mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 12:50:22 +02:00
6adc065b5c
790 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
6adc065b5c |
docker-ce: update to 23.0-beta
Bumping docker to version v23.0.0-beta.1-16-g3083236871, which comprises the following commits:
4ee3cc2531 vendor: github.com/containerd/containerd v1.6.12
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
aceed7bf95 |
docker-moby: update to 23.0-beta
Bumping moby to version v23.0.0-beta.1-8-g3fd34324a8, which comprises the following commits:
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Martin Jansa
|
ca3d4571d6 |
tiny: fix typo in Upstream-Status
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
2119189361 |
treewide: bulk update patches with status field
While the insane.bbclass upstream-status check hasn't been made default, users of meta-virtualization may have it enabled in their distros .. so the effect is the same. We must have this tracking tag in out patches. This is a bulk update to add the tag and silence the QA message. As packages get updated, the normal/routine process of checking the patches will continue, and the status fields may (or may not) get more useful. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
31970eba93 |
containerd-opencontainers: fix Upstream-Status format
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
51a891439b |
lxc: update to v5.0.2
We drop a patch that has been merged upsream, and also bump the
version to lxc-5.0.2, which comprises the following commits:
d57173681 Release LXC 5.0.2
17c85aac6 Fix build error on sparc64 caused by using the gold linker
b7dfb1312 lxc-default-cgns apparmor profile: allow overlay mounts
5cde898f4 lxc_user_nic: fix get_mtu() error handling
80553b5b4 Patching an incoming CVE (CVE-2022-47952)
1089f49c5 build: force linking against liblxc
0d2a03118 checkconfig: Fix filesystem capability check
e17429580 checkconfig: Tweak cgroup handling
4ab76611d checkconfig: Tweak layout
0bca9bb18 checkconfig: Hide version if no lxc-start
957e0a5d9 checkconfig: Fix mixed tabs/spaces
4916a16bd src/lxc/meson.build: fix build without apparmor
a330126b4 build: use cc.get_define to detect FS_CONFIG_* symbols
c89be8325 cgroups: fix cgroup layout detection in __initialize_cgroups
7802f3647 state: additional check in lxc_wait to prevent OOB
4b434bf52 cgroups: check snprintf retval in unpriv_systemd_create_scope
0eca8d2ea cgroups: fix buffer out-of-bounds access in enable_controllers_delegation
4ce8345d6 network: always initialize struct nl_handler
28a1591cd apparmor: properly check lxc_strmmap ret value
bd56c89ea github: fix coverity (add libpam-dev)
a1ead0dcc github: fix coverity build
9e35b3ecd conf: ensure mount tunnel is a dependent mount
2ff447445 apparmor: allow shared mounts in start-container.in
58e878209 conf: create separate peer group for container's root
06b4612ee cgroups: only allocate user namespace if we have to
2662959b8 cgroups: use userns_exec_full() during cgroup removal
4dcc84c6b README: remove lgtm
748720ceb tests: lxc-test-reboot: Fix build on ia64
5749e2e20 Unroll IN_SET since the max usage is 2 elements check
495b1bbf4 tests: lxc-test-checkpoint-restore: use trap to do cleanup
77e08b887 tools: lxc-destroy: update help message for --force
9165ff1ed lxc/attach: Detect EACCES from execvp and convert to 126 exit status
011faff36 lxc-attach: Fix lost return codes of spawned processes that are killed
931693945 Update README.md
a6287882e conf: allow cross-device links
8fa6d765a build(deps): bump actions/checkout from 2 to 3
e08c1b740 Update cifuzz.yml
0e9e64db8 fix error message when use tools with -? option
f1a61a5f0 use sd_bus_call_method_async to replace the asyncv one
ca863bd72 tree-wide: split open helpers into open_utils.h
02900160c build: prevent the inclusion of linux/mount.h with a hack
51b8763b0 mount_utils: remove conf.h include
460243f40 mount: move mount utilities from syscall_wrappers.h into mount_utils.h
d5d7e2036 tree-wide: minimize liburing.h inclusion
e2b8776bb meson: fix docbook2x detection
d1dfce9c5 tree-wide: use struct open_how directly
c9bca3326 tree-wide: use struct clone_args directly
497479ea3 tree-wide: wipe direct or indirect linux/mount.h inclusion
02f4bd00f build: check for FS_CONFIG_* header symbol in sys/mount.h
c222fb567 gitignore: Simplify
22e8a7941 meson.build: strip newline for variable assignments
d5600cf76 meson.build: strip newlines from git output
7d6b53438 src/lxc/meson.build: fix the static library path
1d5c7e771 build: drop build-time systemd dependency
59f69162c build: only build init.lxc.static if libcap is statically linkable
062c2d980 build: fix handling of dependancies to fix build on openSUSE
2a9743bba cgroups: fix -Waddress warning
e510d6bd8 build: detect sys/pidfd.h availability
b7b269680 build: detect where struct mount_attr is declared
5313e5048 meson.build: allow explicit distrosysconfdir
0539095ac Release LXC 5.0.1
a1329fefe README: update security mails
315d4cec6 meson.build: fix build without stack-protector
aba631cd4 meson.build: fix build with -Dcapabilities=false
c2ee9b440 src/lxc/log.h: fix STRERROR_R_CHAR_P
d441ee585 meson: add remaining still-in-use config checks
00a79876b Store mount options in correct variable
da0f35646 Fix off-by-one error constructing mount options
31bff905a add check for statvfs
242289b6b start: fix namespace sharing
41f602361 conf: fix append_ttyname()
ea4fd7f85 start: record inherited namespaces earlier to make it available for idmapped rootfs setup
e74fd55bc start: don't overwrite file descriptors during namespace preservation
dcfd75bb4 conf: log file descriptors on error during idmapped mount setup
c3e648700 fix for issue 4026: set broadcast to 0.0.0.0 for /31 and /32
cfcbdb75f use systemd dbus StartTransientUnit for unpriv cgroup2
28726f215 Fix uninitialized read in parse_cap when libcap is not used
d663495ee meson: Generate compile commands by iterating over an array
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5b1e03f314 |
podman-tui: fix build with btrfs-tools 6.1
We'd really prefer to bump the vendor SRCREV and allow the fetcher to bring in the pending change without needing a patch, but there are other API changes that trickle through the code. So we extract just the patch we need, and leave the SRCREV info in the recipe, to document the source. When the upstream updates its vendor/ directory, we can drop this (as the patch will no longer apply) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0b9260ade5 |
buildah: fix build with btrfs-tools 6.1
We'd really prefer to bump the vendor SRCREV and allow the fetcher to bring in the pending change without needing a patch, but there are other API changes that trickle through the code. So we extract just the patch we need, and leave the SRCREV info in the recipe, to document the source. When the upstream updates its vendor/ directory, we can drop this (as the patch will no longer apply) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
67e8b34d99 |
skopeo: fix build with btrfs-progs 6.1
| # github.com/containers/storage/drivers/btrfs | vendor/github.com/containers/storage/drivers/btrfs/btrfs.go:387:11: args.lim.max_referenced undefined (type _Ctype_struct_btrfs_qgroup_limit has no field or method max_referenced) | recipe skopeo-v1.8.0+gitAUTOINC+b95e081162-r0: task do_compile: Failed Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a49eaf45a4 |
buildah: update to 1.28.x
Bumping buildah to version v1.25.0-547-gcfefbb64, which comprises the following commits:
ea9b705a [release-1.28] Bump to c/storage v1.43.1 for s390x sigsegv fix
6eb52c6b [release-1.28] Bump c/image to v5.23.1
5fb010fe version: bump to 1.28.2
69d3fcd8 Stop using ubi8
9fa3c167 Define and use a safe, reliable test image
9136e86e version: bump to v1.28.1
ff08605b copier.Put(): clear up os/syscall mode bit confusion
6bc044dc retrofit, test: ubi8 changed architecture string
79f41e32 Bump to v1.28.0
1deec7ce No longer modify buildah.spec
a53f342f Update for https://github.com/klauspost/pgzip/pull/50
3c5f9886 Update vendor containers/(common,image)
88615e98 [CI:DOCS] Add quay-description update reminder
95bb0250 vendor: bump c/common to v0.49.2-0.20220929111928-2d1b45ae2423
aaba84ff build(deps): bump github.com/opencontainers/selinux
675a7332 Vendor in latest containers/storage
28195ac9 Changing shell list operators from `;` to `&&`
fc458032 Fix buildahimage container.conf permissions regression
9ae09bf7 Set sysctls from containers.conf
e67bb090 refactor: stop using Normalize directly from containerd package
3cd0fa2b config,builder: process variant while populating image spec
899ecaaf Proof of concept: nightly dependency treadmill
31dc089c Run codespell on code
07ab5a5c Check for unset build args after TARGET args
ea81614a pkg/cli: improve completion test
bb285e53 vendor in latest containers/(common,storage,image)
f3a73b70 copier: work around freebsd bug for "mkdir /"
16a4eee2 vendor: update c/image
02d4a6b5 test: run in the host cgroup namespace
5cde04cd vendor: update c/storage
e3d48600 vendor: update c/common
94ab98d6 cmd: check for user UID instead of privileges
4c9fc47f run,build: conflict --isolation=chroot and --network
de9c3841 Fix broken dns test (from merge collision)
8d5d7632 Fix stutters
b4135818 Fix broken command completion
fc3ae53b buildah bud --network=none should have no network
3c092e5e build: support --skip-unused-stages for multi-stage builds
87d4ae88 Prevent use of --dns* options with --net=none
fd14bfe5 buildah: make --cache-ttl=0s equivalent to --no-cache
ac30ed23 parse: make processing flags in --mount order agnostic
deb2d903 Minor test fix for podman-remote
a30b71db build: honor <Containerfile>.containerignore as ignore file
46db0211 Update install.md: Debian 11 (Bullseye) is stable
4e5be719 build(deps): bump github.com/docker/docker
4407875a Use constants from containers/common for finding seccomp.json
4808f3b7 Don't call os.Exit(1) from manifest exist
9f435de8 manifest: add support for buildah manifest exists
0bdbd1a8 Buildah should ignore /etc/crio/seccomp.json
9c147ab8 chroot: Fix cross build break
309f714b chroot: Move isDevNull to run_common.go
363bf9c5 chroot: Fix setRlimit build on FreeBSD
dc49c3cb chroot: Move parseRLimits and setRlimits to run_common.go
b64d8143 chroot: Fix runUsingChrootExecMain on FreeBSD
4d963eb5 chroot: Move runUsingChrootExecMain to run_common.go
0a61e4b2 chroot: Factor out Linux-specific unshare options from runUsingChroot
3b42b515 chroot: Move runUsingChroot to run_common.go
350c509e chroot: Move RunUsingChroot and runUsingChrootMain to run_common.go
188dcc36 chroot: Factor out /dev/ptmx pty implementation
f9814601 chroot: Add FreeBSD support for run with chroot isolation
b9db9574 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
64534a88 Replace k8s.gcr.io/pause in tests with registry.k8s.io/pause
168a39dd build(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1
514ff3dc Cirrus: use image with fewer downloaded dependencies
a96eb0b0 build(deps): bump github.com/opencontainers/runc from 1.1.3 to 1.1.4
9934b173 run: add container gid to additional groups
f46ef3b2 buildah: support for --retry and --retry-delay for push/pull failures
811741fe Makefile: always call $(GO) instead of `go`
010ac5e0 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.2 to 1.8.3
0c4b19ba test: use `T.TempDir` to create temporary test directory
90cf4fc0 mount,cache: enable SElinux shared content label option by default
354f96f6 commit: use race-free RemoveNames instead of SetNames
491ad027 Drop util/util.Cause()
9637a244 cmd/buildah: add "manifest create --amend"
7533aa56 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.1 to 1.8.2
17e6fe01 docs: specify git protocol is not supported for github hosted repo
da4647bd Scrub user and group names from layer diffs
2eb519fb build(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.8
3a6919b5 version: bump to 1.28.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
0510eb580c |
skopeo: update to v1.10.0
Bumping skopeo to version v1.10.0-77-g4517ea0b, which comprises the following commits:
58bccf38 fix(deps): update module golang.org/x/term to v0.4.0
f0c08985 [skip-ci] Update actions/stale action to v7
92e3146a proxy: Fix leak of blobs from containers-storage
960713da vendor: Bump golang.org/x/net to 4.0
b51f8ea2 proxy: Ensure images are closed when proxy is shutting down
9c6cbc94 Add an example for creating a docker-archive file
3eb9d71d proxy: Add GetLayerInfo API
46d48295 fix(deps): update module golang.org/x/term to v0.3.0
3212bbed [skip-ci] GHA/Cirrus-cron: Fix execution order
40ba7a27 Update skopeo-inspect man page example
278be5a5 README: Update example to show newly exposed LayerData
b5ac5349 [CI:BUILD] Cirrus: Migrate OSX task to M1
35532b24 Adds sync with tag suffix example
1af1d9c2 GHA: Add cirrus-cron auto-rerun job
bdf19302 Adds `--append-suffix` flag to sync
563c91a2 fix(deps): update module github.com/containers/storage to v1.44.0
e1fdb4da Cirrus: Add reverse-deps. test to verify proxy ext
d06bf27e [skip-ci] Update actions/stale action to v6
8410bfdd fix(deps): update module golang.org/x/term to v0.2.0
16d4a81b Renovate: Override global no-rebase option
2b55a723 chore(deps): update actions/stale to v3
f968b2a8 fix(deps): update module github.com/spf13/cobra to v1.6.1
fe5c4091 Close a HTTP response body
d5327bce fix(deps): update module golang.org/x/term to v0.1.0
6d3d9a3b fix(deps): update module github.com/stretchr/testify to v1.8.1
5c69302d Update to c/image main branch
6d564d4d bump to v1.11.0-dev
4c0e5650 chore(deps): add renovate.json
757ec5db proxy: Bump semver for OpenImageOptional
08b27fc5 proxy: Add `OpenImageOptional`
9b6f5b6e Add a workaround for public.ecr.aws not implementing tag list at all
632cebd7 Update AWS workaround to use Golang types
ea9aa68b Reorganize the "list tags failed" logic in inspect.go a bit
c476d626 Remove a (skopeo inspect) workaround for IBM Bluemix
fce2cf9c Fix an error message to refer to repo, not a single image
9724da1f Remove a special case for failing to list tags in (skopeo sync)
955a59c8 Update tests for changed error texts
ae50898b Include c/image after https://github.com/containers/image/pull/1299
f3aee25c Fold a long line.
1983173b Remove single-use "wanted" variables
4ccfb033 Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
a4951550 Bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
e021b675 Bump github.com/opencontainers/image-spec from 1.1.0-rc1 to 1.1.0-rc2
5eace407 Bump to v1.10.1-dev
ee60474d Release v1.10.0
7ebff0f5 Update for https://github.com/klauspost/pgzip/pull/50
787e1087 Revert addition of -compat=1.17 to (go mod tidy)
ee84302b Update vendor containers/(common,image)
89ae387d [CI:DOCS] Add quay-description update reminder
feabfac2 Bump github.com/containers/storage from 1.42.0 to 1.43.0
18a95f94 Fix documentation in the default registries.d content.
9b40f0be default.yaml should have all options commented
166b587a warn about ineffective destination opts in sync cmd
0a42c33a document imageDestOptions.warnAboutIneffectiveOptions()
90c50338 warn users about --dest-compress and --dest-decompress misuse
d3ff6e26 warn users about --dest-compress and --dest-decompress misuse
3a05dca9 Don't abort sync if the registry returns invalid tags
d9dfc448 add inspect layersData
ba23a916 Stop using docker/docker/pkg/homedir in tests
4b9ffac0 Update for c/image's update of github.com/gobuffalo/pop
f36752a2 Don't include git commit from a parent directory in the --version output
4e2dee43 Remove unused GIT_BRANCH definition
3450c11a Point at --all in the --preserve-digests option documentation
3a808c2e Talk about "registry repositories" in (skopeo sync) documentation
04169cac Fix looking for commands with GNU make 4.2.1
a99bd0c9 Fix a comment
fa2b15ff Reformat with Go 1.19's gofmt
9e79da5e Fix running tests on macOS
a863a0dc Optimize upstream skopeo container image build
67a4e044 GHA: Re-use identical workflow from buildah repo
e95123a2 Bump to v1.9.3-dev
ca1b0f34 Release v1.9.2
73a668e9 Bump github.com/containers/common from 0.49.0 to 0.49.1
eafd7e55 Cirrus: Update CI VM images to match podman CI
b9cf626e [CI:DOCS] Cirrus: Use the latest imgts container
63dabfcf Bump to v1.9.2-dev
2eac0f46 Release v1.9.1
b7e7374e Stop using deprecated names from c/common/pkg/retry
08846d18 Update to github.com/containers/common v0.49.0
049163fc Update to github.com/containers/image/v5 v5.22.0
b42e6648 Bump github.com/containers/storage from 1.41.0 to 1.42.0
ee477d88 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
f1485781 Bump to v1.9.1-dev
a03cba7c Release v1.9.0
b000ada3 Update for the renames of sigstore to lookaside
f2b4071b Add --sign-by-sigstore-private-key to (skopeo copy) and (skopeo sync)
06be7a15 Vendor in c/image with sigstore support
61593fcc Revert "Change a repo used for sync tests"
62158a58 Vendor unreleased c/image with OCI artifact support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6cb3aa39c4 |
podman-tui: update to v0.7.0
Bumping podman-tui to version v0.7.0-54-gab303cb, which comprises the following commits:
d048d49 Bump actions/stale from 6 to 7
6941d4b Bump github.com/navidys/tvxwidgets from 0.2.0 to 0.3.0
4dc84ff displaying progressbar before container logs command
2d6301a adding published port feature to pod create dialog
2542fc6 removing empty first row in container and network UI create dialogs
efab06c removing command dialog button to imporve usability
2bf1d94 Bump github.com/docker/docker
5c2e001 Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
38971ec UI style update
48a69ec Bump golang.org/x/crypto from 0.3.0 to 0.4.0
a625ea1 Bump actions/checkout from 2 to 3
a86fec2 Bump github.com/containers/buildah from 1.28.1 to 1.28.2
9ca60c7 podman-tui container image build/push to quay.io
d761fbb Bump github.com/containers/buildah from 1.28.0 to 1.28.1
ae29593 Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1
2e38146 Bump actions/setup-python from 3 to 4
e9f743f workflow update - fix unit test failure
a0559a6 github workflow update
06aa9f7 fix build issue (vendor)
d8f9836 Vagrant box update to fc37
f25d471 Bump golang.org/x/crypto from 0.1.0 to 0.3.0
32c3fdc Bump github.com/containers/podman/v4 from 4.3.0 to 4.3.1
310413d Bump github.com/onsi/gomega from 1.24.0 to 1.24.1
cbeb46a Bump github.com/containers/storage from 1.43.0 to 1.44.0
34908fa Bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.0
bad66a1 Bump github.com/navidys/tvxwidgets from 0.1.1 to 0.2.0
5604863 Bump to v0.8.0-dev
864efdb Bump to v0.7.0
8cb0529 cirrus + golangci update
b7b6461 fix vendoring failure
770524b cirrus config update
d7aecf7 config and pdcs update for podman v4.3.0
e03f327 Bump actions/checkout from 2 to 3
825e7ad Bump actions/stale from 1 to 6
4a01ff4 Bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
edd09ae Check for gha updates daily with dependabot
1a78fbf Bump github.com/docker/docker
7cae6c1 Bump github.com/onsi/gomega from 1.22.1 to 1.24.0
a29f3d6 Bump github.com/containers/podman/v4 from 4.2.1 to 4.3.0
95a0b04 static build support
7ef4a18 new feature - container restore
5726afc fix test failure for utils and network disconnect dialog
01a47e6 Bump github.com/spf13/cobra from 1.6.0 to 1.6.1
1a5d851 Bump github.com/BurntSushi/toml from 1.2.0 to 1.2.1
524425e Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0
eefa975 Bump github.com/docker/docker
fe94ca4 new feature - container checkpoint
7f48cad Bump github.com/docker/docker
323170f Bump github.com/onsi/ginkgo/v2 from 2.3.0 to 2.3.1
7132fa3 Bump github.com/onsi/gomega from 1.22.0 to 1.22.1
8d62658 Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.0
804d67c Bump github.com/onsi/gomega from 1.21.1 to 1.22.0
f716b4e Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
999474b Bump github.com/onsi/gomega from 1.20.2 to 1.21.1
7d9e702 Bump github.com/containers/buildah from 1.27.2 to 1.28.0
a2101f5 Bump github.com/containers/common from 0.49.1 to 0.50.1
a763ca1 Bump github.com/containers/buildah from 1.27.1 to 1.27.2
afb6a84 Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0
134fb0d Bump github.com/docker/docker
b304117 Bump github.com/containers/buildah from 1.27.0 to 1.27.1
8bf10e8 Bump to v0.7.0-dev
a823c9e Bump to v0.6.0
0e5f649 Bump github.com/containers/podman/v4 from 4.2.0 to 4.2.1
58c41ff Bump github.com/docker/go-units from 0.4.0 to 0.5.0
05165bf Bump github.com/onsi/gomega from 1.20.1 to 1.20.2
129c846 Bump github.com/onsi/ginkgo/v2 from 2.1.4 to 2.1.6
da069d1 Bump github.com/rs/zerolog from 1.27.0 to 1.28.0
fffd28a new feature - network disconnect
50e88b2 adding approvers to OWNERS file + running codespell
0db8f99 new feature - network connect
95abf3a Bump github.com/containers/podman/v4 from 4.1.1 to 4.2.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Xiangyu Chen
|
e48b934c83 |
criu: avoid textrel QA Issue warning
Fix some of arch such as arm/aarch64 would report QA warning as below: WARNING: criu-3.17.1+gitAUTOINC+d46f40f4ff-r0 do_package_qa: QA Issue: criu: ELF binary /usr/sbin/criu has relocations in .text [textrel] Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d3acb1a378 |
docker/moby: use generic DOCKER_COMMIT in do_compile
do_compile() is shared and shouldn't have been using SRCREV_moby as that is obviously only set in the moby recipe. Switch to using a generic DOCKER_COMMIT variable and set it in both docker_moby and docker-ce. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
3f45dc8e69 |
docker: add seccomp to default packageconfig settings
Much of meta-virt requires seccomp to function properly, so we update docker to match that common default. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9d84fcdc6d |
docker: add mobyproject:moby to CVE_PRODUCT
Add mobyproject:moby to CVE_PRODUCT to reflect where the source is coming from for both docker recipes. We keep the old 'docker' designation for compatibility. It is unclear whether or not we should also be adding the cli and libnetwork to the CVE_PRODUCT. But since they are on different SRCREVs and not vendored, we keep them out for now. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d48db9ba95 |
crun: update to v1.7
Bumping crun to version 1.7-6-gbebd67f, which comprises the following commits:
cb6ae27 handlers: set selinux/apparmor profile
0efbe56 utils: change AppArmor profile for the current proc
f1f286a utils: change SELinux label for the current proc
a1cd1a6 handlers: use only the handler name if needed
40d996e NEWS: tag 1.7
3239c52 container: do not leak container status
ab73033 utils: do not leak error
fe21bee cgroup: fix memory leak
10c1fcc handlers: add an alias field
92e67d7 wasm: check pointers before dereferencing
cc2ab3b copr: enable wasmedge support for f36 and higher
9c5ad48 container: rewrite argv when using a handler
a81b115 libcrun: propagate argc and argv
0a94c5b linux: create parent dir with 0755
5308c49 copr: crun-wasm subpackage
8743809 crun: automatically pick handler from argv0
ddb614b crio,test: skip unrelated seccomp notifier with *
6feeff4 wasmtime: add support for compiling .wat format
7b49b79 NEWS: fill data for old releases
baa98f4 container: use clone3 to join directly the target cgroup
37a438d cgroupfs: implement precreate cgroup
c4af47e cgroup: new interface to preload a cgroup
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6499f37793 |
containerd: update to v1.6.9
Bumping containerd to version v1.6.9-12-g6c41694da, which comprises the following commits:
5af8d89ce overlayutils: Add fastpath for userxattr check
303f608dd [release/1.6] update to Go 1.18.8 to address CVE-2022-41716
3f9f9508d ctr export strictly match default platform
df73acad5 [release/1.6] go.mod: Bump hcsshim to v0.9.5
658490b78 ctr import: strictly match platform
4907b4d72 Migrate away from GitHub actions set-output
f1493f665 Prepare release notes for v1.6.9
346412f5a adding support of CAP_BPF and CAP_PERFMON
99578d1fc Update mailmap
a956d8415 Add logging volume metrics to Containerd CRI plugin
29e2dea50 fix pusher concurrent close channel
8a9d69385 [release/1.6] Stats() shouldn't assume s.container is non-nil
a9adc7938 cri: PodSandboxStatus should tolerate missing task
b66eb726a migrate from k8s.gcr.io to registry.k8s.io
5b40993a5 [release/1.6] upgrade containerd/continuity from v0.2.2 to v0.3.0
f2376e659 Update container with sandbox metadata after NetNS is created
06f82efef archive: validate digests before use
28324c529 [release/1.6] Update go 1.18.7, addresses CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
0aeeb62cb [release/1.6] update golangci-lint to v1.19.0
7db9d1f76 Fix linter warnings
4dc932e62 [release/1.6] gofmt with go1.19
7b8d679ad [release/1.6] integration: remove use of deprecated io/ioutil
926b9c72f retry request on writer reset
b9a35c6af Add integration tests with failpoint
1f29fac48 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
a85709c6c integration: simplify CNI-fp and add README.md
d89a8d223 pkg/failpoint: add FreeBSD link and update pkg doc
b0ce2965a integration: Add injected failpoint testing for RunPodSandbox
a7f956d86 integration: CNI bridge wrapper with failpoint
07c479471 pkg/failpoint: add DelegatedEval API
4a5bc05aa runtime/v2/shim: return if error in load plugin
71ee7de24 bin/ctr,integration: new runc-shim with failpoint
3e2e77849 runtime/v2: manager supports server interceptor
cb935bf49 pkg/failpoint: init failpoint package
2fdfd564c make xattr EPERM non-fatal in createTarFile
89e49609d remotes/docker/config: Skipping TLS verification for localhost
b720be2ce remove stray .zuul.yaml
6b30bc4b4 .zuul: remove the zuul because it is offline
0f7e258ee Set grpc code for unimplemented cri-api methods
fb753e5cd update intergration
6ee5bb7ea bump cri-api
ae8598615 ContainerStatus to return container resources
d3c7e31c8 Update CRI-API
5b44c5271 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
3507d600b update runc binary to v1.1.4
1efd8b947 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
11caf690da |
moby: update to v20.10.21
Bumping moby to version v20.10.21-4-g4ed81ac0e2, which comprises the following commits:
f292bf0f4f distribution: Error when pulling OCI artifacts
0211f9e44d [20.10] update to Go 1.18.8 to address CVE-2022-41716
f99cb8297b integration: download busybox-w32 from GitHub Release
3f9dc25f5c update containerd binary to v1.6.9
87ccd38cea vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
e83e465ae2 [20.10] vendor: github.com/moby/buildkit eeb7b65ab7d651770a5ec52a06ea7c96eb97a249 (v0.8 branch)
9c84417c1b skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
5b5b5c6f13 builder: add missing doc comment
05e25f7892 builder: fix running git commands on Windows
2f3bf18014 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
6699afa549 registry: allow "allow-nondistributable-artifacts" for Docker Hub
4b9902bad4 Validate digest in repo for pull by digest
c0d1188c14 builder: make git config isolation opt-in
9f5f3abcee builder: isolate git from local system
10db4c2db7 builder: explicitly set CWD for all git commands
8816c3c2aa builder: modernize TestCheckoutGit
11bdbf40b9 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
66ddb7f91c Fix live-restore w/ restart policies + volume refs
c003392582 contrib: make dockerd-rootless-setuptool.sh more robust
53313be0f3 docker-rootless-setuptools.sh: use context after install
9c486bd267 swagger: update links to logo
fa17fab895 vendor: github.com/containerd/console v1.0.2
481bee51b5 vendor: github.com/armon/go-metrics v0.4.1
39ba2873e8 vendor: github.com/google/btree v1.1.2
c2755f40cd vendor: github.com/hasicorp/memberlist v0.4.0
5ba3208ec7 Dockerfile: Update Dockerfile syntax, switch to bullseye, add missing libseccomp-dev, remove build pack
6d6a236286 [20.10] Update uses of Image platform fields in OCI image-spec
2570784169 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
fcd4df906b Update some tests for supplementary group permissions
6a0186b357 Wrap local calls to the content and lease service
3d4616f943 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
23c7d84b84 docs: api: adjust ContainerWaitResponse error as optional
3e9e79d134 docs: api: document ImageSummary fields (api v1.39-v1.41)
fdd438ae03 api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
97014a8db5 namesgenerator: remove Valentina Tereshkova
e44d7f735e AdditionalGids must include effective group ID
9e7662e4a7 [20.10] vendor: update containerd to latest of docker-20.10 branch
7dac25a3a9 vendor: update tar-split to v0.11.2
8bd86a0699 update containerd binary to v1.6.8
6c8dd6a6f2 update runc to v1.1.4
418c141e64 [20.10 backport] daemon: kill exec process on ctx cancel
d127287d92 Allow different syscalls from kernels 5.12 -> 5.16
57db169641 seccomp: add support for Landlock syscalls in default policy
7ba8ca042c Update golang to 1.18.5
f2a3c3bcef update golang to 1.18.4
a99c9cd852 update golang to 1.18.3
82939f536b update golang to 1.18.2
ecd1aa081f update golang to 1.18.1
7ba67d05a8 [20.10] vendor: update archive/tar for go 1.18
0bc432241e update golang to 1.18.0
bb95d09f9a staticcheck: ignore "SA1019: strings.Title is deprecated"
a7299ae72c Dockerfile: update golangci-lint v1.44.0
d97fd533cf integration-cli: SA5011: possible nil pointer dereference (staticcheck)
e6aee04a88 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
0523323c28 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
adeb29c64c client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
50361d91a6 registry: trimV1Address(): simplify trimming trailing slash
ae3a9337dd golangci.yml: do not limit max reported issues
9820255a1c golangci.yml: skip some tests
d223f37300 golangci.yml: update regex for ignoring SA1019
ec3bfba89d graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
f2f387b131 daemon: var-declaration: should omit type bool (revive)
2fb7c9fea7 daemon/config: error strings should not be capitalized
fa6954cb98 reformat "nolint" comments
45fa675a35 if-return: redundant if ...; err != nil check (revive)
9e88f8435a daemon/splunk: ignore G402: TLS MinVersion too low for now
2de90ebbe4 pkg/archive: RebaseArchiveEntries(): ignore G110
14b475d091 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
db7b3f4737 unused: ignore false positives
b6de0ca7c5 G601: Implicit memory aliasing in for loop
e8b838e99f gosec: G601: Implicit memory aliasing in for loop
2ddf6e598a gosimple: S1039: unnecessary use of fmt.Sprintf
fadf8bbdff staticcheck: SA4001: &*x will be simplified to x. It will not copy x
7573e32577 client: S1031: unnecessary nil check around range (gosimple)
e738a57a6d daemon/logger/journald: fix linting errors
34f6b94255 gosec: G404: Use of weak random number generator
a6d7b61c8b update containerd binary to v1.6.7
b4ba1ee22f update runc binary to v1.1.3
da8828c4b3 api: swagger: fix invalid example value (API v1.39-v1.41)
9501d91e19 api: swagger: document BuildCache fields (API v1.39-v1.41)
61fdea902b api: swagger: document BuildCache fields.
c77432c889 [20.10] Update golang to 1.17.13
2833aa1e4b docs: api: add missing "platform" query-arg on create (v1.41)
a8c28260ad api: swagger: add missing "platform" query-arg on create
cfdc075b1c Fix file capabilities droping in Dockerfile
2daa6bb6b3 Windows: Re-create custom NAT networks after restart if missing from HNS
903cd53ce4 vendor: libnetwork 0dde5c895075df6e3630e76f750a447cf63f4789
eccaf6d368 [20.10] update golang to 1.17.12
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
Bumping libnetwork to version v0.7.0-dev.3-1841-gdcdf8f17, which comprises the following commits:
5e08bdb1 Revert: Added API to set ephemeral port allocator range
563fe8e2 README.md: repo was moved to https://github.com/moby/moby/tree/master/libnetwork
bea0bcf5 libnetwork: skip firewalld management for rootless
af0c46d8 Apply peformance tuning to new sandboxes also
Bumping docker-cli to version v20.10.21, which comprises the following commits:
3e3677e47d docs: fix links to BuildKit backend
20e3951aeb Remove "experimental" gates around "--platform" in bash completion
75d7ce92a2 fixed the plugin command docker-runc
a12c535f6e [20.10] vendor docker 03df974ae9e6c219862907efdd76ec2e77ec930b (v20.10.20)
d18a3e9004 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
932ca73874 [20.10] vendor: github.com/docker/docker v20.10.19
7d51e65e72 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
1ea8d69d6f feat(docker): add context argument completion
e82aa85741 [20.10] vendor: github.com/docker/docker v20.10.18
e9176b36cc [20.10] vendor: github.com/containerd/continuity v0.3.0
bc6ff39e42 docs/reference: run.md update confusing example name
3fa7a8654f docs: update deprecation status for "overlay2.override_kernel_check"
3e06ce8bfa [20.10] Update go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
93eead45ee Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
45075ea08c [20.10] vendor: github.com/docker/docker v20.10.17
c2dcaecf19 make compose plugin detection in bash completion work on Mac OS
613b9362d0 Detect compose plugin
b30d250320 Add completion for docker-compose plugin
6b25bc3003 fix race condition in TestRemoveForce
bdac0b38d9 Update golang to 1.18.5
c70b01ec1f update golang to 1.18.4
0389090aeb update golang to 1.18.3
c904936d69 update golang to 1.18.2
386d50c2e9 update golang to 1.18.1
990186f2f6 update go to 1.18.0
86bf1966e2 staticcheck: ignore SA1019: strings.Title is deprecated
b3022b91d1 [20.10] Dockerfile.lint: use go install
f14ba9f5d7 [20.10] Dockerfile: use syntax=docker/dockerfile:1
c189c4dbea [20.10] vendor: github.com/json-iterator/go v1.1.12 for Go 1.18 compatibility
0c46ffc1f9 [20.10] vendor: github.com/modern-go/reflect2 v1.0.2 for Go 1.18 compatibility
6be9ce798e [20.10] vendor: github.com/google/gofuzz v1.0.0
779ed309a8 lint: update golangci-lint to v1.45.2
2f7e84be65 linting: fix incorrectly formatted errors (revive)
e628209d9b linting: ignore some "G101: Potential hardcoded credentials" warnings
80a3add604 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
80fb0d575e [20.10] Update golang to 1.17.13
d72bef2088 [20.10] update golang to 1.17.12
7502d7e560 Fix dead external link
308624c3b1 fix: remove asterisk from docker command suggestions
de7d866b6a [20.10] update golang to 1.17.11
240e4b5501 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5d4776bd90 [20.10] update golang to 1.17.10
49e9c2ae3d vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
87a3ce2699 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
1d8abed17d vendor: update x/sys to 134d130e
31dad66f9a [20.10] update golang to 1.17.9
80f673bf9e gofmt with go1.17
3d4cc8e699 [20.10] update remaining files to go1.17.8
30277a8f80 update go to 1.17.8
cfef3a7dc1 docs: deprecated: add entry for "fluent-async-connect" log-opt
53426025c3 [20.10] docs: reformat table for compatibility
573a664639 Describe privileged mode in terms of capabilities
cf0ab7ac4c [20.10] vendor: github.com/docker/distribution v2.8.1
d05fd4ffc8 [20.10] vendor: github.com/opencontainers/image-spec v1.0.2
870f138250 [20.10] vendor: github.com/docker/docker v20.10.14
198d6b8724 [20.10] circleci: update buildx to v0.8.2
55a14ec851 [20.10] update remaining Dockerfiles to go 1.16.15
1f9a0df05a e2e: update docker-compose to 1.29.2
4ae338b33a docs: reference: remove trailing space to fix yaml formatting
6380142dd4 docs: fix (table) formatting, fix some broken links
82f422fcf3 docs: build: fix minor markdown and syntax issues
80fd77903b Update the list of log drivers
c3d4d623c8 Fix CMD --ignored-param1 example
2e82d11def docs: dockerd: fix broken link in blockquote area
738a6ee1cc improve cp documentation with some illustration examples
246d96bb6c docs: unify "docker create" and "docker run" reference
2fd0f17057 docs: add missing documentation for --pull flag
5fa500000a Fix incorrect pointer inputs to `json.Unmarshal`
1e6a8ce2b7 Dockerfile: update xx to 1.1
6f7a931a2d [20.10] use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
91bab605f7 [20.10] vendor.conf: don't use git:// protocol
a282e0c5d2 [20.10] update to go 1.16.15 to address CVE-2022-24921
700364e304 Fix mistake with env var example in docker run docs
62d27c32ff Update WORKDIR command information
c0e952cf04 Fix the (dead) link for docs for Dockerfile syntax reference
04104a04d3 Update dockerd.md
b721998b7b Fixing typo (his --> its)
4065e1246e format create.md table
f1002eb9fb Fix typo
e97c7b240e added missing closing parenthese
aa78937634 Update stats.md add example json output
40fe0573aa Update Ubuntu version number references in push.md
c9737e1c37 docs/daemon: replace deprecated '-g' option for '--data-root'
5c6723d080 Correct device syntax to --gpus
fd5fc61ecd [20.10] Update Go to 1.16.14
3624019d83 [20.10] update Go to 1.16.13
f3ff8e6ad6 [20.10] vendor: compose-on-kubernetes v0.5.0 to remove github.com/golang/glog
ee1ac1b319 fix innocuous data-race when config.Load called in parallel
38dd744a11 [20.10] Update Go to 1.16.12
4de40a825e Update Go to 1.16.11
03fa8f92c8 Update Go to 1.16.10
9989fdbc40 Update most links in docs to use https by default
0e20c1fd21 Update Go to 1.16.9
1c0927a041 Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
82f9d5921b info: skip client-side warning about seccomp profile on API >= 1.42
adb01ca79d docs: some minor touch-ups in checkpoint reference
8260476a06 docs: remove trailing space to fix generated YAML format
bce2e1f953 docs: create.md: typo fix
44064f51c8 Fix typo in documentation - build.md
292779add5 Add doc for BUILDKIT_PROGRESS env var
f2e79b826c docs: use "console" code-hint for shell examples
fa46b92361 docs: rewrite reference docs for --stop-signal and --stop-timeout
400f81089a experimental: fix broken link to "checkpoint and restore" page
c72057c8db docs: move checkpoint/restore doc from experimental into reference
77db97d595 Use private network address for default-address-pools setting in daemon.json example
cbf0d2b7b7 docs: fix some broken anchors
d0014a86bc docs: fix description of restart-delay to mention max (1 minute)
6c1c8b55aa docs: fix search results by filterd is-official
44fdac11f5 Update Go to 1.16.8
061051c24d docs: add missing redirect, and remove /go/experimental redirect
2012fbf111 Update Go to 1.16.7
42d1c02750 registry: ensure default auth config has address
0b924e51fc Update to go1.16.6
6288e8b1ac change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
1e9575e81a cli/config/configfile: various test cleanups
c98e9c47ca Use designated test domains (RFC2606) in tests
8437cfefae context: deprecate support for encrypted TLS private keys
68a5ca859f cli/context: ignore linting warnings about RFC 1423 encryption
8a64739631 Update Dockerfiles to latest syntax, remove "experimental"
1d37fb3027 Deprecate Kubernetes context support
0793f96394 Deprecate Kubernetes stack support
b639ea8b89 Deprecate Kubernetes stack support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
docker-ce: update to v20.10.21
Bumping docker to version v20.10.21-4-g4ed81ac0e2, which comprises the following commits:
f292bf0f4f distribution: Error when pulling OCI artifacts
0211f9e44d [20.10] update to Go 1.18.8 to address CVE-2022-41716
f99cb8297b integration: download busybox-w32 from GitHub Release
3f9dc25f5c update containerd binary to v1.6.9
87ccd38cea vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
e83e465ae2 [20.10] vendor: github.com/moby/buildkit eeb7b65ab7d651770a5ec52a06ea7c96eb97a249 (v0.8 branch)
9c84417c1b skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
5b5b5c6f13 builder: add missing doc comment
05e25f7892 builder: fix running git commands on Windows
2f3bf18014 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
6699afa549 registry: allow "allow-nondistributable-artifacts" for Docker Hub
4b9902bad4 Validate digest in repo for pull by digest
c0d1188c14 builder: make git config isolation opt-in
9f5f3abcee builder: isolate git from local system
10db4c2db7 builder: explicitly set CWD for all git commands
8816c3c2aa builder: modernize TestCheckoutGit
11bdbf40b9 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
66ddb7f91c Fix live-restore w/ restart policies + volume refs
c003392582 contrib: make dockerd-rootless-setuptool.sh more robust
53313be0f3 docker-rootless-setuptools.sh: use context after install
9c486bd267 swagger: update links to logo
fa17fab895 vendor: github.com/containerd/console v1.0.2
481bee51b5 vendor: github.com/armon/go-metrics v0.4.1
39ba2873e8 vendor: github.com/google/btree v1.1.2
c2755f40cd vendor: github.com/hasicorp/memberlist v0.4.0
5ba3208ec7 Dockerfile: Update Dockerfile syntax, switch to bullseye, add missing libseccomp-dev, remove build pack
6d6a236286 [20.10] Update uses of Image platform fields in OCI image-spec
2570784169 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
fcd4df906b Update some tests for supplementary group permissions
6a0186b357 Wrap local calls to the content and lease service
3d4616f943 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
23c7d84b84 docs: api: adjust ContainerWaitResponse error as optional
3e9e79d134 docs: api: document ImageSummary fields (api v1.39-v1.41)
fdd438ae03 api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
97014a8db5 namesgenerator: remove Valentina Tereshkova
e44d7f735e AdditionalGids must include effective group ID
9e7662e4a7 [20.10] vendor: update containerd to latest of docker-20.10 branch
7dac25a3a9 vendor: update tar-split to v0.11.2
8bd86a0699 update containerd binary to v1.6.8
6c8dd6a6f2 update runc to v1.1.4
418c141e64 [20.10 backport] daemon: kill exec process on ctx cancel
d127287d92 Allow different syscalls from kernels 5.12 -> 5.16
57db169641 seccomp: add support for Landlock syscalls in default policy
7ba8ca042c Update golang to 1.18.5
f2a3c3bcef update golang to 1.18.4
a99c9cd852 update golang to 1.18.3
82939f536b update golang to 1.18.2
ecd1aa081f update golang to 1.18.1
7ba67d05a8 [20.10] vendor: update archive/tar for go 1.18
0bc432241e update golang to 1.18.0
bb95d09f9a staticcheck: ignore "SA1019: strings.Title is deprecated"
a7299ae72c Dockerfile: update golangci-lint v1.44.0
d97fd533cf integration-cli: SA5011: possible nil pointer dereference (staticcheck)
e6aee04a88 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
0523323c28 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
adeb29c64c client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
50361d91a6 registry: trimV1Address(): simplify trimming trailing slash
ae3a9337dd golangci.yml: do not limit max reported issues
9820255a1c golangci.yml: skip some tests
d223f37300 golangci.yml: update regex for ignoring SA1019
ec3bfba89d graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
f2f387b131 daemon: var-declaration: should omit type bool (revive)
2fb7c9fea7 daemon/config: error strings should not be capitalized
fa6954cb98 reformat "nolint" comments
45fa675a35 if-return: redundant if ...; err != nil check (revive)
9e88f8435a daemon/splunk: ignore G402: TLS MinVersion too low for now
2de90ebbe4 pkg/archive: RebaseArchiveEntries(): ignore G110
14b475d091 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
db7b3f4737 unused: ignore false positives
b6de0ca7c5 G601: Implicit memory aliasing in for loop
e8b838e99f gosec: G601: Implicit memory aliasing in for loop
2ddf6e598a gosimple: S1039: unnecessary use of fmt.Sprintf
fadf8bbdff staticcheck: SA4001: &*x will be simplified to x. It will not copy x
7573e32577 client: S1031: unnecessary nil check around range (gosimple)
e738a57a6d daemon/logger/journald: fix linting errors
34f6b94255 gosec: G404: Use of weak random number generator
a6d7b61c8b update containerd binary to v1.6.7
b4ba1ee22f update runc binary to v1.1.3
da8828c4b3 api: swagger: fix invalid example value (API v1.39-v1.41)
9501d91e19 api: swagger: document BuildCache fields (API v1.39-v1.41)
61fdea902b api: swagger: document BuildCache fields.
c77432c889 [20.10] Update golang to 1.17.13
2833aa1e4b docs: api: add missing "platform" query-arg on create (v1.41)
a8c28260ad api: swagger: add missing "platform" query-arg on create
cfdc075b1c Fix file capabilities droping in Dockerfile
2daa6bb6b3 Windows: Re-create custom NAT networks after restart if missing from HNS
903cd53ce4 vendor: libnetwork 0dde5c895075df6e3630e76f750a447cf63f4789
eccaf6d368 [20.10] update golang to 1.17.12
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
Bumping libnetwork to version v0.7.0-dev.3-1841-gdcdf8f17, which comprises the following commits:
5e08bdb1 Revert: Added API to set ephemeral port allocator range
563fe8e2 README.md: repo was moved to https://github.com/moby/moby/tree/master/libnetwork
bea0bcf5 libnetwork: skip firewalld management for rootless
af0c46d8 Apply peformance tuning to new sandboxes also
Bumping docker-cli to version v20.10.21, which comprises the following commits:
3e3677e47d docs: fix links to BuildKit backend
20e3951aeb Remove "experimental" gates around "--platform" in bash completion
75d7ce92a2 fixed the plugin command docker-runc
a12c535f6e [20.10] vendor docker 03df974ae9e6c219862907efdd76ec2e77ec930b (v20.10.20)
d18a3e9004 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
932ca73874 [20.10] vendor: github.com/docker/docker v20.10.19
7d51e65e72 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
1ea8d69d6f feat(docker): add context argument completion
e82aa85741 [20.10] vendor: github.com/docker/docker v20.10.18
e9176b36cc [20.10] vendor: github.com/containerd/continuity v0.3.0
bc6ff39e42 docs/reference: run.md update confusing example name
3fa7a8654f docs: update deprecation status for "overlay2.override_kernel_check"
3e06ce8bfa [20.10] Update go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
93eead45ee Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
45075ea08c [20.10] vendor: github.com/docker/docker v20.10.17
c2dcaecf19 make compose plugin detection in bash completion work on Mac OS
613b9362d0 Detect compose plugin
b30d250320 Add completion for docker-compose plugin
6b25bc3003 fix race condition in TestRemoveForce
bdac0b38d9 Update golang to 1.18.5
c70b01ec1f update golang to 1.18.4
0389090aeb update golang to 1.18.3
c904936d69 update golang to 1.18.2
386d50c2e9 update golang to 1.18.1
990186f2f6 update go to 1.18.0
86bf1966e2 staticcheck: ignore SA1019: strings.Title is deprecated
b3022b91d1 [20.10] Dockerfile.lint: use go install
f14ba9f5d7 [20.10] Dockerfile: use syntax=docker/dockerfile:1
c189c4dbea [20.10] vendor: github.com/json-iterator/go v1.1.12 for Go 1.18 compatibility
0c46ffc1f9 [20.10] vendor: github.com/modern-go/reflect2 v1.0.2 for Go 1.18 compatibility
6be9ce798e [20.10] vendor: github.com/google/gofuzz v1.0.0
779ed309a8 lint: update golangci-lint to v1.45.2
2f7e84be65 linting: fix incorrectly formatted errors (revive)
e628209d9b linting: ignore some "G101: Potential hardcoded credentials" warnings
80a3add604 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
80fb0d575e [20.10] Update golang to 1.17.13
d72bef2088 [20.10] update golang to 1.17.12
7502d7e560 Fix dead external link
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
containerd: update to v1.6.9
Bumping containerd to version v1.6.9-12-g6c41694da, which comprises the following commits:
5af8d89ce overlayutils: Add fastpath for userxattr check
303f608dd [release/1.6] update to Go 1.18.8 to address CVE-2022-41716
3f9f9508d ctr export strictly match default platform
df73acad5 [release/1.6] go.mod: Bump hcsshim to v0.9.5
658490b78 ctr import: strictly match platform
4907b4d72 Migrate away from GitHub actions set-output
f1493f665 Prepare release notes for v1.6.9
346412f5a adding support of CAP_BPF and CAP_PERFMON
99578d1fc Update mailmap
a956d8415 Add logging volume metrics to Containerd CRI plugin
29e2dea50 fix pusher concurrent close channel
8a9d69385 [release/1.6] Stats() shouldn't assume s.container is non-nil
a9adc7938 cri: PodSandboxStatus should tolerate missing task
b66eb726a migrate from k8s.gcr.io to registry.k8s.io
5b40993a5 [release/1.6] upgrade containerd/continuity from v0.2.2 to v0.3.0
f2376e659 Update container with sandbox metadata after NetNS is created
06f82efef archive: validate digests before use
28324c529 [release/1.6] Update go 1.18.7, addresses CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
0aeeb62cb [release/1.6] update golangci-lint to v1.19.0
7db9d1f76 Fix linter warnings
4dc932e62 [release/1.6] gofmt with go1.19
7b8d679ad [release/1.6] integration: remove use of deprecated io/ioutil
926b9c72f retry request on writer reset
b9a35c6af Add integration tests with failpoint
1f29fac48 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
a85709c6c integration: simplify CNI-fp and add README.md
d89a8d223 pkg/failpoint: add FreeBSD link and update pkg doc
b0ce2965a integration: Add injected failpoint testing for RunPodSandbox
a7f956d86 integration: CNI bridge wrapper with failpoint
07c479471 pkg/failpoint: add DelegatedEval API
4a5bc05aa runtime/v2/shim: return if error in load plugin
71ee7de24 bin/ctr,integration: new runc-shim with failpoint
3e2e77849 runtime/v2: manager supports server interceptor
cb935bf49 pkg/failpoint: init failpoint package
2fdfd564c make xattr EPERM non-fatal in createTarFile
89e49609d remotes/docker/config: Skipping TLS verification for localhost
b720be2ce remove stray .zuul.yaml
6b30bc4b4 .zuul: remove the zuul because it is offline
0f7e258ee Set grpc code for unimplemented cri-api methods
fb753e5cd update intergration
6ee5bb7ea bump cri-api
ae8598615 ContainerStatus to return container resources
d3c7e31c8 Update CRI-API
5b44c5271 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
3507d600b update runc binary to v1.1.4
1efd8b947 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
99e93d3f88 |
runc: update to 1.1.4-tip
Bumping runc to version v1.1.4-8-g974efd2d, which comprises the following commits:
3b958289 Fixes inability to use /dev/null when inside a container
335ec376 cirrus-ci: install EPEL on CentOS 7 conditionally
fb145a2f cirrus-ci: enable EPEL for CentOS 7
276297b6 VERSION: back to development
5fd4c4d1 Release 1.1.4
204c673c [1.1] fix failed exec after systemctl daemon-reload
ec2efc2c ci: fix for codespell 2.2
c778598c [1.1] ci/gha: fix cross-386 job vs go 1.19
d83a861d Fix error from runc run on noexec fs
d614445d [1.1] libct/nsenter: switch to sane_kill()
3ca5673f CI: workaround CentOS Stream 9 criu issue
c3986e53 tests/int: don't use --criu
f46c0dad [1.1] ci: fix delete.bats for GHA
6b94849d tests/int: runc delete: fix flake, enable for rootless
fa3354dc libct: fix mounting via wrong proc fd
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6dba10357c |
runc-docker: update to 1.1.4-tip
Bumping runc to version v1.1.4-8-g974efd2d, which comprises the following commits:
3b958289 Fixes inability to use /dev/null when inside a container
335ec376 cirrus-ci: install EPEL on CentOS 7 conditionally
fb145a2f cirrus-ci: enable EPEL for CentOS 7
276297b6 VERSION: back to development
5fd4c4d1 Release 1.1.4
204c673c [1.1] fix failed exec after systemctl daemon-reload
ec2efc2c ci: fix for codespell 2.2
c778598c [1.1] ci/gha: fix cross-386 job vs go 1.19
d83a861d Fix error from runc run on noexec fs
d614445d [1.1] libct/nsenter: switch to sane_kill()
3ca5673f CI: workaround CentOS Stream 9 criu issue
c3986e53 tests/int: don't use --criu
f46c0dad [1.1] ci: fix delete.bats for GHA
6b94849d tests/int: runc delete: fix flake, enable for rootless
fa3354dc libct: fix mounting via wrong proc fd
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
40c9a3afca |
crun: update to 1.6+
Bumping crun to version 1.6-75-g4907f10, which comprises the following commits:
0e4cf20 container: pass the argv0 on errors with handlers
6da989c wasmtime: honor error message length
2f46f21 wasmtime: mark unused argument
baa98f4 container: use clone3 to join directly the target cgroup
2497b9b linux: add run.oci.pidfd_receiver=PATH annotation
37a438d cgroupfs: implement precreate cgroup
c4af47e cgroup: new interface to preload a cgroup
352d8ac criu: use a temporary error
3ebaba3 container: cache the bpf generated by seccomp
18abbfc Typos: a/an
e5d4c07 man: fix indentation for run.oci.handler=HANDLER
74d097b seccomp: use relative paths to open bpf
8cfcc8f seccomp: move copy bpf to seccomp
7a66ccc container: move open_seccomp_output to seccomp
a2de8fb seccomp: add functions to calculate checksum
6861b2a container: compute seccomp options earlier
dd310aa configure.ac: add check for libgcrypt
81d3b16 exec: set context
0cffffe crun: display rundir in --version output
882a054 wasm: inherit environment variables in the WasmEdge handler
1f71880 man: cleanup run.oci.handler and define krun and wasm
d474211 Refer to libocispec header files under ocispec/
5027629 build(deps): bump uraimo/run-on-arch-action from 2.2.1 to 2.3.0
fef6ce2 build(deps): bump github/codeql-action from 1 to 2
5837234 crun: open libcrun with dlopen
5f2464f build(deps): bump actions/cache from 2 to 3
ba0adeb build(deps): bump uraimo/run-on-arch-action from 2.2.0 to 2.2.1
5d2a536 build(deps): bump actions/upload-artifact from 2 to 3
a4ffe17 build(deps): bump actions/checkout from 2 to 3
108d9ec Check for github actions updates on weekly basis
9f2acfc cgroup: account for swap usage for checkBeforeUsage
6666dec list: remove yajl usage
6fdcb89 container: new API libcrun_write_json_containers_list
e1b32c7 update: remove yajl usage
270961f python: Fix argument type in container_delete
17f4e55 container: new API libcrun_container_update_from_values
1c681c1 python: Fix argument parsing in make_context
e666af1 crun: chown std streams before joining the user namespace
391df45 linux: reject sysctl kernel.domainname when OCI knob domainname is set
f94655c test: ack (none) as output of getdomainname
fdb26d0 cgroup: honor checkBeforeUpdate
8758f31 add support for setting the domainname
17ba516 libocispec update
7ea7617 systemd: create sub-cgroup on v1 as well
08bccc7 tests: update containerd to 1.6.8
978e719 Copr: Fix i386 builds
18cf2ef NEWS: tag 1.6
396ac88 seccomp: honor SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
074cd9a wasm: provide an integration test for crun with wasmedge support
399e5ea wasm: use wasmedge library soname in dlopen
3e34345 crun: reintroduce -V (uppercase) as an alias for --version
17337c4 seccomp: use helper process to send listener fd
f34ebf2 Copr: wasmtime support only for non-x86
df20997 crun: now -v prints the version
fdcf83a utils: wrap mmap and munmap
95744c8 utils: unify read process exit status
44c305f linux: move definition of syscall_clone to linux.h
d254d3e utils: run process with timeout restores sigmask
57df79b init mask
430dea1 container: drop intermediate userns feature
2e647e0 crio,CI: skip failing checkpoint and restore one container
8d0dfc3 podman,CI: skip top on priviledged container
ad9008b copr: depend on wasmtime-c-api for shared lib
Bumping runtime-spec to version v1.0.2-114-g494a5a6, which comprises the following commits:
4bcd065 seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
6be797c CODEOWNERS: sync with MAINTAINERS
9e658bc config-linux: add memory.checkBeforeUpdate
1924f6b GOVERNANCE: correct the Charter URL
744912b add domainname spec entity
0da1600 fix rfc link
b57ada5 maintainer updates as per #1101
e78a3c3 Add available `LinuxSeccompFlag`s
Bumping libocispec to latest, which comprises the following commits:
02f231b Move header files under ocispec/
39e1872 Make libocispec installable
6fd1d94 update runtime-spec to latest
1e37c8a rust, runtime: add domainname to spec
d59cc93 rust,runtime: add MountUidMapping and MountGidMapping
ac69f5a rust,runtime: add idle type to CPU
e9c21c1 rust,runtime: rename GidMapping,UidMapping to Linux{Uid/Gid}Mapping
8258e1d image-spec: update from upstream
b2e74e1 runtime-spec: update from upstream
ce973fd parser: allocate empty arrays
845aad5 runtime-spec: sync from upstream
1380666 image-spec: sync from upstream
9bb6aa9 src: fix regression
27763d8 runtime-spec: sync from upstream
8abb1b1 image-spec: update from upstream
2ea0d22 runtime-spec: update from upstream
cde73d8 yajl: update from upstream
fc57095 src: fix generated code indentation
e739a1c .github: set safe directory
f09f411 build: fix bashism in configure.ac
23ed5eb git: ignore newly added test binary to prevent untracked changes in crun
d15ed35 fix bug when contain null value in json
2a622ef image-spec: update from upstream
3dd60db runtime-spec: update from upstream
88241d7 sync: add CMT and MBM fields to Intel RDT
Bumping image-spec to version v1.1.0-rc2-12-g4df8887, which comprises the following commits:
867ce74 ArtifactType is optional, omit when empty
59780aa Add ArgsEscaped field to image config
3625ee3 doc: fix example in artifact.md
94f2431 version: bump main back to -dev
19a74bc version: release v1.1.0-rc2
0a97fe7 docs: Added artifact.md to docs and spec.md
c91663b Update RELEASES.md
0e7e0dd docs: Update release process docs with checklist
5d055a4 version: switch back to -dev
4728b6e version: bump for 1.1.0-rc1 release
a7ac485 Rename refers field to subject (#950)
4c15674 Use go install and full path to commands
ce50f1f Bump from Go 1.16 to 1.17
ca2e500 Embed Platform in Image
a865bc0 Fix whitespace consistency in config.md
da33ef0 Remove io/ioutil references
ed7e07b Add artifact to spec.md
bc9c4bd Update schema for mediaType validation (#933)
b04b320 Working Group Proposal for Reference Types
ba36edd Add regclient to implementations
ba3f174 Add maintainer nomination template
08825b8 Pinning version of golangci-lint to support 1.16
9747134 Move inactive maintainers to emeritus
0bd8a03 Add Brandon as maintainer
c7ca3ac Update URLs to https
874a191 Add Sajay as maintainer
6ffdc78 Move inactive maintainers to emeritus
d6ce48a Add mediaType fields into example manifest & image index JSON references
bc44f5b Fixing charter link
0895292 implementations: point to krustlet/oci-distribution
02c5c05 implementations: adding the C and Rust libraries
a36b0c8 Handle multiple matching index entries
a3eee7d README.md: Remove link to OCI scope table The OCI scope table no-longer exists.
4533d3e schema: use Go's embed package instead of esc
d147780 .tool: remove lint tool, call linter directly
0e094f3 schema, specs-go: fix lint errors
d3cd202 *: switch to golangci-lint
4d865bc go: have the go.mod at top-level
0f6c001 Remove unneeded docker pull of pandoc image
de28903 Makefile: stale installation of glide was failing
3a46ac8 github: bring forward the versions of golang tested/built with
6ced3bd media-types: `.mediaType` is available in both OCI and Docker
3be64d9 version: bump main back to -dev
beccafd version: release 1.0.2
5b82148 specs-go: adding `mediaType` to the index and manifest structures
2eb4046 *.md: bring mediaType out of reserved status
e3885ce version: bump main back to -dev
67d2d56 version: release 1.0.2
dcdcb7f specs-go: adding `mediaType` to the index and manifest structures
5f31485 *.md: bring mediaType out of reserved status
3fee04b Adding ACR to implementations
8087946 Reflect docker dontation of distribution to CNCF
bd2fa25 Minor spelling correction
fc4df0a Fix very minor oversight in config example
0d98a6c Scope data verification to content consumers
83479d4 Clean up portability considerations
fccc435 Implementations MUST NOT populate data arbitrarily
2596ec0 Expand godoc for Data
58c082d Add note about portability concerns
ce281ce Add Embedded Data section
aaf8045 Define the data field
4f080a7 Add go.mod and pin dependencies
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
43396cb671 |
podman: update to 4.3
We add ${datadir}/user-tmpfiles.d/* to package some newly added systemd
files, but otherwise, the recipe is unchanged.
Bumping libpod to version v4.3.0-7-g9ce592fcb, which comprises the following commits:
83b02f8fd Update c/image from release-5.23 branch
14563ef13 system tests: fix broken bashisms
34ebb9af2 Release notes fixes
d5a0dfc1e Bump to v4.3.1-dev
ad42af949 Bump to v4.3.0
9496a3836 Final release notes for v4.3.0
ac7fa8437 libpod: Add support for 'podman top' on FreeBSD
f8a79409c libpod: Factor out jail name construction from stats_freebsd.go
e33306683 pkg/util: Add pid information descriptors for FreeBSD
3810a9dac [CI:BUILD] copr: podman rpm should depend on containers-common-extra
94499aa47 Podman image: Set default_sysctls to empty for rootless containers
8a28b896b Allow volume mount dups, iff source and dest dirs
295d0d1d9 libpod: Factor out the call to PidFdOpen from (*Container).WaitForExit
c9c683a58 markdown-preprocess: add generic include mechanism
42a221874 markdown-preprocess: almost complete OO rewrite
ca9eaec5e bump golangci-lint to v1.49.0
6972d47ff rootless: fix return value handling
5a214f6e5 generate systemd: set --stop-timeout for stopping containers
c6ad786ca Change to correct break statements
1a5506459 Add swagger install + allow version updates in CI
78d4af894 Cirrus: Fix windows clone race
fc43751e7 kill: wait for the container
9c01425ad hack/tree_status.sh: print diff at the end
682dd8e45 Man pages: refactor common options (misc)
b98f6b52f Man pages: Refactor common options: --detach-keys
c7e946482 Man pages: refactor common options: --attach
83b5fcf38 build(deps): bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0
6d5d84a05 Man pages: refactor common options: --annotation (manifest)
7f88deff1 KillContainer: improve error message
b805a068c build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
42b642509 docs: add missing options
f2a2ab557 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
095aa5c3a play kube: notifyproxy: listen before starting the pod
b7514ee40 build(deps): bump golang.org/x/text from 0.3.7 to 0.3.8
f7732ae52 Man pages: refactor common options: --os-version
298a2432e play kube: add support for configmap binaryData
2efdff528 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
802118ad1 Revert "Add checkpoint image tests"
dfa55ff6a Revert "cmd/podman: add support for checkpoint images"
eb43d175c system tests: health-on-failure: fix broken logic
ee5bd1e0c Man pages: Add mention of behavior due to XDG_CONFIG_HOME
c88dfbb98 Add and use libpod/Container.Terminal() helper
cbde35e32 Avoid unnecessary timeout of 250msec when waiting on container shutdown
d15b4af92 healthcheck: fix --on-failure=stop
81c645f2f libpod: Add support for 'podman pod' on FreeBSD
546e9445e libpod: Factor out cgroup validation from (*Runtime).NewPod
26df7d97c libpod: Move runtime_pod_linux.go to runtime_pod_common.go
70e0cb509 specgen/generate: Avoid a nil dereference in MakePod
f92360283 libpod: Factor out cgroups handling from (*Pod).refresh
b9d479b72 health checks: make on-failure action retry aware
ead78d8ba libpod: Remove 100msec delay during shutdown
640eac465 Clean up when stopping pods
d31a06ce8 Create full path to a directory when DirectoryOrCreate is used with play kube
9ce61988d Return error in podman system service if URI scheme is not unix/tcp
8041df3b6 Update vendor of containers/buildah v1.28.0
d13509f27 Man pages: refactor common options: --time
c16078f2d Release notes for all content before cherry-picks
3451aac35 Man pages: refactor common options: --pod
aaa9f4ea9 Prevent nil pointer deref in GetImage
f250560a8 Add pods created by kube play to a default network
26468c227 Man pages: refactor common options: --features
2f6c911d6 build(deps): bump github.com/opencontainers/image-spec
62bc8e3a1 Cirrus: Fix tag & branch go checks failing
eaa389262 Man pages: refactor common options: --variant
9bafd9c46 Man pages: refactor common options: --compression-format
eb7f54ef6 cleanup: always delete netns mount
a2581abbf Adds brew info podman to issue template.
73c8416c3 Update for https://github.com/klauspost/pgzip/pull/50
02b0f9fc3 container inspect: include image digest
fe3c91d58 Update vendor containers/(common,image)
f304a1757 Fix typo about e2e tests name
66747351f [CI:DOCS] Add quay-description update reminder
0660f5b7a Cirrus: Combine build and code consistency tasks
6c8a11b74 Cirrus: Combine pre-test checks into build task
0e7d166ee Cirrus: Minor YAML comment/whitespace fix
e7328cb97 Man pages: refactor common options: --network
fe2b4df38 podman kube play allow --network host
e4c0c8994 Man pages: Refactor common options: --sign-passphrase-file
309f4fb54 Man pages: refactor common options: --log-opt
6f821f03d `podman pod logs -l` no longer panics
f00ceaabd vendor: bump c/common to v0.49.2-0.20220929111928-2d1b45ae2423
3b5171d0e fix "podman system prune networks" flake
ebff193f8 Add test for podman run with checkpoint image
9c3d8bb49 cmd/podman: add support for checkpoint images
b17d8ff46 restore: make IsCheckpointImage reusable
e2fe9eaba Revert "remote: fix manifest add --annotation"
32f54a81e remote: fix manifest add --annotation
496d4c753 System tests: stop deep-checking log-level
ba70dd5ec build(deps): bump github.com/container-orchestrated-devices/container-device-interface
66517d86a fix: kube play liveness probe http path
f5fc0960e Default missing hostPort to containerPort is defined in kube.yaml
359e39744 libpod: Add volume support for FreeBSD
abe8dad34 libpod: Factor out usage of unix.MNT_DETACH from (*Volume).unmount
9de2a5ff7 libpod: Move volume_internal_linux.go to volume_internal_common.go
065474755 libpod: Move runtime_volume_linux.go to runtime_volume_common.go
95cb14aff fix: liveness check with http probe
3e8093152 System tests: light cleanup
0fb95f95d CI: only make install.tools when needed
2e4e1bb97 podman machine ssh handling
53d604182 Cirrus: Build pkginstaller in CI
c1ae7f193 Add SELinux information about boolean for using random devices
f32b02c7b Bump to v4.3.0-dev
f818eb4a5 Bump to v4.3.0-RC1
527fc409e Cirrus: Add golang code consistency check script
f6724116a Man pages: refactor common options: --env-file
7bc36602f auto-update: validate container image
fa18d35e8 Man pages: refactor common options: --env
911ceb823 Man pages: Refactor common options: --sig-proxy
fde4d21be man page xref: verify page title
8c627dfb5 Contrib: Add containerfile to create podman-remote binary image
9261a5469 Remove redundant log message
52656887e compat API: network inspect do not show isolate option
337f1f586 [CI:DOCS] man pages: fix incorrect title
f5e83f684 Fixup Buildah merge
54653ceeb Update vendor or containers/buildah
3a5b5d04b Fix machine starting state
69ac1e36c Cirrus: Catch use of deprecated io/ioutil package
8ff54cbe8 Fix libsubid detection
326d386ee [CI:BUILD] Copr: also define _user_tmpfilesdir for f35
2478e32ca fix restore API endpoint
6ee582315 Events for containers in pods now include the pod's ID
dc05d1212 Add --pretty to podman secret inspect
fc6dcd12b Add support for 'image' volume driver
5a2405ae1 Don't mount /dev/tty* inside privileged containers running systemd
d5f044ee7 System tests: reenable some skipped aarch64 tests
33c31112f cli: Add signature-policy flag to podman save
ba6f84666 Fix a few missed io/ioutil -> os updates
fb3d55006 Improve generate systemd format
9bb51e8e9 Add labels to secrets
7cfe0328f Add support to sig-proxy for podman-remote
377773ab5 Fix podman-remote run --attach stdin to show container ID
d968f3fe0 Replace deprecated ioutil
bb160be12 libpod: Implement 'podman cp' for FreeBSD
88f82ceab libpod: Move jointMountAndExec to container_copy_linux.go
75d6e7bae libpod: Move part of (*Container).stat to container_stat_linux.go
0b02d4cee libpod: Move container_copy_linux.go to container_copy_common.go
24d129071 libpod: Move container_stat_linux.go to container_stat_common.go
6790deb1b man pages: document some --format options
23195646d pkginstaller: use path_helper to add podman and helpers to path
dc8fdb46c label.Relabel third option is shared not recurse
049b10884 podman container clone env patch
903f551ae build(deps): bump github.com/coreos/go-systemd/v22 from 22.3.2 to 22.4.0
4a053a821 notifyproxy: don't set a read deadline
1071098ee kube play: sdnotify proxy: use a wait group
21841dc38 Default to --dns-option to match Docker and Buildah
d63e49a26 remote: checkpoint --export prints a rawInput or an error on remote
cfbc4aaeb Cleanup: fix problems reported by shell lint
e2573b734 Fix broken titles on readthedocs
62d1c487d Man pages: Refactor common options: --dns
7d1f688ff [CI:DOCS] man pages: document some --format options
884fd4575 Revert "generate systemd: drop ExecStop"
3508bd22f Add support for podman context as alias to podman system connection
9ba034293 Man pages: refactor common options: 2 stats opts
c20abf12c generate systemd: drop ExecStop
45d09e65b libpod: Make getContainerInspectData work on FreeBSD
2e4db139a libpod: Factor out platform-specfic code from generateInspectContainerHostConfig
60ef4ad1c stats: cap memory limit to the available memory
cf2118eab stats: map MaxUsage to the correct value
3f8591c2f Man pages: refactor common options: --shm-size
f76390d5e Man pages: refactor common options: --user
e19e0de5f Introduce graph-based pod container removal
51a8635c7 Cirrus: Fix win_installer task clone failure
cb6ad7631 Cirrus: Only run unit-testing on Fedora.
815655b9d Cirrus: Move gitlab test to cirrus-cron "main"
88879d588 System tests: cleanup in --format test
d4a62ff93 System tests: fix three races
14e5d1c15 libpod: fix lookup for subpath in volumes
92dc61d5e libpod: rename function
42937cd9a Ensure that a broken OCI spec does not break inspect
b6c75a3cc Man pages: refactor common options: --preserve-fds, -it
dd53ee599 fix ci: update systemd generate unit test
4df460836 Man pages: refactor common options: --ip6
47fff4b00 improve slirp4netns allow_host_loopback docs
0aedddd3b [systemd] Ensure that podCreateArgs appear last in ExecStartPre=
b47ce9a6e libpod: Add support for 'podman stats' on FreeBSD
b3e978e43 libpod: Split out the common code from GetContainerStats
47bd9e811 libpod: Move stats.go to stats_linux.go for consistency
1e6da1115 pkg/rctl: Add a simple FreeBSD RCTL library
75740be39 all: stop using deprecated GenerateNonCryptoID
76eb06330 Man pages: refactor common options: --tls-verify
fe04c86a2 generate systemd: fix pod dependencies
d4a000312 Man pages: Refactor common options: --publish
9d41b95d7 rework --format system test
dacd59424 Man pages: refactor common options: --publish-all
885bc4742 Enable github labeler, use for api-change
74e0511c9 Man pages: refactor common options: --os (pull)
f30d4852e Man pages: refactor common options: --ip
0ea5080c9 generate systemd: warn on --restart without --new
c8c2aab50 health checks: restart timers
908458d06 enable podman pod inspect --format test
7f8e99ded podman version: use report.Formatter over Template
0c21dcf70 podman machine info: use report.Formatter over Template
e5389e98f podman info: use report.Formatter over Template
1acebdda3 tests for 15673
43f7bdf82 podman inspect return exit code > 0 on print error
00240a0e2 podman inspect: use report.Formatter over Template
377599f1f podman secret inspect: use report.Formatter over Template
f5e13ded9 podman secret ls: use report.Formatter over Template
1463898b0 podman network ls: use report.Formatter over Template
90634d5ee podman volume ls: use report.Formatter over Template
20eccfc9d podman machine inspect: use report.Formatter over Template
a687949db podman machine ls: use report.Formatter over Template
65e78d92c podman auto-update: use report.Formatter over Template
70e6b19d4 events: Fix spelling of newNullEventer
9457549ff build(deps): bump github.com/vbauerster/mpb/v7 from 7.5.2 to 7.5.3
09ba2e0b9 Man pages: refactor common options: --rootfs
07a8eb829 Ensure that the DF endpoint updated volume refcount
e24c2f009 system tests: periodic cleanup and fixes
a63a40c3e podman events --format: fix duplicated newline
2ae4ce799 fix race where podman events exits to early
b3212a680 set default EventsLogFilePath on first run
12a1483e7 Improve --tmpdir and --events-backend docs
72e715a11 Use new secret store API
cd32b929e libpod: runtime newEventer() cleanup
76980a222 event backend journald: fix problem with empty journal
138b09c7e event backend none: return an error when reading events
c5bdb6afe fix hang with podman events file logger
56c880a7e libpod: Move ocicniPortsToNetTypesPorts and compareOCICNIPorts to networking_common.go
221c4d5f0 libpod: Move NetworkDisconnect and NetworkConnect to networking_common.go
f939f3fdf libpod: Move resultToBasicNetworkConfig to networking_common.go
c9de84080 libpod: Add support for getContainerNetworkInfo on FreeBSD
51c70e588 libpod: Move getContainerNetworkInfo to networking_common.go
d014dca81 libpod: Move isBridgeNetMode and reloadContainerNetwork to networking_common.go
1dd0eb467 libpod: Move teardownNetwork and teardownCNI to networking_common.go
2bf050f1d libpod: Move setUpNetwork and getCNIPodName to networking_common.go
3d7f9f67a libpod: Move convertPortMappings and getNetworkOptions to networking_common.go
d1414adbb libpod: Add FreeBSD implementation of container networking
c5f64d9f5 libpod: Re-work the container's network state to help code sharing
36cfd05a7 libpod: Move platform-specific bind mounts to a per-platform method
369d86040 libpod: Avoid a nil dereference when generating resolv.conf on FreeBSD
a1fa9faa4 Buildah treadmill script: various fixes
43da39d31 Man pages: refactor common options: --volumes-from
050ae6181 [CI:DOCS] --volume: consistent wording
d935e9799 update c/storage to latest
6091ff42d Include more environment variables in conmon env.
118546c6a refactor: use `os.ReadDir` for lightweight directory reading
2c63b8439 Fix stutters
b8108d06b Fix CPU usage limitation in play kube for non integer values
8466c4a19 Cirrus: Don't run win_installer in multiarch cron
6210c6723 TEMPORARY: instrumenting for 15488
3a9a7dcdc Man pages: refactor common options: --volume
a82672047 build(deps): bump github.com/docker/docker
6bf8670b6 stop: fix error handling
aad29e759 health check: add on-failure actions
8e1aa7af3 Fixes for vendoring Buildah
eb28a1c08 update buildah and c/common to latest
c7411af9e Ignore cpu realtime options on cgroups V2 systems
27be5eaaf Fix swagger documentation
9a286f712 generate, kube: plug HostUsers
1994f3823 Add --config for Docker compatibility
ad63aa20d kube: plug HostUsers in the pod spec
626ee118c e2e: fix run_staticip_test in proxy environment
d10e77e1b fix podman pod inspect to support multiple pods
911e4a138 specgen/generate: Factor out setting resource limits from CompleteSpec
db33f06a9 fixes data race in system.Events and nil error logging
f75c3181b podman: skip /sys/fs/cgroup/systemd if not present
3f0b5cd40 Man pages: refactor common options: --userns (pod)
8d40bf3f1 proper --debug/-D flag support
4fbc4b8f7 Man pages: refactor common options: --privileged
f85fa9806 libpod: Filter out ENOTCONN errors when trying to close unix domain sockets
6668ac93b libpod: Factor out capabilites code from prepareProcessExec
f6e3cfa53 system tests: fix systemd tests in proxy environment
744878a71 Add win-installer build/verify workflows to CI
ecb9f99b8 Add new windows installer and build
d759576ab emit container labels also for container exited and exec died events
9585147e1 fix Pod removal after OS hard shutdown
e0d5b4e3f Change pipe wait to 20 seconds
63c779a85 Fix manpage headers
4675103c2 Man pages: refactor common options: --sysctl
eb39d56df Bump github.com/docker/go-units from 0.4.0 to 0.5.0
f4c39df25 Add win-sshproxy.exe to windows client zips
40cd1c0ff Man pages: refactor common options: --device
4462305fe Update the displayed warning in documentation regarding the system reset
092690297 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
77ab6125f remove SkipIfNotFedora() from events test
d22aeeec2 fix podman events with custom format
a9a411f8a Add generate systemd -e/--env option
274d34a25 kube play: support auto updates and rollbacks
04f0ac2aa system tests: fix some tests in proxy environment
6a3c28968 Drop stale config value resulting in asymmetric config
c2c910736 CI: Cirrus setup: retry failed curls
fb38838fe Man pages: refactor common options: --memory*
0df291d3b Update system reset warning message to warn against deletion of all volumes
bdfc4df1f pkg/autoupdate: allow updating multiple tasks per unit
cbaa78cd8 Fix list of default capabilities
a3aecf0f2 libpod: Factor out setting volume atime to container_internal_linux.go
7a1abd03c libpod: Move miscellaneous file handlling to container_internal_common.go
d162285f3 libpod: Don't mount /dev/shm in containers on FreeBSD
212b11c34 libpod: Factor out handling of slirp4netns and net=none
eab4291d9 libpod: Move functions related to /etc bind mounts to container_internal_common.go
b3989be76 libpod: Move getRootNetNsDepCtr to container_internal_common.go
a148c1622 libpod: Use (*Container).addNetworkNamespace to restore checkpoint network
7518a9136 libpod: Move functions related to checkpoints to container_internal_common.go
be5d1261b libpod: Move mountNotifySocket to container_internal_common.go
71e2074e8 libpod: Move getUserOverrides, lookupHostUser to container_internal_common.go
232eea5a0 libpod: Move isWorkDirSymlink, resolveWorkDir to container_internal_common.go
a5ee3cb79 pkg/util: Add no-op implementation of AddPrivilegedDevices on FreeBSD
0889215d8 libpod: Use platform-specific mount type for volume mounts
c1a86a8c4 libpod: Factor out platform-specific sections from generateSpec
e101f4350 libpod: Move getOverlayUpperAndWorkDir and generateSpec to container_internal_common.go
6e4b5b007 libpod: Add FreeBSD implementation of container internals
8ade76e79 libpod: Move networkDisable to container_linux.go
71978b0a0 Fix #15243 Set AutomountServiceAccountToken to false
b9df3a6a9 Man pages: refactor common options: --label
d82a41687 Add container GID to additional groups
3e1dde10b [CI:BUILD] Copr: Define _user_tmpfilesdir for rhel
875fd4858 Fix swagger documentation
070dfa3b3 Man pages: refactor common options: --digestfile
3e744e52b System tests for podman-update
c05b6e5d3 Update test per comment in #15555
3d09d47a2 Man pages: refactor common options: --device-X-Y
050f3291b implement podman update
c63830166 Man pages: refactor common options: --name
4a1acccf9 Fix bind-mount-option annotation in gen/play kube
64eb07941 CI: disable flaking test on ubuntu
b667d7340 libpod: Ensure that generated container names are random
5faf4eff1 Cirrus: pick UIDs/GIDs starting at 1500, not 1000
b25d62a4d [CI:BUILD] Packit: Disable until proved in other repos
84352a81c Set enableServiceLinks to false in generated yaml
fed4ce0ea Inhibit SIGTERM during Conmon startup
70a599b57 Man pages: refactor common options: --signal
da57065ab specgen: Use platform-specific mount type for volume mounts
0300271bf libpod/define: Make TypeBind a platform-specific constant
1ed9a4740 Man pages: refactor common options: --restart
98169c20d Add emptyDir volume support to kube play
8637548a3 docs: move userns options to separate file
e015c9e3f podman: add uid and gid options to keep-id
cd6260604 infra: remove dead code
62d87aa9b Man pages: refactor common options: --subXidname
08a2851ba Allow to override default username via command line
4781bc7fe specgen/generate: Add support for FreeBSD
68f4dcf00 specgen/generate: Move specConfigNamespaces to namespace_linux.go and add stubs
39880670c specgen/generate: Move SpecGenToOCI, WeightDevices to oci_linux.go and add stubs.
a240146a2 e2e tests: try to deflake 5000
08af95f63 updated apiv2 tests to reflect hash compat fix
c1480b39a Improved Windows compatibility for machine command
4e18c8100 Man pages: refactor common options: --http-proxy
0166feef2 specgen/generate: Move security.go to security_linux.go and add stubs
a7d791202 libpod: Make sure writeConmonPipeData is called on FreeBSD
d19438fa6 Man pages: refactor common options: --dns-*
dcb4d4357 [makefile] disable security labeling instead of using --privileged
78aec2130 Fix #15499 already connected network
b4f5a246a remove github.com/docker/libnetwork dependency
0ee9a3129 podman rmi: emit untag events
0b3184a5a pkg/domain: Add terminal support for FreeBSD
11de12097 Fix example sections to follow the same format
e4f816fdb [CI:DOCS] Cirrus: Update meta-task for EC2 image
e448122fe service: make move to sub-cgroup non fatal
167b026e7 [CI:BUILD] Packit: Re-introduce packit with fix-spec-file action
61d842a18 Fix template name inconsistency
39d809d3c Bump github.com/vbauerster/mpb/v7 from 7.4.2 to 7.5.2
e00272cd9 remote: fix implementation of build with --userns=auto for API
15aeccb83 libpod: UpdateContainerStatus: do not wait for container
61fc1870a cmd/podman: Enable --syslog on FreeBSD
cfdca8293 Mark some of the option fields as ignored in pkg/bindings
c7fda06f6 Compat API image remove events now have 'delete' status
9553f3baf Run codespell
b27bfbc71 [CI:DOCS] Automatically set podman version in pkginstaller
e634470fa APIv2 test cleanup, part 2 of 2
42fdc72aa Man pages: refactor common options: --systemd
a5a5c6b3f Temporarily Revert "Packit: Enable scratch build testing for Fedora 36, 37 and Rawhide"
10b460512 Remove duplicate annotations in generated service yaml
61fe95bb4 Preserve all unknown PolicyRequirement fields on (podman image trust set)
ad0c785f8 Reorganize the types in policy.go a bit
a7e88c8da Add support for showing keyPaths in (podman image trust show)
752eceaec Support (image trust show) for sigstoreSigned entries
b36a1d1b7 BREAKING CHANGE: Change how (podman image trust show) represents multiple requirements
bba306788 Reorganize descriptionsOfPolicyRequirements a bit
2f6c145e8 Use the full descriptionsOfPolicyRequirements for the default scope
b15afce55 Rename haveMatchRegistry to registriesDConfigurationForScope
1a97c4d9f Rename tempTrustShowOutput to entry
51064acc4 Split descriptionsOfPolicyRequirements out of getPolicyShowOutput
d4c521728 Recognize the new lookaside names for simple signing sigstore
4df1e2524 Add a unit test for trust.PolicyDescription
4b2bd1036 Make the output of (podman image trust show) deterministic
35fa8c16a Make most of pkg/trust package-private
7723a1ea6 Move most of ImageEngine.ShowTrust into pkg/trust.PolicyDescription
ff3f574fc Add support for sigstoreSigned in (podman image trust set)
9828bc445 Create new policy entries together with validating input
e2d1bdd1d Improve validation of data in ImageEngine.SetTrust
cbdbb025a Move most of imageEngine.SetTrust to pkg/trust.AddPolicyEntries
0ff0fde49 Man pages: refactor common options: log-related options
4f6807530 Add a variable for scope
4c5366ee0 Make trust.CreateTempFile private
5be00f227 Reorganize pkg/trust
1d2def8d0 Remove an unused trust.ShowOutput type
df1d8d0e9 Remove commented out code
010d495a3 APIv2 test cleanup
a933269ba System test cleanup
35b4f26c7 test: use private instead of slave for the mount
2fed2a282 Man pages: refactor common options: --pid
ea67d84f5 test: fix comment
19a617eaa Allow colons in windows file paths
1788b26c4 Fixes isRootfull check using qemu machine on Windows
88e4e4c82 vendor containers/psgo@v1.7.3
33ab7e846 Man pages: refactor common options: --ipc
ef6285a6f Man pages: refactor common options: --gidmap
c64a6ba07 Man pages: Refactor common options: --workdir
b0700aa48 libpod: Enable 'podman info' for FreeBSD
ff20c74e9 libpod: Move getCPUUtilization to info_linux.go
694cbaca3 libpod: Read kernel version and uptime using buildah/pkg/util
877e67399 libpod: Split out platform-specific code from hostInfo
e1c206d98 e2e: Add run --memory-swap test
c3dc92a50 Fix rpm packaging error
b4584ea85 run,create: add support for --env-merge for preprocessing vars
b47c54ab6 Install podman-docker.conf on user-tmpfiles.d too
0e6a421ca Use tmpfiles.d specifiers instead of fixed path
9dca68bdd Man pages: refactor common options: --ignore
d45a5d4aa Packit: Enable scratch build testing for Fedora 36, 37 and Rawhide
8b1e88bf8 Fix documentation of use of tcp connections
0f7393556 Add support for containers.conf volume timeouts
7d7aead51 Man pages: refactor common options: --device-cgroup-rule
65efcdf70 Allow podman to run in an environment with keys containing spaces
2c03681b2 Man pages: refactor common options: --disable-content-trust
8f797ab66 libpod: Add definition of containerPlatformState for FreeBSD
5c9bac141 Man pages: refactor common options: --cpus
5f719b533 podman kube play/down --read from URL
5b06b2e77 Document restrictions on transport in FROM
70e103c04 inspect, image: alias .Config.HealthCheck to .HealthCheck for compatibility
f87f6d2fc Improved Windows compatibility
64339d47c Warning messages are printed and ignored if we use an unsupported option
716ac1c86 Refactor: About the RawInput process
74388fe75 Man pages: refactor common options: --pod-id-file
0f768cef3 [CI:DOCS] Update Troubleshooting.md
c6488fe4a Man pages: fix sloppiness
53369aaa1 pass environment variables to container clone
46f31361f Man pages: refactor common options: --cidfile
bd90818b0 Man pages: refactor common options: --creds
fbe2bd87b [CI:DOCS] elaborate on image lookups of foreign platforms
eee0ec97e Add quiet/q flag to podman secret ls
d5f83135b version bump to 4.3.0-dev
be1455ead Update "CONTRIBUTING" file with Debian/Ubuntu dependencies"
f8e73eadd [CI:DOCS] Update how to enable resource limit delegation
a0560eefa Man pages: refactor common options: cert-dir
8ffeb626c events: Add freebsd support for libpod/event
8aa29fd54 cmd/podman: Enable ABI and Tunnel mode for freebsd
1f76ad40a fix CI: remove hardcodeded alpine version
3bf52aa33 Add ProgressWriter to PullOptions
ec9508ea1 Pass io.Writer when pushing images/manifests from command line
e48681e60 Use request Context() in API handlers
b9fb60c68 Simplify ImagesPull for when Quiet flag is on
09ef6fc66 podman generate kube - add actual tests
976ce76eb podman save: update --compress validation
054d64710 libpod: Build oci_conmon_common.go and oci_conmon_attach_common on FreeBSD
cb4158889 libpod: Move openUnixSocket to oci_conmon_attach_linux.go
d43fac20f libpod: Move moveConmonToCgroupAndSignal and GetLimits to oci_conmon_linux.go
93bad9048 libpod: Move socket label handling from oci_conmon_common.go to oci_conmon_linux.go
6791cdbdf libpod: Move rootless handling from oci_conmon_common.go to oci_conmon_linux.go
68b2450d3 libpod: Move oci_conmon_exec_linux.go to oci_conmon_exec_common.go
8d229c6cd libpod: Move oci_conmon_attach_linux.go to oci_conmon_attach_common.go
bebf55c0f libpod: Move oci_conmon_linux.go to oci_conmon_common.go
20ad12274 runtime: use FindCommon from c/common
86f665a1d vendor: update containers/common
0dd2fcf71 Add podman manifest create -a. Alias for --amend:Docker compatibility
aa197a65f sort hc.Binds returned from compat api
546bb3548 Add podman stats --no-trunc option
f6e7b0b59 Add podman secret inspect -f alias for --format: Docker compatibility
d50ff4f51 Add podman secret create -d as alias for --driver for Docker compatibility
6411f57e7 api: return imageID instead of imageName, for "Image" when Podman API is queried
2a6daa1e3 Cirrus: add podman_machine_aarch64
1572420c3 libpod: Move uses of unix.O_PATH to container_internal_linux.go
5d7778411 libpod: Move rootless network setup details to container_internal_linux.go
1b88927c2 libpod: Add stubs for non-linux builds
7e7a79b07 podman manifest create: accept --amend and --insecure flags
5f09d9b60 Fix podman kube generate --help to show correct help message
06b3a4c1c system tests: fix broken runc test
f0e864075 Man pages: refactor common options: authfile
a78b67a47 Man pages: refactor common options: --annotation
a68e6ddbb utils: Add missing symbols for FreeBSD
a6af67ca9 Cirrus: Update podman-machine comment
22f3dd4c2 Man pages: refactor common options: arch
f14bf91c4 podman images and friends can take one image as argument
7e490e195 [CI:DOCS] Add .DS_Store to gitignore
ab72a371b Don't warn on '/' not being shared while in a container
2d30b4dee Add compatibility support for --debug -D flag from docker
bfae6bca9 build(deps): bump github.com/mattn/go-isatty from 0.0.14 to 0.0.16
b9c094a5d Add Docker compatibility for --dns-option to --dns-opt
1393038c8 pkg/domain: Add stubs for non-linux builds
65641ba8d pkg/specgen: Add stubs for non-linux builds
056917c22 Reword --exit-policy option
d7f6d355b podman-kube@.service.in: Remove Restart=never option with typo
bd0a8c146 added docs for installing certficate authority
5ee3522f5 pkg: Build pkg/machine on FreeBSD
b806e9f36 pkg: Build pkg/util on FreeBSD
6df0ceb9a Add default value for $RM
bc56ee158 Update cmd/podman/containers/restart.go
f26a5246e Fix updated link to install instructions
0dbbb1cb3 Add restart --cidfile, --filter
d856fb43e Add "podman kube generate" command
e2a3f9592 docs: specify git protocol is not supported for github hosted repo
2935c38fd Update release notes for v4.2.0
a4efd401c remote manifest push: show copy progress
79e21b5b1 kube play: sd-notify integration
3fc126e15 libpod: allow the notify socket to be passed programatically
67a2e7351 add `pkg/systemd/notifyproxy`
245be9b39 Document behavior of --timestamp when only FROM is used
e3f029cb8 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
658960c97 build(deps) bump CDI dependency from 0.4.0 to 0.5.0
2bcee9f62 Man pages: refactor common options
25f6fc9c6 I believe that these tests will now run with crun.
a561b7dac check memory test based on range
280f5d8cb podman ssh work, using new c/common interface
d2d7898b8 Cirrus: Improve CI VM image updates for EC2
d7f134d68 Refactor common man page options, phase 2
3738221c5 test: update apply-podman-deltas for new tests
59cb410fe build: implement --cache-to,--cache-from and --cache-ttl
7bd886480 Bump to Buildah v1.27.0
1045647a4 Add interface for apple hypervisor
62e889e2b fix LogConfig type for libpod API
2e3a192bb cmd: refuse --userns if a mapping is specified
696ea7905 specgen: use sandbox id instead of name for annotation
771a35e4b pkginstaller: use correct GOARCH value in case of arm build
b1d1248a1 pkg/bindings: Support writing image push progress to specified io.Writer
f4c53a41c docs: update the podman logo
7ebaabb93 [CI:COPR] podman.spec.rpkg: add python3 dependency for el8
d4c6e056d Fixes #15154 Change order when config and connections are written
83bd7a5c2 e2e: Add rootless mount cleanup test
cc8e4d5fe remove image podman no prune
842c6c7c6 podman generate spec
4cea8adb9 Cirrus: Run Cross builds in [CI:DOCS] mode
3102194f0 podman rmi: improve error message for build containers
5ea4ebb16 markdown-preprocess: force extra newline on comments
9964366f6 start filter flag changes
e67e60226 podman info: hide `--debug`
623b0c57f pkginstaller: use correct GOARCH while building podman binaries
bcfbee986 ISSUE TEMPLATE: remove `--debug` from `podman info`
81a1ea18c pkg/autoupdate: "image" policy: add deprecation comment
43cca5d97 pkg/autoupdate: decompose the update logic
0df51bb6b pkg/autoupdate: move status into `task`
af3ce7084 pkg/autoupdate: document fields of `updater`
3fdd3b1ae pkg/autoupdate: remove image map from updater
82d18a86f pkg/autoupdate: use policy consts were possible
1cc933c6b pkg/autoupdate: introduce status constants
42c4c17c0 pkg/autoupdate: move authfile into `tasks`
3f1928d76 pkg/autoupdate: move more logic under `task`
cfa089c36 pkg/autoupdate: s/updateImage/pullImage/
13a8ebd09 pkg/autoupdate: repull image if other containers failed
2c999f1ec pkg/autoupdate: update unit-by-unit
f8b6a81ae test/system/255-auto-update.bats: add an SELinux comment
87c0c760e pkg/autoupdate: introduce the notion of a `task`
033cc059f pkg/autoupdate: remove redundant branch
328c8ba7b pkg/autoupdate: move policy map into updater
d47609773 pkg/autoupdate: introduce `updater` for shared state
79b10a7c6 readthedocs(sphinx): run the markdown preprocessor
65fb90165 hack/markdown-preprocess: allow to be executed from any dir
031b7dec7 fix hack/markdown-preprocess to support older python versions
7df8d8050 add omitempty to Secret in k8s VolumeSource
328eb2b4c Cirrus: Remove disused env. var.
1e4a141d8 Cirrus: Support EC2 instances in hack/get_ci_vm.sh
44212b90b pkginstaller: makefile improvements to avoid redownloading
e6670cd29 pkginstaller: add makefile target to notarize the built pkg
c5029d2ee pkginstaller: sign qemu-system-* binary for the pkg
56039cffd Refactor common options in man pages
50981cb84 skip pod resource limits test on aarch64
1dbd61653 Cirrus: Fix e2e tests for "mount_rootless_test"
3a7a275c3 Cirrus: use dnf instead of rpm to install packages
1249cbb75 add "podman kube down" command
c5150a571 Add support, and default to rootless w/WSL prompt
bce16a58d Disable F36 service that is incompat with WSL kern
69d7407af switch from "kube/play" endpoint to "play/kube" endpoint.
2685c8dc4 Output messages display rawInput
4dfef202c podman generate systemd --new: allow -h hostname
5ab98f2c0 test: verify manifest inspect must contain OCI annotations
3a05ddfb7 fix e2e sign tests
6c69a2ea1 podman-volume-import: Reword "precendence"
c21306f06 man podman-volume-import: Clarify that merge happens
d462da676 Add support for creating sigstore signatures, and providing passphrases
7075e2e1d Hide podman manifest push --sign-by on remote
68cf11611 Use signByFlagName instead of copy&pasting the string
02f570e4b Remove libpod/common
63d77da5b Update c/common to an unreleased version
5a5624f81 Update the registry server we test against from 2.6 to 2.8
7599fde73 Use existing REGISTRY_IMAGE variables in more places
24a599fe1 Add flag "--compression-format" to "podman manifest push" both in local/remote mode.
53ec47968 Add rm --filter option
68463278e Use httpasswd from the surrouding OS instead of the registry image
49bcb7eaa Bump google.golang.org/protobuf from 1.28.0 to 1.28.1
7a909a3e2 Use 8k buffer to help clients w/ broken parsing
a53a0fca9 Cirrus: Minor YAML cleanup
a24cc463a Remove bats installation script and make target
6764fe03d CI: new check for leftover skips/fixmes
17e3680fb Bump golang.org/x/tools from 0.1.11 to 0.1.12 in /test/tools
379bf1080 Bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
de04d9d75 docs: resolve typo in create,run manpages
de13dea86 With --rm option remove container if podman run fails
da98c8877 Cirrus: enable Fedora 36 aarch64 tasks on EC2
389a4a6cc syncContainer: transition from `stopping` to `exited`
7fab449e3 [CI:DOCS] socket_activation.md: Add start/stop sections
8628c01f5 Fix: manifest push --rm removes a correct manifest list
e4992fb81 Fix: Restore a container which name is equal to a image name
75419c5d8 When removing objects specifying --force,podman should exit with 0
56578c413 Cirrus: Use the latest imgts container
c35ae7640 Add support for building macOS pkg installer
8e56a5605 machine: Fix check which is always true
1b099eec8 [CI:DOCS] podman-generate-systemd.1.md: document --sdnotify
52a4642ed Set TLSVerify=true by default for API endpoints
94e0a364a Semiperiodoc cleanup of obsolete FIXMEs
27679d80b pod create --share none should not create infra
4d18a98ec benchmarks: fix create test
4724a0000 prune filter handling
6a9338ad6 podman generate systemd: handle --sdnotify correctly
ad8940cec fix container create/run throttle devices
290116bf8 integration test: fix network backend option with remote
5a80770e8 API: libpod/create use correct default umask
35035d281 container wait: improve error message
cbdda4e56 docs: remove CNI word where it is not applicable
0a160fed7 Bump VMs, to Ubuntu 2204 with cgroups v1
c00ea686f resource limits for pods
bc6a48eeb [CI:DOCS] Cirrus: Add prominent gitlab warning
88b57dd9f fix broken machine test
19f4a463e pkg/machine/e2e: do not import from cmd/podman
604920dd1 fix some pkg/machine/e2e test to read stderr
ee35ce86d enable linter for pkg/machine/e2e
dd2b79406 libpod: create /etc/passwd if missing
b79ac0aca remote push: show copy progress
afbfbe18a compose test: remove cni config copy
56093a3b4 compat api: always turn on network isolation for networks
80ad0cfd0 compat api: allow default bridge name for networks
3a016c6e4 e2e: show command and output when a timeout happens
138d185cc Bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0
ab4c58bd3 Compat API: unify pull/push and add missing progress info
c1f04a024 podman-remote pull: fix duplicate progress outputs
af118f7c6 libpod: do not lock all containers on pod rm
139d65be8 Fix machine test
438fef1ca kube secret handling for podman play kube
8d190fc48 vendor: remove unused deps
013300a7c Makefile: remove building pages for man5
19495b9fc makefile: remove processing of pkg/docs
f64985135 rpkg: remove usage of pkg/hooks
ffe5da20a pkg,libpod: remove pkg/hooks and use hooks from c/common
da33f1005 Update init ctr default for play kube
4e72aa586 fix goroutine leaks in events and logs backend
9b152ef20 Add pause/unpause --latest, --cidfile, --filter
a65265942 Fix potential leak on mid-stream read error
10d6586cb Makefile: use order-only prereq for podman-remote
0a2ddc9bd [CI:DOCS] Fix typo in manifest manpage
26ae055a2 Remove return error from "containers.pause"
eef39b69e "pod pause/unpause/stop" append "report.Errs" to "reports"
aa1711e3d Cirrus: comment out f35 for podman4
1f0116817 system tests: new system-service bats file
fdba0d790 Vendor in latests containers/storage and opencontainers/runtime-tools
82b1d85eb Print rootfs download as a specific version on Win
576321729 document isolate option for network create
1aafb01a9 buildah vendor treadmill
f67ab1eb2 Vendor in containers/(storage,image, common, buildah)
5f848d89e Run codespell
18c0c19aa Add --host and -H as equivalent options to --url
c9722c0b1 [CI:DOCS] socket_activation.md: fix typo and layout
5f04f9961 Machine init: create .ssh dir if not exist
56cfdffe4 [CI:DOCS] Tutorials.rst: add socket activation
b513dc4c1 Clean up cached machine images
d95e79ebe GHA: Fix dumb error check
d385914cd Cirrus: Trigger podman-machine task by label
a2f6cc74e Podman stop --filter flag
90607a6d0 Podman pull --all-tags shorthand option
3b5034e91 fix tests for "podman kube play"
8e2add770 [CI:DOCS] Update docs/tutorials/socket_activation.md
2270bc5f9 [CI:DOCS] Add socket activation tutorial
ad7c54e13 man page checker: enforce stricter options format
66cb856f9 Switch to `github.com/blang/semver/v4`
0f53abd09 Fixes #14698 Use prepared image for WSL2 machine init
cc2cfe060 Add podman events -f to be alias for --filter
e08a77ce6 Add "podman kube play" cmd
1392922d4 [CI:DOCS] man pages: replace -c with --cpu-shares
e3419c032 abi: create new cgroup when running in a container
7b4afbf62 podman: always call into SetupRootless
16b8d77f9 utils: call MaybeMoveToSubCgroup once
4b547a72a podman: move MaybeMoveToSubCgroup to utils/
445089421 Fix last machine test
bb8ff86bf Use SafeChown rather then chown for volumes on NFS
c9a82d72a Docker uses "-c" to mean "--cpu-shares" in create and run
e83ff8e5e [CI:DOCS] podman-create.md: replace -c with --cpu-shares
da8c6a8ea CI: sanity check for desired runtime
b8a7e275d [CI:DOCS] rootless_tutorial: Remove incorrect advice regarding volumes and mount points
f6ed7a8c9 [CI:DOCS] man pages: remove non-existent option builtin-volume
27e12aa07 test,manifest-run: declare TARGETPLATFORM before using it
ffbc2adf7 fix wrong log message on Trace level
377057b40 [CI:DOCS] Improve language. Fix spelling and typos.
3ed323e1b logformatter: link by *task ID*, not build ID
3ce0709f3 podman machine: do not commit proxies into config file
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Guenther Meyer
|
cb5dfda6f6 |
nerdctl: renamed upstream branch master to main
Signed-off-by: Guenther Meyer <g.meyer@signum-media.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Changqing Li
|
b2ab6a11a4 |
conmon: avoid host contamination by GOCACHE
By default GOCACHE is set to $HOME/.cache. Fix: make[1]: Entering directory '/mnt/tmp-glibc/work/core2-64-wrs-linux/conmon/2.1.3+gitAUTOINC+19110c9746-r0/git/tools' | failed to initialize build cache at /home/build/.cache/go-build: mkdir /home/build: permission denied Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
3626f2c9cc |
docker-distribution: do not build for riscv64
Currently docker-distribution has a do_compile error for riscv64. The problem could be reproduced by: MACHINE=qemuriscv64 bitbake docker-distribution So explicitly set COMPATIBLE_HOST here to avoid it building for riscv64. When someone interested in using this recipe for riscv64 fixes the compile issue, this setting could be removed. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d36563caf1 |
k3s: update to v1.24.7
Bumping k3s to version v1.24.7-rc4+k3s1, which comprises the following commits:
e3c9d859e8 Return ProviderID in URI format
e44d22ca61 Add ServiceAccount for svclb pods
2ca51a3d59 Update to v1.24.7-k3s1 (#6270)
0751b6052e Fix dualStack test
519f13e34d [Release-1.24] Replace deprecated ioutil package (#6235)
c1c7b95dc0 Fix flakey etcd test
6ed1e1423f Fix helm job failure on multi-server tests
87bfc8883b Bump traefik to 2.9.1 / chart 12.0.0
06eb948c23 Fix the typo in the test
3a829ae860 Handle custom kubelet port in agent tunnel
3f5c88e4a3 Fix occasional "TLS handshake error" in apiserver network proxy.
cb0f4bd49c Use structured logging instead of logrus for event recorders
44ae7aa4db Dump info on coredns when deployment rollout fails
a75bbf5f4e Add ADR for ServiceLB move to CCM
69dd30433b Disable cloud-node and cloud-node-lifecycle if CCM is disabled
76f13d3558 Move servicelb into cloudprovider LoadBalancer interface
23c302dccc Move DisableServiceLB/Rootless/ServiceLBNamespace into config.Control
307e45e739 Implement InstancesV2 instead of Instances
7198eb2f74 Bump metrics-server to v0.6.1
0be4ef9213 Add flannel-external-ip when there is a k3s node-external-ip
a8e0c66d1a updating to v1.24.6-k3s1 (#6164)
fb823c8a5f Update to v1.24.5 (#6143)
ae7d6285b6 Fix gofmt warnings
1b806f5fee Bump golang to correct version
ee859f7f5a Add validation check to confirm correct golang version for Kubernetes
cf684c74a3 [Release-1.24] Bulk Backport of Testing Changes
b8f05e4904 Bump containerd to v1.6.8-k3s1
35e488c9c7 Bump runc to v1.1.4
e1884e4d60 Update Flannel to v0.19.2 to fix older iptables issue
79bb7bccd9 Fix e2e tests (#6018)
4c9ad2546c Fix dualStack test and change ipv6 network (#6023)
654d2b9567 CI: update Fedora 34 -> 35 (#5996)
2b35f89664 Convert install tests to run PR build of k3s (#6003)
f81138402e E2E: Add support for CentOS 7 and Rocky 8 (#6015)
ab2638a247 mark v1.24.4+k3s1 as stable (#6036)
7d6982d1fa Export agent.NetworkName for Windows
3e394f8ec5 The Windows kubelet does not accept cadvisor flags
c3f830e9b9 Update to v1.24.4 (#6014)
035c03cfaa Remove codespell from Drone, add to GH Actions (#6004)
b14cabc107 Add nightly install github action (#5998)
75f8cfb6ea E2E: Local cluster testing (#5977)
116c977fbf Convert vagrant tests to yaml based config (#5992)
30fc909581 Update run scripts (#5979)
a30971efaa Updated flannel to v0.19.1
6b7b9c5aa9 Add scripts to run e2e test using ansible (#5134)
18cb7ef650 fix checkError in terraform/testutils (#5893)
77fa7fb490 Removing checkbox indicating backports since the policy is to backport everything (#5947)
b7f7379157 Update MAINTAINERS with new folks and departures (#5948)
db3c569b7f Add docker e2e test
aadab55145 Add ADR for inclusion of cri-dockerd
4aca21a1f1 Add cri-dockerd support as backend for --docker flag
b1fa63dfb7 Revert "Remove --docker/dockershim support"
cf66559940 Print stack on panic
abdf0c7319 Fix comments and add check in case of IPv6 only node
d90ba30353 Added NodeIP autodect in case of dualstack connection
82e5da35a9 Upgrade macos-10.15 to macos-12 (#5953)
43508341c1 Bump minio to v7.0.33
1c17f05b8e Fix secrets reencryption for 8K+ secrets (#5936)
118a68c913 Updates to CLI flag grouping + deprecated flag warnings. (#5937)
13af0b1d88 Save agent token to /var/lib/rancher/k3s/server/agent-token
4c0bc8c046 Update etcd error to match correct url (#5909)
db2ba7b61d Don't enable unprivileged ports and icmp on old kernels
90016c208d ADR: Depreciating and Removing Old Flags (#5890)
24da6adfa9 Move v1.24.3+k3s1 to stable (#5889)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
75de565e3b |
docker-compose2: introduce go version of docker-compose
Introducing a recipe to build (and create a vendor directory) for the docker-compose2 command, which is a go implementation of he formely python3 docker-compose. This co-exists (for now) with the python version. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
8177e4a6b7 |
tini: fix function declaration without a prototype
This also fix building with clang 1.15 Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
f8c8b90244 |
criu: 3.17 -> 3.17.1
Update criu from 3.17 to 3.17.1: * update file path and remove __pycache__ directory in do_install * rebase 0002-criu-Change-libraries-install-directory.patch * backport patches to fix build errors with glibc 2.36. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
2542c4b3b0 |
buildah: update to 1.27.2
Bumping buildah to version v1.25.0-420-g13622b14, which comprises the following commits:
9c640b00 tag v1.27.2
264c825f Fix broken command completion
be919817 build: support --skip-unused-stages for multi-stage builds
40cd1053 release: bump to v1.27.1
4a8bf740 run: add container gid to additional groups
db8d5921 release: tag v1.27.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Guenther Meyer
|
bcc7d479bb |
kubernetes: fixed typos
After upgrading from honister to kirkstone the build always failed during the package_write_ipk step, because the package name has been overwritten because of the typo in FILES. While investigating, I discovered another typo in class-devupstream. Signed-off-by: Guenther Meyer <g.meyer@signum-media.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
2d0f7255a7 |
docker/proxy: don't use -linkshared unconditionally
The linkshared is not supported in some machines like riscv64 and when supported we can use the GO_LINKSHARED instaed. So export GO_LINKSHARED on the recipe to be available for Makefile. This is currently only used in libnetwork for the proxy build, but could be used in additional locations in the future. Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
758da82203 |
podman: Add ptest support for system tests
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
481b716f7c |
catatonit: Integrate version 0.1.7
This is useful for podman system tests. Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d9af46db9a |
kubernetes: fix more TMPDIR references
Changing the clone location of kubernetes allows us to remove the vendor symlink "fix". This reduces the number of TMPDIR references in the binaries. kubernetes takes care of most of the rest via using asmflags and gcflags interally which specify -trimpath, but unfortunately these flags are being recorded into the binaries and leave us with 4 references to the TMDIR: -asmflags=all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -gcflags="all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -asmflags=all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -gcflags="all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes We leave these for now, as attempts to remove them have broken the build, and kubernetes uses 'go install' versus 'go build' to construct the binaries .. making our normal solutions non functional. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a61f6ea090 |
containerd: fix final TMDIR references
restructure the containerd source layout to avoid symlinking vendor dependencies. This avoid go recording paths in the final binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c278a05948 |
riddler: remove TMPDIR references
convert the riddler recipe to a structure that doesn't need a symlinked vendor directory. go records these links in the binary, making our output non-reproducible. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
79ff2a5b00 |
oci-image-tools: fix TMPDIR references
The structure of the source code layout that was used by this recipe required symlinking subirectories of the source into a location that would be searched by go. While this fixes the build, and produces a working binary, go stores the location into the binary itself. Those stored paths reference the build directory, making the result not reproducible. With this change, we create an alternate structure that doesn't require symlinking and allows go to find the components during build. This results in a simpler recipe and binaries without TMPDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
1242b97f7f |
oci-runtime-tools: fix TMPDIR references
The structure of the source code layout that was used by this recipe required symlinking subirectories of the source into a location that would be searched by go. While this fixes the build, and produces a working binary, go stores the location into the binary itself. Those stored paths reference the build directory, making the result not reproducible. With this change, we create an alternate structure that doesn't require symlinking and allows go to find the components during build. This results in a simpler recipe and binaries without TMPDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
26f698cdb8 |
oci-image-tools: remove TMPDIR references
Pass -trimpath to the build to remove most (but not all) TMDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0b0718efc1 |
oci-runtme-tools: fix TMPDIR references
pass -trimpath to remove most TMPDIR referneces. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f132afed23 |
umoci: fix reproducibility
pass -trimpath to the umoci build to remove TMPDIR references in the binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e465ef7dcd |
riddler: pass -trimpath to build
To fix most of the TMPDIR references, we pass -trimpath to the build via a new variagle GOBUILDFLAGS. There are still some debug references to TMDIR, that will be fixed at a later time. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e167860a87 |
podman-tui: reproducibility, pass -trimpath to fix QA warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
fce21463ff |
docker-distribution: pass -trimpath to fix reproducibility warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f6f4f2c1c3 |
skopeo: reprodicibility enable trimpath and strip
Skopeo is throwing TMPDIR QA warnings due to paths being built into the binaries. We fix this by creating a new variable to pass -trimpath into the build, and also by defining the linker flags -w -s to strip source/path information from the binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7cea149bb0 |
docker: reproducibility add -trimpath to go -> $GO patches
With this, we build and package docker without QA warnings due to references to TMPDIR. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c991546a7f | k3s: pass -trimpath to improve reproducibility | ||
|
Bruce Ashfield
|
eb4a659acb |
podman-tui: add README with rendering tips
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |