mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 12:50:22 +02:00
1fc1b1935f
2188 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
1fc1b1935f |
podman-compse: update to v1.0.6
Bumping podman-compose to version v1.0.6, which comprises the following commits:
f6dbce3 version 1.0.6
dfb64d8 fix pylint
990f774 fix pylint
5e518c7 #648: check if sed exists to color logs
9046f7e #634: follow up
ef55067 add support for network priorities
ed2a6c0 Support network_mode: none
b4c0792 Add --remove-orphans on down command
e84451f Allow environment parameters without value
456370b Support build secrets
efe3714 Add support for the `group_add` property of a service.
c55a2f4 Fixes #657: Support act and developer-friendly environment
b8a7593 #154: timeout
bd29ddb #154: no -t for start
38219eb FIXES #154: handle stop_grace_period
08ffcf6 updating test_podman_compose_extends_w_file_subdir to use the correct image name
801faea Bump actions/setup-python from 2 to 4
06da966 Bump actions/checkout from 2 to 3
de3f607 Check for github actions updates weekly
db1861d pull: accept service names as positional arguments
9d5b255 Use top-level name property as project name if user doesn't set one explicitly
2d05c5c FIXES #534: add systemd unit label
3c46016 FIXES #534: add systemd unit label
5b9cfe5 implement services.*.build.tags
8d1a4d7 Implemented basic Bash shell completion
859f03c Add healthcheck.disable support
ae6be27 reformat
ccdb98c implement podman kill command
909d05e reformat
0cf98c7 reimplement the of pause and unpause commands
843b876 fix typo
1188463 fix Typo podman-composer in version command
10580db Add pause,unpause commands support
f7d335d #516: allow empty network
4a73ae8 FIXES #511: ipv6
f674ab8 #512: only use --net when bridge
265e0ca #512: only use --net when bridge
92662f3 FIXES #511: ipv6
42c0078 mac_address with dash
da5ee72 reformat
06fc071 reformat
9eda56c FIXES #507: respecte mac_address
13c8981 Fix help message for systemd subcommand
ee7029f reformat
75033a4 add python demo example
c175fd1 reformat
d479001 reference awesome-compose
a2defdd example wordpress
c55cd67 #307: default to /etc/
eed38ce Fixed accidental deletion of project functionality.
86ffad8 Added port subcommand.
118d39b Fix linter errors
814bd2a Support driver_opts for networks
606b9d9 Simplify var assignment
0057a4b Fix default external name in dict case
8ecb749 Update external volume name management
d983056 Update external volume name management
ed302ca Fix external volume name when no name provided
0b5c844 Add runtime error if no external volume exists
9c29c89 FIXES #486: replace realpath with abspath
89d2062 Fixed some spelling and grammar issues
f42b568 Correct the help text for --pod-args
a1d3ba4 Lint fixes for --services flag handling in config
6be661f Support platform property
fc3598f Allow --services in config
fbff315 FIXES #464: accept -v in run
fc34703 format
c7ada82 format
5e286f6 format
3dd8b05 format
3ecb4b5 FIXES #462: fix extends merge
d05cad4 FIXES #462: fix extends merge
ebb3dfe #452: better missing network message
7b99b38 nethost test
4ef8afc hit counter with redis cluster example
a1aed09 GCR hello app
2cacf9c add echo example
4064c84 add azure vote example
0dde95a update gitignore
1be41b4 do not merge command array
105c27c example nodejs project
f820594 use exec for wait
8a72321 FIXES #409: detect changes and recreate
5293919 FIXES #409: detect changes and recreate
48a19f1 print more help with systemd
a9faabb print more help with systemd
3fb2b98 print more help with systemd
b35b7e4 add systemd -a list
1a72e1e add systemd -a list
b620311 FIXES #449: accept int port
bf8004b systemd unit file
cadf046 fix pylint
8d8149c fix pylint
3dd9817 fix pylint
0b469e0 format
9e3020a FIXES #307: systemd command
fc9ed19 wait command
2d6bb52 FIXES #442: allow --no-pod or custom --pod-args
7942a09 FIXES #442: allow --no-pod or custom --pod-args
701311a FIXES #447: support --env-file
d704915 FIXES #447: support --env-file
3b7bf81 remove unused test
a735aa5 Fix inverted condition in merging arguments
b785095 Fix linter issues
7623180 Force black formatting
af10345 FIXES #440: absolute secret
2d1bcdd update readme
4f02567 add unit tests
0645212 add badge
b7c5609 pylint
4450835 pylint
5c33e4e pylint
cbd6f6b pylint cleanups
de1e59d fix some pylint
2f0ca9e add pytest ci
59c9a69 add pylint
b7eac1e pylint
0d47e47 activate test
c2d7b26 #434: handle unknown service
1e895c0 calc proper hash
132a22b #130: handle nested extend and normalize build context
0bde01d remove unused imports
91a579b Adding Test that the changes can build Image from build context of extended compose-file
56b8863 Fixing subdirectory from extends where extended service will build a Service from Dockerfile in an own subdirectory
5c3ec5f FIXES #431: support dns
779198b #379: no infra container
40cb6a7 log version
4fd9d86 #379: nothing shared in the pod to allow hostname
2a2c3a0 Fix timeout value data type
80e8527 #379: create a pod
d6e21dc FIXES #425: pass --requires
b9b2f83 FIXES #415: allow network_mode=slirp4netns
9af65ea adjust comment
3e6e268 test for logs
af6a306 fix syntax error without a new line
68f745f referenced unmerged pr #192 to bring colors into container logging
90dcfdb FIXES #420: document -t
ed8635a FIXES #422: Remove debug print
1d972ef Propagate all bind-type mount options
536925c FIXES #413: parse network_mode: container:container_name correctly
09c6cbe FIXES #408: preserve exit code
154a512 FIXES #386: make sure volumes are present in top level
523d215 #407: allow network_mode=service:mysrv
25494b5 Update README.md
19662c0 Fix healthcheck test type on replicas
4943e52 #395: make podman respect PODMAN_* in .env
4aa08cd FIXES #399: pass specific ip
15e0ab9 FIXES #397: support host network mode
f66861f #249: read COMPOSE_PROJECT_NAME env
af53b65 Simplify volume identification
890c584 Update README.md
0bd493f Allow empty default/error value in substitution
481c6d0 #394: config: multiple yaml
31df70b updated per maintainer review
df40051 removes version from CONTRIBUTING
21a716c added log back in
f00ac92 added config command
0433410 added args for version
0f9fe2b FiXES #393: missing arg when build as part of run
a1be5ce add fallback to get
56a4988 Add support for volume driver and options
377b552 Fix substitution for empty variables
c50599c FIXES #388: do not force build in run
4557279 #88: multiple aliases
7ad3775 FIXES #380: output to stderr
30051c2 Update README.md. Add link to podman dns plugin source
9e8e25c #378: down -v
2c60516 fix hostname in test
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2a4b72b3a2 |
podman: update to 4.6
Bumping libpod to version v4.6.0-rc1-6-g932b8a997, which comprises the following commits:
c422072b6 [CI:DOCS] uidmap man pages: fix corrupt tables
7680e5013 libpod: use new libcontainer BlockIO constructors
829b3e9b3 Bump to v4.6.0-dev
4d59a0f5c Bump to v4.6.0-rc1
e4a7923ca Bump to v4.6.1-dev
c756b24f4 Bump to v4.6.0
2e53a5083 Release notes for v4.6.0
727362bde Update Release Notes for v4.5.1
8f2b73b03 rootless: use default_rootless_network_cmd config
3bd4c6a10 tests: fix "Storing signatures" check
d5e8cc1d1 Fixes for vendoring Buildah
2203f2aa9 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
a306eb5f6 Do not use deprecated hook functions from c/common
bf36f1139 Bump c/storage to v1.48.0, c/image to v5.26.1, c/common to v0.55.1, buildah to v1.31.0
a64016e17 pasta: Remove some leftover code from pasta bats tests
6feb179f4 pasta: Fix pasta tests to work on hosts with multiple interfaces
9cc19b055 fix(command): ignore `--format` in `podman search --list-tags`
714c3fe72 Use /proc/self/gid_map as intended, not uid_map
d29e33650 podman machine start: fix ready service
1a1602b72 Makefile: don't rely on the non-standard -r flag for ln
db91ce788 cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
82a4b0816 cmd/podman/system: add API server support on FreeBSD
2f25372de pasta: Create /etc/hosts entries for pods using pasta networking
9555446d3 RPM: Fix koji and ELN issues
0749d685a Cirrus: Update operating branch
dde6bcbca system tests: add and use _prefetch
0ee19f08c pkg/api: BufferedResponseWriter flush correctly
d0505d6ba pkg/api: top return error to client
1398cbce8 container wait: support health states
b680daa2d [CI:DOCS] Fix example on PublishPort
811867249 container wait API: use string slice instead of state slice
64153ace0 podman wait: update man page
a699ed0eb StopContainer(): ignore one more conmon warning
bd69b151f run,create: modify `--env-merge` behavior for non-existent vars
614c962c2 use libnetwork/slirp4netns from c/common
180cf0cf1 update c/common to latest
d0af5df89 e2e: use parallel-safe /dev subdirectories
aeff58e0b [CI:BUILD] Help Renovate manage the golangci-lint version
00292ae1c systests: test instrumentation
63dfe842b compat API create/pull: fix error handling
d54541894 compat API push: fix error handling
26721b0a0 GetSafeIPAddress(): discourage its use
810c97bd8 libpod: write /etc/{hosts,resolv.conf} once
13db83a00 e2e: fix one of the many log flakes
bb932cc84 cmd, push: expose --compression-level
459248337 vendor: bump containers/common
f4c514bff compat API container create: handle platform parameter
04a1cdfa9 refactor(machine): remove hard code
ae6e39076 vendor in latests containers/common
81e63227e fix(machine): throw `connect: connection refused` after set proxy
ec0924c6d [CI:BUILD] Packit: cleanups
65e5d2773 Add console mode to podman machine
ddcefc9b9 e2e: kube test: specify expected exit code
574e00d32 e2e --authfile test: fix test condition
f8f337501 chore(deps): update dependency setuptools to v68
84e42877a make lint: re-enable revive
aa453c4f1 make lint: re-enable ginkgolinter
2efa7c3fa make lint: enable rowserrcheck
f07aa1bfd make lint: enable wastedassign
60a5a5947 make lint: enable mirror
a35da3ad8 bump golangci-lint to v1.53.3
47e0557d5 auto update: restart instead of stop+start
acb5f97f9 cmd/podman/root.go: fix help document issue of the image store
e5399aaf3 vendor: bump c/storage to v1.46.2-0.20230616083707-cc0d208e5e1c
3829fbd35 podman: add support for splitting imagestore
e29274853 network create --ip-range allow for custom range
c2360800e fix(ssh): start machine failed to start with exit status 255
ed24f0b2c remote wait: fix "removed" condition
8d036906a [CI:DOCS] Fix service_destinations description in podman man page
bfe61af6d quadlet should exit non zero on failures
91fc435cb fix(deps): update module golang.org/x/tools to v0.10.0
ef42f54ac e2e: GetSafeIPAddress() replaces GetRandomIPAddress
5ffbfd937 pasta: use code from c/common
479677cb6 Add support for setting autoupdate in quadlet
3efaffae4 New command: podmansh
67674b3a6 vendor: update c/common to latest
bdc2e8165 Add quadlet container support for Mask,Umask options
13c2aca21 libpod: make conmon always log to syslog
0ecc0d9e1 Document how to get secret mounts working on RHEL8
c28a43efd Verify podman pull dup image only prints id once
d464e1d4f Vendor in latests containers/common
741ad0b4f Apply suggestions from code review
f31466e74 Revert "rootlessport: exclude storage drivers via build tags"
8a90765b9 filters: use new FilterID function from c/common
de494eb05 logformatter: ignore 'TOP-LEVEL' headings
63f5116ad test/e2e: fix network ID test
8c48f97c9 update c/{common,image,storage} to latest
354b8e20b [CI:DOCS] clarify supported transports in manifest push
aa7a4219e [CI:DOCS] podman-push: rm confusion on supported transports
c0ab29313 container wait: indicate timeout in error
af7555e0d network-create: document new bclim option
7d2f722ef fix(deps): update module golang.org/x/text to v0.10.0
6f821634a libpod: Podman info output more network information
d0e2428fb fix(deps): update module golang.org/x/term to v0.9.0
ac0ba2c2c quadlet: adjust container unit documentation
837b47244 e2e: GetRandomIPAddress(): parallelize
676c4d4e8 Makefile: add support for 'make help' on FreeBSD
ab502fc5c criu: return error when checking for min version
16092930c Update docs/source/markdown/podman-systemd.unit.5.md
faa2689dc 250-systemd.bats: remove outdated comment
0714321de github: add issue type as link to podman-desktop
a66bab340 Add WorkingDir support to quadlet
ebf747474 rootlessport: exclude storage drivers via build tags
8bf168cc1 Add ability to set static routes
68183b07d test/upgrade: correctly share mounts between host and container
444f19cb2 Update common, image, and storage deps
ec6b7dbd9 Fix system service manpage name in API Documentation
d734fcbff style(specgen): omit nil check
53834ef0d fix(specgen): index out of range when unmask=[]
71cae3159 Makefile to force a shell when running command
02432fc69 cirrus,ci: default to overlay for debian env
b37f74b73 Quadlet: Add support for --sysctl flag
44ec044c4 chore(deps): update dependency requests-mock to ~=1.11.0
2ebc9004f Ignore spurious warnings when killing containers
7832879bf Makefile: don't hard-code the path for bash
de4b383ef fix(deps): update module github.com/burntsushi/toml to v1.3.2
a7271f9dd GHA: Fix bad job-names & links in monitoring emails
6a696cb8f podman-registry: simpler, safer invocations
f1ecdca4b Ensure our mutexes handle recursive locking properly
310082444 Fix an expected error message from pod removal
a750cd987 Fix a race removing multiple containers in the same pod
0e47465e4 Discard errors when a pod is already removed
398e48a24 Change Inherit to use a pointer to a container
b65ba90df e2e: add ginkgo decorators to address flakes
992093ae9 filters: better handling of id=
7bdbbd0ce fix(deps): update module github.com/onsi/gomega to v1.27.8
c7a8d29f1 refactor: improve get ssh path duplicate code
137c8ef4d logformatter: better recognition of ginkgo test names
944673c88 Address review feedback and add manpage notes
3b79f241b Add support for SecurityLabelNested flag in quadlet
a1c1d8d0a fix(deps): update module github.com/burntsushi/toml to v1.3.1
4fda7936c `system locks` now reports held locks
92309d917 fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.17
0948c078c Add a new hidden command, podman system locks
1013696ad Add number of free locks to `podman info`
3b39eb133 Include lock number in pod/container/volume inspect
1ce53677a fix ignition config creation
4584350f6 Makefile binaries target adopted for Mac and Win
e93b1f997 fix(deps): update github.com/crc-org/vfkit digest to 3d57f09
c51c6675e logformatter: proper status color for failed tests
cf9bc25bb pasta: Test handling of unknown protocols
b2c000670 pasta: Correct handling of unknown protocols
6611735ae Quadlet - add support for Pull key in .container
5b629e9c4 fix(deps): update module github.com/sirupsen/logrus to v1.9.3
d68121a60 Add default ulimit test for gen kube
81d64547f feat: add insecure registry troubleshooting solution
1768bf150 fix(deps): update module golang.org/x/tools to v0.9.3
7e550f78e fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.2
28934897e e2e: GetPort(): safer allocation of random ports
2c9f18182 The removeContainer function now accepts a struct
4e6efbbbb Revert "test/e2e: fix "podman run ipcns ipcmk container test""
b75ff3a8f Add a test for removing dependencies with rm -fa
bafb3d6cc Revert "ginkgo-v2 cleanup workaround for #18180"
ef1a22cde Fix a deadlock when removing pods
8cb5d39d4 Pods now return what containers were removed with them
bc1a31ce6 Make RemoveContainer return containers and pods removed
e8d745627 Add an API for removing a container and dependencies
543b80949 systests: fixes for coping with extra systemd image
34c258b41 libpod: fix timezone handling
22424eb5d fix(deps): update github.com/godbus/dbus/v5 digest to 7623695
7987d2ee0 fix(deps): update module golang.org/x/tools to v0.9.2
4173f942f test/system: quadlet use correct systemd restart policy
0372bf4bd systests: minimize race-condition window
1a34e1f85 systests: fix improper backgrounding of run_podman
f09772889 set max ulimits for rootless on each start
5c7d50f08 Fix: display online_cpus in compat REST API
bd62119f3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.6
72d4cede2 systests: fix race in quadlet tests
f48fa1113 fix(deps): update module github.com/burntsushi/toml to v1.3.0
88e78456d e2e: make BuildImage parallel-safe
370e1132c completion: fix panic in simplePathJoinUnix()
46456f5f1 Update module github.com/stretchr/testify to v1.8.4
585d715bb authfile.md: add default path of file for Windows/macOS.
01012a080 Update module github.com/rootless-containers/rootlesskit to v1.1.1
e3240c2fb hack: fix typo in hack/podman-registry
de92db0c8 man pages and command help: clean up descriptions
e6bfc81a8 RPM: bump gvisor-tap-vsock subpackage and fix packit scripts
dfba6ddd4 Man pages: fix broken tables
5b2d963c4 test/e2e: add regression testing for comma-containing labels
047a4bc83 fix: volume create filters
0be9887af fix: move filter flags from StringSliceVar to StringArrayVar
6bc52c9c5 pkg/rootless: correctly handle proxy signals on reexec
85b4c896b [CI:BUILD] Packit: set propose-downstream action type to pre-sync
8f94a4775 [CI:DOCS] fix Quadlet man page rendering
29f7c494e Quadlet: kube: use ExecStopPost
6487d9c11 Quadlet: kube: add ExitCodePropagation field
08b0d93ea kube play: exit-code propagation
6dbc13833 prune exit codes only when container doesn't exist
977b3cdbf podman: Add pasta to podman info
373919ca0 Revert "test/system/255-auto-update.bats: add debug logs"
901900530 Quadlet - add support for PodmanArgs to all groups
6003dca9c [CI:BUILD] Packit: add jobs for downstream Fedora package builds
fb8a12490 In a concurrent removal test, don't remove concurrently with builds
032d4a95f Consolidate error handling in Runtime.removeContainer
f556e58bb Consolidate error handling in Container.cleanupStorage
4969c552e Fix reporting errors on container unmount
94c65a659 TEMPORARY(?) instrumentation for unlinkat-ebusy
d623670e1 pkginstaller: bump Qemu to version 8.0.0
4108b3711 Support podman --remote when Containerfile is not in context directory
9969374b6 chore(deps): update dependency requests to ~=2.31.0
5f29c7bf9 fix: podman event --filter volume=vol-name should compare the event name with volume name
6b48e9962 fix(deps): update module github.com/docker/docker to v24
1b9272a06 wait: look for exit code in stopped state
7d831d555 network create/update: allow dns servers comma separated
685c73618 source code comments and docs: fix typos, language, Markdown layout
fe41077d4 Increase download progress to 80ch
8fbcf8bce chore(deps): update dependency setuptools to ~=67.8.0
29749362a podman: Added find slirp4netns binary file from helper_binaries_dir [NO NEW TESTS NEEDED]
2253f709b fix(deps): update module github.com/sirupsen/logrus to v1.9.2
7c53a463b stats: get mem limit from the cgroup
8e2e7a440 quadlet tests: enable device.volume test
bb3f611ff quadlet tests: remove unused socketactivated.container
18c3de596 fix(deps): update module github.com/stretchr/testify to v1.8.3
5d522431c Correct markdown in docs
76595c7b9 fix(deps): update module github.com/onsi/gomega to v1.27.7
a99ad3b36 [CI:DOCS] Improve security in mysql examples
99cedae31 Cirrus: Record the buildah version for reference
a54d4d7e1 test/e2e: do not call setenforce
458f2e8ed Fix discombobulated kubernetes support table
192ad70e9 run: ignore PODMAN_USERNS with --pod
5ff6fc559 Add --configmap to podman-remote kube play
ad8d0e57d compat: accept tag in /images/create?fromSrc
bf0cea76c fix HTMLSpan warnings
a576fa3f1 generate systemd: error on init containers
32c2cea0f Remove future tense from man pages
5b148a0a6 compat,build: pull must accept string
d1dcb0846 Cirrus: Add support for `[CI:NEXT]`
eb4f0bc17 Cirrus: Remove support for `[CI:COPR]` magic
3360214a0 system tests: add precision timestamps
8b4987266 Makefile: add ginkgo FOCUS/FOCUS_FILE options
4bed2c285 e2e: refactor and document serialization
ce07860a1 machine: fix default connection URL to use 127.0.0.1
a485ba505 e2e: serialize gpg tests
b9aaafbe1 Document podman-machine-default behavior
7580b8ae4 e2e: fix more test races (missing "wait")
6d58f5bb0 fix(deps): update module github.com/openshift/imagebuilder to v1.2.5
520979ba2 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.5
ae5cbf37c Fix documentation of `--network-cmd-path` CLI option
71853319f Skip rhel-release branch unnecessary CI tasks
ab29ff2f6 test/e2e: dedup Before/AfterEach nodes
d01ae436e remote-save: fix permissions and dir formats
5a176f09c Set machine docker.sock according to rootful flag
13f787842 Fix handling of .containenv on tmpfs
2c0f40482 Do not include image annotations when building spec
dd5d22cb3 build(deps): bump github.com/docker/distribution
26f1e95ab Kube Play - Support multi-doc YAML files for configmap argument
c33ba70f9 system tests: instrument, to try to catch unlinkat-ebusy
74a5b92b3 test: check restart policy of init containers
3aa6a792e Update sigstore/rekor after https://github.com/sigstore/rekor/pull/1469
04707f62d issue template: mention `su`
14001ad48 e2e: logs test: fix flakes
6b329d8c9 fix(deps): update module github.com/containernetworking/plugins to v1.3.0
ff37615bf e2e: stop podman.service test: wait for server
cb8e19677 logformatter: handle podman-machine test logs
58fd87959 fix(deps): update module golang.org/x/tools to v0.9.1
2d8929d95 [CI:DOCS] Disable Dependabot in favor of Renovate
01e20818c Ensure the consistent setting of the HOME env variable on container start
8aaa13acc Quadlet system tests - fix socket notification
1fb3cdf8a sqlite: disable WAL mode
d24bec0d0 system tests: timeoutize quadlet, systemd
3d6894426 test: update README for integration tests
c400cc7ea libpod/Container.rootFsSize(): use recorded image sizes
b97be3406 quadlet: support `HostName`
9dc107e74 e2e: fix race in a play-kube test
bdb3ed795 Fix preference of user quadlets directories
40b21fa7d fix(deps): update module golang.org/x/tools to v0.9.0
661a238a9 fix(deps): update module golang.org/x/net to v0.10.0
332b47fef Check on client side for Containerfile, if none specified
18cd174c9 build(deps): bump github.com/docker/docker
9ec630f30 Buildah treadmill: several fixes
11d92ea37 fix(deps): update github.com/containers/common digest to 3e93a76
1bf057e8c chore(deps): update dependency docker to ~=6.1.0
27891a664 Update docs/source/markdown/podman-systemd.unit.5.md
505e02e04 fix(deps): update github.com/containers/common digest to bc15b04
53220717e fix: initContainer restart policy overridden by pod
c27cda7c9 fix(deps): update module golang.org/x/sync to v0.2.0
773b45704 chore(deps): update dependency requests to ~=2.30.0
0c070ebfb ginkgo json output: only in CI, not on laptop runs
73d3487cc Allow user quadlets to be stored under /etc
334adac74 fix(deps): update github.com/containers/common digest to ea87b34
95557a532 libpod: do not Cleanup() more than once
df9344ac4 compat container create: match duplicate mounts correctly
42c822720 Update podman-completion.1.md
3d56e4f3a fix(deps): update github.com/containers/buildah digest to e925b58
75d92f41d Run generate.CompleteSpec() for initContainers as well
d25356c30 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.4
df8cc7af3 remote: return better connect error
61985a610 Add missing man page links for Docker man pages
f877d7dcd Replace egrep/fgrep with grep -E/-F
19aabf440 remote: exec inspect update exec session status
305bad184 fix(deps): update github.com/digitalocean/go-qemu digest to f035778
999c620d5 fix(deps): update github.com/godbus/dbus/v5 digest to 6cc540d
38f993543 fix(deps): update github.com/containers/buildah digest to f353690
1b2b0d031 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.3
dc7515dc3 MVP for Podman Machine with AppleHV
54fd0d752 e2e tests: try writing & preserving ginkgo json artifacts
1c5ab9e7b vendor: bump buildah to v1.30.1-0.20230501124043-3908816d5310
e1e03a0e3 bindings, build: don't pass invalid platform in case of none
ae5305134 Revert "logformatter: anchors: link to test summary, not name"
fbe62f329 More cleanup: volumes: do not export to stdout
3050a6437 e2e test cleanup
fa1ba17bc Update kube gen & play to use pod restart policy
db4ad54f9 Add {{.Restarts}} to podman pod ps
0fef113a4 Add {{.Restarts}} to podman ps
edbeee523 Add --restart flag to pod create
9e9bcec9e history: correctly set tags
073cd4bb4 fix(deps): update module github.com/moby/term to v0.5.0
3858a833b Makefile: do not run machine test in parallel
5af433923 pkg/machine/e2e: switch to GinkgoWriter
1720042d0 api: fix parsing filters
c4b9f4b34 ginkgo-v2 cleanup workaround for #18180
5eb99a0ac test/e2e: fix custom timing reporting
1bff0108f logformatter: anchors: link to test summary, not name
914ff01f9 WIP: logformatter: handle ginkgo v2 logs
b3424f370 test/e2e: unshare --rootless-netns cleanup slirp4netns
054154c77 test/e2e: run system reset test serial
c5922cc6f test/e2e: fix CleanupVolume/Secrets()
bc1ed07b5 ginkgo v2: fix new Skip() behavior
cd46e7279 test/e2e: fix pause tests to unpause before cleanup()
2ce4e935b ginkgo v2: drop localbenchmarks
fb7a96638 test/e2e: switch to GinkgoWriter
cc19091e9 test/e2e: unset CONTAINERS_CONF before Cleanup()
8cc7a3618 ginkgo: run on all cores
9c1f713c7 test/e2e: fix Cleanup()
9bd833bcf test/e2e: fix "podman run ipcns ipcmk container test"
629a6a6e4 test/e2e: actually check for cleanup errors
b9ba85044 Lower e2e timeout to not waste time when it hangs
fbb7c980a test/e2e: containers.conf tests add missing Wait()
c564d9d7a ginkgo v2: remove CurrentGinkgoTestDescription()
666e31447 ginkgo v2: remove deprecated flags
445815036 update to ginkgo v2
502654580 test/e2e: do not remove CNI directory
7b25f362e e2e: login_logout: use unique authfile for each test
d06480d99 Fix clashing subuid
24be46a51 [CI:DOCS] troubleshooting: fix subuid example
bab4217cd manifest, push: use source as destination if not specified
202701e65 Update github.com/moby/term digest to 0564e01
e8f34e457 Add name-generation test
b5ef9555a Implement machine provider selection
70870895b libpod: improve errors management in cleanupStorage
5592dc12f libpod: report unmount idmapped rootfs errors
2932208c2 test: do not wait 10 seconds before killing myyaml
891bc117e podman: simplify code with a switch
bac57409f test: fix typo
5fefb54d2 build(deps): bump github.com/docker/docker
0a92b399d swagger: fix Info name conflict
20c42489e Nightly dependency treadmill: remove
33fa54580 Update short description for disconnect cmd
aca993632 windows: podman save allow the use of stdout
512b39475 Update c/common and avoid setting umask
7ff2eaf96 Cirrus: Update CI VM Image to F38/37
0e1ddd3df Cirrus: Run code validation on rawhide
221e3023f Fix rand.Seed() deprecation in golang 1.20
edaf3b4d5 Add sha256: to images history id for docker compatibility
d51911f7b Support systemd optional prefix '-' for devices.
