreate
8de14b526e9 service-ip-alloc: make repair loop consumer clock interface
e3836172845 Fix TestProgressNotify for etcd v3.6.2
e0f9914ef72 chore: replace int32Ptr usage with ptr.To
cf4912eb4e5 chore(validation-gen): reorder imports
419e70b7637 run update-codegen
4c8f489b817 add +k8s:neq tests
fc1c832c495 feat: add +k8s:neq tag which enforces field is neq to a specified comparable value
fb971325c39 feat(validation-gen): add new test cases for item validation
5cc2721f6c6 feat(validation-gen): add k8s:item
af05aa61d9c feat: Add validation ratcheting for subfields tag
daef13ecc36 chore: improve error rendering and add unit tests for ErrorMatcher
f40ee6f996d feat(validation-gen): add new test cases for validation of slices and maps
b059bb55143 feat(validation-gen): enhance validation functions for slices and maps
0b1fa64a920 refactor(validation-gen): streamline type validation logic
7ad89e19971 feat(validation-gen): add FieldValidator
ba45e37b24b chore: removed boolPtrFn helpers with ptr package implementation
5971802fdda chore: intPtr removal with ptr.To
a091fa607ea Add apiserver_resource_size_estimate_bytes metric
e6cf7dbf063 Enable running cache inconsistency detection by default
a06b3d356c8 Bump dependencies, images and versions used to Go 1.24.5 and distroless iptables
cba38b62932 DRA allocator: fix linter hint
5eab2b7a6e4 Remove unuse runtimeCache parameter from stats.Provider
46e2c22fd76 kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
fa9e466945c kube-proxy: merge NodeEligibleHandler with NodeManager
c6735d9b3bc kube-proxy: merge NodePodCIDRHandler with NodeManager
45c355ca58b Move unschedulablePods struct to a separate file
bfeaae3310f Compact watch cache based on last observed etcd compaction
c43104cbea8 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
af7abde0e55 kube-proxy: add NodeTopologyConfig for tracking topology labels
98c4514eae2 add e2e_node tests for uncore alignment
70191dd21ca fix uncore cache alignment for odd integer cpus
65e0cff3c5a add Replicaset -> ReplicationController conversion test
9df4c35a60a Disable SchedulerAsyncPreemption feature correctly in integration tests
3636d5bd3a5 Added NodeSelectors field to DriverDefinition
4f0d3eaa36b enhance exec probe logging with pod and container context
ffe90820710 DRA allocator: select tests based on supported features
b1a35c640eb Build etcd image v3.6.2
7e37711d6ee kubelet: Add service account UID to token cache key for proper invalidation
45dfb46448a Add TokenRequestServiceAccountUIDValidation feature gate with UID validation
237fbde8b1e clean up e2e test and sorting code
4d2566eb5a1 credentialprovider: wire in service account mode cache type
03db2278d52 kubelet: Add CacheType field to ServiceAccountTokenAttributes with validation
ff4746af139 increase verbosity of kubelet preemption log
f2de8897e77 Add metrics for mutation
bfa7f38c6af fix TestPodResourceAllocationReset for windows
e8b914c4b83 address comments
6052c569db3 prioritize resize requests by priorityClass and qos class
c126870ebc9 Bump RecoverVolumeExpansionFailure to GA
7b906f204a6 DRA allocator: fork the code
5caf7bca15b DRA allocator: refactor code
03e32bd260f Expose compaction revision from compactor
5e3ea8e279c Add test for compactor
bbab5941103 local-up-cluster: stop running Docker
f57662856f9 local-up-cluster: store logs in artifacts directory
81b6e1d3a34 local-up-cluster: start containerd before Docker
27a77370dde local-up-cluster: simplify installing packages
ddda1dca33c local-up-cluster.sh: add dry-run mode
0950b9ee508 DRA allocator: export DeviceClassLister
bc5aa94d8d1 local-up-cluster.sh: allow configuring all ports
a4b1d26b14b local-up-cluster.sh: dump config on KUBE_VERBOSE >= 2
5665bafaa86 CHANGELOG: Update directory for v1.34.0-alpha.3 release
381b3f376bd clear just the errors rather than the entire in-progress condition when a new resize is allocated
b89ab301f5c feedback round 2
67aaa956da3 Update docs on shutdown and draining
7a6f6fdf721 Delete unnecessary mutex
271233a62ae Prevent the failure of releasing the lock by updating the resource version in case of a resource conflict
d9de590a26b test: increase test coverage for pkg/kubelet/types
2dd07e92428 DRA E2E: ResourceSlice Controller test flake
26f54e5c0e3 chore: replace int64ptr with ptr.To
f2b24b98494 Increase verbosity of frequently printed loglines in binder plugin
621482d68b6 update pause version to 3.10.1
ce456c87f1c add SuccessCriteriaMet status for kubectl get job
bb6bd520126 Add feature gate enable test for KubeletPodResourcesGet
c925243779a address feedback
c6fef9752c2 fix: improve the pod level request validation (#132551)
89344dc2391 feat(validation-gen): add k8s:enum validator
345641f106b feat(validation-gen): add Enum validator function
adb71d041d6 Forcefully expire lease in integration test to fix flake
637bf55cbc2 bump golang.org/x/vuln/cmd/govulncheck to v1.1.4
e0cc07af866 Promote PSI metrics feature to beta
b46a124db31 skip pending resize evaluation if sources aren't ready
35bf1522b0e update allocation manager unit tests to cover push and retry of pending resizes
e6d165b879b move resize allocation out of the sync loop
87fe2491a11 add some additional helpers to kubelet status manager
cb2baef9122 move handlePodResourcesResize unit tests into allocation_manager_test
1a62ade7428 cleanup conntrack entries test for UDP service
8f92a81787e node: e2e: podresources: add more e2e tests
380ed8d9b3a e2e: node: memory manager: build everywhere, run only on linux
bc56d0e45a2 podresources: list: use active pods in list
30a3bfdbcba chore: remove residual uint64ptr usage with ptr package
006b2a3b52c e2e: node: cpumanager: fix cpu quota non-regression tests
54f86a22e88 chore: removing redundant type conversion
25d9d8d9ba7 refactor: use getLocalNode() to avoid code duplication
bc9e8e1a910 add a context argument to prePodCreationModificationFunc()
83584d13c49 fix: TestPatchResourceTimeout flaky test
994e106dc0d ci: update sample-apiserver version to v0.33.2
3379d5ac4b6 make sure all streams are created before starting demux websocket
1cec0acebf2 Short circuit CategorizeEndpoints when there are no endpoints
c53b41e98c2 Add testing compaction in storage List tests
1ac60e35e96 e2e test: Add a container_swap_limit_bytes metric
bdd662f7c6b unit test: Add a container_swap_limit_bytes metric
341957a367c Add a container_swap_limit_bytes metric
c530b022576 chore: depr. pointer pkg replacement for pkg/security and plugin/pkg
dfe6a5c9c13 Clean up `unversioned_feature_list.yaml` file
e909e0cf738 chore: replacement of toPtr helper functions with ptr packge
841886df76f Convert externaljwt from gogo to protoc
1b730abf8dc cleanup: use HandleErrorWithXXX instead of logger.Error where errors are intentionally ignored
075abb07a91 ci: redis removal for e2e test dependency simplicity
830a088d1bc chore: remove strPtr usage with ptr.To instead
838f3afc521 storage/etcd3: add back missing errcheck
604cc2b51f4 hack/update-openapi-spec.sh
5adc3bf08a6 hack/update-codegen.sh
ae7d637b893 Delete unused ResizeContainerPatch function
f1b35cae913 Use MakeResizePatch instead of hand-written patch strings in resize E2Es
00c1c1a58e8 Generate an E2E resize patch from original & desired ResizableContainerInfo
cfd65c5f74d chore: replacement of helper functions to ptr packge
ff7c781e251 Loop over all IP address from each node
d9de37d9316 chore: typo invaILd occurrence replacement
1ae1964e88e chore: depr. pointer pkg replacement for pkg/apis
31156514102 chore: remove uint64Ptr using ptr.To instead
38080c082e1 kubeadm: use named ports in static pod manifests
baf71997f53 chore: depr. pointer pkg replacement for pkg/controller
8abcdf0885a chore: depr. pointer pkg replacement for pkg/controller
f966647b4de chore: depr. pointer pkg replacement for pkg/apis
6cef8492e71 chore: depr. pointer pkg replacement for cli-runtime
bc72fb81c35 chore: depr. pointer pkg replacement for test/e2e
d193ffe57ff Use sets.Set instead of a local impl
277c665e8bc use early return
81be9065d12 improve the log message to clarify what users should do
e74bbd5db48 chore: depr. pointer pkg replacement for test/e2e
2f7148782b2 chore: depr. pointer pkg replacement for test/e2e and utils
1802c556524 chore: depr. pointer pkg replacement for test integration
b22ffdb48f2 golangci-lint: exclude naming convention check for swagger docs
0e8424fcf00 chore: depr. pointer pkg replacement for the e2e_node
bb24afe586c chore: depr. pointer pkg replacement for component-base
bd8d5f9798c chore: depr. pointer pkg replacement for controller-manager
fe61e825e04 chore: second depr. pointer pkg replacement for apiserver
4a61b817013 chore: first depr. pointer pkg replacement for apiserver
4625908a640 remove unused file
995a7872c55 chore: remove utilpointer usage in pkg/api/pod
ebae4193371 feat: add PreBindPreFlight and implement in in-tree plugins
c5b0c9fdc01 chore: depr. pointer pkg replacement for psa policy
88d885e4073 chore: depr. pointer pkg replacement for psa admissiontest
dc947510da6 chore: depr. pointer pkg replacement for psa tests
35e118a4794 chore: depr. pointer pkg replacement for apiext. apiservers validations
4a205cc7fd3 chore: depr. pointer pkg replacement for apiext. pkg/cntroller
107c58eeea3 chore: depr. pointer pkg replacement for apiextensions in general
b8ec161d7f1 chore: depr. pointer pkg replacement for apiext. integration
ca1d7fff7f1 chore: remove utilpointer usage in pkg/apis/autoscaling
0ad351281bc Cleanup duplicate function to get port number from named port
1ac5f661ed8 Don't log irrelevant zone hints message on no endpoints
27812e44bce chore: depr. pointer pkg replacement for apiext. pkg/registry
b72ab8a4e14 chore: depr. pointer pkg replacement for the cloud-provider
b464bbeb8f7 Remove gogo-protobuf from CRI
ce7b3694f7c chore: remove utilpointer usage in package test/integration/service/loadbancer_test.go
9016f9cb1bf chore: remove utilpointer usage in conversion package
90bbce56b95 PriorityMemoryEvictionOrdering: allocate more memory when swap is provisioned
25498cd34d7 Eviction tests: small refactor
43b22a24395 Apply fix to namespace deletion test (#132691)
0766a3c6b14 chore: depr. pointer pkg replacement for the kube-aggregator apiregistration
6c3146e3557 chore: depr. pointer pkg replacement for the csr
9345552274d chore: depr. pointer pkg replacement for the reflactor
ebea328f173 Fix volume limit e2e test cleanup
38bf213271e podtopologylabels: update topology.k8s.io->topology.kubernetes.io
2e966244ed8 DRA resourceslice controller: fix recreation after quick delete
fa313170001 Remove unused PodIndexLabel feature reference
8c6c7df736d remove apiserver_storage_objects metrics after crd deleted
a7e8a505c25 Improve ignore-not-found behavior (#132542)
1c1f00a5f47 fix: add RV check on GC delete calls
84f6d742c5b Make dynamic and metadata clients plumb DeleteOptions
ad0b2bf4f57 DRA E2E: serialize costly test
33cd2e1ba08 Fix AuthInfo godoc for Token / TokenFile precedence (#132659)
c6f87f6e64a Fix offline expansion tests for case where no node expansion tests is required
b44b0fbf129 Update github.com/emicklei/go-restful/v3 to v3.12.2
58e620cc440 Bump go.yaml.in/yaml/v3 to v3.0.4
00f8cbae6b8 Bump sigs.k8s.io/json to latest - no code changes
22138ef552b Add DNS e2e test of NameIsDNSLabel validated Service names
97c1974e9c2 Add integration test for RelaxedServiceNameValidation.
19e7e38af29 Add unit test for Ingress service ref relaxed validation
37a90b7c244 Add unit test for Service relaxed validation
b430159c86a Allow Ingress service refs to be validated with apimachineryvalidation.NameIsDNSLabel
487eb8a9e47 Allow Service names to be validated with apimachineryvalidation.NameIsDNSLabel
9043afae6d9 kubectl: Cache Verifier.HasSupport calls
179c4398f35 use defaultImage per OS
998776d80bb remove breaking test
a17b0d7f66d gofmt
1514568ddfe rename sortedfeatures -> sorted
9e1a21816d2 update README
5cebe66b646 update log line
dcbed2fbdce Graduate PodLifecycleSleepAction to GA
977c6707333 Add unit tests for minReady new behaviour
4b99dc5f1e0 document hostnetwork <> port implications
952d2727a66 Add OrderedNamespaceDeletion to conformance.
12330a6c426 Drop BoundedFrequencyRunner from pkg/util/async
5d4a85f9f6c Enable versioned validation fuzz testing for certificates v1/v1alpha1/v1beta1 group
0fd4a0acc10 CSR: Add declarative validation test suite
5db2056682f CSR: Enable declarative validation
eecba765de0 Enable validation-gen on certificates/v1,v1alpha1&v1beta1
ec6471f63ef Remove gnostic-models gopkg.in/yaml.v3 unwanted dependency
d04ee27c98b Update vendor
b41d375b888 pin kube-openapi to v0.0.0-20250628140032-d90c4fd18f59
6d5e0bf2a21 review remarks
95b1151d2ab use format specifier
459188ce25c Port BoundedFrequencyRunner from flowcontrol.RateLimiter to clock.Clock
eae17c21b02 Change how BoundedFrequencyRunner retries work
c16ee887efc Remove burst syncs from BoundedFrequencyRunner
0298e04ea0f Updates to BoundedFrequencyRunner
6da9d363f36 Copy BoundedFrequencyRunner to kube-proxy
799aa8b2a8c Graduate streaming list encoding feature gates
5bae9fa8939 Graduate ConsistentListFromCache to GA
d4e49b2eed7 Ensure Loadbalancer internal port is set to container port from endpointslice if the targetPort is not specified in service info creation.
6a25bdaac8f kubeadm: fix missing log of health check
764a8bc8b61 chore: remove utilpointer usage in package pkg/apis/admissionregistration
a55318fe149 fix: versioned validation test avoid incorrect conversion
4c09aa9073f review: feedback
776382daa58 review: assert
43f6bd45f59 review: assert
fa87098ae30 fix: kubelet CRI portforward concurrent map write on error
a0ea2569a76 chore: remove utilpointer usage in package staging/src/k8s.io/apiserver/pkg/registry/rest/delete
7236f3fc2c2 graduate APIServerTracing featuregate to GA
75fc2b1cf6d promote TracingConfiguration to v1
a8068e27b1d scheduler_perf: Fix version emulation for empty featureGates map
5a20c38da61 remove usage of KubeletTracing featuregate from kubelet
7faf797a946 promote KubeletTracing featuregate to GA
d28791fa625 Remove unused sysfsPath's methods
6e5c99dd059 Review remarks
ee8c265d350 Move Code and Status from pkg/scheduler/framework to k8s.io/kube-scheduler/framework
08dd9c47b36 improve the log message to clarify the cause of the failure
a6e2cd4e8d3 scheduler_perf: add logs to report the failure of measuring SchedulingThroughput
7e816ca9b1e Commented out for unused sysfspath methods
2bc45ca4666 Make test only helpers private (sysfspath methods, touchFile, createSymlink)
94973ba3fc9 Fix typo: s/smock/mock/g
ac86e67b7d2 Commonize filtering of Pods by Owner with all orphans in namespace
ca314b9f561 Fix validation for Job with suspend=true,completions=0 to set Complete condition
1134220e011 Add RelaxedServiceNameValidation feature gate
f644e35d193 kubeadm: cleanup after WaitForAllControlPlaneComponents GA
cfe8604504a kubeadm: graduate WaitForAllControlPlaneComponents to GA
f437aa4aa67 scheduler_perf: Set version emulation only when QueueingHints is disabled
b2f27c0649f fix: Truncate too long Deployment name in RS name (#132560)
d67e7937e63 Remove recovery related featuregates
fa6f27c8f7a Add extra validations for newer resizing related fields
00dd610c93e DRA E2E: run some tests without feature label
f93b4408a77 Drop test that checks openAPI resource name since we currently don't guarantee name stability in the API
3eefb05a2c3 Fix gRPC listener error message in kubeletplugin and some minor renaming
e54e01e0abb Enhance help text for the 'top' command
7d5ab756277 Re-generate applyconfigurations
9af684ae098 Applyconfig-gen: Only the root type is an applyconfiguration
d50e1a684cd Ensure all the files have the updated sorting
f2d8b7ec2cc Add linter to report on unsorted feature gates
efcb03759dc E2E framework: sort tests in JUnit report
dfd34a5b189 fix pod template spec validation missing in sts
a57f15e0816 DRA kubelet: remove v1alpha4
005cef332da DRA kubelet: API clarification
f1845218e2d fixup! DRA: fix deleting orphaned ResourceClaim on startup
585ed0a5cb3 [client-go #1415] Use transformer from provided store within internal stores in reflector to limit memory usage bursts
8632257c934 Cleanup: Remove redundant detail messages in field.Required
e82d4f8e559 review: feedback
5cca0379274 resolve linter check
ce86fca8cd5 Add warnings for use of Alpha features with Emulated Version Warn for both api and feature flag use of alpha features with emulated versions. This is an unsupported use case and users may run into issues.
00d37505033 Move ClusterEvent type to staging repo, leaving some functions (that contain logic internal to scheduler) in kubernetes/kubernetes (#132190)
74af3ac8ad1 Revert "pop respects the context"
2dcce93336e Revert "modify tests"
31667cc7412 Avoid killing kops etcd-manager
6d6a749c62e DRA kubelet: add dra_resource_claims_in_use gauge vector
75432a14108 component-base metrics: allow usage of Prometheus types in tests
1639b090839 Add benchmark for SizeBasedListCostEstimate feature
c75d425ae2e CHANGELOG: Update directory for v1.34.0-alpha.2 release
292679a28ae Handle consistent LIST in watch cache to avoid incorrect semantics while setting ResourceVersion on options
c6c15bbe441 bug: Remove duplicate DaemonSet update validations
39dda2b88dd tests: runtime units
8bd8c14312e tests: add more units
f9a5aec318b Added unit tests
5390f75360d Added podutil.HasAPIObjectReference to deny admission for static pods referencing API objects
8b2eb9090e9 chore: Remove vet target and associated script from Makefile and hack directory
7d85134caee improve unit test coverage for pod observedGeneration
1a59c250eab feat: make CLE timers configurable
ef117edf356 DRA: fix deleting orphaned ResourceClaim on startup
c5b4b133ce3 switch to latest sigs.k8s.io/yaml v1.5.0 (run update-gofmt.sh as well)
e2c6b7fdf97 Override getKeys when cacher is enabled
7cb24179993 Run background cleanup goroutine
ec78b8305ad Estimate average size of objects in etcd and plug it into request cost estimator
190c8c7abc5 Use per-policy marker names for VAP integration tests.
6795d5366f1 feature(kubectl): support mem-percent,cpu-value,cpu-average-value,mem-value,mem-average-value flag to kubectl autoscale
9de075def7d replacing deprecated pointer pkg with newer package version
b8b3984874e client-go/reflector: stop exposing UseWatchList (#132453)
0028ea8e993 Improve containers lifecycle test output parsing
7e0d71fc14b apiserver/storage/cacher/listwatcher: error when the WatchList FG is disabled
ec6ea2213ed test: code coverage increase for kubelet_client
cb4014fb75f cleanup: Migrate more usages of deprecated function ExtractCommentTags
b50d5081766 bugfix(hpa): introduce buildQuantity helper for consistent resource quantity creation
cbba973b6c9 Fixing go-vet finding "call of reflect.DeepEqual copies lock value" by just asserting on the basic fields that should be reset when ClearState() is called
35ecb00f1c5 fix: Add wait for cache sync for customresourcediscovery tests
d6d186ece06 Activly poll for namespace termination instead of sleeping
e1daa69de8c Add printer column validation tests
369e6a25a28 Introduce k8s-short-name and k8s-long-name to the OpenAPI formats supported by CRDs
6f1295ae9d2 fix: prevent SSA from creating CR while CRD terminating
3b0fd328106 e2e: serial: cpumanager: continue on failure
f76e1381d08 e2e: node: fix quota disablement testcases
dc323756cea Bump to latest kube-openapi
d180fe28ad5 Add json-patch v4 compatibility test
2ca4ffe6532 Add evanphx/json-patch/v5 to unwanted dependencies
5a7e04b6cc7 feat: optimize ListAll and ListAllByNamespace to return directly when nothing to select
ae13d101958 KEP-5229: Add SchedulerAsyncAPICalls feature gate
dce69afadea apiserver/cacher: properly wire listwatch options to the listwatcher
0276769c2c8 kubectl: avoid logging during init
6040344a65c kubelet: DRA: fix TestRegistrationHandler
cc7893a42c6 kubelet: DRA: fix unit test failure
cf544da6f7a e2e_node: DRA: add tests for different socket setups
7f6389e7709 e2e_node: DRA: pass socket path as a parameter
3ae99f25471 kubelet: DRA: fix test failure on Windows
c90c2e0d402 kubelet: DRA: fix linter warnings
165bb1da58e DRA kubelet: use TimedWorkersQueue
4ee7374b24e DRA kubelet: add connection monitoring
f927cd01088 DRA kubelet: simplify plugin creation and connection handling
cfeab03ade4 remove kvh.exec
75862f3f461 show namespace on delete (#126619)
56d97283afb fix: Improve error messaging on updating a deleted object
fd8bf1c8211 e2e: retry getting status on restart policy tests
c5f061e0df0 Fix pod and container level swap metrics for CRI
e1d74f1d335 Update etcd image revision to 3.6.1-1
7e3945808d3 nftables: remove filter-output-post-dnat chain
91f2256b34e update filter chains and priority
72305f82f9a Move UnsafeCorruptObjectDeletion outside of etcd3.New function
59dd2bd60dd ci: update test image base: nginx, nginx-new
af89044a78c conntrack: clean stale entries on endpoint port change
861e7b8fae2 fix unit test flake for authn config on windows
2fd93c08988 fix: data race for patchResource func
ccdef28acd3 fixing large resourceversion and limit for storages
fe84377458b e2e/watchlist: new test for checking metadata informer
d6ba9e1b9f7 replacing depr. pointer pkg with new ptr pkg on src/apimachinery
db32c4cf7ca fixing syntax issue for etcd builds
8454093f09e DRA: add e2e test with initContainer using external claim
138e363e413 cleanup shellcheck for temporary HOME directory
66c611125c7 Add namespace-aware orphan pod indexing
5e54df3e72e Fix [Failing test] [sig-node] [Feature:GPUDevicePlugin] [Serial]-related tests
280cecb8fb0 fixing location to ensure the cp commands dont fail
d2945a21fda bumping revision
fa1832484d1 handling the etcd 3.6+ build directory location change
e68d6013449 Don't panic in case of an unknown API error code
4ca91a03052 WIP: Fix tests
2b2c9adef38 Nicer value rendering in API errors
cfff359b419 fix for gimme when $HOME is not writable
6a654e5be0c Deprecate StreamingConnectionIdleTimeout field, that is not being used for a long time
b8cd05881c5 Address PR comments
6f97f5bbf87 Use Mock CSI Driver for MutableCSINodeAllocatableCount storage e2e test (#132373)
176095ac30e [KEP-5100] WinDSR feature gate to GA
64c44e1fa63 Test that generated applyconfigs are a runtime.ApplyConfig
a5d42f56939 Re-Generate applyconfigs
d5527b51930 Update applyconfiguration-gen so acs implement runtime.applyconfiguration
3fe4ea550e8 Add an interface that all applyconfigs implement
b0b52f4fb29 CHANGELOG: Update directory for v1.30.14 release
2bc98f123d7 CHANGELOG: Update directory for v1.31.10 release
20e9f160c97 CHANGELOG: Update directory for v1.32.6 release
9e126a37720 CHANGELOG: Update directory for v1.33.2 release
df32f10e069 apimachinery/pkg/util/errors: deprecated MessageCountMap
de2f22ee8ee e2e/watchlist: intro verifyStoreFor
017c9b94daa e2e/watchlist: rename toSecretPointerSlice
caa64afd017 merge constants.go into attribute.go
73d65f830a1 Put _linux suffix for linux specific go files
88b34ea1f1d Move bdfRegexp from global constant to local variable
fc854a9a861 Introduce DeviceAttribute{Name, Value} and change return type of 'GetPCIeRootAttributeByPCIBusID' with it
8ed8217e9ab Moved device attribute constants from api to deviceattribute package
f7461a12dcb Revert "Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions"
6b9ac7c5160 cluster/gce: rm KUBE_LIST_FROM_CACHE_INCONSISTENCY_DETECTOR
512563e7b08 pkg/proxy/conntrack: refactor
91b4816c230 Optimize job controller performance: reduce work duration time & minimize cache locking
18dd1daaeb9 Add Windows Server 2025 (ltsc2025) to BASEIMAGEs (#132235)
44b4682a320 Use jq docker image for pause windows build
3827d3bc4f1 Drop usage of forked copies of goyaml.v2 and goyaml.v3
2869b6f42c4 Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions
a8ab9eb5fea Simplify the implementation: just provide GetPCIeRootAttributeByPCIBusID
d390902b99a Verify scheduler resource metrics account for Pod Level Resources
32fcaf14067 client-go/util/consistencydetector: move IsDataConsistencyDetectionForWatchListEnabled
72654620a2f removing WaitIntervalString from iptables
bad49390493 client-go/util/consistencydetector: remove CheckListFromCacheDataConsistencyIfRequested
15ca38b521d apimachinery/meta/types.go: remove InitialEventsListBlueprintAnnotationKey const
690790257fd Add test verifying KUBECTL_KUBERC can be turned on and off
45449a78d5e Removing setting KUBECTL_KUBERC env var, now that it's on by default
3f32edeace1 chore: Remove the dependency of the volume manager on the container runtime.
3dc1810bb7e fix: failed unit test.
b8a2127d277 Add random interval to nodeStatusReport interval every time after an actual node status change update or restart
fbf4b47d150 chore: clean up probemanager for shutdownnamager.
3fa23d06af6 Adjusting AdminAccess Type for API v1beta1
2a5e4d55824 add script for verifying dead code elimination
891e7fec6e1 add seperate health check/probe for multi etcd override servers - grouping health checks for exclusion purposes & add exclude integration test
28573e373fd Add error prefixes for authn config load or validation failures
4cb6d3d7761 Validate requests sent to etcd in TestList "test List with limit" scenario
03afe6471bd Add a replacement for cmp.Diff using json+go-difflib
32ec4e68cc8 adding omitempty tag and opt tag
e654deba630 CHANGELOG: Update directory for v1.34.0-alpha.1 release
f4a45862556 fix APIServerTracing test data race
2004ee50f5d Fix -Consistent paginated lists serve from cache
bccc9fe470f KEP-3939: Job Pod Replacement Policy; promote to GA
fc198b92c0d apiserver/handlers/watch: stop encoding initialEventsListBlueprint (#132326)
854499f986b clean: use correct pod template
fae2fdd052c DRA: wrap e2e finalizer update in retry
7a95f3e4787 Fix NetworkPolicy podSelector comments
233a0aeedbf DRA E2E: label tests which need a certain minimum kubelet, II
2cd5dbbdaab modify tests
59f0ab97c25 Add boilerplate header to go files
1c33d987625 pop respects the context
f67d30b3529 handle context in process loop
384240b4d95 Use "Invalid" errors rather than "TypeInvalid"
bdfa8839bec calculateStatus should use the same now time point for each pod
ce44bcdf52b conformance servicecidr read status endpoint
c2988884f34 fix kubeadm e2e tests
cb26d065d39 Validate PCI Address (domain is 16 bits, bus is 8 bits, device is 5 bits, function is 3 bits)
752a043692f fix lint: apply De Morgan's laws to simplify conditionals
76ef6a388f8 fix kubeadm e2e tests
79601d13569 Fix CRI fake_runtime RemovePodSandbox
666f38f4189 DRA: Introduce a helper function producing standardized device attributes for DRA drivers
7a3af908c64 add securitycontext OWNERS to be SIG Node as the package is mostly used and contributed by SIG Node
7f1dde2a0fe test/apimachinery/watchlist: properly wire modified config to informer for fallback case
40c718864b7 chore(apiserver): avoid using html template which disables dce
6a37976848b client-go/rest: rm watchlist
4372c59ebf0 update go version for publishing bot rules
e09b042d34b Bump etcd to v3.6.1
901441c66eb Promote SeparateTaintEvictionController to stable
85bc3cb0960 Remove GetExec method from VolumeHost
9251b2a7a58 Expand webhook test to check rejection metrics
f8b4ea50e8d ./hack/update-internal-modules.sh
71b2f32d70f DRA E2E: label tests which need a certain minimum kubelet
3908550c0dc Update to latest github.com/modern-go/reflect2
d8bfafe07af test/apimachinery/watchlist: prove typed client's List method not streaming
601065a7c6b bug: Fix misleading response codes in admission control metrics
5882df8beb3 promote env test to conformance
69a5bda836e Bump base image used in nonewprivs to alpine:3.22
04110fce1bc Correct error message to print `ResetConfigurationKind`
3443c1115ae make update
798c6ebab85 client-gen/code-generator: remove watchList
db2555628c1 Fix: HPA suppresses FailedRescale event on successful conflict retry
2f943293ed8 client-go/gentype: remove watchlist
f0dde38234f Remove pluginName param from GetMounter and GetExec
fb611f4c93e kubectl delete: Update interactive delete to break on new line
d46e13b9c5f change the command of the terminated container
226c0d10959 Bump ipc-utils base image to alpine:3.22
e75ccce83fc feat: optimize label selector match performance
ac467d3aea4 add ratcheting testcase for validateFalse tag
9384285c604 add ratcheting testcase for minimum tag
1574001a1cd run update-codegen.sh
f574115f14f feat: add default ratcheting support
e9eabb2007d feat(validation-gen): Refactor type handling and introduce utility functions
03c6e15f845 bump to alpine 3.22 and bump apparmor-loader to 1.6
b86b4632b3f disable selinux relabeling when mounting sourcedir to shellcheck
dc3836c49ed Remove deprecated encryption config controller metrics
5a2844a766b Update to etcd v3.6.1 in vendor/
a9108e8f532 Adding `grpcnotrace` tag for production (non-debug) builds
11abb0042d2 Fix outdated links in VolumeSource godocs
4b2fe2a544d pkg/kubeapiserver: use utils/ptr package instead of utils/pointer
69eddde89b4 using finalizer
57d55fbb106 test: Add test case for createNodeOp
1d69a2fbc3a ./hack/update-vendor.sh
edadfee47d3 test/apimachinery/watchlist: prove dynamic client's List method not streaming
348ff7497c3 Build etcd image v3.6.1
3038f3530d1 client-go/dynamic: rm watchlist
86c709cd817 skip nfacct test in IPv6 clusters
e5f36796e34 Bump dependencies, images and versions used to Go 1.24.4 and distroless iptables
07151bb0f4c chore: Add validation error for unsupported map of slices in validation-gen
89f5453e314 Allow system:monitoring role to access kubelet metrics endpoints
2810f6e65f5 add bentheelder to cmd/preferredimports *reviewers*
00a6d2c99c0 add bentheelder to conformance related test *reviewers*
1dd055774cd backfill some sig-testing-reviewers (tech leads aojea and pohly)
ad68a4b4cdd emeritus spiffxp
512f000d0f3 Update tests for StructuredAuthenticationConfiguration feature gate GA
efebfe9e3a5 Set StructuredAuthenticationConfiguration feature gate to GA in v1.34
769d71b3045 Remove unused Expect methods in testscheme
105dd3b0ab0 Add ExpectMatches to ValidationTester
28e973c0447 Better formatting of matcher errors
b39741b5062 e2e: node: serial: fix cgroup path with crio
26b188aaa8f KEP-4633: Graduate to Stable.
fd5d7a18ed1 reduce logspam when calculating sandbox resources
0baeccd32f0 KEP-740: promote ExternalJWTSigner feature to beta
ef2c18a5a0e Add more test cases
eb3c9a3184a Promote feature OrderedNamespaceDeletion to GA.
f8b70124350 Revert "improve display format"
449320a54a2 update github.com/spf13/cobra v1.9.1
260a720a851 Rate-limit the LoadBalancer rolling update test
0a86ca40615 Add healthChecker to the kubeDeps
dacafec88c2 KEP-3015: PreferSameTrafficDistribution to Beta
b2ab0ba1938 Drop unused testing manifest
96b39187c5f Add context to Count()
9d1bc51cbb7 adjust durations for sleepAction
c85ac59df41 Build k8s using latest commit of golang
4a7e68a3555 fix: Fix the issue where kubelet's slow startup causes it to be mistakenly killed by the watchdog.
b02fba7e0e6 Fix incorrect logging of insufficientResources in preemption
fc7ba63ee8b support parsing of iperf 2.2.0 output
1755a9e5455 fix: iperf version in comments
0ca9c380add update all api files
32aa52adf66 tolerate newer golang/oauth2 version
3cfa73bc17b add -q flag for git worktree
97ec8618d3e Fix kubelet iptables startup, clarify semantics of utiliptables calls.
6a4751da7fa Graduate RelaxedEnvironmentVariableValidation Feature gate to GA
f4ab6c2befe cleanup: Migrate deprecated function ExtractCommentTags
0d468f58c07 kuberuntime_manager: don't log entire container spec.
858b88bceef kube-proxy: log ipt errors during platformCheckSupported
1f46b3fdbff Clean backoff record earlier
7b1f4990677 DRA kubelet: rename Store + Plugin -> DRAPluginManager + DRAPlugin
fad670c27b9 DRA kubelet: move RegistrationHandler into Store
494a129d02a DRA kubelet: clarify plugin vs, driver name
0d5578b8395 test/apimachinery/watchlist: prove metadata client's List method not streaming
5b0f0d2efa2 update pr template issue links section
a38ad3a2c67 client-go/metadata: rm watchlist
beb86a8391b KEP-3329: drop PodDisruptionConditions feature gate
b5a8f5d0a50 KEP-3715: drop ElasticIndexedJob feature gate
10de6780cf6 DRA API: remove obsolete types from v1alpha3
0896693693d fix TestNodeAffinityPriority: calculate the priorities correctly even if PreScore is not called
087554448ca Make nodeports scheduling plugin sidecar initContainer aware
1876c544511 Remove unsupported map of slice validation for non-byte elements in validation-gen
50139381006 Change option to a slice
990cb7547ca Use slice.Contains()
28e99ef2ee6 Add type information to tag Docs() and use it to typecheck tags
31aa3c20297 Switch to using named args in output_tests
7892fd95f24 Use codetags in validation-gen
249801b7ccc Fix windows-pause-image-base:<tag>@<digest> invalid reference format
2c4c3037b6a Fix field path for embedded fields in root types
d1bddfd779f Forbid github.com/pkg/errors in k/k
efaaece0fbc go.mod: drop pkg/errors as a direct dep
cbbfabe7fec Support embedded fields properly
d1a858ca9f6 kubeadm: fix one missed pkg/errors location
036f4bfe282 hack: fix KUBE_RACE in benchmark-dockerized.sh
5be254650f8 kubeadm: start using util/errors
f522d7cb858 kubeadm: add a local implementation of wrapped errors
2bf3d8b7336 KEP-3335: drop StatefulSetStartOrdinal feature gate
1d1d0c154c2 promote agnhost to v2.56
258961cb350 pkg/appis/apps: use utils/ptr package instead of utils/pointer
7b664a11352 pkg/volume: drop pointer wrapper functions.
253a08d7e39 pkg/util: drop pointer wrapper functions.
ac5cb23000f Bump gengo/v2 to latest
d6ec03a1302 Preempt based based on allocated resources rather than desired
7d47165e3ec Replace queue.FIFOs with k8s.io/utils/buffer.Ring
705e89b046f Only set pod allocation if admission succeeds
f8b893489c1 Update pkg/kubelet/kubelet_test.go
147073102b7 fix: prevent data race in metric LabelValueAllowList initialization
8cdbbf5cdae Update k8s.io/utils for new generic ring buffer
daae472fe1b e2e_node: verify restart looping container correctly
109ae1bacad feat: Allow leases to have custom labels set when a new holder has the lease
8d3fb9ee0a5 [KEP-2400] kubectl top: add a --show-swap option (#129458)
4c7840ec5d2 podResizeMutex cleanup
c7fdf6abde1 Handler will return the server port number instead of address
6a495241ef3 KEP-3331: Add test to simulate revocation via user validation rule using unique identifier (jti)
466fb815287 test/e2e/apimachinery/namespace.go: make OrderedNamespaceDeletion test serial
7e7aa6d810d e2e: node: cpumanager: require cgroup v2
68efb079aab kuberc: add tests for DefaultGetPreferences
ad3a13e014f Graduate NodeLocalCRISocket to beta
b9d9dea03f4 Update npd from v0.8.20 to v0.8.21
47dead1c403 unexport allocationManager IsPodResizeInProgress
de1d6fbf242 fix: ResolverTypeProvider data race
9b8d7ce4987 pr review feedback
a512de6e094 Clarified the token scope and future plans for the next security scan to refer to it
032a9eaede4 DRA kubelet: code cleanup
a6e22689946 Ensure github.com/pkg/errors is used only in kubeadm
7ccb9657f7c sched: Apply EnablePlugins to CoreResourceEnqueueTestCases
6cb14884b61 test-integration: allow enabling race detection
545fbc99c2b test: drop dependency on github.com/pkg/errors
899f76159f1 add unit test for IsDNS1123SubdomainWithUnderscore function
0a7d9f9bfd9 KEP-4427: Promote Relaxed DNS search string validation to GA
2aa7ef3d273 Address comments
dbdd6a3b435 FieldManagedObjectTracker: Fix to work with unstructured
b7d16fea7fd disable terminatingReplicas reconciliation in ReplicationController
ee33c1a9fc9 e2e: fix userns test
be049397dfd Fix IsDNS1123SubdomainWithUnderscore to return correct error message
4f91a69f2b0 DRA integration: move and extend device status test
0a96613754b proxy: remove iptables wait interval flag
a5aabf9f7e0 DRA kubelet: validation pass before changing claim info cache
5420dcec553 Promote two more EndpointSlice tests to conformance
b9496d1a9d7 Update client-go template with backticks
d70fcf731bd Update client-go PR template
d75af825fbe Extract interface CycleState and move is to staging repo. CycleState implementation remains in k/k/pkg/scheduler/framework
be6807e6a57 Allow specifying a directory for image credential providers json/yaml configuration
aac00c1f0ed add orphanedPods parameter to getRSPods
d13dcbbf95c kube-dns bump to v1.26.4
96b5ae792bc Add code for not expanding volume if it has NodeExpansionNotRequired annotation
2b0b3435078 DRA: Improve implementation of counter management in allocator
1cd71cbb14e ManagedFieldsObjectTracker: Reload scheme
4654496c395 Add code to not expand certain types of volumes
741d0e2b81a Gradute ResilientWatchCacheInitialization to GA
c8f1a653014 agnhost: added server address for conntrack cleanup entries
5058e385b09 DRAAdminAccess: update label key
ee2d3b6a2c2 DRA: Exclude individual devices when PartitionableDevices feature is disabled
ab6fdf46d89 Move the autoscaling e2e tests to be ran in parallel (#131091)
4e3634bbbfb Update security contacts for sig-cli owned repos
b0847b47697 Add unit tests for fsGroupChangePolicy accessors
74167f9041b Fix typo in the `--anonymous-auth` flag name
6410329a07e update go version for publishing bot rules
60b5338d460 Promote automatic_reloads of authn config metrics to BETA
f694c58c6cc feat: graduate QueueingHint to GA
1310fc027a5 kubelet: drop dependency on github.com/pkg/errors
346fe182bea DRA E2E: fail test when ResourceSlice publishing fails
dc2f33f9d8a Update Perl to 5.40
7c0f968ab25 Drop usages of deprecated otelgrpc methods
157903b09b6 Skip backoff when PodMaxBackoffDuration is set to zero
54b2fad0330 kubectl: drop dependency on github.com/pkg/errors
b461d80f3d9 etcd: update etcd image to v3.6.0
df2857e7777 Revert shorthand for kubectl explain --output
1d17ca9b7e9 generate code
8ae7171041b Simplify subresource matching
9715c90b31c Clarify errors and improve tests
4cac349f86b Clarify group version lookup in validateDeclaratively
c2eef42cf4d Add output_tests
6284a0f50bb Tag types with +k8s:isSubresource and +k8s:supportsSubresource for scale
7dc8660d036 Update testing to fully track subresources
6ca6b7bb6ab Add +k8s:isSubresource and +k8s:supportsSubresource tags
105391403fa Enable scale subresource in generated validations
a3eddf7d854 Add declarative validation testing for replicationcontroller/scale
356f395f0de Enable declarative validation for replicationcontroller/scale
030b4ab9cc9 Add declarative validation testing to Scale.spec.replicas
48e1079cf03 Add subresource mapping support to ValidateDeclaratively and introduce configs
8c5c5fb7618 Add origin and use apivalidation.ValidateNonnegativeField for Scale.spec.replicas validation.
d0f6fe30bf1 Add k8s:minimum validation to Scale.spec.replicas
ffb4e003f70 Enable validation-gen for scale group-versions
e63019a8701 DRA integration: refactor code to support other tests
1ffda045cbf update to latest ishidawataru/sctp dependency
50f152440be DRA integration: start scheduler on demand
488c94735ce Bump dependencies, images and versions used to Go 1.24.3 and distroless iptables
699dce0a579 DRA kubelet: fix gRPC timeout flake
7215de79b3c DRA kubeletplugin: some doc updates
24c0e91d295 DRA resource slice controller: disable resync
01820ff7c27 chore(scheduler): add filter integration tests for missing part plugins: NodeAffinity plugin
151d9d79f4a Remove package protected field updatePodOther from ActionType. Make ActionType.None public
76f95271a5d kuberc: make update and update-vendor
b8e6de08e1b kuberc: add API violation exceptions
c29accaf581 kuberc: introduce fuzzing for kuberc types
b0370c483af Promote kuberc to beta
1f355e5b441 kuberc: pick the first known version when decoding + tests
0341b27c5d0 kuberc: align internal and v1alpha1 go-types with v1beta1
39195f9a463 kuberc: add v1beta1 types
35870c480d6 client-go remotecommand: avoid "unexpected error" log when there is no error
7287dcd2fb3 vendor: update system-validators to v1.10.1
b35c5c0a301 e2e: Fix shadowed error in reboot test and clean up containers after reboot test (#131699)
f79012a0db3 renamed SIG Node google groups
50fe29e524b Add accessors for fsgroup change policy
17946fe7994 Add Stress Tests for VolumeAttributesClass
32c45ecf10c Bump github.com/vishvananda/netlink to v1.3.1
aea2743e4e9 vendor: update system-validators to v1.10.0
96e4cc65fbc update baseimage
c5f368522d5 kubeadm: fix dryrun-latest e2e by updating cluster-info fixture
d7b6049099e e2e: node: always declare testcase CPU requirements
b571840d00f bug: Remove duplicate ReplicaSet update validation
67345417c03 Update tests to use v1 for AuthenticationConfiguration
aea874e5e47 Duplicate v1beta1 AuthenticationConfiguration to v1
c509e22d11d Add a list of modules that should be pinned at current versions
c4421fc13e7 address more feedback and some cleaning
637d234aae3 feat: Add support for ECDSA-P384 encryption algorithm
b98b86bd6ab DRA: Add scheduler perf test for partitionable devices (#131771)
4cc2bded914 DRA: Add an allocator test that uses an attribute selector
60c36432f2a DRA integration: set up nodes for scheduling
1c3beb47a5c Fix goroutine leak in unit tests
f6fafba424a fix flacky test: ResourceQuota should verify ResourceQuota with terminating scopes through scope selectors
8cf5e8db78d Deprecate kubeconfig's preference field in favor of kuberc
1ce8503e91e add UT for volumepathhandler
a8ed33bc646 feat: add metrics for compatibility version
c4a59afe9dc Fix incorrect URL in build/dependencies.yaml file
5bb3f862a06 DRA: Clean up allocator tests
5834476681c fix lint and unit test failures
676978641e1 address feedback
88e1909e518 move pod admission and resize logic into the allocation manager
35307319740 Kubectl: check version skew (#127365)
3878f7e7489 E2E ResourceQuota: ensure consistent ResourceQuote during scope selector test
4a353d07e4f E2E ResourceQuota: fix pod creation flake
4b10ba9eef8 E2E ResourceQuota: dump last ResourceQuota
f712b01ddb5 Unify references to group resource in metrics
d3afe8a87eb hack/local-up-cluster.sh: remove kubelet --cloud-config
772d0106651 client-go workqueue: clarify parallel reenqueuing
d043beb223b HealthChecker has a List method
9b3830fba23 Bump google.golang.org/grpc v1.72.1
be5d8c767b2 Update cmd/kubeadm/app/cmd/upgrade/apply.go
c0885e018ae Fix --config option from suggested kubeadm command
8f49fb5ce7e future-proof csi test mocks
adc4916dfe4 feat: introduce pInfo.UnschedulableCount to make the backoff calculation more appropriate
968e19d1b6f docs: avoid broken link
a271d3e5339 cleanup: remove error comment of AddIndexers func
5def7fadf3e Drop dependency on x/exp package in mount_linux_test.go
b9e2a160832 e2e_node: dra: test plugin registration retry
aef61622aed e2e: dra: implement ResetGRPCCalls
e8be3e575b9 e2e: dra: simulate GetInfo failure
2f50d0a510d Add kube-api-linter plugin to golangci-lint
0e5eab042c3 test: Use sub-tests in watch tests
5da12b5aee9 Add tests that validate the return value of resize operation
c369e3cd493 etcd: build etcd image v3.6.0
65a27eb97d6 restrict the use of scheme internally to client-go
671d1a07a58 Bump the busybox image
88b23605404 ResourceQuota E2E: more informative failure message
ba77d27560a DRA E2E: reduce risk of flake in ResourceSlice stress test
6b0ebedccc1 Set non-experimental WatchProgressNotifyInterval config field
079d4e52c24 Fix kubeadm etcd client interface
cf0bbf1171e bump etcd client to 3.6
7bccb1acb5e Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go
139fab0ebdc kubelet: don't import testing dependency in non-test code
90b256537c2 Add suggestChangeEmulationVersion if setting locked feature.
5314fcece31 Promote automatic_reloads of authz config metrics to BETA
1b9bb3393f5 test: Fix CURL download of Windows busybox test image
b0ab168a71e CHANGELOG: Update directory for v1.30.13 release
ec7e732cbcc e2e: dra: move gomega matchers to dedicated package
fcfd87812f1 CHANGELOG: Update directory for v1.31.9 release
2b7f8e1682c CHANGELOG: Update directory for v1.32.5 release
1ab54ffa642 CHANGELOG: Update directory for v1.33.1 release
bba9c49e101 e2e: DRA: test 2 claims with the same name
8d8fd92966b DRA: test mismatched claim UIDs
96da66054db DRA: genTestClaimInfo: add claimUID parameter
69e16d2f544 DRA: kubelet: check for duplicate claim names
b9fec8bf4ff fix scheme import
cf8acf5cb73 package bootstrap matches dir
e9fcdabcf50 feat: kubectl debug: add label for debugger pod
b13cf0a65ae tests: userns: Add framework.WithFeatureGate()
9549c111551 fix e2e network test flake because of network programming latency
ef0547741db verify scripts: preserve exit code
0114d33c346 datapol: compare types directly
a1a4bc8fec8 fix: add BackoffExpiration to DeepCopy
2fe65bbf48b fix(kubelet): update lease duration when config changes
094466539e0 Add rotation and clean up for logging
125600e7458 Remove unused GetHostname method
ee94ba913ad Run codegen
4eb9fb21b69 applyconfig-gen: handle non-pointer embedded members
c374ab81185 Add a breaking example for applyconfig-gen
70e05132645 Separate getList and watch errors to prevent TestGetCacheBypass flakes
5121115711e Add sig/scheduling label to scheduler integration tests and staging repo OWNERS
1ed6cf21966 Add e2e tests for kuberc
0ad8e65d90e e2e pod readiness gate network flake
fe1b1fff7c6 Remove unused GetHostIP method
504b681ae14 Adding Joel Speed
47f85960638 DRA: prevent admin access claims from getting duplicate devices
c5e4cab9b1e e2e: add corresponding featuregate label to node features
c4d6fcb1974 Remove misleading comment from NodeTaint TimeAdded field
d0b6ea36b60 update got to 1.23.8 for the active release branches
3043257b838 remove release-1.29 as it is deprecated
9fd545bcc46 [sig-scheduling] SchedulerPreemption [Serial] validates various priority Pods preempt expectedly with the async preemption: replace finalizers with preStop hook and TerminationGracePeriodSeconds
74e9b27e56e Port "Service endpoints latency should not be very high" to EndpointSlices
e5f7fc25e71 TestNodeAffinityScoring: wait all nodes
e42aba6c0ce Optimize RS Controller Performance: Reduce Work Duration Time & Minimize Cache Locking
28602c66fcf Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption_test.go
52e7aa37daa gofmt
a507e64fe4b Have separate tests for custom selection vs ordering, add comments around system pod eligibility
283c5e6b61f Have IsEligiblePod be supplemental to priority check, update tests
3ed73e058ae Clean up the affinity explanation, fix for new lint rule
d4bc527a7b8 Update comments: affinity info, default behavior, priority->importance
95ebc2c10e9 Apply suggestions from code review
7f57c6e52dc Update factory to use generics, keep single New function
137da6a4882 Remove line about equal priority, fix typo
b8ac1714370 Apply suggestions from code review
224e6a3a355 Rename EligiblePod* to IsEligiblePod*
4bf6841495e Update the customizations to operate on individual pods, for more flexibility later
c34f8db5594 Remove unnecessary context and typecheck, switch to cmp.Diff
c6f2d3879b8 Fix gofmt in default_preemption_test.go
78b059c064e rename OrderedPods -> OrderPods
2616202ac9e Implement tests with example customizations, add direct constructor
760daaf1100 feature(scheduler): Custom pod selection/ordering in DefaultPreemption
721947a5703 Update staging/src/k8s.io/apiserver/pkg/audit/request_log_test.go
153233c677d review from tallclair
e418ee3a92c Avoid encoding in LogResponseObject when we are not going to use it
26c198dc202 Some fixes
0b915a538fd Cleanup after rebase
a6586aa610a Addressed comments
e262cccf23b Cleanup after rebase
86104043588 Add e2e tests for Partitionable Devices
ece35e58828 Update DRA e2e test framework to allow publishing advanced ResourceSlices
a437a269f18 Fix comments on ginkgo label functions
85734ac6b38 DRA E2E: don't run prioritized list tests twice
808a5cfd469 e2e tests: remove all cloud provider calls in storage/volume_provisioning.go
51407868295 feat: improve the backoff calculation to o(1)
cfe7d042435 Account consumed newlines properly in YAML decoder
d5a56739cee use framework.ExpectNoError instead
699ec0a538a Remove wrong comment
f718096b744 NoExecute taint should be added when a Node's ready condition becomes Unknown
3911b677bd4 test: wait for nodes to be in scheduler's cache
ea6b4ea7e9d kubeadm: bump supported etcd version
9d963298a3b test: Close response body in watch tests
d1fb42a4000 fix: fixes a possible panic in `NewYAMLToJSONDecoder`
960a4939f25 Eliminate AuditContext`s SetEventLevel
c39705281c9 Self nominate adrianmoisey as sig-network reviewer
b09d034a570 DRA E2E: revise test labeling
13bd0b4ee82 e2e: node: rewrite the sidecar related tests
f4265638be9 e2e: node: factor out reservedCPUs
a8c8b0987dd e2e: node: dissolve skipIfNotEnoughAllocatableCPUs
32d4724ab8c e2e: node: add comment about reserved CPU
daf2fc71002 e2e: node: rewrite multi-pod tests
ccc662c228e e2e: node: initial multi-container tests
2419d9ccc5f e2e: node: rewrite: multi-cpus single-container pods
e4726719a75 e2e: node: rewrite more compatibility tests
74fda8c700a e2e: node: rewrite compatibility tests
dd3f9b60741 e2e: node: rewrite CFS quota tests
b9ce058ab67 e2e: node: rewrite strict-cpu-reservation tests
3eb2e65fc30 e2e: node: rewrite cpumanager tests
94dd0b8402a Move test cases from mounted_volume_resize into testsuites/volume_expand.go
4aa3c968a78 Build etcd image v3.6.0-rc.5
641834d030e Fix broken recursion
eb4641d6512 Add container Resources to the backoff key
080d6f9ead7 test: pass the test context to http requests
3f188e5d86b refactor: Use http method constants in apimachinery
75afa1e0acf Fix API server crash on concurrent map iteration and write
f93e4645c18 refactor: Stop using ioutil in apiserver
9e3a1b0a908 Add comment describing the feature gate with a link to KEP
e3f3da5e795 Swap KUBECTL_COMMAND_HEADERS to use the proper feature gate mechanism
d1b5f268b48 Drop KUBECTL_ENABLE_CMD_SHADOW featgure gat entirely
a6abd717eae DRA: Fix failure to allocate large number of devices
6cca37b36fe Add integration test for log verbosity
69682b75e50 Manually read verbosity before kubectl command construction
ee4c6b90ce9 add HirazawaUi to kubeadm approvers list
77b1236a523 fix: Kubernetes versions in unit tests
f40892f4813 client-go: call out WithContext inconsistency
871cabeedb0 deflake e2e tests: StatefulSet Non-retain StatefulSetPersistentVolumeClaimPolicy should delete PVCs after adopting pod (WhenScaled)
8b81a3d883e Rename GetStableKey to GetBackoffKey
861682235cf DRA: Fix incorrect behavior for AllocationMode: All in ResourceClaim when used in subrequests
a3097010faa Change the implementation design of matchLabelKeys in PodTopologySpread to be aligned with PodAffinity (#129874)
ce02da8daba generate code
4821604f83a Reorganize scheme type converter into apimachinery utils
e81887276c6 refactor: Add request method constants
af1d60f30bc Add hpa reviewers
0acc7bd4dcc HPA: Fix int overflow in GetExternalPerPodMetricReplicas
b9cb3cb3339 update klog flags
57218ac969d Revert "kube-proxy: log errors during proxy boot"
9def40c9e7b DRA E2E: fix "must manage ResourceSlices"
c71e29ff12b DRA E2E: fix flaky "sequential update with pods replacing each other"
d28c8cd4887 fix: not removing the plugin from the unsched plugins after PreEnqueue
47d296d62d7 feat: introduce pInfo.GatingPlugin to filter out events more generally
441dd305150 userns: Wrap more errors
43f61e80de3 userns: Improve error returned if userns is not supported
c5efc843dac Fix rudimentaryErrorBackoff to only be created once
97e64e80c3e Fix typo in comment
68f0204e3e1 Better logs and debugging
8a571f7fb80 Rename discover() to discoverType()
eb3c061cafb Reorder and merge blocks handling named types
67bab26ea13 hasValidations should return cached values first
bb10f55fd1e Fix lint warnings
22fa3c747b1 add retries to exec command in cgroup verification
8652b6ab283 Update sig-network-approvers/reviewers
b1bb9a5885a Kubelet: Randomize ClusterRole name in e2e
863168e4749 e2e: stabilize Windows memory pressure eviction test
4ed3768dc95 userns: Use len to handle empty non-nil slices
97a2cb39ce2 Make sig-scheduling-api-approvers actual approvers
6d927c3c250 Comment out sig-scheduling-api-reviewers, since it's currently empty.
038bb1a9a5c Remove alculquicondor who is stepping down from sig-scheduling-api-reviewers
55b5827d8f0 integration: etcd data
aa9f156d7aa integration test for compatibility version
3be3051fb77 Adding test case for the webhook behavior change
cf82fd7e9ce Treat error decoding a mutating webhook patch as error calling the webhook
9bcec340f88 modify unit test for compatibility version
15ab88f88bf remove networking v1alpha1 and make update
54b014be1cd use networkingv1 as default storage for servicecidr and ipaddresses
b2fe862ae3d graduate disableAllocatorDualWrite and lock MultiCIDRServiceAllocator
d2fa246b069 Update codegen
d78b295a845 Reenable guard to only validat root and scale subresources until ratcheting merges.
94d043b149b Drop KUBECTL_DEBUG_CUSTOM_PROFILE feature gate entirely
d52f05dad3a remove hwdef from hack reviewer
2e6ec2414c8 Remove unused function
2e8b409a5ff Rewrite Subresources godoc.
164fefa9483 Update codegen
2119555e02b Add subresource to operation, do not special case subresources in validation-gen
2073ba2372b pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on
2b3f2aa705c propogate error
10c5bdd6a1a Apply feedback
36685c6f1ce Add information about expected status
6c89041043c fix(scheduler): node pre-check logic to consider NoExecute taint effect
e36a168a630 test/e2e/node/kubelet_authz.go: fix SAR to include service account groups
aeb43eb22f6 Migrate ExtractCommentTags to ExtractFunctionStyleCommentTags
1ec7231f633 DRA node: reject static pods which reference ResourceClaims
2ea4b1aba60 golangci-lint: don't warn about conversion and defaulting functions
15d9a93d7c8 golangci-lint: redirecting stderr raced with termination of script
3b5cfeaf204 DRA: use v1beta2
b262d56165f DRA: client-go wrapper with latest API as types
8e9abfaf217 DRA: v1beta1 <-> v1beta2 conversion
d7a64d68b56 DRA resourceslices: clarify code
a171795e313 DRA resourceslices: better error reporting
6392b54e12a DRA resourceslices: avoid update loop when partitionable devices feature is off
5af026120a1 test: bump agnhost image to 2.54
e5ffec242a3 Bump CNI to 1.7.1
47fddb08f75 Expand has() tests for omitempty and omitzero
c2c003a71fc update k8s.io/utils to bring fakeClock.Waiters()
b3bf5ed0ee1 verify-shellcheck.sh: normalize KUBE_ROOT using pwd -P
a1a6208863e use the minimal shellcheck image instead
e0983dbee87 remove unused shell imports in verify-shellcheck
7b50c8a510f jwt: support CEL expressions with escaped names
784c589a77a Check for newer resizing related fields after expansion is successful
6bb6c993429 Drop null creationTimestamp from test fixtures
41805aff915 Update runtime convertor to honor IsZero()
bc605171713 bump cbor to add omitzero support
06b0784062f bump structured-merge-diff to add omitzero support
fdf0bb41a44 Omit null metadata.creationTimestamp
79891eac8bb agnhost: bump version to 2.54
09912f35219 Make ToUnstructured match stdlib omitempty and anonymous behavior
49f765e2b3c Remove redundant Required validation for IngressRules
c78556fb4b9 agnhost pause: report signal, support termination message
a6549edd1a7 kubeadm: use named ports for coredns probes
0faeb5a0d09 golangci-lint: move into hack/tools/golangci-lint
5d9a2f30f28 golangci-lint: finish migration to v2
9bada79de10 DRA node test: fix useless gomega.Consistently
4adb58565cb chore: bump golangci-lint to v2
f6d0498017f Continue alias creation when __completion is used to enable completion
dceae3b3889 DRA e2e: avoid terminationGracePeriodSeconds
56e533f4a08 servicecidr: only patch status if necessary
7fedcc34e49 refactor default service cidr sync status logic
edda4b02d61 fixup! Introduce special handling for updates involving a single resource slice.
6d8b41fac66 Introduce special handling for updates involving a single resource slice.
2e98d87c561 api: Fix typo in word "immediately"
5441f5fdef7 jwt: add unit tests for using CEL with deeply nested claims
43ce37ed481 Address feedback
7e1cec680e5 e2e: Deduplicate cgroup verification
cc4c14d4cb2 Disable size check for xfs/ext3/ext4 filesystems before expansion
48054afd6ac Relax external signer path validation to allow relative paths
5712881cac1 Disable disk size checking when calling NeedsResize function
e500f94519c add missing space in string concatenation (kubeapiserver)
c5a2c69b943 add missing space in string concatenation (kubeadm)
43a0da5880e add missing space in string concatenation (kube-proxy)
66b8a8427cf Fix CEL equality bug for structs will nil field not marked as omitempty
1b9386aac37 Add comment explaining the metric sampling logic for plugin execution metrics
0a4ab936763 fix incorrect comments
4d5d48da706 Remove unused volume limit constants
3a5dda78afd e2e network: blue green deployments
ea644182714 Appease linters
43d6ea12e3f jwt: refactor CEL eval to drop unstructured and map[string]any
064074c07ac Add lazy reflective CEL object wrapper
903d6d4f030 Don't reinitialize test framework during each test case
a56378d9fcb Update UserNamespaceSupport feature gate name
3cadb6ff808 DRA test: update examples
c6f652d5fe0 Refactor pod failure policy defaults
68b1a950f9b kube-proxy should check global IPv6 enablement
2080bafa154 Add sunnylovestiramisu as Reviewer
d6b45bc98d9 [FG:InPlacePodVerticalScaling] clean code resize test
dddfeb4a0e4 Handle unsupported node expansion for RWX volumes
62ddcfba575 kube-proxy: conditionally skip e2e
8bb7b056378 dependencies: github.com/client9/misspell -> github.com/golangci/misspell
ad40bc88568 kubectl describe service: Add Traffic Distribution
28e7acf0f93 improve display format
f30c23a7831 kubectl: sort configmaps alphabetically to avoid random order
db960d10078 Fix openid discovery docs with external jwt signer.
1869f6f23a9 Fix typo in service account config test.
c7a870135a3 nftables: cleanup service chain checks
494b2b563f8 use testing.TempDir and delete helper function
efcceee903b reduce assignment
f42ee7a2d67 use slices package to reduce the codes
9cb3dfb5d3c kube-proxy: log errors during proxy boot
2d337f5151b Retool validator utils realType and unaliasType
835bb2ecc5c Change v8n context.Type and Parent on typedefs
6ea1db51a75 Disallow pointers as listmap keys
fc7f0173577 Handle typedef fields in optional validations
9d519c7c46e Fix immutable validation for structs with pointers
0b190b81748 Add test cases for immutable to verify pointers
855918f75c2 Add tests for optionalness of typedef fields
7a24c4ce5d9 chore: update github.com/google/cel-go dependency to v0.25.0
addaf680aed remove v1.31.0 api testdata
86a43f4b539 Add v1.33.0 API testdata
89156452aeb fix nil pointer panic on windows node
00908ce2d13 Wait for resource quota status to be populated
d5bf33e7d71 update-codegen.sh: automatically install protoc
8a2f367ec3e automatically install goimports when running update-codegen
1473aeaac4d add goimports to tools module
540ea5949f3 skip kubectl proxy env tests when the host is localhost/loopback and would not be proxied
1214dc223c7 kubelet: Use node addresses from informer
c0b2f341a72 clean up cloud provider code because cloud provider only supports empty or external and cloud is nil
187b43d5ada enable dep-approvers for staging go.mod/go.sum
f50ad91ed76 Create a single TypeDiscoverer for all inputs
08794974b79 track gopkg.in/yaml.v3 as an unwanted depdendency
aee4945252f alculquicondor stepping down from sig-scheduling approvers
58e5dfd45c4 attempt to re-introduce dep-approvers for go.mod/go.sum
74e84dbf5a3 Add more test cases to TestDescribeSecret test (#131422)
6eff9db0f10 chore: Add VeryShortWatchError typed error
92359cdc69d update godoc for and rename observedGeneration helpers
932cff5dd41 add more error details to the failing cgroup check
c3bb59d078a Fix etcd3 watcher flake
0d3d2733f60 Update go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful to v0.44.0
a2281f97bb0 bump fsnotify v1.9.0
44d7132afbf Update hnslib version in Windows KubeProxy.
7c53a5aaa4d Remove feature label NodeOutOfServiceVolumeDetach
f74424bd7c1 etcd: better logging
24257f2d316 Remove deprecated scheduler cache metrics
269d3ae5147 Fix comment for default gRPC log level in DRA plugin
2ea68920776 Always check for Immutable selector in Deployment Replicaset Daemonset (#131017)
947a9f26fa3 Move pod resize e2e utilities out of e2e/framework
609e4a9ba04 Unhandled panic crash on rollout_history printer.PrintObj (#130503)
fa8e37f7805 Allow disabling caching for webhook authorizers when using `apiserver.config.k8s.io/v1{alpha1,beta1}.AuthorizationConfiguration` (#129237)
1db2d6a0184 Mark NodeExpansion finsihed without featuregate check
70ebe90b139 Also change final status by removing featuregate check
849924b6ba5 Increase delay in kuberuntime termination order test to prevent time rounding flake.
0e40ed642bc Check for newer fields when deciding expansion recovery feature status
4fa090bd812 Remove alculquicondor from test framework OWNERS
6a17858ff9b CHANGELOG: Update directory for v1.33.0 release
90de4b58943 Remove warning about resizing failed for unknown reason
41809284025 Update cri-tools to v1.33.0
f63702de0f9 scheduler: return UnschedulableAndUnresolvable when node capacity is insufficient
d10eb869276 fix: Fix non-constant format string in framework.Logf call
b9a6a257b7d add TODO for unifying .go-version
5c84ee07eee test/images: read .go-version instead of duplicating
722581f5f68 Expand etcd data test to n-3
c21f26895c2 Fix VAP test for v1.34
bfcee664500 Bump DefaultKubeBinaryVersion to 1.34
27815acee14 remove outdate comment
64b4c96e20f fix: use correct apiextensions v1 API instead of apiregistration v1
a53ea3357c2 Updates prober_total_total to BETA and updates the list of stable metrics
f844abfc6f9 Fix typo in ResourceEncodingConfig comment
ff108e72a52 DRA device taints: fix rare unit test flake
97dd6dc2846 Add warning message for attach
8672956f730 etcd: use Unix Domain socket for testserver
33f16a55ba2 etcd: fix 5 second delay during shutdown
ff2e6dddc8b DRA device taints: work around fake.ClientSet informer race
638abf03396 DRA device taints: more logging in test
40f2085d68a DRA device taint: clean up test initialization
091d09b4479 deflake e2e tests: CustomResourcePublishOpenAPI works for multiple CRDs of same group and version but different kinds
db1e107150d Job: Fix API comments for SuccessCriteriaMet
ac3274521be scheduler: remove duplicate nominatedNodeName clearing in preemption
373866eee99 Build etcd v3.6.0-rc.4 image
7fcc1bcf1d1 chore: move watch handler tests to handlers pkg
3fcb26f0179 reduce etcd install log noise
3e609ecf6e9 fix: Watcher deadlock from Stop not being called
c704025a0eb Fix error handling and csi json file removal interaction
1654aa619c2 deflake intergation test: TestEndpointHandlers
3d53bfec09f Typo fix: watchActcion
4e3026fdb81 pr fix
7d6f86594fc kubectl: sort secrets alphabetically to avoid random order
8f1326251c2 Improve Job API comment for the backoffLimit
9d5f78a990a Update OWNERS_ALIASES add aojea to sig-network-api-reviews
e8dbfc0b6ff add miss Shutdown call for selinux_warning controller
405b9e80221 Check expected emitted events with assert.Equal
5ebeb8defac don't only run events in nested lists consecutively
614b1e90170 Run all permutations of events in ResourceSliceTracker tests
29b499e2ba4 simplify applyEventPair
45b0ddff12c make input events a slice
3883e050fc1 Use shared test fixtures for ResourceSlice Tracker test cases
7f21df6ab14 resolved review comments
5928fc0e600 Add ContainerIter utility for ranging over pod containers
3b2cd123479 fix(kubelet): acquire imageRecordsLock when removing image
6d6abaab7d1 Simplify etcd3 watcher
b82fd6c2888 add e2e test for healthz/
8bc7e6c10e0 add etcd server overrides to etcd probe factory for healthz and readyz
b141ac6a235 adjust container_spec_memory_limit_bytes e2e to range: ppc64le is 44*1024 less
2aa39a0c77c Update the busybox test image to 1.37.0
f9c1876b45d Make proxy CleanupLeftovers methods quieter
b61ca041b45 Add some missing cleanup to "kube-proxy --cleanup"
c1ff9cf4e81 chore: Upgrade the mockery version to v2.53.3.
ffe235d2dd3 replace context.TODO with context.Background in tests
4bd0c024e9d add goleak to kubelet vendor via hack/update-vendor.sh
161b44d04ed add missing header in httpstream_test.go; whitespace in imports
79150d1ecf1 add unit tests to verify the fix
42d3716d727 fixed the formatting
268033a5116 Fixed go routine leak in kubelet tests
30f1bcadea4 Add a unit test for iptables.CleanupLeftovers, improve ipvs test
94530dad7b7 Move iptables/ipvs/ipset interface creation into CleanupLeftovers
975e653af44 RWX tests should create RWX volumes
5ad90c3b63a merge RunBenchmarkPerfScheduling and runBenchmarkPerfScheduling
780c0d67251 add license description in options.go
4f33b74a35c Use Go 1.24 os.Root instead of filepath-securejoin
5677f7ab0b1 Make Request#RequestURI honor configured context root
b206264ffba Shorten long directory names with e2e pod logs
2800c16c8b9 Remove FlowSchemas handling non-leases-backed leader election
16f4a5c4eac cleanup unneed code
88fbccd6982 Fix the allocatedResourceStatuses Field name mismatch in PVC status validation
302a8505833 Update coredns version to v1.12.1
d4fd41285b8 update the log message to reflect success and failed jobs
cc42846187b Fix for HNS local endpoint was being deleted instead of the remote endpoint.
551f3c7824d merge the integration tests into a single one
de98a71ff57 Update PodSecurityLevel used during Service CIDRs tests
58ff3129add update kubelet_authz.go to new test framework
c7d0ed5c488 add integration test for job failure event delay and remove the unit test
6747bf7a9cb Clean up leaked goroutines in cache unit tests
04d0715e663 scheduler-perf: add option to enable api-server initialization
16af0d79d87 update sig-autoscaling maintainers
653f48d8867 Certificate store: ensure data is written to disk
5a14fdbf7f3 e2e: Keep original error when exec in container fails
9c228e81d24 Increase kubectl cp command timeout to 30 seconds
310b395a04f [cloud-provider] respect the "exclude-from-external-load-balancers=false" label
ae08504ca62 Remove unneeded return values
2c94112a026 Disable thresholds for PreemptionBasic and PreemptionPVs tests
f7d8853213d Add dom4ha to SIG-Scheduling approvers
8e65a62b3fd Deduplicate MilliCPUToQuota function & constants
3067bbfe159 hack/ginkgo-e2e.sh: fix misplaced brackets
5e4600e46ba e2e service ip preservation test
f7e82d8059d clarify mutual exclusivity of service account annotation keys in godoc
4fa96391457 kubectl http proxy e2e: do not append os.Environ() redundantly
f7f4aa02baf kubectl e2e: debug appended environment variables
5aa61f84797 Test tooling: fix agnhost pause command
65b8fba34bb Mask Linux thermal interrupt info in /proc and /sys.
0ff1e3778f1 Remove general available feature-gate PodDisruptionConditions
fe14689f221 bump k8s.io/utils
1c3dc397ae1 make update
8af1629f7ae remove inaccurate hostNetwork doc comment
bad6c7e4cc5 Set LANGUAGE env variable in TestDiffProgram for consistent locale behavior
c005b85d4df Reduce locking duration on cache to fetch data from Cache
252d584cb73 Implement validation-gen lint for CI
1a694bfd328 Make validation-gen lint errors easier to read
8dc6806d26d Expose NodeInfo to PreFilter plugins and Framework
5413d0edfa4 chore: correct the comment on UnschedulablePlugins
8db5f061838 adding commits of the original PR
1b8bbcac44c Add integration test
1402a54917e Removed unused function UncompressLog.
88a3c000e5b Implement CSI e2e test for MutableCSINodeAllocatableCount
d868eeb0889 Migrate pkg/kubelet/status to contextual logging
7f263b057dd Tag api change instead of apimachinery on generated openapi. changes
4120ed1df05 chore: `make update` for doc changes
356e148045e fix: comment on preferred PodAntiAffinity
a2624f9c64b make update
21f7026c25c clean up CSIDriverRegistry
a68501da72b Add check to see if promote worked within the retry loop
53499d97eec prefer error over bool, prefer Should(gomega.Succeed())
d54ff7441e1 test: don't panic during an Eventually retry loop
cab6045a40f hack: remove verify-e2e-suites.sh
73afab1856c handle review comments
51fdd55e87e use sync map for the cache
3a5f8b4b99c Update OWNERS_ALIASES for sig scalability
547c005cb7f handle job complete update delayed event
410ada00220 Made the unsupportedError msg more readable
780fac5a37d chore(kubelet): migrate network to contextual logging
125b8d2809d Removed kubelet test duplicate line.
c1efa2e1618 delete test/e2e/common/storage/volumes.go
42943796244 e2e storage test: intree driver adds the support for nfs v3
6df869347bc remove outdate comment about pv controller
32999059054 Based on the issue #8304 add mfahlandt as ne Co Chair for Contributor Experience
9a60ea01f9f fix getPodMatches should call /runningpods endpoint
5da366e3efa Update pkg/quota/v1/evaluator/core/resource_claims.go
ce7d3ea00cc fix wrong api version in toExternalResourceClaimOrError
0f0f9d01c0d remove out-of-date comments about version
c2b455f55c6 remove unnecessary functions
44d31af29bf Add example in etcd override flag help text
3dc611e6666 fix container lifecycle e2e tests
4a4fb0a11ce Fix LC_CTYPE for kubemark start scripts
ea644981df4 Update pkg/controller/certificates/cleaner/cleaner.go
1e1e2dee909 Update pkg/controller/certificates/cleaner/cleaner.go
006ebbc33a8 Fix comment typos
4bf5f1a6b31 kubelet: add coverage for identical kubelet config and drop-in config content
eae133919f0 fix: killPodOptions support JSON serialization
55ba8f063b1 kube-scheduler: Fix a misleading error message in the VolumeRestrictions plugin
a52863827ba [kubectl] drain daemonSetFilter with other APIVersion
9f50740b7bc Simplify span handling
c64b6f80eb7 Trace across start handler invocations, nesting spans
6fd8954fe86 kube-controller-manager: also support context for record.NewBroadcaster
bea35b1f565 remove non-lease resource locks in tests.
ff74405bd39 kubelet: remove --register-schedulable flag
05be83b3848 tracing: set audit-id on incoming requests
eda71f9e958 cleaner.go should use time.Until instead of t.Sub(time.Now())
1354bb9e2ea Update log verbosity for node health and taint checks
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
03eb707025 |
docker-distribution: update to v3.0.0-tip
We drop a patch that is now in the upstrem project, as well as the
new commits below:
Bumping distribution to version v3.0.0-63-g76fe6170, which comprises the following commits:
0e77b285 chore: labeler: add area/client mapping for internal/client/**
2f1a51dc client: add Accept headers to Exists() HEAD
ad5d9994 build(deps): bump github/codeql-action from 4.30.7 to 4.30.8
6d764586 build(deps): bump github/codeql-action from 3.26.5 to 4.30.7
11519e6d build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
99c47b61 build(deps): bump actions/labeler from 5 to 6
e1e5d051 build(deps): bump actions/setup-go from 5 to 6
f5512709 build(deps): bump actions/upload-pages-artifact from 3 to 4
0fb77d6a Fix broken link to Docker Hub fair use policy
251bf1b9 build(deps): bump actions/checkout from 4 to 5
6e59b824 Fixes #4683 - uses X/Y instead of Gx/Gy for thumbprint of ecdsa keys
b559f27a Switch to UUIDv7
b39441b1 Fix markdown syntax for OTEL traces link in docs
53dde7fc fix: set OTEL traces to disabled by default
68cd681b docs: Add note about `OTEL_TRACES_EXPORTER`
1fc84617 fix tests
02b1f6e3 fix(registry/handlers/app): redis CAs
bb278c2b fix: fixed data race in TestSchedule test
b09be3d6 build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
6970080b s3-aws: fix build for 386
e629f886 docs: Add OpenTelemetry links to quickstart docs (#4270)
fea36383 refactor: replace map iteration with maps.Copy/Clone
369663e4 Fix S3 driver loglevel param
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
424f6c5701 |
docker-moby: update to docker-v29.0.0-rc.1
Along with the listed updates, we also update the cli, adjust our build
path (it is now under moby), refresh patches and explicitly export
trimpath to avoid QA warnings.
Bumping moby to version docker-v29.0.0-rc.1-54-gd1a720cb15, which comprises the following commits:
5fa3c65682 client: Client.PluginList: add options-struct
aa36c44ef9 api/types/volume: move `UpdateOptions` to `client.VolumeUpdateOptions`
709336a2c3 api/types/network: EndpointSettings: make MacAddress "operational data"
e84bbc09b1 integration/container: fix daemon min API version
1caf3dd3b2 integration-cli: TestDockerCLIBuildSuite/TestBuildEmitsEvents: reduce logs
acfe4e8613 gha: add support for docker-v* tags
b87ed4512a integration/container: fix test using wrong daemon
ecd7551310 daemon/server/router/container: fix back-filling of top-level network fields
865cfe9a7f client: VolumesPrune: rewrite to use option structs and result
b11d9d410f client: NetworksPrune: rewrite to use option structs and result
0672a0f999 client: ImagesPrune: rewrite to use option structs and result
91323b7a35 client: ContainersPrune: rewrite to use option structs and result
d9a03a374f daemon: consolidate "log-level" and "log-format" options and flags
4e6c955e78 daemon/command: configureDaemonLogs: don't panic
06ff7d9cd4 daemon/config: add validateDaemonLogConfig function
c73fe6d26e daemon/config: move daemon log-config to a separate struct
a6cf5e19e8 daemon/command: remove placeholder
c584855329 daemon/command: configureProxyEnv: accept smaller struct
0a2ab376ff daemon/config: slight cleanup of Config struct
69702bd821 fix minor linting issues
3b075a79b9 api: remove image inspect `Parent`, `DockerVersion` from swagger docs
d62a521c7d daemon: initialize volumes if nil on decode
a65293c036 libnetwork/osl/kernel: ApplyOSTweaks: don't log errors if not found
adb4269928 api/types/image: remove deprecated Summary.VirtualSize field
2537eae6f3 api/types/container: remove support for config mac address
e77f116c9c integration: remove some version-gates for API < v1.44
2c59be7011 daemon: raise default minimum API version to v1.44
47fe719b33 api/types/build: remove deprecated BuildCache.Parent field
36f1c830bb add back replace rules and re-vendor
45caa74e3b api/types/sytem: remove deprecated DiskUsage.BuilderSize
a5d9619093 api/docs: remove BuildCache.Parent field for API v1.42 and up
e1722eb8d8 daemon/command: disable c8d snapshotter when userns remapping enabled
1aa73144f2 update to go1.25.3
5e9e261107 vendor: github.com/moby/moby/client v0.1.0-beta.2
01a19e9d95 vendor: github.com/moby/moby/api v1.52.0-beta.2
b1e57881c3 gha/labeler: disable sync-labels to preserve human-added labels
3848b16bca Removed all occurrences of wrapError in libcontainerd/remote
28018a51d8 update to go1.25.2
39cf847787 api: regenerate with go-swagger v0.33.1
b4c3b29245 Dockerfile: update to go-swagger v0.33.1 (for go1.25)
bbdd24d145 api/templates: align with go-swagger v1.32.3
b3f74e85aa Dockerfile: bump gotest.tools/gotestsum v1.13.0
ac3960a44c api/types/container: omit `Config.OnBuild` when empty
0ee0283c9d gha/labeler: Some more file-based rules
15289ad2dc client: Filters: add Clone method
a6206f2da9 dockerd-rootless: default MTU 65520 for slirp4netns
7e63d2a81b dockerd-rootless.sh: if no slirp4netns, try pasta
cfdb9068f0 client: ImagePullResponse: use sync.OnceValue
3c44bd67b2 client: ImagePullResponse: don't panic without reader
4210e4ad16 daemon/internal/netiputil: make "MaybeXXX" functions a function, not var
4c6e571d38 api/pkg/stdcopy: move stdWriter to daemon/internal
8cf0529a8c api/types/swarm: add documentation to clarify virtual IP address type
c2812dc285 api: fix swarm network field from addr to prefix
9912ccd7b3 Clean up bridge device on network create error
e6bac8983b introduce ImagePullResponse to manage JSONMessage stream decoding
7652f38c28 client: remove API-version compatibility for API < v1.44
7ea066c8d1 client: add Filters type
778e5bfad3 api/types/filters: move to daemon/internal
96b29f5a1f client: remove support for negotiating API version < v1.44 (docker 25.0)
ef5feb4992 vendor: golang.org/x/net v0.45.0
3f75e2116f vendor: golang.org/x mod v0.28, net v0.44, text v0.29, crypto v0.42, tools v0.37
6de0417884 vendor: golang.org/x/sync v0.17.0
4bc628581d vendor: golang.org/x/sys v0.36.0
9169ed2873 client: touch-up some godoc
04318e0d86 client: update some tests using obsolete API versions
ca9c5c6f7b vendor: github.com/moby/swarmkit/v2 v2.1.1
1b1608f2cd hack: add patch to buildkit tests
3c418bea4e vendor: update buildkit to v0.25.1
0aed907a86 update to go1.24.8
0cc04d0c5c Network restore, don't update config to match state
b1e20b6a3a api/types/system: remove deprecated Commit.Expected field
1a7d7cc015 builder: use proper percentage calculations for default gc policy
dbcbe87d52 ci: fix cache for go modules
f8d3c4e4a7 api/types/image: InspectResponse: remove deprecated Parent, DockerVersion
1a81903854 api/types/image: InspectResponse: remove deprecated fields
a8dd9c5025 daemon/pkg/plugin: stop propagating Plugin.Config.DockerVersion field
1d3687aeee ci: update gha cache attributes
a99b7947e1 daemon: stop propagating Image.DockerVersion field
f6e1bf2808 Rework Go mod tidy/vendor checks
45a728a13b image inspect: fix legacy fields for API < v1.52 response
fdd61821da use consistent alias for docker image spec
c4fda95bea api/types/plugin: deprecate Config.DockerVersion field
a9a1ac3c45 Dockerfile: update compose to v2.40.0
94ab6a9c5e Dockerfile: update buildx to v0.29.1
b9ac2cea0c Dockerfile: update cli to v28.5.0
222a3fe94e integration-cli: remove deprecated buildImage utility
bd8a99b400 api/types/image: InspectResponse: deprecate Parent, DockerVersion
288b9f033b integration-cli: remove deprecated buildImageSuccessfully utility
15bef6ff1a daemon/server: move GetImageOpts, ImageInspectOpts to imagebackend
95e77d6861 daemon/images: minor linting fixes
e204ba1dca daemon/internal/compat: add extra fields recursively, and don't replace
50269e6e39 api/types/swarm: remove `PortConfigProtocol`
ea76dbefeb api/types/swarm: deprecate PortConfigProtocol
c646091d57 api: move container port type to network package
038bfbfbd4 api: omit legacy fields from image inspect if not set
f289cb2d7c api: docs: sync v1.52 yaml
d6899ca5a5 api/types/registry: use netip types as appropriate
fd4329a620 api/types/container: use netip types as appropriate
d5c838dc5e internal: move sliceutil from daemon/internal
a90adb6dc1 api/types/network: use netip types as appropriate
ef31514a9f api/t/network: move IPAM validation to daemon
4d6a2be79d api/t/network: validate EndpointIPAMConfig in daemon
2da472b1a5 api/types/system: use netip types where appropriate
cc082add87 api/types/swarm: use netip types as appropriate
46ab36ae46 daemon/internal: move netiputil from libnetwork
470f5b50a5 internal/sliceutil: map nil to nil
df506c107e negociate content-type used by /events API
0ad35e3ef0 Add existence check for go.mod and go.sum files
cb3abacc52 api/types/container: add network port and port range types
c46704a80f client/build_prune: Wrap result in a struct
a35b3cd149 client/build_cancel: Add options struct
3f3bbe4430 vendor: github.com/moby/buildkit v0.25.0
9a32a7e0d1 daemon, client: remove version-gate for daemon-side AutoRemove
af5988238a client: reduce uses of obsolete API versions in tests
eafca64a6b daemon/server: implement image-inspect with "compat" package
51cbd2ed16 api: swagger: remove VirtualSize fields for API > v1.43
a7edbe8e5f api: remove support for `KernelMemoryTCP`
fb2f8115c8 api: deprecate `KernelMemoryTCP` support
eff4f064a3 daemon/libnetwork/internal/kvstore: remove unused ErrBackendNotSupported
1697aecbd5 daemon/libnetwork/internal/kvstore: remove unused BOLTDB and Backend type
94bcf89412 Eliminate warning about endpoint count store delete
08d014cac8 api/docs: remove email field from example auth
344ab458a1 api/types/registry: remove deprecated AuthConfig.Email field
3241d46525 client: Client.doRequest: adjust error matching for TLS1.3 handshake
b8fbd0539e vendor: github.com/deckarep/golang-set/v2 v2.8.0
178d697484 integration-cli: adjust TestHTTPSInfoRogueCert for TLS1.3 handshake
efa077848f api/types/storage: define generic `Storage` type for container inspect
77bf85647c contrib: add docker_client SELinux policy module to access socket in container
b48fcf6cdb client/checkpoint_list: Wrap result in a struct
646e068cf1 api/checkpoint: Don't return null if no checkpoints
38fb0dd10c Add build tag "no_libnftables"
062479f95c vendor: github.com/hashicorp/go-memdb v1.3.5
3912ffacd6 integration/nw: TestEmptyPortBindingsBC use context
e80e2908ba dockerversion: use t.Context() in tests
aca0adfb97 daemon: use t.Context() in tests
8905c3052b daemon/libnetwork: use t.Context() in tests
01f9186d6d daemon/logger: use t.Context() in tests
c1c9087404 daemon/containerd: use t.Context() in tests
544f8f53ed daemon/builder: use t.Context() in tests
415274d62a vendor: github.com/opencontainers/cgroups v0.0.5
73ed41ef79 vendor: github.com/coreos/go-systemd/v22 v22.6.0
0f393630f8 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
6db6de2c20 Use libnftables in dynamically linked binary
e8d3609031 hack: use custom ref for buildkit tests
21d2d55500 vendor: update buildkit to v0.25.0-rc1
de5e64b3bd Add option WithSetNsHandles for testutil SetupTestOSContextEx
0fb46d08ad api: docs: remove deprecated BridgeNfIptables, BridgeNfIp6tables
362d4d9538 testutil:SetupTestOSContext - don't leak namespaces, netlink handles
a32a53ae01 daemon/containerd: pass custom metaHeaders to resolver
2223b7f582 daemon/server/imagebackend: add PushOptions struct
9d53093db6 daemon/server/imagebackend: add PullOptions struct
cbafff64e4 project: mark 23.0 branch as unmaintained (EOL)
5d22d9bec9 integration/service: rename var to prevent shadowing
471f24bafc daemon/server/backend: CreateImageConfig: change "Pause" to "NoPause"
bad3dfe9cb client: ContainerCommitOptions: change "Pause" to "NoPause"
1135ab0283 Dockerfile: update xx to v1.7.0
f5847040cc client: Client.negotiateAPIVersionPing: trim v-prefix before handling
af3f971431 client: TestNegotiateAPIVersionAutomatic: gofumpt
a8cb35f01a client: TestPingHeadFallback: check method, path, and fix example response
87d1da50f0 test: migrate test api network get defaults and filter
d9cdfd2887 client: remove unused Client.HTTPClient() method
d4d93bf558 daemon/container: remove State.ExitCode() method
ee4b7a8374 daemon/container: remove NewState() constructor
d06f0d008d explicitly access Container.State.Health.Health
0df791cb72 explicitly access Container.State instead of through embedded struct
aa492314a1 ipams: Re-enable legacy remote plugins support
41a6ad5def client: remove deprecated ImageListOptions.ContainerCount
02c4bb6a0c daemon/config: More tests for DNS addresses
f7ed1b84d2 client: ImageList: don't discard reference filter on API < 1.25
d60b4ea278 client: fix version-gate for readonly-recursive mounts validation on service
0673d43663 client: remove "version" header for service create, update
9fc12daf80 client: remove version-gate for "--force" on "volume remove"
839c2709af client: WithMockClient: match version behavior of actual client
8f8a2db52c client: rename validateAPIVersion to validateServiceSpecForAPIVersion
0468dac252 client: Client.ContainerCreate: fix panic when passing a nil config
6d0551e13a api/types/network: CreateRequest: remove deprecated CheckDuplicate field
50ea842e17 client: separate exec methods to ExecAPIClient interface
94309db0aa daemon/server: Server.makeHTTPHandler: pass Route as argument
81506ad8b1 daemon/server/router: NewRoute: don't use un-keyed struct literal
82e5d3064a client: ImageBuildResponse: remove OSType field
5028ff1f40 integration-cli: remove startContainerGetOutput, runCommandWithOutput
2a867f0c4d daemon/server/backend: remove ExecInspect, ExecProcessConfig alias
ff21989215 api/types/container: move ExecInspect type to client
c1be6ef5de api/docs: remove KernelMemory option from old API versions
c5991341eb remove support for deprecated kernel memory limit
20d8342a4b move endpoint API version constraints to API server
b70c1a439d gha: add missing dependency to Windows workflows
18b289f9df daemon/server: fix requests not logged with --log-level=trace
839e46f97c client: remove support for API < v1.22 filter format
a83d91f427 API: /info: remove `SecurityOptions` re-formatting for API < 1.25
082b4e8d77 client: move ExecOptions to client
6a642300f0 client: move ExecStartOptions, ExecAttachOptions to client
c8c13fe058 API: /info: remove magic `<unknown>` values for API < 1.39
c600f62c25 api/docs: sync swagger and update changelog
6084882b98 client: tidy go.mod
2bb0443ae9 Release IPv6 address if unused due to sysctl setting
252659278e Configure addresses before adding them to DNS or /etc/hosts
18b8e369ae Split OS-specific code out of Sandbox.populateNetworkResources
a8b9eff902 Don't set up DNS in Network.createEndpoint
ddf10ee1cd Delay Endpoint config until the osSbox exists
b043980e6f daemon/config: remove deprecated CommonConfig.CorsHeaders
4c7deaf832 Windows containers: restore network name after reboot
9129094b98 Windows containers: report HNS network name in inspect
aa78f19066 ipvlan-l2: do not allocate a gateway address from IPAM
468e3521b0 macvlan: do not allocate a gateway address from IPAM
caae209d25 api/types/container: remove deprecated ExecOptions.Detach
19edf44896 daemon/config: remove deprecated Config.
fabe66322f builder/remotecontext: remove deprecated "Rel()" utility
cf243b64aa daemon: fix build after revendoring api module
c2c2b80e90 daemon: report IPAM status for Swarm networks
b092c8ca64 api/t/container: drop NetworkSettingsBase
fc1ff44bc2 api/t/container: drop DefaultNetworkSettings
d5d3716705 daemon/i/compat: disable HTML encoding
8efe6b0183 Add TestJoinError
73413ea693 bridge_linux_test.go: gofumpt
52c9cfd016 Use sbLeave to roll back on error from sbJoin
53390f85dd Put clearNetworkResources() inline in its only caller
916fa31ab5 Acquire Sandbox.joinLeaveMu for Endpoint force-Delete
a9db1e9a26 Endpoint.sbLeave: don't load ep from store
b192d06ec7 Remove network info from container when endpoint join fails
1b74b3e1ce api/types/events: Message: remove deprecated Status, ID, and From fields
5815eb82ee daemon/events: omit deprecated event fields on API >= v1.52
c4eb791dba daemon/events: remove tests for deprecated API fields
33a05ac344 daemon/internal: add "compat" package for legacy responses
3f86797d3f api,daemon: report IPAM status for network
ee8abb845d d/libnetwork: move uint128 to its own package
65ffac3dbf internal/iterutil: add Chain, Chain2 iterators
ee24728b1e go.mod: replace client
139b6464b5 api/docs: fix events example response
f8925bac6f daemon: Do not default to c8d image store on Windows
bdd0a2a970 gha: extract vm test to a separate workflow
8c8324b37f Dockerfile.windows: remove deprecated 7Zip4Powershell
9d2e74d43d gha: Add automatic PR labeling for modules
705f26010e client/image_inspect: Unexport ImageInspectOptions
67c8064bb3 client: remove ImageInspectWithAPIOpts function
5303799297 go.mod: re-add replace github.com/moby/moby/api
2f1015482f libnet/d/windows: ReleasePorts: use errors.Join
fc86411353 libnet/d/windows: inline releasePort
9efc1cc264 libnet/portmapper: rename, move PortMapper to portallocator
4b230a4909 internal/testutils: merge with internal/testutil
d3e45f8743 testutil: move back to internal
af677b61a5 libnet/portmapper: clean up windows port mapper
90f31c6c27 libnet/portmapper: remove dead field bridgeName
f6e5b3afc5 libnet/portmapper: drop unused NewWithPortAllocator
9e7de1b679 libnet/portmapper: remove unused field proxyPath
f6c59f9779 libnet/portmapper: merge mapper.go & mapper_windows.go
b48442db4c libnet/portmapper: remove dead DeleteForwardingTableEntry
32710d3e5e libnet/portmapper: remove dead AppendForwardingTableEntry
eb2e296711 daemon: GetContainerStats: use errdefs for error-type handling
97eceb266a errdefs: remove deprecated IsXXX utilities
2d73fed24e update AUTHORS
37de02378c Prepare release notes for v2.0.0-beta.0
de4ae66d08 Update client vendor to use tag
b5dde0234c add back replace
1499623a9d go.mod: update client to v0.1.0-beta.0
0525ae2aed api: image inspect: remove temporary backfill for Config fields
d98a8c59ab testutil/daemon: fail gracefully if DEST is unset
8995619b9d testutil/daemon: fix DOCKER_USERLANDPROXY env var
b5035def03 Prepare release notes for client/v0.1.0-beta.0
76964752d3 Update client api version to v1.52.0-beta
a1e3a109ee api/docs: sync v1.52 docs with latest
0fe1af95f3 api/docs: remove temporary "full" example for image config (v1.50, v1.51)
7bfbb6e8ca api/swagger: remove temporary "full" example for image config
2d1af4e4e4 api/types/build: move build options to client and backend
5232d82c1b daemon/server/backend: move build options to buildbackend
8b8a3cb14c api/types/image: move LoadResponse to client
a8afc2c6fb api/types/checkpoint: move checkpoint options to client
f1da80e8d3 contrib/check-config: check SCTP protocol option
d904f3b625 Prepare api/1.52.0-beta releases
4e30076e4d Add mailmap entry for Austin
e656f39952 api/t/network: generate more structs from Swagger
ea1c2530da api/t/network: generate Inspect, Summary structs
26e335b647 api/types/build: move `CachePruneOptions` to client mod
798abe8965 vendor: github.com/spf13/cobra v1.10.1
02a50be1f9 vendor: github.com/spf13/pflag v1.0.10
aaa9dd4e26 gha: skip "vm" checks if `ci/validate-only` label is set
ccf1363680 api/docs: update v1.52 docs with current swagger
c208f90796 api/templates: vendor structfield template
57ce548341 client: move container options together with their users
4d20b6fe56 api/types/container: move container options to client
c441b2ef19 api/types/image: make `InspectResponse.GraphDriver` optional
1a86389419 api/types/network: separate Summary from Inspect
f8bd170b2a daemon: validate args in network.New*Filter
ea1dfbda9e daemon: prune networks using network.Filter
f0d10ae733 d/network: filter networks individually
a4a90c2248 api: fix deprecation of "keep-storage" /build/prune query parameter
e46a991dc5 api: remove unused DefaultVersion, MinSupportedAPIVersion consts
30406d42e3 update to go1.24.7
e2e9f36c5f api/types/system: move `SecurityOpt` type and `DecodeSecurityOptions` to client
d47b0db4f9 vendor: update buildkit to v0.24.0
ca97d071b7 fix: client vendor with config struct changes
37d6a1909b libcontainerd/remote: wrapError: don't convert c8d errdefs error
36303969b9 libcontainerd/remote: container.NewTask: move vars to where used
f37094ad4f libnet/d/bridge: CreateEndpoint: use d.config directly
ae24edfc0d libnet/d/bridge: merge configure into newDriver
2436458227 libnet/d/bridge: Register: pass a Configuration struct
386a3a6bba libnet/config: mv config_{unsupported,windows}.go
18f2e61d08 libnet/config: rm config_freebsd.go
e099f1e409 daemon: Daemon.ContainerExecStart: fix typo in log field
6e512cc292 libnet/d/ipvlan: Register: remove unused config param
459f4f431d libnet/d/macvlan: Register: remove unused config param
43014a891b libnet/d/overlay: Register: remove unused config param
18efa5513d libnet: makeDriverConfig: drop support for label-based config
1470048e00 libnet: remove drivers_freebsd.go
4ea085187a libnet/d/bridge: export Configuration
7b75f355e5 daemon/srv/r/ctr: handlePortBindingsBC: fix warning
fbad7b568d libcontainerd/remote: task.Exec: log warning on cleanup failure
e67b3b0b90 libcontainerd/remote: task.Exec: rename processID -> execID
003e17ff5a libcontainerd/remote: task.Exec: preserve parent context during cleanup
167b0e9ea6 libcontainerd/remote: task.Exec: make defer error-handling more explicit
55c929c97f libcontainerd/remote: rename var that shadowed import
023ae2e218 contrib: remove udev rules for hiding loopback devices
0ca7ac3258 daemon: backfill empty PBs slices for backward compat
4d2a293ff3 libnet/drvapi: make NetworkAllocate optional
cbd04b6f08 libnet/cnmallocator: use a list of local netdrivers
478d1fc8ba Bump go.mod minimum-go-version to 1.24
269960a4c6 integration-cli: TestConcurrentPush: refactor to improve failure logs
8031b077bc gha/arm64: Setup qemu
ce338dec81 integration/internal: Print Buildkit logs
27fca93b65 c8d/history: Fix non-native platforms
ad830a47af integration/internal: Handle Buildkit in GetImageIDFromBody
f66f555ad4 graphdriver/windows: Potential fix for access denied
ea73c88d12 libnet/cnmallocator: rm drivers_darwin.go
18b21a32a1 libnet/cnmallocator: rm drivers_unsupported.go
60fa39d559 hack: temporarily use custom buildkit ref for testing
5682f65cca hack/dind-systemd: collect firewalld logs
03df89b84a hack/dind-systemd: enable firewalld debug logs
77ce202515 vendor: update buildkit to v0.24.0-rc2
3c83038936 hack: use heredocs in generate-swagger-api.sh
854ec0a1ad d/libn/internal/addrset: add popcount methods
b7c597ec35 api/t/ctr: deprecate DefaultNetworkSettings
c9fdad2552 daemon: marshal legacy `registry.ServiceConfig` extra fields for compatability
d0de293513 testutil/daemon: remove unused FindContainerIP
80bb864fd6 api/t/ctr: deprecate NetworkSettingsBase
16dc39136c api/t/ctr: deprecate NetworkSettingsBase.Bridge
20b679b4a6 client: Extract clientConfig for opt applying
9ddf9d87e7 client: Remove newMockClient
7cd089edd9 client/volume_test: Use functional option to create mock client
72e11d78d7 client/task_test: Use functional option to create mock client
a1e304f76c client/system_test: Use functional option to create mock client
407af72993 client/swarm_test: Use functional option to create mock client
124bba478a client/service_test: Use functional option to create mock client
98434a5ea4 client/secret_test: Use functional option to create mock client
c99f2eaf34 client/request_test: Use functional option to create mock client
8581a15c25 client/plugin_test: Use functional option to create mock client
0b577c703a client/ping_test: Use functional option to create mock client
d401228b43 client/options_test: Use functional option to create mock client
643e94ebf5 client/node_test: Use functional option to create mock client
5a82c3397e client/network_test: Use functional option to create mock client
be76beee8f client/image_test: Use functional option to create mock client
005a289703 client/distribution_test: Use functional option to create mock client
bc1d436aa9 client/container_test: Use functional option to create mock client
c70aac772e client/config_test: Use functional option to create mock client
6452807fb4 client/client_test: Use functional option to create mock client
a3d073e160 client/checkpoint_test: Use functional option to create mock client
17396e5d94 client: Add WithMockClient opt
09ecd74cf3 CI: add oraclelinux-8 for running tests with cgroup v1
1570ca934d Dockerfile: install fuse-overlayfs
e15c51a03d Makefile: propagate DOCKER_IGNORE_BR_NETFILTER_ERROR
ed78637b9a nftables: iterate over rules
9dc0c094e6 cmd/docker-proxy: set O_NONBLOCK unconditionally
12897011fa vendor: github.com/ishidawataru/sctp v0.0.0-20250829011129-4b890084db30
785ae9a0f9 Rework the interface to libnet/internal/nftables
cf913f5b0a d/cluster: use lockedManagerAction in more places
4b866fdcef d/cluster: add context param to lockedManagerAction
8839f53175 d/libnet: TestUserChain: fix error matching for nonexistent chains
fbde2bcb9a nftabler,nftablesdoc: stringify numerical dstnat prio
a4949b669e iptablesdoc: remove -n from iptables -L invocations
fc045ad139 libnet/pmapi: remove firewaller arg from Map/UnmapPorts
9b1c4ad3b1 libnet/pm/routed: don't set up firewall rules directly
9d9b05446c libnet/pm/nat: move back fw / proxy steps into the bridge driver
268e636b2b libnet/pmapi: let portmappers specify NAT/fwding rules
c6717f4387 libnetwork: provide endpoint name for IPAM drivers
5349095cd1 vendor: github.com/docker/go-events 605354379745 (main)
229a29649f vendor: github.com/moby/buildkit v0.24.0-rc1
071e6472db Unmap IPv4 addresses loaded from store
b721c4f4a8 daemon: minor touchups for backend system info response marshal
60c6e57b82 hack/make/test-integration: disable firewalld integration
1b4fcb8da7 api/types/network: move `CreateOptions` type to client module
b0b7260c77 ImageCache.restoreCachedImage: rename var that shadowed import
1e249cc309 api/types/network: move connect/disconnect options types to client module
3003c5fe45 d/libnet: fix CreateOptionIPAM capitalization
853aed171b api/types/image: move image option types to client
33066cddb1 api/types/swarm: move `SecretListOptions` type to client
33cdcd62f5 daemon: Daemon.getInspectData: also set Config
fae54e03af api/types/container: merge InspectResponse and ContainerJSONBase
c9a0c93b04 d/libnet: remove unused arg from CreateOptionIpam
b85c91f1b8 fix vendor
44972d7427 daemon: Daemon.getInspectData: inline struct-literals
94d0b10503 api/types/swarm: move `ServiceInspectOptions` type to client
a2291e5eac api/types/swarm: move `ServiceListOptions` type to client
3b1e16594b api/types/swarm: move `ServiceUpdateOptions` type to client
bb4125e89f api/types/swarm: move `ServiceCreateOptions` type to client
4dcc7af116 api/types/swarm: move `UpdateFlags` type to client
ad0fa5a872 api/types/swarm: move `TaskListOptions` type to client
2718f953f0 api/types/swarm: move `NodeRemoveOptions` to client
7d2b87e95f api/types/swarm: move `NodeListOptions` to client mod
b1260cd493 api/types/swarm: move `ConfigListOptions` to client
bdce1608c8 api: move authconfig package from types/registry to pkg
ff0e644c88 daemon/cluster: use authconfig package for decoding
9f1d8be252 docs/contributing: minor fixes
dbe19a506e fluentd logger: add read timeout configuration.
28ba0fcaae vendor: github.com/fluent/fluent-logger-golang v1.10.1
3bcaf1c4da vendor: github.com/tinylib/msgp v1.3.0
27b609b401 vendor: github.com/philhofer/fwd v1.2.0
1d6c7663c4 d/libnet/i/nftables: move golden files into subdir
28afa75c39 d/libnet: TestIptabler: move golden files into subdir
ce4a331287 d/libnet: TestNftabler: move golden files into subdir
c5e75cc485 daemon/containerd: remove convertError utility
6fbea5f5c1 image delete: inline some variables, and touch-up TODOs
7f8ce05f6e client: check for Digested reference instead of Canonical
eed354379c api: docs: update v1.52 swagger with latest changes
0de3d2ec51 Dockerfile: update rootlesskit to v2.3.5
70d096313f vendor: github.com/rootless-containers/rootlesskit/v2 v2.3.5
fe8516cf4b client: refactor `InspectOptions` to `NetworkInspectOptions`
5eaed0366c api/types/network: move `InspectOptions` to client mod
6084c6ae78 client: refactor `ListOptions` to `NetworkListOptions`
d6aa6ae9bd api/types/network: move `ListOptions` to client
d867f9f0f1 api/docs: update description for AuthConfig.Email field
6cfff7e880 api/types/registry: update deprecation comment for AuthConfig.Email
7aa50424e3 daemon: decouple daemon backend from client volume list options
9fc6a1e437 api/types/volume: refactor volume options to prune report
ee22a62dd5 client: refactor `ListOptions` to `VolumeListOptions`
c48585f104 api/types/volume: move `ListOptions` to client mod
56626a1222 api/types/system: move `DiskUsageOptions` to client mod
4665aa11ce client: refactor `SearchOptions` to `ImageSearchOptions`
40025bdf43 api/types/registry: move `SearchOptions` to client
e8d0aba254 vendor: golang.org/x/sync v0.16.0
60125b888c contrib: update dockerfiles to debian 13 "trixie"
39d4dbea9c Dockerfile: update debian frozen image to trixie-slim
15f92925f0 vendor: go.etcd.io/bbolt v1.4.3
eb9774cbf9 client: rename `ListOptions` type to `EventsListOptions`
d73dd4990c api/types/events: move `ListOptions` type to client
db72cc28c7 Rename test helper function input parameters to not shadow client package
f07d359043 client: rename `ResizeOptions` type to `ContainerResizeOptions`
882fd68b1b api/types/container: move `ResizeOptions` type to client
14262696d7 libnet/pa: OSAllocator: retry allocations
201968cc03 libnet/pa: OSAllocator: listen after bind
86ae7a56d2 daemon: Fix container restore with automatic driver selection
555e3939c9 daemon: Fix forceful switch to containerd image store
47bdbf5a4b client/pkg/jsonmessage: remove unused fields
c4e82bab70 api/types/volume: move `DiskUsage` type internal to daemon backend
0d61b55add api/types/image: move `DiskUsage` type internal to daemon backend
566c44edfe api/types/container: move `DiskUsage` type internal to daemon backend
d588092be2 api/types/build: move internal to daemon backend
eac4c43aaa integration/system: remove TestEventsBackwardsCompatible
b0d9a90f45 integration/system: add TestEventsNonBlocking
000f5e8d10 daemon: Daemon.ContainerStats: small cleanups
f4ae01a38a daemon/server/router/system: getEvents: use event consts for filtering
6b52a16f14 integration/network/bridge: add "generated" header to markdown docs
48557f72f9 daemon/libnetwork: TestUserChain: rename golden files
ff8364a39f hack/test/unit: use empty default values
fbd3cdc007 fix vendor
da2b1a2930 Fix image prune events for containerd backend
b68ff62ab7 daemon/libnetwork/bitmap: add OnesCount method
be7a769b69 Dockerfile: disable CGO for building utilities
8de606beb1 Dockerfile: remove trailing slashes for GOBIN
aa80ad2572 Copy the daemon/internal/timestamp package to internal client package
812aa46d81 Move the api/types/time package to internal daemon package
033ec8be44 daemon/router/image: initialize default authConfig
f0c069ffc9 gha: Add conditional skip for jobs with 'ci/validate-only' label
8013d80c24 hack/test/unit: run in the right module when TESTDIRS is used
97587945ef .github/workflows: Add kind label validation to PR workflow
d2e0895b9b daemon: deprecate env vars set by legacy links
b13ea83488 api: bump github.com/google/go-cmp v0.7.0
56c48e8708 d/libn/bitmap: tidy up constants, branchy math
82ba7fef17 api/types/container: rename Port to PortMapping
48038347d7 Match device driver on name and ignore capabilities
2aba802ae6 daemon: don't strong-type filters
a2aa7be724 vendor: go.etcd.io/bbolt v1.4.2
1c34ff94bc client: consistently use defer for ensureReaderClosed
f6b63e6013 client.sendRequest: clean-up logic for error-handling
2a4f70309d client.doRequest: improve GoDoc to clarify behavior
d69fde4c60 client: Client.Ping: improve error handling and fallback
b2e6fd31cf Restore DOCKER_DRIVER environment variable for storage driver configuration.
80294ddb60 client: make checkResponseErr a regular function
423980614e daemon: use slices.Clone, maps.Collect in some places
6505e8d605 daemon/libnetwork/types: rename StaticRoute.GetCopy to Copy
1e11e64c9c daemon/libnetwork/types: remove TransportPort.Equal()
561e14ea3f daemon/libnetwork/types: remove TransportPort.GetCopy()
385297ee40 daemon/libnetwork/types: remove unused IsIPNetValid utility
7960f742a2 daemon/libnetwork: Endpoint.CopyTo: use maps/slices.Clone
a82a68a445 daemon/libnetwork: replace endpointJoinInfo.CopyTo with Copy()
2d5100749d daemon/libnetwork: replace EndpointInterface.CopyTo with Copy()
80452e5d4a daemon/libnetwork/types: PortBinding.Equal: use non-pointer receiver
7d5312ab56 daemon/libnetwork/types: rename PortBinding.GetCopy to Copy and non-pointer
e387dc977e daemon/libnetwork/types: cleanup GetIPNetCopy, GetIPNetCanonical
68a94ecbb5 daemon/libnetwork/types: remove GetIPCopy; use slices.Clone
115b801a3b daemon/libnetwork/types: remove GetMacCopy; use slices.Clone
cfad3ed6b9 daemon/libnetwork: replace IpamInfo.CopyTo with IpamInfo.Copy()
2f74f245b6 daemon/libnetwork: replace IpamConf.CopyTo with IpamConf.Copy()
796a4ce952 daemon/libnet/drv/bridge: stubPortMapper.UnmapPorts: fix slices.Delete
a4fbbc1570 Add context to restore and load containers
85b79f83f4 Fix hardlink handling in containerd snapshot remap
ead007f1f1 Use native snapshotter for integration tests and run
99181f56ce Fix symlink evaluation to a directory that may not exist
4816383c0b Add environment variable to define the threshold
185ae7ec2c docs: api: Tweak type of ForceUpdate to uin64
c8173c5c1f api: swagger: Tweak type of ForceUpdate to uint64
0a89d98bad daemon/libnetwork/types: remove errdefs aliases
892ebd2f17 daemon/libnet/drivers/windows: small cleanup in error-handling
11094e27b0 api/types/network: modernize EndpointIPAMConfig.Copy, EndpointSettings.Copy
b48df69b02 daemon: Daemon.ContainerInspect: move vars closer to where used
582ee7ea57 daemon/builder/dockerfile: copyRunConfig: use slices/maps.Clone
0ded8645b6 Fix custom runtimes handling on Windows
aa6838ae54 vendor: go.uber.org/zap v1.27.0
daf843b72f vendor: go.uber.org/multierr v1.11.0
aa85a44139 vendor: github.com/google/btree v1.1.3
fe32e4a999 vendor: github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8
76fc74317a vendor: github.com/golang/gddo v0.0.0-20190904175337-72a348e765d2
632fb0c89a Update graphdriver check logic to account for disabling of snapshotter
b41babafaa Fix windows test graphdriver setting
8700bca2bf Update migration test to use graphdriver env
00463b9216 Fix containerd image count
7f87cf9d8a Check for snapshotter plugin availability
632de98f75 Enable containerd snapshotters by default
9f5f4f5a42 Add containerd migration to daemon startup
2fff6b442e check-config.sh: report IP forwarding sysctl state
f71e86eed5 rootless: enable IP forwarding
f802d8a08e When cleaning iptables rules, warn on filter-FORWARD DROP
67ffa47090 nftables: don't enable IP forwarding
7dfeee8460 Drop FirewallCleanerSetter interface
200a75b34a Return concrete types from NewNftabler/NewIptabler
050fbbccca chore: use errors.Join instead of github.com/hashicorp/go-multierror
96f8c6395e chore: enable use-any rule from revive
c6be4ad999 libnet/pa: don't set SO_REUSEADDR on UDP sockets
3862a0875c check for net.ErrClosed instead of "use of closed network connection"
9cae3fb167 docs/contributing: remove GIT_BRANCH image tag references
04d95003fd Stabilize TestSaveAndLoadPlatform integration test.
1f323d5035 client: README: add badges
662154a940 api: README: add badges
b4e353c02b README: add license and OpenSSF badge
df3aea43aa remove references to "vendor.mod"
98790830eb Deprecate api/types/strslice.StrSlice and remove its use
b25b421f97 update to go1.24.6
677c2a19d9 vendor: github.com/docker/go-connections v0.6.0
50789e2bab testutil/fakestorage: inline go code and remove contrib/httpserver
d49a354cb2 testutil/fakestorage: use local paths, fix port-mapping and optimize
8be1b2372a Dockerfile: update containerd binary to v1.7.28
b9b52d59b8 download-frozen-image-v2: Use curl -L
359a881cea download-frozen-image-v2: handle 307 responses without decimal
12c6345d3a libn/d/overlay: don't deref nil PeerRecord on error
dcaf8893a0 windows: do not forgot IPAM configuration when re-creating networks
0ad765c67d add back replace and vendor, tidy
f5f984eec6 Dockerfile: update runc binary to v1.3.0
234349d173 api/docs: sync v1.52 swagger with current version
833dc69ad9 docs: improve the description of the `outputs` parameter for `/build` endpoint
c145229828 update some fixtures in tests
90c3d29bfb go.mod: tidy
78ccee32b3 update various "doc" links in code
d82f50557e Bump api version in client and main module to v1.52.0-alpha.1
a0a7d9a3d7 Add release notes for client/v0.1.0-alpha.0
32ec26be6c Update client and main module api version to latest alpha tag
e30b8e3393 update golangci-lint settings
57256a9b62 fix error-capitalization
c13266d2c0 api/types: move plugin types to api/types/plugin
c17d43ae67 api/types: move ErrorResponse to common/ErrorResponse
15f78b752c daemon: make buildSandboxOptions, buildSandboxPlatformOptions more atomic
77c2e3279d daemon/libnetwork: Sandbox.EnableService/DisableService slight cleanup
bfce6556c4 client: use stdlib errors
3fe93532e4 client: tidy go.mod
3b14c5488f go.mod: github.com/containerd/containerd/v2 v2.1.4
259eb259bc go.mod: dario.cat/mergo v1.0.2
d8b622b315 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
8e63b55146 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
044234f847 api/docs: add v1.52 swagger
59e8fe8479 Prepare release notes for v1.52.0
dfac16c297 hack: Update cosmetic occurences of the old package name
83267a0fda go.mod: github.com/docker/docker v28.3.3
5b3e1a6425 go.mod: tidy
0ae3cb000e validate/pkgimports: Fix package name
22bd59010e hack: Fix dockerversion not being set correctly
79148460b0 hack/make.ps1: Replace old package name with moby/v2
2dcd8b8def golangci: Replace old package name with moby/v2
cad3a5775b docs: fix URI fragment by changing it to the existing subheading
778d8e3a26 libnet/d/bridge: handleFirewalldReloadNw: fix deadlock
519adb26c3 libnet/d/bridge: driver: un-embed mutex
752a3b302c api/pkg/stdcopy: add example
26cf610e6e api/pkg/stdcopy: improve docs
c010c84ade api/pkg/stdcopy: don't use iota for consts
195a6bbb1e client: touch-up godoc
e7c784c270 Dockerfile: add GO_SWAGGER_VERSION build-arg
908895b9c3 api: update "interface{}" to "any"
51bbc37f64 api/types/strslice: use slices.Equal
dab42db691 contrib: remove editorconfig
5fbbf040aa contrib: remove mac-install-bundle.sh
5a40d4ed9f contrib: remove syntax (Dockerfile syntax) files
62545ddf90 daemon/internal/image: remove image-spec markdown
4cfc260a5f TESTING.md fix links to gotest.tools, and some touch-ups
1205a15db1 libnetwork/types: define RouteType type
6aab881534 libnetwork/types: make Protocol consts strong-typed
ec5dbaf233 libnetwork/types: define IPFamily options using syscall.AF_XXX consts
95eeb0b3b0 libnetwork/types: define IPFamily type for IP-family consts
ee560a3b23 api/types: fix Plugin.Config.Interface.Types def'n
2783f80ecf api/types: generate with latest go-swagger
5365f08ae2 daemon/config: make DNSConfig.DNS a netip.Addr
a43198845b daemon/pkg/registry: un-export ResolveAuthConfig
5fbf680f5d daemon/pkg/registry: move newIndexInfo to search
6a7f0008a3 daemon/pkg/registry: move searchRepositories to where it's used
17d0ac56f3 daemon/pkg/registry: remove session; make searchRepositories a func
0c73c459b4 daemon/pkg/registry: un-export GetAuthConfigKey
eda6a499e3 router/distribution: fetchManifest; detach from distributionRouter
aac2623115 integration/container: TestCheckpoint: inline containerExec util
03991f4846 builder-next: puller.Snapshot: cleanup handling of v1 images
0156a42200 daemon/libnetwork/resolvconf: remove unused code
bbec7a5150 migrated test container API rename to docker/cli
1e499bae79 daemon: consolidate platform-specific inspectExecProcessConfig
49aa38e9e7 update links to swarmkit v2 docs
c98e5cb60b update github links to moby/moby
cf15d5bbc6 remove obsolete //go:build tags
02b3f1cd99 integration: remove stray "distribution" directory
297ea75204 check_config: add nftables modules to optional features
83357620e2 Update unit test script for windows
58c95cde9b Replace uses of code which requires 1.24+
900a0516de Update hack/test/unit for go module
1d571e619d Rename build package to moby v2 module
65867642d3 Remove go module workarounds
f74e5d48b3 Create github.com/moby/moby/v2 module
a954a0f4a2 Remove profiles
53bd828853 Remove libnetwork
e55d294ea7 api/types/registry: add TODO/note about empty authConfigs
8b68b977b1 Revert "api/types/registry: EncodeAuthConfig: use empty string for zero value"
5bbf3af980 daemon: fix linting S1016 (staticcheck) false positive
d58dc493fe replace direct uses of nat types for api/types/container aliases
494677f93f api/types/container: add aliases for go-connections/nat types
f3ba0b2dc2 client/pkg/jsonmessage: remove Stream interface
19edf5c53c client/pkg/jsonmessage: remove DisplayJSONMessagesToStream
fdaccdb233 pkg/jsonmessage: stop printing deprecated progressDetail, errorDetail
94ac102e4b api: remove deprecated NoBaseImageSpecifier
0d8ca8eefe Move pkg/jsonmessage to client/pkg/jsonmessage
d00ecdc479 Move pkg/streamformatter to api/pkg/streamformatter
66862e14d1 Move pkg/progress to api/pkg/progress
1da417980c Move api/stdcopy to api/pkg/stdcopy
ebef4a44fd Split streamformatter from jsonmessage
5a144c40e2 pkg/streamformatter: reduce jsonmessage.JSONMessage dependency
f4127d76c5 pkg/jsonmessage: move JSONProgress to api/types/jsonstream
0515e1c991 pkg/jsonmessage: move JSONError to api/types/jsonstream
9a52e474a3 pkg/jsonmessage: suppress unhandled errors
02fcde0c18 Add separate const for daemon httputils to avoid jsonmessage import
e257027903 pkg/jsonmessage: remove github.com/morikuni/aec dependency
d7082848a6 tidy vendor.mod
6c7e2909c2 api/types/filters: remove deprecated ToParamWithVersion
5535e81a79 pkg/system: move to daemon/internal
d94171bfaa pkg/system: make XattrError linux-only
aa9de914ca pkg/system: remove unused ErrNotSupportedPlatform
28b822d5b3 pkg/system: remove Lgetxattr, Lsetxattr stubs for non-Linux
450ac30e4a pkg/system: LUtimesNano: remove stub for non-Linux
03f44e6d14 pkg/system: MkdirAllWithACL: remove stubs and unused os.FileMode arg
6f9e099fd3 pkg/system: remove deprecated IsAbs
53a3085256 pkg/system: remove deprecated EscapeArgs
1313b8caff pkg/fileutils: move ReadSymlinkedDirectory to daemon
ae0a3d6918 pkg/fileutils: move ReadSymlinkedDirectory internal to daemon
bae46854c5 pkg/fileutils: remove unused CopyFile utility
46854ca5ab daemon/pkg/registry: remove copy of rootless.RunningWithRootlessKit
f1c65c1dd6 daemon/pkg/registry: Service.Auth: remove unused statusMessage return
f797ced96a daemon/pkg/registry: remove unused ParseRepositoryInfo, RepositoryInfo
e30d541da0 daemon/pkg/registry: remove unused ReadCertsDirectory
d80e16bb18 daemon/pkg/registry: remove unused ParseSearchIndexInfo
4c1ab68c6c daemon/builder/remotecontext: remove detection of system.XattrError
1dc53e8ec7 Update client go.mod
03d7f47f31 Update api go.mod
5bbb7182e7 Move logdriver to internal under daemon/logger
d7cfe97984 Update logdriver to remove proto definitions
f866621303 contrib/check-config: fix kernel version range check
df8d45c7c9 contrib/check-config: fix MEMCG_SWAP
ee24dcec3d Move swarm runtime plugin storage type to internal
86190e7366 Move swarm runtime plugin spec to swarm types
d761d9d358 pkg/rootless: move to daemon/internal
17959aff2c remove pkg/stdcopy as it has moved to the api module
c055c3e098 remove pkg/stringid as it has moved to the client module
76e2ca1d41 pkg/stack: move to daemon/internal
f78d595c96 runconfig: move to daemon/internal/runconfig
75bc4c5292 daemon/server/router/container: request sysInfo from daemon / backend
02867f9473 runconfig: rewrite ContainerDecoder to DecodeCreateRequest
5e567a3856 daemon/server/httputils: remove ContainerDecoder interface
ec3e83a7b5 api/types/container: move StateStatus, NewStateStatus internal again
667cb4bec8 fix vendor
26fda349b8 runconfig: remove exported errors
969b293778 iptables: remove SCTP checksum rule
e6298db297 cli/ is not in moby repo (anymore)
83510a26b3 api/types: move backend types to daemon/server
be27300c6e daemon/server/router/checkpoint: remove unused httputils.ContainerDecoder
b448dc5575 daemon/server/router/container: postCommit: only decode Config
6b4dfb0135 integration-cli: migrate TestPostContainersCreateShmSizeXXX to integration
617326a40c testutil, integration-cli: fix minor linting issues
da92ea2837 integration-cli/daemon: rewrite CheckActiveContainerCount with client
6adbeff449 integration-cli: remove parseEventTime utility
281a3f6c41 integration-cli: remove deprecaed inspectMountSourceField
6124c00827 integration-cli: buildImageSuccessfully: don't wrap buildImage
877529c62d integration-cli: remove deprecated inspectFieldWithError utility
68480dc11d integration-cli: remove createTmpFile utility
29a7d4039e integration-cli: remove deprecated inspectFieldMap utility
d100fd6a77 integration/system: remove "hdr" utility
97827e1a58 integration-cli: TestContainerAPIGetExport: fix minor linting issues
f73aba83dc client: TestContainerStats: fix minor linting issues
f67e6555bf api/types/container.StatsResponseReader: move to client
4dda328af8 client: rename files for system-commands to their canonical name
96a6884cb3 api/types: move DiskUsage types to api/types/system
82c069c857 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
24aa86991c api/types: move PluginCreateOptions to client
b93ad81898 api/types: move plugin client options into client
44ae4cd2b7 api/types: move HijackedResponse into client
f491b70aa4 integration-cli: remove "requirement" package
ca1c5ee08f pkg/stringid: move to daemon, and provide copy in client
0abcdb7405 Update golangci for lazyregexp
6514282136 Move internal/testutils/networking to integration/internal/testutils/networking
14eb2770b9 Move internal/unshare to daemon/internal/unshare
28de87fb28 Move internal/unix_noeintr to daemon/internal/unix_noeintr
5b913b3ea0 Move internal/sliceutil to daemon/internal/sliceutil
20cc1a6203 Move internal/rootless to daemon/internal/rootless
8042010175 Move internal/platform to daemon/internal/platform
c3b0e0130a Move internal/otelutil to daemon/internal/otelutil
b62b542c2e Move internal/opts to daemon/internal/opts
713d7f5ed1 Move internal/nlwrap to daemon/libnetwork/nlwrap
fd21e3b935 Move internal/multierror to daemon/internal/multierror
baea1c5092 Move internal/ioutils to daemon/internal/ioutils
50743e3f38 Move internal/containerfs to daemon/internal/containerfs
ca9c4dffb7 Move internal/cleanups to daemon/internal/cleanups
222b2b8b2f Move internal/lazyregexp to daemon/internal/lazyregexp
9566272f30 Move pkg/tarsum to daemon/builder/remotecontext/internal/tarsum
ca5d2348d0 Move pkg/idtools to daemon/internal/idtools
7bfb804dbe Move registry to daemon/pkg/registry
f1f83dae55 Move reference to daemon/internal/refstore
c74ba95583 Move oci to daemon/pkg/oci
f24455c90b Move image to daemon/internal/image
1ff6011e04 Move distribution to daemon/internal/distribution
fa9a3c383d Move layer to daemon/internal/layer
3003c56c57 Delete TestRunDNSOptionsBasedOnHostResolvConf
3205fcf6c7 pkg/stringid: TruncateID: touch-up doc
6ed00d5044 registry: ConvertToHostname: use strings.Cut
547a2db21d registry: TestNewIndexInfo: inline testIndexInfo (thelper)
5ea78575e7 registry: fix assorted gocritic issues
406ee2feb5 registry: translateV2AuthError: fix singleCaseSwitch (gocritic)
ecb0354da5 registry: isCIDRMatch: fix captLocal (gocritic)
1ceda96864 registry: serviceConfig.loadInsecureRegistries: fix ifElseChain (gocritic)
d4e85443ff registry: remove deprecated RepositoryInfo.Class field
cc2d564a9e registry: remove deprecated RepositoryInfo.Official field
38453db513 contrib: remove gitdm
0d9304c9e1 docs: remove old rootless placeholder
a1f68bf5a6 overlay: Reload Ingress iptables rules in swarm mode
8b208f1b95 libnetwork: split programIngress() and dependent functions on Add and Del functions
50e6f4c4cb libnetwork: refactor ingress chain management for improved rule handling and initialization
4f0485e45f libnetwork: add FlushChain methods for improved iptables management
262c32565b libnetwork: refactor rule management to use Ensure method for Append and Insert operations
19a8083866 libnetwork: refactor iptable functions to include table parameter for improved rule management
c2e2e7fe24 libnetwork: extract plumpIngressProxy steps in a separate function
51ed289b06 libnetwork: extract programIngressPorts steps in a separate functions
752758ae77 libnetwork: extract creation/initiation of INGRESS-DOCKER chains in separate function
07393071ad bridge: Reapply endpoint iptables rules on firewalld reload
6d457d9695 bridge: Trigger firewalld reload during bridge integration tests
f1a97bda3d api/types/container: remove deprecated Stats type
4d5a7289a0 api: move docs to api module
bdcf4e8c85 adjust minimum API-version for multiple platforms on save/load
a401c0c046 runconfig: update fixtures for TestDecodeContainerConfig
1378604cc3 integration-cli: remove tests for pre-docker 1.7 clients
8d8bbefb90 client: remove deprecated CommonAPIClient interface
728f0769e1 client: remove deprecated ImageInspectWithRaw
2f200f9e05 client: remove deprecated IsErrNotFound helper
5ed9891eed client: remove deprecated ErrorConnectionFailed helper
a0fa5da2ab client: remove deprecated NewClient and NewEnvClient functions
30322dd649 client: fix example, and update refs to old modules
4859497098 pkg/stdcopy: fix missing alias for stdcopy.Systemerr
01c7b4233c hack/validate: remove obsolete exception
b91ebbde6d Refactor containerd platform matchers.
fcc8209e12 Add support for multiple platforms in image export and loading.
2303e6bff6 client: Client.doRequest: add special handling for DNS resolution errors
67596f01e2 client: Client.doRequest: add special handling for "not found" errors
462d0ff5aa client: Client.doRequest: simplify permission check and unwrap error
7072acac79 client: Client.doRequest: preserve wrapped error
3b4fbaacd7 client: Client.doRequest: use early return
cf1695bef1 Add option --bridge-accept-fwmark
2a342079c6 api/types/container: add missing type for exec-inspect response.
a600da91f4 profiles/apparmor, seccomp: migrate to separate module
30752f0780 Always allow access to routed endpoints
4538a1de0a libnetwork: handle coalesced endpoint events
e1a586a9a7 libnetwork/d/overlay: handle coalesced peer updates
8340e109de libn/d/win/overlay: dedupe NetworkDB definitions
c7b93702b9 libn/d/overlay: extract hashable address types
844023f794 libnetwork/driverapi: make EventNotify optional
69c3c56eba libn/networkdb: report prev value in update events
34fb2486ef test: migrate test api client version old not supported
cc9e6a13a2 api/types/swarm/runtime: remove module path for generating proto
76c1afeb97 api/types/plugins/logdriver: remove module path for generating proto
85ecf8c0f4 api: update references to old module name
a17a2e8f3d api/stdcopy: touch-up godoc
5b8ef1aff2 api: remove redundant //go:build lines
260cc008f4 fix vendor
4e246efcd1 libnet/d/bridge: mv portmapper to libnet/pms/{nat,routed}
289ef96d8b libnet/d/bridge/i/rlkclient: move to libnet/i/rlkclient
41cd92f6c0 libnet/portmapperapi: add PortMapper interface, registry
afb231d027 libnet/d/bridge: add a new Hairpin config flag
6f59a8e665 libnet/d/bridge: call setChildHostIP while binding
43f384c452 libnet/d/bridge: connectivityConfiguration: use PortBindingReq type
aa36cc5d25 libnet/d/bridge: move portBinding to portmapperapi
429818f969 libnet/d/bridge: move portBindingReq to portmapperapi
090c319f2e Don't allow the daemon to start with nftables and Swarm enabled
26e487db78 testutil: Fix sense of hasFwBackendArg check
6e7a2c830d Add Health attribute on the docker ps command
c4f9616c4a client: cleanup encoding body and add test-coverage
024414b47e integration: rename vars that shadowed import
20d594fb79 deprecate pkg/stdcopy, move to api/stdcopy
f651a5d5e9 registry: remove uses of lazyregexp
b33b4bd290 internal/testutils/networking: rm uses of lazyregexp
daa991c3d8 testutil/environment: don't use regex for string-matching error
0dc3193b2b integration-cli: remove uses of lazyregexp
6f9758047d fix: add create log stream awslog driver log option to validate list
c47afd41c8 Create github.com/moby/moby/client module
afd6487b2e Create github.com/moby/moby/api module
135cea2a10 Update test-unit for client module
7e708a5416 Update unit tests for api module
0971099c5f Add options to vendor to add and remove replace
eab076f217 Gocompat tests no longer needed with go modules
c469e5ebab daemon/server: rename vars that shadowed imports
61b19a494a oci: deprecate SetCapabilities
b9196ed703 oci: fix godoc for SetCapabilities, TweakCapabilities
5c683e8603 oci: sort defaultLinuxMaskedPaths
0433def57d internal/platform: remove NumProcs() stub for Linux
1a504f68fd Add nftables+firewalld tests to CI
02d7a3026a Support nftables+firewalld
d95dceb3b1 build: device entitlement support
655dbe69d0 pkg/tailfile: rename vars that shadowed type
a089c51160 pkg/idtools: remove deprecated functions and types
3bc64b312e runconfig: decodeContainerConfig: fix godoc referencing wrong type
ab5d348b77 integration-cli: remove uses of "runconfig"
0c3185a835 daemon: killProcessDirectly: use "WithFields" for logging
1cc42643ae hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
18e463a082 api/types: remove deprecated RequestPrivilegeFunc type
a3920ae6a0 api/types: remove deprecated IDResponse type
3e5a06179e api/types: remove deprecated container-inspect types
8347b05435 api/types: remove deprecated Container type
f050df0329 api/types: remove deprecated ContainerState type
7abeb4d5a4 api/types: remove deprecated container-networksettings types
c5a2194b5d api/types: remove deprecated container Health types
76bf0e2929 api/types: remove deprecated MountPoint
207db8792e api/types: remove deprecated Port
fa8177ba7a api/types: remove deprecated GraphDriverData
836ec65d5f api/types: remove deprecated ImageInspect, RootFS
7d3459e7fb api/types: remove deprecated SecretCreateResponse, SecretListOptions
68744c8b05 api/types: remove deprecated ConfigCreateResponse, ConfigListOptions
33f07ff3f4 api/types: remove deprecated NodeListOptions, NodeRemoveOptions
f13796d2af api/types: remove deprecated TaskListOptions
72b1e11264 api/types: remove deprecated ServiceCreateOptions
3faead6fc1 api/types: remove deprecated ServiceUpdateOptions
55ad118eaf api/types: remove deprecated ServiceListOptions, ServiceInspectOptions
91558ae3f3 api/types: remove deprecated SwarmUnlockKeyResponse
74fe646ac2 api/types: remove deprecated build-cache types
3eac6e7888 api/types: remove deprecated BuildResult
088cb2ffa6 api/types: remove deprecated build-related types
1359046a36 pkg/process: call out that "Zombie" is only supported on Linux
94618ac3ab pkg/process: separate exported funcs from implementation
a88e13f4f9 client: fix datarace when accessing cli.Version field
e6cdf24bcd windows: include labels when re-creating non-default nat networks
d4e026fe20 Wait for container dependencies upon daemon start up
39ab393274 Add daemon option --firewall-backend
7b9bd987bf api: deprecate NoBaseImageSpecifier
a632b8495b daemon: define default (and maximum) API version
2b17ab0ec6 libnet/internal/resolvconf: fix naming of error (errname)
aa757e591d libnet/internal/resolvconf: don't use rc.WriteFile in tests
8d54d36bce libnet/internal/resolvconf: fix naming of error
60a3a28a04 libnet/internal/resolvconf: minor optimizations
f22a3dfdb7 libnet/internal/resolvconf: optimize Generate() without text/template
0775ab6661 libnet/internal/resolvconf: add benchmark for Generate()
41da5700a4 client: define default (and maximum) API version
b54bde4376 Move testutils image load to integration internal
b83f36877f Move internal/mod to daemon/internal/builder-next/worker/mod
af86e80825 Move daemon/build to daemon/builder/backend
7d48302134 Move builder to daemon/builder
6ff9bea6a7 Move builder/builder-next to daemon/internal/builder-next
3a447bc079 api/types/registry: EncodeAuthConfig: use empty string for zero value
472e09ac47 api/types/registry: DecodeAuthConfig: add early returns and improve errors
6865032baa api/types/registry: add BenchmarkDecodeAuthConfig
c1b95c0ca2 ci/windows: Always run tests with c8d
967daa627a integration: Skip TestRunMountImageMultipleTimes on Windows
a615ec798d builder/remotecontext/git: fix linting issues
6a8654a808 api: bump to 1.52
ac5f464649 libnetwork/networkdb: improve quality of randomness
5799deb853 libnetwork/networkdb: test quality of mRandomNodes
d8730dc1d3 libnetwork/networkdb: add convergence test
7771a38896 Remove integration test using daemon internals
17d5f731f1 Move internal/safepath to daemon/volume/safepath
7edd7c68b1 Move internal/mounttree to daemon/internal/mounttree
daeaac0d3c Move internal/directory to daemon/internal/directory
33d824b838 Move quota to daemon/internal/quota
04f5276267 Move volume to daemon/volume
fdd9ae3465 libnet/internal/resolvconf: use slices.Clone
b1ce0c89f0 client: always send (empty) body on push
50d2dafc7f libnet/portallocator: introduce OSAllocator
14bd3451d8 client: ContainerExecAttach: update GoDoc links
830e0d79f5 vendor: github.com/opencontainers/cgroups v0.0.4
d66cf14a87 registry: replace pkg/homedir.GetConfigHome for os.UserConfigDir
14d9be4978 daemon: Fix mounting same image multiple times with different destinations
a28f031298 Fix libnetwork proto generation
b1884b6bba Restore libnetwork/resolvconf
3b5f7c2a29 Move internal/modprobe to daemon/libnetwork/internal/modprobe
7f4713a364 Move internal/maputil to daemon/libnetwork/internal/maputil
22ed8b1327 hack/make/test-docker-py: split test-exclusions to separate lines
7a720df61f Move libnetwork to daemon/libnetwork
f05652867d Move opts to daemon/pkg/opts
fb2117987d Dockerfile: upgrade Delve to v1.25.0
18438f3c13 Dockerfile: update compose to v2.38.2
8c3e10a011 Dockerfile: update buildx to v0.25.0
4dee288b51 Dockerfile: update cli to v28.3.2
9bcb12aa48 daemon: ContainerExtractToDir: make AllowOverwriteDirWithFile opt-in
fd8fec18cd integration/container: XFAIL flaky TestExecResize on Windows
4a8d77c958 api/types/container: remove deprecated ContainerTopOKBody alias
3d8d9c2bb3 api/types/container: remove deprecated ContainerUpdateOKBody alias
f8a2550a22 pkg/system: deprecate IsAbs and move internal
63bada41e5 pkg/system: deprecate EscapeArgs and move internal
0fc1493654 pkg/system: remove EnableContainerdRuntime, ContainerdRuntimeSupported
a327a9f341 integration-cli: fix flaky TestRestartStoppedContainer
59d5743a43 testutil/daemon: Daemon.Stop() don't log when already stopped
1c8b09ccf6 integration-cli: TestDockerNetworkHostModeUngracefulDaemonRestart start, not restart
9e69fc567e testutil/daemon: remove string-matching for error
cf41e9ac60 testutil/daemon: gofumpt
d6c90dcb87 integration/container: fix flaky TestRemoveContainerWithVolume
d30e61bff4 api/types/registry: add some tests for encoding/decoding authconfig
c31368fffb Don't raise an error when stopping a stopped docker-proxy
f6b3b257c8 implement test api images history integration test on dedicated file
669163c416 remove test api images history integration cli test suite
04dbcddd6a migrate test api images history integration cli test to integration test
adad33b30e Fix expected results for nftablesdoc tests
dde698a2e8 integration/container: add basic test for ContainerInspectWithRaw
16ed75572f client: TestContainerInspectWithEmptyID test both inspect variants
7f602d3b94 When switching between iptables/nftables, delete old rules
a5e3f39770 integration/container: avoid ContainerInspectWithRaw with "size"
88b67eb2fc integration/container: cleanup TestCreateWithCustomReadonlyPaths
bd091c1a9d integration/container: cleanup TestCreateWithCustomMaskedPaths
779052873d Add nftablesdoc
ad579b8a1d daemon/container: remove deprecated IsValidStateString
312eebde49 daemon/container: remove deprecated IsValidHealthString
e9fb208e87 daemon/container: remove deprecated StateStatus, WaitCondition
0d24798529 daemon/graphdriver: remove error or deprecated graphdriver-plugins
7767525ccd daemon/graphdriver: remove deprecated GetDriver()
1fe4a0a7ad daemon/graphdriver: remove redundant init()
bd8f9c3c1b registry: remove deprecated APIEndpoint.AllowNondistributableArtifacts
65d424e126 registry: remove deprecated APIEndpoint.Official
7252c3c78d registry: remove deprecated APIEndpoint.TrimHostName
11a18d3b00 api/types/registry: remove deprecated fields for non-distributable artifacts
b3e513f80a registry: remove deprecated Service.ResolveRepository()
5862b926f5 registry: remove deprecated SetCertsDir and unify CertsDir code
924cd22d1d registry: remove deprecated HostCertsDir
178416334f Run CI tests with nftables
ea29dffaa5 daemon/server: remove compatibility with API v1.4 auth-config on push
54e67d0054 daemon: AuthenticateToRegistry: remove statusMessage return
e8396af484 nftabler: add per-port rules
b677c1a671 Replace integration import test use of image type
d90277372f libn/d/overlay: drop obsolete writeToStore comment
30b9480107 Create legacy links during endpoint Join
dd9e289b6e Don't pass sandbox options to ProgramExternalConnectivity
4f7afb8ac9 Remove libnet's logic to track a driver's port mapping state
89d3419093 libnetwork/d/overlay: fix logical race conditions
843cd96725 libn/d/overlay: fix encryption race conditions
a1d299749c libn/d/overlay: inline secMapWalk into only caller
74713e1a7d libnetwork/d/overlay: un-embed mutexes
a05080c26c libnet/d/bridge: split NATed and routed port mappings
d229c1ba31 libnet/d/bridge: norm pb reqs before forming groups
e2034267f6 nftabler: add per-endpoint rules
b5bf89c315 libnet/d/bridge: pass SCTP sock to the proxy
0a047e825c update to go1.24.5
0ea28fede0 integration/networking: increase context timeout for attach
c833bd598e vendor: github.com/ishidawataru/sctp v0.0.0-20250708014235-1989182a9425
03a662b80e vendor: code.cloudfoundry.org/clock v1.37.0
08bde5edfa libnetwork/networkdb: fix broadcast queue deadlocks
aff444df86 libn/networkdb: make TestNetworkDBIslands not flaky
1e1be54d3e libn/networkdb: prevent spurious rejoins in tests
21d9109750 libn/networkdb: stop forging tombstone entries
428dbe617a nftabler: add network level rules
a55fede2d4 Pass context to nftables functions
1c5d6d1ee3 Mark iptabler/nftabler golden results as generated
ee6a6b061f daemon/pkg/plugin: remove dependency on legacy distribution package
09689298e3 distribution: fix detection of v1 images and remove libtrust dependency
ac9d5a6068 integration-cli: TestPullFailsWithAlteredLayer: use OCI manifest
fd47ccef7b integration-cli: TestPullFailsWithAlteredManifest: use OCI manifest
4e818970e2 integration-cli: TestPullManifestList: use OCI media-types
f6ef56a0bc integration-cli: TestPullManifestList: rewrite using OCI types
51d6687754 api: swagger: Tweak type of GwPriority to integer
bfc0c7cff5 docs: api: Tweak type of GwPriority to integer
557b5d60d3 layer: remove LogReleaseMetadata utility
7d18f65eb2 distribution/xfer: improve test reporting
291872e086 remove type conversions
ade244f97d deprecate layer.CreateChainID for OCI identity
10e9ab66f9 image/tarexport: inline validateManifest utility
471f173170 image/tarexport: improve error messages for invalid archives
033750cf80 image/tarexport: remove suport for loading v0/v1 images
ebfafa1561 contrib: add Wireshark plugins for NetworkDB
aae26b80fe Remove client buildkit dep
e93e15afb0 Replace use of env test util with standard library call
4754c15e2b Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
fa4f3c979f gha: remove GO_VERSION build-arg from builds
136c0e591b image: RootFS.Clone: simplify
aea776332b pkg/stack: suppress some unhandled errors
e32d26cb59 libnet/diag: remove /stackdump endpoint
a881e9e057 Remember port binding state in the bridge driver
7ea50c14d6 Remote network driver: remember gateway state
054738bce3 Pass gateway endpoint ids to ProgramExternalConnectivity
07e5be0a18 image: remove special handling for legacy "layers+base" windows images
5efd2286da vendor: update buildkit to v0.23.2
e1b70074ec distribution/xfer: LayerDownloadManager.Download: remove initialRootFS arg
173436c702 distribution/xfer: rename var that shadowed type
0683bc6355 fix some inconsistency in import aliases
d207ee97ff daemon/listeners: extract utility for DACL, and improve docs
18dc570918 remove project dev "reports"
93bbd21d82 rename codecov.yml to .codecov.yml
ce3c8785dc restartmanager: move to daemon/internal
256f96ef59 remove VENDORING.md
717188201a contrib: remove mkimage-xxx scripts
3f8630cb84 internal/usergroup: move to daemon/internal
cbe6e31487 internal/usergroup: move windows consts to builder/dockerfile
8dbe0f45a9 integration-cli: debug TestPushToCentralRegistryUnauthorized
5fe253cd79 builder/dockerfile: BuildFromConfig: combine loops
a30b63eafc integration-cli: remove uses of deprecated dockerCmdWithResult utility
90f9ce14f1 Move libcontainerd to daemon/internal/libcontainerd
3ee8c1e3a9 Move libcontainerd/types to daemon/internal/libcontainerd/types
841a369b8f Move libcontainerd/supervisor to daemon/internal/libcontainerd/supervisor
fe959261d3 Move libcontainerd/shimopts to daemon/internal/libcontainerd/shimopts
4e8bd050bf Move libcontainerd/remote to daemon/internal/libcontainerd/remote
dd1656e6bc Move libcontainerd/queue to daemon/internal/libcontainerd/queue
6835f367e5 Move libcontainerd/local to daemon/internal/libcontainerd/local
5419eb1efc Move container to daemon/container
a02ba3c7df Move container/stream to daemon/internal/stream
9d9cb00d50 Move container/stream/bytespipe to daemon/internal/stream/bytespipe
3581b982f7 Move plugin to daemon/pkg/plugin
1c700c876f Move plugin/v2 to daemon/pkg/plugin/v2
f5ceed8719 Move plugin/executor/containerd to daemon/internal/plugin/executor/containerd
0b2582dc8f Move internal/metrics to daemon/internal/metrics
87238882e0 Move api/server to daemon/server
3a6e3f85c6 Move api/server/backend/build to daemon/build
79f802d46a Move api/server/httputils to daemon/server/httputils
c7a87f0dee Move api/server/httpstatus to daemon/server/httpstatus
d64bd2cceb Move api/server/middleware to daemon/server/middleware
72a020fcd8 Move api/server/router to daemon/server/router
f293628f55 Move api/server/router/volume to daemon/server/router/volume
15c8007064 Move api/server/router/system to daemon/server/router/system
45172bbf23 Move api/server/router/swarm to daemon/server/router/swarm
f6ba5a5241 Move api/server/router/session to daemon/server/router/session
3eb5fe0277 Move api/server/router/plugin to daemon/server/router/plugin
baa58ddc6a Move api/server/router/network to daemon/server/router/network
0cbb4ac8e6 Move api/server/router/image to daemon/server/router/image
a063389af7 Move api/server/router/grpc to daemon/server/router/grpc
9ff489863c Move api/server/router/distribution to daemon/server/router/distribution
ced7798ed8 Move api/server/router/debug to daemon/server/router/debug
3a9db5fbd6 Move api/server/router/container to daemon/server/router/container
fcf3ff1b2f client: remove getDockerOS utility in favor of "Ostype" header
d6136b660f Move api/server/router/checkpoint to daemon/server/router/checkpoint
31b6886eb1 Move api/server/router/build to daemon/server/router/build
1c0d381f4e client: client.tryImagePush: accept registry.RequestAuthConfig
ca0afe91b9 client: client.tryImageCreate: accept registry.RequestAuthConfig
79b4e18883 client: add staticAuth utility
871543a8c5 client: Client.ServiceUpdate: don't manually construct header value
a824db247f Add progress aux emitter to build backend
374fa24a53 Add multierror function to api network
0964fa01ba Remove dependency on testutil from client
58404b0c28 Remove dependency on httputil for client hijack test
e7289e7e02 hack: check windows resources are set in the binary
44623fb856 cmd: use dockerfile to generate win event messages
0ea20c9f72 cmd: fix winresources and move them out cli package
6b8afec95b fix redefines-builtin-id from revive
90ab64cbda fix increment-decrement from revive
381d9d0723 fix use-errors-new from revive
f0136d1dba fix superfluous-else from revive
369c8f828e fix var-declaration from revive
d72f219a11 gha/bin-image: update tags comment
b40fe5cb8b pluginrpc-gen: align generator with generated
f8fcc20c3b Update maintainer info for austinvazquez
38b98bcf68 gha/bin-image: add major and minor version image tags
057e35dd65 libnetwork/d/overlay: ref-count encryption params
1c2b744ca2 libnetwork/d/overlay: properly model peer db
59437f56f9 libnetwork/d/overlay: refactor peer db impl
33139da522 Split part of dockerd main to command under daemon
98047c5190 Move cmd/dockerd/trap to daemon/command/trap
ea11b5f3fe Move cmd/dockerd/debug to daemon/command/debug
53475e1adf integration/container: TestCreateByImageID: minor improvements
fcf666f9b0 dockerfile: update govulncheck to v1.1.4
8c067c5223 client: Client.addHeaders: remove special handling for api < 1.25
ef50844a0b docs: cut api docs for v1.51
5a02e7f4e3 vendor: update buildkit to v0.23.1
b466c35da1 Update containerd to v2.1.3
7a12bbe5d3 libn/d/overlay: delete FDB entry from AF_BRIDGE
1d8545d60c daemon/config: Validate: add missing validation for registry mirrors
307c18598d registry: ValidateMirror: improve validation for missing schemes
a90da2edc3 vendor: github.com/opencontainers/cgroups v0.0.3
a7f01d238e libnetwork: fix flaky Swarm service DNS
062082ec9b daemon: containerStop: fix ordering of "stop" and "die" events
bf002e51a0 Split [Program|Revoke]ExternalConnectivity out of libnet driverapi
4ccbca1efe Add TestRoutedNonGateway
d85513e1a3 daemon: LogContainerEventWithAttributes: minor optimisation
ec185e57cf Test Nftabler params
e43968d7ed vendor: github.com/moby/buildkit v0.23.0
0c182d4d57 api/types/container: deprecate ExecOptions.Detach
126f99d776 Add a way to undo nftables.Enable(), for unit tests
1289519b03 vendor: update buildkit to v0.13.0-rc2
c3ac979ecf vendor: github.com/moby/swarmkit/v2 v2.0.0
4891396da6 docs(client/ContainerExecAttach): add a mention to stdcopy.StdCopy
b7ef527bdc pkg/idtools: deprecate IdentityMapping, Identity.Chown
66e9cd97f2 remove deprecated pkg/archive, pkg/chrootarchive
d06c22f27d remove deprecated pkg/reexec
98015c21ec remove deprecated pkg/atomicwriter
cf91441a1b pkg/ioutils: remove deprecated atomicwriter functions
1f0e9077e4 remove deprecated pkg/parsers
c66abe486b nftabler: add mirrored WSL2 loopback0 workaround
d31956b2f7 Add an outline nftabler
04618dfc0b remove deprecated pkg/platform
f1e93a1770 pkg/system: remove deprecated MkdirAll
ce31bf3f0b gha: dco: bump alpine to 3.22
1ad9599da7 Drop DOCKER-ISOLATION rules
2d60b8eacd vendor: github.com/moby/swarmkit/v2 v2.0.0-20250613170222-a45be3cac15c
6ec6e0991a libnetwork/networkdb: prioritize local broadcasts
e9a7154909 libnetwork/networkdb: improve TestCRUDTableEntries
dbb0d88109 libn/networkdb: use distinct type for own networks
51f31826ee libnetwork/networkdb: don't clear queue on rejoin
30b27ab6ea libnetwork/networkdb: drop id field from network
9316396db0 gha: run windows 2025 on PRs, 2022 scheduled
6f484d0d4c gha: update to windows 2022 / 2025
0a30b98447 gha: lower timeouts on "build" and "merge" steps
accbfde61e client: use go-winio.DialPipe directly
df6b405796 libnetwork/d/overlay: drop initEncryption function
713f887698 libnetwork/d/overlay: drop checkEncryption function
cb4e7b2f03 libnetwork/d/overlay: make setupEncryption a method
0d893252ac libnetwork/d/overlay: checkEncryption: drop isLocal param
4b1c1236b9 libnetwork/d/overlay: peerdb: drop isLocal param
48e0b24ff7 libnetwork/d/overlay: elide vtep for local peers
a9e2d6d06e libnetwork/d/overlay: filter local peers explicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5cbd89ca26 |
crun: update to 1.24
Along with the updates, there seems to be an interaction with our
configuration that is causing generation issues for APIs. We do
some tweaks to the script to work in our environment.
Bumping crun to version 1.24-19-g64611d7a, which comprises the following commits:
a9187097 Reset the inherited cpu affinity
d41a45ce Add .editorconfig
1188a679 configure.ac: check if error function is available
a569c2e7 cgroup, systemd: improved "same bpf" check
ccbf0d96 tests: Replace sprintf with snprintf for security
fc084fdf chroot_realpath: Replace sprintf with snprintf
b2032647 tests: fix compiler error
7417ead6 Add tmt integration plan
54693209 NEWS: tag 1.24
676c2c12 linux: fix array bounds warning in libcrun_configure_network
d8a88c06 criu: checkpoint correctly the shared empty directory path
6ead5130 linux: add support for numa set_mempolicy(2)
05b9f561 container: add missing crun_make_error
7f9447ec Revert "cgroup: do not create a sub-cgroup by default"
275305f8 intelrdt: honor default closID
e9711231 intelrdt: factor common code in a new function
dfdcf776 intelrdt: add support for EnableMonitoring
6c10fb5b intelrdt: check that schemata is not empty before failing
a9affe5d status: fix error check
a1119953 cgroup, systemd: validate ebpf is loaded
7160e31b libocispec: sync
4004e5be linux: optimize masked paths with shared empty directory
13d4770d contrib: format contrib files
8aa7545e krun: avoid failing if sev/nitro are not available
1556c13f src/libcrun: limit tmpfs memory usage for masked paths
28d60d87 krun: ensure spec->linux->resources->devices exists
e486eeab linux: fix regression mounting within userns
146fdcfe tests: remove unused debug_on_error option
37f702b7 tests: add ability to set debug=True
2aac0f56 Fix BOF
d417e0a4 Fixed BOF
cfedf930 build(deps): bump actions/checkout from 4 to 5
eb9912e0 build: add check for static builds
262d6ac3 cgroup: do not create a sub-cgroup by default
Bumping libocispec to latest, which comprises the following commits:
345279c runtime-spec: update from upstream
c3e5101 image-spec: update from upstream
92656e9 runtime-spec: update from upstream
19d5aeb runtime-spec: update from upstream
3c98525 image-spec: update from upstream
9d1955f sources.py: fix unconditional return in map value clone
Bumping runtime-spec to version v1.2.1-39-g5610abd, which comprises the following commits:
d7de8c0 ci: bump golangci-lint to v2.5
9758011 ci: add codespell job, fix existing issues
9efd9f2 schema/defs-linux.json: fix max for FileMode
09ec668 config-linux,schema: fix FileMode description
87f15fb schema: fix json
869b2d5 linux: clarify pids cgroup settings
a6c310a config-linux: clarify when the RDT sub-directory should be removed.
b280c07 config-linux: clarify the "MB:"-line filtering in RDT.
84b6c2c docs: fix and elaborate the nodes field in Linux memory policy
0758679 features-linux: expose IntelRdt monitoring support
e51a839 config-linux: define default clos for linux.intelRdt
642344a specs-go/features: add linux.intelRdt.schemata field
34a39b9 config-linux: add intelRdt.enableMonitoring (#1287)
afd830f principles: fix typo
57c9495 Add support for Linux memory policy
c6b3b08 runtime: fail when a poststart hook fails
af0d16d config: Add Hardware description object to the VM configuration
Bumping image-spec to version v1.1.1-22-g6519a62, which comprises the following commits:
02ba6e2 Descriptor size cannot be negative
cee899b Fix: Add entry to schema/go.sum
558802d Docs: Update pandoc for rendering documentation
693d8d7 Update to github.com/russross/blackfriday/v2
cbb69e2 Update to github.com/santhosh-tekuri/jsonschema/v6
d0e1005 Split github.com/opencontainers/image-spec/schema into a separate Go module
84ee56d Fix: correct a broken link to "applying changesets"
0bb67c2 Update GitHub Actions configuration
ab50866 Chore: Remove GOPATH from GitHub Actions
4fecf47 Add blake3 as a registered/supported hash algorithm
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c371e230f4 |
criu: update to v4.1.1
Bumping criu to version v4.1.1, which comprises the following commits:
a44aa6d98 criu: Version 4.1.1
ced15c302 test/zdtm: remove unused compiler argument
570621a48 mount-v2: enter the mount namesapce to propagation properties
b6059ff19 criu: Version 4.1 (CRISC-V)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b9a87151f6 |
cri-tools: update to v1.34.0
Bumping cri-tools to version v1.26.0-1341-g80b852a5, which comprises the following commits:
25cdc3c2 Remove link to outdated kubic repository
72954ec8 Bump crate-ci/typos from 1.38.0 to 1.38.1
559c81a3 Bump crate-ci/typos from 1.37.1 to 1.38.0
c53f9383 Bump crate-ci/typos from 1.37.0 to 1.37.1
5903b9c2 Fix typos
5bb88133 Bump crate-ci/typos from 1.36.3 to 1.37.0
ac9df58c Bump crate-ci/typos from 1.36.2 to 1.36.3
bd5edc46 Bump actions/cache from 4.2.4 to 4.3.0
776c8c28 chore: sync names
550f39b8 docs: updated the typo in CRI-O badge image URL
684cf823 Bump the kubernetes group with 7 updates
c28735fe Disable short name mode in CRI-O e2e tests
6f1e9f52 Bump actions/setup-go from 5.5.0 to 6.0.0
9bf6d58b Bump crate-ci/typos from 1.36.0 to 1.36.2
405add18 Bump crate-ci/typos from 1.35.5 to 1.36.0
bd848a4c Bump ncipollo/release-action from 1.18.0 to 1.20.0
2c5de193 Bump crate-ci/typos from 1.35.5 to 1.35.8
0fa372bb Bump ncipollo/release-action from 1.18.0 to 1.19.1
1ff5e6e8 Switch to to k8s 0.34.0
f7f7c6b0 Bump the gomod group across 1 directory with 8 updates
ad23e1ea Bump the gomod group with 2 updates
2e2646fa Switch to go 1.25
ee8bc12e Bump crate-ci/typos from 1.35.4 to 1.35.5
d9a45203 Update cri-tools to v1.34.0 in README.md
04365fd8 Update k8s and ginkgo
23d42883 Bump the gomod group across 1 directory with 10 updates
b7c27702 Update golangci-lint and config
b39a7917 Bump crate-ci/typos from 1.35.3 to 1.35.4
e57b4a9f Bump actions/checkout from 4.2.2 to 5.0.0
d1e1a989 Vendor Kubernetes v1.34.0-rc.1
b1b79cad Bump crate-ci/typos from 1.35.2 to 1.35.3
dceb355f Bump actions/cache from 4.2.3 to 4.2.4
6c2ceeb8 Bump crate-ci/typos from 1.35.1 to 1.35.2
00e4e773 Bump the gomod group with 4 updates
46823b3a Bump crate-ci/typos from 1.34.0 to 1.35.1
bfca4858 Bump github.com/docker/docker in the gomod group
e4974ec0 Bump sigs.k8s.io/yaml from 1.5.0 to 1.6.0 in the kubernetes group
ed4f9714 Bump the gomod group with 2 updates
c0a16628 support to auto generate pod uuid
532ecbc4 add warning about empty cgroup_parent field in pod config
d0b9a2d9 Bump the kubernetes group with 7 updates
c49a0899 Bump google.golang.org/grpc from 1.73.0 to 1.74.0 in the gomod group
5e45295c Update golangci-lint and config
610c747c doc: add steps to use runp when systemd cgroup driver is used
6e8c942b Bump crate-ci/typos from 1.33.1 to 1.34.0
2fd2e155 Bump the gomod group across 1 directory with 4 updates
c06fef2d Switch to windows-2025 in CI
86334baa Support websocket connections in `critest`
c7e766e7 Bump ncipollo/release-action from 1.16.0 to 1.18.0
1e5de756 Bump the gomod group with 4 updates
9dee32cb Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 in the kubernetes group
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d9fe4df438 |
cri-o: update to v1.34.1
Bumping cri-o to version v1.34.1-9-g5780ac7b4, which comprises the following commits:
6d3fac06f Update log formatting in interceptors to use %+v for better readability of structs
83172bb4c Fix dependencies check
1c84c7c4b Re-add the `--enable-fixed-path` removal for gpgme
43f6eeeda version: bump to 1.34.1
7561efe0b HighPerformanceHooks: Defer irqSMPAffinityFile rollback
c2eab18ba HighPerformanceHooks: Move IRQ balancing to PostStop hook
0790633e6 HighPerformanceHooks: Add mock infra for command and system unit tests
e294f5435 HighPerformanceHooks: Make locks atomic for irq SMP affinity
bbd9d0360 server: Fix network cleanup failures when NetNS path is empty
a8b550ad0 config: configure shortname through configuration and enforce shortnames
7a4365cf5 Add crio.runtime.runtimes seccomp_profile to crio.conf.5 doc
9b922306b build(deps): bump the gomod group with 4 updates
5813011e0 build(deps): bump the gomod group with 2 updates
1c4060d8f Warn when CONTAINER_INCLUDED_POD_METRCIS (typo) is used.
a0a44b5dd Add runtime handler seccomp profile
fdda720ff build(deps): bump github.com/prometheus/client_golang in the gomod group
84ea2f8b6 build(deps): bump the gomod group with 2 updates
165d40bfa build(deps): bump the gomod group with 7 updates
15233a7de tests: add a unit test for log rotation
d07b9575e Update nixpkgs
c411cfa7b build(deps): bump github.com/onsi/ginkgo/v2 in the gomod group
47b7f11ff Update nixpkgs
c5942f667 Update other deps
fb2861507 build(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
fb183a27c runtime_vm: Implement the ReopenContainerLog function
d1839c936 build(deps): bump the gomod group with 4 updates
eb3004491 Use k8s 0.34.0
cc074af34 build(deps): bump the kubernetes group with 7 updates
cf1c33f6e Remove thermal_throttle masked paths.
d10c4e501 Use k8s rc instead of the next minor
558c5483c build(deps): bump the gomod group across 1 directory with 16 updates
9d999d519 Cleanup container user log message and trivial code
655c5f8fe docs: regenerate/update man pages.
2a71e8181 completions: regenerate completions.
64863ccbe nri: add configuration for the default validator.
7c5f1fe54 server: add type conversion functions removed from NRI.
831b8dd9b go.{mod,sum}: update NRI to v0.10.0.
21b03fda2 inspect: add hostnetwork information
cc10ee3cd Add support for conmon-rs log driver and heaptrack config
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
34e36ce8b6 |
containerd: update to v2.2.0-beta.1
Bumping containerd to version v2.2.0-beta.1-12-ga7e49900a, which comprises the following commits:
a4ddfd7eb build(deps): bump the golang-x group with 2 updates
c740c57b4 build(deps): bump github/codeql-action from 3.30.6 to 4.30.8
6316ab81d build(deps): bump softprops/action-gh-release from 2.3.4 to 2.4.1
ed2e81a78 bugfix:sync parent dir to ensure blob entry is reliably stored
bfd6c52b4 Defer removal of deprecated registry config fields to 2.3
71f5d16aa bugfix:fix container logs lost because io close too quickly
c039f5349 ci: bump Go 1.24.8
773bfa0ea Use tartest to simplify generating a tar
6a3b10fe7 Add a test for the erofs differ using tar index mode
42f2784ca Update go.mod to use api/v1.10.0-beta.1
8922d84e5 build(deps): bump google.golang.org/grpc from 1.75.1 to 1.76.0
36c22f45c Update referrers fallback logic to always have a fallback
0f3c5484f Fix gha api release file path
f6b3b8cbe build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
7a7d7a996 build(deps): bump github/codeql-action from 3.30.5 to 3.30.6
669c3047a build(deps): bump softprops/action-gh-release from 2.3.3 to 2.3.4
ba606fe14 build(deps): bump actions/stale from 10.0.0 to 10.1.0
15d5fa725 build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
60fb4adb0 1.6 is EOL
aa571f63c Prepare release notes for api/v1.10.0-beta.0
83a946dca Add missing implicit dependency to podsandbox controller
c69f443ba Update sandbox controllers service implicit dependency
637429a25 Update logging for sandbox controller service
f0aeb9037 Add sandbox controller create call to client
a338d8b2f Fix sandbox client shutdown to ignore not found errors
54ba402a2 Add default sandboxer to client
c7b3114eb Update mount manager code documentation
f3af360f6 Update runtime to read allowed custom mounts from runtime
2189d3d6c build(deps): bump docker/login-action from 3.5.0 to 3.6.0
cfb1b653d build(deps): bump actions/cache from 4.2.4 to 4.3.0
94e6bcea5 Add support for allowing custom types through mount manager
efc995011 Add runtimes option to task manager
dd9c43150 Add option to allow formatted mounts
9c21e867e Handle flaky case for loop autoclear
f7b77e649 Update mount manager cleanup logic
069cbfe8f Use mount manager for temp mounts
93070961b Update snapshotter tests to use mount manager
fa327566b Fix mount manager deactivate errors
9c0cc4a42 Add mount manager format test
61b8426ae Add mount manager documentation
67f0970a5 Add mount activation integration test
39f128b99 fix invalid deactivate error
76a877bb5 Add mount activation support to task service
5b4de2c34 Add implementation of list and get mount activation
184fae60f Add backreference support to mount manager
9794addce Add mount formatting test
d8e5cdd76 Fix gc cleanup and add unit tests for gc
49634889f Update ctr image mounts to use mount manager
62062902f Add support for mount manager to ctr snapshots mount
563b28154 Add mount manager to client
c8e7674cc Add temporary mount support to manager
aba772012 Add debug logs to mount service calls
d23e635a5 Fix mount manager plugin when no handlers provided
75ed5e003 Fix mount manager gc
8db301086 Add mounts api service
67fbf9db9 Generate and vendor proto changes
c5097ac63 Add mount manager to protobuf services and types
4d34b01ce Add loopback and overlay mount manager tests
0e88cde87 build(deps): bump github/codeql-action from 3.30.3 to 3.30.5
5a00693e7 Fix integ-test: looking for sleep inf as longCommand
739821fc5 pkg/display: use platforms.Format for platform display
748cd9f03 Prevent goroutine hangs during ProgressTracker shutdown
54325eedc Fix typos introduced on PR 12323
a7537cb8a Add referrers to default registries
b668614b5 Add referrers to host config
c1b1297c6 Update capabilities for referrers
09b4ac136 Add referrers fetcher to remotes
9ca659a53 Add conf.d include in the default config
de20021f5 Make E2E workflow a required check
cbfb535ad Add a comment to explain why apt-get install erofs-utils can't be used
3df2b5d98 TestErofs/Rename fails with EROFS snapshotter
c1bf79e7a Build and install erofs-utils from source and modprobe erofs
35f94ef70 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
33e6b79fc Fix device mapper suspend/resume flakyness
5be6c0309 build(deps): bump azure/CLI from 2.1.0 to 2.2.0
7e74801b7 Move wintls as internal pkg
d2adfd820 Add support to retrieve certificate and key from windows cert store
6243cf562 Add mount manager tests
f4b7b9344 Improve formatting and support for deactivate
55ff11737 Add loopback mount handler
ed03f3a71 Add mount manager plugin and types
78ca11c1c Add mount garbage collection resource
c71598622 Add mount manager interface to mount package
1809f3ef1 Update metadata gc to run context finishes in parallel
37cec6800 Move transaction context to boltutil
09644bd13 [github-action] release - Empty allowedSignersFile
635907e63 Ensure errContentRangeIgnored error when range-get request is ignored by registry
010ad4c06 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
8112ca64f cri: remove copying of message structs
9d351805b go.mod: Bump up k8s.io to 0.34.1
517ca7566 build(deps): bump google.golang.org/grpc from 1.75.0 to 1.75.1
e009b98ce build(deps): bump github/codeql-action from 3.30.1 to 3.30.3
84aa20676 docs: Update 1.7 LTS support timeline
cfe20b588 add k8s 1.34 support matrix
479cf42ca Add extraction progress to transfer service
09e531b88 Add progress to apply options
a85610d52 Prepare release notes for v2.2.0-beta.0
dba7f8fbe Update releases doc to show v2.2 has started beta
da2a8b34e build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3
6f92111a9 build(deps): bump actions/stale from 9.1.0 to 10.0.0
52c310c98 build(deps): bump actions/github-script from 7.0.1 to 8.0.0
39a38dd60 build(deps): bump google-github-actions/upload-cloud-storage
284716350 build(deps): bump github/codeql-action from 3.30.0 to 3.30.1
d4fd22ce7 build(deps): bump github.com/prometheus/client_golang
b2866150a build(deps): bump the golang-x group with 3 updates
65badbef4 Resolve `staticcheck` complaints on FreeBSD
f45716efe Clean up issues cited by `usetesting` package with golangci
53d78b68d runc:Update runc binary to v1.3.1
c77b70852 pkg/cio: Close(): use errors.Join to return all errors
bfbb18ca8 build(deps): bump github.com/containernetworking/plugins
1fac82f0e build(deps): bump github.com/checkpoint-restore/checkpointctl
6374ac511 build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0
23c51c25b build(deps): bump github/codeql-action from 3.29.11 to 3.30.0
b56804da7 build(deps): bump google-github-actions/auth from 2.1.12 to 3.0.0
683cd7d60 gc:make sure lastCollection is not nil
bcecb979a build(deps): bump lycheeverse/lychee-action from 2.5.0 to 2.6.1
fb28794f4 Update Go requirements in BUILDING
591a769a6 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
f4238238f build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0
fd1a7a102 build(deps): bump google.golang.org/grpc from 1.74.2 to 1.75.0
8ebe57e2e build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
cc2a52ca8 Update pkg/oci to use FS interface
6fa776811 docs: remove shutdown adopter D2iQ Konvoy
56cde7d2c add SystemdCgroup to default runtime options
363e02310 install-runhcs-shim: fetch target commit instead of tags
77905cf6f build(deps): bump go.etcd.io/bbolt from 1.4.2 to 1.4.3
fe4ec31bc build(deps): bump github/codeql-action from 3.29.10 to 3.29.11
f0ee598ff integration: Add test for directives with userns
41953f7ac cri: Fix userns with Dockerfile VOLUME mounts that need copy
48f5d4255 script/test: clean up generated NRI test configuration.
ad207c1ce docs: update docs for NRI v0.10.0.
37b12bf5e Add documentation for cgroup_writable field
b7a401f1d cri: warn about deprecated v0.1.0-style NRI plugins.
cb9fda2e7 nri: add configuration for the default validator.
fa820a5d0 go.{mod,sum}: update NRI to v0.10.0.
3dbb9695a build(deps): bump github/codeql-action from 3.29.7 to 3.29.10
da3dc1ef6 core/mount: Retry unmounting idmapped directories
27ba690a1 core/mount: Test cleanup of DoPrepareIDMappedOverlay()
dd7fe0b76 core/mount: Properly cleanup on doPrepareIDMappedOverlay errors
cb56df4fb build(deps): bump the k8s group with 3 updates
d449d94d2 build(deps): bump github.com/emicklei/go-restful/v3
b595e0173 Update hcsshim to v0.14.0-rc.1 in preparation for containerd/2.2
7a19c94d6 core/mount: Don't call nil function on errors
dc38aaf6c ci:fix TestSandboxRemoveWithoutIPLeakage failed
6dcbdcfb3 ci: add Go 1.25.0
93c034c80 build(deps): bump actions/cache from 4.2.3 to 4.2.4
f77717f50 build(deps): bump lycheeverse/lychee-action from 2.4.1 to 2.5.0
a2d30ba30 build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
6e9b6eada core/mount: Only idmap once per overlayfs, not per layer
6ce7f6d87 pkg/sys: check SupportsPidFD first
c7f19d104 build(deps): bump the golang-x group with 2 updates
8d275704a build(deps): bump actions/checkout from 4.2.2 to 5.0.0
e3b2bcead build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0
5bd22a3e9 build(deps): bump github.com/containerd/go-cni from 1.1.12 to 1.1.13
bd9e577c2 Fix ctr snapshot mount produce invalid mount command for empty option
db31fbc5a ci: bump Go 1.24.6
45e02e1dc sys: fix pidfd leak in UnshareAfterEnterUserns
7340a7a28 fix: create bootstrap.json with 0644 permission
2b48e3cb9 build(deps): bump docker/login-action from 3.4.0 to 3.5.0
398d42313 build(deps): bump github.com/prometheus/client_golang
aeace7daa build(deps): bump google-github-actions/auth from 2.1.11 to 2.1.12
009625290 Block CIM snapshotter & differ
63c9cfcc1 fix typo: collecter -> collector
3653c911b Update mailmap for austinvazquez
55fd29789 build(deps): bump github/codeql-action from 3.29.2 to 3.29.4
6e0579453 build(deps): bump google-github-actions/upload-cloud-storage
22a88c1ac build(deps): bump the k8s group with 3 updates
83deebdd5 build(deps): bump google-github-actions/auth from 2.1.10 to 2.1.11
a38708cc9 build(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2
68a55252f refactor: use the built-in max/min to simplify the code
b70b43f6b time to upgrade to 1.33 cri-tools
4f95737e1 Remove Alpha gate from k8s e2e runs
46325f114 Update 1.6 timeline to add an extended period
ed174c914 cmd/ctr: rename vars that shadowed builtin
4420b5a49 Ensure fetcher always closes body and properly calls release
1b821ca04 fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
118a84147 ci: update crun to 1.22
c5ad254a3 ci: bump Go 1.24.5
0eaa09e35 Make signal notifications work on Windows
636d29832 build(deps): bump the golang-x group with 3 updates
dbb44287f Plumb windows CPU affinity values to runtime spec
12daca5f6 Fix intermittent test failures on Windows CIs
117179ae1 Remove WS2025 from CIs due to regression
222b2d3e7 update pause image to pause:3.10.1
e96ebc008 erofs-snapshotter: make IMMUTABLE_FL optional
f75323f89 nri: enable otel traces in NRI.
b641933cf erofs snapshotter: Add tar index mode
62bbdce7f update go-md2man binary to v2.0.7
fd464031d build(deps): bump github.com/tchap/go-patricia/v2 from 2.3.2 to 2.3.3
e0d733c87 blockfile: Ensure required options are always set
aed961a6f Remove additional fuzzers from CI
24ea5f23f build(deps): bump golangci/golangci-lint-action from 6.5.2 to 8.0.0
a0ed14fd4 erofs-differ: fix filesystem UUID for tar-converted layers
b92e8b544 Add GitHub Action for k8s node e2e tests
eb63b5b4d Amend runtime handler test for stable order
c6ae08193 CRI: Stable sort for RuntimeHandlers
f51a2fbfd Test showing RuntimeHandlers in Status() are unordered
cc913cac6 build(deps): bump github/codeql-action from 3.29.0 to 3.29.2
40f3b74af build(deps): bump go.etcd.io/bbolt from 1.4.1 to 1.4.2
587c0757b build(deps): bump github.com/intel/goresctrl from 0.8.0 to 0.9.0
35cbd7349 Fix port forward error logger to not cause concurrent write
7a46fe7e6 Correct Commit Memory Aggregation for Windows Containers
a4aebea4b build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
100b78711 build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
621d661be Add coverage support for CRI integration tests
bf1c47f5e core/runtime/v2: shimManager.cleanupWorkDirs ignore non-existing path
d553c4014 Update GHA runners to use latest image for most jobs
610f29914 Update garbage collection docs
6537a61d0 Add back reference test for collectible resources
df87a8f71 Add support for backreferences in gc
8ecd6b6fa Update gc tests to make digests easier to identify
cf7f4f5cc restore: skip pull for existing base image
b671a9721 ctr:add sandbox info command to print sandbox info
b95265124 build(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1
9f9ce00aa build(deps): bump the k8s group across 1 directory with 3 updates
a79e79141 ci:fix ci TestContainerExecLargeOutputWithTTY panic
97bbc1f73 Remove unused Windows 2019 powershell scripts
cb53f381e fix when multipart fetching and the server does not return content length
d3516916a Fix fetch always adding range to requests
aea4e685e build(deps): bump github.com/urfave/cli/v2 from 2.27.6 to 2.27.7
ed7746656 ci: bump golangci from 6.5.2 to 7.0.0
37147b13a Disable ST1003: struct field Uid should be UID (staticcheck)
19a713061 Disable QF1003: could use tagged switch on base (staticcheck)
03a44a2d7 fix: Used nolint to ignore the static checks
4ba81d429 fix: ST1001: should not use dot imports (staticcheck)
b52997372 fix: ST1019: removed the duplicate imports
403f86ecc fix: QF1012: Use of fmt.Fprintln(...)
d93d18c85 fix: QF1001: could apply De Morgan's law (staticcheck)
b3eec6d8e fix: ST1005: error strings should not end with punctuation or newlines
1ff590004 fix: QF1004: strings.ReplaceAll instead (staticcheck)
56516173d fix: QF1002: could use tagged switch on host (staticcheck)
0df6d1e6b build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0
4593023f1 build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus
1f288492c build(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
0779c0a6d build(deps): bump softprops/action-gh-release from 2.2.2 to 2.3.2
9b7f24610 build(deps): bump github/codeql-action from 3.28.18 to 3.29.0
b7bda5d6e build(deps): bump go.etcd.io/bbolt from 1.4.0 to 1.4.1
7c97cd331 build(deps): bump the golang-x group with 2 updates
e6708bddf bugfix:close container io when runtime create failed
4bf1705a8 Implement io.ReaderAt on docker fetch reader
734d52c39 chore: remove specific go version code
04ce9f884 feat: preserve nsPath on mount failure to ensure cleanup
af068ff86 Update fetcher errors to include full registry error
6e1f0203e Register remote errors for clients to access registry errors
697d77676 Decode grpc errors in the transfer client proxy
9de26f315 [e2e] add case for shim wait interface
49664dab5 Add context in Process Wait interface
415df3892 ci: bump Go 1.24.4 in CI
2f1948a50 Enable CIs to run on WS2022 and WS2025
8de612020 pkg/oci: don't use var for WithPrivileged
cf667aa7e pkg/oci: add basic test for WithParentCgroupDevices
d72c21450 pkg/oci: don't use vars for WithAllKnownCapabilities, WithAllCurrentCapabilities
ac3c3ad5d pkg/oci: cleanup some tests
4de598d94 pkg/oci: remove compatibility code for go1.16 and older
17c632e78 pkg/oci: fix minor linting issues
cff8184ff support image volume sub path
a8658a708 erofs-snapshotter: fix to work with wrapped errors
4f7c69ae6 Update differ selection in transfer service to prefer default
21f0595b9 Add debug log when transfer returns not implemented
d9bb00578 Add more error details when unpack fails to extract
4dd2cd92c build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
48cec3659 Update transfer supported platforms logic
1ac97c2c1 *: properly shutdown non-groupable shims to prevent resource leaks
128229975 Enable DuplicationSuppressor in transfer service
00edba6aa Remove internal interface from unpacker interface
77562a8e4 fix import for local transfer service
a93c8d3cd build(deps): bump google.golang.org/grpc from 1.72.0 to 1.72.2
4a2c40223 build(deps): bump lycheeverse/lychee-action from 2.4.0 to 2.4.1
ee85517b1 docs: fix v2.1.0 release link
e57b9f751 dep: bump up k8s.io/cri-api to 0.33.0
a4dd2b8f2 go.mod: bump up go to 1.24.3
b9a29bdb9 ci: bump up go to 1.24.3
811d04422 shim-v2:improve shim error message
6e17198f0 Add descriptor to transfer pull image events
213337ce4 Fetch image with default platform only in TestExportAndImportMultiLayer
aa9c17c69 Add symlink breakout test for overriden path
78e838c34 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
b98b99836 build(deps): bump github.com/emicklei/go-restful/v3
fb6dd2cf1 client:improve mount error message
8be437ee8 docs(ansible): fix the folder
d498e690e clones k8s util exec used by streaming code removing k8s util dependencies
6c0d36b24 follow-up changes discussed at end of review creating these packages
b0052d94a pkg/oci: prevent panic for some platform-specific options
ee5ad982f docs/snapshotters/erofs.md: a tip for improved performance
5f2200b2c erofs-differ: fix EROFS native image support
af24e463b update runhcs to v0.13.0
7063ee659 clones vendor of k8s.io/kubelet/pkg/cri/streaming
11efadd36 build(deps): bump github.com/vishvananda/netlink
e29c0fe58 build(deps): bump github.com/Microsoft/hcsshim
21215b216 build(deps): bump dario.cat/mergo from 1.0.1 to 1.0.2
38c9bb93a Revert "perf(applyNaive): avoid walking the tree for each file in the same directory"
1a4c32105 seccomp: kernel v6.13
6180d6243 seccomp: kernel v6.12
fea77e15b ci: bump golang [1.23.9, 1.24.3] in build and release
a2f1f4a67 cri:use debug level when receive exec process exited events
8d3eb6567 Update removal version for deprecated registry config fields
2be7a7310 ci:fix ci timeout on almalinux
98698617c Update internal/cri/server/container_create.go
af05355e4 internal/container_create: if sandboxConfig's metadata is nil will panic
bcfba26ca internal/cleanup: remove Background(), add tests for Do()
ada7bdf19 replace "cleanup.Background" for "context.WithoutCancel"
c4435bb48 internal/cleanup: fix package godoc
e58bc944f core/runtime/v2: cleanup shim-cleanup logs
9ae54175d ctr:make sure containerd socket exist before create client
6ebe15dd4 cri:fix containerd panic when can't find sandbox extension
8bc62da9c client/New: Don't unlazy the gRPC connection implicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cf405d46b3 |
conmon: update to v2.1.13-tip
Bumping conmon to version v2.1.3-280-g42da7ac, which comprises the following commits:
8debcb5 Move attach start message after failure check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2ddec7ea71 |
aardvark-dns: upate to v1.16.0
Bumping aardvark-dns to version v1.16.0-20-g360f28c, which comprises the following commits:
56db1e0 release v1.16.0
2cdc994 release notes for v1.16.0
0c392ba [skip-ci] Update actions/checkout action to v5
5d34b0f fix(deps): update rust crate libc to 0.2.175
254c6d1 test: Remove empty user= directive in dnsmasq.conf to avoid SIGSEGV
b8a6c4c [skip-ci] Update actions/download-artifact action to v5
52cf09a fix(deps): update rust crate tokio to 1.47.1
ef89561 fix(deps): update rust crate tokio to 1.47.0
83b2433 coredns: fix typo in debug message
cdcaf7c coredns: process more than one message per tcp connection
5061851 fix(deps): update rust crate tokio to 1.46.1
fece9be fix(deps): update rust crate tokio to 1.46.0
57e60fa fix new rust 1.88 lint errors
7706847 fix(deps): update rust crate clap to ~4.5.40
6cf86fc fix(deps): update rust crate libc to 0.2.174
4930bb6 fix(deps): update rust crate libc to 0.2.173
9f6a258 make more use of AardvarkError
f93435d fix(deps): update rust crate clap to ~4.5.39
995be0e fix(deps): update rust crate tokio to 1.45.1
147de22 fix github release action
7af0797 bump to v1.16.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5302350d7a |
buildah: update to v1.41.5
Bumping buildah to version v1.41.5-1-g0e4301a18, which comprises the following commits:
7d95c695c Tag v1.41.5
b7b5a915c tests/run.bats: "run masks" test: accept "unreadable" masked directories
913046ac2 Run: create parent directories of mount targets with mode 0755
4094f92e3 [release-1.41] Bump to Buildah v1.41.4
4acf2a549 [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4778d77f24 |
podman: update to v5.6.2
Bumping libpod to version v5.6.2-2-g3529cd312f, which comprises the following commits:
9dd5e1ed33 Bump to v5.6.2
3b1ae51c60 Release notes for v5.6.2
aa5595391d Vendor buildah@v1.41.5
1751612f33 Handle SIGPIPE to prevent machine stuck in Starting state
a2dda0410c Bump Podman to v5.6.2-dev
1e2b231515 Bump to v5.6.1
9812c1f87d Final release notes for v5.6.1
dcdaaf24be update tests duo to CRUN#1767 to support both values
f93cad508a Fix a locking bug in that could cause a double-unlock
bd0386ff56 Add R! to systemd-tmpfiles script for all /tmp dirs
f532f361c0 [v5.6] Bump c/buildah v1.41.4, c/storage 1.59.1, and ...
ca994186f0 kube play: don't follow volume symlinks onto the host
74b2ea3a68 Bump xz to v0.5.15 to pick up a CVE fix
66eb23b4d1 Preliminary release notes for v5.6.1
7601c78be3 do not pass [no]copy as bind mounts options to runtime
26a41ad665 do not pass volume-opt as bind mounts options to runtime
4e83155959 tests: Get rid of netcat on the host and use Bash's /dev/tcp
f8800b7fa8 tests: Replace ncat for socat
8f3fcf7c29 test/e2e: actually start container in startContainer
bc905f25c3 fix(libpod): truncate long hostnames to correct maximum length
a366d42c99 Add a release note for 5.6 Rosetta being disabled-by-default
cd08b088f6 windows: do not convert unconfined seccomp path
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Vogelaar
|
39d095241e |
docker: make ca-certificates a packageconfig
Moving ca-certificates into a packageconfig allows using docker without installing all the certificates. Signed-off-by: Patrick Vogelaar <patrick.vogelaar@belden.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
17a69ce26e |
cri-o: correct SRC_URI and HOMEPAGE
cri-o now resides under https://github.com/cri-o/cri-o. The old URL, https://github.com/kubernetes-sigs/cri-o, now redirects to https://github.com/cri-o/cri-o. Correct SRC_URI and HOMEPAGE to use https://github.com/cri-o/cri-o. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
6f84db4be0 |
umoci: update to v0.5.0 -tip
Bumping umoci to version v0.5.0-49-g645eba4, which comprises the following commits:
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
837d335ced |
skopeo: update to v1.20.0
Bumping skopeo to version v1.20.0, which comprises the following commits:
e2c1eecd Bump to v1.20.0
33d3ae41 chore(deps): update module github.com/docker/docker to v28.3.3+incompatible [security]
36176ac4 fix(deps): update github.com/opencontainers/image-spec digest to 2daaaaf
d1bbcb46 openshiftCluster.dockerLogin: create path with parents
5973d144 integration: rename registry binary
a4f3fb31 Update dependency golangci/golangci-lint to v2.3.0
203a4cf7 Improve parameter passing to hack/test-system.sh
319d18c0 Improve parameter passing to hack/test-integration.sh
94e94998 Centralize policy edits in copySuite.policyFixture
5d2cb67f Use t.Cleanup in fileFromFixture
d64b5991 Update module github.com/spf13/pflag to v1.0.7
0aab0745 Update module github.com/containers/common to v0.64.0
a3b8e175 Update opencontainers/image-spec after https://github.com/opencontainers/image-spec/pull/1253 .
f17b4c96 Update module github.com/containers/image/v5 to v5.36.0
f87d5696 Update dependency golangci/golangci-lint to v2.2.2
f9bdc2d8 Consolidate options shared between copy and sync to sharedCopyOptions
1f18641d Consistently use AddFlagSet before flag definitions
4ac60afc Update GPG keys not to use SHA-1
862c2331 Update module golang.org/x/term to v0.33.0
ef2375bc Update module github.com/Masterminds/semver/v3 to v3.4.0
3de83e9f Update dependency golangci/golangci-lint to v2.2.1
3c93577b Packit: disable official CentOS Stream update job
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
be00049d5a |
runc: update to v1.3.0
Bumping runc to version v1.3.0-24-g81693c22, which comprises the following commits:
765cd9dc runc update: don't lose intelRdt state
3ac9e165 [1.3] rootfs: remove /proc/net/dev from allowed overmount list
0f13e3f7 tests/int/cgroups.bats: exclude dmem controller
ce4ad992 libcontainer: close seccomp agent connection to prevent resource leaks
2ff79594 Preventing containers from being unable to be deleted
c6825478 fix rootfs propagation mode
15dc7b51 libct/configs: stop using deprecated id
af614c94 libct/configs: fix/improve deprecation notices
daada5e8 libct/configs: add package docstring
34fd5f0e gha/ci: allow validate/all-done to succeed for non-PRs
24537420 ci/gha: allow to run jobs manually
3a93edb6 ci/gha: fix exclusion rules
6923754a ci: bump golangci-lint to v2.1
996b5185 VERSION: back to development
4ca628d1 VERSION: release v1.3.0
60e2125b go.mod: Delete exclude directives
7031f31d runc: embed version from VERSION file
51b5267a runc --version: use a function
7b2b95d9 ci: bump to golangci-lint v2.0
6a39b491 libct/intelrdt: fix staticcheck ST1020 warnings
1ceca371 Fix staticcheck ST1020/ST1021 warnings
5d9653d8 Fix a few staticcheck QF1001 warnings
bd84d8a3 libct: fix staticcheck QF1006 warning
c3318434 notify_socket.go: fix staticcheck warning
708fe761 rootfs: improve error messages for bind-mount vfs flag setting
4f7de1e0 mount: add string representation of mount flags
2d2dd7fd ci: upgrade to criu-4.1-2 in Fedora
3c375a84 Unify and fix rootless key setup
5275ebb9 ci: install newer criu for almalinux-8
657ab785 ci: bump bats to v0.11.0
6a249199 script/setup_host_fedora.sh: use bash arrays
477391a7 script/setup_host_fedora.sh: remove -p from mkdir
d230ee59 tests/int: rm some "shellcheck disable" annotations
bcc92067 ci: bump shellcheck to v0.10.0
a46cf790 Makefile: bump shfmt to v3.11.0
6d667629 runc pause/unpause/ps: get rid of excessive warning
763f3d58 pause: refactor
55e45c64 VERSION: back to development
159c67f8 VERSION: Release v1.3.0-rc.2
d8e6733e CHANGELOG: port 1.2.x changes
713045ed tests: Add env var tests
8dd36d11 libct: Override HOME if its set to the empty string
a56f2bc8 libct: we should set envs after we are in the jail of the container
73973fb0 test: check whether runc set a correct default home env or not
109116ae criu: Add time namespace to container config after checkpoint/restore
c991b266 .cirrus.yml: install less dependencies
ffbb1dd9 CI: migrate Vagrant + Cirrus to Lima + GHA
473c740e doc: update spec-conformance.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3877bf4bb9 |
podman: update to v5.6.0
Bumping libpod to version v5.6.0-7-g41224eb949, which comprises the following commits:
cd08b088f6 windows: do not convert unconfined seccomp path
fb14c3192d podman events: show network create/remove event with journald
57cb2ca3c6 Bump Podman to v5.6.1-dev
da671ef6cf Bump to v5.6.0
98c3228471 Update release notes for v5.6.0 final release
43cb0db93b [v5.6] Bump Buildah to v1.41.3
f6584e443a [v5.6] Reverse skipped test for 26773
3354423c0d Add a deprecation notice for users of BoltDB
11efbf84c7 Bump Podman to v5.6.0-dev
ec0652f4ad Bump to v5.6.0-rc2
44e1f1e598 Update release notes for v5.6.0-RC2
5dc87663a9 feat: add Podman artifact support to Go bindings and remote clients
906b97e3e1 compat: remove deprecated VirtualSize
17a1e6cfb2 compat: add shared-size par to GET /images/json
8bcfe0ea56 compat: RepoTags and RepoDigest return [] and not null
e1f65f1642 compat: remove GET /system/df BuilderSize
ec778d94b5 compat: GET /_ping return Builder-Version: 1
57493f61d0 [v5.6] Bump Buildah to v1.41.1
8865152a3b [v5.6] Skip failing Buildah v1.41.1 test
e98899689c Remove Experimental from Artifacts man pages
21cf326c7b [v5.6] Bump c/storage to v1.59.1, c/image 5.36.1, and
797a59cefa Bump Podman to v5.6.0-dev
a3a6d9cc33 Bump to v5.6.0-rc1
e22fc65217 Add release notes for Podman v5.6.0-rc1
f3e3aace95 Temp fix for #26680
6aa70f07c2 Update "podman diff container and image with same name" e2e test
e6f812c21e API server: drop inherit-labels/annotations for compat builds
7bc9691045 buildah-bud tests: handle "-t oci:" and such, skip a new --output
ac99084d03 API handler: don't force the SkipUnusedStages flag
55f4d2aa25 API handler: don't force the CompatVolumes flag
db2baee9fa API handler: don't force the IdentityLabel flag
3e673591ad Update compat-volumes setting for remotes
bf79a9b71e Update inherit-labels setting for remotes
bfe6cbe319 pkg/emulation.parseBinfmtMisc(): accept empty "flags" fields
a615dde1a5 build endpoint: document the "timestamp" flag
7517e3267a remote build: relay more new flags introduced in buildah 1.41
73f3e98947 Feat: send additional build contexts for remote builds
97103ffef5 Add Buildah build's passwd test helper
2f71314b4a Add CLI updates for inherit and unset annotations
97f27f35a5 Add missing manpages options for Buildah v1.41.0
048729a560 Bump to Buildah v1.41.0
ca5deaace1 fix(deps): update module github.com/onsi/gomega to v1.38.0
cfdf27b350 test/system: add quadlet drop-in regression test for subdirs
022bac25ea Quadlet - fix dropin overwrites if different parent dirs
ea5b83c0cb chore(deps): update dependency golangci/golangci-lint to v2.3.0
0fda2d8aa2 added updated state in podman-auto-update.1.md.in
f293c1a179 Initial implementation of `podman quadlet` commands
3c33b33424 fix(deps): update module github.com/containers/common to v0.64.0
82ad043197 docs: add description about our code structure
da3df0c45b fix(deps): update common, image, and storage deps
c1cf4b0d89 podman rm: handle case where conmon was killed
8b1f06bf8f podman inspect: fix error difference between local and remote
21356fa06b Update module github.com/containers/storage to v1.59.0
df7d787b4c Update module github.com/opencontainers/cgroups to v0.0.4
55296e1c44 Fix test that checks for podman exec leaks
e899f49926 Update common, image, and storage deps
b48eb6e2fb volume export: refuse to write to terminal (TTY)
e55270a51a podman auto-update: include container in invalid policy message
4bc22a4b3c Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY]
0c586807ea chore(deps): update dependency golangci/golangci-lint to v2.2.2
215cecdbaa Maintainers: add Nicola Sella as Reviewer
78d4f63b93 Maintainers: add Jan Kaluza as Reviewer
5731557d54 Maintainers: add Lewis Roy as Reviewer
b4ed23dc27 fix(deps): update module golang.org/x/net to v0.42.0
8987fd412a fix(deps): update module golang.org/x/crypto to v0.40.0
047d231008 test/e2e: podman update make env check stricter
a360b29626 pkg/bindings/containers: do not ignore ErrUnexpectedEOF
ffec133766 pkg/bindings/containers: do not create sub slice
f42453457c pkg/bindings/containers: don't check for short read
439448c287 Quadlet - add support for the Policy key for .image files
5e44c17309 Clarifies error message when using an improperly formatted secret with kube
3e8b2d7d96 Fix seccomp profile path on Windows
c01eaa87dd fix(deps): update module golang.org/x/term to v0.33.0
1c943f0ad8 docs: replace fuse-overlayfs example with additionalimagestore
b59648a2d6 hack/podman_cleanup_tracer.bt: check map before deleting keys
1f8bc9d736 hack/podman_cleanup_tracer.bt: clamp str size for strcontains()
5e5bfadf93 hack/podman_cleanup_tracer.bt: use new max str lenth
152849ebd2 libpod/build: add headers
c735f8e237 Update the journalctl function to ignore No entry message
0e106c24e0 fix(deps): update common, image, and storage deps
0f61e48ac5 [Artifacts] Remove erroneous ArtifactListOptions var ImagePushOptions
53b5cb5581 [Artifacts] Add note about ArtifactInspectOptions Remote var
cd807f8ff6 Quadlet - print warning when fail to parse
2b4b4c5b06 manpages: adds example for podman system renumber
b10beb5395 Add basic locking to Libartifact
c5c6e44d7d Fix documentation around checkpoints
4410fcb394 cirrus: setup WSL logging
99e719aec8 fix(deps): update github.com/containers/image/v5 digest to 3532547
13816eb86f Fix `podman inspect` to correctly handle log_size_max
31b4efcaec warn instead of error, lift logic to main.go
68e7136536 Enforce wsl.exe UTF-8 encoded output
9fbe2fffe9 WSL commands execution refactoring
0f403ac43e Clarify meaning of --syslog
4b1f7bcb9a Quadlet - Error when units define User, Group, or DynamicUser in Service group
5391721aa3 fix(deps): update common, image, and storage deps
10a5f9715b fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.6
d8599658ff Makefile: add Makefile to sources
145fb74dbf rpm: add grpcnotrace build tag
3d453572a9 Makefile: add grpcnotrace build tag
62bfeb5d88 Add conditional release-checking system test
fed198eaf9 api: Don't HTML escape application/json responses
ffbb0ed7b0 update CI images 2025-06-27
92a6298729 chore(deps): update dependency golangci/golangci-lint to v2.2.1
38ed6c6589 vendor: update c/{common,image,storage} to main
5786d5f846 fix new lint errors from the docker update
f1a1948b23 Quadlet - Do not override existing Environment in Service group for Pod units
cf87278e66 vendor: update docker to v28.3.0
570fbf0078 pkg/domain/infra/tunnel: ignore error from removeContainer()
247c1dfb53 libpod: remove deadcode
09caf60687 remove test/framework/framework.go
d2291d7f1a pkg/util: remove deadcode
552e38ec6d remove pkg/util/camelcase
6893ecc469 pkg/rootless: remove deadcode
880808dfb9 pkg/parallel: remove deadcode
6bfd28bc6f pkg/namespaces: remove deadcode
f3c82a917c pkg/machine: remove deadcode
d919a3666b pkg/libartifact: remove deadcode
6da360a223 pkg/fileserver: remove deadcode
fb5cbb9b1f pkg/farm: remove deadcode
1a0917de35 pkg/errorhandling: remove deadcode
4d5e0a647c podman images --sort use ChoiceValue flag
a92e685c0b pkg/domain: remove deadcode
fc21bcd7d1 pkg/bindings: remove deadcode
9d328d8782 pkg/api: remove deadcode
75bad52af5 remove unused ShouldRestart() code
1d3089ea82 cmd/podman: remove deadcode
054036f073 podman images --sort autocomplete options
c99d237349 Update Neil Smith's GitHub username in MAINTAINERS.md
2ef0148b8a machine: enable nested virt on libkrun by default
e00dfa606a pkg/machine/e2e: add CVE-2025-6032 regression test
b5783ae1fb test/e2e: fix podman run check dns flake
b099a93580 Bump bundled krunkit from 0.2.1 to 0.2.2
bfc327a08e Secret create - add ignore option to allow noop
f21dacc4fb cmd/podman: add --latest option to update #26380
f266034d56 docs: document when a volume is chowned
98876454cb Refactor `volume import` to support the remote client
67fa077a5c update image_fix -> automation_images#407 skip test duo to rawhide know issues
5ab4328318 Podman pull - add policy flag
17601aa913 Pod YAML: Add support for `lifecycle.stopSignal`
726b506acc machine init: fix tls check
ca1c4388b3 update podman-machine-start with examples for --no-info and --quiet
01fb3aaae4 test/e2e: fix "with unsafe hostPath subpaths" test
964069326d quadlet: remove indirect logrus import
fa67681601 docs: add three examples to podman-generate-spec man page
e4c810a8f1 fix panic on state refresh
5989370c39 pkg/systemd: expose [Pod] ExitPolicy key for pod create --exit-policy
1f9893817b volumes: add new --uid and --gid option
d79d596bce docs: add an example to podman-secret-rm man page
a218dfa2fd chore(deps): update dependency pytest to v8.4.1
d7f980b719 [CI:DOCS] Tweak Governace slightly
a93b63c4ad remove .github/workflows/pr-title.yml
0439167943 remove hack/install_catatonit.sh
bf7c9a1536 Makefile: remove some old files from clean target
8cfe7bb003 remove cni/
6623ab8d17 remove pkg/timetype
5d88999447 remove contrib/modules-load.d
241f2d7928 remove contrib/snapcraft
4582c3413f remove contrib/script/size.sh
605b1f7386 remove contrib/remote/containers.conf
e9aad3d40d remove contrib/dependabot-dance
14b1ee5837 remove contrib/dependencies.txt
febb667865 remove contrib/containers-common
4ec7d35cbb Removed the 'Deleted: ' prefix from each example
6b996445bc add more exmples applying current style for each page
15d8b5b2fb docs: add an example to podman-network-rm man page
139d3fc82b [CI] Correct ST1005 staticcheck lint rule
6510d81f69 docs: add examples to podman-system-migrate man page
63bf454d66 Refactor `podman export` to work with the remote client
0ab8a3c576 artifact mount: add new name option to specify filename
c647a7200e Fixes: #26374 add example network connect with mac address
21f34601eb artifact mount: improve single blob behavior
6368b248f0 docs: remove bogus markdown heading in podman-ps
fd325e33fd Update podman system prune doc
bd2c838b0e fix 26348: add container diff --latest doc
ffa4c124a1 Add missing --pod examples to podman ps manpage
93d66542d4 Move 'Examples' section down in the podman-volume-create man page
bb571b48c3 fix(ci): add ST1005 linter rule
cbba265f29 Add examples of `--all` flag
1a461fe41a Manpages: podman machine init add example with --now
24e5c00e6e Update docs/source/markdown/podman-secret-inspect.1.md
4a35cf00ec Improve documentation for podman-secret-inspect, closes #26362
ad7087af56 Add Craig Loewen to Reviewer role
ae49463a8f man pages: Add an example about --no-prune
085082a805 Manpages: add podman exec missing example of detach option
d680c48eaf fix(cmd): improve ValidURL reliability
d1187be8a3 Bunch of trivial manpage fixes
1141ae4a87 libpod: log file doesn't need to be executable
9922bddb1f libpod: do not dereference nil pointer
54afcdf6b3 libpod: fix file descriptor leak
5838bfef9a podman-update: fix EXAMPLES
2221ca9943 test: check podman update errors on non-block devices
3f0cdb9414 pkg/specgen: error out when a block device isn't
9b6e548387 pkg/specgen: refactor FinishThrottleDevices, WeightDevices
2b6c477884 quadlet: handle generate environment params that inherit from host
ad882ac730 fix(deps): update module go.etcd.io/bbolt to v1.4.1
d4a8598ca4 make validate-in-container changes
0080368fd6 Clarified the consequences of --network=host
22789928d4 podman machine: pull wsl image from machine-os
48b19e98f9 remove hack/libdm_tag.sh
9aedc47aff rpm: build rpm with libsqlite3 tag
c6842d3425 Makefile: use libsqlite3 build when possible
c45b27ffb0 Remove bin/podman.cross Make target
c96d87ccad Allow generate-bindings on darwin
087a44a8e7 Update module github.com/go-swagger/go-swagger to v0.32.3
f0c15f1c7a docs: replace RemapUsers=keep-id with UserNS=keep-id
2825521337 tmpfs: Add support for noatime mount option
a87bef9606 fix(deps): update module golang.org/x/net to v0.41.0
0f7b21ad00 pkg/machine: remove unsused net recover file
0c77654be7 Revert "podman machine: fix proxy test"
adc35b157e pkg/machine: remove old fw_cfg service
0b8dd90840 podman machine: fix proxy test
0c406f25ad pkg/machine/e2e: skip rosetta test
793242da8d RPM: Limit Epoch 102 to podman-next copr
18ecd2046b quadlet: generate RequiresMountsFor for Type=bind volumes
b85d770be0 Make podman.io update action reusable
971321228c Skip layer digests for podman system check --quick
465578d7ec test/buildah-bud: skip new build-with-two-outputs on remote
4286f03b34 test/buildah-bud: update buildah-tests.diff
c1653bdc29 Build the `dumpspec` test helper for the `buildah bud` tests
ac71bc6cf2 vendor: update buildah to latest main
96abeafc61 vendor: update c/{common,image,storage} to latest main
d44f0afa84 vendor: update github.com/docker/docker to v28.2.2
94478a4144 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2
a0f7db44e8 quadlet: add InterfaceName option to network unit
8532ecb710 fix wsl install workflow on machine init command
99cfdc04db feat: Add OCI Artifact support to the Podman REST API
eadded9154 build: reuse parse.ContainerIgnoreFile from buildah
87450b8f8b podman buildx inspect support
0719acbe7f chore(deps): update dependency pytest to v8.4.0
89b8e23385 test/system: check --dns-option behavior
c87a761e05 podman system check: Fix error check logic
75dc508e98 libpod: don't force only network search domains
04a1a39a69 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.5
869fceb0fd update c/common to latest main
da95bbdd5d play kube: never add empty alias
b64817de40 fix(deps): update github.com/opencontainers/runtime-tools digest to 0ea5ed0
2c252a7614 Don't BuildRequires: ostree-devel
3837339e0e Allow not specifying type with --mount flag
775a85004f Add "dest" as an alias for "destination" in `--mount`
f2d941b241 docs: quadlet can translate names now
db53f6240d e2e: ref full URL for aarch64 criu precheckpoint issues
a17f8afbbc specgen/generate: Fix log tag priority
5e7c0a66ce e2e: skip pre-checkpoint tests on aarch64
3a981915f0 Handle "Entrypoint":[] in compat containers/create API.
415668c802 system df --verbose don't crash
b276e7ef21 Fix SQLite volume lookup queries matching too liberally
b551939be6 vendor: update c/{buildah,common,image,storage} to main
e0b08fcfa3 Recreate the Rootfs in mountStorage for infra-container.
ca20c42a52 test: fix race conditions in /dev/kmsg tests
f25cefcb1b Fix overlay volumes on Windows
d5520ded64 chore(deps): update dependency setuptools to ~=80.9.0
051be9b2d2 libpod: Don't exclude running deps from the container graph inputs
66bf98e27c compat API: respect base_hosts_file containers.conf option
416bb84c0e Trigger podman.io version bump from release action
ad05a878df Packit: remove propose-downstream for centos stream
44ec71358e Packit: use fedora-all alias for tests
9d4267c8f2 Disable the tests for rootless pods
5bfdb25b26 Support --cpuset-<cpus/mems> in podman kube play
5797c1dd27 pkg/machine: don't use dummy linger service
79a857e0a0 pkg/machine: correctly enable lingering
9872f0e83c Update expected output for a machine copy test
af495e1aa9 Replace alpine_nginx with TESTIMAGE in e2e tests
9a452db918 Support '$FOCUS' env variable on winmake too
6265ef07ae pre-commit: exclude rpm/gating.yaml from check-yaml
50379429ca lint: Fix linter issues on TMT files
cff69f89e9 Update release notes on main
c39fd061f0 fix CONTRIBUTING to say reference issue number 'or' url
92a15085cb compat: fix Container State.Status JSON values
f10e2ffd36 chore(deps): update dependency setuptools to ~=80.8.0
953e385bd2 libpod: fix mount order for "/" volume
b9cc2d87d7 Update RELEASE_PROCESS.md
6d6ebad829 github: remove fcos next image workflow
3ab45807b4 [skip-ci] Packit: set fedora-all after F40 EOL
736ca60378 test/e2e: do not check dns.podman
7c0262db3d compat: Add DefaultAddressPools field to GET /info
265ca77276 Be explicit about ssh configs suitable only for localhost
b82f2962c3 compat: Add CgroupnsMode to POST /containers/create
06ddffc81d Update dependency setuptools to ~=80.7.1
9c206a467d docs: drop --pre-checkpoint requirement
90ee7c86a3 podman: remember hooks-dir on restarts
53f118d135 GHA Release: Fix windows installer uploads
3e08c2abf0 Revert "GHA: Pin Go to 1.24.2"
db65baaa21 fix macos compile issue with go 1.24.3
206d92c25f Packit: disable OpenScanHub scans
fb9ef0dda0 GHA: Pin Go to 1.24.2
fe84fbae72 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1
637c264e2e fix issues found by nilness
6ae920de8b Bump bundled krunkit to 0.2.1
59d9f1ea5d chore(deps): update dependency setuptools to ~=80.4.0
5471f6e191 chore(deps): update dependency docker to v7
59c45a01c7 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.5
6a96f70180 fix(deps): update module github.com/crc-org/vfkit to v0.6.1
b572b892b1 fix(deps): update module github.com/containernetworking/plugins to v1.7.1
077649f9d0 Fix: Use SIGKILL instead of SIGTERM when ExecStopContainer timeout is 0
499ea1168b Fix: Ensure HealthCheck exec session terminates on timeout
d7fefb7064 [skip-ci] Tighten version match
700c679cd2 Quadlet - Update the docs to reflect the default naming of resources
09d9d3e26b Revert "Quadlet - fix pod name to depend on the name of the generate service"
5be3f8d480 Fix a shellcheck warning about word splitting
a5748206d1 fix(deps): update module github.com/vishvananda/netlink to v1.3.1
7a161115f9 Fix parsing of paths for unmask
b6eeaea7f3 Take path for wsl instead of forcing through WindowsApps
d12588f581 fix(deps): update module golang.org/x/net to v0.40.0
136f2e1ba4 Update win-installer github job for arm64
efc3b178bb Build windows arm64 artifacts
35e1c2033a Fix windows arm64 installer build
f4819412b8 README.md: add openssf passing badge
9dffc251fc fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.6
d6239385fd Update podman-secret-create.1.md
4f38c2fea2 Quadlet - fix pod name to depend on the name of the generate service
4a4b8dcfe9 fix(deps): update module golang.org/x/crypto to v0.38.0
f825639ebc Verify the ExecSession pid before killing it.
32d389a19c fix(deps): update module golang.org/x/term to v0.32.0
1f7d8e2273 fix(deps): update github.com/vishvananda/netlink digest to 9d88d83
fbdeff2b88 fix(deps): update module golang.org/x/sys to v0.33.0
0b1623e2e4 fix(deps): update module golang.org/x/sync to v0.14.0
5d6c784252 docs: fix markdown format
ec6423e73b chore(deps): update dependency golangci/golangci-lint to v2.1.6
78065fd8c7 chore(deps): update dependency setuptools to ~=80.2.0
3448ba5091 Automatically bump to -dev after tag
7fddbd4d4d Update winmake.ps1 to build arm64 artifacts
2419732eb7 [skip-ci] TMT: system tests
ac6080bea9 pkg/machinie: use TZ env for reading local timezone
a90fad3fc8 pkg/machine: rework getLocalTimeZone on linux
193d7b8202 pkg/machine: properly setup zoneinfo symlink
b431f06e64 pkg/machine: do not add broken localtime symlink
039679d0ae fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0
ebcdd3c8cd fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.4
bc810cb07d fix(deps): update github.com/hugelgupf/p9 digest to abc96d2
b7f67badf3 chore(deps): update dependency setuptools to ~=80.1.0
941a6d0c05 pkg/signal: ignore SIGTOP for signal proxy
a4d0067249 pkg/signal: rework CatchAll() behavior
8de2e0ec21 sigproxy: ignore if container already removed
80065f7224 ci: Load null_blk for I/O limit tests
8160e02459 test/e2e: Use nullb0 for IO limit tests
3b61e56152 test/system: Use correct device for I/O limit tests
f6b91d7be0 inspect: Ignore character devices for IO limits
d7eaf42727 Do not error on tz detection
c9b1bd1cf3 Stop setting btrfs_noversion build tag
9c5f7662d1 Remove providers checks from the Windows Installer
9b2fb40ab8 Quadlet - remove the usage of cid and podid for container and pod files
8e6ecb97c9 Fix running machines with volumes containing spaces
ad20e257d6 Makefile: move some Go-related variable definitions up
24267452e6 Handle signal preventing Start from completing
f6be9fbc7f Build documentation in a container on Win arm64
2b06c01357 Fix mach os pr release action
8d65e0e36c bump main to 5.6-dev
579b17425e pkg/bindings: wrap image push decode error
6c0e581fa9 pkg/bindings: fix infinite loop/memory leak in image pull
ae9e85bfc5 Update "check.c" to be C23 compliant
7b1055a5fb feat: Add support for configuring swap in Podman machine
6c9f378a9b fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
3f56de0199 Quadlet - use helper function to initialize service struct
2588b96993 Fix logging podman machine server9 output
fd444bd7d7 OWNERS: Fix Github handle
e66ff395b7 Fix handling of "r_limits" in Podman REST API /libpod/containers/create
7819879776 chore(deps): update dependency setuptools to v80
6e7de438cc bug: Correct Docker compat REST API image delete endpoint
a969dbd73e update podman socket output to include also exposed ports
585f046e95 Disable FS mount in volume only test
4268c61dd0 Added tests for inheritlabel fix
0c4d023822 Fix: inheritlabels=true if query param absent
75f05a9807 Add Mohan Boddu as community manager
710c077342 chore(deps): update dependency golangci/golangci-lint to v2.1.5
7e14a03409 fix(deps): update module github.com/cpuguy83/go-md2man/v2 to v2.0.7
633f727f2d Quadlet - use helper function for handling key=val type keys
802fc15b1e Add Label to quadlet pod
0eac57ed31 podman start: remove container if needed
3a2d7587fe remote: don't print bogus error when starting container attached
9b751a27b9 [skip-ci] Packit: do not merge PR in CI
e443bffe5a [skip-ci] Packit: re-enable fedora-41 targets
4dd9340a56 hack/bats: Pass --tap (-t) option to bats
bfd5de309f hack/bats: Fix to allow multiple tests
bf7dcd5619 Fix: Remove appending rw as the default mount option
c1ad54f89a hack/bats: Allow specifying PODMAN_ROOTLESS_USER
0463ad12cb libpod: fix a confusing error message from 'podman system reset' on FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6d45724b26 |
crun: update to 1.23.1
Bumping crun to version 1.23.1-9-gca8e5c74, which comprises the following commits:
eb9912e0 build: add check for static builds
bb04c555 libocispec: sync
a9d12996 linux: never chown devices
eecadda9 tests: fix test_mount return type
38c5795e tests: add capabilities to net test
d20b23db NEWS: tag 1.23.1
f56fc445 utils: add bounds checking for Unix domain socket paths
59066cc9 ring_buffer: do not use the reserved byte
abc42863 utils: write to ring buffer whenever there is space available
7d21fa1e tests, podman: skip auth test
3fc25616 NEWS: tag version 1.23
69c3ba16 krun: define KRUN_NITRO_IMG_TYPE_EIF if missing
aa9e1c51 krun: drop unused variable
55d603f2 krun: enable virtio-gpu
e76c7451 container: refactor container_init_setup
7acad117 container: refactor libcrun_container_run_internal
e83abf35 linux: refactor do_mounts
f9edd528 container: use xmalloc instead of malloc and OOM
2dbee366 criu: Add support for tcp-close
3040a07f cgroup-resources: extract common pattern
d30d1512 linux: fix regression in libcrun_configure_network
220a39a6 krun: Give container access to nitro_enclaves device
ac297b79 krun: Allow /dev/kvm to be unavailable with nitro
500f1c92 krun: Configure nitro enclave data if enabled
d9ddb935 krun: Use nitro flavor when indicated
702d09b7 krun: Open libkrun-nitro handle during loading
54771724 krun: End loop traversal when SEV device found
72b35020 linux: add missing crun_make_error
e2789c70 container: propagate error from exec setup
4e5375cb libcrun: inline can_skip into write_cgroup_resources_v2
ad9f90b7 tests: add test_bpf_devices
6f466dcc cgroup,systemd: do not install duplicated ebpf
edf66788 cgroup,systemd: check for loaded bpf on update
227bd0f1 cgroup,systemd: use BPFProgram=device if supported
832db004 write_devices_resources_v2: refactor
1dae52ba cgroup,systemd: allow empty slice in cgroupsPath
5610c0cf RPM/Packit: wasmedge support Fedora-only
39bdaaef Packit: disable propose_downstream for CentOS Stream
c6dfc871 RPM: placeholder check to silence rpmlint
8d61001d crun: print version even with invalid rundir
76805119 Remove dead code after exit
0b9aab09 handler: add NULL check to handler_manager_free
a755e043 utils: Add NULL pointer check to cleanup_close_vecp
66d710ce linux: add NULL check to cleanup_free_init_statusp
ce47a219 linux: Add NULL pointer checks to free_remount
54d4b042 string_map: ignore empty map
f25352f9 linux: limit mounts creation outside of namespace
d51df096 lua: clean up unused defines
4b7257d4 linux: fix regression with idmapped mounts
83f601d3 lua: fix build errors
4de19b63 NEWS: tag 1.22
aa082854 tests: install catatonit package
72e5468e tests: improve cpu_weight_systemd coverage
4998c928 cgroup: improve conversion from shares to weight
aaeeefc3 tests: install gperf on alpine
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
93493802e8 |
crio: update to v1.33.0 -tip
Bumping cri-o to version v1.33.0-167-g259e23fd4, which comprises the following commits:
21b03fda2 inspect: add hostnetwork information
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13ad3d54b6 |
containerd: update to v2.1.4
Bumping containerd to version v2.1.4-6-g30bd62aac, which comprises the following commits:
74b0505eb ci: bump Go 1.23.12, 1.24.6
3c174cf64 fix: create bootstrap.json with 0644 permission
5ef6ea747 sys: fix pidfd leak in UnshareAfterEnterUserns
112e41363 Add release notes for v2.1.4
add2dcf86 Ensure fetcher always closes body and properly calls release
34a1cb1dd fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
82c4d6875 ci: bump Go 1.23.11, 1.24.5
6cc2a8d77 Fix intermittent test failures on Windows CIs
6adc69312 Remove WS2025 from CIs due to regression
8d194c19f erofs-snapshotter: make IMMUTABLE_FL optional
2df7175d7 client/New: Don't unlazy the gRPC connection implicitly
02298e1a0 cri:fix containerd panic when can't find sandbox extension
4902adb92 update go-md2man binary to v2.0.7
583133e71 erofs-differ: fix filesystem UUID for tar-converted layers
57db13d50 Amend runtime handler test for stable order
d822c9048 CRI: Stable sort for RuntimeHandlers
a2fd70639 Test showing RuntimeHandlers in Status() are unordered
b74268f86 bugfix:close container io when runtime create failed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dce2da1fb3 |
buildah: update to v1.41.3
Bumping buildah to version v1.41.3-1-ga56e49701, which comprises the following commits:
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
1f7f1d285 Commit: don't depend on MountImage(), because .imagestore
5442721d4 [release-1.41] Bump to v1.41.2
72e680a9e Rework how we decide what to filter out of layer diffs
870c53c69 Note that we have to build `true` first for the sake of its tests
4fe68bc9b copier.Stat(): return owner UID and GID if available
f42946075 copier.Get(): ensure that directory entries end in "/"
9933e7966 copier.Get(): strip user and group names from entries
4ae77145e imagebuildah.Executor/StageExecutor: check numeric --from= values
2de767f3a [release-1.41] Bump Buildah to v1.41.1
0d0c7340e [release-1.41] Bump c/* projects and Buildah to v1.41.1
540cec341 [release-1.41] generatePathChecksum: ignore ModTime, AccessTime
f06ea2c5d History should note unset-label, timestamp, and rewrite-timestamp
d2e9062ea pkg/cli.GenBuildOptions(): don't hardwire optional bools
af12f7539 Only suppress "noted" items when not squashing
dee9f3d19 Test that pulled up parent directories are excluded at commit
34b0bc031 Exclude pulled up parent directories at commit-time
4f2feb8f4 copier.Ensure(): also return parent directories
19041cde3 copier.MkdirOptions: add ModTimeNew
ea7dfee85 Restore the default meaning of `--pull` (should be `always`).
9f185b777 Bump to Buildah v1.41.0
2b7cb35d0 Bump to c/storage v1.59.0, c/image v5.36.0,
9c525fd52 fix(deps): update module github.com/containers/image/v5 to v5.36.0
b8c6fcf21 fix(deps): update module github.com/containers/storage to v1.59.0
350288967 stage_executor: check platform of cache candidates
96588db2e fix(deps): update module golang.org/x/crypto to v0.40.0
d9443fe42 fix(deps): update module golang.org/x/term to v0.33.0
d6e5cbaf7 fix(deps): update module golang.org/x/sync to v0.16.0
c694e3c7a fix(deps): update module github.com/docker/docker to v28.3.2+incompatible
eea4838d8 ADD/COPY --link support added
063ee7625 RPM/TMT: account for passwd binary moving to tests
af210ea87 buildah: move passwd command to tests
16c0bdad5 Update "bud with --cpu-shares" test, and rename it
7a482aceb Remove BUILDTAG btrfs_noversion as no longer effective
c0fdc9a05 fix(deps): update module github.com/docker/docker to v28.3.1+incompatible
513775f3f fix(deps): update module github.com/moby/buildkit to v0.23.2
34488b549 fix(deps): update github.com/containers/luksy digest to bc60f96
9f809a88f chore(typos): fix typos
d95b2dad1 vendor: update c/{common,image,storage} to main
b47791a93 chore(deps): update module github.com/go-viper/mapstructure/v2 to v2.3.0 [security]
46e814173 fix(deps): update module go.etcd.io/bbolt to v1.4.2
f172a9d1d Update Neil Smith's GitHub username in MAINTAINERS.md
149bf968f Accept SOURCE_DATE_EPOCH as a build-arg
5bb8d5ed4 fix(deps): update module github.com/docker/docker to v28.3.0+incompatible
0832c3e08 Add conditional release-checking system test
52bbc61e1 info,inspect: use the "formats" package to get some builtins
7944b4b2b Use containers/common's formats package instead of our own
5968d8204 build, commit: set the OCI ...created annotation on OCI images
df36bb835 commit: exclude parents of mount targets, too
a3bea818b run: clean up parents of mount targets, too
7d5f1e1ca tarFilterer: always flush after writing
fce45b77d Builder: drop the TempVolumes field
fe4c1b734 Update module github.com/moby/buildkit to v0.23.1
128153867 Update module github.com/opencontainers/cgroups to v0.0.3
5b1d3e666 Add CommitOptions.OmitLayerHistoryEntry, for skipping the new bits
5995db7af Update module github.com/fsouza/go-dockerclient to v1.12.1
c12808594 conformance: use mirrored frontend and base images
ee5fd19c8 commit-with-extra-files test: use $TEST_SCRATCH_DIR
c578786e5 fix(deps): update module github.com/moby/buildkit to v0.23.0
3e11fea02 "root fs only mounted once" test: accept root with only the rw option
f8f398bb3 Run with --device /dev/fuse and not just -v /dev/fuse:/dev/fuse
a9a9a4396 CI: pass $BUILDAH_RUNTIME through to in-container test runs
b97fd7d68 CI: ensure rootless groups aren't duplicates
47da2f29b build: add support for --inherit-annotations
9ecc98e58 CI: give the rootless test user some supplemental groups
ab8fc6dee bud,run: runc does not support keep-groups
2eb666c22 Fix lint issue in TestCommitCompression
873e5458c Add a unit test for compression types in OCI images
aa84d9c34 Support zstd compression in image commit
1aa6c1e35 fix(deps): update module go.etcd.io/bbolt to v1.4.1
03b980a3e rpm: build rpm with libsqlite3 tag
e5b876571 Makefile: use libsqlite3 build when possible
962ab4bb1 commit,build: --source-date-epoch/--timestamp omit identity label
b167073d5 docs: add --setopt "*.countme=false" to dnf examples
9f35e8a2a Builder.sbomScan(): don't break non-root scanners
2d0152e99 build: --source-date-epoch/--timestamp use static hostname/cid
87d9db82c fix(deps): update module golang.org/x/crypto to v0.39.0
5842593d2 fix(deps): update module golang.org/x/sync to v0.15.0
865daceeb build: add --source-date-epoch and --rewrite-timestamp flags
83acf720d build,config: add support for --unsetannotation
6c82e7eac commit: add --source-date-epoch and --rewrite-timestamp flags
a4a30cf5e fix(deps): update module github.com/openshift/imagebuilder to v1.2.16
5b26b7922 vendor latest c/{common,image,storage}
9c2b43ccc Tweak our handling of variant values, again
db336cef4 Don't BuildRequires: ostree-devel
56f3171ab parse, validateExtraHost: honor Hostgateway in format
56cfd2fdf remove static nix build
2717599f9 Ensure extendedGlob returns paths in lexical order
910933b33 CI: run integration tests on Fedora with both crun and runc
b122c325f buildah-build(1): clarify that --cgroup-parent affects RUN instructions
8178c3a5d runUsingRuntime: use named constants for runtime states
4ea64c387 Add a dummy "runtime" that just dumps its config file
d53d837e0 run: handle relabeling bind mounts ourselves
913e4d2d3 fix link to Maintainers file
c0c4148fc Update to avoid deprecated types
285dcc914 fix(deps): update module github.com/docker/docker to v28.2.0+incompatible
1f6302a6e [skip-ci] Packit: cleanup redundant targets and unused anchors
a99ad87af [skip-ci] Packit: set fedora-all after F40 EOL
26f4f3a02 Use Fedora 42 instead of 41 in that one conformance test
eee1f2102 [CI:DOCS] README.md: add openssf passing badge
48a4a446e fix(deps): update module github.com/moby/buildkit to v0.22.0
dda8e65e8 copier: add Ensure and ConditionalRemove
d568dda6c [CI:DOCS] update a couple of lists in the build man page
3a85df003 build: allow --output to be specified multiple times
b9a65a9d8 add: add a new --timestamp flag
a57e7f4b2 tests/helpers.bash: add some helpers for parsing images
5cfbf7241 pkg/parse.GetBuildOutput(): use strings.Cut()
ca3271a15 [skip-ci] Packit: Disable osh_diff_scan
ee0f750ea internal/util.SetHas(): handle maps of [generic]generic
cf4635e86 Refactor NewImageSource to add a manifest type abstraction (#5743)
964ec24c1 [skip-ci] Packit: Ignore ELN and CentOS Stream jobs
8f885843d imagebuildah: select most recent layer for cache
7fbca08c0 [CI:DOCS] Add CNCF roadmap, touchup other CNCF files
168eef473 fix(deps): update module golang.org/x/crypto to v0.38.0
ada0ac0b8 Fix typo in comment (#6167)
081e9b308 Support label_users in buildah
27c2c3e4b fix(deps): update module golang.org/x/sync to v0.14.0
ffcbec7f7 fix(deps): update github.com/containers/luksy digest to 4bb4c3f
cbe582395 test/serve: fix a descriptor leak, add preliminary directory support
f97596adf fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
fd8e85e83 fix(deps): update module github.com/moby/buildkit to v0.21.1
9ac03e6bf Update to avoid deprecated types
7ce7072f2 fix(deps): update module github.com/opencontainers/runc to v1.3.0
a59af89cd Only filter if containerImageRef.created != nil
2dae3b465 Drop superfluous cast
15278aa27 Remove UID/GID scrubbing.
ef7ad851a fix(deps): update module github.com/seccomp/libseccomp-golang to v0.11.0
e4cf6cbb9 cirrus: turn prior fedora testing back on
5de286ca8 chore(deps): update dependency containers/automation_images to v20250422
97cf88f50 fix(deps): update module github.com/docker/docker to v28.1.1+incompatible
36adabb2d Bump to Buildah v1.41.0-dev
365ad53df CI vendor_task: pin to go 1.23.3 for now
522bc8ba5 fix(deps): update module github.com/containers/common to v0.63.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
1eb9f8ec48 |
docker: update to v28.3.3
Bumping moby to version v28.3.3-53-g80947b5724, which comprises the following commits:
553c3b8c9f vendor: go.etcd.io/bbolt v1.4.2
7d7edf46a6 go.mod: github.com/containerd/containerd/v2 v2.1.4
993eae423e go.mod: dario.cat/mergo v1.0.2
2c93d2f909 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
6305a44e58 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
03a4cd8d9a vendor: code.cloudfoundry.org/clock v1.37.0
687cd8ebae integration/system: remove TestEventsBackwardsCompatible
95c3340e75 integration/system: add TestEventsNonBlocking
e364b6c466 ci: add golangci-lint configuration to ignore deprecated api type usage in daemon
9396c31e13 api/types: deprecate disk usage types for build cache, container, images, and volumes
bcbccc6eec pkg/jsonmessage: JSONMessage: deprecate From, Time, and TimeNano fields
5a0d62cab0 Add multierror function to api network
8a89fe5c19 daemon/router/image: initialize default authConfig
e53cd07fcc client: remove getDockerOS utility in favor of "Ostype" header
cf0958f89b docs: api: Tweak type of ForceUpdate to uin64
fd89baef7e api: swagger: Tweak type of ForceUpdate to uint64
3fc876cd7b update to go1.24.6
85aaa37c08 Dockerfile: update containerd binary to v1.7.28
16c7a35584 Dockerfile: update runc binary to v1.3.0
61443a72c2 integration/container: XFAIL flaky TestExecResize on Windows
492b3c94cb integration-cli: fix flaky TestRestartStoppedContainer
d5b47b8fdf integration/container: fix flaky TestRemoveContainerWithVolume
30663d3e86 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
3a15e3ed23 download-frozen-image-v2: Use curl -L
ad243becbe download-frozen-image-v2: handle 307 responses without decimal
648c74d243 Add separate const for daemon httputils to avoid jsonmessage import
eadee3e5b9 [28.x] api/types/filters: reimplement ToParamWithVersion
60e84e7350 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
7d6a75b342 runconfig: update fixtures for TestDecodeContainerConfig
596404f3aa integration-cli: remove tests for pre-docker 1.7 clients
9fd8eaa95d Delete TestRunDNSOptionsBasedOnHostResolvConf
b2f03f45ea profiles/apparmor, seccomp: migrate to separate module
3e9ff78b94 bridge: Reapply endpoint iptables rules on firewalld reload
29ed80aa86 bridge: Trigger firewalld reload during bridge integration tests
e4b1f89996 daemon/server: remove compatibility with API v1.4 auth-config on push
0c9e14dcce hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
4205776b85 client: always send (empty) body on push
38c0abffce update to go1.24.5
bfade89ec2 integration/networking: increase context timeout for attach
a818cfd87b gha: run windows 2025 on PRs, 2022 scheduled
653777a522 gha: update to windows 2022 / 2025
1ad3df4768 api: swagger: Tweak type of GwPriority to integer
6323db8e78 docs: api: Tweak type of GwPriority to integer
a3c8f7fa8c dockerfile: update govulncheck to v1.1.4
dfbba63a34 gha: remove GO_VERSION build-arg from builds
e17e96e3c5 vendor: update buildkit to v0.23.2
a2af8bdebd gha/bin-image: add major and minor version image tags
docker/cli: update to v28.3.3
873609d790 cli/command/*: remove deprecated cobra command constructors
570a17b3bc internal/commands: RegisterLegacy: remove redundant copy
4405c0bd50 internal/commands: remove mutexes / synchronisation
56cab16779 Register CLI commands implicitly
e650803f09 opts: deprecate ParseEnvFile
bd8e3e4440 Unexport trust commands
c6b7268932 Unexport plugin commands
2ce94e4fff internal/registryclient: repositoryEndpoint: memoize repoName
bf39340294 Unexport swarm commands
d4588c711c Unexport registry commands
630fe430ff Unexport stack commands
3b0edc794c Unexport context command
9961e39d40 Unexport volume commands
88178eda32 Unexport service commands
e00762ed7d Unexport secret commands
02fda07211 Unexport manifest command
ab3fcf9f9b Unexport node commands
78a8856c14 Unexport network commands
4286883b95 cli/command: inline resolveAuthConfigFromImage
2d3b0b33b4 cli/command: fix godoc links
9b9d103b29 cli/flags: remove special quote handling for `--tlsXXX` flags
cfb8cb91f2 Unexport system commands
1d571d178d docs: deprecated: fix formatting of deprecated/removed in
13010ba673 cli/registry/client: deprecate and move internal
5c76f7f2d8 docs/deprecated: legacy links env vars
e66a1456d3 Unexport image commands
ae1727c41e cli/command: TestRetrieveAuthTokenFromImage: don't decode authconfig
38595fecb6 Unexport container commands
cce29da061 Unexport config command
3265cead1d Unexport checkpoint command
1b9d0762a5 Unexport the builder command and bake stub command
72f76f2720 cli-plugins/manager: deprecate annotation metadata aliases
f9777d2517 cli: remove deprecated VisitAll, DisableFlagsInUseLine utilities
5934553198 opts: remove deprecated NewNamedListOptsRef, NewNamedMapOpts
a056cc6164 opts: remove deprecated ListOpts.GetAll
15f3e910d1 opts: remove deprecated ValidateHost
0c07d81a03 opts: remove deprecated QuotedString
ee05a71513 Deprecate special handling for quoted values for TLS flags
6f0c66c152 opts: deprecate NewNamedListOptsRef, NewNamedMapOpts
4ead8784d0 Add command registration helpers
69854c4e08 cli/command/container: TestRunPullTermination: rewrite with streamformatter
f14eeeb361 cli/flags: add "hostVar" to handle --host / -H as a single string
5ee2906e78 cli/flags: use a regular StringArray for the `--host` / `-H` flag
d0ac0acff0 opts: deprecate ValidateHost utility
187a942a88 opts: deprecate QuotedString
5a38118956 cmd/docker: fix some minor linting issues
6bd8a4b2b5 cli: deprecate VisitAll, DisableFlagsInUseLine utilities
5a99022556 cli: remove HasCompletionArg utility
bf13010df8 docs: fix output example for docker system prune
4cd9833d7c gha/validate-pr: Replace `continue-on-error`
1456b53e4e .github/workflows: Add kind label validation to PR workflow
6d9b06d227 gha/validate-pr: Run on synchronize
eb5b03a8a3 cli/command/container: copyToContainer: improve error-handling
c5ea9079af cli/command/container: copyToContainer rename error-return
f2af519f2e build(deps): bump actions/checkout from 4 to 5
27a7947535 cli/command/image/build/internal/git: use stdlib errors
53183396d7 internal/volumespec: use stdlib errors
70f1147394 cli/command/trust: use stdlib errors
a8f11a2fa2 cli/command/formatter: use stdlib errors
c612e141b5 cli/command/registry: use stdlib errors
9b7ee0e201 cli/config: use stdlib errors
3b677449d8 cli/context: use stdlib errors
d38317c781 cli/compose: use stdlib errors
2dd462cc36 cli/command/idresolver: use stdlib errors
4c89455378 cli/registry/client: use stdlib errors
adbe04b5fc cli/manifest, cli/command/manifest: use stdlib errors
097cc9ca64 cli/trust: use stdlib errors
e069ded4c3 cli: reduce uses of pkg/errors for stdlib errors
3529651fa7 vendor: github.com/docker/go-connections v0.6.0
3035b6685b e2d skip flaky test: TestPromptExitCode/plugin_upgrade, plugin_install
6769f62746 update to go1.24.6
5052a39915 cli/command/completion: remove deprecated ValidArgsFn
7026e68a71 cli/command: remove AddPlatformFlag utility
c0fbbe05ca cli/command: remove AddTrustVerificationFlags
8c22927978 cli/command: remove AddTrustSigningFlags
3f5b1bdd32 cli/command/plugin: remove DCT
d3c23a223c e2e/global: TestPromptExitCode: group plugin preparation steps
081add2fc5 e2e/testutils: SetupPlugin: return path of directory
8972e53ad0 cli/command: remove prompt utilities that were for internal use
a93ed48d06 vendor: dario.cat/mergo v1.0.2
abfe4d4629 remove deprecated `bind-nonrecursive` option for `--mount`
f9431e3b35 vendor: moby/moby/api v1.52.0-alpha.1, moby/moby/client v0.1.0-alpha.0
22cc0e90ae cli/command: remove deprecated ConfigureAuth utility
de54347518 cli/command: remove deprecated CopyToFile utility
2abcbf842f cli/connhelper: remove dependency on pkg/process
513ceeec0a cli-plugins/manager: remove deprecated ResourceAttributesEnvvar
5876b2941c cli-plugins/manager: deprecate metadata aliases
50963accec cli-plugins/manager: wrapAsPluginError: don't special-case nil
d789bac04a cli-plugins/manager: pluginError: remove Causer interface
71460215d3 cli-plugins/manager: deprecate "IsNotFound"
1cc698c68f cli-plugins/manager: un-export "NewPluginError"
549d39a89f cli-plugins/manager: fix Plugin marshaling with regular errors
54367b3283 cli-plugins/manager: un-export "Candidate" interface
057f3128b6 cli-plugins/manager: reformat TestValidateCandidate table
dfbac70efa remove some remnants from CLI "experimental" config option
3b6a556533 cli/command: remove exported "RunPrune" functions
bf8cb43025 system prune: delegate version check
a888c4091c system prune: delegate confirmation message and validation
02d578b637 system prune: use register function for prune functions
21e8bbc8a2 internal/registry: remove RepositoryInfo, add NewIndexInfo
066710ba7b opts/swarmopts: minor cleanup and refactor
b8df4abeb5 bump version to v29.0.0-dev
3f0ccd1b71 dockerd.md: Add --firewall-backend
6176a7686e dockerd.md: add --bridge-accept-fwmark
f937e62c89 replace direct uses of github.com/docker/go-connections/nat types
bf16dd1251 vendor: docker/docker, moby/moby/api and moby/moby/client 4faedf2bec36
149503a32c migrate e2e container rename test
5c3577ff9f cli/command/service: credentialSpecOpt: use strings.Cut
b6d7ac34be vendor: docker/docker, moby/moby/api and moby/moby/client 2574c2b2e917
83e507377a vendor: docker/docker, moby/moby/api and moby/moby/client 25e2b4d48551
86b5b528a6 internal/registry: ParseRepositoryInfo: remove unused error return
89d8c8a2a7 remove aliases for containerd/errdefs, disallow docker/errdefs
d63cae6f1c cli/command/formatter: use alias/wrapper for TruncateID
4bd6b6897f vendor: update docker, api, client to master
7ab3e7e774 templates: deprecate NewParse()
c6f935eba5 cli/command/plugin: fix linting issues, and assorted cleanups
ef7fd8bb67 refactor(cli/compose/loader): extract ParseVolume() to its own package
9257cc7f68 image/tree: Unmark as experimental, warn when redirected
f214f860b6 image/tree: Remove extra newline after legend
f907c7a4b0 internal/registry: fix linting issues (revive)
cd277a5815 cli/command/system: remove use of Mirrors field in test
c297770d2d internal/registry: remove pkg/errors
219cfc8b7d internal/registry: define local serviceConfig
2607ba8062 internal/registry: remove ValidateIndexName
5322affc9f internal/registry: remove duplicate endpoint methods
dc41365b56 internal/registry: remove NewStaticCredentialStore
dad2e67860 internal/registry: remove PingResponseError
7cf245d2f7 internal/registry: Service.Auth remove unused statusmessage return
e0b351b3d9 internal/registry: remove code related to mirrors
7716219e17 internal/registry: remove dead code
f6b90bc253 add internal fork of docker/docker/registry
20181d4363 vendor: github.com/docker/docker master
fa169b6933 vendor: docker/docker, moby/api, and moby/client master
a87bde0068 cli/registry/client: remove deprecated RepoNameForReference
323ef1997f vendor: docker/docker, moby/api, moby/client to latest
e504faf6da cli/command/registry: remove uses of registry.ParseSearchIndexInfo
644dc16b16 vendor: github.com/docker/docker master (v29.0-dev)
7609dde8d0 build: remove DCT support for classic builder
e2cab2c64c cli/command/image: remove use of api.NoBaseImageSpecifier
64f33cd463 TestCloneArgsSmartHttp: fix unhandled error
a3bea24086 Include FirewallBackend in docker info output
b05aa464a6 Dockerfile: install git-daemon for use in tests
e34616574f fix linting issues
260f1dbebb cli/command/image: move build-context detection to build
e95d133612 remove some redundant import aliases
3dec3879c8 opts: minor cleanup in tests
fdc90caeee cli/command/container: deprecate DiffFormatWrite
0db7b9f774 cli/command/container: newDiffContext: use struct-literal
239b727834 cli/command/container: DiffFormatWrite: remove intermediate var
907507e22a cli/command/container: deprecate NewDiffFormat
29263e865b cli/command: remove usages of RegistryAuthenticationPrivilegedFunc
ea4c161067 Dockerfile: update to alpine 3.22
3d985799d4 cli/command: remove some redundant import-aliases
8b6436ecee Dockerfile: document ALPINE_VERSION build-arg
2b56b66b10 cli/command: remove interactive login prompt from docker push/pull
0f2b709c7c cli/command/container: diff: remove redundant validation and cleanup
53d02ece89 remove use of github.com/docker/docker/pkg/longpath
3600ebca76 remove uses of github.com/docker/docker/pkg/ioutils ReadCloserWrapper
9b047a501f remove uses of pkg/stringid.GenerateRandomID()
e0f4bc699c cli/command/formatter: add TrunateID utility
1264a59779 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
e6b8cc1c7d Dockerfile: update buildx to v0.25.0
50fa436c21 Dockerfile: update compose to v2.38.2
0be687acc0 cli/command/container: don't set CopyToContainerOptions.AllowOverwriteDirWithFile
8eac03d5fa docs: fix CDI device configuration anchor
0c5e258f8a e2e/global: TestPromptExitCode: check for trailing newline
9bcc88611f update to go1.24.5
ccd5bd8d57 registry: warn of DOCKER_AUTH_CONFIG usage in login and logout
dec07e6fdf tui/note: add warning note type
7e040d91ef docs: cdi is not experimental anymore
76524e7d0e vendor: github.com/docker/docker v28.3.1
3262107821 cli/config: export const dockerEnvConfig
4ea6fbf538 cli/debug: fix OTELErrorHandler logging messages if there's no error
94f097da28 rename codecov.yml to .codecov.yml
e7e238eb4b cli/command/container: remove redundant uses of strslice.StrSlice
2ba7cb8b44 mount /var/run/docker.sock for --use-api-socket
52e1e4fb21 vendor: github.com/docker/docker v28.3.0
88d1133224 cli/connhelper: quote ssh arguments to prevent shell injection
82eda48066 cli/connhelper/internal/syntax: fix linting issues
52d2a9b5ae cli/connhelper/internal/syntax: remove unused code from fork
64a9a6d0c8 cli/connhelper: add fork of mvdan.cc/sh/v3/syntax v3.10.0
0ba4362d69 Update markdown docs to indicate multi-platform support in image load/save.
8993f54fc3 Add support for multiple platforms in docker image save
38b99adc10 Add support for multiple platforms in docker image load.
342f8bca25 builder: remove // import comments
09a3c93f96 fix(QF1001): Apply De Morgan’s law
a10a1e619b builder/remotecontext: remove unused named and "naked" returns
75f791d904 builder: use lazyregexp to compile regexes on first use
8d3c0fb6dc tests: migrate to assert.ErrorContains when possible
45f09a1504 builder/remotecontext/git: remove redundant capturing of loop vars (copyloopvar)
52c62bd13b Fix isGitURL regular expression
8f865184a6 builder/remotecontext: format code with gofumpt
6291744fa4 builder/remotecontext/git: use strings.Cut()
60b326f814 builder/remotecontext/gitutils: switch back to os/exec
66713384c3 builder/remotecontext/git: allow building on go1.18
5c21ec520e builder: add missing doc comment
212213e81e builder: fix running git commands on Windows
bcd6c45731 builder: make git config isolation opt-in
876fc1dac4 builder: isolate git from local system
3bfb30acd7 builder: explicitly set CWD for all git commands
3f4cc89f64 builder: modernize TestCheckoutGit
a12090d787 gofmt GoDoc comments with go1.19
26a11366a7 builder/remotecontext/urlutil: simplify and improve documentation
9e39630a05 pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
6d2a901118 refactor: move from io/ioutil to io and os package
389ada7188 Use golang.org/x/sys/execabs
a4c8c72411 replace pkg/symlink with github.com/moby/sys/symlink
5896d383ca bump gotest.tools v3.0.1 for compatibility with Go 1.14
ea850377cd builder/remotecontext: allow ssh:// urls for remote context
2d0d4ce4af builder/remotecontext: use net/url instead of urlutil
a0d9b0cf0d TestParseRemoteURL: use subtests
70aef9f502 gosec: add ignore comments for reported issues that can be ignored
04e2a24a9e gitutils: add validation for ref
71672ece9c Update tests to use gotest.tools 👼
db857b5d9c Post migration assertion fixes
242f176825 Automated migration using
6ea4877cff Add canonical import comment
7bc503344a gitutils: remove checkout directory on error
e2cc22d076 gitutils: fix checking out submodules
e9831d75e2 Fix shallow git clone in docker-build
9450481b7e Move IsGitTransport() to gitutils
a6cc6cd878 Fix handling of remote "git@" notation
e907d54fe6 Move pkg/gitutils to remotecontext/git
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
8f15c45f7d |
skopeo: avoid overriding GOBUILDFLAGS set in go.bbclass
When MACHINE is riscv64, skopeo fails to build with the following
error message:
ERROR: QA Issue: skopeo: ELF binary /usr/sbin/skopeo has relocations in .text [textrel]
To reproduce the issue, run the following command:
MACHINE=qemuriscv64 bitbake skopeo
In go.bbclass, we have:
"""
export GOBUILDFLAGS ?= "-v ${GO_LDFLAGS} -trimpath"
...
python() {
if 'mips' in d.getVar('TARGET_ARCH') or 'riscv32' in d.getVar('TARGET_ARCH'):
d.appendVar('INSANE_SKIP:%s' % d.getVar('PN'), " textrel")
else:
d.appendVar('GOBUILDFLAGS', ' -buildmode=pie')
}
"""
The '-v -trimpath' and arch depedent '-buildmode=pie' is generally reasonable.
And we can see we'll need to use anonymous python function to handle PIE. So we
should avoid overriding it unless necessary.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Koen Kooi
|
f707bbe323 |
Docker: add more required kernel modules as RRECOMMENDS:${PN}
With a very minimal image recipe that just pulls in docker, the daemon won't start due to missing modules, so add the missing ones. The list of new modules was created by diffing the output of `lsmod` before installing all kernel-modules and the output after launching docker with all modules installed. Signed-off-by: Koen Kooi <koen.kooi@oss.qualcomm.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
135bf45c74 |
containerd: drop CVE_VERSION
It's easy to forget to update this CVE_VERSION setting. So remove it. The default value of CVE_VERSION is PV. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
69c32e6e65 |
tini: update to v0.19.0
We also switch to _git and add PV to the recipe as we don't need
to exactly track a tag.
We drop patches that have been merged upstream.
Bumping tini to version v0.19.0-15-g369448a, which comprises the following commits:
369448a Document TINI_KILL_PROCESS_GROUP environment variable
37ff361 Update README.md.in
924c4bd Support POSIX basename() from musl libc
7724cbe Update "ENV key value" format in README
071c715 chore: allow CMake though to 3.10
0b44d36 chore: bump minimum CMake to 2.8.12
a49fdd3 tini.c: a function declaration without a prototype is deprecated in all versions of C
378bbbc Update keyserver recommendation to Ubuntu
b9f42a0 Indicate that -e can be repeated
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
0928637671 |
umoci: update to v0.5.0
Bumping umoci to version v0.5.0-28-g8a7f789, which comprises the following commits:
e0662ee internal: move pkg/system to internal
58645a6 internal: move pkg/testutils to internal/testhelpers
973fe4f internal: move pkg/iohelpers to internal
7b16c17 internal: move pkg/funchelpers to internal
141cc9a internal: move pkg/pathtrie to internal
1a2fc2f internal: move pkg/idtools to internal
46ad7b5 gha: cflite: move cronjob timing
7e958cb gha: cflite: remove unneeded matrix
90bdb13 README: update release key description
ee36e53 gha: add batch fuzzing for ClusterFuzzLite
c4cce9a gha: add ClusterFuzzLite to ci
ed840cd fuzz: minor improvements
7a79fc3 oci: dir: ensure ownership of new files matches image dir ownership
a652677 gha: use CODECOV_TOKEN to fix main branch uploads
0cc9dac unit: switch to alternative 'go test ./... -test.gocoverdir' workaround
55d9840 tests: switch to modern GOCOVERDIR
9fbccd4 ci: remove vestiges of Travis and manual CodeCov uploads
2f95855 dockerfile: fix 'dubious ownership' git error
3d0704d dockerfile: drop unneeded helper tools
1894c20 meta: properly mark meta.WhiteoutMode as Deprecated
4d65d2f version: use go:embed
6df6dcf VERSION: back to development
0bb7e0b VERSION: release v0.5.0
486a6a5 oci: layer: handle auto-converting to an opaque whiteout with overlayfs
a665c67 oci: layer: fix extraction with a non-directory parent component
7d2d5e5 oci: layer: add support for userxattr in OverlayfsRootfs
55fc2f5 oci: layer: clean up ToDisk and ToTar signatures
8375e7a oci: layer: explicitly handle unrelated xattrs for overlayfs xattr filter
0cea894 oci: layer: merge is-overlayfs config and mapping into OnDiskFormat config
fbe9b0e tests: make sure we use a new t.TempDir per-t.Run
456443e golangci-lint: enable some more lints
4e65fea lint/usetesting: enable lint
96e507b lint/forcetypeassert: make type assertion requirements more standard
a0622e5 lint/revive: fix up revive lints
64c02a5 lint/prealloc: add trivial pre-allocation fixes
bcd14d6 cmd: switch flattenCommands to a recursive foreach
cf70516 casext: fix typo in t.Run
5a4a7aa *: remove old open-coded funchelpers.VerifyError
36a1d10 lint: add fuzzer code to lints
bbd479d fuzz: fix build errors
7f704ea lint/exhaustive: fix non-exhaustive switch statements
63e82cd lint/unconvert: remove unnecessary conversions
b68268e lint/unparam: remove unused parameters for internal funcs
e156d27 lint/errorlint: use error.Is in spots we missed
95fedd6 lint/godot: fix doc comments
c88a83a gha: switch to golanglint-ci
5ee7982 lint/errcheck: improve verification of deferred errors
470498c lint/ineffassign: remove unneeded assignments
fbead65 lint/staticcheck: SA1019: permit use of our own deprecated mutate.Compressor
72409e8 lint/staticcheck: SA1019: explicitly allow usage of deprecated archive/tar features
379b24f lint/staticcheck: SA1019: switch away from deprecated io/ioutil
53a7b21 lint/staticcheck: apply minor fixups
f80a675 lint/gofumpt: apply gofumpt rules
3a100c5 lint/testifylint: fix all testify lints
7b875f8 meta: drop whiteout_mode from umoci.json
b1a69f5 oci: layer: temporarily disallow overlayfs on-disk bundle unpacking
474f50a keyring: add cyphar@cyphar.com as trusted signing key
c578970 keyring: add keyring management scripts from runc
18b9ae3 oci: blobcompress: switch to Docker-friendly gzip block size
44b018a mutate: make consistency test use larger layers
54f34c9 oci: layer: refix auto-applied xattr handling
d267494 oci: layer: refactor round-trip xattr test
caa0306 oci: layer: improve logging of xattr mapping
8d78eb1 pkg: hardening: fix spurrious InvalidDigest test failure
6599ffe build(deps): bump golang.org/x/sys from 0.32.0 to 0.33.0
9a1cefa oci: layer: correctly handle trusted.overlay xattr namespace escaping
6494555 pkg: pathtrie: optimise deletions to prune more garbage
c479530 oci: extract: correctly handle mixed overlayfs whiteouts
0dea233 oci: extract: properly handle missing parent dirs for overlayfs
b1dd141 oci: generate: support converting trusted.overlay.{whiteout,opaque} xattrs
d54275b oci: insert: only use unpriv.Walk when rootless
a55c157 oci: insert: don't generate opaque entry for root whiteout
1d0c345 test: tar extract: move pseudoHdr generation to tarDentry
8d5500f test: layer: reorganise overlayfs-related tests
0219792 test: layer generate: properly test GenerateLayer output
9cab21a oci: generate: actually generate layer with TranslateOverlayWhiteouts
d065c36 oci: generate: use correct path for converted overlayfs whiteout
9367b0d oci: layer: fix docs for KeepDirlinks
2d252c7 oci: insert: match variable naming for GenerateLayer
b438602 oci: layer: pass RepackOptions to tarGenerator
ad71792 system: switch lclearxattrs to use skipFn
578f925 pkg: unpriv: simplify lclearxattrs
e68606e deps: update github.com/cyphar/filepath-securejoin@v0.4.1
aa67731 deps: update golang.org/x/crypto@v0.37.0
27725c4 deps: update google.golang.org/protobuf@v1.36.6
c8a82c3 deps: update to golang.org/x/sys@v0.32.0
c08adaa ci: more image-tools workarounds
b94dfa1 go: bump to 1.23
86e7254 README: remove lxd mention
19cb696 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
b485e0e README: mention incus and lxd
1c93e3f tests: modernise and switch to testify assertions
7856970 tests: migrate to t.TempDir()
55189f8 pkg: hardening: remove duplicate test
f16094a pkg: mtreefilter: properly test FilterDeltas
03ff2a6 pkg: mtreefilter: fix broken err check in tests
eac7bfa *: clean up with goimports -local
3f264cb userns: switch third_party to github.com/moby/sys
d2fd96a deps: update github.com/stretchr/testify to v1.10.0
c94c4fb go.mod: bump to 1.21 minimum
9e2c5a9 ci: remove unused .lgtm config
de6d399 *: ensure all files have license and SPDX header
41ca97d tests: add --compress= fail tests
a79788c test: add mixed-compression unpack tests
f8f12bc cmd: add --compress= option to repack-like commands
3373613 repack: don't hardcode layer compression algorithm
6355ec2 unpack: make layer decompression based on mediatype more generic
245726c casext: unify blob compression and decompression
fa3077f mutate: make uncompressed annotation hint not use globals
15fa55f mutate: merge add and Add
b4ca5a1 repack: remove TODO for non-distributable layers
a31a208 gha: switch from CentOS to AlmaLinux for image tests
e9fff47 pkg: fmtcompat: remove now that there are no users
63bbda0 errors: drop remaining errors.Wrap-like fmtcompat.Errorf users
73fffb3 errors: drop fmtcompat.Errorf for complicated err != nil checks
00a632e errors: drop fmtcompat.Errorf for explicit err != nil checks
5339feb errors: drop fmtcompat.Errorf for non-%w errors
1c67765 *: migrate to Go stdlib error wrapping
cd18171 pkg: fmtcompat: add a compatibility shim for fmt.Errorf
aaa6de8 fmt: use %q for quoting
97cbde3 *: fix new golint warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|