a0c7bb26a Fix a copy/paste error in an error message
ba4586375 chore(deps): update dependency requests to ~=2.29.0
d905e412e Fix simple typo in podman-network-create.md
a027bf102 e2e cleanup: push with auth: add error checks
eeb210bc5 e2e: remove "-it" from podman run & exec
64959b744 pkg/machine: rework RemoveConnection()
2296e71e3 machine: qemu only remove connection after confirmation
c8e423b55 Add file swith for pre-exec
6aaf6a284 system reset: show graphRoot/runRoot before removal
e95e9be76 fix manifest annotate help
bdf367958 Netavark userns test: give aardvark time to come up
bbe9d61c4 sqlite: move first read into a transaction
f3c3ef72d Recover from failed podman machine start
d222a392c rootless: support joining contianers that use host ns
0e955bec7 auto-update: return errors when checking for updates
fc8bd4521 [skip-ci] Update dawidd6/action-send-mail action to v3.7.2
ed6b19fef fix(deps): update github.com/containers/common digest to 46c4463
230ddbe0c Add user mode networking feature to Windows
3216110de system/reset.go: help: fix typo
ae5ed6d85 e2e create same-IP: try to fix flake
faeed14f6 system tests: safer container-stop signaling
6014f26c4 Revert "Resolve symlink path for qemu directory if possible"
c5a928c5b ps: --format {{.State}} match docker output
b4eecd908 test/system/260-sdnotify.bats: fix test flake
1361c6a33 [CI:DOCS] Quadlet: clarify overriding user/system services
fb3b92b96 Eliminate transient container deps from wslkerninst
dd217d8e0 Wording
d16c880fb fix(deps): update github.com/containers/common digest to 5547996
70bd096e4 cmd/podman/pods: omit superfluous runtime.NumCPU call
1f1525f2e support `--digestfile` for remote push
d640461ce e2e: skip journald test if journald is unavailable
5156ab996 Cirrus: Enable testing on Fedora rawhide
8a3265f65 [CI:BUILD] Cirrus: remove copr rpm build task
77f86f48e chore(deps): update dependency setuptools to ~=67.7.0
03a7c6a91 Cirrus: Drop benchmarks artifacts
15664b4b0 test/e2e: correctly reap service process
c9d861023 test/e2e: add missing options to remote service
1f45c715d test/e2e: fix incorrect usage of CreateTempDirInTempDir()
601d228ca test/e2e: "podman-remote send correct path to copier" do not leak file
08c651016 test/e2e: fix network create flake due same subnet
525c27fe1 test/e2e: fix SkipIfNotActive()
01d518a97 test/e2e: do not try to use docker as rootless
6e97976ad test/e2e: do not leak "hello" file
750442d09 podman-remote logs: handle server error correctly
3aaa2793d test/e2e: use custom network config v2
00fdfa063 rename ImagePushReport to ImagePushStream
81621ce8a Specify format to buildah before commit
7382494ca Add eBPF snooper that traces the entire fork/exec graph of podman
edb64f8a7 libpod: stop containers with --restart=always
0364aef1e test: fix race when listing cgroups
b65ab52d8 compat: Translate `noprune` into ImageRemoveOptions.NoPrune
346483717 [CI:DOCS] Update RELEASE_PROCESS.md
8019dc9e6 hyperv: add podman socket mapping
a089f1b5c e2e networking test: better way to get host IP
bce38c1af Updated system test to be easier to read
5f5bea0d1 bindings tests: bail out early on image errors
f2cec7348 libpod: fix TestPostDeleteHooks do not depend on version
8125bab9b chore(deps): update dependency setuptools to v67
a00ed20e0 fix(deps): update module github.com/containers/libhvee to v0.0.5
da83364eb e2e: quadlet uses PODMAN env for podman binary path
6e0cf9344 Fixes format inconsistencies with docker for certain history fields
acb24f164 Makefile: do not prefix /etc
7e4cd22ac libpod: configureNetNS() tear down on errors
4f93a6eee libpod: rootlessNetNs.Cleanup() fix error message
4b8230119 HyperV: wait on stop
3cdaf85d6 build(deps): bump github.com/docker/docker
459f751ae Makefile: include `release-artifacts` target
3222545ad Enabled network over vsock
aec7ce4a1 fix(deps): update module github.com/microsoft/go-winio to v0.6.1
64b26df60 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.2
41d516412 fix remote start --filter
1cac53506 Update API reference to include v4.5
a0204f1dd Add missing security options to /info response
de5fa9ce9 Add mention of redir to doc `rootless.md`
08f137aec fix(deps): update module github.com/vbauerster/mpb/v8 to v8.4.0
8e7f98ae6 docs(readme): add status badges and remove hardcoded release info
e9356ba20 Don't use bytes.NewBuffer to read data
f488d9890 Add support for HVSOCK on hyperv
e7a323635 docs: update network tutorial with netavark DHCP support
32344952a bump main to v4.6.0-dev
54ba17f69 Remove disused test/install
1fa4e45a9 Return title fields as a list
be148665c [CI:BUILD] Packit: Initial Enablement
4aced7e3e Quadlet - do not set log-driver by default
51b582d0e system tests: address COPY-hardlink flake
25d4ecf47 chore(deps): update registry.centos.org/centos/centos docker tag to v8
31420112c system tests: fix race in kube-play read-only
f544971b7 chore(deps): update dependency docker to v6
f95276bfa CI: enable sqlite system tests
d28656403 test: enable test_wait_next_exit
f312c8533 Update dependency PyYAML to v6
f67d640b8 test/e2e/systemd_activate_test.go: simplify test
5315c0cc7 Update docker.io/library/golang Docker tag to v1.20
b4cfc727b api: auth: fix nil deref
176c329f9 Update dependency requests-mock to ~=1.10.0
b75ee05d3 Update dependency requests to ~=2.28.2
d38b22d50 fix: Document removing anonymous volumes at create
fe22299f9 Use a sane polling interval in WaitContainerDocker
bb2deef8e podman: added the --out option for capturing formatted output emitted by various commands
785c63c0f Renovate: Ensure release-note-none label is added
4bc4609d8 Renovate: Update ignore paths
64ea5971a *: migrate image registry to registry.k8s.io
4f5f89cf8 Do not display the resource limits warning message
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b37f53350d |
buildah: update to 1.31
Bumping buildah to version v1.31.0, which comprises the following commits:
d0de60bbf Bump 1.31.0
723ed8e18 Bump c/common to 0.55.1 and c/image to 5.26.1
b835631bf Update vendor of containers/common
c4d2a8520 Run unit tests for copier and chroot without -cover
135b5a8f0 Fix transition test to work with latest selinux policy
d8b06097d Bump c/image to 5.26.0 and c/common to 0.54.0
7a5a18334 chore: replace `github.com/ghodss/yaml` with `sigs.k8s.io/yaml`
a8f350fc5 rootless: use default_rootless_network_cmd config
b3edcaa06 vendor: update c/{common,image,storage} to latest
d22a5293b chore: pkg imported more than once
74b885b9e buildah: add pasta(1) support
11ba328e2 use slirp4netns package from c/common
a5c0c8acf update c/common to latest
14cd28c26 add hostname to /etc/hosts when running with host network
eb135b8d5 vendor: update c/common to latest
237ac533e [CI:BUILD] Packit: add jobs for downstream Fedora package builds
eeaf80f95 fix(deps): update module golang.org/x/sync to v0.3.0
b064ad7f6 fix(deps): update module golang.org/x/crypto to v0.10.0
bdd27d393 Add smoke tests for encryption CLI helpers
b090ae238 fix(deps): update module golang.org/x/term to v0.9.0
fefbd04e5 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.3
bd32a04c3 Remove device mapper support
92582a75c Remove use of deprecated tar.TypeRegA
261a524b9 Update tooling to support newer golangci-lint
6714a79eb Make cli.EncryptConfig,DecryptConfig, GetFormat public
b3e39dfd9 Don't decrypt images by default
14b74e7f8 fix(deps): update module github.com/onsi/gomega to v1.27.8
1d08bd9de fix(deps): update github.com/containers/storage digest to 3f3fb2f
0dac0dfa5 Renovate: Don't touch fragile test stuffs
d9ecd7c59 [CI:DOCS] Update comment to remove ambiguity
232230cae fix(deps): update github.com/containers/image/v5 digest to abe5133
4247a3e47 fix(deps): update module github.com/sirupsen/logrus to v1.9.3
925ff0e62 fix(deps): update module github.com/containerd/containerd to v1.7.2
5a83012c9 Explicitly ref. quay images for CI
9b65b12ae At startup, log the effective capabilities for debugging
3a351f603 parse: use GetTempDir from internal utils
6adbfeeb4 GetTmpDir: honor image_copy_tmp_dir from containers.conf
5eb356bb8 docs/Makefile: don't show sed invocations
a630e3513 CI: Support testing w/ podman-next COPR packages
90f7436ac intermediate-images inherit-label test: make it debuggable
08b9a5407 fix(deps): update github.com/containers/common digest to 462ccdd
7e327cf18 Add a warning to `--secret` docs
9cd28db91 vendor: bump c/storage to v1.46.2-0.20230526114421-55ee2d19292f
0766b004b executor: apply label to only final stage
beae5647c remove registry.centos.org
68337bf9c Go back to setting SysProcAttr.Pdeathsig for child processes
371bc34fe Fix auth.json path (validated on Fedora 38) wq Signed-off-by: Andreas Mack <andreas.mack@gmail.com>
c6e73322b fix(deps): update module github.com/stretchr/testify to v1.8.3
0b69f7029 CI: fix test broken by renovatebot
a5ad7b047 chore(deps): update quay.io/libpod/testimage docker tag to v20221018
86470bfd9 fix(deps): update module github.com/onsi/gomega to v1.27.7
91ce0571d test: use debian instead of docker.io/library/debian:testing-slim
7d9447b2f vendor: bump logrus to 1.9.2
e2b751a0b [skip-ci] Update tim-actions/get-pr-commits action to v1.3.0
d58d3a14b Revert "Proof of concept: nightly dependency treadmill"
911c3b5e8 fix(deps): update module github.com/sirupsen/logrus to v1.9.1
797f03430 vendor in containers/(common,storage,image)
ba8a1bd0e fix(deps): update module github.com/docker/distribution to v2.8.2+incompatible
0eb266a95 run: drop Pdeathsig
e8d11201a chroot: lock thread before setPdeathsig
51c03212e tests: add a case for required=false
00581b806 fix(deps): update module github.com/openshift/imagebuilder to v1.2.5
be682de68 build: validate volumes on backend
dcc7feb6f secret: accept required flag w/o value
ba06158ab fix(deps): update module github.com/containerd/containerd to v1.7.1
cad25dd6b fix(deps): update module golang.org/x/crypto to v0.9.0
dffb148b3 Update the demos README file to fix minor typos
efa0d69a2 fix(deps): update module golang.org/x/sync to v0.2.0
e0fe30e61 fix(deps): update module golang.org/x/term to v0.8.0
d5b32b0f0 manifest, push: use source as destination if not specified
2fed5fc91 run,mount: remove path only if they didnt pre-exist
4b1c5e3a9 Cirrus: Fix meta task failing to find commit
a913dc56a parse: filter edge-case for podman-remote
9252470c4 fix(deps): update module github.com/opencontainers/runc to v1.1.7
0019256f2 fix(deps): update module github.com/docker/docker to v23.0.5+incompatible
b37c4ee43 build: --platform must accept only arch
5e43f8c9d fix(deps): update module github.com/containers/common to v0.53.0
562172751 makefile: increase conformance timeout
4775b247b Cap suffixDigitsModulo to a 9-digits suffix.
07fda81df Rename conflict to suffixDigitsModulo
4bb28899e fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.2
411bdc968 fix(deps): update module github.com/opencontainers/runc to v1.1.6
d27c59f85 chore(deps): update centos docker tag to v8
43440ec6e Clarify the need for qemu-user-static package
c34fbea7c chore(deps): update quay.io/centos/centos docker tag to v8
449fd3d2e Renovate: Ensure test/tools/go.mod is managed
6d877d89d Revert "buildah image should not enable fuse-overlayfs for rootful mode"
e9884fc41 Bump to v1.31.0-dev
04965f119 Bump to v1.30.0
b5867198c fix(deps): update module github.com/containers/common to v0.52.0
41b760f97 fix(deps): update module golang.org/x/crypto to v0.8.0
9bd6ccf92 chore(deps): update dependency containers/automation_images to v20230405
d57638879 vendor c/common ff62cdebdd0e
f847463ed vendor in latest containers/(storage, image)
45940016c fix(deps): update module github.com/opencontainers/runc to v1.1.5
0ff4746c4 fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.7
2e25b156f buildah image should not enable fuse-overlayfs for rootful mode
dcd7b789a stage_executor: inline network add default string
c8c37c78f parse: add support for relabel bind mount option
c95370cd3 build: pass process environment variables by reference
2ad68d816 run: pass process environment variables by reference
d45916350 fix(deps): update module github.com/containers/common to v0.51.2
a92fe130e chore(deps): update dependency containers/automation_images to v20230330
e67bddded fix(deps): update module github.com/docker/docker to v23.0.2+incompatible
20861cd21 chore(deps): update dependency containers/automation_images to v20230320
73dc43c1d fix(deps): update module github.com/onsi/gomega to v1.27.6
e3a30b54a fix(deps): update github.com/opencontainers/runtime-tools digest to e931285
374133c95 [skip-ci] Update actions/stale action to v8
ce8c56780 test: don't allow to override io.buildah.version
dfc9bb20e executor: only apply label on the final stage
946395494 Update docs/buildah-build.1.md
58a22053b update build instruction for Ubuntu
aad1e994a code review
3afa5ca74 build: accept arguments from file with --build-arg-file
8e84bb709 run_linux: Update heuristic for mounting /sys
78416393f [CI:BUILD] Packit: Enable Copr builds on PR and commit to main
e8dee4083 fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.6
c0f0efada Update to Go 1.18
db0bafef3 Disable dependabot in favor of renovate
4055cc880 chore(deps): update dependency containers/automation_images to v20230314
2088f6bd7 Fix requiring tests on Makefile changes
b85a38946 Vendor in latest containers/(storage, common, image)
b6f32e576 imagebuildah: set len(short_image_id) to 12
499f1301f Re-enable conformance tests
fa145b092 Skip conformance test failures with Docker 23.0.1
bc2423ebc Cirrus: Replace Ubuntu -> Debian SID
37afb5dbc run: add support for inline --network in RUN stmt
e2210c3b7 vendor: bump imagebuilder to a3c3f8358ca31b1e4daa6
db509859d stage_executor: attempt to push cache only when cacheKey is valid
a35dbb284 Add "ifnewer" as option in help message for pull command
c1b82d195 build: document behaviour of buildah's distributed cache
f444d6589 fix(deps): update module golang.org/x/term to v0.6.0
376eb73ab Add default list of capabilities required to run buildah in a container
46ffaf935 executor,copy: honor default ARG value while eval stage
fd5db96c0 sshagent: use ExtendedAgent instead of Agent
9e6e15c31 tests/bud: remove unwated test
8a8f99e09 executor: do not warn on builtin default args
b9e4e29e9 executor: don't warn about unused TARGETARCH,TARGETOS,TARGETPLATFORM
0ed9b4c8c Fix tutorial for rootless mode
cf408f758 Vendor in latest containers/(common, storage, image)
0e707faa7 Ignore the base image's base image annotations
30f84c8ee fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.5
05785ee57 build(deps): bump github.com/containers/storage from 1.45.3 to 1.45.4
21e6e91e4 Vendor in latest containers/common
0b7a7f80b docs/tutorials/04: add defaults for Run()
7baf73b2a imagebuildah.StageExecutor: suppress bogus "Pushing cache []:..."
be10b8d20 executor: also add stage with no children to cleanupStages
f9e51e744 [CI:BUILD] copr: fix el8 builds
8125e45a5 Fix documentation on which Capabilities are allowed by default
a8ed3bb58 Skip subject-length validation for renovate PRs
956c5155d Temporarily hard-skip bud-multiple-platform-values test
3afa7e360 fix(deps): update github.com/openshift/imagebuilder digest to 86828bf
4875f1bc9 build(deps): bump github.com/containerd/containerd from 1.6.16 to 1.6.17
36cade0c3 build(deps): bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
e0e43a419 build(deps): bump github.com/containers/image/v5 from 5.24.0 to 5.24.1
24b85d217 [skip-ci] Update tim-actions/get-pr-commits digest to 55b867b
f96e1ad4d build(deps): bump github.com/opencontainers/selinux
2ef59fc2c build(deps): bump golang.org/x/crypto from 0.5.0 to 0.6.0
482bf4df4 Add renovate configuration
4dfb82890 Run codespell on codebase
ae697555c login: support interspersed args for password
123ef1693 conformance: use scratch for minimal test
6a0367ff2 pkg/parse: expose public CleanCacheMount API
5d50a7320 build(deps): bump go.etcd.io/bbolt from 1.3.6 to 1.3.7
6d53ec7a3 build(deps): bump github.com/containerd/containerd from 1.6.15 to 1.6.16
dbf1d43b3 docs: specify order preference for FROM
2008a5302 Bump to v1.30.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Khem Raj
|
900c85076e |
xen: Fix build with gas/2.41
Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Marko
|
489fa21681 |
skopeo: convert CVE_CHECK_IGNORE to new CVE_STATUS format
See https://git.openembedded.org/openembedded-core/commit/?id=34f682a24b7075b12ec308154b937ad118d69fe5 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Marko
|
07a578d49c |
podman: ignore CVE-2022-2989 and CVE-2023-0778
NVD shows only redhat links and does not mention fixed-in release se these CVEs will show-up in reports indefinitely. They are already fixed in current version, so ignore them. CVE-2022-2989 * https://github.com/advisories/GHSA-4wjj-jwc9-2x96 * https://github.com/containers/podman/pull/15618 * commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups CVE-2023-0778 * https://github.com/advisories/GHSA-qwqv-rqgf-8qh8 * https://github.com/containers/podman/pull/17528 * commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content Signed-off-by: Peter Marko <peter.marko@siemens.com> |
||
|
Sandeep Gundlupet Raju
|
7332b59472 |
recipes-bsp: Add u-boot-xlnx scripts for Xen support
Add new boot.cmd.xen to u-boot-xlnx-scr bbappend to enable Xen support for ZynqMP and Versal devices. User can enable xen u-boot script by adding below variable from configuration file. BOOTMODE = "xen" This u-boot script also supports to configure below Xen params from configuration file params variable assignment ------ ------------------- duart XEN_SERIAL_CONSOLES = "serial0" dom0_mem DOM0_MEM = "1500M" dom0_max_vcpus DOM0_MAX_VCPUS = "1" extra params XEN_CMDLINE_APPEND = "loglvl=all" Signed-off-by: Sandeep Gundlupet Raju <sandeep.gundlupet-raju@amd.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Sandeep Gundlupet Raju
|
c9b65ee0e5 |
recipes-bsp: Add device-tree files for Xen support
Add device-tree files for Xen support, Earlier all these files were in meta-petalinux layer, Hence move these files to this layer so that users can build Xen without including meta-petalinux. Signed-off-by: Sandeep Gundlupet Raju <sandeep.gundlupet-raju@amd.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
5bb2ad0d25 |
runc-opencontainers: use bfd linker even when gold is selected by ls-is-gold
* fixes:
ld: --no-dynamic-linker: unknown option
* you might need to clean the build for updated LDFLAGS to be corectly re-configured
* lld and bfd are fine:
$ ld.gold --help | grep dynamic-linker
-I PROGRAM, --dynamic-linker PROGRAM
$ ld.bfd --help | grep dynamic-linker
-I PROGRAM, --dynamic-linker PROGRAM
--no-dynamic-linker Produce an executable with no program interpreter header
$ ld.lld --help | grep dynamic-linker
--dynamic-linker=<value>
--no-dynamic-linker Inhibit output of .interp section
* not sure where this came from only place where I see --no-dynamic-linker
in runc-opencontainers WORKDIR is:
aarch64-oe-linux/13.1.1/plugin/include/config/aarch64/aarch64-linux.h: %{static-pie:-Bstatic -pie --no-dynamic-linker -z text} \
aarch64-oe-linux/13.1.1/plugin/include/aarch64-linux.h: %{static-pie:-Bstatic -pie --no-dynamic-linker -z text} \
so my guess is:
923ae4da Makefile: add support for static PIE
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Xiangyu Chen
|
c507955709 |
ovs: fix some installed packages in openvswitch cannot be executed
The variable "PYTHON3" in Makefile.am set as python3, this cause the following scripts error: /usr/sbin/ovs-bugtool Not found the interpreter python3 /usr/bin/ovs-pcap Not found the interpreter python3 /usr/bin/ovs-test Not found the interpreter python3 /usr/bin/ovs-tcpdump Not found the interpreter python3 /usr/bin/ovs-tcpundump Not found the interpreter python3 /usr/bin/ovs-vlan-test Not found the interpreter python3 /usr/bin/ovs-l3ping Not found the interpreter python3 /usr/bin/ovs-parse-backtrace Not found the interpreter python3 /usr/bin/ovs-dpctl-top Not found the interpreter python3 /usr/share/openvswitch/scripts/ovs-check-dead-ifs Not found the interpreter python3 /usr/share/openvswitch/scripts/ovs-check-dead-ifs Not found the interpreter python3 /usr/share/openvswitch/scripts/ovs-monitor-ipsec Not found the interpreter python3 /usr/share/openvswitch/scripts/ovs-vtep Not found the interpreter python3 Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
fcf7968f1d |
kubernetes: set CVE_VERSION explicitly
The CVE_VERSION defaults to PV, but in NVD database, there's no prefixing 'v' in database. So set CVE_VERSION explicitly for better CVE scanning. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5dda7078ba |
runc-opencontainers: update to 1.1.7-tip
Bumping runc to version v1.1.7-37-gca73c9fd, which comprises the following commits:
0d93d7d1 release: add riscv64 binary
9164fe17 libct/seccomp: add riscv64
ed47e31a Makefile: set CGO_ENABLED=1 when needed
923ae4da Makefile: add support for static PIE
2abca872 Makefile: fix GO_BUILDMODE setting
120ec5bd Makefile: add LDFLAGS_COMMON and LDFLAGS_STATIC
b9940113 Dockerfile: don't use crossbuild-essential-*
028fc57a Dockerfile: rm dpkg --add-architecture lines
4449ce84 Dockerfile: nit
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
02e065ef docs/systemd: fix a broken link
9af462e4 Fix tmpfs mode opts when dir already exists
7d1bdc7d .codespellrc: update for 2.2.5
8397943e man/runc: fixes
f9da684d tests/int: increase num retries for oom tests
7fa912ed ci/cirrus: limit numcpu
e9c1ca08 Fix Vagrant caching
e2265a92 ci: bump bats 1.8.2 -> 1.9.0
bbddb6bd Vagrantfile.fedora: bump to 38
27b86b4c ci/cirrus: use vagrant from hashicorp repo
98a1b76c tests/int: fix some checks
1eadcede ci: bump bats 1.3.0 -> 1.8.2
63af8b00 init: do not print environment variable value
404ea7ab libct: fix a race with systemd removal
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
We refresh one patch for context changes.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
248be027d6 |
runc-docker: update to 1.1.7-tip
Bumping runc to version v1.1.7-37-gca73c9fd, which comprises the following commits:
0d93d7d1 release: add riscv64 binary
9164fe17 libct/seccomp: add riscv64
ed47e31a Makefile: set CGO_ENABLED=1 when needed
923ae4da Makefile: add support for static PIE
2abca872 Makefile: fix GO_BUILDMODE setting
120ec5bd Makefile: add LDFLAGS_COMMON and LDFLAGS_STATIC
b9940113 Dockerfile: don't use crossbuild-essential-*
028fc57a Dockerfile: rm dpkg --add-architecture lines
4449ce84 Dockerfile: nit
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
02e065ef docs/systemd: fix a broken link
9af462e4 Fix tmpfs mode opts when dir already exists
7d1bdc7d .codespellrc: update for 2.2.5
8397943e man/runc: fixes
f9da684d tests/int: increase num retries for oom tests
7fa912ed ci/cirrus: limit numcpu
e9c1ca08 Fix Vagrant caching
e2265a92 ci: bump bats 1.8.2 -> 1.9.0
bbddb6bd Vagrantfile.fedora: bump to 38
27b86b4c ci/cirrus: use vagrant from hashicorp repo
98a1b76c tests/int: fix some checks
1eadcede ci: bump bats 1.3.0 -> 1.8.2
63af8b00 init: do not print environment variable value
404ea7ab libct: fix a race with systemd removal
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5d41297f4b |
cri-o: update to 1.27-tip
Bumping cri-o to version v1.27.0-48-g3abbef701, which comprises the following commits:
a61082768 vendor: drop podman replace and actually update runc
9c86a1269 vendor: bump runc to 1.1.6
1d6f5a00c [1.27] Add support for namespaced signature policies
35afa9859 runtime handler hooks: run default hook when container stops gracefully
3907696a4 main: Added a call to GarbageCollect
ee6868938 Add a test for log linking
5319875b4 linklogs: add support for symlinking container directory
13f8ae560 Add support for linking pods logs
605e4d935 server: ensure pod labels are present
15d6d5977 OCPBUGS-14750: Pod termination must succeed when a hook fails
ccd7e23af server: do not take lock to populate pid in container status and inspect
57662c6f8 go.{mod,sum}, vendor: update NRI.
ef90744ae test: adapt for sched_load_balance disable after stop
169220817 runtime handler hooks: add DefaultCPULoadBalanceHooks
a74999eb6 server: call hooks and NRI in stopContainer
ea3297939 server: call hooks on infra container creation
37518c031 high perf hooks: workaround libcontainer quirk when disabling cpu quota
eca28447d cgmgr: export CrioPrefix and use containerCgroupPath more
49cfa2060 *: update sandbox/pause image to 3.9
bf9eec8cb Add debug to identify when a relabel was not requested
2ee3398cb high perf hooks: disable CPU quota with libcontainer as a pre start hook
11141ac32 test: add test for cpu-quota.crio.io
69a6d6fc2 Fix events generated by Evented PLEG
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f634a540c4 |
podman: update to 4.5.1
Bumping libpod to version v4.5.1-6-gdae7df5a1, which comprises the following commits:
3d7aba056 completion: fix panic in simplePathJoinUnix()
9de891616 RPM: bump gvisor-tap-vsock subpackage and fix packit scripts
5933be9ba Bump to v4.5.2-dev
9eef30051 Release v4.5.1
777ddfc42 [CI:DOCS] Final release notes for v4.5.1
2b045de48 [CI:BUILD] Packit: set propose-downstream action type to pre-sync
b1281ae46 Revert "Resolve symlink path for qemu directory if possible"
8b35bbab9 no need for podman-next rpm test on maint branch
6652633ce [CI:BUILD] Packit: add jobs for downstream Fedora package builds
97ec57da5 libpod: configureNetNS() tear down on errors
d812087d1 libpod: rootlessNetNs.Cleanup() fix error message
083894a22 network create/update: allow dns servers comma separated
1575b3a7f machine: fix default connection URL to use 127.0.0.1
1e86d0a75 compat: accept tag in /images/create?fromSrc
7d0e4a644 compat container create: match duplicate mounts correctly
dc21698d6 machine: qemu only remove connection after confirmation
02b9f4f5d windows: podman save allow the use of stdout
66fb7c9bb remote: exec inspect update exec session status
5b21c38c8 podman-remote logs: handle server error correctly
9558af2c4 libpod: stop containers with --restart=always
0f18a0144 Do not include image annotations when building spec
bc2f0115d [v4.5] system tests: fix race in kube-play read-only
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ee055b339d |
containerd: update to 1.7.2
Bumping containerd to version v1.7.2-13-ga766dc550, which comprises the following commits:
dafbeb5b1 No more nondistributable layers in MS registry
e5b2a0131 task: don't `close()` io before `cancel()`
a6a15afe3 move to CRI-TOOLS v1.27.0
58b6b99cd Add a check to skip stats for containers that are not running
0b2b96479 RELEASES.md: de-deprecation of CNI conf_template will be v1.7.3
a24267b28 Remove cni conf_template deprecation
89415fe36 Fix issue for HPC pod metrics
e134b6393 Fix panic when remote differ returns empty result
0e41daaea [release/1.7] Prepare release notes for v1.7.2
99582fb1a fix: cio.Cancel() should close the pipes
eeda70fb0 remotes/docker: ResolverOptions: fix deprecation comments
313c226b8 Update continuity to a tagged version
e21c8beee Post cherry-pick fixes
246240f71 Move PLEG event back to CRI
16f3726dd Generate sandbox exit events from CRI
0c8cfb1a7 Move pod sandbox recovery to podsandbox/ package
91d9f5c64 Publish sandbox events
4b77683b4 Add sandbox events protos
8dd16285a UnmountAll is a no-op for missing mount points
acff3eefa Improve error messages and remove check
b4dd3bf4e Make ReadOnly() available on all platforms
08d8baf3f Increase integration test tmieout to 20m
1f0dbd011 Remove bind code path in mount()
8f37b1c63 Remove "bind" code path from diff
9139208b3 Properly mount base layers
e61e7b312 Skip parent layer options on bind mounts
e4307926f Add ReadOnly() function
0277b9b01 Remove escalated privileges
d5c18dfb7 Use DefaultSnapshotter
853179366 use t.Fatal if we cannot enable process privileges
5b3ee413f Update continuity
375172604 Fix go.mod, simplify boolean logic, add logging
600abd137 Ignore ERROR_NOT_FOUND error when removing mount
df7295dcd Update continuity, go-winio and hcsshim
0db78c482 Remove unused function
219058766 Grant needed privileges for snapshotter tests
96fbe5bc8 Fix layer comparison and enable read-only checks
279e0d3c9 Use bind filer for mounts
93e94da40 Enable TestSnapshotterClient on Windows
3a3da693a Run Windows snapshotter through the test suite
e7b62322f Fix misspelling of 'Native' as 'Naive'
e1f999a18 Add paired 'mount' log for 'unmount'
5788d6e52 Don't use all-upper-case filenames in snapshot tests
3cdcb2f10 Skip tests that do not apply to WCOW on Windows
b0968b8bb Ensure mounts are unmounted before leaving the test
b57424851 Unify testutil.Unmount on Windows and Unix
b9a8aad45 Implement Windows mounting for bind and windows-layer mounts
1a64ee183 Implement WCOW parentless active snapshots and view snapshots
7851b0a9f CRI: Make stats respect sandbox's platform
8d7c340ca [sbserver] handle missing cpu stats
d08b2a088 [sbserver] Refactor usageNanoCores be to used for all OSes
2c38cad77 notify readiness when registered plugins are ready
08de6e7b8 Update volume-ownership image with latest hashes
6a5e54c15 Get CDI devices from CRI Config.CDIDevices field
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Renato Caldas
|
680f56d9e4 |
cri-o: drop unneeded dependency on virtual-containerd
Signed-off-by: Renato Caldas <renato@calgera.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Renato Caldas
|
7e6f503083 |
crun: fix compilation with musl
Requires either libargp or argp-standalone. Signed-off-by: Renato Caldas <renato@calgera.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
0cc4d01dcb |
cni: fix textrel QA issue
When building cni, we get textrel QA issue like below:
cni: ELF binary /usr/libexec/cni/macvlan has relocations in .text
The problem could be solved by adding '-buildmode=pie' to ${GO}.
In go.bbclass, this flag is added to GOBUILDFLAGS conditionally,
that is, if the arch is not mips nor riscv32, this '-buildmode=pie'
is added to GOBUILDFLAGS. So make use of that.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
3ce3ef9486 |
kubernetes: do not strip binaries at build
Yocto/OE has its own way to control binary stripping. So don't do it in the go build process. Otherwise, we'll get empty dbg packages. Setting DBG=1 solves this problem, as stated in comments in the Makefile. """ # Note: Specify DBG=1 for building unstripped binaries, which allows you to use code debugging # tools like delve. When DBG is unspecified, it defaults to "-s -w" which strips debug # information. """ Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
4bc2f6e550 |
containerd: fix HOMEPAGE
The previous HOMEPAGE has been archived. Use the active one. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
c2e8199d87 |
netavark, xen: *.patch: add Upstream-Status to all patches
There is new patch-status QA check in oe-core: https://git.openembedded.org/openembedded-core/commit/?id=76a685bfcf927593eac67157762a53259089ea8a This is temporary work around just to hide _many_ warnings from optional patch-status (if you add it to WARN_QA). This just added Upstream-Status: Pending everywhere without actually investigating what's the proper status. This is just to hide current QA warnings and to catch new .patch files being added without Upstream-Status, but the number of Pending patches is now: Patches in Pending state: 15 (11%) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
eaa50e95bd |
ipxe: Fix malformed Upstream-Status
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
ed8c773b1b |
diod: Fix malformed Upstream-Status
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
49fdcebf5b |
moby: update to v24.0.2
Bumping moby to version v24.0.2-56-gd7aa1e14e5, which comprises the following commits:
5652c59647 testing: temporarily pin docker-py tests to use "bullseye"
789a8755b8 run `getent` with a noop stdin
f7298b326e vendor: github.com/sirupsen/logrus v1.9.3
1c18ad6ca6 vendor: github.com/rootless-containers/rootlesskit v1.1.1
ae4a10df67 update RootlessKit to v1.1.1
24c882c3e0 update go to go1.20.5
b3133d7471 contrib/check-config: move xt_bpf check to overlay section
8c552012ae contrib/check-config: check for xt_bpf
61d547fd06 Dockerfile: Move dockercli to base-dev
e5fbc3f75a hack/cli.sh: Quiet origin cleanup
1a078977e1 Dockerfile/shell: Install buildx cli plugin
c4198e6053 Dockerfile: Use separate cli for shell and integration-cli
647ba03224 builder-next: Set moby exporter as default
961fe27408 c8d/handlers: Handle error in walkPresentChildren
087cf6f238 c8d/load: Don't unpack pseudo images
0b9d68f59d c8d/load: Use walkImageManifests
cbf0779bfc c8d/list: Use walkImageManifests
0139309fef c8d: Add walkImageManifests and ImageManifest wrapper
e1c7956764 Dockerfile: use COPY --link for source code as well
75afe3201b containerd: add c8d version and storage-driver to User-Agent
8018ee4689 dockerversion: DockerUserAgent(): allow custom versions to be passed
ed376a603f dockerversion: remove insertUpstreamUserAgent()
1d45ea52f4 dockerversion: simplify escapeStr()
a27b0381a6 dockerversion: add a basic unit-test
1fc19772e0 Make sure the image is unpacked for the current snapshotter
4217d9ea0a Dockerfile: use COPY --link to copy artifacts from build-stages
4c6b8e737f added alias validation
e370f224ae fixing consistent aliases for OCI spec imports
ac1a867282 vendor: github.com/mistifyio/go-zfs/v3 v3.0.1
2949fee1d3 containerd: set user-agent when pushing/pulling images
f9c68e5fbc libn: fix resolver restore w/ chatty 'iptables -C'
3452a76589 libnetwork: fix sandbox restore
fec801a103 libnetwork: log why osl sandbox restore failed
d9e39914a7 Fix npe in exec resize when exec errored
042f0799db libn/d/overlay: support encryption on any port
ec8ec9056c builder/remotecontext: deprecate CachableSource, NewCachableSource
7a4ea19803 libcontainerd: work around exec start bug in c8d
ae6e9333c0 vendor: github.com/moby/buildkit v0.11.7-0.20230525183624-798ad6b0ce9f
0d9acd24fe c8d/inspect: Fill `Created` time if available
04eccf8165 vendor: github.com/containerd/go-runc v1.1.0
d64bab35ee daemon: lock in snapshotter setting at daemon init
329d671aef Dockerfile: temporarily skip CRIU stage
4cc2081119 integration: Add TestImageInspectEmptyTagsAndDigests
27df42255c hack: Rename .ensure-emptyfs to .build-empty-images
9ee7d30aef hack/ensure-emptyfs: Create dangling image
8a4b7c5af8 Add testenv.UsingSnapshotter utility
a753ca64e2 hack/make/.binary: don't use "netgo" when building Windows binaries
5276c2b6e0 c8d/pull: Use same progress action as distribution
baf1fd1c3f libnetwork: check for netns leaks from prior tests
992dc33fc5 libnetwork/osl: restore the right thread's netns
ef1545ed4a libnetwork: leave global logger alone in tests
876f5eda51 libnetwork: make resolver tests less confusing
47a3dad256 c8d/list: Show layerless images
0869b089e4 libnetwork: just forward the external DNS response
3467ba6451 reorder load funcs to match newServiceConfig()'s order
f9b886c01b add mirror to daemon reload test for insecure registries
07140c0eca build: use daemon id as worker id for the graph driver controller
d5ad186d49 ci(bin-image): distribute build across runners
4d924c35f7 api/server: allow empty body for POST /commit again
68b7ba0d03 api/inspect: Fix nil RepoTags and RepoDigests
5ea7b8d091 fix: `docker pull` with platform checks wrong image tag
Bumping docker-cli to version v24.0.2-9-g0823df7da, which comprises the following commits:
11af1189d docs: add "--detach-keys" example to docker run reference
f118c05e8 docs: move "--detach-keys" example to examples section
f66f7ed7f cli/command: fix GoDoc referencing wrong const
2814c01b0 Dockerfile.vendor: update GOPROXY to use default with fallback
32f66cbe5 vendor: github.com/docker/docker v24.0.2
dc4707edb [24.0] vendor: github.com/docker/docker v24.0.1
298e67926 docs: fix example for proxies in daemon.json
9175ffa9b man: remove devicemapper from examples
beb0330a7 Correct "ps --no-trunc" example output
405be9063 docs: remove AuFS from glossary
7a269817b docs: remove Docker Toolbox from glossary
41ef7c45c docs: remove boot2docker and docker-machine from glossary
c184a61da docs/deprecated: remove "disabled by default" for AuFS, overlay
e7a60449f docs: remove aufs and legacy overlay
77541afea contrib/completion: remove aufs, legacy overlay
e67a7acd0 docs/deprecated: remove .patch release from deprecation status
fb6ae356c vendor: github.com/docker/docker v24.0.0-rc.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6385f57723 |
oci-image-spec: update to 1.1.0-rc3
Bumping image-spec to version v1.1.0-rc3-14-g9615142, which comprises the following commits:
32036d8 Apply version change from #1050
f3f0906 Specify the content of the scratch blob
29a1380 Remove special guidance around wasm
2720969 Update descriptor.go
a68ca3e Remove artifact media type reference
428b1e5 releases: use +dev as in-development suffix
2f691e8 version: bump HEAD back to -dev
085b884 version: bump for release of v1.1.0-rc.3
fd45b6b Add scratch descriptor and scope layer limits
63b8bd0 Remove artifact manifest
23c4647 Define image manifest artifactType and guidance
5751791 Add Tianon as maintainer
f4fc83a Fix unused variable linting error
d09d13d Update Jon Johnson's email
4136bec descriptor schema: add missing data and artifactType definitions
729a03e manifest, specs-go/: provide guidance on SCRATCH config descriptor
31de013 manifest schema: add tests for the subject field
7a9efbd manifest schema: add the missing `subject` field
f2f1956 descriptor: clarify artifactType field must have compliant values
98f35df Update image spec and conversion to clarify groups
336b02c Require IANA mediaType for image config.mediaType and layers.mediaType
1f60184 Add Go 1.20 support
f99b121 Remove filtersApplied from image-spec
b5998ba specs-go/v1/*.go: align the deprecation style
6687119 Chore: fix go.mod - split direct/indirect dependencies
867ce74 ArtifactType is optional, omit when empty
ccb86b9 mention deprecation in media-types.md
9b4e6c0 even fewer words
2cdbef2 Deprecate non-distributable layers
265874e Note an exception to the platform.os recommendation for wasi
59780aa Add ArgsEscaped field to image config
3625ee3 doc: fix example in artifact.md
94f2431 version: bump main back to -dev
19a74bc version: release v1.1.0-rc2
0a97fe7 docs: Added artifact.md to docs and spec.md
c91663b Update RELEASES.md
0e7e0dd docs: Update release process docs with checklist
5d055a4 version: switch back to -dev
4728b6e version: bump for 1.1.0-rc1 release
a7ac485 Rename refers field to subject (#950)
4c15674 Use go install and full path to commands
ce50f1f Bump from Go 1.16 to 1.17
ca2e500 Embed Platform in Image
a865bc0 Fix whitespace consistency in config.md
da33ef0 Remove io/ioutil references
ed7e07b Add artifact to spec.md
bc9c4bd Update schema for mediaType validation (#933)
b04b320 Working Group Proposal for Reference Types
ba36edd Add regclient to implementations
293f064 Reverting json schema to well known value
ba3f174 Add maintainer nomination template
08825b8 Pinning version of golangci-lint to support 1.16
9747134 Move inactive maintainers to emeritus
0bd8a03 Add Brandon as maintainer
c7ca3ac Update URLs to https
874a191 Add Sajay as maintainer
6ffdc78 Move inactive maintainers to emeritus
d6ce48a Add mediaType fields into example manifest & image index JSON references
0895292 implementations: point to krustlet/oci-distribution
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c8d2b7f738 |
oci-runtime-spec: update to 1.1.0-rc.2
Bumping runtime-spec to version v1.1.0-rc.2-22-g720792f, which comprises the following commits:
1beaf68 CODEOWNER: Add Toru Komatsu(@utam0) to sync with MAINTAINERS
d46c8b2 schema: fix definition for ioPriority
504f70e Add I/O Priority Configuration for Process Group in Linux Containers
05563ea features: update Example
d89ef1e glossary: s/features document/Features structure/g
39bd2ef MAINTAINERS: add Toru Komatsu (utam0k)
f66aad4 Update ociVersion in config-linux.md example
206251f releases: use +dev as in-development suffix
8947849 spec: add scheduler entity
4ee185a version: v1.1.0-rc.2-dev
a5b4da4 version: release v1.1.0-rc.2
54f948c ChangeLog: Document changes since v1.1.0-rc.1
6152be4 schema: remove duplicate keys
9d7c878 Clarify I/O throttling differences between cgroup v1 and v2
b6980b0 schema: fix schema for timeOffsets
689874f Add `features.md` to formalize the `runc features` JSON
167ffb4 Add Go 1.20 support to CI
15d2a5a Switch Go linting to use golangci-lint
c9b5d0e Remove references to deprecated io/ioutil package
77c37f1 Update config-linux.md fix time_namespaces url error.
6c638b1 config: clarify Linux mount options
72efacb runtime: remove `When serialized in JSON, the format MUST adhere to the following pattern`
c42f9ae version: v1.1.0-rc.1-dev
3e013c2 version: release v1.1.0-rc.1
f790b68 ChangeLog: Document changes since v1.0.2
36bb632 Add support for time namespace
f225699 config: change prestart hook spec to match reality
4bcd065 seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
d931d4b config-linux: add CFS bandwidth burst
6be797c CODEOWNERS: sync with MAINTAINERS
9e658bc config-linux: add memory.checkBeforeUpdate
3565df5 config-linux: Clarify where device nodes can be created
1924f6b GOVERNANCE: correct the Charter URL
744912b add domainname spec entity
0da1600 fix rfc link
b57ada5 maintainer updates as per #1101
9d1130d IDMapping field for mount point
fc985aa config-linux: update type of LinuxCPU.Idle to *int64
bc545ec schema: add cpu idle
1fef707 Update Windows CPU comments
e78a3c3 Add available `LinuxSeccompFlag`s
600a8bd cgroup ownership: clarify that some files may not exist
b8dbce9 update idle type of LinuxCPU from *int64 to int64
9d363b3 config-linux: add idle option for container cgroup
b05eb53 typo: seccompFD -> seccompFd
a650533 config-linux: add support for rsvd hugetlb cgroup
84251a4 specs-go: export LinuxBlockIODevice
3f30167 schema: make with golang 1.16
34a7544 schema: update README.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
de3a655dc0 |
crun: update to v1.8.5
Bumping crun to version 1.8.5-30-g7da99fb, which comprises the following commits:
ef224f9 docs: remove module.wasm.image/variant=compat annotation
38f29c2 ci, wasmedge: use --platform wasi/wasm
62e68e2 ci,wasmedge: use latest instead of rawhide
5c9dbca libcrun: return with no-op when io_priority is NULL
755b47a lua: added luarocks packing
1d5748e src: define symbol for /proc/self/timens_offsets
c56e556 src: replace /proc/sys/kernel/cap_last_cap with symbol
db9274f src: define PROC_SELF_CGROUP and use it
1eeba46 src: quote more strings
8ca1f68 build: add check for atomic_bool
e542666 build: add explicit check for atomic_int
43fc74c src: uniform the quoting style
3839e6e src: add missing quotes
0ca1f0b container: do proper cleanup on errors
ee3e6f6 tests: add tests for ioprio
63a4f97 src: fix macro check
e6306b8 tests: reorder includes
edfd0c9 container: support io_priority from the OCI specs
478f047 libocispec: sync
b6f80f7 NEWS: tag 1.8.5
a1f9b7d tests: update ubuntu to lunar
026f249 tests: update containerd
6494b69 cgroup: set the memory limit on the system scope
4d2d5b3 cgroup: move code to an utility function
c56c3c4 cgroups: fix creating cgroup under "domain threaded"
bbee4bc More informative error message for the case where dlopen fails
1ad17f8 Refactor: Restore serial settings for incorrect serial
087db89 scheduler: use definition from OCI
0135eb1 libocispec: update
76ed8df criu: fix memory leak
7a45ba8 ci: temporarily disable cri-o tests
a717db7 criu: fix segfault if CRIU_JOIN_NS_SUPPORT is defined
3f972e1 github: try not loading kernel modules
bca0b3b linux: check the PID is valid before kill(2)
62b149b tests: skip slow cri-o tests
7bbacf9 fix clang-format
c0eb006 src: make clang-format
6639649 lua: fix typo
906142d linux: do not precreate devs with euid > 0
f40d974 Improve whitespace in generated `crun spec`
ed25b47 tests/test_exec: don't fail on PIDs < 10000
909ae4d tests: abstract tests/init to get_init_path()
df8ee48 criu: check if the criu_join_ns_add function exists
5a8fa99 NEWS: tag 1.8.4
898ffb5 tests: fix idmap mount test
a2ac2b9 tests: install irqbalance
6b33ec5 tests: drop cri-o tests instead of deleting file
6824924 cgroup: workaround cpu quota/period issue with v1
fc276e6 cgroup: fix set quota to -1
58b394a build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2
bf79b09 src: wire the runtime spec time namespace
bfa4f48 linux: create PID namespace as part of the last step
4320b5d libocispec: sync
39bf623 criu: drop loading unused functions
59f2beb NEWS: tag 1.8.3
ae18930 update: initialize the rt_scheduler only on cgroupv1
crun/rspec: update to 1.1.0-rc.2
1beaf68 CODEOWNER: Add Toru Komatsu(@utam0) to sync with MAINTAINERS
d46c8b2 schema: fix definition for ioPriority
504f70e Add I/O Priority Configuration for Process Group in Linux Containers
05563ea features: update Example
d89ef1e glossary: s/features document/Features structure/g
39bd2ef MAINTAINERS: add Toru Komatsu (utam0k)
f66aad4 Update ociVersion in config-linux.md example
206251f releases: use +dev as in-development suffix
8947849 spec: add scheduler entity
4ee185a version: v1.1.0-rc.2-dev
a5b4da4 version: release v1.1.0-rc.2
54f948c ChangeLog: Document changes since v1.1.0-rc.1
6152be4 schema: remove duplicate keys
9d7c878 Clarify I/O throttling differences between cgroup v1 and v2
b6980b0 schema: fix schema for timeOffsets
689874f Add `features.md` to formalize the `runc features` JSON
167ffb4 Add Go 1.20 support to CI
15d2a5a Switch Go linting to use golangci-lint
c9b5d0e Remove references to deprecated io/ioutil package
77c37f1 Update config-linux.md fix time_namespaces url error.
6c638b1 config: clarify Linux mount options
72efacb runtime: remove `When serialized in JSON, the format MUST adhere to the following pattern`
c42f9ae version: v1.1.0-rc.1-dev
3e013c2 version: release v1.1.0-rc.1
f790b68 ChangeLog: Document changes since v1.0.2
36bb632 Add support for time namespace
f225699 config: change prestart hook spec to match reality
d931d4b config-linux: add CFS bandwidth burst
9e658bc config-linux: add memory.checkBeforeUpdate
3565df5 config-linux: Clarify where device nodes can be created
a650533 config-linux: add support for rsvd hugetlb cgroup
crun/ispec: update to 1.1.0-rc.3
32036d8 Apply version change from #1050
f3f0906 Specify the content of the scratch blob
29a1380 Remove special guidance around wasm
2720969 Update descriptor.go
a68ca3e Remove artifact media type reference
428b1e5 releases: use +dev as in-development suffix
2f691e8 version: bump HEAD back to -dev
085b884 version: bump for release of v1.1.0-rc.3
fd45b6b Add scratch descriptor and scope layer limits
63b8bd0 Remove artifact manifest
23c4647 Define image manifest artifactType and guidance
5751791 Add Tianon as maintainer
f4fc83a Fix unused variable linting error
d09d13d Update Jon Johnson's email
4136bec descriptor schema: add missing data and artifactType definitions
729a03e manifest, specs-go/: provide guidance on SCRATCH config descriptor
31de013 manifest schema: add tests for the subject field
7a9efbd manifest schema: add the missing `subject` field
f2f1956 descriptor: clarify artifactType field must have compliant values
98f35df Update image spec and conversion to clarify groups
336b02c Require IANA mediaType for image config.mediaType and layers.mediaType
1f60184 Add Go 1.20 support
f99b121 Remove filtersApplied from image-spec
b5998ba specs-go/v1/*.go: align the deprecation style
6687119 Chore: fix go.mod - split direct/indirect dependencies
ccb86b9 mention deprecation in media-types.md
9b4e6c0 even fewer words
2cdbef2 Deprecate non-distributable layers
265874e Note an exception to the platform.os recommendation for wasi
0a97fe7 docs: Added artifact.md to docs and spec.md
293f064 Reverting json schema to well known value
crun/libocispec: update to -tip
b085839 runtime-spec: update
553cfb4 image-spec: update
384a230 runtime-spec: update
2c9fb39 libocispec: write _present tags together
dc7412b image-spec: update
2e11380 runtime-spec: update
e7b7344 rust: sync runtime-spec and image-spec
df3036c runtime-spec: sync
8a0ee41 image-spec: sync
70826dc clean: remove unwanted diff file
4d1d608 add redefine for stdin stdout stderr when using musl
02f231b Move header files under ocispec/
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
703feb3116 |
umoci: update to 0.4.7-tip
Bumping umoci to version v0.4.7-150-g33ec006, which comprises the following commits:
150b9e0 build(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4
1c365a2 build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
6e6027c build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
b267d7b test: move 'go test' output to stderr for coverage binary
947f407 build(deps): bump github.com/opencontainers/runc from 1.1.6 to 1.1.7
e9394e8 CHANGELOG: update to include changes from v0.4.7
08672f5 vendor: bump several deps
b4f2258 go.mod: update Go version to go1.18
b285980 build(deps): bump github.com/vbatts/go-mtree from 0.5.2 to 0.5.3
61c566b build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.30.0
a0bb45f build(deps): bump actions/setup-go from 3 to 4
bdfd50b build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
37c828e gha: ci: make ci-image cache expire weekly
3e7ddbd dockerfile: update to leap 15.4
44a127b Makefile: pull image details from Dockerfile
c99bc38 dockerfile: fetch oci-*-tools with go install
701c194 test: update to gomtree 0.5.2
ac5e249 test: (raw-)config: only use export in sub-shell
c8183de oci: config: strip "-dev" from runtime-spec version
b1c2cdf oci: config: correctly handle runtime-spec versions
de9ad94 make: add -buildvcs=false to builds
6d52935 gha: bump Go version for validate to Go 1.20.x
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
e215f05c27 |
skopeo: restructure recipe to fix buildpaths warnings
Like many of the other go recipes, the method of symlinking vendor packages ends up recording the path in the binary. -trimpath can't fix those embedded paths, so we switch skopeo to be link the other recipes and position our source in a way that doesn't require the symlinking, and hence no QA warning. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
05e51d92d5 |
skopeo: update to 1.12.0
Note: this has trimpath issues, and needs to be re-worked to not use
symlinked vendor directories.
Bumping skopeo to version v1.12.0-25-gcf502780, which comprises the following commits:
c06aa5c6 Update module github.com/stretchr/testify to v1.8.3
ac75f71f Update dependency containers/automation_images to v20230517
21b1dfee Update module github.com/sirupsen/logrus to v1.9.2
ead979a9 Update module github.com/docker/distribution to v2.8.2+incompatible
12b24fce Trigger an update of the ostree_ext container image
44ed4cea Update c/image with https://github.com/containers/image/pull/1944
9213943e Update module github.com/containers/common to v0.53.0
2825ffd9 Update module golang.org/x/term to v0.8.0
86eea6ce Update dependency containers/automation_images to v20230426
03e18aa9 Update golang.org/x/exp digest to 47ecfdc
7b587697 Emphasize the semantics of --preserve-digests a tiny bit
1e6b333f Improve the static build documentation a tiny bit
95e8cce2 Bump to v1.12.1-dev
a5529097 Release 1.12.0
5f0314f3 Update module github.com/containers/common to v0.52.0
66157589 Update module github.com/containers/storage to v1.46.1
7c66b740 Add (make tools) to install (for now only) golangci-lint, use it in Cirrus
d4bd787e Use golangci-lint instead of golint
c538340e Finally, eliminate hack/make.sh
f8f5a25f Actually fail if (go vet) fails
aebab492 Speed up validate-git-marks by about a factor of three
4298692d Don't use hack/make.sh for validate-git-marks
7e35ad54 Test all files by validate-git-marks
789257f7 Simplify the package list of (go vet)
bee51e5e Don't use hack/make.sh for validate-gofmt
85fef036 Run gofmt on all files, not just the changed ones
82268ea8 Don't use hack/make.sh for validate-lint
694b1565 Lint many more files in validate-lint
43090b29 Don't use hack/make.sh for validate-vet
225f239a Remove no-longer-necessary module options
98b01af0 Fix Makefile dependencies
835d71a3 Remove some outright unused code from hack/make*
30ecd8f0 Cross-link the top-level and subcommand option lists
4be583c8 Fix error handling of signature.NewEphemeralGPGSigningMechanism
e8414097 chore(deps): update dependency containers/automation_images to v20230405
4f5e8214 Avoid use of a deprecated capability.NewPid
ca0f8418 fix(deps): update module github.com/spf13/cobra to v1.7.0
b0d339f0 fix(deps): update module github.com/containers/image/v5 to v5.25.0
03ca2871 fix(deps): update module golang.org/x/term to v0.7.0
4ca2058d Use multiple fingerprint function Allow comma separated fingerprint list
c54f2025 Review comments (to be squashed later
9b1f1fa1 Rename argument. Only use any with public key file. Double check fingerprint is in public key file.
3097b7a4 Verify signatures from a trust store
bfe82593 Update c/image from the main branch
468ac655 Update module github.com/containers/common to v0.51.2
7481aae6 Update dependency containers/automation_images to v20230330
454f8559 systemtests: Fix 040-local-registry-auth about XDG_RUNTIME_DIR
bbdcb79c [CI:BUILD] Packit: trigger builds on commit to main branch
cd4f2ee5 [skip-ci] Update actions/stale action to v8
b2ede999 Make the installation instructions more prominent in README.md
8ea5fd44 Update dependency containers/automation_images to v20230320
aa9862a7 Update module github.com/containers/common to v0.51.1
0ad54d6d Cirrus: Update CI VM images
20447df1 bump golang.org/x/net to v0.8.0
3481a5b9 Update module golang.org/x/term to v0.6.0
bcc0d54e Simplify inspectOptions.writeOutput a bit more
c345785d Factor out the output of data in (skopeo inspect)
2a6a944c Use io.WriteString
9a02c1eb Update module github.com/stretchr/testify to v1.8.2
f1c03ef1 Update module github.com/containers/storage to v1.45.4
64daedca Update golang.org/x/exp digest to 5e25df0
c07f2098 Fix formatting of inspect examples
313f142c Use common library reporter
4beb3f0a Fix some warnings
1c3d49f0 Fix tabelating output in (skopeo inspect --format)
fb0be613 Corrected typo in skopeo-sync and updated description
2ef9cf69 Replace gopkg.in/check.v1 by github.com/stretchr/testify/suite/
0ba164f0 Update c/image after https://github.com/containers/image/pull/1842
012e1144 [CI:BUILD] Packit: initial enablement
5435c808 Renovate: c/common rule moved to defaults
643a2359 Update c/image after https://github.com/containers/image/pull/1816
2c6e15b5 Run codespell on codebase
df708d16 [CI:DOCS] Disable dependabot
2acac8a6 Update module golang.org/x/term to v0.5.0
f9e2c676 Update golang.org/x/exp digest to 46f607a
47c7902e Remove unnecessary blank lines
c1a57ca1 Pre-allocate an array
2a7b1327 Simplify a condition
e7ab33e6 Rename a variable to avoid an underscore
e90c381a Add missing comment punctuation
70c06b4a Fix, or remove, comments using lint syntax
9137ac56 Simplify an increment
efc6e837 Reformat import statements
a8b9e4e3 Use %w when wrapping errors
99215e40 Remove a duplicate word
afa031e8 Use net/netip.Addr instead of net.IP
891ba3d4 s/interface{}/any/g
f2b3a9c0 Use golang.org/x/exp
f1a6d427 Use strings.Cut
22955d05 go mod tidy -go=1.18
007f01c6 [CI:BUILD] enable debuginfo for el8 copr builds
036bf598 [CI:BUILD] copr: fix el8 build and enable debuginfo
f9406bb0 Cirrus: Use human-readable CI VM Images
b41b85ab Update module gopkg.in/yaml.v2 to v3
d2fbec35 Add unit tests for tlsVerifyConfig's yaml.Unmarshaler
9e24a195 [CI:DOCS] Fix up language in README
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Martin Jansa
|
d61d6cff9c |
libvmi: add dependency on autoconf-archive-native
* since https://git.openembedded.org/openembedded-core/commit/?id=571132415ea7fe2d91c62948f2b6aa553eafa83d this doesn't get autoconf-archive-native dependency and fails with: http://errors.yoctoproject.org/Errors/Details/708195/ ./configure: line 14424: syntax error near unexpected token `-fno-strict-overflow,' ./configure: line 14424: ` AX_CHECK_COMPILE_FLAG(-fno-strict-overflow, HARDEN_CFLAGS="$HARDEN_CFLAGS -fno-strict-overflow", , -Werror )' Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
28eda60a52 |
moby: update to v24.0.0
Bumping moby to version v24.0.0-2-g821e4ec4c7, which comprises the following commits:
5ea7b8d091 fix: `docker pull` with platform checks wrong image tag
907f037141 update containerd binary to v1.7.1
8bbfa32741 c8d: The authorizer needs to be set even if AuthConfig is empty
8587a1c617 c8d/builder: implement cache
9717369913 c8d: implement classic builder
233c49438b c8d: Don't create authorizer for empty AuthConfig
2b7424512a c8d/authorizer: Default to docker.io
f77a3274b4 [chore] clean up reexec.Init() calls
c76bb6a3a3 ci: bin-image workflow
71846e82c1 bin-image bake target
ecbc27aa22 vendor: github.com/docker/distribution v2.8.2
1235338836 c8d: implement missing image delete logic
763d2b7996 c8d: fix image history for dangling images
86770904be c8d: fix missing image history
bfffb0974e pkg/aaparser: deprecate GetVersion, as it's no longer used
e28bc0d271 profiles/apparmor: remove use of aaparser.GetVersion()
d169a57306 contrib/apparmor: remove remaining version-conditionals (< 2.9) from template
63640838ba daemon: handleContainerExit(): add execDuration in attributes
012dd239ce docs/api: version-history: also mention /system/df for VirtualSize
a87313497b vendor: github.com/containerd/containerd v1.6.21
5f36d4af15 api: synchronize api/swagger.yaml with docs/api/v1.43.yaml
2b6761fd3e d/graphdriver/copy: support src fs w/o xattr support
3e6092f5b2 pkg/jsonmessage: touch-up GoDoc
05cb0e5a7d pkg/jsonmessage: JSONProgress.String(), JSONProgress.now(): simplify
4cadee65b3 pkg/jsonmessage: JSONMessage.Display(): remove special case for 401 errors
66cf0e3f55 client: slightly improve ContainerDiff tests
dbb48e4b29 api/types/container: create type for changes endpoint
b7e8868235 update go to go1.20.4
bf3c156654 vendor: github.com/moby/term v0.5.0
c1d420ec60 vendor: github.com/moby/term v0.0.0-20221205130635-1aeaba878587
0df38c3e2b vendor: github.com/opencontainers/runtime-spec v1.1.0-rc.2
167fa429f0 daemon: Daemon.CreateImageFromContainer(): remove intermediate vars
bf5ae17c16 api/server/router/container: containerRouter.postCommit: inline struct
9613da63dc c8d: commit: generateCommitImageConfig: don't merge image config
e510abbc8c daemon/containerd: containerConfigToOciImageConfig: add ArgsEscaped
3eebf4d162 container: split security options to a SecurityOptions struct
8142051a3b libnetwork/osl: unify stubs for NeighOption
0ea41eaa51 libnetwork/osl: unify stubs for IfaceOption
021e89d702 libnetwork/osl: rename var that collided with import
3a4158e4fa libnetwork: add missing stub for getInitializers()
939a4eb5c9 libnetwork: fix stubs
17feabcba0 libnetwork: overlayutils: remove redundant init()
44a6587608 c8d: delete dangling image on pull
1e9ebfb00c libnetwork: inline sendKey() into SetExternalKey()
9d8fcb3296 libnetwork: setKey(): remove intermediate buffer
a813d7e961 libnetwork: don't register "libnetwork-setkey" re-exec on non-unix
881fff1a2f libnetwork: processSetKeyReexec: don't use logrus.Fatal()
e974599593 libnetwork: processSetKeyReexec() remove defer()
1845a915b0 c8d/import: Don't gc unnamed images
0ffd3225d2 vendor: github.com/opencontainers/runc v1.1.7
2d0e899819 update runc binary to v1.1.7
56fbbde2ed libnetwork/resolvconf: fix some minor (linting) issues
820975595c libnetwork/resolvconf: improve tests for Build
93c7b25ccd libnetwork/resolvconf: refactor tests for readability
43378636d0 libnetwork/resolvconf: allow tests to be run on unix
73c637ad60 libnetwork/resolvconf: use t.TempDir(), change t.Fatal to t.Error
fc1e698914 libnetwork/resolvconf: fix TestGet() testing wrong path
55d18b7db9 libnetwork/resolvconf: use []byte for hash instead of string
630fc3839e libnetwork/resolvconf: simplify hashData() and improve performance
12bf850c84 cmd/dockerd: gracefully shut down the API server
520aa08d42 c8d/prune: Logging fixes
52af6d957e c8d/prune: Remove gc.ref labels from configs of deleted images
993ca8c6de cmd/dockerd/trap: log to logrus directly
0f3c5d3893 cmd/dockerd/trap: don't force exit after cleanup
a1e1038736 Use the image service instead of the reference store for tagging
9fe5ac6614 c8d: Handle nil container.ImageManifest
16d5d4b6e1 cmd/dockerd: ignore SIGPIPE using signal.Ignore
2d31697d82 daemon: set docker0 subpool as the IPAM pool
d8b784a15e daemon/cluster: inline filters
da8e07edb5 volume/service: inline filters in tests
c0c4a16053 testutil: inline filters in tests
b6154189e8 integration: inline filters in tests
1bc0d7080a integration-cli: inline filters in tests
5bc0832766 daemon: inline filters in tests
081b5e3d4e client: inline filters in tests
aca8dde362 integration/TestKillContainer: Bigger timeout on Windows
391f9635cc c8d/list: Initialize capacity instead of length
4ec063fade pkg/sysinfo: omit Getpid call in numCPU
f66684fdeb fix some comments
c399963243 libn/d/overlay: make VNI matcher IPv6-compatible
7d9bb170b7 libn/d/overlay: test the VNI BPF matcher on IPv4
4876c09b2a build(deps): bump github.com/creack/pty from v1.1.11 to v1.1.18
8df3db4b97 c8d: add support for removing images by shortID
117ceac82b daemon/prune: Use errdefs for invalid "until" value
e502c69140 builder: use typed error for invalid "until" value
9791756284 overlay2: remove deprecated overlay2.override_kernel_check option
54a125f677 builder-next/prune: Handle "until" filter timestamps
38e791fb2f vendor: update buildkit to v0.11.6
005150ed69 check-config.sh: do not check for RT_GROUP_SCHED
f72548956f remove deprecated legacy "overlay" storage-driver
4ecb587eff daemon: skip TestGetInspectData when using containerd snapshotters
a82c434447 daemon: setupFakeDaemon(): add fakeImageService
1261fe69a3 API: deprecate VirtualSize field for /images/json and /images/{id}/json
eb7738221c Add no-new-privileges to SecurityOptions returned by /info
e7980275c0 c8d: align "Size" and "VirtualSize" for images
1e1efe1f61 libnet/d/overlay: clean up iptables rules on network delete
9a9dfb1d0d api/server: getImagesJSON(): don't check version in a loop
3903f16cd6 daemon: remove deprecated AuFS storage driver
890959eea8 builder-next: fix buildkit version
bc37e3f830 Fix returning errors from snapshotter.Prepare
f846349824 c8d/list: Implement `until` filter
d89590eab9 c8d: Implement prune
e6ac640d2e vendor: github.com/opencontainers/runc v1.1.6
f531e3cf69 vendor: golang.org/x/net v0.8.0
3886faced8 vendor: golang.org/x/text v0.8.0
d0efca893b update runc binary to v1.1.6
7fe0f73838 Fix argument quoting bugs in dockerd-rootless.sh
9cb5da400c images/Children: Return error
edf802956e c8d/list: Implement `label` and `label!` filter
03fc3aad12 daemon: touch-up flag description for --seccomp-profile
5a922dc162 daemon: deprecate --oom-score-adjust for the daemon
f696a1b3b3 Fix error checking when pulling from an insecure registry
c957ad0067 libnetwork: clean up inDelete network atomically
e5dbd28afd Added timeout to validate job in github actions
106c694993 Dockerfile: update xx to 1.2.1
a5d46a15f5 split GetRepository from ImageService
893d28469f vendor: github.com/ishidawataru/sctp v0.0.0-20230406120618-7ff4192f6ff2
f66374f6a8 golangci-lint: enable importas linter to force consistent aliases
81e62af94a use consistent alias for containerd's errdefs package
f691b13450 daemon: move code related to stats together
5c78cbd3be pkg/platform: deprecate OSType in favor or runtime.GOOS
cf9a76fe8f pkg/platform: un-export consts that are only for internal use
790dd8cc92 pkg/platform: use const for OSType, improve GoDoc
87019144f6 pkg/platform: replace use of deprecated syscall.Syscall
7ca38d64d2 pkg/platform: move package doc to platform-agnostic file
9434919f76 pkg/platform: rename files for consistency
be4abf9d6e Vendor containerd 1.6.x with the readonly mount fix
41a230758c c8d: Set the process user on exec
70229b55ec vendor: github.com/moby/swarmkit/v2 v2.0.0-20230406225228-75e92ce14ff7
3f09316e3b vendor: re-vendor to add missing file
8ed900263e libnetwork/overlay: remove host mode
1d46597c8b libnetwork/overlay: remove KVObject implementation
f32f09e78f libnetwork/overlay: don't lock network when accessing subnet vni
b67446a8fa libnetwork: remove local store from overlay driver
8aa1060c34 libnetwork/overlay: remove live-restore support
e3708a89cc libnetwork/overlay: remove vni allocation
e251837445 libnetwork/overlay: remove Serf-based clustering
644e3d4cdb libnetwork/netlabel: remove dead code
f8b5fe5724 libnetwork/netutils: remove dead code
c8d2c6ea77 libnetwork: remove unused props from windows overlay driver
0fa873c0fe libnetwork: remove global store from overlay driver
00037cd44b libnetwork: remove ovrouter cmd
e0f36f9d8b ImageService: Pass ctx to Children
bea751beb7 c8d: Implement Children by comparing diff ids
ba47cdcc0b c8d/list: Implement `reference` filter
4aa2876c75 docker-rootless-setuptools.sh: improve readability of messages
4d04068184 libn/d/overlay: only program xt_bpf rules
f6cc8e3512 update go to go1.20.3
465cbccdaf c8d: use the container's configured snapshotter where possible
c8f8d11ac4 awslogs: fix non-blocking log drop bug
1b178dffa3 Send an event when an image is deleted
36d28b73fc Send an event when an image is tagged
750218c5e5 d/config: fix default-network-opts in daemon.json
36935bd869 libcontainerd: close stdin sync if possible
3beda17773 integration-cli: rename vars that collided with imports
92e38b6e27 c8d/list: Ignore attestation manifests
773a9d85a1 c8d: Send event when an image is exported
00545ef4d6 c8d: Send event when an image is imported
e59f7fba6a pkg/fileutils: remove aliases for deprecated functions and types
6b9968e8b1 client: deprecate NewClient properly
027f70562e c8d/push: Rename jobs to avoid shadowing type
e1dd9c0396 c8d/push: Ignore :port when comparing source repository
4a34c501c1 c8d/push: Parse source labels with multiple sources
cb788bea9c c8d/push: Add distribution source labels only on success
013e44ec5d c8d/push: Log error if releasing the lease failed
c9012c798e c8d/push: Sync mountableBlobs access
f6b50d52d4 libnetwork/netutils: drop ElectInterfaceAddresses
61a0e79ad6 vendor: github.com/containerd/containerd v1.6.20
b8e963595e libnetwork: sbState: rename ExtDNS2 back to ExtDNS
0233029d5a vendor: opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
c733cf223d vendor: github.com/containerd/ttrpc v1.1.1
a0ef2ac59c c8d: push: addressing some nits
a75354c045 c8d: Implement push
e7393d0fc5 images/push: Accept reference
15b9176d53 Add the events services to the containerd image service
77be7b777c update runc binary to v1.1.5
a17029ba49 vendor: github.com/opencontainers/runc v1.1.5
24804e67f5 c8d/commit: Use manifest digest for dangling image
845b328734 Skip Buildkit digest tests
4c459ddabd c8d: add support for `docker diff`
e85c69e1b7 Update `github.com/containerd/containerd` to the HEAD of `release/1.6` and vendor
f09b1022aa c8d/inspect: Handle dangling images
9e3a6ccf69 libn/i/setmatrix: make generic and constructorless
713c9280ca Move buildkit client opts to new package
4f511bd06e Add akerouanton as curator
bb2c5617d6 Add laurazard as curator
988d26afe4 vendor: github.com/moby/buildkit v0.11.5
6caaa8cadc Prefer loading `docker-init` from an appropriate "libexec" directory
bae49ff278 libnet/d/windows: log EnableInternalDNS val after setting it
4f48a4ea2a Update delve version
0fa7a4e3b4 client: Add buildkit ClientOpts
965eda3b9a libnet/d/overlay: insert the input-drop rule
66dfc0169f dockerversion: DockerUserAgent(): use sync.Once to construct User-Agent
72dc7a0f7b vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
c7ccc68b15 Silence GRPC logs unless our log level is debug
be34e93f20 integration-cli: Enable TestExecStartFails on Windows
cb76638699 registry/search: pass User-Agent through headers
88992de283 StartWithLogFile: Fix d.cmd race
fed1c96e10 TestDaemonRestartKillContainers: Fix loop capture
f5050d4ef2 ci: disable testing mergeop and diffop with the dockerd worker
0ac3bf837b builder-next: disable mergeop and diffop
c14463d1e4 ci: enable BuildKit tests with containerd integration worker
105b9834fb libnet/d/overlay: add BPF-powered VNI matcher
44cf27b5fc libnet/d/overlay: extract VNI match rule builder
142f46cac1 libn/d/overlay: enforce encryption on sandbox init
0ac02ba342 vendor: github.com/opencontainers/runtime-spec v1.1.0-rc.1
ab131642a1 vendor: github.com/opencontainers/runc v1.1.4
b98c05dc50 vendor: github.com/klauspost/compress v1.16.3
664c0d3201 vendor: github.com/godbus/dbus/v5 v5.1.0
3e4ce10342 vendor: github.com/coreos/go-systemd/v22 v22.5.0
0a2e3f14e7 vendor: github.com/opencontainers/selinux v1.11.0
bc1dec71c5 vendor: github.com/imdario/mergo v0.3.13
9752e43644 vendor: golang.org/x/sys v0.6.0
d4fd582fb2 libnet/d/overlay: document some encryption code
58504620c5 api/types/container: IpcMode: use common function for container-mode
6f0e28d024 api/types/container: PidMode: fix validation for empty container name/ID
53c813961e api/types/container: fix .Container() returning a name, when it shouldn't
c76331e13f api/types/container: put "valid" field as first check in tests
2d49080056 pkg/sysinfo: move MemInfo and ReadMemInfo to a separate package
a050db4a6f libnetwork/d/overlay: handle peer ops directly
09d39c023c libnetwork/i/setmatrix: devirtualize
3b569cc686 daemon/graphdriver/windows: cleanup errors
bbeaeee3c7 daemon/graphdriver/windows: remove some intermediate variables
9db5dc9a46 daemon/graphdriver/windows: use strings.EqualFold()
d742188e3b daemon/graphdriver/windows: remove fileFlagSequentialScan const
3a8c97be45 daemon/graphdriver/windows: rename vars that collided with imports
605e8f53b1 daemon/graphdriver/windows: InitFilter() don't use idtools.MkdirAllAndChown()
34303ccd55 libnetwork/i/setmatrix: un-embed the mutex
127cd9def1 integration/plugin: fix duplicate import
2987393768 integration/volume: fix duplicate import
146df5fbd3 Fix pruning anon volume created from image config
058a31e479 volumes: fix error-handling when removing volumes with swarm enabled
a2c29e9128 update containerd binary to v1.7.0
7531f05c7c integration/volumes: TestVolumesRemove: add coverage for force/no-force
7b3acdff5d registry: return concrete service type
3991faf464 Move filtered registry search out of image service
06619763a2 remove GetLayerByID from ImageService interface
02dec48bab update to go1.20.2
37a9d6aabe Fix listener parsering regression when no addr set
3bbffe96e1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
af677245fb c8d/builder: Store untagged images as dangling
8f716ca06a builder/overrides: Add consts for attribute key names
e807ae4f2e vendor: github.com/containerd/cgroups/v3 v3.0.1
44d0522848 c8d/inspect: Add digested reference to details
a8f5c524a0 libcontainerd: Upgrade to typeurl/v2
45ee4d7c78 c8d: Compute container's layer size
4026148ef1 Dockerfile: Update shfmt to 3.6.0
a0741cacef contrib/dockerize-disk.sh: Fix indentation
088aff1620 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230302163403-80a528a86877
f8b468fda2 builder-next: enable more cache backends
bba77163ff c8d: Make build and buildx work
b0b3c62a84 vendor: github.com/moby/buildkit v0.11.4
117cdb28ce regenerate AUTHORS
608a122aef integration: Extract StopContainerWindowsPollTimeout const
74dbb721aa TestLogs: Increase stop check poll timeout on Windows
a34060cdb4 Resolve and store manifest when creating container
168ca2dcc8 Introduce support for docker commit
22f303e422 layer: NewStoreFromOptions(): include driver-name in error message
f52e935f36 reference: add test-coverage for digested references
f71439d527 reference: don't string-match errors in tests, and fix error format
669940065f reference: use t.TempDir() for tests
520dc12c0e reference: rename variables that collided with type / import
c477cda59f c8d/list: Support dangling filter
3e4c4df664 builder/exporter: Remove commented unused const
324290a5eb vendor: buildkit v0.11.4-0.20230228113103-218e934edfba
6588b3eef0 builder: Remove buildkit's build information
4ea1c9f8e5 `docker image ls`: handle multi-platform images
a9e7360775 daemon/config: remove AuthzMiddleware field
47e9caede7 libcontainerd/client: Rename `cp` to `checkpoint`
0c751f904f libcontainerd/client: Fix checkpoint not being set
be39be87f6 api/server: delete Wait method
91c2b12205 Make default options for newly created networks configurable
19ad4ac03d registry: acquire mutex in IsInsecureRegistry
ef6f5367dc vendor: github.com/containerd/containerd v1.6.19
5997ad8512 vendor: github.com/Microsoft/hcsshim v0.9.7
0a6a726d26 api/server: drop unused Config struct
248745004a api: Remove <none> in Repo(Tags|Digests) for >= 1.43
0ffaa6c785 daemon: add annotations to container HostConfig
3c59ef247f libnet/ipam: use netip types internally
01dbe23b6f libnet/ipam: simplify the data model
8273db28f3 libnet/ipam: inline parsePoolRequest function
9a8b45c133 libnet/ipam: drop vestiges of custom addrSpaces
18ac200efe libnet/ipam: get rid of superfluous closure
88f6b637a0 libnet/networkdb: fix nil-dereference panic in test
f8791db4be c8d/list: Fix Repo(Digests|Tags) for untagged images
cd779dae46 Upgrade to Go 1.20.1
d4e7a87b96 Upgrade to Go 1.20
3606d6a7cd Upgrade to golangci-lint v1.51.2
2f9e3cca3d api: Move Repo(Digests|Tags) <none> fallback from daemon
8657c87c8c c8d/tag: Don't create a separate error variable
9f6649b248 AUTHORS: regenerate
50d7164978 docs/api: add v1.43 OpenAPI definitions
bb21e0f191 Close DecompressStream after layer is downloaded
d6c4e17411 Upgrade containerd/fifo to v1.1.0
782a369f92 c8d/pull: Add CRI-compatible annotation of pulled content
a770153af0 chore: use http constants to replace numbers
9104cd5441 vendor: github.com/moby/buildkit v0.11.3
b0eed5ade6 daemon: allow shimv2 runtimes to be configured
4a886a3e8f dependency: bump go.etcd.io/bbolt to v1.3.7
e40c4c997e update containerd binary to v1.7.0-beta.4
f8cfd3a61f libnetwork: devirtualize Resolver type
faaa4fdf18 libnetwork: forward unknown PTR queries externally
8f5a9a741b libnetwork: fail loudly on resolver iptables setup
25b51cad3d libnetwork: replace ad-hoc semaphore implementation
a1f7c644be libnetwork: use dns.Client for forwarded requests
e6258e6590 libnetwork: reply SERVFAIL if DNS forwarding fails
9cf8c4f689 libnetwork: extract DNS client exchange to method
854ec3ffb3 libnetwork: extract dialExtDNS to method
51cdd7ceac libnetwork: truncate DNS msgs using library method
860e83e52f libnetwork: get rid of truncation red herring
8a35fb0d1c libnetwork: refactor ServeDNS for readability
0bd30e90bb libnetwork: reply SERVFAIL on resolve error
92aa6e6282 libnetwork: extract fn for external DNS forwarding
78792eae68 libnetwork: add regression test for issue 44575
94feb31516 update to go1.19.6
b62445871e libnet/ipam: fix racy, flaky unit test
81f9f90e47 Do not log connection info before the connection exists
c4c54683a9 Revert "apparmor: Check if apparmor_parser is available"
174802e15f vendor: github.com/containerd/containerd v1.6.18
a4e3c67e44 api/s/r/swarm: log backend errors at Debug level
e66995d840 d/l/awslogs: fix ineffective Add in test
713e02e03e daemon: handle EISDIR error from runtime
97921915a8 distribution/xfer: fix download fencepost bug
0c68b655f6 Fix loop-closure bugs in tests
dea3f2b417 Migrate away from things deprecated in Go 1.20
a36286cf89 vendor: golang.org/x/net v0.7.0
c7de76569e vendor: golang.org/x/text v0.7.0
a53b44a266 vendor: golang.org/x/sys v0.5.0
c53e22af19 add new maintainers!
046cc9e776 libnetwork: check DNS loopback with user DNS opts
d31fa84c7c libnet/networkdb: use atomics for stats counters
3539452ef0 libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
5287b2ddbf libnet/ipam: stop eagerly stringifying debug logs
2e19a4d56b contrib/apparmor: remove version-conditionals (< 2.9) from template
7008a51449 profiles/apparmor: remove version-conditional constraints (< 2.8.96)
eaeaa7b7fd vendor: update buildkit to latest v0.11
335907d187 builder: define GetRemotes for the worker
80f8432b52 ci: fix branch filter pattern in buildkit workflow
62be425bcc api: Extract parsing reference from repo and tag
afc6e3fa46 c8d/import: Use danglingImageName instead of hardcoded
b3a8b6b198 api/tag: Reject digested target references
eaa56afda9 daemon/c8d: Implement TagImageWithReference
1ca85e835c daemon/imageService: Remove TagImageWithReference
7b6f71dced daemon: Pass ctx to image tagging operations
22776f8fdb ci: enhance tests distribution
e304e82b66 ci: update gotestlist to 0.3.1
ab3fa46502 apparmor: Check if apparmor_parser is available
0137446248 Implement run using the containerd snapshotter
e564932792 gha: switch buildkit back to upstream for testing
91725ddc92 libnet/d/ipvlan: gracefully migrate from older dbs
21677816a0 Dockerfile: configure code dir as "safe" directory
3bcb350711 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
521c2b25c2 docs: fix JSON format error
af32603ae3 daemon/c8d: Implement save and load
043dbc05df github: apply patch for CNI test that was incorrectly skipped
666334bd48 vendor: update buildkit to v0.11.2
85169a04cf vendor: github.com/tonistiigi/fsutil v0.0.0-20221114235510-0127568185cf
cf83842304 Dockerfile: Make it easier to use ctr in shell container
0e4d3feb94 daemon: identify container exits by ProcessID
843fcc96f7 libc8d/remote: name task fifos after task ID
719b08313f libc8d/local: set task id to container id
d634ae9b60 Wait longer for exit events on Windows
7950abcc46 libnetwork: delete CHANGELOG.md
31f4ec92f6 update containerd binary to v1.7.0-beta.3
c41c8c2f86 vendor: github.com/containerd/containerd v1.6.16
22098745e7 vendor: github.com/pelletier/go-toml v1.9.5
a264f2dc55 libnetwork/ipam: skip Destroy()ing bitseq.Handle values
6f08fe20e9 libnetwork/bit{seq,map}: delete CheckConsistency()
a08a254df3 libnetwork: drop DatastoreConfig discovery type
28edc8e2d6 libnet: convert to new-style driver registration
5595311209 libnetwork/drvregistry: split up the registries
d478e13639 libnet: un-plumb datastores from IPAM inits
27cca19c9a libnetwork/drvregistry: drop unused args
befff0e13f libnetwork: remove more datastore scope plumbing
142b522946 libnetwork/config: remove vestiges of global scope
52d9883812 libnetwork: drop (*Controller).ReloadConfiguration
9900c7a348 client: improve error messaging on crash
e8011d7872 libnw/ipamutils: make local defaults immutable
540d1e0561 libnw: untangle IPAM allocator from global state
48ad9e19e4 libnetwork/netutils: drop ElectInterfaceAddresses
cc19eba579 daemon: let libnetwork assign default bridge IPAM
a654cbfd2f Use GetBoolOrDefault to remove duplicated invalidFilter usages
0d68591c8e api/types/filters: Add GetBoolOrDefault
390532cbc6 libnetwork/windows/overlay: drop unused variables
b3e6aa9316 libnetwork/netutils: clean up GenerateIfaceName
3775939303 libnetwork/netutils: refactor GenerateRandomName
1776f72c96 c8d/progress: Update progress when finished
54f0b0ec4b c8d: Implement image history
c0eb207b76 libnetwork/bitseq: refactor JSON marshaling
89ae725d23 libnetwork/bitseq: make mutex an unexported field
94ef26428b libnetwork/bitseq: refactor in terms of bitmap
143c092187 libnetwork/bitmap: optimize binary serialization
c4d7294b5c libnetwork/bitmap: remove datastore concerns
ad03a09451 libnetwork/bitmap: dup from package bitseq
cd2e7fafd4 libnetwork/bitseq: add marshal/unmarshal tests
b3c5352386 rootless: support `--ipc=host`
67aa86f1e0 hack: check if cross-compiling before setting ARM target name
25f95b0000 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
170a1c4709 hack: display build cmd when DOCKER_DEBUG set
877baae03e hack: remove unnecessary vars in make.sh script
b80f16157e hack: remove ORIG_BUILDFLAGS var
0c008cc4f8 hack: remove -installsuffix build flag
d2d6ef431f Dockerfile: prefer ld for building against arm64
518be73a5c Dockerfile: smoke tests for static builds
f676dab8dc Dockerfile: use clang to build dockerd/docker-proxy
f49c88f1c4 Disable chrootarchive.init() on Windows
9b5c21309b images: Pass context to commit related operations
596c8960b2 c8d: Fix resolving truncated id to a descriptor
65c6ba1fc4 vendor: golang.org/x/net v0.5.0
ff14f8ef16 Add GetLibHome stub for non-linux OS
824dc51341 vendor: golang.org/x/text v0.6.0
e66e6bb28a vendor: golang.org/x/sys v0.4.0
dcfe23a038 fix blockThreshold full bug
0b83fd3217 ioutils: add regression test for bytespipe deadlock
71fa3b1337 Dockerfile: fix PKG_CONFIG for xx
945704208a hack: name for target ARM architecture not specified
94639eb66f hack: typo in displayed platform name
ffd75c2e0c libnetwork: Support IPv6 in arrangeUserFilterRule() (redux)
17723691e5 Revert "libnetwork: Support IPv6 in arrangeUserFilterRule()"
833096ce42 homedir: fallback to user.Current().homeDir if XDG_DATA_HOME/XDG_CONFIG_HOME and HOME are unset
af6b5d55db vendor: github.com/moby/ipvs v1.1.0
f53feeea8b vendor: github.com/vishvananda/netns v0.0.2
8be470eea8 libnetwork: don't embed mutex in network
c71555f030 libnetwork: return concrete-typed *Endpoint
581f005aad libnetwork: don't embed mutex in endpoint
0e91d2e0e9 libnetwork: return concrete-typed *Sandbox
0425baf883 libnetwork: don't embed mutex in sandbox
f96b9bf761 libnetwork: return concrete-typed *Controller
ae09fe3da7 libnetwork: don't embed mutex in controller
bb5cae2c94 vendor: github.com/vishvananda/netns v0.0.1
102090916e libnetwork: addRedirectRules without reexec
582dd705c1 libnetwork: fwmarker without reexec
d6cc02d301 libnetwork: drop (resolver).resolverKey field
50a4951ddc libnetwork: setup DNS resolver without reexec
4733127a04 libnetwork: set default VLAN without reexec
7037c48e58 libnetwork: set IPv6 without reexec
0246332954 libnetwork: create netns without reexec
ef161d4aeb libnetwork: Clean up sysfs-based operations
9032e6779d c8d/resolver: Fallback to http for insecure registries
c83fce86d4 c8d/resolver: Use hosts from daemon configuration
3a3f98b32b c8d/pull: Don't unpack manually
4a8c4110e3 produce progress events polling ctrd's content.Store
566a2e4c79 libnetwork: Remove iptables nat rule when hairpin is disabled
d7deec1993 daemon/c8d: Implement import
a254dad2e5 api/import: Guard from Digested instead of Canonical reference
28327f10a2 daemon/import: Extract common logic to api
8dbc5df952 daemon/config: inform the user when the input JSON contains invalid UTF-8
155e8d7d78 update to go1.19.5
d42495033e daemon/config: support alternate (common) unicode encodings using a BOM
8d1e56e210 CONTRIBUTING.md: drop reference to the Derek GitHub bot
0867d3173c cmd/dockerd: use default SIGQUIT behaviour
1dcf7d5b03 daemon/config: clean up tests to use common helper
1e1d326b50 plugins: Move GlobalSpecPaths into LocalRegistry
805aea501a docs: api: synchronise versioned API docs (v1.39 - v1.41)
92cbd1c69e docs: api: synchronise versioned API docs (v1.42)
4f81f9d5ea builder/dockerfile: use example.com for tests
65aa43bf66 libnetwork: use example.com for tests and examples
dc30785947 ci: update buildkit to fix integration tests
cba3edbc37 daemon/config: group JSON preprocessing steps
bb19265ba8 daemon/config: ignore UTF-8 BOM in config JSON
2d397beb00 libnetwork: Support IPv6 in arrangeUserFilterRule()
6ab12ec8f4 rootless: move ./rootless to ./pkg/rootless
c1bd5e9144 Use user paths for plugin discovery in rootless mode
bffe6d5670 vendor: github.com/containerd/containerd v1.6.15
89fb8b32f6 graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
c12d7b6d21 upgrade to aws sdk go v2
aa80c33360 Dockerfile.*: drop libbtrfs
c9d632e485 PACKAGERS: update Btrfs graphdriver dependencies
d3778d65fa graphdriver/btrfs: use free wrapper consistently
3208dcabdc graphdriver/btrfs: use kernel UAPI headers
1449c82484 graphdriver/btrfs: drop version information
fdcab58ccf Remove reference to "requireRegistryMatch"
deb4910c5b integration-cli: Fix hanging TestLogsFollowGoroutines*
1616a09b61 add support for image inspect with containerd-integration
bbe6e9e8d1 hack/make: Don't add -buildmode=pie with -race
7e7b0622a6 hack: restore copy_binaries func
b37d34307d Clear conntrack entries for published UDP ports
1fdfd45995 Updated outdated docker contributing guidelines link
01fd23b625 Fix volume CreatedAt being altered on initialization
d131147a5c use errors.Is() to handle image store errors
83280d44d0 docs: contributing docs update for cross comp
e8a82ed24d Dockerfile: add "all" stage to build binaries and extra tools
113e95ec02 ci: add extra steps to check artifacts
b565b496ba Dockerfile: rename dev stages
27ba1766e7 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
0b3af098e1 bake: define additional vars
9bcf5bed05 bake: define DESTDIR
491467b0b9 hack: update buildmode pie condition
347a5f68da hack: do not set buildmode pie for statically linked binary
e37985f590 hack: use PKG_CONFIG var when checking libdevmapper
84ea9ee0f9 IAmStatic not used anymore
04c90b8cf5 hack: remove containerutility script
8086f40123 Dockerfile: use TARGETPLATFORM to build Docker
722d477bc6 client: defaultHTTPClient(): don't ignore transport errors
31ee158394 client: defaultHTTPClient() accept URL
1de3966b84 image: store: rename vars that collided with types or shadowed vars
2910163df1 daemon/images: imageKey() accept string
040b5bbc52 image: store.restore(): use more structured logs
456ea1bb1d image: deprecate IDFromDigest()
a5ebd28797 daemon/graphdriver/devicemapper: simplify Udev log, and update link
155e39187c daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5fed968b1d api: can marshal and unmarshal when args.fields is empty
ad8804885c Update delve version
e7d75c8db7 api/types/container: fix validation for UTSMode, UsernsMode, PidMode
018347f802 integration-cli: remove waitInspectWithArgs()
61c434c030 integration-cli: remove inspectMountPointJSON()
ffbbe3d103 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
0eb7b49a17 daemon: remove some intermediate vars, use struct-literals
288cf20f98 daemon: rename some vars that collided with imports
c5d4b6b311 restartmanager: remove RestartManager interface
efb97da0da restartmanager: add SetPolicy() to the RestartManager interface
d68b68fc43 restartmanager: RestartManager.Cancel(): remove unused error return
42f1be8030 daemon: translateContainerdStartErr(): rename to setExitCodeFromError()
83dd99177f daemon: translateContainerdStartErr(): use exit code 128 as default
46dae0b8bb daemon: translateContainerdStartErr(): use early return for errors
4e750caf96 daemon: translateContainerdStartErr(): extract detecting wrong cmd
a756fa60ef daemon: translateContainerdStartErr(): use const/enum for exit-statuses
2cf09c5446 daemon: translateContainerdStartErr(): remove unused cmd argument
087369aeeb daemon: containerStart(): rename return variable
940730093b integration-cli: remove cli.Build(), cli.Inspect()
bc0885f364 integration-cli: remove WaitRestart(), un-export WaitForInspectResult()
1bd486666b api/types/container: use strings.Cut() and DRY
ab5e69c442 api/types/container: rewrite tests to use subtests and asserts
e155cb4fee hostconfig: move unit tests to api/types/container
12df6024db cmd/docker-proxy: add "-v / --version" flag
c42b304f62 gha: update buildkit to fix integration tests
799cc143c9 Always use iptables -C to look for rules
205e5278c6 Merge iptables.probe() into iptables.detectIptables()
0787ea8b26 libnetwork: improve logs for DNS failures
a959487597 libnetwork/netlabel: remove Key(), Value(), and KeyValue() utils
9015cb7111 libnetwork: controller: rename vars that collided or shadowed
96cfb076ce libnetwork/netlabel: make consts actual consts
36151bd1d7 libnetwork/drivers/bridge: remove "ioctl" fallback code for legacy kernels
6a91e09218 pkg/parsers: use strings.Cut(), and cleanup error-messages
3f935d0e2c daemon/graphdriver/zfs: use strings.Cut, and refactor
f95e9b68d6 daemon: use strings.Cut() and cleanup error messages
46f7c92c9a libnetwork: use strings.Cut() and minor refactor
87ca9490b0 libnetwork/datastore: rename var that collided with import
ff447f4fd5 runconfig/opts: use strings.Cut()
bffb35612c plugin: use strings.Cut()
01365cbd74 libcontainerd/local: use strings.Cut()
6059d38f21 pkg/parsers/operatingsystem: don't use strings.SplitN()
451b8579ef pkg/parsers/kernel: use strings.Cut() and minor refactor
774cd9a26c opts: use strings.Cut() and refactor parseDaemonHost()
d3cd746067 integration-cli: use strings.Cut()
38b0c47f37 integration-cli: links: use gotest.tools compare and assert.Check
ebda2fa2b5 integration/internal: use strings.Cut() and minor refactor
39f59c3289 daemon/links: use strings.Cut()
ad7f1a8dcc daemon/logger: use strings.Cut()
32c4c15f15 daemon/events: use strings.Cut()
5008409b5c cmd/dockerd: use strings.Cut()
19cd5ff164 client: use strings.Cut()
64adea1ce1 volume: use strings.Cut() and minor refactor
19db33afc9 pkg/tarsum: use strings.Cut() and minor refactor
59880cb855 builder/dockerfile: use strings.Cut()
604a2d67b5 builder/remotecontext/git: use strings.Cut()
380a2dfc3a api/types: use strings.Cut()
7841ce781c api/types/time: use strings.Cut()
ba9bcf92f6 api/types/filters: use strings.Cut()
6db4af7bd5 graphdriver: windows: use strings.Cut()
c545473920 daemon/cluster: use strings.Cut()
ec878a3d89 pkg/sysinfo: unify ReadMemInfo implementation
09ea6744fe pkg/sysinfo: remove github.com/docker/go-units dependency
6a516acb2e pkg/system: move memory-info types to pkg/systeminfo
6919b9879b pkg/sysinfo: unify NumCPU implementation
c63ea32a17 pkg/ioutils: TempDir: move to pkg/longpath
3314f4ef09 pkg/ioutils: unify TempDir implementation
2e67c85c13 pkg/longpath: fix package GoDoc
c4c53659f1 integration-cli: remove uses of ioutils.TempDir
2e67c827bb errdefs: FromStatusCode() don't log "FIXME" debug message
83d7ae76e8 vendor: github.com/containerd/containerd v1.6.14
72ea8cfb43 registry: use http.NewServeMux for tests instead of gorilla/mux
54512f2184 pkg/stringid: optimize performance
d20ddb6807 update containerd binary to v1.7.0-beta.1
35cbdc9661 vendor: github.com/containerd/containerd v1.6.13
9300aca2a6 vendor: github.com/Microsoft/hcsshim v0.9.6
19f3448c21 Dockerfile: delve cross build with TARGETPLATFORM
ed95e1a9ff Dockerfile: swagger cross build with TARGETPLATFORM
879b023706 Dockerfile: containerutility cross build with TARGETPLATFORM
8d9a357a67 Dockerfile: registry cross build with TARGETPLATFORM
a4bc2922c2 Dockerfile: dockercli cross build with TARGETPLATFORM
420591c4a2 Dockerfile: rootlesskit cross build with TARGETPLATFORM
f0307892ea Dockerfile: tini cross build with TARGETPLATFORM
5e19d7ec54 Dockerfile: runc cross build with TARGETPLATFORM
81d704d15d Dockerfile: containerd cross build with TARGETPLATFORM
b19c11621a Dockerfile: DOCKER_STATIC arg
69c9dfd6d5 Dockerfile: add dummy stage
6cba7d22e9 Dockerfile: add cross compilation helper
0007490b21 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
e19dff9285 daemon/config: remove deprecated RootDeprecated field
32b299f63e daemon/config: rename CommonTLSOptions to TLSOptions
ef7ab7bde8 cli: remove cli/config package, integrate into cmd/dockerd
6a90113e68 cli: move cobra customizations into cmd/dockerd
3d58b43efe cli: remove unused Errors type
25c3421802 hack: introduce validate/no-module
a449f77774 hack: replace go-mod-prepare.sh with wrapper script
388fe4aea8 daemon: drop side effect from registerLinks()
0141c6db81 daemon: don't checkpoint container until registered
00157a42d3 daemon: fix GetContainer() returning (nil, nil)
7b13076f56 daemon: CreateNetwork: remove redundant error check
389dacd6e2 vendor: github.com/tinylib/msgp v1.1.6
24496fe097 vendor: github.com/philhofer/fwd v1.1.2
8fb71ce208 manage image inspect data in backend
a8eb15eafb ImageService.ImageHistory(): pass context
0426c76142 List images with multiple since/before filters
e214503789 image/store: Use errdefs for errors
28382c58ec container: ViewDB: use logrus.WithError()
6549a270e9 container: ViewDB: return typed system errors
94dea2018e container: ViewDB: GetByPrefix() return typed errors
da4d627e79 container: ViewDB: use errdefs for non-existing containers
ddaba6d576 daemon: filterByNameIDMatches() fix error handling
8c9a240597 container: use const for null-terminator
200edf8030 libcontainerd/remote: remove stray import comment
12c76d4a15 vendor: github.com/containerd/containerd v1.6.12
4bbc37687e vendor: golang.org/x/net v0.4.0
18f85467e7 docs: add 401 to possible status codes of /auth
d331bc3b03 vendor: github.com/containerd/containerd v1.6.11
52bc1ad744 update to go1.19.4
f577f31f50 Add Bjorn Neergaard to maintainers
9da935629e Better not pretend to be an active currator
383e23fd61 Add Kevin Alvarez ("crazy-max") to curators
521b8c02cc builder: handle host-gateway with extra hosts
381fa4afca ci(buildkit): update buildkit ref to fix issue with alpine image
a6a539497a distribution: checkSupportedMediaType: allow additional media-types
57b229012a seccomp: block socket calls to AF_VSOCK in default profile
eaa74497b8 libnetwork: use go-immutable-radix instead of radix
93fa093122 testing: move fuzzers over from OSS-Fuzz
3d97f1e22d client/list: Handle SharedSize
e1c3305015 AUTHORS: regenerate
672383bc56 .mailmap: cleanup and additions
b94d1604a9 hack/generate-authors.sh: refactor and simplify
6326ad1729 vendor.mod: remove outdated comment about replaced module
0f0fce5dcc libnetwork/netutils: FindAvailableNetwork(): simplify reading of resolv.conf
0cbe6524db libnetwork/drivers/overlay: getBridgeNamePrefix() simplify reading of resolv.conf
0ef0dab2f7 libnetwork: sandbox.rebuildDNS() make updating sandbox more atomic
806b4fbcad libnetwork: sandbox.rebuildDNS() move variables closer to where they're used
d178a71b7c libnetwork: sandbox.rebuildDNS() simplify reading of resolv.conf
05b3356631 libnetwork: sandbox.setupDNS() don't parse host resolv.conf if not needed
08d5e3d0fa libnetwork: sandbox.setupDNS() simplify reading of resolv.conf
a44f547343 registry: session: remove unused id
fb77973201 pkg/system: move CheckSystemDriveAndRemoveDriveLetter to pkg/archive
c4872b4519 pkg/system: CheckSystemDriveAndRemoveDriveLetter: fix error format
ad371893f2 pkg/system: move GetLongPathName to integration-cli
9f3e5eead5 pkg/system: deprecate DefaultPathEnv, move to oci
dec81e489f daemon/disk_usage: Use context aware singleflight
f7e59cbccc Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
85fddc0081 distribution: remove unused RequireSchema2
8feeaecb84 use ad-hoc libtrust key
e854b2a459 distribution: use ad-hoc trustkey for tests
5cdd6ab7cd daemon/config: remove TrustKeyPath, and local utilities
1981706196 daemon: remove migrateTrustKeyID()
c1756e1b63 update containerd binary to v1.7.0-beta.0
c1a9e82d3e vendor: google.golang.org/grpc v1.50.1
bade242ddd Makefile: always use buildx
426e3926ef ci: define timeout for jobs
dc52e08bb5 vendor: github.com/prometheus/client_golang v1.14.0
b2fe29ba79 vendor: github.com/go-logr/logr v1.2.3
7c1b7842c6 vendor: golang.org/x/crypto v0.2.0
efe17dbdb4 vendor: golang.org/x/net v0.2.0
0588a83380 vendor: github.com/opencontainers/runc v1.1.3
38adf7a694 vendor: github.com/klauspost/compress v1.15.12
e1058e6bc3 go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
62344f515c layer: layerStore.registerWithDescriptor: rename var to prevent shadowing
e5e6480694 Add Sam Thibault (sam-thibault) as curator
4769809555 api/server/backend/build: sanitizeRepoAndTags() check for digest
64f9ea1cf5 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
a5898e3a2d vendor: github.com/prometheus/client_golang v1.13.0
2cc6a86fd3 vendor: github.com/aws/aws-sdk-go v1.37.0
8f1bc3a3b7 vendor: google.golang.org/grpc v1.48.0
b0e20e1b3c vendor: go.uber.org/zap v1.21.0
066fb6c69e vendor: go.uber.org/multierr v1.8.0
b41580d66e vendor: go.uber.org/atomic v1.9.0
341c9e77a8 vendor: github.com/jmespath/go-jmespath v0.4.0
9a8b46518b vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
1e48b64538 vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
4113a88523 vendor: google.golang.org/protobuf v1.28.1
26c4429f7e vendor: github.com/spf13/cobra v1.6.1
8a46a2a364 Dockerfile: remove hardcoded platforms for vpnkit stage
4f17d17009 ignorefiles: cleanup
61f266f660 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
af8e955e8f hack/go-mod-prepare.sh: find root robustly; make steps transparent
30b0cb0cd4 vendor.mod: add comment about replaced dependency
62a4a45a72 vendor.mod: remove replace for github.com/rexray/gocsi
a2d758acc9 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
9f004830a5 hack/validate/vendor: clean up license validation step
dbd76848ca hack/validate/vendor: split tidy from vendor
72568286ab hack/vendor.sh: allow running tidy & vendor separately
40069797ef hack: remove obsolete sources for go-autogen
07ba3e35d3 Add additional loggig in case of error of renaming runtimes-old and removing it
d591710f82 Handle docker start inside overlayfs
ca807edac0 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
25dc760162 Dockerfile: variant support in frozen-images stage
882ddf4b16 update gotestsum to v1.8.2
b529870558 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
7ca03c1a79 rootlesskit.installer: s/vendor.conf/vendor.mod/
a2cea992c2 libnetwork/iptables: Fix test panic when execute only one test
a6cb8efd81 vendor: golang.org/x/oauth2 v0.1.0
9d7bd47cb6 vendor: golang.org/x/crypto v0.1.0
d9fb730148 update RootlessKit to v1.1.0
08516af897 vendor: github.com/rootless-containers/rootlesskit v1.1.0
be18f92bf4 hack/validate: drop changelog-related steps
ec1bb21649 cleanup: drop historical CHANGELOG.md
e8ad01594a cleanup: drop .DEREK.yml
4e5c3b82cb vendor: github.com/containerd/containerd v1.6.10
a5979a2106 update containerd binary to v1.6.10
06e4b7d1f8 vendor: github.com/moby/buildkit v0.10.6
40908fca45 fix vendor.mod: add hashicorp/go-multierror as direct dependency
81ccfd44e4 Fix grammar in README.md
6a02afa56f ci(actions): bump outdated actions on Linux
0557569947 ci(actions): migrate to file-based commands
79f9ffd401 vendor: golang.org/x/net v0.1.0
71fa64a272 vendor: golang.org/x/time v0.1.0
4965f19626 vendor: golang.org/x/sync v0.1.0
4bb95eef6f vendor: golang.org/x/sys v0.1.0
67b9f120d5 pkg/archive: switch back to os/exec
b7d242f094 builder/remotecontext/gitutils: switch back to os/exec
6a15f40803 libnetwork_test: improve OptionBoltdbWithRandomDBFile
a0f9caec99 libnetwork_test: stop controllers at end of test
010077ba0f libnet/d/bridge: fix race condition in test case
7b2308980c libnet/d/bridge: fix bridgeInterface.addresses()
c2a087a9f7 libnet/d/bridge: use fresh PortAllocator in tests
1b64f2e28b libnetwork: stop caching global netlink handle
d0096bba21 libnetwork_test: overhaul TestParallel
32ace57479 libnetwork_test: isolate tests from each other
0411336b49 libnetwork_test: pass controller into createTestNetwork
9a0953a0a0 libnet/testutils: spawn goroutines in test OS ctxs
07be7b087d libnetwork_test: remove in-container special case
e2a89b7ad1 libnet/d/bridge: configure store when opts missing
8a20564847 libnet/datastore: stop sharing defaultScopes singleton
8404507b9b libnet/osl: stop assuming caller thread is clean
0f7c9cd27e Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6174d00c03 replace distribution/digestset with opencontainers/go-digest/digestset
bbb1b82232 go.mod: github.com/miekg/dns v1.1.43
d43bc26717 vendor: gotest.tools/v3 v3.4.0
57ba2df970 vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
f39b83e232 libnetwork: fix TestParallel "bad file descriptor"
fe6706a2ce libnetwork: make tests less dependent on others
cea8e9b583 libcontainerd/supervisor: use pkg/pidfile for reading and writing pidfile
14da1bfe40 cmd/dockerd: adjust error message for pidfile changes
7493debe26 pkg/pidfile: implement Read()
7d3e1ad943 pkg/pidfile: Write(): don't automatically create parent directories
81945da0ac pkg/pidfile: Write(): take pid as argument
735e250326 pkg/process: Alive(): fix PID 0, -1, negative values
55d15e9d05 pkg/pidfile, pkg/process: use single implementation for process alive
9d5e754caa move pkg/system: process to a separate package
0040fb93d6 pkg/system: IsProcessZombie() skip conversion to string, use bytes instead
970ad4e3c7 pkg/system: IsProcessZombie() ignore "os.ErrNotExist" errors
8d6da1e100 pkg/system: IsProcessAlive() remove redundant type-cast
2006d9f7d1 cmd/dockerd: Rewrite shutdownDaemon to use context timeout
66a0289081 builder: Don't store context in struct
a181a825c8 daemon/start: Revert passing ctx to ctr.Start
def549c8f6 imageservice: Add context to various methods
57c2545cd5 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1bef9e3fbf Fix containerd task deletion after failed start
be1829f63d daemon/logger: fix godoc
407e3a4552 distribution: Error when pulling OCI artifacts
4386e3f7c0 pkg/parsers/kernel: un-export Utsname
775dcab7a2 pkg/parsers/kernel: remove duplicate Package godoc
8d0dc69027 implement docker system df
952e1e62c5 Sort entries in pkg/namesgenerator
5bc17c3e54 Remove long-deprecated "arm" fallback
3d71555a47 Remove errant "runtime.GOARCH" from debug message
f9d4589976 Update to Go 1.19.3 to address CVE-2022-41716
1e88fe578e pkg/idtools: remove execCmd() utility
3d73d32499 api/types/filters: add output to example
c207947508 integration-cli: DockerPluginSuite: use gotest.tools compare utilities
346a438da8 opts: TestParseLink(): add test-case for legacy format
ad4073edc1 daemon: fix docs for config-default constants
dcd6c1d2e2 container: make path resolution fns Windows-only
2bdc7fb0a1 daemon: archive in a dedicated mount namespace
7d23c50599 integration: test more copy edge-cases
6750d1bac8 daemon: drop Windows-only code from archive_unix.go
4fd91c3f37 daemon: refactor isOnlineFSOperationPermitted
84cbe29d5b daemon: dupe the archive implementation
60ee6f739f Add reusable chroot and unshare utilities
317d3d10b8 Revert "Use real chroot if daemon is running in a user namespace"
5de229644f pkg/chrootarchive: stop reexec'ing before chroot
f2f884a92f pkg/archive: create whiteout temp dir under dest
1f32e3c95d Add integration test for #38995, #43390
6c0aa5b00a Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
22529b81f8 libnetwork: drop InitOSContext()
7fc29c1435 libnetwork/osl: clean up Linux InvokeFunc()
d1e3705c1a libnet/d/overlay: restore thread netns
3e2f0c7a39 libnetwork: fixup thread locking in Linux tests
afa41b16ea libnetwork/testutils: restore netns on teardown
04dc007c76 vendor: github.com/containerd/containerd v1.6.9
ac79a02ace update containerd binary to v1.6.9
4f1d1422de integration: download busybox-w32 from GitHub Release
4fdc1bb1fb builder/remotecontext/git: allow building on go1.18
4f43cb660a skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
27530efedb Validate digest in repo for pull by digest
92eca900b0 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
201fdf67ac gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
0760c6f4e1 gha: buildkit: make checks more readable
cfa2f9a2f2 gha: buildkit: remove "skip-integration-tests" from matrix
67d010bd2c builder: add missing doc comment
94672c89cc builder: fix running git commands on Windows
61acc9939f builder: make git config isolation opt-in
72119f5d9b builder: isolate git from local system
0f7b0897cc builder: explicitly set CWD for all git commands
8deb92d653 builder: modernize TestCheckoutGit
0fc17c42af vendor: github.com/moby/buildkit v0.10.5
51fe170224 daemon: NewDaemon() fix import colliding with local variable
27bd49f4bf daemon: NewDaemon(): replace system.MkdirAll for os.Mkdir where possible
19c5d21e6f daemon: getPluginExecRoot(): pass config
17fb29c9e8 daemon: NewDaemon(): check system requirements early
7ff0f654fb daemon: add TEST_INTEGRATION_USE_SNAPSHOTTER for CI
0a004fd361 daemon: NewDaemon(): log message if containerd snapshotter is enabled
4fa853f5de pkg/fileutils: ReadSymlinkedDirectory: preserve underlying error
24e371c812 pkg/fileutils: improve tests
d4d242ba76 pkg/chrootarchive: gofumpt test files
dee3f716b3 pkg/chrootarchive: replace system.MkdirAll for os.Mkdir
8a8202fcdc pkg/chrootarchive: TestChrootTarUntar fix copy/paste mistake
0955c88c2e pkg/chrootarchive: use t.TempDir()
30e5333ce3 registry: allow "allow-nondistributable-artifacts" for Docker Hub
69f72417f4 pkg/idtools: remove CanAccess(), and move to daemon
ee34a8ac29 pkg/idtools: setPermissions() accept Identity as argument
bca90530fa pkg/idtools: simplify if-statement
d68fa0382d pkg/idtools: don't use system.Stat() on unix
43d6eb7173 pkg/pidfile: remove PIDFile type, rename New() to Write()
dd8983f96c pkg/pidfile: reduce cyclomatic complexity, and small optimisation
4917bcc039 pkg/pidfile: don't ignore all errors when reading file
3ce2a7d026 pkg/pidfile: pkg/pidfile: use strconv instead of fmt.Sprintf(), and unconvert
a9fa147a92 daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw
f058afc861 pkg/system: synchronize mkdirall() with latest os.MkDirAll()
2e66c0b6f0 pkg/system: create SecurityAttribute only once (Windows)
55ceb5047c pkg/system: update volumePath regex to allow returning earlier
cfef1b11e5 pkg/system: compile volume-path regex once, and update GoDoc
264706f804 hack: allow pkg/ to import internal/ packages
3246db3755 fix force remove for cluster volumes
624daf8d9e Change restart delay for Windows service to 15s
3c585e6567 cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
34f459423a Replace overlay2 mount reexec with in-proc impl
6176ab5901 cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
ffcddc908e cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
75bdbf02a6 daemon/graphdriver/windows: Remove() don't use defer() in a loop
90431d1857 daemon/graphdriver/windows: use go-winio.GetFileSystemType()
e35700eb50 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
b43a7ac530 integration/plugin: remove deprecated overlay2.override_kernel_check
de705907a5 client: remove solaris build-tag, simplify and gofumpt
6fd2d4e772 integration: remove uses of pkg/system.Stat()
0242fef89c integration-cli: remove uses of pkg/system.Stat()
402e0b58ca testutil: use filepath.WalkDir instead of filepath.Walk
3db11af44b libnetwork/drivers/overlay: use filepath.WalkDir instead of filepath.Walk
0ee5518e76 oci: use filepath.WalkDir instead of filepath.Walk
ec000ce555 pkg/archive: use filepath.WalkDir instead of filepath.Walk
f595434abc daemon/graphdriver/devmapper: use filepath.WalkDir instead of filepath.Walk
8f1bc0bccc daemon/graphdriver/btrfs: use filepath.WalkDir instead of filepath.Walk
1870d5f4aa builder: use filepath.WalkDir instead of filepath.Walk
d33428f0bf pkg/system: remove solaris left-over
a35bcd01c5 pkg/pidfile: replace uses of windows.Close() with windows.CloseHandle()
89de943401 pkg/pidfile: windows: replace magic consts for golang.org/x/sys consts
11cceea58a pkg/idtools: cleanup errors
8d5b17e939 pkg/idtools: don't use system.MkdirAll() where not needed
2e74e307d0 pkg/idtools: format code with gofumpt
0fc13104e7 pkg/idtools: CanAccess(): reorder checks to allow early return
c7c02eea81 pkg/loopback: use ioctl helpers from x/sys/unix
6742f74e0e vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
1ffdac4502 layer: gofumpt
c3a5641132 layer: use strconv instead of fmt.Sprintf()
1fccb39316 pkg/idtools: remove unused CanAccess() stub for Windows
3b9b5842b3 pkg/idtools: mkdirAs(): move var and comment to where it's used
838fc976c8 integration(-cli): remove some redundant formatting
07b2e4cb79 client: use strconv instead of fmt.Sprintf()
145817a9cf libnetwork: use strconv instead of fmt.Sprintf()
56e64270f3 daemon: use strconv instead of fmt.Sprintf()
533ecb44b1 daemon/logger: use strconv instead of fmt.Sprintf()
7fbf321c2a daemon/graphdriver: use strconv instead of fmt.Sprintf
27aea4956c pkg/idtools: mkdirAs() be more explicit about ignored args on Windows
a19ee75bd1 pkg/system: fix missing assertions and use sub-tests for ChTimes
a9c5a40087 pkg/system: rename some tests to be more descriptive
ab7bc6b7d2 pkg/system: use t.TempDir(), remove some test-utils
7bd051eeec pkg/system: windows: setCTime(): remove redundant conversion
0b8444aa0c pkg/system: rename maxTime and re-use, define unixEpochTime, update GoDoc
2c9684e35c pkg/system: add note about maxTime
247f90c82e pkg/system: move maxTime init() back to Chtimes code
4347080b46 pkg/system: remove Umask() utility
76ce3fd9c9 remove aliases for deprecated pkg/pubsub
89a9d7d650 fix typo
c1729f876c remove aliases for deprecated pkg/fsutils
ce2abb82c0 remove aliases for deprecated pkg/urlutil
a5e1baf3ab vendor: github.com/opencontainers/selinux v1.10.2
1f22b15030 Lock OS threads when exec'ing with Pdeathsig
ab677c41ea pkg/system: unconvert
07b1aa822c pkg/system: move GetExitCode() to pkg/idtools, and un-export
5b6b42162b pkg/fsutils: deprecate in favor of containerd/continuity/fs
26659d5eb8 pkg/directory: remove unused MoveToSubdir() utility
bd6217bb74 pkg/directory: minor refactor of Size()
0a861e68df pkg/directory: Size(): add back type-casts to account for platform differences
618f26ccbc Volume prune: only prune anonymous volumes by default
7b4e4c08b5 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
271243d382 docs: swagger: update description for default builder version
c523d6d25c libnetwork: remove some outdated comments
6f435e0bb9 Update awslogs driver batching documentation.
60ace31be0 libnetwork: sandbox.updateDNS(): use const for file permissions
f0be4d126d libnetwork: use object-literal for some structs
50a7c67363 libnetwork: fix some whitespace formatting
481185fb8a libnetwork/osl: fix GoDoc formatting
4c0e0979b4 Fix live-restore w/ restart policies + volume refs
3c69b9f2c5 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
0249afc523 migrate pkg/pubsub to github.com/moby/pubsub
0440ca07ba pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
f73d72bfdc pkg: replace some README's with GoDoc package descriptions
b44b3193d0 oci.DevicesFromPath() switch to use containerd implementation
c3a6de9ec8 logger/journald: unlock OS threads
e2114731e7 contrib: make dockerd-rootless-setuptool.sh more robust
8a2e1245d4 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
f63dea4337 cmd/dockerd: fix empty-lines (revive)
cd51c9fafb client: fix empty-lines (revive)
f71fe8476a api/server: fix empty-lines (revive)
b04f1416f6 opts: fix empty-lines (revive)
ddb42f3ad2 daemon: fix empty-lines (revive)
05042ce472 daemon/images: fix empty-lines (revive)
0695a910c6 daemon/logger: fix empty-lines (revive)
9d9cca49b4 daemon/graphdriver: fix empty-lines (revive)
0c7b930952 daemon/cluster: fix empty-lines (revive)
4eb9b5f20e plugin: fix empty-lines (revive)
188724a597 volume: fix empty-lines (revive)
e9f1b83a4a testutil: fix empty-lines (revive)
786e6d80ba integration: fix empty-lines (revive)
ecb4ed172b builder: fix empty-lines (revive)
dc0c2340b8 integration-cli: fix empty-lines (revive)
31441778fa api/types: fix empty-lines (revive)
412c650e05 pkg/*: fix "empty-lines" (revive)
8cd244a318 daemon: replace ErrExtractPointNotDirectory with errdefs
c78af57e21 daemon: replace ErrVolumeReadonly with errdefs
0f1eeed5c2 daemon: replace ErrRootFSReadOnly with errdefs
e31e9180cd integration-cli: remove isCpCannotCopyReadOnly utility
3564d03b0f daemon: remove getPortMapInfo alias
ee5d8f43e1 pkg/signal: remove stubs for deprecated package
4a8b3b8bc5 api/types: remove aliases for deprecated Volume and VolumeUsageData
18ca7546f6 pkg/system: remove stubs for deprecated sequential functions
1e13247d6d pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
7f3602f1c9 swagger: update links to logo
5dff494b87 test(pkg/archive): add TestImpliedDirectoryPermissions
cd381aea56 libnetwork: fix empty-lines (revive)
267108e113 libnetwork/config: rename ParseConfigOptions() to New()
4831ff9f27 refactor(pkg/archive): factor out createImpliedDirectories helper
09cc2f9d0e libnetwork/config: inline LoadDefaultScopes()
528428919e libnetwork/config: merge DaemonCfg into Config
571baffd59 libnetwork: remove old integration tests
46f4a45769 libnetwork/config: remove ParseConfig()
7d574f5ac6 libnetwork/config: inline ProcessOptions
a8a8bd1e42 libnetwork/config: remove "Experimental" and "Debug" options
2f1c382a6d golangci-lint: update to v1.49.0
a5be811269 chore(integration): delete outdated TODO comment
6ca4eda960 daemon: clean up vestiges of ContainerFS
9ce2b30b81 pkg/containerfs: drop ContainerFS type alias
e332c41e9d pkg/containerfs: alias ContainerFS to string
95824f2b5f pkg/containerfs: simplify ContainerFS type
be4f4644a8 pkg/containerfs: drop Driver abstraction
7014c0d65d pkg/containerfs: drop PathDriver abstraction
e37a2d1879 pkg/containerfs: delete Archiver, Driver
a7c8fdc55b pkg/containerfs: make ResolveScopedPath a free fn
fd16e003fb pkg/containerfs: Remove NewLocalDriver()
4d48c00f94 pkg/containerfs: Trim away Driver interface part 1
489e7b61bf vendor: github.com/moby/sys/sequential v0.5.0
323ab8ef97 vendor: github.com/github.com/coreos/go-systemd v22.4.0
0af7b4961a client: TestNewClientWithOpsFromEnv(): use sub-tests
1a3d8019d1 Remove the OS check when creating a container
3e1601a980 vendor: gotest.tools v3.3.0
49de15cdcc libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
55fd77f724 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
6d59619d6e ci: reduce cache throttling limits
511a909ae6 container: remove ViewDB and View interfaces, use concrete types
419c47a80a Jenkinsfile: use Ubuntu 20.04 for DCO stage
5e50d002f1 ci: fix branch filter pattern
8596486743 Jenkinsfile: remove unit-validate stage
cd54f31984 Jenkinsfile: remove report bundles creation in unit-validate
a354970eaa Jenkinsfile: remove validation steps moved to GHA
85fa72c599 chore: update supported go version to 1.18+
c0fa14e8af vendor: github.com/armon/go-metrics v0.4.1
1d7ceb2fee vendor: github.com/google/btree v1.1.2
2597a71623 client: ignore kernel-memory on API >= 1.42
9b428a3d33 integration-cli: remove TestDockerSuite func
7b9877bd8a ci(test): report summary output
8ad8c6d887 fix debian sysvinit script fails to restart docker daemon when stopped
7602edfd06 ci: reusable dco workflow
5a98363a92 ci(test): dynamic validate matrix
9b71a46899 Revert "validation: temporarily allows changes in integration-cli"
3cb933db9d Update uses of Image platform fields in OCI image-spec
a73d78f8d5 ci(test): validate job matrix
c7e77dba7f Update some tests for supplementary group permissions
f6b695d2fb use consistent alias for gotest.tools/v3/assert/cmp
9f8bd80487 Jenkinsfile: remove steps moved to GitHub Actions
36688496ca ci: fix .windows workflow name
807c849431 ci(test): send coverage to codecov
4c8af0e2f9 ci(test): upload reports
60864229b8 integration-cli: TestPluginInstallImage broken on GitHub Runner
b8bf60c590 integration-cli: TestEventsOOM* broken on GitHub Runner
df731c745a integration: TestNetworkLoopbackNat is broken on GitHub Runner
2e04be3fb9 ci: gha test workflow for integration and unit test
4dd86a0b33 containerd-integration: prefer error over panic where possible
ff81dc3544 api/server/backend/build: remove Tagger and NewTagger
779a5b3029 ImageService.GetImage(): pass context
1eadbdd9fa Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
58413c15cb update to golang 1.19
9dab00a76e daemon/images: manifestMatchesPlatform() punch through context
518179f63e vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
cba36a064d Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
878906630b Wrap local calls to the content and lease service
0f052eb4f5 namesgenerator: remove Valentina Tereshkova
609d87003a pkg/archive: strip "write" bits again on Windows
cddaa84777 pkg/archive: remove backward compat hack for go < 1.9
306b8c89e8 linting: host:port in url should be constructed with net.JoinHostPort
31fb92c609 linting: gosec: fix or suppress G112, G114 in test code
561a010161 linting: suppress false positive for G404 (gosec)
a33d1f9a7c libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
de4af86e98 daemon: set containerd default snapshotter if none is configured
13f99eb65f vendor: github.com/docker/go-units v0.5.0
1557892c37 api: swagger: add errorDetail to CreateImageInfo
d983fa0ebe api: docs: add errorDetail to CreateImageInfo (v1.42)
8b36298d7f pkg/archive: remove tests for CanonicalTarNameForPath
d59758450b pkg/archive: make CanonicalTarNameForPath and alias for filepath.ToSlash
509f19f611 replace pkg/system Sequential funcs with moby/sys/sequential
a4d081cc17 ci: move buildkit tests to a dedicated workflow
5cfc9c374c validate: address SC2155 (shellcheck)
b9fd2cf605 validate: format vendor script with shfmt
6cef06b940 validate: add yamllint validation
91bb776bb8 validate: yamllint: ignore "truthy value should be one of" warnings
cc2134ea83 validate: yamllint: set locale in config file
f679d8c821 validate: yamllint: use "parsable" output
5f114b65b4 validate: yamllint rename config-file
1d7cd76ee9 Dockerfile: update yamllint to v1.27.1
5e0599cb6e pkg/jsonmessage: export "Stream" interface
2640aec0d7 pkg/system: make IsAbs() platform-agnostic
65fdd10d4e ci(windows): move windows-2019 to another workflow
8e8d9a3650 ci: fix broken workflow
8b748bd326 daemon: stop health checks before deleting task
d0731af939 Unskip TestHealthCheckProcessKilled on Windows
f7277806c8 vendor: github.com/klauspost/compress v1.15.9
d52ffce38f update containerd binary to v1.6.8
bd98bf38e9 update runc to v1.1.4
5dcaad0dd3 Upgrades buildx to 0.9.1
c500d8824d vendor: github.com/moby/buildkit v0.10.4
6217f8001e gha: temporarily pin BuildKit integration test version
a09f8dbe6e daemon: Maintain container exec-inspect invariant
15b8e4a490 integration: synchronize TestWaitConditions
18e322bc7c Lock container when deleting its root directory
6a2f385aea Share logic to create-or-replace a container
4bafaa00aa Refactor libcontainerd to minimize c8d RPCs
57d2d6ef62 Update container OOMKilled flag immediately
b75246202a Stop locking container exec store while starting
92d2e12a4d daemon: getInspectData(): reduce cyclomatic complexity
313a7d716d daemon: getInspectData(): skip graphdriver data for snapshotters
74b84d00b3 integration-cli: add utility to check if snapshotters are enabled
0cbb92bcc5 daemon: capture output of killed health checks
549d24b437 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
ba138d6201 daemon: don't set ignoreImagesArgsEscaped, managed where not needed
e14924570c client: remove deprecated WithDialer() option
7f0cf432e9 client: remove redundant pluginPermissionDenied
c3f0cd7457 client: remove deprecated IsErrUnauthorized, IsErrNotImplemented
23b8fcc74d ci: print Windows daemon event log timestamps
4b84a33217 daemon: kill exec process on ctx cancel
774e25de13 info: add driver-type
d8d990f2e3 daemon: make the snapshotter configurable
e6ee27a541 Allow containerd shim refs in default-runtime
7b7d1132e8 seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
360238e9e1 vendor: github.com/hasicorp/memberlist v0.4.0
b58de39ca7 daemon: complete the "--graph" / "-g" deprecation
d2276ff3f2 daemon: remove daemon.graphdriver
c6eab4077a daemon: info: fillDriverInfo() get driver-name from ImageService
8dd14509d7 ImageService: rename GraphDriverName to StorageDriver
ca52e0a244 vendor: github.com/containerd/containerd v1.6.8
f27b74f0f7 Makefile: update buildx to v0.9.0
327c8fc52f daemon/config: use initialized config in more tests
2d7d81bc46 cmd/dockerd: use initialized config in tests
b28e66cf4f daemon/config: New(): initialize config with platform-specific defaults
9d74c7ab99 daemon: Mount(): use container's driver information for error-message
239d9c5eda daemon: restore(): remove fallback for legacy containers
6ccda5a041 daemon: restore(): remove platform-check (was used for LCOW)
9a849cc83a introduce GetImageOpts to manage image inspect data in backend
a4b28e23cf integration-cli: Correct emptyfs id under c8d
502d3a1fcb containerd/load: Load all platforms
8925f735a1 daemon/config: fix GoDoc for StockRuntimeName
226e07144e cmd/dockerd: initContainerd() use early return
6560e0b136 cmd/dockerd: initContainerD(): clean-up some logs
b6b0b0a05f libcontainerd/supervisor: don't write log-level to config file
bff3e85625 libcontainerd/supervisor: store location of config-file
7a9791f096 libcontainerd/supervisor: store location of pidFile
89ab14a115 libcontainerd/supervisor: make supervisor adjust OOM score for containerd
1d2a669445 libcontainerd/supervisor: use correct logger
2d511f28f2 libcontainerd/supervisor: platformCleanup(): use canonical socket address
7b0bd43a27 libcontainerd/supervisor: remove unused remote.rootDir
6b7e19ff42 libcontainerd/supervisor: remove unused RWMutex
37a241768d cmd/dockerd: fix some minor issues in Windows implementation
df965f51bf pkg/idtools: remove deprecated NewIdentityMapping, UIDS() and GIDS()
9861dd069b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
7797480eb0 daemon, builder: rename variables that collided with imports
acd0aa7d38 api/server/router/image: address some linter warnings
e05f614267 vendor buildkit 8e2d9b9 (v0.10 branch)
4e46d9f963 update containerd binary to v1.6.7
7376bf948b vendor: github.com/containerd/containerd v1.6.7
30295c1750 api: swagger: fix invalid example value (API v1.39-v1.41)
9031de6a9b fix minor code unreachability error
5c96365c94 containerd: Unpack loaded images
50fb999bb1 add image load/save support
43956c1bfc api: swagger: document BuildCache fields (API v1.39-v1.41)
5371c889a8 api: swagger: document BuildCache fields (API v1.42)
e0db8207f3 api: add BuildCache.Parents for API >= v1.42
ebf339628a api: deprecate BuildCache.Parent in API >= v1.42
e0286d7f4e api/types: add missing GoDoc for BuildCache fields.
dc2b34af6a api: swagger: document BuildCache fields.
d4579a983e containerd/pull: Use authorization
340711db3d api: add types/volume.ListOptions for a more consistent API
f1d71f7cc3 Update golang to 1.18.5
051e604adc libcontainerd/supervisor: simplify logic for disabling CRI plugin
d4d5e0ae0c libcontainerd/supervisor: remove unused options
0f5ac7761d api: api/server/router/build: fix API errors
69f077f1aa vendor: github.com/Microsoft/hcsshim v0.9.4
982f09f837 docs: api: add missing "platform" query-arg on create (v1.42)
1000e4ee7d docs: api: add missing "platform" query-arg on create (v1.41)
3dae8e9fc2 api: swagger: add missing "platform" query-arg on create
7ca66e3cfc api: add registry.EncodeAuthConfig
7819811835 api: add registry.DecodeAuthConfig, registry.DecodeAuthConfigBody
e3a7a1c6ae client: linting: fix "invalid auth header" error
360d38adb1 daemon/containerd: use types/registry.AuthConfig
2b7416ef34 testutil, integration: use types/registry.AuthConfig
d817f4dcee registry: use types/registry.AuthConfig
55d1a56826 plugin: use types/registry.AuthConfig
04c339a12b distribution: use types/registry.AuthConfig
a02abca49a daemon: use types/registry.AuthConfig
39f3adc079 daemon/images: use types/registry.AuthConfig
05eacf92fe daemon/cluster: use types/registry.AuthConfig
eaf1a604f2 client: use types/registry.AuthConfig
d8a43399a8 api/server/router: use types/registry.AuthConfig
818ee96219 api/types: move AuthConfig to registry types
857cb260c7 api: add const for 'X-Registry-Auth'
26c65447df Implement ImageDelete for containerd
f4c0ec8ffc integration-cli: Make service process live forever
547da0d575 daemon: support other containerd runtimes (MVP)
31f654a704 Fix file capabilities droping in Dockerfile
ba2ff69894 libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
ef5b279887 logger/journald: implement --follow correctly
e278d3f185 logger/*: fix reading w/ non-monotonic timestamps
342b44bf20 logger/journald: rewrite reader w/o cursors
3e8405aa82 logger/journald: refactor cgo out of business logic
7ff4b64319 logger/journald: simplify control flow
f7fe2c2290 logger/journald: follow the thread-safety rules
12744335c0 logger/journald: simplify build constraints
0e0b300a1c Fix `make BIND_DIR=. DOCKER_SYSTEMD=1 shell`
a61f7abf5a integration-cli: Enable TestGetContainersAttachWebsocket for Windows
1213881712 libnetwork: refactor networkdb test implementation
6cc644abef integration-cli: Remove unnecessary Windows-only code
7bdc0a6291 compute image's shared size
a1bc0a6d79 daemon/containerd: add more TODO's for image list, and reformat
f499c6b9ec Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
669fbed1ac daemon/containerd: validate image filters
4d3b32bf3d add support for since, before, labels images filters
0e9a66d35a logger/journald: remove journald_compat (for systemd < 209)
75577fe7a8 logger/journald: fix SA4011: ineffective break statement
a290f5d04c state/Wait: Fix race when reading exit status
5571d5139b integration: TestWaitRestartedContainer
498803bec9 daemon/restart: Don't mutate AutoRemove when restarting
c492105b8f integration: Add TestContainerWithAutoRemoveCanBeRestarted
67c36d5d6e Windows: Re-create custom NAT networks after restart if missing from HNS
a46ce37d25 compute image VirtualSize
9c8b0b6050 daemon/containerd: split methods to separate files
e4cd1933c6 daemon/containerd: ImageService: rename receiver
91bd9a6642 daemon/containerd: change alias for oci-specs to match existing code
b529fe0995 daemon/images: fix some linting issues
b94f7157ca daemon/images: rename images.go to image_list.go for consistency
046b3fc5dd daemon/images: move SquashImage to its own file
6e0e5d7a31 daemon/images: rename variables that collided with imports
2527e6dd09 daemon/containerd: ImageService: remove unused LookupImage()
7b510fda0c daemon: ImageService: remove unused Map() method
ff3d2eb589 Add Cory Snider (corhere) as maintainer
9464898b47 libnetwork: skip firewalld management for rootless
7d74269c0d Create the containerd image service
4f08346686 fix formatting of "nolint" tags for go1.19
34b8670b1a update golang to 1.18.4
68bf777ece daemon: remove deprecated fields and flags for cluster-advertise
494dadb8a3 api/types: remove deprecated fields for cluster-advertise
f02cdb50be api/types/volume: remove deprecated types
efb1f141a4 api/types/container: remove deprecated types
10829dd222 daemon: NewDaemon(): fail early on non-supported platforms
1de20b2012 API: bump version to 1.43
264b41fb9e docs: add API v1.42
e258d66f17 profiles: seccomp: add syscalls related to PKU in default policy
9cd67df5b2 timestamp: clarify doc for ParseTimestamp
ee230d8fdd client: errors: remove dead code
52c1a2fae8 gofmt GoDoc comments with go1.19
e4e819b49c pkg/parsers/operatingsystem: fix stray import
6668801d40 gofmt files
5b0eb69635 Extract ImageService interface from the image service
98ce26624b maintainers: Add Paweł Gronowski as curator
4336271b57 maintainers: Add Bruno Sousa as curator
ab6b40e5a9 Add github issue forms
b1a6d5388d libnetwork: macvlan: reduce use of const for driver name
aca80d1cda libnetwork: ipvlan: reduce use of const for driver name
dddb4d25d2 libnetwork: macvlan: cleanup parseNetworkGenericOptions
1992190162 libnetwork: macvlan: make configuration.fromOptions a constructor
99bde59229 libnetwork: ipvlan: cleanup parseNetworkGenericOptions
1a1a885423 libnetwork: ipvlan: make configuration.fromOptions a constructor
4e39cdd9bb libnetwork: ipvlan: move validation into parseNetworkOptions()
9f0cb20d9f libnetwork: macvlan: move validation into parseNetworkOptions()
b768d69c04 libnetwork: macvlan: processIPAM(): simplify
5d13b38479 libnetwork: macvlan: processIPAM(): remove unused arg and error return
798021af9f libnetwork: macvlan: set network ID as part of parseNetworkOptions
35cba9b1c9 libnetwork: ipvlan: processIPAM(): simplify
8d067bbdb4 libnetwork: ipvlan: processIPAM(): remove unused arg and error return
a893540b66 libnetwork: ipvlan: set network ID as part of parseNetworkOptions
afeb4c7a6e libnetwork: macvlan: use single ipSubnet type
d3e3d43482 libnetwork: ipvlan: use single ipSubnet type
9fba1514d2 libnetwork: macvlan: clean up some consts
aec4853498 libnetwork: ipvlan: clean up some consts
33121d3d45 introduce Containerd-snapshotter feature flag
2293de1c82 update runc binary to v1.1.3
af7236f85a Check ipt options before looking for ip6t
25345f2c04 AdditionalGids must include effective group ID
7b153b9e28 api: set default "Builder-Version" to "2" (BuildKit) on Linux
70dc392bfa Use hashicorp/go-memdb instead of truncindex
8d5eebcc6e vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
Bumping docker-cli to version v24.0.0, which comprises the following commits:
fb6ae356c vendor: github.com/docker/docker v24.0.0-rc.3
de93c9b26 vendor: github.com/docker/distribution v2.8.2
cafdcf283 cli-plugins/manager: fix deprecation comment of Metadata.Experimental
3768143c2 Update tag docs to clarify name
52ac1a974 docs: update description for docker -H flag
58f37f630 vendor: github.com/docker/docker v24.0.0-rc.2
4f97f5599 vendor: github.com/docker/docker v24.0.0-rc.1.0.20230505222407-8d9a40a82034
0428418d6 vendor: github.com/containerd/containerd v1.6.21
05bf6fff2 vendor: github.com/opencontainers/runc v1.1.7
44fce0706 vendor: github.com/mattn/go-runewidth v0.0.14
fd0621d0f update go to go1.20.4
155f7d9e2 cli/command/system: add utilities for printing
1e89037d7 cli/command/system: prettyInfo: accept Streams
8cfefc6ea cli/command/system: prettyPrintServerInfo: accept Streams
ba7a200f0 cli/command/system: prettyPrintClientInfo: accept Streams
73938cd61 cli/command/system: printSwarmInfo(): accept io.Writer
2d0ea86b0 cli/command/system: use io.Writer for printing warnings
be6f4cd56 cli/command/system: prettyPrintServerInfo: refactor printing "runtimes"
1d70f7cdb cli/command/system: prettyPrintServerInfo: rename var that collided with import
416e55bed github.com/docker/cli/cli/command/system: add BenchmarkPrettyPrintInfo
f233becf9 vendor: github.com/moby/term v0.5.0
bd2c26328 vendor: github.com/docker/docker v24.0.0-rc.1
f02301ab5 remove uses of deprecated VirtualSize field
eeaaf5d01 e2e: Update alpine to 3.17.2
4569378ca e2e: Match notary server version with the main Dockerfile
ec5504a83 test/e2e: Use "frozen" tag to reference test images
41b6ec07c e2e: Skip tests with platform-specific digests on other platforms
962e22c31 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230406225228-75e92ce14ff7
72192c75c vendor: github.com/moby/buildkit v0.11.6
c177e2060 vendor: github.com/creack/pty v1.1.18
e693e7f3b Docs freshness updates
1c1fca4eb docs: update deprecation status of "overlay" and "AuFS"
c180202ce cli/command: remove deprecated Stream types
4e19b8128 docs: update deprecation status for overlay2.override_kernel_check
0dec5d20a volumes: prune: add --all / -a option
ff7f76af7 Handle empty DOCKER_BUILDKIT like unset
271b9667e Swarm: allow additional properties in `build`
e2bfd2199 cli/compose: add schema 3.11 (no changes with 3.10 yet)
6c4c3c23c build(deps): bump docker/bake-action from 2 to 3
8ef8f4131 man/dockerd.8: assorted formatting fixes
e3cb324ed man/dockerd.8: escape asterisks and underscores
a4bcabc7d vendor: github.com/docker/docker v24.0.0-beta.2
0286e36bb vendor: github.com/opencontainers/runc v1.1.6
1f1a6c5a8 vendor: golang.org/x/net v0.8.0
6e2163a71 vendor: golang.org/x/text v0.8.0
551d519b5 vendor: golang.org/x/term v0.6.0
c97c3211b docs: deprecation: OOM-score adjust for the daemon
88be16cb5 cli/command/container: implement `docker run --annotation`
6f415d240 docs: update deprecation status of BuildKit "buildInfo" for v24.0.0
da3871fd8 cli/command/system: printServerWarnings: use client API version from info
be307c579 cli/command/system: prettyPrintServerInfo: move out collecting username
71fde20e1 cli/command/system: prettyPrintServerInfo: simplify username
375b17a31 docker info: don't print "registry" (IndexServerAddress)
b87ed3435 cli/command: deprecate EncodeAuthToBase64
5d856a5d9 cli/command/container: pullImage: use DisplayJSONMessagesToStream utility
b9b98aee5 cli/command/container/create: pullImage(): use RetrieveAuthTokenFromImage
a27acd62b cli/command/container/create: pullImage() remove intermediate vars
e0b47cc2c cli/command/image: imagePullPrivileged: remove intermediate variables
372bb56ad cli/command: replace EncodeAuthToBase64 for registry.EncodeAuthConfig
534bfc230 cli/command/registry: remove intermediate var that collided
5e76d41bf cli/command: ConfigureAuth: fix links to related tickets
68d791e56 cli/command: ConfigureAuth: trim whitespace both for username and password
d0ec8fa5c cli/command: ConfigureAuth: fix terminal state not being restored on error
c846428cb docs: update dockerd usage output for new proxy-options
c730a8eb9 docs/reference: dockerd: remove default oom-score-adjust
c20974361 docs/reference: dockerd: update seccomp flag description
32bc91200 docs/reference: dockerd: use table for env-vars
370174800 docs/reference: use table for proxy env-vars
879e0804a docs/reference: reformat env-vars table, and simplify
4a863df57 docs/reference: remove mention of DOCKER_NOWARN_KERNEL_VERSION
c388fe4de cli: make cobra templates a const
341c843ac ci: remove fetch depth 0 for validate jobs
25ed7847e ci: add validation for generated markdown
04df70025 docs: deprecated: fix version (23.1.0 -> 24.0.0)
5bd359132 cli/command: fix documentation for ResolveAuthConfig
8ee771114 docker info: include Client Version and "platform name"
3347d7b5a cli/command/system: add newClientVersion() utility
3124e779c cli/command/system: clientVersion: make all fields "omitempty"
9202bef4a cli/command/system: add platformInfo type, and fix "omitempty"
5d37acdde cli/command/system:remove versionInfo.ServerOK() utility
5d33b7276 docs: update engine versions in some examples
23bd746c4 fix docker version --format=json not outputting json format
80640bca7 cli/command/system: make default version template a const
46234b82e fix docker info --format=json not outputting json format
1aaa179d9 cli/command/formatter: export JSONFormat const
37e02ff21 docker ps: print warning if both --format and --quiet are set
f52290559 docker ps: always use --quiet, also combined with --format
f36e4b094 cli/command/container: rename vars that collided
c25b8f803 vendor: github.com/spf13/cobra v1.7.0
ca1d0eb90 Update version to v24.0.0-dev
08a794dc0 docs: regenerate markdown docs
37f234fbe scripts/docs/generate-md.sh: fix location of generate code
591bead14 update go to go1.20.3
683e4bf0c Fix plugin completion parsing for plugins using `ShellCompDirectiveFilterFileExt`
808032652 cli/streams: minor refactoring and docs touch-ups
66a1c3bab cli/config/configfile: remove deprecated StackOrchestrator field
328fac3a6 cli/context/docker: remove deprecated Endpoint.TLSPassword
aace828bb cli/flags: remove deprecated CommonOptions, NewCommonOptions
8b418be6d cli/context/store: remove deprecated error-utilities
3405eb1f4 cli/command/formatter: remove deprecated KubernetesEndpoint
817897f89 cli/command: fix deprecation comments for Stream types
89583b92b improve plugins listing performance
fc560038e vendor: github.com/docker/docker v24.0.0-beta.1
e14f5fc1a revert "improve plugins discovery performance"
05cffcbed vendor: github.com/docker/docker 7c93e4a09be1 (v24.0.0-dev)
a36a54d3c vendor: github.com/containerd/containerd v1.6.20
f4b22fb6c vendor: github.com/opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
eb392ff4c cp: Do not block transfer on writing to terminal
7189716d5 replace uses of deprecated api/types.AuthConfig
bfa79fd75 vendor: github.com/docker/docker master (v24.0.0-dev)
e86d2f411 vendor: github.com/moby/buildkit v0.11.5
cd9c6a4c0 vendor: github.com/klauspost/compress v1.16.3
5843fbd5f vendor: github.com/imdario/mergo v0.3.13
149d28963 vendor: golang.org/x/sys v0.6.0
6dca335d0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
4389c966f vendor: github.com/opencontainers/runc v1.1.5
a79828287 update to go1.20.2
b8747b0f9 update golangci-lint to v1.52.2
399ded9b9 internal/test: FakeCli: remove name for unused arg (revive)
20a70cb53 internal/test/notary: remove name for unused arg (revive)
90380d957 cli/connhelper/commandconn: remove name for unused arg (revive)
dd6ede210 cli/config/configfile: mockNativeStore: remove name for unused arg (revive)
7c8680c69 cli/compose/schema: remove name for unused arg (revive)
6355bcee6 cli/compose/convert: fakeClient: remove name for unused arg (revive)
607f290f6 cli/command/volume: remove name for unused arg (revive)
546cf6d98 cli/command/trust: fakeClient: remove name for unused arg (revive)
b32b28041 cli/command/task: fakeClient: remove name for unused arg (revive)
40a51d554 cli/command/swarm: fakeClient: remove name for unused arg (revive)
b0d0b0efc cli/command/stack: fakeClient: remove name for unused arg (revive)
c69640d8c cli/command/service: fakeClient: remove name for unused arg (revive)
5254081fd cli/command/registry: fakeClient: remove name for unused arg (revive)
da3416c02 cli/command/plugin: fakeClient: remove name for unused arg (revive)
625988c3a cli/command/node: fakeClient: remove name for unused arg (revive)
92d9e3bf6 cli/command/network: fakeClient: remove name for unused arg (revive)
316c4992c cli/command/image: fakeClient: remove name for unused arg (revive)
ae5a86bb8 cli/command/image/build: remove name for unused arg (revive)
38ef40ee7 cli/command/idresolver: fakeClient: remove name for unused arg (revive)
45b5676ac cli/command/container: fakeClient: remove name for unused arg (revive)
5563c5a91 cli/command/checkpoint: fakeClient: remove name for unused arg (revive)
9dd012aa5 cli/command/secret: fakeClient: include context in fake client (revive)
66c66bdce cli/command/config: fakeClient: include context in fake client (revive)
ac024a4d8 internal/test/network: FakeClient: embed interface to remove boilerplating
a2d532819 cli/trust: remove name for unused args (revive)
f5fad186c opts: NormalizeCapability(): fix redefinition of the built-in function (revive)
9252fae83 cli/registry/client: AuthorizeRequest(): remove name for unused arg (revive)
92506afd4 cli/command/service/progress: remove name for unused parameter (revive)
c3d7f167b cli/command: RunPrune(): remove name for unused "all" parameter (revive)
b4aff3a14 cli/command/completion: NoComplete(): remove unused argument (revive)
f08252c10 cli/command/stack: deprecate now obsolete wrappers
78c474539 cli/command/context: remove redundant if ...; err != nil check (revive)
be97731f1 cli/command/container: fix redefinition of the built-in function close (revive)
b9a1b0928 cp: Make gocyclo happy
90b7bc36d cp: Reduce number of progress updates
efd011b79 cp: reduce branching in progress printer
e4436853e gha: align stray go 1.19.4 version
9335690a6 Fix grammar in docs by adding omitted word
ccae6e929 cp: Improve tty flashing on progress updates
f27927d93 cp: do not emit progress if stderr is not a term
a39958846 vendor: github.com/docker/docker v23.0.2
c39c711a1 load plugin command stubs when required
62f2358b9 improve plugins discovery performance
bebdb6fa2 ci: enhanced build workflow
bec5d37e9 don't use null values in the bake definition
b201ce5ef e2e: update notary certificates
c6c33380d e2e: increase tests certificates duration (10 years)
d234a81de bake target to generate certs for e2e tets
3ce95c7af Dockerfile: build binary if no target specified
b854eff30 Dockerfile: align go version
0ba820ed0 cli/trust: remove special handling for "plugin" Class
a3d56e7d0 cli/command: remove deprecated ElectAuthServer()
742881fc5 cli/command: fix imports formatting
e3fa7280a cli/command: ElectAuthServer: fix deprecation comment
db827d583 cli/command/volume: suppress err output in tests
aa0aa4a6d Add bash completion for available plugins
8805f8ea2 build(deps): bump actions/setup-go from 3 to 4
e60c748c1 vendor: github.com/moby/buildkit v0.11.4
6c8cc226f vendor: google.golang.org/grpc v1.50.1
d213548bd vendor: golang.org/x/net v0.7.0
3a0d492d1 vendor: golang.org/x/term v0.5.0
f40bbf4f7 vendor: golang.org/x/time v0.3.0
a85537d34 vendor: golang.org/x/text v0.7.0
3e9c6e84c vendor: golang.org/x/sys v0.5.0
ca8783ef4 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
33806760a vendor: github.com/containerd/containerd v1.6.19
71e495aa5 vendor: github.com/docker/docker v23.0.1
74c4ed417 Dockerfile: update buildx to v0.10.4
23da1cec6 update to go1.19.7
012b77952 stack: Change unexpected environment variable error
a47058bbd stack/loader: Ignore cmd.exe special env variables
25ebf0ec9 connhelper: Allow socket path when using SSH
973333448 Don't automatically request size if `--size` was explicitly set to `false`
8bc1aacea docs: Deprecate buildkit's build information
89687d5b3 formatter: Consider empty RepoTags and RepoDigests as dangling
a1953e19b test/cli: Use empty array as empty output of images/json
e636747a1 docs: drop dated comments about graphdrivers
dac79b19a Dockerfile: update buildx to v0.10.3 release notes: https://github.com/docker/buildx/releases/tag/v0.10.3
c2487c299 context: avoid corrupt file writes
e921e103a update to go1.19.6
d2f726d5a changed the container name in docker stats page
de9b47ae6 Fix styling of arguments
0f3959868 ci: fix branch filter pattern
4254cd19b MAINTAINERS: add myself as curator
bbebebaed vendor: github.com/docker/docker v23.0.0
5195db1ff vendor: github.com/containerd/containerd v1.6.16
9b5ceb52b cli/command/container: exit 126 on EISDIR error
56051b84b Fix bad ThrottleDevice path
74973adaa cli/command: embed "Streams" interface in "Cli"
2753057c4 contrib/completion: bash `nounset` mode fixes
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d38fffa859 |
moby: update to v23.0.6
Bumping moby to version v23.0.6-2-gcb3fd005d4, which comprises the following commits:
e94c22cc39 vendor: github.com/docker/distribution v2.8.2
e73310d8c9 update runc binary to v1.1.7
3f0402cb68 update runc binary to v1.1.6
edadebe177 update containerd binary to v1.6.21
14661fc010 vendor: github.com/containerd/containerd v1.6.21
e00f6efb20 Vendor containerd 1.6.x with the readonly mount fix
bd4620f6ee vendor: github.com/containerd/containerd v1.6.20
d06cf03729 vendor: re-vendor to add missing file
cf7742ea7c vendor: opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
382e9ebbf6 vendor: github.com/containerd/ttrpc v1.1.1
e0843f264d Update `github.com/containerd/containerd` to the HEAD of `release/1.6` and vendor
94fcd2d2ef d/graphdriver/copy: support src fs w/o xattr support
70dbd2c870 [23.0] update go to go1.19.9
fe0a414613 Use the image service instead of the reference store for tagging
40ec0eb9fe vendor: github.com/opencontainers/runc v1.1.5
227d3f39a3 daemon: set docker0 subpool as the IPAM pool
c82be35412 libnetwork: clean up inDelete network atomically
ccccb7a170 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
8a6bec6e16 Silence GRPC logs unless our log level is debug
844fd50c67 Added timeout to validate job in github actions
8cec683574 Dockerfile: update xx to 1.2.1
7ff53c3c78 Update delve version
4d57ee692d TestLogs: Increase stop check poll timeout on Windows
838d5ea058 chore: use http constants to replace numbers
61d084593c client: deprecate NewClient properly
28b694d32d awslogs: fix non-blocking log drop bug
3731ce10d4 Fix argument quoting bugs in dockerd-rootless.sh
23774ada04 vendor: github.com/moby/buildkit v0.10.7-0.20230412161310-d52b2d584242
9277e64444 vendor: github.com/ishidawataru/sctp v0.0.0-20230406120618-7ff4192f6ff2
09fbbd5677 docker-rootless-setuptools.sh: improve readability of messages
d3e52936c3 [23.0] update go to go1.19.8
a0a597cbbe [23.0] fix vendor.mod: add hashicorp/go-multierror as direct dependency
063d3a6f1a daemon: let libnetwork assign default bridge IPAM
389e18081d update containerd binary to v1.6.20
348544e6e8 libnet/d/windows: log EnableInternalDNS val after setting it
3923e302a4 update runc binary to v1.1.5
f3946c14fe integration-cli: Enable TestExecStartFails on Windows
b87f7f18b8 libnet/d/overlay: insert the input-drop rule
c6bf3071fe StartWithLogFile: Fix d.cmd race
7f49ca259b TestDaemonRestartKillContainers: Fix loop capture
98cbcb8003 libnet/d/overlay: add BPF-powered VNI matcher
5c5fac2374 libnet/d/overlay: extract VNI match rule builder
c492a22287 libn/d/overlay: enforce encryption on sandbox init
018edb0284 libnet/d/overlay: document some encryption code
Bumping libnetwork to version v0.7.0-dev.3-1872-g3f004841, which comprises the following commits:
dbbf124d Clean up inDelete network atomically
d4d07f4a d/windows: log EnableInternalDNS val after setting it
91f0d508 update maintainers
c5aa85f9 drivers/overlay: insert the input-drop rule
bef66946 drivers/overlay: appease the old deprecated linter
a94fe95b drivers/overlay: add BPF-powered VNI matcher
e0376b6c drivers/overlay: extract VNI match rule builder
f1945d37 drivers/overlay: enforce encryption on sandbox init
97442407 drivers/overlay: document some encryption code
Bumping docker-cli to version v23.0.6-8-g44a7d9537, which comprises the following commits:
a98af2b39 vendor: github.com/docker/distribution v2.8.2
6f353c800 cli-plugins/manager: fix deprecation comment of Metadata.Experimental
63b205048 Update tag docs to clarify name
c76773b19 docs: update description for docker -H flag
c769f2079 [23.0] update go to go1.19.9
802f17488 [23.0] vendor: github.com/docker/docker v23.0.5
498743aed [23.0] vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
fde09d1d8 [23.0] vendor: github.com/opencontainers/runc v1.1.5
3cda7c30c [23.0] vendor: github.com/docker/docker v23.0.4
6c0f9022c Docs freshness updates
17357a778 build(deps): bump docker/bake-action from 2 to 3
2cf68537d ci: remove fetch depth 0 for validate jobs
4a4291708 ci: add validation for generated markdown
f914316a9 fix docker version --format=json not outputting json format
9dfe5a29e cli/command/system: make default version template a const
2c1fde223 fix docker info --format=json not outputting json format
99124087e cli/command/formatter: export JSONFormat const
86e79b55e volumes: prune: add --all / -a option
ada43812d cli/command/volume: suppress err output in tests
c648e0b06 Handle empty DOCKER_BUILDKIT like unset
b6cd3c85b docs: update dockerd usage output for new proxy-options
aa85421ff docs/reference: dockerd: remove default oom-score-adjust
6bc4bf4f0 docs/reference: dockerd: update seccomp flag description
8a35f92ff docs/reference: dockerd: use table for env-vars
2cb152c41 docs/reference: use table for proxy env-vars
623da1997 docs/reference: reformat env-vars table, and simplify
e76242fff docs/reference: remove mention of DOCKER_NOWARN_KERNEL_VERSION
4b4d7e2b4 cli/command: fix documentation for ResolveAuthConfig
e67e5559d docs: deprecated: fix version (23.1.0 -> 24.0.0)
a8e3b4b85 docs: update engine versions in some examples
f88c159c7 [23.0] vendor: github.com/docker/docker v23.0.3
6c052fcda vendor: github.com/docker/docker v23.0.2
079e80889 vendor: golang.org/x/net v0.7.0
ff448ff45 vendor: golang.org/x/term v0.5.0
476933b68 vendor: golang.org/x/time v0.3.0
6131fe9e4 vendor: golang.org/x/text v0.7.0
bbc791ed7 vendor: golang.org/x/sys v0.5.0
dd6f77bba vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
cb338ec97 vendor: github.com/containerd/containerd v1.6.19
ffafb38e3 vendor: github.com/docker/docker v23.0.1
a763e5114 Fix plugin completion parsing for plugins using `ShellCompDirectiveFilterFileExt`
3c7de6454 Fix grammar in docs by adding omitted word
3d0d576af ci: enhanced build workflow
2609bd23f docs: regenerate markdown docs
5fd2c0850 scripts/docs/generate-md.sh: fix location of generate code
5cd7710a0 update go to go1.19.8
209e9c0c1 cp: Do not block transfer on writing to terminal
ce68ce7ae cp: Make gocyclo happy
c28cb35c4 cp: Reduce number of progress updates
948dfa91c cp: reduce branching in progress printer
f813c9639 cp: Improve tty flashing on progress updates
97d91f13a cp: do not emit progress if stderr is not a term
6efc4eacc cli/command: fix deprecation comments for Stream types
c7cdab58d improve plugins listing performance
d93d78588 load plugin command stubs when required
8e38271f2 gha: align stray go 1.19.4 version
f6643207a don't use null values in the bake definition
f381e0842 Dockerfile: align go version
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
55de27c51a |
containerd: update to 1.7.1
Bumping containerd to version v1.7.1-4-g835383b17, which comprises the following commits:
6a5e54c15 Get CDI devices from CRI Config.CDIDevices field
9e60300ea snapshots/testsuite: Rename: fix fuse-overlayfs incompatibility
7b288e2d7 Update ttrpc to v1.2.2
27a0d957b Prepare release notes for v1.7.1
0e0532eb2 bump typeurl to v2.1.1
35e86f96c [transfer] avoid setting limiters when max is 0
f7233811f Update transfer configuration
4510eac00 Fix image pulling with Transfer service
aaa65e8c1 Update hcsshim tag to v0.10.0-rc.8
95ef67e19 Fix umarshal metrics for CRI server
3ef5b689a runtime/shim: fix the nil checkpoint options
021bba28b update go to go1.20.4, go1.19.9
6b3ae0129 Remove entry for container from container store on error
c0e128624 skip TestContainerStartWithAbsRuntimePath if the runtime is v1
aa3c63c15 integration: add container start test using abs runtime path
d2d9eedb1 WithRuntimePath uses the TaskInfo.RuntimePath field
fae4b6223 update runc binary to v1.1.7
571715a9d cri: Vendor v0.27.1
a6d336c1f Fix argsEscaped tests
1bbf98e53 oci: partially restore comment on read-only mounts for uid/gid uses
8f6e86fec go.mod: add comment explaining go-fuzz-headers replace rule
1ece0cb50 go.mod: remove replace for github.com/opencontainers/runtime-tools
e9f962187 go.mod: integration: use non-pre-release of containerd
84393b005 go.mod: integration: move indirect dependencies to the right group
dec2595af update runc binary to v1.1.6
7de8629be cri: Throw an error if idmap mounts is requested
75ac7e0d8 cri: Vendor v0.27.0-beta.0 for mounts uid/gid mappings
54d12b872 oci: Use WithReadonlyTempMount when adding users/groups
624327651 update go to go1.20.3, go1.19.8
1d6641b7c export: add test for WithSkipDockerManifest
0e0d84f6b archive: consistently respect value of WithSkipDockerManifest
9b4935d86 Update sbserver to add noexec nodev and nosuid to /etc/resolv.conf mount bind.
5e953cfa6 Test to ensure nosuid,nodev,noexec are set on /etc/reolv.conf mount.
0aad93f08 Add noexec nodev and nosuid to sandbox /etc/resolv.conf mount bind.
1a64f1b43 ctr/tasks: fix unmarshal the task metrics for cgroups v1
17c52a26d Keep linux mounts for linux sandboxes on Windows/Darwin
d81fc15af update runc binary to v1.1.5
755efbe64 go.mod: github.com/opencontainers/runc v1.1.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c772a5c230 |
cri-tools: update to v1.27.0
We refresh one patch for context, but otherwise no changes.
Bumping cri-tools to version v1.26.0-186-ge73a7139, which comprises the following commits:
00212a72 Bump github.com/docker/docker
f0bf767c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.1
c6ca9164 Bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
8c87ebfb Bump github.com/docker/distribution
b4fdcd33 Add validation when container OOMKilled
43675ad1 Bump github.com/docker/docker
3a32265d Bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4
dd924127 Bump golang.org/x/net from 0.9.0 to 0.10.0
557024a5 Fix build flakiness
b2bee82a Bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3
801d6985 Bump golang.org/x/term from 0.7.0 to 0.8.0
f2e40682 Bump github.com/moby/term
dadffe3e test rm{,i,p} subcommands help message
13dbe21f Add CrictlExpect() to test framework
c714ecd6 Display help when running 'crictl rmi'
4eb6a64b Do not display help when deleting all pods/containers
ce6ad257 Bump github.com/opencontainers/runc from 1.1.6 to 1.1.7
c2c53b77 Bump github.com/docker/docker
deb3bf67 Download release notes tool binary directly
ae7a5eb7 Allow setting CGO_ENABLED
464d6452 Allow overriding GOFLAGS
e64d6e37 Allow providing (additional) custom GO_LDFLAGS
664ef74f Allow setting custom version but use git by default
a2ab0b20 Bump github.com/docker/docker
80bff8b3 Disable dependency gathering for release notes
74092cb9 Vendor Kubernetes v1.27.0
5c6a90bc Update CI badges
5c9d2ee0 Bump github.com/opencontainers/runc from 1.1.5 to 1.1.6
c953d28b golangci-lint: bump to 1.52.2 and fix errors
8d781b8f bump to go 1.20
554b1637 vendor: bump to kube 1.27.0
0497653a Improve text formatting
87cd4d48 Bump golang.org/x/net from 0.8.0 to 0.9.0
e2dc71a2 Bump golang.org/x/term from 0.6.0 to 0.7.0
b8009174 Bump github.com/docker/docker
1f393c4e Bump github.com/onsi/gomega from 1.27.5 to 1.27.6
1dbda3f7 Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ea6911aea4 |
cri-o: update to 1.27.0
Bumping cri-o to version v1.27.0-14-g81ac4cea5, which comprises the following commits:
69a6d6fc2 Fix events generated by Evented PLEG
86cae21ec cgmgr: set sched_load_balance to disabled on sandbox cgroup
47d6d6c82 test/pod.bats: update to current setup
2b7f614e0 cgmgr: create cgroups for systemd cgroup driver for dropped infra pods
b415e72d6 Fix vendoring
6df1f0711 Update c/common to v0.53.0
cd9636049 Download more dependencies instead of vendoring
230e28acb Stop vendoring release notes tool
a2b280af4 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1
cc00b5a62 version: bump to 1.27.0
f5ce04e04 bump cri-tools to 1.27.0
bc45b9021 Fix restore tests
8d6b49db2 build(deps): bump github.com/containers/podman/v4 from 4.4.2 to 4.5.0
a28b1e760 Add unit test for crictl info with verbose
875c3a2b1 Add basic crictl info config with sandboxImage
070668a35 Bump crun to v1.8.4
48bc2bd8d contrib/test/ci: cache runc and crun setup unconditionally
48cf728dd config: mark seccomp-use-default-when-empty as deprecated
a2961f8c3 Bump runc to v1.1.6
efaea1060 high perf hooks: move cpu-quota disable handling to container creation
566aa128a high perf hooks: remove test for cpu load balancing
65d25545e high perf hooks: update cpu load balancing to be cgroup based
cc50b438b test: add cpu load balancing test
cf77d5383 build(deps): bump github.com/onsi/gomega from 1.27.2 to 1.27.6
acd4d30ba Bump Kubernetes to v1.27.0
0087d0ee7 Don't use KUBE-MARK-MASQ in hostport rules
c1c52191d Update template.go
4bc36eabd contrib/test: don't cache the cri-o content
6fcbca13f Don't print `Dependencies` if `crio version` it not verbose
4073764a8 Update nixpkgs
9aa7afcec Update golangci-lint and config
cb70d29b9 internal: fix the release version for release notes
3890a7222 internal/storage.runtimeService.createContainerOrPodSandbox(): read ID maps
b325ad692 Set umask for crio container
28f910952 build(deps): bump github.com/docker/docker
53431c68a runtimeVM: fix Exec(sync) overwriting the initial spec args
400793fab vendor: use go-github to fetch the latest tag from github
e9a932f04 Update bom and use binary directly
4edb9e8ea Fixed signature check for commit-based downloads
a86fbb63e Fixed issues found by shellcheck
0c029c62e Fixed signature check
9e5b533a3 Fixed version substitution
bbe4b04a5 Generate proper signature check
683e4f858 test: run irqbalance tests serially to avoid race condition
e07246fc1 Update crun to v1.8.3 and runc to v1.5.1
fd35a25b1 OCPBUGS-10970: Fix the interrupt mask width when encoding
934765cf6 Update zeitgeist to v0.4.1
5e512d6ef create the metrics endpoint with correct shutdown logic
2b7efa752 build(deps): bump github.com/urfave/cli/v2 from 2.24.4 to 2.25.1
604e7bb6b Remove `scripts/node_e2e_installer`
f1e9c0e8c server: wire support for userns volumes
973c51a7b vendor: bump cri-api
a8bd24c60 test: add irqbalance dependency to CI
ed7bbaf28 contrib/test/ci: disable failing sig-network test for v1.27 release
2184981ea Remove SELinux policy download
e57047253 Add spdx signature and cert to release notes
d7cf40b7e oci: Enable checkpointing of file locks
d719028aa build(deps): bump golang.org/x/sys from 0.5.0 to 0.6.0
c4c583014 go.mod: update CDI dependency to 0.5.4.
11cbc5fd7 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
44d878e93 test: add irqbalance dependency
f74da33a7 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
4bb2e930e Fix get script
f556f5a58 build(deps): bump sigstore/cosign-installer from 2 to 3
244982179 Bump crun to v1.8.1
246c59139 go.mod: update github.com/containerd/nri to 0.3.0.
be2cc0eb5 build(deps): bump cachix/install-nix-action from 19 to 20
11c9401a8 build(deps): bump github.com/onsi/gomega from 1.27.1 to 1.27.2
cd8346082 Pin nix version to fix static builds
f112d497d Add new parameter hostnetwork-disable-selinux
96906a86c [CI] Fix validate-completion
ab8fc4f7d build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
dde09588c build(deps): bump github.com/containers/storage from 1.45.3 to 1.45.4
b769f0dbb build(deps): bump github.com/containers/podman/v4 from 4.4.1 to 4.4.2
9f9fc8a19 build(deps): bump github.com/containerd/containerd
1a488f516 test: Avoid parallel execution
b74d76c79 test: add integration test for irqbalance
e15854938 highperfhooks: add option to configure irqbalance restore
3f9d21c7e Fix cgroup leak for systemd cgroup driver
7af09fa0a unit-test: call UpdateContainerResources when nri enabled
828ad0200 nri: add protection against nil dereference
97b03c338 build(deps): bump github.com/containerd/fifo from 1.0.0 to 1.1.0
b267ed784 highperfhooks: add logs in the irqbalance restore
3774df887 highperfhooks: test: use ExpectWithOffset
e21dd08e9 highperfhook: use internal/.log, not logrus
9ee51c429 docs-validation: try String() for struct field values.
ab3b401b0 internal/oci: don't crash when getting unset Spec.
fa2abd239 test: update NRI BATS test.
1d0ca6fd1 completions, docs: update completions and man pages.
f5afa87ce config,criocli: update NRI deps, configuration.
7cfdaebb6 Update to c/image 5.24.2
a78a7d470 build(deps): bump github.com/onsi/gomega from 1.27.0 to 1.27.1
38455da55 build(deps): bump github.com/psampaz/go-mod-outdated from 0.8.0 to 0.9.0
221a7d0f9 build(deps): bump github.com/onsi/ginkgo/v2 from 2.8.1 to 2.8.3
95f5c57aa build(deps): bump cachix/install-nix-action from 18 to 19
1f909bc5e test/*: add test for checking the /etc folder permission
ef164da82 server: fix the permission issue for `/etc`
7b812d0ab build(deps): bump github.com/containers/buildah from 1.29.0 to 1.29.1
7c21bc7d7 build(deps): bump github.com/onsi/gomega from 1.26.0 to 1.27.0
a091d6c8f build(deps): bump github.com/urfave/cli/v2 from 2.24.3 to 2.24.4
25b06a987 Remove `zeitgeist` from golang dependencies
ba4d53c14 Bump golang dependencies
9216a817a Revert "main: shutdown server only once"
d573f0406 Drop `ENABLE_POD_EVENTS` var from e2e installer script
79a6d4fec Fix roadmap links
b59e59572 test: use container_sleep for idempotent test
169908b5a Update github.com/containers/image to v5.24.0
62173e974 main: shutdown server only once
2f2d152d8 Bump the CRIO commit to the latest main
10a6096f9 Add documentation about how to use tracing
66b6bb3bc Switch to go 1.20 for CI jobs
49cbab56a dependencies: bump conmon to v2.1.6
679bbbf20 Closes #5653 Return ContainerResources in ContainerStatusResponse Signed-off-by: T K Chandra Hasan <t.k.chandra.hasan@ibm.com>
0e7fdcaf0 Update opencontainers/runtime-tools to a6a073817ab0.
4cf3d3774 runtimeVM: ignore missing shim path for deleted containers
c80ae0acd runtimeVM: notify server that the container exited
5d23b6a02 contrib/test/ci/*: refactor CI to build a cache image
7600cb4e3 contrib/test/ci: adds time information to tasks
1fb1771bd go.mod: update github.com/containerd/nri.
905bd1b37 Take MaskedPaths and ReadonlyPaths from checkpointed container
cd406494f build(deps): bump google.golang.org/grpc from 1.52.0 to 1.52.3
9a2dae755 Fix unit tests
1edf19505 build(deps): bump k8s.io/klog/v2 from 2.80.1 to 2.90.0
193ae758c build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
a6a95fe96 Add container stats to the ListPodSandboxStats response
8b3fca69a contrib/cni: provide more context around file selection
f648ff47f build(deps): bump github.com/urfave/cli/v2 from 2.23.7 to 2.24.1
72e54a7de Add additional metadata to inspect and checkpoint
a9d845a6b Update to latest version of checkpointctl
7a8f62f1b Removed pod checkpointing support
f291de93a Make storage unmount less strict
f3ed08a35 build(deps): bump k8s.io/release from 0.14.0 to 0.15.0
1226a601c packit: install wget before build
8e42d5360 build(deps): bump github.com/containers/ocicrypt from 1.1.6 to 1.1.7
d85a8b3cf Update OTEL dependencies
42c00941b Update CNI plugins to v1.2.0
437d7bbf9 GOVERNANCE: add org member tier
8fc1e91d3 CoC: replace with CNCF one
0059f24a6 mention MAINTAINERS file in GOVERNANCE
dbf1ee997 Add MAINTAINERS.md document
700fe6590 README: add roadmap
35cce86f8 add a public roadmap
ae9712231 update GOVERNANCE.md file
5ef5271b3 build(deps): bump mvdan.cc/sh/v3 from 3.5.1 to 3.6.0
34a7052a8 build(deps): bump helm.sh/helm/v3 from 3.10.0 to 3.10.3
1cc037f57 build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.25.0
ff3aa8105 build(deps): bump sigs.k8s.io/release-sdk from 0.9.3 to 0.9.7
f57e36946 build(deps): bump github.com/sigstore/cosign from 1.11.1 to 1.12.0
ae60a2bb6 Update vendor of opencontainers/runtime-tools
47922035d Allow cross building from non-linux
dfc43f7ba Inject release-notes branch from GitHub actions
6d35f54d7 build(deps): bump google.golang.org/grpc from 1.51.0 to 1.52.0
faeaceddb ci-verify: Run get-scripts only on main branch
752bf4d69 Update critest parameters
89029ed43 hostport: use generic Set
dcc7437db server: update streaming interface to take context
1135dbad5 ci: bump cri-o.spec file to 1.26
5ae6ba51d static: bump go version
9e1b732a9 bump to cri-tools 1.26.0
2d0457814 server: add support for new CRI calls
9f1c91349 server/streaming: add context to methods
eb4719b55 vendor: bump kube to 1.26.0
815a426e8 Enable upstream CI to test node e2e with evented pleg feature
404afb004 Bump e2e-installer script with the latest commit
a410ce6e8 mocks: update with new c/storage mocks
43ed06ee4 vendor: bump storage to v1.44.1-0.20230101110555-a747b27fe4ca
fadc73bc7 job get script: fix conflist path
666a9e91c fix inconsistent documentation for default value of
b78350830 build(deps): bump actions/stale from 6 to 7
79b1b5937 Pass tracer to conmon-rs client
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4aa2aadb01 |
runc-docker: update to 1.1.7
Bumping runc to version v1.1.7-2-gb6109acd, which comprises the following commits:
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
c1063b1c runc.keyring: add Akihiro Suda
b0fae8c4 scripts: keyring validate: print some more information
79a52b43 libct/cg/sd: use systemd version when generating dev props
6a806d4d runc.keyring: add Kolyshkin
b6f686f2 keyring: add Aleksa's <cyphar@cyphar.com> signing key
63355bf8 keyring: add Aleksa's <asarai@suse.com> signing key
3bdb63bf keyring: verify runc.keyring has legitimate maintainer keys
853d5e38 scripts: release: add verification checks for signing keys
bd1d5370 release: add runc.keyring file and script
7cd72cc3 VERSION: go back to development
0f48801a VERSION: release 1.1.6
e4ce94e2 libct/cg: add misc controller to v1 drivers
10cfd816 libctr/cgroups: don't take init's cgroup into account
d30d240b tests/int: test for CAP_DAC_OVERRIDE
840b9539 Fix runc run "permission denied" when rootless
165d2323 tests/int: add a "update cpuset cpus range via v2 unified map" test
26a58fdb cgroups: cpuset: fix byte order while parsing cpuset range to bits
8d9d1d25 libct/int: make TestFdLeaks more robust
b66d6d56 libct/int: wording nits
ddbb6d41 libc/int: add/use runContainerOk wrapper
3531cc2d ci: add call to check-config.sh
ed9a0e1d ci/gha: bump actions/cache to v3
7683e508 ci/gha: switch to Go 1.19.x for validate
568d4407 ci/gha: bump golangci-lint to 1.48
1f9e36c0 libct: fixes for godoc 1.19
50f06554 ci: bump golangci-lint to 1.46
77472ef6 libct: fix staticcheck warning
9994fe3f libct: suppress strings.Title deprecation warning
403ea1f0 ci/gha: convert lint-extra from a job to a step
d2c83bdf ci/gha: switch to Go 1.18.x for validate
03a631df ci: switch to golangci-lint 1.45
e5a5522a Add supported Go releases (1.19, 1.20)
3ce12483 Dockerfile: fix build wrt new git
bac06cf6 ci/gha: remove stable: when installing Go
e74040e0 build(deps): bump actions/setup-go from 2 to 3
55462355 Require Go 1.17, bump x/sys and x/net
3ce9c1e2 tests: Fix weird error on centos-9
abd6adde ci: bump shfmt to 3.5.1, simplify CI setup
1a4bf049 man/*sh: fix shellcheck warnings, add to shellcheck
9201794a script/check-config.sh: fix remaining shellcheck warnings
8b976428 shfmt: add more files
b0fbd2f8 script/check-config.sh: fix SC2166 warnings
7f8cb3d6 script/check-config.sh: fix wrap_color usage
f6562f19 [1.1] libct/cg/dev: skip flaky test of CentOS 7
12f2f03f [1.1] runc run: refuse a non-empty cgroup for systemd driver
e618ec36 libct/cg/sd: reset-failed and retry startUnit on UnitExists
931b9bf3 libct/cg/sd: ignore UnitExists only for Apply(-1)
b46ac860 libct/cg/sd: refactor startUnit
822623b6 CHANGELOG.md: move 1.1.5 CVEs to Security section
54cfb25d Makefile: add verify-changelog as release dependency
7b3ac330 verify-changelog: allow non-ASCII
37e586ab CHANGELOG: fix a typo
de0c2277 [1.1] CHANGELOG: fix 1.1.5 git compare link
1fe2ec53 tests/int/mounts: only check non-shadowed mounts
9b8ebe4d tests/int/mount: fix issues with ro cgroup test
17a2d451 VERSION: back to development
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b3fd5097ab |
runc-opencontainers: update to 1.1.7
Bumping runc to version v1.1.7-2-gb6109acd, which comprises the following commits:
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
c1063b1c runc.keyring: add Akihiro Suda
b0fae8c4 scripts: keyring validate: print some more information
79a52b43 libct/cg/sd: use systemd version when generating dev props
6a806d4d runc.keyring: add Kolyshkin
b6f686f2 keyring: add Aleksa's <cyphar@cyphar.com> signing key
63355bf8 keyring: add Aleksa's <asarai@suse.com> signing key
3bdb63bf keyring: verify runc.keyring has legitimate maintainer keys
853d5e38 scripts: release: add verification checks for signing keys
bd1d5370 release: add runc.keyring file and script
7cd72cc3 VERSION: go back to development
0f48801a VERSION: release 1.1.6
e4ce94e2 libct/cg: add misc controller to v1 drivers
10cfd816 libctr/cgroups: don't take init's cgroup into account
d30d240b tests/int: test for CAP_DAC_OVERRIDE
840b9539 Fix runc run "permission denied" when rootless
165d2323 tests/int: add a "update cpuset cpus range via v2 unified map" test
26a58fdb cgroups: cpuset: fix byte order while parsing cpuset range to bits
8d9d1d25 libct/int: make TestFdLeaks more robust
b66d6d56 libct/int: wording nits
ddbb6d41 libc/int: add/use runContainerOk wrapper
3531cc2d ci: add call to check-config.sh
ed9a0e1d ci/gha: bump actions/cache to v3
7683e508 ci/gha: switch to Go 1.19.x for validate
568d4407 ci/gha: bump golangci-lint to 1.48
1f9e36c0 libct: fixes for godoc 1.19
50f06554 ci: bump golangci-lint to 1.46
77472ef6 libct: fix staticcheck warning
9994fe3f libct: suppress strings.Title deprecation warning
403ea1f0 ci/gha: convert lint-extra from a job to a step
d2c83bdf ci/gha: switch to Go 1.18.x for validate
03a631df ci: switch to golangci-lint 1.45
e5a5522a Add supported Go releases (1.19, 1.20)
3ce12483 Dockerfile: fix build wrt new git
bac06cf6 ci/gha: remove stable: when installing Go
e74040e0 build(deps): bump actions/setup-go from 2 to 3
55462355 Require Go 1.17, bump x/sys and x/net
3ce9c1e2 tests: Fix weird error on centos-9
abd6adde ci: bump shfmt to 3.5.1, simplify CI setup
1a4bf049 man/*sh: fix shellcheck warnings, add to shellcheck
9201794a script/check-config.sh: fix remaining shellcheck warnings
8b976428 shfmt: add more files
b0fbd2f8 script/check-config.sh: fix SC2166 warnings
7f8cb3d6 script/check-config.sh: fix wrap_color usage
f6562f19 [1.1] libct/cg/dev: skip flaky test of CentOS 7
12f2f03f [1.1] runc run: refuse a non-empty cgroup for systemd driver
e618ec36 libct/cg/sd: reset-failed and retry startUnit on UnitExists
931b9bf3 libct/cg/sd: ignore UnitExists only for Apply(-1)
b46ac860 libct/cg/sd: refactor startUnit
822623b6 CHANGELOG.md: move 1.1.5 CVEs to Security section
54cfb25d Makefile: add verify-changelog as release dependency
7b3ac330 verify-changelog: allow non-ASCII
37e586ab CHANGELOG: fix a typo
de0c2277 [1.1] CHANGELOG: fix 1.1.5 git compare link
1fe2ec53 tests/int/mounts: only check non-shadowed mounts
9b8ebe4d tests/int/mount: fix issues with ro cgroup test
17a2d451 VERSION: back to development
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
86d7836cd4 |
podman: update to 4.5.0
This version introduces envsubt in the install stage, so we add
gettext-native to our build dependencies.
Bumping libpod to version v4.5.0-14-gc926b12c5, which comprises the following commits:
bc2f0115d [v4.5] system tests: fix race in kube-play read-only
696c2d40d api: fix parsing filters
1fa2eb53b Support systemd optional prefix '-' for devices.
74634a46c *: migrate image registry to registry.k8s.io
0fb11cccd Makefile: include `release-artifacts` target
4d2cf293e [CI:BUILD] Packit: Initial Enablement
da927a75c Bump to v4.5.1-dev
75e3c1257 Release v4.5.0
32a6892b6 [CI:DOCS] Final release notes for v4.5.0
5de2a13e0 Quadlet - do not set log-driver by default
c5e704c82 Return title fields as a list
bf6f58b02 Bump to v4.5.0-dev
f3c365887 Bump to v4.5.0-RC2
15c302533 Final release notes for v4.5.0-RC2
af7c25811 test/e2e: remove unnecessary SkipIfNetavark() calls
80652cacf test/e2e: deduplicated network test
b526839a4 docs: update podman-network-create.1
ed99a979c network create: add --interface-name
676486a85 test/system/252-quadlet.bats: fix flake
1bf5bdc68 Read kube_generate_type from containers.conf
11ac0d03e Debian setup: workaround for runc /dev/char/10:200 bug
38c217a0b pkg/rootless: use catatonit from /usr/libexec/podman
bab95de9a rootless: make sure we only use a single pause process
3b2b1441e Use atomic config writing strategy for podman machine config files
67307603b Add remaining release notes for v4.5.0-RC2
d53871cf1 GHA: Use version instead of SHA for actions
25bc7d161 chore(deps): update dependency containers/automation_images to v20230405
944accffa build: pass env by reference
7edf73dfd test: retrofit error message
b624ad757 test/system: expect 12 char for short id
260bc3ec4 vendor: bump containers/(storage, common, buildah, image)
c5a0d8646 [skip-ci] Update actions/upload-artifact action to v3
d3cf8ccf8 [skip-ci] Update actions/stale action to v8
21fbd5c1a [skip-ci] Update actions/setup-go action to v4
f3971e412 [skip-ci] Update github/issue-labeler action to v2.6
c4e79fc16 Fix up codespell errors
a5dd5c20e Capitalize all uid,gid and id words that are not options in docs
352a41e3a build(deps): bump golang.org/x/tools from 0.7.0 to 0.8.0 in /test/tools
13135f924 Properly remove the service container during kube down
f6a50311c quadlet: add `UserNS` option key
29aac4dfe [CI:DOCS] Release notes for 4.5.0 Part 1
358b46225 "podman pull by digest and list --all" test: untag instead of rmi
f417861e0 build(deps): bump golang.org/x/text from 0.8.0 to 0.9.0
43e6bc9d9 Add renovate.json configuration
cf6f13704 CI: postbuild step: skip under nightly treadmill
db9785ba5 The `--ulimit` option accepts the name with an `RLIMIT_` prefix both upper and lower case
dc9a65e34 test/e2e: use custom network config dir where needed
35165df37 chore: replace `github.com/ghodss/yaml` with `sigs.k8s.io/yaml`
b858c7e7f update completion scripts for cobra v1.7.0
e4aad8f0f libpod.storageService.CreateContainerStorage(): retrieve ID maps
d0ffb8792 Fix invalid pod name and hostname during kube generate
761eca9e7 e2e tests: fix racy flakes
56e7b511e Cirrus: Enable labeling of EC2 VMs
74f9fd8e6 Cirrus: Fix aarch64 clone_script 404 errors
ce8a3a0c1 e2e: GinkgoParallelNode() -> ...Process()
45b1099ef build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
34a5c7f15 build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0
10d2e9fde [CI:DOCS] --creds and registries
9b7fd3936 Copr: fix build deps for /usr/bin/envsubst
80f9f8077 Don't error when removing non-existant env vars
ecce01e61 e2e: healthcheck on stopped container: fix flake
cb7b8fb31 test/apiv2/80-kube.at
e1be7d141 test/apiv2/80-kube.at
1f3ae8a4f system service: do not close Body
bb70d60f1 rm `hack/release.sh`
704901d11 build(deps): bump github.com/onsi/gomega from 1.27.5 to 1.27.6
243ca7c28 add `quadlet -version` flag
7eb78f8a7 add version/rawversion package
53b16ccd2 quadlet: use `Flag` suffix for variables
443f8d89c quadlet: implement `Tmpfs` option
91ca15e96 Bump to v4.5.0-dev
3e48017d8 Bump to 4.5.0-rc1
b7175a366 Update release notes from 4.4 branch
2051e54e0 rootless netns: recover from invalid netns
99ace1908 System tests: unverbosify a flake log
68dbddd97 Add support for secret exists
78e7ade0d Fix Win install task failures with large PR bodies
21febcb5c docs: add `starting` to `HealthCheckResults.Status`
d7051d745 Add support for cgroup_config from containers.conf
4d56292e7 libpod: mount safely subpaths
4f9019406 Support Deployment generation with kube generate
8b6a7c182 Use secret.items to create volume mounts if present
359f40869 [CI:DOCS] fix typo in --systemd option
266cc7882 rootless: drop preexec hook error message
3c9ce3e52 Edit the docker wrapper to use the install prefix
5643058c8 Update podman-for-windows.md
d79519e70 Quadlet: RemapUsers documentation fixes
7f8d5e565 speed up image listing
f0cfbbe2c vendor containers/common@e27c30ee9b
70abb4ae5 fix volume-plugin-test flake
b3e8791f6 Document building Podman remote on Windows hosts
c40eaa242 test/e2e: gpg keep stdout/err attached
f131eaa74 auto-update: stop+start instead of restart sytemd units
b7a8e1285 [CI:DOCS] Improve basic tutorial
be7827c7e Update docs/source/markdown/podman-network.1.md
c335ff241 Add debug to --wait test
81e5bffc3 fix slirp4netns resolv.conf ip with a userns
11e5c2d0f Quadlet: add support for keep-id with mapping values
b5df38c23 Quadlet E2E test - run quadlet as user generator
cdb5b3e99 sqlite: do not `Ping()` after connecting
da96ff6cc Quadlet - treat paths starting with systemd specifiers as absolute
dd8ee49f6 Update docs/source/markdown/podman-kube-play.1.md.in
d85c8d7e8 system tests: use CONTAINERS_CONF_OVERRIDE
51d068ecc implement podman machine set for hyperv
46b826a90 [CI:DOCS] Add network subnets info to network man page
dd8574022 CI: retry the golangci install
92e0efc5d system tests: fix racey sdnotify test
518eafaa3 hyperv: lookup machine on local filesystem first
4c72fc26b fix os.IsNotExist() CI check
7daab31f1 Ensure that SQLite state handles name-ID collisions
64ba82601 macos pkginstaller: do not fail when podman-mac-helper fails
4f3cbf15c podman-mac-helper: install: do not error if already installed
ade46ae6a build(deps): bump github.com/onsi/gomega from 1.27.4 to 1.27.5
e061cb968 Fix a race around SQLite DB config validation
c5fc44582 add CONTAINERS_CONF_OVERRIDE
5f86fae71 vendor containers/common@main
6825740fc docs: minor grammar fix in `--volume` description
b31d9e15f sqlite: do not use shared cache
9be4a525f test: podman checkpoint/restore the latest container
5185e7e39 stats compat API: return "id" lowercase
5f274e45f Run make codespell
3925cd653 Drop SQLite max connections
0fbc32515 sqlite: set connection attributes on open
9f0e0e833 Fix database locked errors with SQLite
cf5df5b80 quadlet tests: skip on RHEL8 rootless
cb24d6c3d Kube Play Doc: Document the support for K8S Secret
6b2101bc7 New ulimit test: bump up minimum nfiles
5447e88b4 logformatter: hide --db-backend, and friendlyize quadlet
5382997e0 Quadlet - add support for relative path in Volume key in .container file
3e405a2fd Add service ctr cleanup to PlayKubeDown
956341543 fix --health-on-failure=restart in transient unit
26d5df77d Quadlet Doc: Suggest the kill operation for HealthOnFailure
5d1342fc5 Quadlet - Add support for health checks configuration in .container files
3ef707def Makefile: allow specifying /lib dir location
a5abbdf1f Fix option --opts -> --opt
0dac214f5 basic hypverv machine implementation
94f905a50 Fix SQLite DB schema migration code
46d165040 Add support for oom_score_adj value from containers.conf
6046832f3 Use default_ulimits field in containers.conf
e2d49fb65 CI: test and confirm DESIRED_DATABASE
1ea62f32f build(deps): bump github.com/openshift/imagebuilder
526dfb893 logformatter: futureproof output filename
e21cf2d8d Vendor in latest containers/(storage, common, image)
686bdcc29 build(deps): bump google.golang.org/protobuf from 1.29.0 to 1.30.0
ba141adce test/system/255-auto-update.bats: add debug logs
c2a24abc0 Revert "Revert "pasta: Use two connections instead of three in TCP range forward tests""
3a59af219 Add information for secret inspect
87e93a7b6 Add format to podman volume ls
b424f8fb0 Add format to podman volume inspect
2555c8034 Add format to podman secret ls
1c4bd4a73 Add format to podman system df
71bcd9891 Add format to podman machine info
581611844 Add format table to podman image inspect man page
e92955245 Cirrus: Store podman machine benchmark data
b3035b9d6 Update Cirrus display names, and fix get-ci-vm script
6142c16a9 Ensure SQLite places uses the runroot in transient mode
2ec11b16a Fix various integration test issues with SQLite state
0f8530b1e Remove test for pod/container name global uniqueness
6e0f11da5 Improve handling of existing container names in SQLite
39fd9aa08 Add SQLite job to CI
7ed1c7fd9 buildah treadmill: also run rootless tests
2b4a27719 build(deps): bump github.com/vbatts/git-validation in /test/tools
3c51b61d7 auto update: return restart error
ea2a0767a fix: Document removing anonymous volumes
408e764b9 events: no duplicates when streaming during a log rotation
82f2f8258 Add search --cert-dir, --creds
bae07b6ea podman-mac-helper: exit 1 on error
7d8d3e810 system service --log-level=trace: support hijack
eed389508 test/system: fix wait_for_port() to wait for bind
2d1f4a8bf cgroupns: private cgroupns on cgroupv1 breaks --systemd
01fd5bcc3 libpod: remove error stutter
4562e61d2 podman events: unhide --stream
7a7af735a test/system/255-auto-update.bats: multiple services
40d0d233e 255-auto-update.bats: turn off rollback where needed
a9d70e9fe Use append() to add elements to a slice
1c08f2eda Revert "pasta: Use two connections instead of three in TCP range forward tests"
ad8a96ab9 Support running nested SELinux container separation
159936a11 bud tests: rootless remote: use correct socket path
6f9f395b3 build(deps): bump github.com/vbauerster/mpb/v8 from 8.2.1 to 8.3.0
bad41f67e compat: /auth: parse server address correctly
6363fb08f docs: fix cmd `set DOCKER_HOST` suggestion
fb4f6f95c test: reenable idmap test
b5a99e081 Must use mountlabel when creating builtin volumes
8d952c01d podman.spec.rpkg: distro conditionals for modulesloaddir
9294b7350 build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.29.0
21651706e podman inspect list network when using --net=host or none
f928cf54a pasta: Re-enable "Local forwarder, IPv4" test, accept NXDOMAIN as response
829e910cd build(deps): bump golang.org/x/tools from 0.6.0 to 0.7.0 in /test/tools
cc7a1e614 CI: Switch to c20230307t192532z-f37f36d12 images
799c20177 Cirrus: Run system & integration tests in parallel
c03cb5718 Update checkpointctl v0.1.0
cb3cda55f Quadlet: add support for setting --ip and --ip6
af7a759e9 build(deps): bump golang.org/x/net from 0.7.0 to 0.8.0
5d039ce22 build(deps): bump golang.org/x/sys from 0.5.0 to 0.6.0
34ff27b81 libpod: avoid nil pointer dereference in (*Container).Cleanup
25dd4d653 [CI:DOCS] Add image not found info to troubleshooting
0498ce3a5 cmd: do not require userns for "version"
2860d55c9 cmd: drop special handling for "scp"
da04469f0 cmd: clarify meaning of ParentNSRequired
0ab4b2614 Fix package restore
0d219486f [CI:DOCS] Fix docs/version-check always requesting updates
e77f370f8 sqlite: add a hidden --db-backend flag
cca65db01 fix: update the default machine value when the previously set default machine is deleted
9ac0d4f1a podman machine: Adjust Chrony makestep config
2c67ff5d4 sqlite: add container short ID to network aliases
38acab832 sqlite: remove dead code
2342d1a31 sqlite: addContainer: add named volume only once
86d12520e sqlite: implement RewriteVolumeConfig
df88f546b sqlite: LookupVolume: fix partial name match
01359457c sqlite: LookupVolume: wrap error
69ff04f73 sqlite: fix type rewriting container config
e87014e44 sqlite: return correct error on pod-name conflict
84b5c6c71 sqlite: RewritePodConfig: update error message
51cf2dd36 test/system/255-auto-update.bats: wait 10 for update to finish
b727f30ac auto-update test: wait for service to be ready
76056c670 Vendor in latest containers/(common, storage, image)
20a42d0e4 play kube: Add --wait option
6babef598 Cirrus: Fix git config permission denied
ccc5aa59a Quadlet: Add support for the Mount key in .container files
6f09dbc2d build(deps): bump github.com/onsi/gomega from 1.27.1 to 1.27.2
77861d6af fix "podman logs --since --follow" flake
6d352dc0b Clarify that replicas are ignored in kubernetes deployment
42540a667 Revert "Skip all pasta tests"
e804ddc5a CI: Switch to c20230223t153813z-f37f36d12 images
070572245 Fix user socket path
1e516e657 pkginstaller: bump Qemu to version 7.2.0
0f92e19e8 Cirrus: Fix bud tests failing to apply patches
1ef8a860c build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
b00874c16 build(deps): bump github.com/coreos/stream-metadata-go
9d93486d2 Vendor in latest containers/storage
d838c08b3 buildah-bud tests: don't sudo when rootless is desired
1f6f81f5d Temporarily disable version-check
5a08ddaec CI: new rootless buildah-bud tests (cron only)
5d2d609be sqlite: fix volume lookups with partial names
495314a16 sqlite: fix container lookups with partial IDs
efe7aeb1d sqlite: fix LookupPod
19c2f37ba sqlite: fix pod create/rm
e32bea937 sqlite: LookupContainer: update error message
565bb5645 sqlite: AddContainerExitCode: allow to replace
4b3b94473 system: add warning when running rootless on cgroupv1
1b1cdfa35 sqlite: fix AllContainers with state
21fcc9070 sqlite: fix "UPDATE TABLE" typos
3f96b0ef2 sqlite: SaveVolume: fix syntax error updating the volumes table
7c11f7e17 sqlite: exit code: allow -1
e74f7bcaf sqlite: fix typo when removing exec sessions
560805ac4 sqlite: AllContainers: fix inner join
8c64c4370 sqlite: move migration after table creation
eeabe975e sqlite: implement pod methods
0d75854c5 Quadlet - use the default runtime
49d560e1b docs: context is not optional for build
03aaa8d35 Fix an incorrect comment on NewSqliteState
eb228f264 Add support for containers.conf database setting
59a54f32d Add support for volume operations to SQLite state
c0b92bdbc Implement exec session handling in SQL database
627a5b73b Various fixes from code review
c4fe0af2a Remove `--namespace` flag from Podman root
89d0ccd19 Get E2E tests to pass
97499a70a Implement network disconnect for SQLite state
939a4ccef Implement Network Connect/Modify for SQLite state
8ab18d848 Fix various lint issues
b4c4f9c93 Some further work on SQLite state
5c2a0670f Remove concept of Namespaces from BoltDB
1b968c607 Add initial SQLite-backed state implementation
93e7cc119 Cirrus: Support runc testing on debian VMs
81f116c59 Skip all pasta tests
642e9ddb8 Skip buildah-bud test
10382d0bc Skip buildx test with VFS podman storage driver
dd51b62b7 Skip 'podman kube --network' test for rootless CGv1
197529f08 Skip tests which fail with CGv1 & runc
5b4f248a8 Skip rootless CGv1 quadlet tests due to issue
e19922d09 Makefile: Define SHELL
43eb35a77 Machine refactor for QEMU/AppleHV
e838ad86b machine refactoring preparations for hyperv
b4471c6ed [CI:BUILD] spec.rpkg: trim dependency list
12153da83 Logs follow-until tests: loosen checks
7d17ec07f [CI:DOCS] Windows/Mac docs link update
7f5fc04b4 Doc update for docker network options via CLI
4b4b423b6 compat API: network create return 409 for duplicate
40f21da0c Apply suggestions to man page
adacd3b12 vendor c/common@852ca05a1f
6a3757b73 Quadlet: Add support for LogDriver key in container and kube units
ebb45b5bd machine refactoring preparations for hyperv
af8d649da libpod: always use direct mapping
9dc730d9f netavark: only use aardvark ip as nameserver
e9942c61d build(deps): bump github.com/container-orchestrated-devices/container-device-interface
79a05ca2b podman logs passthrough driver support --cgroups=split
d7e96536e journald logs: simplify entry parsing
1590c7bf4 podman logs: read journald with passthrough
5754df806 make docs: sanity check for broken man pages
5056bd45f build(deps): bump github.com/vbauerster/mpb/v8 from 8.1.6 to 8.2.0
5fcd2c3fa build(deps): bump github.com/onsi/gomega from 1.27.0 to 1.27.1
2659a3228 kube: rm secret on down, print secret on play
9ce589a4a Fix spacing typo that triggered OCD & indent units in podman-systemd.unit(5)
ad866fecb Update remote_client.md
e74f60dee [CI:DOCS] Add restriction to option README
975b096bc Revert "CI: Temporarily disable all AWS EC2-based tasks"
22a207d45 build(deps): bump github.com/onsi/gomega from 1.26.0 to 1.27.0
c95978f60 kube play: only enforce passthrough in Quadlet
21cddd723 journald: remove initializeJournal()
6dd797844 auto-update: support pods
9622d25be Emergency fix for man pages: check for broken includes
c81fbd5d0 System tests: assert(): friendlier failure messages
761da776a Cirrus: Fix version-check to only run on `main` job
7f8bc6f51 CI: Temporarily disable all AWS EC2-based tasks
6f5ca7318 build(deps): bump github.com/containerd/containerd from 1.6.16 to 1.6.18
6ca857feb volume,container: chroot to source before exporting content
94d4b5278 Support sysctl configs via podman kube play
510e44359 [CI:BUILD] copr: podman.spec.rpkg cleanups
a4677405c quadlet system tests: add useful defaults, logging
96af9e4e0 libpod: support relative positions for idmaps
c7ee65596 Experimental workaround for cdn03.quay.io flake
86e55d0ec system tests: prevent leading tabs
9abe8c785 Introduce podman machine os apply
828708bac create: add support for --group-entry
33a918711 fix != filter in volume prune
4c5b79120 Allow specification of podman --remote build -f -
3d8936642 Quadlet use crun specified in containers.conf
9f84b9b52 build(deps): bump golang.org/x/net from 0.6.0 to 0.7.0
86a4c6b65 Vendor c/image after https://github.com/containers/image/pull/1847
c0f983db8 Don't set hostPort when generating a service
3a9d14d4e man page --format xref: tighten the autocompletion check
0999991b2 add support for limiting tmpfs size for systemd-specific mnts
9a1f47887 build(deps): bump golang.org/x/text from 0.6.0 to 0.7.0
35d16ea02 Add ulimit annotation to kube gen & play
34d412e13 man page xref: validate displayed man page names
7c54d1423 quadlet: add ExecStop
d2ac85f7a install sigproxy before start/attach
191e4ce40 build(deps): bump golang.org/x/tools from 0.5.0 to 0.6.0 in /test/tools
a5ca73225 Fix typos
45fb353f4 Cirrus: Make benchmarks .env file easier to load
a7db3e8d2 Cirrus: Omit functions in env. file
1541ce56c kube play: set service container as main PID when possible
08e13867a Fix typos. Improve language.
9cba0474b events + container inspect test: RHEL fixes
5a9074dab Add ctrName to network alias during kube play
586515976 Run codespell on codebase
c7619c8ae podman image scp: added identity for ssh.Exec
fb54be2e1 [CI:DOCS] Clarify nomap constrains
433413549 [CI:DOCS] man-page checker: include --format (Go templates)
e308ba021 Vendor c/image after https://github.com/containers/image/pull/1816
ec4ab08c8 [CI:DOCS] Cleanup some man pages to display options with line breaks
5ed217409 [CI:DOCS] Add tables to podman-systemd.unit man page
3de409ad6 github: remove prefix from bugs/features
d6dd17fdf Quadlet: Add support for the Secret key in Container group
08d28bfc2 [CI:DOCS] OWNERS: add @ygalblum and @alexlarsson
47df0ca25 build(deps): bump golang.org/x/term from 0.4.0 to 0.5.0
ded44be16 build(deps): bump github.com/vbauerster/mpb/v8 from 8.1.4 to 8.1.6
42c7c59dd Sort quadlet keys to make it easier to read
43b357068 e2e: fix some tests on remote
83367a6b3 kube play: do not teardown unconditionally on error
ac71fa01c Fix typos in comments
6b6458916 Resolve symlink path for qemu directory if possible
90eb834e7 #17363 Fix contradicting documentation podman-commit
1916da596 Fix a potential UID/GID collision in unit tests
93c35a703 golangci-lint: show all errors at once
77e4b1939 update golangci-lint to version 1.51.1
1fd0ce71d [CI:DOCS] events: document journald identifiers
f1352521f Quadlet: exit 0 when there are no files to process
ced934284 network ls: handle removed container
315215020 e2e: adapt play kube test on remote rootless
4e8906c5e docs/podman-systemd.unit: Explicitely mention network & kube units
c4f338eec docs/podman-systemd.unit: Update example to work out of the box
50f72fe7b [CI:BUILD] Cirrus: Fix GraphQL ownerRepository:null error
83a0e97ab Add missing return after errors
84c674fee Revert "Cirrus: Emergency fix to un-stuck PRs"
af0f10a22 pasta: Fix ICMPv6 Echo test, skip it for the moment
859579b6b pasta: Fix ICMP Echo Request (IPv4) test
e33f4e0bc pasta: Use two connections instead of three in TCP range forward tests
acaab3fa7 Add SELinux label types support to quadlet
928d589b7 Add quadlet support for rootfs= containers
6b3073f53 Cirrus: Emergency fix to un-stuck PRs
8441f01be Move clean-binaries before podman-remote in podman-remote-docs target
aa0d4b266 oci: bind mount /sys with --userns=(auto|pod:)
e6904f6f8 Cleanup podman-systemd.unit file
3c3526e53 Install podman-systemd.unit man page, make quadlet discoverable
de63ad704 libpod: allow userns=keep-id for root
9e7f1bea4 system-reset: use CleanCacheMount to clear build cache
5ca35d6de vendor: bump buildah to v1.29.1-0.20230201192322-e56eb25575c7
3ce07b556 system tests: fix noexistent labels test in the remote
a909e2f2d Expose Podman named pipe in Inspect output
2bb4c7cdd libpod: support idmap for --rootfs
ed1f76917 test: adapt test to work on cgroupv1
ed18cdd6e Bump to v4.5.0-dev
b6d91ebfb Update main to reflect v4.4.0 release
be47eeb85 Update from /github.com/vbauerster/mpb/v7 to /v8
8aa377698 hack/perf: cleanup after benchmarks
cb5a9e9f4 hack/perf/bz-2162111.sh: use custom network
a1436d8fb Update bug_report.yaml
02bcf0bac Handle filetype field in kubernetes.yaml files
1a786ea53 hack/perf/bz-2162111.sh: measure stop
bd8937c50 make hack/markdown-preprocess parallel-safe
68371ff55 system tests: fix volume exec/noexec test
f69efb6ee system tests: minor fix for RHEL8 incompatibility
cf7afed05 Cirrus: Use versionable IMAGE_SUFFIX
cbb45a6d4 utils: new conversion method
0e949bfd3 libpod: use GraphRoot for overlay upper dir
427d69cc3 vendor: update containers/storage
d10860a32 Do not mount /dev/tty into rootless containers
5c059e3ed build(deps): bump go.etcd.io/bbolt from 1.3.6 to 1.3.7
9272cabd3 e2e: fix run_staticip_test about no_proxy
2e397120d docs: specify order preference for FROM
15594e92e Fixes port collision issue on use of --publish-all
952049fe5 Support for Windows paths in the source position of the volume mounts
0e3524b8b e2e tests: fix incorrect os.User.Name
7c60a784c Log data that we failed to unmarshal
61db1d5aa [CI:DOCS] hack/perf: add script for BZ 216111
29b346dea container rm: save once for exec removal and state change
8f2a40d81 [DOCS:CI] podman-events: document verbose create events
7e80edd3a e2e: Avoid hard-coding included in quadlet test
2682d3ad9 e2e: Avoid hard-coding ImageCacheDir
387f0ea2f Making gvproxy.exe optional for building Windows installer
74c090973 Add gvproxy to Windows packages
ab8e49d74 Add comment to clarify error handling intention
12d70446f fix #17244: use /etc/timezone where `timedatectl` is missing on Linux
063e273e9 Fix usage of absolute windows paths with --image-path
b0b166b5b Match VT device paths to be blocked from mounting exactly
553e53d44 Fix default handling of pids-limit
069edc3ad Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml)
e51991030 journald: podman logs only show logs for current user
2ab90f2ed journald: podman events only show events for current user
21b82bb68 e2e: Remove the cache with "podman unshare rm" when a rootless user
9db657f40 Clean up more language for inclusiveness
814f7c569 e2e: Remove some directories at SynchronizedAfterSuite
497be102a fix: don't output "ago" when container is currently up and running
b28519fd9 fix: running check error when podman is default in wsl
a745d99a8 fix CI: test fail due to merge
f3d8f6c49 Bump Bulidah to v1.29.0
38d5319f1 e2e: reduce dependency on /tmp for e2e tests
0ffce8181 Bump cirrus image with easier dependency management
e62e42bfa quadlet: Add device support for .volume files
70e8f6243 remote,build: error if containerignore is symlink
c74bdae35 DB: make loading container states optional
6132c4d54 ps: do not sync container
958c94094 Set runAsNonRoot=true in gen kube
7aef3301d WSL refactoring
08186d7dd kube-play: add support for HostIPC in pod.Spec
8850db961 Allow --device-cgroup-rule to be passed in by docker API
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
433e5ea556 |
kernel: the dev kernel is moving to 6.4, so we update our bbappend
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
da0cfbb0b4 |
kubernetes: update to v1.27.1
Bumping kubernetes to version v1.27.1-89-g2555e0f90e8, which comprises the following commits:
2eccb77b2c5 OpenAPI V3 invalid document checks
642ea896178 update for feedback
0457fbc83b3 QueryParamVerifier falls back on invalid v3 document
4cd33af1419 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
ce458add6f1 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
3a56c1e954b Fix CHANGELOG-1.27 correct
fa86f2dce30 benchmark test to evaluate the overhead of podMatchesScopeFunc
4a2e6971f7d Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
c041924dd10 Update podFailurePolicy comments from alpha-level to beta
7f9b3cb8540 Disable NewVolumeManagerReconstruction feature gate
3324649c1c6 releng/go: Update images, dependencies and version to Go 1.20.4
ae2f576d0b7 Bump konnectivity-client to v0.1.2
8af1ce5863d Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
940b6892a1e node: device-plugin: e2e: Additional test cases
4cf566e32e9 node: device-plugin: add node reboot test scenario
d67481c4784 node: device-plugin: e2e: Capture pod admission failure
6f5e29e26c4 node: device-mgr: e2e: adapt to sample device plugin refactoring
367e3d7c471 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d241f58d8c8 node: device-mgr: e2e: Implement End to end test
aac4c15e624 node: device-mgr: Handle recovery by checking if healthy devices exist
b157e1741fb node: device-plugin: e2e: Add test case for kubelet restart
5278e9c02cd node: device-plugin: e2e: Provide sleep intervals via constants
b3c58acde98 node: device-plugin: e2e: Update test description to make it explicit
0cd0fe70aa1 node: device-plugin: e2e: Isolate test to pod restart scenario
ed8d4e1d6a5 node: device-plugin: e2e: Annotate device check with error message
4899dc75dde node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
c81ec1ae5b0 node: device-plugins: e2e: Refactor parse log to return string and error
86904a7c580 Update kube-openapi to fix race
ee1d7eb5d82 Use absolute path instead requestURI in openapiv3 discovery
bbca939c661 proxy/ipvs: don't bind nodeips to the dummy device
ca1e563141a proxy/ipvs: add a GetAllLocalAddressesExcept() function
3ce0c108fe9 Refactors discovery content-type and helper functions
574829867a9 Fix scheduler performance regression after adding plugin metrics
192e9dae316 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
8d0ac2f6f8f Fix bug where CEL listOfString.join() results in unexpected error
57e67a91e39 Fix directory mismatch for `volume.SetVolumeOwnership()`
d0514936f3a Fix stomping os env in kubectl e2e tests
7a6640798a7 KCCM: add providerID predicate to service controller
8221a54e1ee Re-work logic in shouldSyncUpdatedNode
a9d07f4e9ef add log includes pod preemption details
9ef90afb4fb verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
b598ea5c392 deflake: Add retry with timeout to wait for final conditions
2eb94fa835a kubelet: Mark new terminal pods as non-finished in pod worker
ae07535c855 test: Add node e2e to restart kubelet while pod is terminating
861e1935e2a kubelet: Ensure pods that have not started track a pendingUpdate
ae92fd28072 changelog: fix formatting issue with v1.27 change log
95feac5269b Update CHANGELOG/CHANGELOG-1.27.md for v1.27.1
4c9411232e1 Release commit for Kubernetes v1.27.1
2c81ecc2e29 use case-insensitive header keys for http probes
1601bb75401 fix: add the bug as a known issue o on the v1.26 release note
fddf859d6a5 kube-aggregator: correctly use client-go TLS cache with custom dialer
845ba3e3a23 Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
a1f97a35fcb Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
1da781e29b3 Revert "CR conversion: protect from converter input edits"
f564f7a3559 api: encode NamespacedName with lower case in JSON
e827a4b61f5 Do not look at VPC-related resources outside the cluster's network
d662e339aa5 kubelet: Do not mutate pods in the pod manager
d977e7e0dbf Fix azure disk e2e after migration
e599722bc59 vendor: bump runc to 1.1.6
25b061d8202 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
854c72766bb fix: the volume is not detached after the pod and PVC objects are deleted
398e38784e7 Update CHANGELOG/CHANGELOG-1.27.md for v1.27.0
1b4df30b3cd Release commit for Kubernetes v1.27.0
2b6072ba00c Update CHANGELOG/CHANGELOG-1.27.md for v1.27.0-rc.1
ad18954259e CHANGELOG: Update directory for v1.27.0-rc.1 release
80bc6ffd0df Release commit for Kubernetes v1.27.0-rc.1
951f8dcc965 Return error for localhost seccomp type with no localhost profile defined
4e0bc2397da Update publishing-bot rules for release branches to Go 1.19.8
1972dd10058 Do not log entire pod struct while attaching the volume
b19c362bf52 Update distroless-iptables to v0.2.3
2a69edb43de [go] Bump images, dependencies and versions to go 1.20.3
b5dd5f1f3a7 Investigate and fix the handling of Succeeded pods in DaemonSet
873127e3b04 Export WebhookHandler struct because some CCMs use Run directly
735bbc135c3 Clean up formatting
27ad623b3d1 Skip vendor directory when removing generated files
63b5ca69f1f .*: update vendor dir and cleanup
1ad7cacba59 publishing-bot rules for the new release-1.27 branch
b83600de01e fix nil pointer dereference panic for deprecated metrics
5469c198e5d kmsv2: validate encrypt response at DEK generation time
0e9dd5c51d8 Call function that validates in-place vpa resize policy
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
c983ed0076 |
layer.conf: use docker-moby as preferred provider
docker-ce has been deprecated, so switch to docker-moby as the preferred provider. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Christopher Clark
|
d9dc99282f |
xen, xen-tools: Update git recipe revision for gcc 13 compatibility
Adds an update for the python/pygrub environment patch for the current Xen 4.18 development tree. Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Christopher Clark
|
b6214f2445 |
xen, xen-tools: Update 4.17 revision for gcc 13 compatibility
Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Christopher Clark
|
ddc7902703 |
xen, xen-tools: Update 4.16 revision for gcc 13 compatibility
Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Christopher Clark
|
0ca7ee0286 |
rpi, xen, linux-yocto: enable linux-yocto 6.1 for RPi4
Added to the raspberrypi dynamic layer for use with Xen as the default preference for Linux kernel. Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
5a20d44dae |
rpi: linux-yocto: drop 5.15 bbappend
* 5.15 recipe was dropped from oe-core in: https://git.openembedded.org/openembedded-core/commit/?h=master-next&id=e30b37776d16cfd4ce7f79746427ccd95b306059 Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e11b230d0e |
Revert "yq: Redefine do_compile"
This reverts commit
|
||
|
Christopher Clark
|
876a9da42a |
xtf: Supply DEBUG_PREFIX_MAP to the compiler flags
Fixes the QA warnings about package contains reference to TMPDIR. Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |