mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2026-01-27 10:41:26 +01:00
9f40ce9b27
2875 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
9f40ce9b27 |
classes: add go-mod-vcs and go-mod-discovery for Go module builds
Add two new bbclass files that enable building Go applications using git-based module resolution instead of network proxy fetches: go-mod-vcs.bbclass: - Provides do_create_module_cache task to build GOMODCACHE from git sources - Implements pure Python h1: hash calculation with go-dirhash-native fallback - Creates properly structured module zip files and hash files - Handles module path transformations and case encoding go-mod-discovery.bbclass: - Runs module discovery using the oe-go-mod-fetcher tool - Generates go-mod-git.inc and go-mod-cache.inc files - Supports bootstrap mode for initial recipe conversion Together these classes enable fully offline, reproducible Go builds by fetching module sources via git and constructing the module cache during the build rather than relying on network access to module proxies. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
44c4e44db7 |
devtools: add go-dirhash-native for Go module hash calculation
Add a native recipe that builds the Go dirhash tool for calculating h1: hashes on module zip files. This is used as a fallback when the pure Python implementation cannot be used. The tool implements the Go module hash algorithm per the Go modules reference specification. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
26e2b40b91 |
xen/x86: fix QA errors
The xen version bump brought in these QA errors:
ERROR: xen-tools-4.21+stable-r0 do_package: QA Issue: xen-tools: Files/directories were installed but not shipped in any package:
/usr/lib/xen/tests/test_x86_emulator
/usr/lib/xen/tests/test-cpu-policy
/usr/lib/xen/tests/test-tsx
Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install.
xen-tools: 3 installed and not shipped files. [installed-vs-shipped]
ERROR: xen-tools-4.21+stable-r0 do_package: Fatal QA errors were found, failing task.
ERROR: Logfile of failure stored in: build/tmp/work/x86-64-v3-poky-linux/xen-tools/4.21+stable/temp/log.do_package.2597669
ERROR: Task (meta-virtualization/recipes-extended/xen/xen-tools_4.21.bb:do_package) failed with exit code '1'
NOTE: Tasks Summary: Attempted 4228 tasks of which 4210 didn't need to be rerun and 1 failed.
We package two of the new files, and delete one host-compiled tool that
isn't used.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
358452b4e5 |
kvmtool: update to -tip
Bumping kvmtool to latest, which comprises the following commits:
7ad32e5 net/uip: Avoid deadlock in uip_tcp_socket_free()
c4e9b3a virtio/pci: explicit zero unknown devices features
ba6830e vfio: include libgen.h (for musl compatibility)
1117dbc riscv: Allow including extensions in the min CPU type using command-line
a50e8d8 riscv: Add cpu-type command-line option
d47ad01 riscv: Include single-letter extensions in isa_info_arr[]
b6e9f38 riscv: Fix no params with nodefault segfault
1132ace riscv: Make system suspend time configurable
fcc3160 riscv: Add SBI system suspend support
0641ed8 riscv: Add Ziccrse extension support
8be1c78 riscv: Add Zabha extension support
a988086 riscv: Add Svvptc extension support
2ab7f9f Sync kernel UAPI headers with v6.14
ad9b731 util: Fix update_headers.sh after removal of 32-bit Arm code
d410d9a arm64: Get rid of the 'arm-common' include directory
0a10c48 arm64: Rename top-level directory
4cd7b87 arm64: Move asm headers
f8a539a arm64: Move remaining kvm/* headers
7113578 arm64: Combine kvm-config-arch.h
65878da arm64: Merge kvm-cpu.c
14e8c42 arm64: Combine kvm.c
5188575 arm64: Move arm64-only features into main directory
329fe56 Drop support for 32-bit arm
e48563f riscv: Add Ssnpm extension support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Jaeyoon Jung
|
71801fb8a1 |
lxc: Fix build with musl
Signed-off-by: Jaeyoon Jung <jaeyoon.jung@lge.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
4499b1b3f1 |
libvirt: set firewall backend priority
If firewall_backend isn't configured in the config file, libvirt will
choose the first available backend from the following list by default:
[nftables, iptables]
so when nftables is installed in image, firewall backend nftables rather
than iptables is adopted.
Add a PACKAGECONFIG to set the firewall backend priority. And update
runtime dependencies for backend nftables.
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
18c8c60991 |
irqbalance: update to v1.9.4
Along with picking up the latest commits:
- we drop our previously backported patch
- make the init system selection more flexible, with a systemd
PACKAGECONFIG
- package the upstream .service file + support environment
Bumping irqbalance to version v1.9.4-85-g4c23485, which comprises the following commits:
907b65f meson: force systemd-service installation with a seperate option
14fb838 Fixed incorrect comparison in snprintf() in procinterrupts.c.
5fdc1d6 Added missing '/' and fixed message in procinterrupts.c.
030edf9 Safer string handling in procinterrupts.c.
0a7ca36 Increase file descriptor limit via systemd service file
ef80188 update workflows to ubuntu-24.04
41cb97c Properly embed EnvironmentFile sourced systemd configs into meson and autonconf
4996883 Unify meson and autoconf: Install executables to sbin
ffa304a Fix the wrong string existence checking condition
d602002 check_platform_device: Check the length of path
105b155 Check API command length, allow up to 16384
d434114 fix some GCC fanalyzer warnings
3685d33 Use EPERM instead of EIO when try setting irq affinity fails
1489ae3 irqbalance.1: a , b => a, b; it's type => its type
25fa380 Check info->moved before updating
196385b Add CAP_SETPCAP to CapabilityBoundingSet in irqbalance.service
5d9eb19 Version option should return 0 rather than 1
2860da4 Minor punctuation fix.
42115bd define IRQBALANCE_ARGS as empty string to squelch systemd warning
da75aae conver strncmp to g_str_has_prefix
6f9f9e9 avoid malloc with create_credentials_msg
4341808 use g_strdup_printf
4d53728 gcc analyzer: increase socket_name size
e39848b gcc analyzer: add NULL checks
7622883 remove malloc from ucred
a7cfbeb use g_malloc and friends
13916f7 clang-tidy: remove pointless casts
2ed4dd0 clang-tidy: don't assign in if
16564e3 clang-tidy: add missing free
d36ae56 direct initialize iovec
5010a97 direct initialize msghdr members
9851c8c Remove extraneous space causing --with-systemd not be aligned
c90599b Disable linking to curses if --without-irqbalance-ui is specified.
5405144 Track IRQ "slots" count per CPU to avoid overflowing
d16ad5d Wrap migrate_irq in a higher level utility function
44795ad CI: add meson CI
e78ea26 clang-tidy: remove duplicate include
02f7c17 clang-tidy: remove redundant declarations
9b1ced2 clang-tidy: remove return in void functions
2c3cbb5 clang-tidy: don't use else after return
8f575ec replace malloc with g_malloc0
4c1b0a0 clang-tidy: properly use strncmp
122ae9e clang-tidy: don't assign in if
80a8aeb ui: change void to char
2e1bf90 meson: use find_library for numa
280b89d meson: replace generic array with files()
f2c8309 Drop ProtectKernelTunables
23c6da7 meson: add a minimum version decorator
ea733f4 meson: drop redundant install_man() options
21e1ae8 meson: bump project version to 1.9.4
922ee47 meson: move build files to repository root
f2aebff cast void pointer to actual type
b6a831d add void to fix strict-prototypes
1277ea5 fix 32-bit formats
8301666 Check fflush() return value
c0cd614 irqbalance-ui: check if using a negative index of buffer
f8b8cdd update configure to version 1.9.4
8d7c783 Flush file before closing
de0fe4a Fix socket API being blocked for 10s
a99b604 Set additional systemd options for service
f4d987f activate_mapping: set errsave before first jump to the error label
b4c3771 Avoid repeated affinity checks when no change is necessary
ad0ea2c Slience "... rebalancing" messages for unmigratable IRQs
f3282f4 filter console only output when using journal mode
43cace4 Enable systemd feature support by default when building with meson
2c167c4 Add support for linking against libnl when building with meson
73cc58c Turn NUMA support into an enabled feature, when building with meson
1aed521 Set project version of meson build to 1.9.3
f042291 Install man pages when building with meson
2b59014 When building with meson, make sure to link against numa
5635a2e Updating to version 1.9.3
75a15c5 Automatically use systemd journal and run in foreground when under systemd
bc7794d activate_mapping: avoid logging error when there is none
eee7917 activate_mapping: only blacklist irq if error is considered permanent
9a1fd29 activate_mapping: report error reason
470a64b activate_mapping: make sure to catch all errors
f589bdc activate_mapping: avoid use-after-free when affinity cannot be set
4efc192 Revert "activate_mapping: fflush the buffered data to smp_affinity"
8bbc0ae activate_mapping: fflush the buffered data to smp_affinity
d02ec54 procinterrupts: fix initialisation of regex_t struct
0e05127 Fix it so we actually stop when we hit an interrupt condition
3920e06 Fix signedness of error handling
ea1e9a7 Revert "Fix CPU number condition in service file"
0e9acb6 Issue 259: select NL_SKIP / NL_STOP based on error
f166b00 fix CPU number condition in service file
c91bdf6 thermal: Fix log message for perf and efficiency
f85c6c1 ui: do not force black background
ac4ba06 irqbalance: fix memory leak in irq hotplug path
bbcd9a4 procinterrupts: Fix IRQ name parsing on certain arm64 SoC
178cf3b thermal: Fix the warning message
efec4c6 allow AF_NETLINK in the systemd service restrictions
7c18ffc optimize getting cpu number
3ddaa30 updating to version 1.9.2
febe697 change the log level in thermal.c from error to warning
b25b1f9 Avoid double free on deinit_thermal()
014765d Fix uninitialized variable
e10949e irqbalance: fix a minor typo
ac05cb7 updating to version 1.9.1
725d9b1 irqbalance: properly check if irq is banned
402ca1b irqbalance-ui: display irq name in SETUP IRQS
d48eaf6 irqbalance: use endptr to check whether the input parameter is empty
c8d1fff irqbalance-ui: skip ',' in parse_setup to avoid coredump
cfb15f0 Improve documentation and logging for banned cpus
577796a irqbalance-ui: print cpulist in SETUP IRQS
db7dc03 irqbalance-ui: support scroll under tui mode of irqbalance-ui
a61b382 fix memory leak in ui/ui.c
b65faa2 irqbalance-ui: can't change window when in editing state
7f1caca irqbalance-ui: move 'ASSIGNED TO CPUS' to the last column
0a82ddd parse_proc_interrupts: fix parsing interrupt counts
028082a add keep_going check to prevent irqbalance from failing to exit after SIGTERM
5602913 Handle thermal events to mask CPUs
c65cda1 Implement Netlink helper functions to subscribe thermal events
b66647a Prepare to handle thermal event
378d470 add meson
bd67801 Enable static building of irqbalance
5228835 check whether savedptr is NULL before invoking strlen
ff48ac9 get irq->module relationship from /sys/bus/pci/*/driver
80d5fbb updating to version 1.0.9
df3436b Add the cpus_copy() helper
61a9423 correct wait time in oneshot mode
917b102 Document migrateval
188f9ef Confine irqbalance to systems where it is useful.
0f594a6 Separate variable declaration from assignment
9b004c6 Ensure that we get all of a unix message
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5459ca4fdc |
lxc: update to v6.0.5-tip
Bumping lxc to version v6.0.5-17-gf9ff9ea2a, which comprises the following commits:
f9ff9ea2a build(deps): bump actions/checkout from 5 to 6
c21296262 apparmor: skip /proc and /sys restrictions if nesting is enabled
be5ce5529 Update lxc.spec.in to use meson
e716bd6c8 config/apparmor/abstractions: Drop manually generated container-base file
5d0182b0d config/apparmor/abstractions: Fix meson build generation of container-base
539424964 build(deps): bump actions/upload-artifact from 4 to 5
fdc302322 builds workflow: make .orig.tar.gz unique per build
d0d4f9896 github: Drop focal source packages
944118acd add MFD_EXEC and MFD_NOEXEC_SEAL flag to memfd_create
ca9ecef01 Automatically detect compression format in the lxc-local template
50bddb8e3 lxccontainer: check if target exists before remove in create_mount_target()
d692ba5a9 Standardize log file create mode to 0640
0e84c43d7 Enable systemd to create /var/lib/lxc at runtime with StateDirectory
277634689 commands: Fix indent
9184960a8 README: update links
7e0e0d1ae Rename CONTRIBUTING to CONTRIBUTING.md
675ffcd71 README: Fix CI links
9e4e69ed1 Release LXC 6.0.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
18dc032f50 |
xen-tools: fix QA error
Fixing: ERROR: xen-tools-4.21+stable-r0 do_package_qa: QA Issue: File /usr/lib/xen/tests/.debug/test_vpci in package xen-tools-dbg contains reference to TMPDIR [buildpaths] ERROR: xen-tools-4.21+stable-r0 do_package_qa: Fatal QA errors were found, failing task. ERROR: Logfile of failure stored in: /poky/build/tmp/work/armv8a-poky-linux/xen-tools/4.21+stable/temp/log.do_package_qa.910059 ERROR: Task (/poky/meta-virtualization/recipes-extended/xen/xen-tools_4.21.bb:do_package_qa) failed with exit code '1' Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
cd3d19c7de |
conf/versions: update xen default to 4.21
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d76bc6736c |
xen: introduce 4.21 recipes
This introduces the 4.21 recipes. Along with the main Xen and Xen-tools updates, we also have the following: - two compile patches for xen and xen-tools that fix issues with the way yajl is pickup in the yocto environment - packaging of the new libxenmanage libraries - fixup of the watchdog system units - updates to the test packaging (new directories) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Matt Fischer
|
19241a745f |
Add gpgme as a RDEPENDS for podman
podman needs gpgme in order to run. In some usages, this is being pulled in transitively by skopeo, but since skopeo was removed as a podman dependency last year, it now needs to be direct. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Tom Hochstein
|
d54989cbee |
libvirt: Fix missing libvirt-python
The do_rootfs task for an image that includes libvirt-python fails. ``` - nothing provides libvirt-python needed by packagegroup-fsl-virtualization-1.0-r0.ls1012afrwy from oe-repo ``` The log shows that the do_compile:append() from libvirt-python.inc is failing but not reporting the failure. ``` 174: cd: can't cd to /.../libvirt/v11.8.0+git/sources/libvirt-v11.8.0+git/libvirt-python-11.8.0 ``` The root cause is the archive folder format is changed from libvirt-python-VERSION to libvirt_python-VERSION, but the do_compile and do_install tasks are hard-coded to the old format. Fix the root cause by encoding the archive folder name in a common variable. Also, fix the build and install commands so the cd failure is not ignored. Signed-off-by: Tom Hochstein <tom.hochstein@oss.nxp.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Changqing Li
|
c2185cd5ef |
layer.conf: add kubernetes into NON_MULTILIB_RECIPES for x86-64
Here is the setting in recipe kubernetes: COMPATIBLE_HOST = '(x86_64.*|arm.*|aarch64.*)-linux' x86 is not support, so add kubernetes into NON_MULTILIB_RECIPES for x86-64 to avoid extending lib32- variant Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7936c72223 |
kernel/6.17: add support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
389df3b77e |
libvirt: update to v11.8.0
Bumping libvirt to version v11.8.0-87-g0c1a1f9fd4, which comprises the following commits:
0c1a1f9fd4 qemu: Drop reconnectBlockjobs from _qemuDomainObjPrivate struct
7353bc5fda NEWS: Document new host-model hyperv mode
8458bb521e qemu_process: Populate hyperv features for host-model
c181c7dd13 conf: Introduce hyperv host-model mode
4545827ba3 qemu_caps: Introduce virQEMUCapsGetHypervCapabilities()
ba011bebd9 qemu_capabilities: Fetch new hyperv domcaps
0141f6544c qemu_capabilities: Format and parse new hyperv domcaps members
57d2f4a0f0 conf: Report default hyperv values in domain capabilities
4cc4f0b04a docs: Drop remark on now unsupported version of QEMU
47271c204e conf: More hyperv related members into a single struct
064682ab33 libxl: Simplify setting HyperV features
c66bbac8d5 qemu_command: Prefer virBufferAddLit() in qemuBuildCpuHypervCommandLine()
8b316fac49 qemu_command: Move hyperv cmd line generation into a function
727c858d6a qemu_caps: Prefer VIR_DOMAIN_CAPS_ENUM_IS_SET()
c9716c0e09 domain_conf: Use virXMLFormatElement() to format hyperv features
78aa096ae2 domain_conf: Move format of hyperv features into a function
5369f071e4 qemu: Use virXPathTristateBool()
e3e4c620f1 virxml: Introduce virXPathTristateBool()
c689aa80c1 virxml: Introduce virXPathTristateSwitch()
b42a12174c wireshark: Adapt to wireshark-4.6.0
002b9f559d wireshark: Don't leak column strings
ba2c4bdd5c wireshark: Introduce and use vir_val_to_str()
1086888f95 wireshark: Don't special case retval of get_program_data() in dissect_libvirt_message()
7374c4ecbd wireshark: Fix int type of some virNetMessageHeader members
02a0e78bf5 wireshark: Move WIRESHARK_VERSION macro definition
41d3b45797 wireshark: Switch header files to #pragma once
b825bb556b wireshark: Drop needless declaration of proto_register_libvirt() and proto_reg_handoff_libvirt()
235e265b41 NEWS: Document Hyper-V enlightenment validation
1d2873f9c6 qemu_validate: Reflect dependencies of hv-tlbflush-direct
c6114de13c qemu_validate: Reflect dependencies of hv-evmcs
f4557315f3 qemu_validate: Reflect dependencies of hv-ipi
941af83360 qemu_validate: Reflect dependencies of hv-tlbflush
da261327ea qemu_validate: Reflect dependencies of hv-stimer
1822d030c3 qemu_validate: Reflect dependencies of hv-synic
da76c1e8fe qemuxmlconfdata: Adjust hv-stimer related tests
359909749a conf: Introduce virDomainDefHasTimer()
6b71d32779 src: Drop needless typecast to virDomainTimerNameType
88225150be network: pf: split flush and rules commands
0756fefdc5 syntax-check: Prohibit the non-clearing 'g_new'
a74b5bc37f Replace all use of 'g_new' with 'g_new0'
5bc43f95e5 qemu-replies-tool: Fix logic error when dumping device properties
076545ef27 qemucapabilitiestest: Update 'caps_10.2.0_x86_64' to v10.1.0-1060-geb7abb4a71
31800ec2b1 locking: use & install test_libvirt_sanlock.sug for both QEMU & LibXL
cfed8b9e55 Revert "rpm: disable sanlock when QEMU is disabled"
fcfd6f12c5 qemu: Don't add memballoon by default on RISC-V
574d797f59 news: Update for USB controller model selection improvements
436485cb7c qemu: Remove use of piix3-uhci for non-x86
198e68197c qemu: Remove fallback to piix3-uhci for Arm virt guests
21e584a4fb qemu: Don't special-case realview/versatilebp for USB
bfe1aca211 qemu: Unify USB controllers across Arm architectures
d9add4c3f1 qemu: Use qemu-xhci with no fallback on RISC-V
a618b9e1cd qemu: Use qemu-xhci with no fallback on loongarch64
c7365dd157 qemu: Clean up qemuDomainDefaultUSBControllerModelAutoAdded()
8bb0f4275a qemu: Clean up qemuDomainDefaultUSBControllerModel()
44a63c2188 qemu: Add qemuDomainDefaultUSBControllerModelAutoAdded()
25be83dbfc qemu: Add qemuDomainDefaultUSBControllerModel()
45eab0181e qemu: Validate USB controllers earlier
5050039e30 qemu: Skip USB controller validation when model=none
dc6e5b676d qemu: Validate PCI support for USB controllers
2bbfcd2042 qemu: Rename function argument
d069531a57 qemu: Fold check into qemuBuildSkipController()
de797a86e1 qemu: Drop skip for USB controllers on s390x
bed1112bbb qemu: Don't generate alias for model=none USB controllers
ec1848975c qemu: Always default to no USB controller on s390x
519cc637e8 qemu: Add sanity checks for auto-added PCI controllers
956253d1cd qemu: Update qemuDomainSupportsPCI()
2ad21cd97f qemu: Validate presence of PCI support
fa46554957 qemu: Prevent use of PCI devices when PCI is not supported
a66db76447 qemu: Introduce qemuDomainNetIsPCI()
c60d168605 qemu: Don't add PCI, USB or memballoon to microvm
80eb60354e qemu: Don't add memballoon to isapc
205e131f97 tests: Add coverage for PCI use with isapc and microvm
b38fb62e2e qemu: Fix PCI/USB handling for Arm realview boards
30e3efad52 tests: Use realview-eb instead of realview-pbx-a9
a416ccfb98 qemu: Check for pci-ohci availability
4005d83a9a tests: Fix some usb-controller-*-unavailable cases
9a3ff406b7 tests: Expand coverage for automatic/default USB controllers
b5956b30aa tests: Rename usb-controller-implicit-*
2a9bdeb0d5 tests: Minimize usb-controller tests
b00c8f4b5f tests: Don't set PCI address in usb-controller-default tests
6448293933 tests: Don't use memballoon=none for minimal tests
fab45749f8 tests: Drop coverage for versatilepb on aarch64
58d555fae7 tests: Fix typo in usb-controller-nec-xhci-autoassign
f61b083f3d tests: validate an XML config with USB vendor/product set
fefde61758 rpm: disable sanlock when QEMU is disabled
f101e3432d rpc: fix race against dtrace probe generator
eb99bbaf2e Post-release version bump to 11.9.0
74249df557 Release of libvirt-11.8.0
ade9dcf6c1 Translated using Weblate (Portuguese)
a993609f46 NEWS: Fix format of XML elements/attributes in v11.8.0 section
c2c08056a1 NEWS: Document features/improvements/bug fixes I've participated in
9b7cfb7886 Translated using Weblate (Chinese (Simplified) (zh_CN))
9324a2ca05 Translated using Weblate (Korean)
227ec18c98 Translated using Weblate (Portuguese)
9d57b562bd bhyve: hooks: improve process start error handling
3a3ee77682 Update translation files
2ffcadbf7c po: Refresh potfile for v11.8.0
dcd5915030 Translated using Weblate (Portuguese)
c925705fc9 Translated using Weblate (Spanish)
7c49321678 Translated using Weblate (Spanish)
c3d08ce65e tests: qemuxmlconftest: test locking with older virtiofsd
90b4a24870 tests: qemuxmlconftests: test virtiofsd command line too
bab8033bcc tests: qemuxmlconf: virtiofs: remove locking from the readonly test case
0a33b7954c tests: qemuxmlconftest: test passt command line too
43c2cd1d08 export qemuVirtioFSBuildCommandLine
41eea2fe89 tests: qemuxmlconftest: Introduce testQemuConfMarkUsed
94a15c3e68 tests: qemuxmlconftests: store suffix in testQemuInfo
fc1e4eb008 qemu: passt: split out qemuPasstBuildCommand
b1983d96f5 news: Update for firmware selection fixes
2800ce3620 qemu: Fix matching for read/write firmware
0b8daf9f68 qemu: Fix matching for stateless/combined firmware
20813b87b7 tests: Add tests for SEV firmware selection
6d35a0b554 tests: Improve AMD SEV-related tests
05b67b8cde tests: Minimize SEV tests
f2dbd14342 tests: Tweak descriptor for combined firmware
2d6e21885f qemuMigrationSrcIsSafeDisk: Allow non-shared qcow2's with raw data file
6e5a3334b2 qemuBlockGetNamedNodeData: Extract 'data_file_raw' flag
f8201b0032 qemuMigrationSrcIsSafeDisk: Check also data file properties for migrability
0ca45005d7 qemuMigrationSrcIsSafeDisk: Extract safe migration checks for one storage source
60899fc8fc qemuMigrationSrcIsSafe: Extract code for checking safe migrability of one disk
9bf19c09a4 qemuMigrationSrcIsSafe: Drop 'DEBUG' message about qemu supporting cache dropping
07a40de613 ci: regenerate with 'lcitool manifest'
970fead068 docs/apps: Remove "Cuckoo Sandbox"
04c1f45831 Translated using Weblate (Portuguese)
8e8f496d87 Translated using Weblate (Portuguese)
c1f742fe69 Translated using Weblate (Chinese (Simplified) (zh_CN))
229f9e8ee8 Translated using Weblate (Portuguese)
4eb9cc83c8 Translated using Weblate (Spanish)
1d1e316152 util: remove glibcompat.c
48f04627c8 build: bump minimum glib version to 2.68
a9bd4c1e0b ch: Implement virConnectDomainEventDeregister()
5c04a84638 ch: Implement virConnectDomainEventRegister()
76adad0b01 ch: Propagate lifecycle events
f9c1b910bf ch: Emit event on device attach
9c767752f2 ch: Emit event on device attach
06802eeceb ch: Unlock domain in virCHEventStopProcess() on all exit paths
cd00c70695 ch: Avoid memory leak in virCHProcessEvents()
39a0374d13 Translated using Weblate (Portuguese)
addb80ef41 Translated using Weblate (Spanish)
bbe7b999ff Translated using Weblate (Spanish)
0a77a035fd Added translation using Weblate (Arabic)
96d1bfee3e conf: auto-add a pcie-root-port when needed while plugging in pcie-to-pci-bridge
698aea684a conf: improve error message when a PCI controller can't be auto-added
ce74632a61 conf: add forgotten clause to virDomainPCIControllerConectTypeToModel()
82b794ca12 qemu: fix multiple missing setup/teardown of passt process for interface type='vhostuser'
cca246e0cb qemu: support setting guest hostname/fqdn using DHCP on passt-backed interfaces
f2a6c2d39d ch: Avoid memleak on disk detach in chDomainRemoveDevice()
6751994950 ch: Drop useless variable in chDomainFindDisk()
7b70c1868c ch: Drop deadcode from chDomainDetachDeviceLive()
3bd17ffe97 ch: Actually remove device in chDomainDetachDeviceLive()
20d5c61cb4 ch: Avoid memleak in virCHDriverConfigDispose()
f35a1def9d ch: Implement VIR_DOMAIN_DESTROY_GRACEFUL flag support
e635b6a6f7 ch: Introduce flags to virCHProcessStop()
fc56f7279f ch: Make sure the cloud-hypervisor process is killed in virCHProcessStop()
5a89be0611 virprocess: Report errno if virProcessAbort() fails
7afc0388b8 conf: clear the acpiNodeset field after freeing
e7d1a3e2fe qemu: block: Always enable discard forwarding for 'throttle' filter layer
bfc08fcfe5 datatypes: Refactor rest of 'virGet*' helpers
3abc707b2c datatypes: virGetStream: Add missing 'virCheckConnectReturn' check
c3bdec1af0 NEWS: Mention new acpi-generic-initiator support
d983a6bf3b docs: Document acpi nodeset in hostdev
d12d0b160d qemu: Add acpi-generic-initiator unit test
9c24784933 qemu: Generate acpi-generic-initiator command from acpi nodeset
7032eb24e6 qemu: Validate acpi nodeset
8275408276 conf: Add nodeset attribute to the <acpi> element
b21822a29c qemu: Allow to define NUMA nodes without memory or CPUs assigned
daccea611d qemu: capabilies: Introduce QEMU_CAPS_ACPI_GENERIC_INITIATOR
d0752fafdb NEWS: announce disk hotplug support for ch
fc7a3099bb ch: implement disk device detach in public API
62330a66d3 ch: add disk detach helper functions
f9cd2cf238 ch: add virCHMonitorRemoveDevice function
4ba796ab74 ch: add virCHMonitorBuildKeyValueJson
37f4fc95f3 ch: implement disk attach in public API
98c995bdf4 ch: add disk attach helper functions
ce7b66a48a ch: add monitor disk attach logic
eb9906468f ch: add/use virCHMonitorPut function
e285053dc7 ch: refactor virCHMonitorBuildDiskJson
c90b6ff46a ch: pass disk alias to CHV
c5f743c44e ch: assign aliases in ProcessPrepareDomain
40b3321a70 ch: add ch_alias.{c,h} for device alias handling
00db172987 ch: add ch_hotplug.{h,c} files to CH build
6d912238ca esx: pass 'long' to curl_easy_setopt when needed
d05443820e qemu: Don't query unavailable-features if qom-list-get is supported
e18bc30236 qemu: Let qemuMonitorJSONGetCPUProperties also return disabled features
5b88383e21 qemu: Merge qemuMonitorJSONGetCPUDataDisabled in qemuMonitorJSONGetGuestCPU
74261b249f qemu: Always fetch disabled features in qemuMonitorJSONGetGuestCPU
ffdbbc4138 qemu: Merge qemuMonitorJSONGetCPUData in qemuMonitorJSONGetGuestCPU
1dee4afb14 qemu: Add qemuMonitorJSONCPUDataAddFeatures helper
53eb546519 tests: Test qemuMonitorJSONGetGuestCPU with qom-get-list
b21b211923 qemu: Use qom-list-get for checking enabled CPU features
a5322a0a4c qemu: Introduce QEMU_CAPS_QOM_LIST_GET capability
a9fad838f2 qemu: Parse properties list from any JSON array
3c25adb289 qemu: Move feature filtering to qemuMonitorJSONGetCPUProperties
001769452b qemu: Generalize filtering in qemuMonitorJSONParsePropsList
5935abb72c tests: Test qemuMonitorJSONGetGuestCPU with empty unavailable-features
4b7304cfe8 tests: Add a test for qemuMonitorJSONGetGuestCPU
cab77b7a14 qemu: Drop legacy probing of CPU features
55583ae429 libvirt-host: VIR_NODE_CPU_STATS_GUEST: clarify "guest" time
814bec16ee tests: Drop unused vm variable in testQemuMonitorCPUInfo
62a40b89b7 docs : add doc on cpu model and features
f68fddeef0 Translated using Weblate (Portuguese)
80a51de596 Translated using Weblate (Spanish)
0aea1d3e46 scripts: qemu-replies-tool: Add option to dump JSON commands that weren't processed by --dump-all
3fd2cd1115 scripts: qemu-replies-tool: Add stable dump of 'query-command-line-options'
8c5eec9814 scripts: qemu-replies-tool: Dump data from query-version/query-target/query-kvm
c961ddc535 scripts: qemu-replies-tool: Prefix output with filename when dumping data for multiple files
301e1ba244 scripts: qemu-replies-tool: List also data from 'qom-list-properties'
e53eb41b0d scripts: qemu-replies-tool: Dump machine types in --dump-all
790fec6e53 scripts: qemu-replies-tool: Drop specific invocation of marginally useful dump modes
5e585abc1c scripts: qemu-replies-tool: Convert the QMP conversation to list of dicts
05a53dcf54 qemuxmlconftest: Add pinned versions of the 'cpu-host-*' cases for qemu-10.1
c97374c612 qemucapabilitiestest: Add data for the qemu-10.2 dev cycle
a1210230eb qemuxmlconftest: Rename and strip specific machine type from 'x86_64-default-cpu-*' cases
9eda374f1d qemuxmlconftest: Add missing version specific invocations for 'cpu-host' tests
f005ba072c qemu: monitor: Remove query-tpm-modes/query-tpm-types infrastructure
aabccf3974 qemu: capabilities: Don't use query-tpm-types/query-tpm-models for probe
8673ac3df5 qemu: capabilities: Detect TPM related capabilities from 'qom-list-types'
40e12a60de qemu: capabilities: Drop probe of 'query-migrate-capabilities'
8bb61dadb4 qemu: capabilities: Retire QEMU_CAPS_MIGRATE_RDMA
c9fada7d0b qemu: Always assume support for QEMU_CAPS_MIGRATE_RDMA
e19c1fd674 qemu: capabilities: Update '10.1.0' capabilities on x86_64 after release
ef7fbc7ab4 qemu: monitor: Remove wrappers for 'block-dirty-bitmap-enable'/'block-dirty-bitmap-disable'
b5878727c7 util: virHostCPUGetStatsLinux: support VIR_NODE_CPU_STATS_GUEST
317626fae9 Post-release version bump to 11.8.0
4d408ca4bf Release of libvirt-11.7.0
44990eaf30 Translated using Weblate (Portuguese)
62a9069d4d Translated using Weblate (Korean)
0a7110d4c6 Translated using Weblate (Spanish)
7bdc64ec94 Translated using Weblate (Portuguese)
75e6158a95 Translated using Weblate (Spanish)
37c3ea3ab5 Translated using Weblate (Portuguese)
f46acba428 Translated using Weblate (Portuguese)
6df9e7f62b Translated using Weblate (Czech)
66af43a52d kbase: live_full_disk_backup: Improve the document
b255d00624 docs: formatsecret: Convert inline emphasis of a warning to the '.. warning:' role
e627b91a41 css: Add style for '.. note:' and '.. warning:' rST roles
84f8b7f7d9 kbase: live_full_disk_backup: Fix use of '.. note' directive
37a1bd9458 daemon: Drop log level of VIR_ERR_NO_SUPPORT to debug
e45049c610 qemu: hotplug: Audit device detach before deleting it
a82299ac8b NEWS: document bhyve changes for the release
3acdea2ed3 Update translation files
ca61552fe0 po: Refresh potfile for v11.7.0
1ed76babe3 Translated using Weblate (Portuguese)
9b584d80b1 Translated using Weblate (Chinese (Simplified) (zh_CN))
506cf5484a Translated using Weblate (Spanish)
561d98bbfe Translated using Weblate (Spanish)
b84b31e27f Translated using Weblate (Spanish)
6415fb1495 Translated using Weblate (Portuguese)
9ace7d43c3 Translated using Weblate (Portuguese)
52930e6ad1 Translated using Weblate (Portuguese)
8866684043 Translated using Weblate (Portuguese)
e4e9d5356e Translated using Weblate (Portuguese)
220cdc680e Translated using Weblate (Portuguese)
8286b5ff61 Translated using Weblate (Korean)
83192fedaa Translated using Weblate (Portuguese)
fc8b8e8220 bhyve: autofill NVRAM data for firmware='efi'
d06f8f096a docs: add network driver documentation
4462b85a56 network: bridge_driver: add BSD implementation
d4ffd95614 bhyve: implement domainBlockStats
9eddeb354a bhyve: implement domainMemoryStats
870ccd2db7 virprocess: implement virProcessGetStatInfo() for FreeBSD
9c8c238af0 bhyve: implement domainInterfaceStats
291dbefd07 virt-aa-helper: Avoid duplicate when append rule
35fc21b659 fix typos in NEWS.rst
4e43cf0a4f docs/tlscerts: mention dropped 'encryption_key'
aa7e4f5360 docs/tlscerts: document need for socket activation
06fd44915d spec: Package newly introduced CH conf files
5b69c37265 NEWS: ch: announce log_level config option
65e7baed62 ch: add log level configuration option
5dca0567f6 ch: Add config file support
c573d08ccf tests/qemuxmlconfdata: add tests for video model 'edid' attribute
2a0cd28095 conf: add support for 'edid' attribute to video model
79d6509dbc qemuxmlconftest: Paper over test failure at MacOS
e4588ddac7 docs: storage: fix the "since" tag
35e2f4d7fc qemu: Match firmware with fully resolved and canonicalized paths
12c35ab161 qemuxml2argvmock: Pretend FW blobs are always present
1686db62ed docs: hacking: Define policy forbidding use of AI code generators
0f0d561da2 virCHDomainRefreshThreadInfo: Remove illusion that caller cares about return value
086e2072fd virCHDomainRefreshThreadInfo: Don't trust vcpu ID returned by hypervisor
73ada8b2b9 qemu: domain: Remove unused qemuDomainGetVcpuHalted
1067afb690 virDomainVcpuDefPostParse: Remove impossible check
3ac25cd21b Unexport virCHProcessSetupVcpu
29bea6b9fc network: introduce Packet Filter firewall backend
63a0103df3 qemu: don't warn about missing SMM for CVM firmware
5537732b06 ci: regenerate with 'lcitool manifest'
23a1eb0dc7 Storage: ZFS: implement `resizeVol` method to support native resize
b0cc1c5243 docs: update <hwuuid> docs to refer to version 11.7.0
abe8d89daf qemuxmlconftest: add tests for new hardware UUID (hwuuid) element
5d2235ff45 conf: introduce hardware UUID (hwuuid) element
cd71d5a46e src: fix package name in local pkg-config files
54e853c864 src: add missing libvirt-admin.pc.in for local usage
70126914fb virnetdevvportprofile: Turn 'virtPortType' of virNetDevVPortProfile into proper enum type
425ffa3cd5 virnetdevvportprofile: Drop explicit enum virNetDevVPortProfile declaration
4e19e73bcd Post-release version bump to 11.7.0
5085c7fd03 Release of libvirt-11.6.0
1f5d1144eb Translated using Weblate (Korean)
de4b8a51ca Translated using Weblate (Portuguese)
dbb5642d12 NEWS: Mention RBD namespaces, and auto-shutdown/key encipherment fixes
4747fcc07d qemu: Bypass sending VIR_DOMAIN_EVENT_RESUMED event when TD VM reboot
4ee4bf062e news: document fixed nwfilter driver base chain creation
ab71cd66a9 NEWS: Document features/improvements/bug fixes I've participated in
c36c608f48 NEWS: document bhyve changes for the release
b5a377bb18 Translated using Weblate (Portuguese)
244f82908c Translated using Weblate (Portuguese)
d92ed868a2 Translated using Weblate (Portuguese)
cb1a1a4b6b Translated using Weblate (Portuguese)
ebd995a8e2 Translated using Weblate (Portuguese)
16b726693b Translated using Weblate (Portuguese)
0cbb2dc71c Translated using Weblate (Portuguese)
906e910d5e Translated using Weblate (Portuguese)
c55dd6fbda Translated using Weblate (Portuguese)
0af5b37187 Translated using Weblate (Portuguese)
d8f099360a Translated using Weblate (Portuguese)
d09f15eeba Translated using Weblate (Portuguese)
ac2793f9b5 Translated using Weblate (Portuguese)
cf33947981 Translated using Weblate (Portuguese)
435cf5984a Translated using Weblate (Portuguese)
12a6022e1c Translated using Weblate (Portuguese)
60ba3e763e Translated using Weblate (Portuguese)
108eb67121 Translated using Weblate (Portuguese)
22fa8f7785 Translated using Weblate (Portuguese)
71cccda5f6 Translated using Weblate (Portuguese)
3786cb44bd Translated using Weblate (Portuguese)
8ae8a66891 Translated using Weblate (Portuguese)
07abe42cd5 Translated using Weblate (Portuguese)
a0280f0369 Translated using Weblate (Portuguese)
aff33becb5 Translated using Weblate (Portuguese)
925040d7bb Revert "qemu: Match firmware with fully resolved and canonicalized paths"
7baf59f4fc Revert "qemuxmlconfdata: Regenerate outputs after last commit"
73345ccc7b qemuxmlconfdata: Regenerate outputs after last commit
4efea21ae8 qemu: Match firmware with fully resolved and canonicalized paths
249476cbf9 util: Fully resolve paths with virFileComparePaths
980dd220e5 NEWS: Mention zero discard_granularity option
802c424edc include: fix version for VIR_CONNECT_BASELINE_CPU_IGNORE_HOST
c4c1ad0692 include: s/RECREATION/RECREATED/ in domain event names
ff43c139d3 Update translation files
b405bc6799 po: Refresh potfile for v11.6.0
70b67dcc41 Translated using Weblate (Spanish)
79397fd5d4 Translated using Weblate (Finnish)
21913e4822 Translated using Weblate (Spanish)
dcf9e6270f Translated using Weblate (Spanish)
282ac75b7d Translated using Weblate (Spanish)
646c39786b Translated using Weblate (Portuguese)
899704b0ef NEWS: mention disabling deprecated features by default on s390 CPU models
05bb287a3d qemu: add default_cpu_deprecated_features configuration option
74c305f197 tests: new qemuxmlactive tests for s390x
f279ea36b0 qemu: process: refactor deprecated features code
30335e5fc5 qemu: caps: add virCPUFeaturePolicy param to virQEMUCapsUpdateCPUDeprecatedFeatures
e03995e63e docs: domain: document deprecated_features attribute
5e5528ef14 docs: domain: Add documentation for Intel TDX guest
798f748210 qemuxmlconftest: Add latest version of 'launch-security-tdx*' test data
fcc12f217e qemu: Support domain reset command for TDX guest
1af740c501 qemu: Send event VIR_DOMAIN_EVENT_[STOPPED|STARTED] during recreation
194a36f4fe qemu: Avoid duplicate FakeReboot for secure guest
312c3afa48 qemu: Support reboot command in guest
4f73334821 qemu: Add FakeReboot support for TDX guest
61c4c1b538 qemu: Add command line for TDX Quote Generation Service(QGS)
8214980432 conf: Add Intel TDX Quote Generation Service(QGS) support
2dec0d9ede qemu_firmware: Pick the right firmware for TDX guests
9df19f60f6 qemu: log the crash information for TDX
626b9ca846 qemu: Force special parameters enabled for TDX guest
0a825f910b conf: Expose TDX type in domain launch security capability
67b0720d2f qemu: Add command line and validation for TDX type
ea625cb60b conf: Validate TDX launchSecurity element mrConfigId/mrOwner/mrOwnerConfig
e919a4dd37 conf: Add tdx as launch security type
f873974883 conf: Expose TDX feature in domain capabilities
121fd19942 qemu: Add QEMU_CAPS_TDX_GUEST capability
2d8d8f83a1 qemucapabilitiestest: Add data for the qemu-10.1.0 dev cycle on x86_64 for the '+inteltdx' variant
4c59ff7783 qemucapabilitiesdata: Document '+inteltdx' variant
d7c96e809d qemu: Check if INTEL Trust Domain Extention support is enabled
908bb55724 tools: Secure guest check for Intel in virt-host-validate
a2aeeab0aa meson: Report library versions in the summary
c2c165ea6c meson: Convert attr_dep to dependency()
f8be069a0c qemu: Add support for RBD namespace.
e910f3f172 virStorageSource: Eliminate 'volume' field
0723e066d9 virStorageFileBackendGlusterInit: Refactor cleanup
2bdaab374f conf: Turn 'protocol' field of virStorageSource into proper enum type
fbb9ad02ab qemu: qemuDomainObjPrivateXMLParseVcpu refactor
9ce764872c conf: virDomainChrDefParseTargetXML refactor
5dc483d75f util: virSecretLookupParseSecret refactor
1173b091fe conf: virNetDevVPortProfileParse refactor
acaed8b247 virBitmapNextClearBit: Correct virBitmapNextClearBit function header comment
9a7be0662d qemu: driver: Reformat function headers for block job APIs
3b43fa08ff virSecuritySELinuxGetSecurityMountOptions: refactor printing
aa732b4272 virSecuritySELinuxGenImageLabel: Refactor cleanup
0122f88c6e virSecuritySELinuxRestoreInputLabel: Return values directly
1f1da23162 virSecuritySELinuxSetFilecon: Automatically free 'econ' temp variable
f69ecd970d virSecuritySELinuxGetProcessLabel: Automatically free 'ctx' temp variable
6bb5993897 virSecuritySELinuxReserveLabel: Refactor cleanup
83739c3a18 virSecuritySELinuxGenNewContext: Refactor cleanup
9aa0cfdd55 virSecuritySELinuxContextAddRange: Refactor cleanup of 'context_t'
08afef3fdc security_selinux: Declare internal autoptr cleanup helper for 'context_t'
5db77e0c66 virSecuritySELinuxSetTapFDLabel: Refactor cleanup
3487f083b9 virSecuritySELinuxSet(Daemon)SocketLabel: Refactor cleanup
7f35a1e6f2 virSecuritySELinux(Set|Restore)ChardevLabel: Refactor cleanup
85e22de810 virSecuritySELinux(Set|Restore)HostdevCapsLabel: Refactor cleanup
4bc8d70969 virSecuritySELinuxRestoreFileLabels: Refactor variable freeing
c936a456b5 virSecuritySELinux(Set|Restore)TPMFileLabel: Automatically free 'cancel_path'
80ade3ac7c virSecuritySELinuxRestoreFileLabel: Refactor cleanup
7891ed2d10 virSecuritySELinuxMCSFind: Refactor variable clearing
79d2f496a5 virSecuritySELinuxTransactionRun: Refactor cleanup
aff852bb12 security/security_driver.c/h: Fix function header formatting
02669921cb news: document new crypto TLS priority string settings
69485815d6 nwfilter: Check before removing and reinserting iptable base chains
14e41ac9f3 qemu: add ability to set TLS priority string with QEMU
0b9cfa791f qemu: sanitize blank lines in config file
845e1b5138 qemu: fix order of VNC TLS config entries
b860f44cf2 bhyve: implement timeout for bhyveload
37fb778e53 bhyve: don't reset domain autostart flag on destroy
3a39cfacc3 qemu_tpm: Do not use persistent definition during pre-start checks
93c1571d90 Fix: missing a single quote in doc example
6f8c5c07cf tests: nssdata: add empty status file
618eafca05 nss: Debug print JSON files as they are parsed
cf27a25f9f nss: Print module name
9787ec5277 nss: Include filename in debug printings
d8a911ef9d nss: Make logging conditional on an envvar
bf6b390274 nss: Move logging into a separate file and turn it temporarily on
c5015c435b nss: Promote debug message to proper error when time() fails
3ab00ebb0a rpc: virnettlscert: Rename virNetTLSCertLoadCAListFromFile to virNetTLSCertLoadListFromFile
70c8197a0f virNetTLSCertCheckPair: Fix function definition formatting
306e27d955 virNetTLSContextNewPath: Refactor temporary variable usage
bdbfed0b1c rpc: virnettlscontext: Fix formatting of function definitions
fd0a90be27 NEWS: Mention virConnectHypervisorBaselineCPU improvements
953f19258a virsh: Add support for VIR_CONNECT_BASELINE_CPU_IGNORE_HOST flag
f9f2003762 qemu: Implement VIR_CONNECT_BASELINE_CPU_IGNORE_HOST
bef64f9653 Introduce VIR_CONNECT_BASELINE_CPU_IGNORE_HOST flag
905d6395b7 Change documentation style of virConnectBaselineCPUFlags
d74928fed3 Clarify documentation of virConnectBaselineHypervisorCPU
999d155b21 cpu: Show input CPU model names in debug log
2d5ce69aa9 qemu_tpm: Don't report uninitialized variable in error message
12d0fc3cf7 qemu: Report system error on failed open()
c1cf7cb334 src: fix typo in fixup_name()
22ee3b78db bhyve: sync error messages
79456b79f3 bhyve: extend serial devices validation
91a3d535c6 docs: drvbhyve: document TCP console support
3a342f6402 bhyve: increase number of supported consoles to 4
8b7db74d4a bhyve: support serial type 'tcp'
680ee0e7d1 Allow specifying zero discard granularity for block devices
3451987fca qemu_tpm: Only warn about missing locking feature on shared filesystems
6c6b6b2b41 qemu_tpm: Extract per-TPM functionality from qemuTPMDomainHasSharedStorage
05c5aabb47 qemu_tpm: Rename qemuTPMHasSharedStorage -> qemuTPMDomainHasSharedStorage
1eaaec533a virshFindDisk: fix NULL-dereference of xmlCopyNode() result
cad407c862 qemu: qapi: fix potential SIGSEGV in virQEMUQAPISchemaTraverseObject()
722aad03b0 conf: schemas: add sysinfo.rng and sysinfocommon.rng into list of installed schemas
1f9a64a016 build: prohibit realpath() by syntax-check
923cd431b9 conf: virDomainHostdevSubsysMediatedDevDefParseXML refactor
6465a813d6 schema: Schema validate host '<sysinfo>' XML test documents
918594b419 conf: schemas: Split out common parts of 'sysinfo' schema
2da49eaea4 sysinfotest: Use '.xml' suffix for output files
98a98f9ad6 docs: clarify how to build without -Werror
81df391428 NEWS: Mention switch to virtio-scsi on ARM and RISC-V
bf8c7af771 virdevmapper: Always use device name for finding targets
edf7d9f29a nwfilter: Remove 'qemu-announce-self' example
e7a7bfa66b qemucapabilitiestest: Add dump for the qemu-10.1 development cycle on x86_64
325d3e3094 qemuxmlconftest: x86_64: Bump 'firmware*' test cases to 'pc-q35-10.0'
974ec08cb9 qemuxmlconftest: x86_64: Bump 'firmware*' test cases to 'pc-i440fx-10.0'
060c9efd42 qemuxmlconftest: x86_64: Drop explicit use of '2.9' machine type
9ecbbd713f qemuxmlconftest: x86_64: Drop explicit use of '2.5' machine type
53545ca3c5 qemuxmlconftest: x86_64: Drop explicit use of '2.12' machine type
922db10ee4 qemuxmlconftest: x86_64: Drop explicit use of '2.10' machine type
e67952b0e6 tests: virnettls*test: Drop use of GNUTLS_KEY_KEY_ENCIPHERMENT
3da4602369 kbase: tlscerts: Drop 'encryption_key' feature request
8cecd3249e tls: Don't require 'keyEncipherment' to be enabled altoghther
1c2295fbaf virDomainDriverAutoShutdown: Refactor selection logic for VMs
e1f84ca87e virDomainDriverAutoShutdownDoSave: Don't attempt to save transient VMs
e13e9b46f6 hypervisor: Split out individual steps out of virDomainDriverAutoShutdown
82963fdcb6 qemu: Fix auto-shutdown of qemu VMs by the qemu driver
fe57a6deaa cgroup: Plumb the 'daemonDomainShutdown' parameter of 'virSystemdCreateMachine' to drivers
9b12b7e859 virSystemdCreateMachine: Add flag to invert machined unit dependencies
bb51963bb1 hypervisor: domain: Extract logic for auto shutdown to virDomainDriverAutoShutdownActive
c8adb8537b qemu: conf: Store 'autoShutdown' config in virDomainDriverAutoShutdownConfig
3e0859566a cgroup: Unexport 'virDomainCgroupInitCgroup'
0df20b69c8 virSystemdCreateMachine: Document @maxthreds
3c8e60b9d0 qemu: Use virtio-scsi by default on RISC-V
49478996c3 qemu: Clean up qemuDomainDefaultSCSIControllerModel()
9bbb8944f5 qemu: Improve qemuDomainDefaultSCSIControllerModel()
1fb968eaf1 qemu: Switch to virtio-scsi on ARM
6f64315ba7 docs: fix typo in qemu-passthrough-security
69b894dc04 qemu: Improve error message for USB controller validation
358b68f09d qemu: Move error reporting out of qemuDomainDefaultSCSIControllerModel()
4518ff0f24 qemu: Rename qemuDomainDefaultSCSIControllerModel()
49a9b2e3ec tests: Add controller-scsi-default-unavailable
a6d41688a6 Translated using Weblate (Portuguese)
b2a6de3668 Translated using Weblate (Portuguese)
3d7cb52282 Translated using Weblate (Portuguese)
a3a2086497 Translated using Weblate (Portuguese)
ef3c3990ab Translated using Weblate (Portuguese)
155bae8b93 Translated using Weblate (Portuguese)
2314d60b4e Translated using Weblate (Portuguese)
6fd7945432 Translated using Weblate (Portuguese)
4559999f9a Translated using Weblate (Portuguese)
9cc5b0f9c4 Translated using Weblate (Portuguese)
9f7e8edb6b Translated using Weblate (Portuguese)
80a1157e36 Translated using Weblate (Portuguese)
8b761cbf10 Translated using Weblate (Portuguese)
c67a95fa8c Translated using Weblate (Portuguese)
25e83d781a Translated using Weblate (Portuguese)
d14452dc12 Translated using Weblate (Portuguese)
a9ca942f7b Translated using Weblate (Portuguese)
3ed6e2815b Translated using Weblate (Portuguese)
acff59f868 Translated using Weblate (Portuguese)
50e709fd77 Translated using Weblate (Portuguese)
4fc6869793 Translated using Weblate (Portuguese)
95c741f9c0 Translated using Weblate (Portuguese)
e1227b9645 Translated using Weblate (Portuguese)
ee5cf812e0 Translated using Weblate (Portuguese)
8d6a5d391b Translated using Weblate (Portuguese)
ed137febd8 Translated using Weblate (Portuguese)
9f2638f8bb Translated using Weblate (Portuguese)
f70454b056 Translated using Weblate (Portuguese)
b1822eb340 Translated using Weblate (Portuguese)
01badd1bfb virt-aa-helper-test: Switch to getopts
9569a43b7a virt-aa-helper: Drop cleanup label from get_files()
ecca0dded4 virt-aa-helper: Check retval of vah_add_file()
05e06927b6 virt-aa-helper: Use automatic memory freeing
2f7e11aaa3 virt-aa-helper: Decrease scope of @mem_path in get_files()
980607b1e9 virt-aa-helper: Simplify paths collection
cca3563602 virt-aa-helper: Rework USB hostdev handling
935bd37c4a virt-aa-helper-test: Test hostdevs unconditionally
9f12874238 virt-aa-helper-test: Silence ls
58bf3de02c virt-aa-helper-test: Print errors to stderr
300965f4f1 tests: Fix mocking of open()
21e7bcc14f virpcimock: Strip fakerootdir prefix in virFileCanonicalizePath()
99dd19c013 virpcimock: Automatically invent fakerootdir, if not provided
96f286ef1d virt-aa-helper: Use virFileCanonicalizePath()
68e877c1ad log_cleaner: Use virFileCanonicalizePath()
55668bc3e0 gendispatch: Finish rename of the migration argument
9d69dc2dbc qemu: Finish argument rename
91e74f1de8 src: Unify argument name of virDomainMigratePerform3()
96a5c4cb85 src: Unify argument name of virDomainMigrateBegin3()
767b2b72e7 src: Unify argument name of virDomainMigratePrepareTunnel3()
45d4a7bf57 src: Unify argument name of virDomainMigratePrepare3()
0cf91e4ed3 src: Unify argument name of virDomainMigratePrepareTunnel()
8e5e69e6eb src: Unify argument name of virDomainMigratePrepare2()
846e584654 src: Unify argument name of virDomainMigratePerform()
74976e7e52 src: Unify argument name of virDomainMigratePrepare()
7b54da1d2f Post-release version bump to 11.6.0
64ad0c3f57 Release of libvirt-11.5.0
478290428d Translated using Weblate (Portuguese)
4a9d6429b2 NEWS: document new AMD IOMMU device
0360263f34 NEWS: Mention 'virsh await' and proper emulation of USB cdroms
357cbcb05e NEWS: Mention shared filesystem detection fix
cd867f28cf NEWS: Document features/improvements/bug fixes I've participated in
3e2af21dda Translated using Weblate (Korean)
8c80b9a8d4 Translated using Weblate (Korean)
2cd5f00767 Translated using Weblate (Ukrainian)
e30e75e1de Translated using Weblate (Spanish)
de239f15f5 Update translation files
4bcab57d7e po: Refresh potfile for v11.5.0
c345ea0e7e qemuxmlconftest: Add 'disk-usb-device-model' case
1ba6892d75 qemu: Replace usb-storage with usb-bot
25c4a3643b qemuxmlconftest: Prepare for proper testing in 'disk-cdrom-usb-empty'
3f8f18e389 qemu: monitor: Introduce 'qemuMonitorSetUSBDiskAttached'
d325e96546 qemuBuildDeviceAddresDriveProps: Prepare for 'drive' address for usb-bot disks
f08af07f83 qemu: Fill in model of 'usb' disks to preserve ABI compatibility
0d47218419 conf: introduce usb disk models 'usb-storage' and 'usb-bot'
d2dac8f8e2 qemuxmlconftest: Invoke "disk-usb-device" case also without QEMU_CAPS_DEVICE_USB_BOT and with ABI_UPDATE
81d0501eb2 qemu_capabilities: Introduce QEMU_CAPS_DEVICE_USB_BOT
9358c3d747 qemuxmlconftest: Distribute testing of 'removable' disk property
4ca64e4e19 qemuxmlconftest: Drop 'disk-cdrom-bus-other'
7747c1eeb7 qemusecuritytest: Use 'disk-usb-device' case instead of 'disk-cdrom-bus-other'
83f6a02842 qemuxmlconftest: Test various combinations of config
3be1f7933f qemuhotplugtest: Use VIR_DOMAIN_DEF_PARSE_ABI_UPDATE for virDomainDeviceDefParse
8a64db5e38 Translated using Weblate (Spanish)
bc8fbe2683 util: workaround libxml2 lack of thread safe initialization
856f667c8a conf: add passthrough and xtsup attributes for IOMMU
1476060091 qemu: add IOMMU model amd
6291b0af3d docs: formatdomain: document intel-only IOMMU attributes
33a5d9dcea qemu: introduce QEMU_CAPS_PCI_ID
14192af47a qemu: introduce QEMU_CAPS_AMD_IOMMU
1ee74707bd NEWS: mention console type in domain capabilities
35e3c17e02 virSocketAddrPrefixToNetmask: Prevent undefined behaviour on bitshifts on signed integer
11867b0224 tlscert: Don't force 'keyEncipherment' for ECDSA and ECDH
da1ee7799a storage: disk: Properly handle partition numbers separated by 'p'
550c32b172 storage: parthelper: Use if/else instead of ternary operator
1f07ca49e4 virshPrintJobProgress: Don't rewrite migration status line on non-terminals
d5a8cb26fa virQEMUCapsFindBinary: Refactor local variables
c0e7b9923c storage_file_probe: Use named initializer for 'struct FileTypeInfo'
be04898d18 security_manager: Don't leak seclabel in virSecurityManagerGenLabel()
68df8388fc Translated using Weblate (Italian)
f2aed8027f Translated using Weblate (Greek)
e7986a3cb6 Translated using Weblate (Croatian)
31055f2d1f Translated using Weblate (Korean)
737031cb6c Translated using Weblate (Italian)
441c23a7e6 qemu: Be more forgiving when acquiring QUERY job when formatting domain XML
10bb3dd651 NEWS: Mention cacert parameter in esx driver
6c9a0beeca esx: Allow specifying different CA bundle for remote connections
6a8fb1851d virsh: await: Introduce 'guest-agent-available' condition
05c9f3752d virsh: Introduce 'await' command for waiting until target domain state is reached
71e276ed1d vsh: Add support for commands with more return values
10c646993d vshCommandRun: Convert to directly return the exit code
c60b7cbe28 virsh: cmdEvent: Ensure that event callbacks are unregistered before returning
258f61b479 virthread: Add infrastructure for static virCond definitions
6e44bb74f7 virthread: Register auto cleanup function for virMutex
cf24dc8baa docs: Note that zero detection on migration sparsifies image only when discard='unmap' is set
6733f02c40 Revert "docs: Add warning about using a cleared image with VIR_MIGRATE_PARAM_MIGRATE_DISKS_DETECT_ZEROES_ZEROES"
7be1c5e2fe qemu.conf: Improve docs for 'dynamic_ownership' option
fd21c3ecb4 storage: Implement a simple 'checkPool' method for 'rbd' type pools
07a8be20c1 docs: outline bug expectations wrt automated tools / AI agents
226e8ef548 docs: fix list term highlighting in URI docs
71b4b2beb4 ci: Drop unnecessary build dependencies
e362185e43 rpm: Drop unnecessary BuildRequires
9d210f4bca rpm: Fix/clarify Requires
6ca627d38b nvme: Fix more missing enum switches for VIR_DOMAIN_DISK_BUS_NVME
8e8831c3ae bhyve: Fix build after introduction of emulated NVMe disks
fca053ae37 NEWS: qemu support for emulated NVMe disks
17cb1a0c42 NEWS: vmx support for NVMe disks
dbcf514230 qemu: Add support for emulated NVMe disks
1402c40714 qemu: Add support for NVMe controllers
f806f63341 qemu_capabilities: Add emulated NVMe disk support to domain capabilities
d5a87fd7f6 qemu_capabilities: Add NVMe controller and disk capabilities
b295863d70 vmx: Add support for NVMe disks
d80386745a docs, conf, schemas: Add support for NVMe disks
683e1a3cf8 conf: Add virDomainDeviceFindNvmeController
ebf6347879 util: Add support for parsing nvmeXnY(pZ) strings
be1a89c950 docs, conf, schemas: Add support for NVMe controller
6ef5644bfd nodedev: add nodedev name to mdevctl unsupport msg
657d677a2f ci: refresh with 'lcitool manifest'
c7078a136c virDomainDriverAutoShutdown: Fix printf conversion specifier for 'waitShutdownSecs'
e7239c619f qemu: capabilities: Check if cpuModels is not NULL before trying to dereference it
312e4801ed docs: Drop mention of read-only git mirrors
062a0f8891 docs: Unify clone instructions
3588bad8c0 libxl_capabilities: Make some functions return void
6c15c1e6b2 libxl: capabilities: report supported console types
4bbc0f2eae qemu: capabilities: report supported console types
30edbd29ce bhyve: capabilities: report NMDM console
280c5c31de domain_capabilities: add console capabilities
fcea42b554 conf: desktop graphics remove unused option
b5d08b69c4 conf: RDP graphics parse refactor
af7b863726 conf: SDL fullscreen option refactor
7357cb8857 conf: VNC graphics parse refactor
496afd354f NEWS: Document removal of support of VIR_DUMP_LIVE flag from QEMU driver
65bc6b0d4e qemu: Don't accept VIR_DUMP_LIVE flag in qemuDomainCoreDumpWithFormat()
c61d6d0606 qemu: command: Don't attempt to set backend MTU for networks which don't use host backend directly
edd5465c59 esx: Avoid corner case where esxUtil_ParseDatastorePath could be called with NULL 'datastorePath'
947062e1ce docs: Change units to 'kiB' from 'kB'/'kilobytes'/'kb'
2ecf6fe7bf virConnectAuthCallbackDefault: Return failure if 'virGetPassword' returns NULL
ef4c0050b2 storage_file_probe: Remove unused image probing callbacks
a9008a6ea8 storage_file_probe: Move setting of 'compat' attribute to qcow2GetFeatures
982ce5083c storage_file_probe: Parse all qcow2 extensions at once
6d49f0521c storage_file_probe: Call qcow2GetFeatures from qcow2GetImageSpecific
cac833fccc storage_file_probe: Move qcow2GetFeatures(ProcessGroup) functions
e3778b99ee storage_file_probe: Move logic from qcow2GetClusterSize to qcow2GetImageSpecific
7758ddc107 storage_file_probe: Refactor qcowXGetBackingStore into specific callbacks for qcow and qcow2
7ae9141a12 storage_file_probe: Refactor vmdk4GetBackingStore into vmdk4GetImageSpecific
a685b03262 storage_file_probe: Refactor qedGetBackingStore into qedGetImageSpecific
a5fdebe901 storage_file_probe: Refactor cowGetBackingStore into cowGetImageSpecific
7f1bbcab42 storage_file_probe: Add image specific callback taking the whole virStorageSource
4b1e566144 virstoragetest: Add qcow2 bitmaps to some images
8e0a364632 storage_file_probe: qcow2GetExtensions: Fix qcow2 header extension parsing
ed030f628c virstoragetest: Reformat output to highlight dataFile relationship
c97e2a98cd qcow2GetExtensions: Add debug logs for interesting fields in qcow2 header extension parser
9b41febf78 qemuProcessStartValidateGraphics: Move RDP validation logic to qemu_validate.c
e5eb371343 qemuProcessStartValidateGraphics: Remove redundant checks for RDP protocol features
acbfd585b2 qemu: Move checks for number of listening sockets of graphics to validation code
19bc77d581 qemu: Move logic from qemuProcessStartValidateShmem to qemuValidateDomainDeviceDefShmem
27e8378962 qemu: conf: Drop handling of 'vxhs' config options
21dfb261d8 qemu.conf: Document options for VxHS block network protocol TLS config as ignored
dc1764719d qemu: block: Drop code for 'vxhs' storage protocol
90ad22ae08 qemu: Move disk backend validation checks from qemuProcessStartValidateDisks to qemuDomainValidateStorageSource
30e08fd2fe qemuDomainValidateStorageSource: Rework protocol validation into a switch statement
2b1393357c util: Move virFileGetExistingParent out of ifdef __linux__
74c591b784 util: Avoid statfs in virFileGetExistingParent
caa9497e7c docs: fix indent of hostdev examples
94fb348d67 util: Fix virFileIsSharedFSOverride on nonexistent paths
05526b5090 util: Introduce virFileGetExistingParent helper
ee4231ae67 util: Document limitation of virFileCanonicalizePath
3357f31476 Post-release version bump to 11.5.0
8ba3d94995 Release of libvirt-11.4.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cd391e5d74 |
umoci: update to v0.6.0
Bumping umoci to version v0.6.0-3-gd631328, which comprises the following commits:
d631328 deps: update github.com/AdaLogics/go-fuzz-headers to latest
35992ba VERSION: back to development
1c44d6f VERSION: release v0.6.0
7fb9b5a man: umoci-stat: update output examples
0242283 umoci new: include host ARM variant by default
74874af config: add support for platform variants
2ac8e55 oci: config: fix annotation precedence
a8b1c9a test: config: add umoci-stat verification checks
737f534 test: config: add tests for config.json annotation conversions
4a95896 test: check annotations for config --{os,architecture}
61f658e config: add "platform" prefix to "os" and "architecture" setting names
21806cb deps: update to runtime-spec v1.2.1
f7fb0ec test: disable oci-runtime-tool validation
8873e3a build(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0
b3e5a6a build(deps): bump github/codeql-action from 3 to 4
bce0b02 mutate: only embed <=10kB blobs in embedded descriptor test
a058839 gha: reduce ClusterFuzzLite time limit
b7bb5d2 gha: use mode=min caching
94a7c04 gha: run rootless and rootful integration in parallel
b3f2eda gha: add 'complete' job
9726fba CHANGELOG: add image-spec v1.1.1 reference
fe8c448 stat: do not error out for "invalid" config blobs
3668aa9 casext: add handling for empty JSON media-type
b668139 casext: add basic support for embedded descriptor data
a41097f cas: dir: use image-spec-defined constants
cb23ce1 stat: pretty-print image-spec v1.1 fields
eb9098b deps: bump to image-spec v1.1.1
157f759 mutate: handle DescriptorPath rewriting more delicately
5aaf54e pprint: add tests for manifest and config pprint
de8512a casext: improve Blob.RawData sanity check
210b31f assert: move most panics to be in an assertion form
4d6497e build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
f294007 oci: config: use generics more effectively
8b8f449 cmd: add more info to --version
bf94833 CHANGELOG: mention --created and SOURCE_DATE_EPOCH
5be7a47 pprint: add tests for struct pprint
38b2ebe pprint: quote-wrap strings that contain spaces
f8a27d2 pprint: add (empty) suffix when printing collections
97e33f2 pprint: add unit tests
0b3bab0 pprint: quote map keys as well
3856c27 pprint: copy value slice before quoting
1a963c5 make: add empty TESTS variable declaration
72fe818 pathtrie: add benchmarks for PathTrie operations
01fc37c README: move repology to install section
e224b24 test: add 'umoci raw mtree-validate' tests
31e611a tests: use --strict mode for gomtree validation
560465e gomtree: switch to umoci branch
3b97fab test: use "umoci raw mtree-validate" in tests
d207716 umoci: add raw-mtree-validate helper to replace "gomtree --rootless"
0b657e2 oci: layer: truncate mtime when generating archives
b7c5f9f build(deps): bump github.com/cyphar/filepath-securejoin
a5ade2f *: use personal email
a821fb8 build(deps): bump golang from 1.24 to 1.25
b431280 gha: switch to buildx-friendly caching
41a35b9 Dockerfile: migrate to multi-stage builds
7f961b3 test: add SOURCE_DATE_EPOCH tests
ad66eeb oci: add SOURCE_DATE_EPOCH support for reproducible builds
f11b243 CHANGELOG: mention new umoci-stat features
65a984b test: add 'golden output' tests for umoci-stat
fa4d5be stat: include manifest information
4bf1adc umoci stat: include image config information
0fce71a umoci stat: improve quoting of control characters
60e4744 test: only check for history subset of umoci-stat
4a02437 casext: provide raw blob data when fetching parsable blobs
33be2bc dockerfile: build with go1.24
a96b1bb build(deps): bump github.com/vbatts/go-mtree from 0.5.4 to 0.6.0
f87f803 build(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0
52d147a *: apply go fix
6bf0ba1 *: apply gopls modernize
e3d8f81 go: update to Go 1.24
37a7b99 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
911252e gha: use registry.opensuse.org for openSUSE image
2cbd4c4 dockerfile: update to Leap 16.0
44f6ab8 oci: config: gracefully fallback if /etc/resolv.conf doesn't exist
fb3f860 VERSION: back to development
4ff26a3 VERSION: release v0.5.1
df3a23e tests: fix failures on SELinux-enabled systems
c5ac633 oci: casext: properly return errors for GetVerifiedBlob
38fc012 pkg: hardening: disallow negative ExpectedSize
3037f87 oci: casext: explicitly disallow negative-size descriptors
5f31a52 oci: cas: use blob file size as ExpectedSize
8438892 pkg: hardening: improve trailing data test
848aba9 build(deps): bump actions/setup-go from 5 to 6
a90680d build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
88b22f2 dockerfile: install 'file' explicitly
8eaf1be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
fcac36d912 |
skopeo: update to v1.20.0-tip
Bumping skopeo to version v1.20.0-87-gd2a1740f, which comprises the following commits:
144e9151 Add missing newline to the output of (skopeo generate-sigstore-key)
a45ceb03 fix(deps): update module golang.org/x/term to v0.36.0
d287ec07 Fold the test cases of TestSyncTLSPrecedence to a single line each
286c5990 Remove the explicit test name
5699f10b Construct the source context from CLI instead of manually
6d2144e6 Use a real YAML fragment instead of constructing inputs manually
1e6817a1 Merge the two TestTLSPrecedence tests
d80c776b Update dependency golangci/golangci-lint to v2.5.0
c7a3a907 Update github.com/opencontainers/image-spec digest to 6519a62
dbd18b97 sync: honor CLI/global tls-verify unless YAML explicitly sets tls-verify
a489ea39 test-integration-local: use SKOPEO_BINARY if set
f59e8938 Add --sign-by-sq-fingerprint and an integration test
9753a1a1 Also build+test with Sequoia
cba21646 Update CI images
b258da23 Update conditions for signing tests
86853ba4 Update module golang.org/x/term to v0.35.0
0114569b Use strings.SplitSeq
24c2a374 Use bytes.SplitSeq
afc0c0f0 Rely on Go-maintained commit value instead of handling that ourselves
509ed8e1 Update to Go 1.24
53bba51c RPM: build with sequoia for F43+
85e4414c RPM: Re-org distro conditionals
af27d1d8 Packit/RPM: Epoch and version fetching fixes
193b5136 Update CONTRIBUTING.md
cf5b488b [skip-ci] Update actions/stale action to v10
a3cb7bf3 Packit: re-enable CentOS Stream jobs on PRs
8675dece Packit/TMT: enable ELN testing on PRs
e5cf4ec7 Update to tagged container-libs releases
5489763c Update module github.com/spf13/pflag to v1.0.10
4e452f97 Add --dest-force-compress-format option on copy
31ca77ce Packit: enable ELN
9558c9c0 Packit: replace files_to_sync with prepare-files
cd978903 RPM: skopeo-tests only installs dependencies
d5881b94 TMT: additions to make local TMT runs similar to testing-farm
dea3a8f1 Update module github.com/spf13/cobra to v1.10.1
11dedf8b Update module github.com/spf13/pflag to v1.0.9
75eb26e6 Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY]
19f1202c TMT: run systemtest via `make test-system-local`
02055fb0 Makefile: inline logic for test-integration-local
7e235ea3 Makefile: test-system-local checks for SKOPEO_BINARY
bb1f0575 Makefile: validate-local depends on tools
885a4fba fix(deps): update module github.com/stretchr/testify to v1.11.1
d6463199 Migrate storage, image and common to monorepo and remote go.podman.io imports.
2451f10d Allow running CI from rawhide images
8602d2e5 Stop using fgrep
0a70844b Update tests to work with the Sequoia c/image backend
01252ab8 chore(deps): update dependency golangci/golangci-lint to v2.4.0
056d83e6 Adding mohanboddu as community manager to MAINTAINERS.md
2d34849c fix(deps): update module golang.org/x/term to v0.34.0
5538ce8c fix(deps): update module github.com/containers/common to v0.64.1
12340b3e fix(deps): update module github.com/containers/image/v5 to v5.36.1
94ef22e9 fix(deps): update module github.com/containers/storage to v1.59.1
f9d10b3c chore(deps): update dependency golangci/golangci-lint to v2.3.1
af9f6d73 Bump to v1.21.0-dev
e2c1eecd Bump to v1.20.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3fdf80a484 |
runc: update to v1.4.0-rc.2
Bumping runc to version v1.4.0-rc.2-13-g13a5c4ed, which comprises the following commits:
ae199719 ci: only run lint-extra job on PRs to main
8bb53e42 ci: bump golangci-lint to v2.5
52ee0fed all: format sources with gofumpt v0.9.1
61070cc0 CI: remove deprecated lima-vm/lima-actions/ssh
42b405d5 libct: refactor setnsProcess.start
e8e22ae1 libct: close child fds on prepareCgroupFD error
5aa229f7 [1.4] libct: switch to (*CPUSet).Fill
18fbdbe9 [1.4] deps: update to golang.org/x/sys@v0.37.0
46331735 VERSION: back to development
8aeb2a4b VERSION: release v1.4.0-rc.2
a2f2cf31 CHANGELOG: add note about cpu shares changes
0b8a41e3 fix(seccompagent): close received FDs, not loop index
1f9157d6 libcontainer/intelrdt: add support for EnableMonitoring field
d792f9fd [1.4] runc exec: use CLONE_INTO_CGROUP when available
33382519 [1.4] libct: use manager.AddPid to add exec to cgroup
7db9930f [1.4] libct: move exec sub-cgroup handling down the line
f19a4c71 [1.4] libct: split addIntoCgroup into V1 and V2
207a497c [1.4] libct: factor out addIntoCgroup from setnsProcess.start
c443aee7 [1.4] script/setup_rootless.sh: chown nit
910f1345 [1.4] Add memory policy support
12ed7f73 [1.4] events/intelrdt: report full schemata
517e7996 [1.4] libcontainer/intelrdt: add support for Schemata field
3009f9d7 [1.4] libcontainer/intelrdt: refactor tests
a0858eaf [1.4] Update runtime-spec
fb0268a0 libcontainer: remove deprecated package "userns"
edef954c test: runc run with personality syscall blocked by seccomp
a6efa62d libct: setup personality before initializing seccomp
b72f4a8d tests/int/cgroups: Use 64K aligned limits for memory.max
bce56e00 libcontainer/validator: allow setting user.* sysctls inside userns
6297cb16 [1.4] VERSION: back to development
b2ec7f92 VERSION: release v1.4.0-rc.1
081b8c25 CHANGELOG: forward-port v1.3.1 changelog
1931ebf7 CHANGELOG: forward-port v1.2.7 changelog
edc2eb60 build(deps): bump actions/setup-go from 5 to 6
779c9e1d libct: user: remove deprecated module
c04d9c44 ci/validate: add modernize run
76281949 libcontainer/configs/validate: add doc.go
ba68a17a libcontainer/configs: add validator unit tests for intelRdt
b8a83ac2 libcontainer/intelrdt: support explicit assignment to root CLOS
89e59902 Modernize code for Go 1.24
b042b6d4 types/events: use omitzero where appropriate
26602650 Add go 1.25, require go 1.24
237cc980 libct/sys/rlimit_linux: drop go:build tag
a38f42ab tests/int/help: simplify and fix
c5e7bc87 tests/int/selinux: fix for non-standard binary name
121192ad libct: reset CPU affinity by default
d1f6acfa tests: add RUNC_CMDLINE for tests incompatible with functions
ea385de4 tests: add sane_run helper
a8faf925 CHANGELOG: document breaking change of runc update
a876347d build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
eedec9c5 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
96f4a90a Switch to packaged criu on arm
9e0f9890 ci: bump golangci-lint to v2.4.x
cfb22c9a build(deps): bump actions/checkout from 4 to 5
10567484 ci: use criu built from source on gha arm
1cf09680 CI: switch to GHA for arm
db26a717 build(deps): bump golang.org/x/net from 0.42.0 to 0.43.0
8f0bb877 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
bf33fe5f build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
620956c2 libcontainer/intelrdt: use Mkdir/Remove instead of MkdirAll/RemoveAll
f6a52d7f build(deps): bump github.com/seccomp/libseccomp-golang
3b533b23 script/lib.sh: remove obsoleted comment
3a962655 libcontainer/intelrdt: use SecureJoin in NewManager
e6b4b5a1 tests: bfq: skip tests on misbehaving udev systems
ceef984f tests: clean up loopback devices properly
f73e2837 libcontainer/intelrdt: refactor path handling
85801e84 runc update: refuse to create new rdt group
e846add5 libcontainer/configs/validate: check that intelrdt is enabled
57b6a317 runc update: don't lose intelRdt state
314dd812 tests/cmd: simplify getting net.UnixConn
87b8f974 setupIO: close conn on error
7d2161f8 setupIO: simplify getting net.UnixConn
1a26cf3a ci: speed up criu-dev install
1c2810be ci: bump golangci-lint to v2.3.x
66a533eb tests/int/events.bats: don't require root
3620185d rootfs: remove /proc/net/dev from allowed overmount list
46dac589 tests/int/update: fix getting block major
6a0644df build(deps): bump golang.org/x/net from 0.41.0 to 0.42.0
859feb8e build(seccomp): Add audit support for loong64
fc8162e6 build(deps): bump github.com/opencontainers/cgroups from 0.0.3 to 0.0.4
b3432118 tests/int/cgroups.bats: exclude dmem controller
4a6ef6b9 build(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0
a09e7038 docs/systemd.md: amend
aa0e7989 libcontainer: close seccomp agent connection to prevent resource leaks
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
ce3cd423 criu: simplify isOnTmpfs check in prepareCriuRestoreMounts
f91fbd34 criu: inline makeCriuRestoreMountpoints
b8aa5481 criu: ignore cgroup early in prepareCriuRestoreMounts
0c93d41c criu: improve prepareCriuRestoreMounts
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
e0282287 bug:fix runc delete run before delete exec.fifo
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
bc96bc85 libct/seccomp: use maps and slices pkgs
370733b7 libct/cap: rm mapKeys, use maps.Keys, slices.Sorted
3a33b6a3 Make state.json 25% smaller
9c5e687b libct: Use chown(uid, -1) to not change the gid
d31e6b87 ci: bump bats to v0.11.0
8e653e40 script/setup_host_fedora.sh: use bash arrays
a76a1361 script/setup_host_fedora.sh: remove -p from mkdir
af386d1d tests/int: rm some "shellcheck disable" annotations
b48dd651 ci: bump shellcheck to v0.10.0
6e5ffb7c Makefile: bump shfmt to v3.11.0
53931553 libct: log a warning on join session keyring failure
9aeb7905 tests/int/selinux: fix skip message
5ac77ed6 libct/int: add/use needUserNS helper
1d9bea53 .cirrus.yml: install less dependencies
1afa1b86 signals: replace unix.Kill with process.Signal
346c80d7 libct: replace unix.Kill with os.Process.Signal
135552e5 CI: migrate Vagrant + Cirrus to Lima + GHA
d5fe5303 build(deps): bump golang.org/x/net from 0.36.0 to 0.37.0
000cdef7 build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
79e9cf53 doc: update spec-conformance.md
12c2e21f build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0
05e83fc6 deps: bump go-criu to v7
5d6e7e12 VERSION: back to development
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b867f8745c |
podman: update to v1.8.1
Bumping podman-tui to version v0.9.0-587-gcf755526, which comprises the following commits:
cf755526 Bump to v1.8.1
f4dd02c0 Windows style use default colors
6c7ddd29 Bump to v1.8.0
c95ae167 Bump github.com/containers/podman/v5 from 5.6.0 to 5.6.1
d4632385 Bump actions/setup-python from 5 to 6
7d786a06 Bump actions/stale from 9 to 10
e862e758 Bump actions/setup-go from 5 to 6
0929eb9f Bump github.com/spf13/cobra from 1.9.1 to 1.10.1
31a6ba04 Bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
3991403a ui adoption to tview v0.42.0
80c42437 Bump github.com/rivo/tview
ac941ce9 Bugfix ui views - update selected row after last row removal
97377e57 Bump github.com/gdamore/tcell/v2 from 2.8.1 to 2.9.0
e2f0ce0a bats functionality tests update
f378359d System and secret view sort dialogs + code enhancement
8185525e Network view sort dialog
d13317c9 Image view sort dialog
57a2e0f7 Volumes view sort dialog
7bfde770 Pods view sort dialog
7aeb812e Containers view sort dialog
4f9d6429 Bump github.com/containers/podman/v5 from 5.5.2 to 5.6.0
ced73692 golangci-lint v2.3.1 update for podman v5.6.0
2d5c903e golangci-lint update to v2.3.1
5e752b13 Bump actions/checkout from 4 to 5
9320b4b5 Bump golang.org/x/crypto from 0.40.0 to 0.41.0
7e7e0198 Enable packit EPEL10 build
e120c2a1 Bump to v1.8.0-dev
611535d9 Bump to v1.7.0
2affb5c0 Bump golang.org/x/crypto from 0.39.0 to 0.40.0
a28f4f98 Remove unused BUILDTAGS
e6cf0675 Bump github.com/containers/podman/v5 from 5.5.1 to 5.5.2
04b6c478 Bugfix invalid error when default remote connection is not defined
a2eb9b48 Add feature to use podman remote connections config if exist
58b4fbdc Using json format for app config file
9ed811d2 packit - set rpm build for fedora-all
6e59fa69 Added pod create namespace category
cd74eeb5 Added pod create namespace category
196004fe Added container create namespace (ipc, userns, uts, ...) category
e3242f37 Bugfix - connection list lock
92b96533 UI code cleanup + set max with for container view image name
5fc35157 Bump github.com/containers/podman/v5 from 5.5.0 to 5.5.1
5a9541f9 Bump golang.org/x/crypto from 0.38.0 to 0.39.0
5ab12464 Bump to v1.7.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
17e2c213c6 |
netavark: update to v1.16.1
Bumping netavark to version v1.16.1-1-g64b453a, which comprises the following commits:
c95689f release v1.16.1
72706df release notes for v1.16.1
b032159 Revert "[skip-ci] Update actions/download-artifact action to v5"
00c8234 update nftables to v0.6.3
99f73d4 release v1.16.0
97ee174 release notes for v1.16.0
ebe61f2 sync release notes from 1.15 branch
38b098f fix new lint warnings on rust 1.89
e6ef79e [skip-ci] Update actions/checkout action to v5
9b3e332 [skip-ci] Update actions/download-artifact action to v5
e5a773a fix(deps): update rust crate tokio to 1.47.1
6c72a58 fix(deps): update rust crate clap to ~4.5.42
8bc9a2d fix(deps): update rust crate serde_json to 1.0.142
6eed183 fix(deps): update rust crate tokio to 1.47.0
9002adc fix(deps): update rust crate hyper-util to 0.1.16
f7c3883 exec_netns macro: update comment
dbc9200 test: add new test program for connection checks
c984a9f add .cargo/config.toml to runs tests via unshare -rn
43e979d fix(deps): update rust crate rand to 0.9.2
2369c96 fix(deps): update rust crate serde_json to 1.0.141
1614faf fix(deps): update rust crate zbus to 5.9.0
2fee844 log default route mtu
57e37bb get_mtu_from_iface_attributes: return error without mtu
fbedef9 make get_default_route_interface return the full LinkMessage
38cbf3a bridge: early break out of loop
047ef70 change exec_netns macro to return result
cd4d1ff Set bridge MTU to match default route.
5c39692 fix(deps): update rust crate zbus to 5.8.0
c40ee94 fix(deps): update rust crate hyper-util to 0.1.15
4c5833d fix(deps): update rust crate tokio to 1.46.1
e2d1f6e fix(deps): update rust crate tokio to 1.46.0
e5b23f0 fix new rust 1.88 lint errors
083e525 fix(deps): update rust crate clap to ~4.5.40
7e93c15 fix(deps): update rust crate hyper-util to 0.1.14
7105bee make more use of NetavarkError
bc1eeda drop DhcpProxy error type from NetavarkError
8188984 update nix to v0.30.1
6a08cd6 fix(deps): update rust crate clap to ~4.5.39
204dc49 fix(deps): update rust crate zbus to 5.7.1
060f55d write bridge sysctl to config file
b67d91b extract systemd path check to core_utils
35f1db6 move sysctl code into separate module
1d5ee4e wrap sysctl name in error
cdf7302 drop sysctl dependency
f6604eb update MSRV to v1.83
acd3949 dhcp_proxy: set timeout_sender only if required
769a2ac cargo: bump mozim to 0.2.6
b6e12b2 fix(deps): update rust crate hyper-util to 0.1.13
03f1269 Revert "remove search domain from response"
0a6db8d fix(deps): update rust crate tokio to 1.45.1
fca86bb update netlink-packet-route to v0.23.0
3514007 update nix to v0.30.1
23ba475 remove unused nispor from Cargo.toml
ecb32b3 fix(deps): update rust crate zbus to 5.7.1
c24391b fix(deps): update rust crate hyper-util to 0.1.12
a1046af rpm: update description
8f6f84d bump to v1.16.0-dev
c382840 fix(deps): update rust crate zbus to 5.7.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
227651bf69 |
lxc: update to v6.0.5
Bumping lxc to version v6.0.5, which comprises the following commits:
9e4e69ed1 Release LXC 6.0.5
a0fb994a5 build(deps): bump actions/checkout from 4 to 5
93a06e70f lxc/conf: do not leak opts.data memory in __lxc_idmapped_mounts_child()
97eeb8a9a lxc/network: null-terminate ifname string in lxc_network_recv_name_and_ifindex_from_child()
7a94d11d9 tests/lxc-test-snapdeps: try to load overlay kernel module
0bf6aedf0 tests/lxc-test-rootfs: add idmapped rootfs testcase
98ebede63 lxc/lxccontainer: stop printing misleading errors in enter_net_ns()
7111f9d83 lxc/process_utils.h: use strsignal() or sys_siglist[] for Non-GNU distros
032290ec8 meson.build: use has_header_symbol() instead of get_define() to improve compatibility
85c5312be meson.build: fix checks for fsconfig and calls
4da694582 meson.build: set `LXC_DISTRO_SYSCONF` when `-Dspecfile=true`
e4cddef06 Add loong64 to list of recognized architectures
e9980ac90 Revert "re-add onexec for apparmor, move label assumption until after container has been setup for attach"
ab55d52a5 src/tests/oss-fuzz: pin meson to 1.7.2 to workaround build failures
9041ae313 lxc/conf: support flag kind of mount options in lxc.mount.entry options
859f736f0 lxc/conf: support nosymfollow mount flag
c42951b71 conf: Add support for "move" mount flag
e6bce2a2d src/tests/lxc-test-unpriv: prevent fail on cleanup path
601576a08 src/tests/lxc-test-apparmor-mount: prevent fail on cleanup path
b12d1bf89 src/tests/lxc-test-apparmor-generated: enable test
e35133a54 meson.build: remove quirk for Ubuntu 14.04 libcap-dev
cbe34bcc2 apparmor test: add an overlay container start
1541bd8f2 re-add onexec for apparmor, move label assumption until after container has been setup for attach
8ab6ad25b lxc/conf,start: fix setting container_ttys environment variable
b185e523f selinux: fix typo (AppArmor)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f281a3e744 |
kubernetes: update to v1.34.1
Bumping kubernetes to version v1.34.1-54-g03a5f06c269, which comprises the following commits:
30fd2664059 Do not validate etcd version for aggregated server conformance test
f3b637f6c3a Bump etcd to v3.6.5
6ebab3f180f Include relevant dimensions in pod controller indexing
8cd6b631ceb update setcap and debian-base to bookworm-v1.0.6
2674d8a049a Bump images, dependencies and versions to go 1.24.9 and distroless iptables
bddc18b0948 Add integration test for invalid SAN certificate handling
f40e4ce5529 Remove invalid SAN certificate construction
ed6bf3e5db3 kubeadm preflight checks: fix host URL construction
5be5dc9d54a With new changes we will also have a VolumeModifying condition
ea75d2aa00a gce: Fix etcd manifest
61c0fb13a70 Disable SchedulerAsyncAPICalls feature gate due to a known regression
40899107c1d upgrade to cos 121
2bfc98b313c Update pod resize test to accept new cpu.weight conversion.
3ffc54a9e96 kubeadm: rework the FetchInitConfigurationFromCluster node flags
e9f5e892f74 kubeadm: use JoinHostPort in WaitControlPlaneClient
663664c6171 kubeadm: ensure waiting for apiserver uses a local client
3f170932be0 Revert "Merge pull request #133213 from sanposhiho/second-trial-conor"
09ddc5ebbf2 Bump images, dependencies and versions to go 1.24.7 and distroless iptables
b245b551f74 Split preemption integration tests to mitigate the timeout
560cc36db21 fix incorrect warning whenever headless service is created/updated
07ac83c146b fix: use iifname for input interface name matches
35b87e4c188 Wait for quota to report used before creating pvc
856ac4923d7 release-1.34: pin system-validators to v1.10.2
7d43ddbbfb6 Fix ClusterIP load balancer disappearing when InternalTrafficPolicy: Local is set.
4a40ddf1e6b gofmt and review feedback
4ae3b64b736 fix: Update unit test to catch actual nil Labels case and fix functionality to handle nil Labels
16e3f7c1793 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.1
93248f9ae09 Release commit for Kubernetes v1.34.1
988bdd12587 Do not remove PVC ClaimRef to fix flaky VAC test
b97399727e0 DRA kubelet: avoid deadlock when gRPC connection to driver goes idle
76ab5f06640 kubelet/metrics: fix multiple Register call
04fd1ada6f4 kubelet/metrics: misc optimization
7bd2900b1e6 fix: Only warn for unrecognized formats on type=string
f779cf63819 Disable estimating resource size for resources with watch cache disabled
96739661c7c Disable collecting stats for resources not setting prefix to prevent error logs
2631a5f21ea Fix linter
94c0e478827 Fix completion of resource names
08515c751b0 Fix missing control plane health check timeout
a75938d9e5f Fix DaemonSet misscheduled status not updating on node taint changes
3ebbe57311f Add a note about Conflicts return value
98dca817c91 Fix SELinux label comparison
3e75f388199 Add missing cases to SELinuxMount tests
d1337421461 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0
f28b4c9efbc Release commit for Kubernetes v1.34.0
f2170bc6c3d kube-proxy: log but don't exit if ipv4 or ipv6 is not available
f47e9696d72 CHANGELOG: Update directory for v1.34.0-rc.2 release
78405b2c893 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.2
ed3ccdbe323 Release commit for Kubernetes v1.34.0-rc.2
db01f940320 Remove patch/update from ServiceCIDR API conformance test
d49e3d67cb3 Fix storage counting all objects instead just objects for resource
747a295caca fix flake in dra test 'TestPlugin'
4ebe560c74f DRA allocator: fix data race around `claimsToAllocate`
41013e7bf0a e2e_dra: use latest release if stable doesn't exist
e49f6116f9e clarify that staging repos are automatically published
ada2ed84877 add pointer to CONTRIBUTING.md for more details on contributing, clarify read-only
8919ac43c81 special case that kubectl staging repo is currently used to track issues, and only pull requests should be redirected back to the main repo.
011d5001975 link to what a staging repository is
7c43e6d2fdb docs: clarify that this is a staging repository and not for direct contributions
f8bad82c212 update go version for publishing bot rules
bf6c86b562d DRA: wait for stats to converge in "creates slices" e2e test
020b7052ca8 Bump dependencies, images and versions used to Go 1.24.6 and distroless iptables
c8ab780edbd dra plugin: assume claim after api call in bindClaim
81affffa1b8 CHANGELOG: Update directory for v1.31.12 release
8311c1d3d70 CHANGELOG: Update directory for v1.33.4 release
edfa9a5bd28 added WithFlaky() to the device plugin test case: supports extended resources together with ResourceClaim
48a4967718e CHANGELOG: Update directory for v1.32.8 release
064b5916172 improve CRD handling in VolumePopulator test
944b0a49235 do not allow the node to update it's owner reference
0bd039e89af Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.1
4d6b49b3fd4 CHANGELOG: Update directory for v1.34.0-rc.1 release
a956ef48629 Release commit for Kubernetes v1.34.0-rc.1
e073a91256e Add release-1.34 configuration
cbd6fb867ba Remove DeprecatedVersion for apiserver_storage_objects, adjust help text
89b5034d562 Make podcertificaterequestcleaner role feature-gated
2629fe25faa Use Delete() instead of DeleteLabelValues() for etcd metrics
13ced7b7ddc CHANGELOG: Update directory for v1.34.0-rc.0 release
40e8ad9517f Release commit for Kubernetes v1.34.0-rc.0
b7969189866 reduced numPods to 5 from 10 to fix flaky test (supports reusing resources) due to timeout.
2a026f6d659 1/ added retries to AssumeClaimAfterAPICall for the object which is not present in the cache (dynamicresources.go) 2/ modified the assume cache verification to not error out as long as the expected claim is in the cache, no matter its latest and api object are different or not. (dynamicresources_test.go). 3/ fixed nil panic as seen from https://prow.k8s.io/view/gs/kubernetes-ci-logs/pr-logs/pull/133321/pull-kubernetes-integration/1952472629470302208
01470d973b2 Fix memory limit decrease test on cri-o
aca402f25b3 e2e: node: skip breaking tests
0fbc8cd44ce Remove integration-test labels from long running scheduler_perf workloads
e83e5815e5e always pull pause image for eviction tests
418e96bf1af Update prerelease lifecycle to v1.34
65fda6dd34e fixed exended resource scheduling performance test, added more nodes for scheduling the init pods
9eda4789c02 Fix potential race in PodStatusPatchCall implementation
dbfeb9c351a Fix potential race in closing API dispatcher
c7db6362fe6 Move NominatedNodeName preemption-related integration tests to a new package
46b858aa130 fix: return false to apply the patch
07c71097d33 Split DRA scheduler_perf tests into multiple packages
988c9b03fd1 Demote KEP-5278 feature gates ClearingNominatedNodeNameAfterBinding and NominatedNodeNameForExpectation to Alpha
0a12f00e9d3 fix nil panic in hasBindingConditions, it cannot assume claim has allocations
7f052afaef5 KEP 5075: implement scheduler
3e3b2447ffe Promote PodLevelResources to Beta (#132999)
59bba927178 KEP-5075: generated codes from make update
5ad969588d5 KEP-5075: API updates
29d1951eb76 fixes scheduler nil panic due to empty init container request&limit
23d6f73e720 extended resource backed by DRA: test
34a64db2c73 extended resource backed by DRA: implementation
a3a767b37ec WIP: fix e2e tests
4ca47255a8b node: disable resource managers when pod-level resources are enabled
3068b60b830 extended resource backed by DRA: codegen
1f2fd18ac86 extended resource backed by DRA: API types.go
7fbf63a23fc HPA support for pod-level resource specifications (#132430)
6e9b60e3fd8 Add / update kubelet and DRA API owners
60fa65db883 Clear pod.Status.NominatedNodeName when pod is bound
15b1a7fd317 Revert "CPU and Memory manager event when using pod level resources"
aea0a3cca29 Run all relevant test cases with the feature gate enabled and disabled
856e7d2383c scheduler: Stop clearing NominatedNodeName on all cases
6653ef652b3 KEP-5007 DRA Device Binding Conditions: Add dra integration test
9e82c133010 KEP-5007 DRA Device Binding Conditions: Implement DRA logic
e8c3af1f5cc KEP-5007 DRA Device Binding Conditions: Implement scheduler logic
ac81b829e4a KEP-5007 DRA Device Binding Conditions: Run make update
987ad395167 KEP-5007 DRA Device Binding Conditions: API Related code Update
34c3b093835 KEP-5007 DRA Device Binding Conditions: API Update
ac9fad60301 feat: trigger PreFilterPreBind in the binding cycle
48eef9ce9af test: fix TestStructuredAuthenticationConfigReload flake by handling expected network errors
4874d41665b Pod Certs: Fix kubelet volume host arg order
f9bb14fcf06 Fix apiserver service proxying e2e test flakiness
8ace0fb89fb remove failing test that depends on expired credential, remove credential, add TODOs
f07dcd443d7 fix flake on TestStreamTranslator_WebSocketServerErrors
7ba22700bfd websocket streamtranslator increament metrics before writing status
0aea6a1e45d TestStreamTranslator_BlockRedirects use subtests
4b698656bec Returning early if podResources is nil to avoid nil pointer dereferencing
766d011bba2 E2E tests for no hints nor aligment of CPU and Memory managers
5672750e6a3 Unit tests for no hints nor aligment of CPU and Memory
7804b51f420 CPU and Memory manager event when using pod level resources
fd206a0efb3 Add comments for restart rules not used for unknown container status and probes
4b479da4b5b Remove the feature from e2e test
6997fbd1edc Fix incorrect validation on the kubelet
48f8458c41f validation: Fix user-namespaces test case name
50a7a8af4d2 validation: Align usage of hostUsers in error messages
5f7e611f736 validation: Return error if hostUsers=false && volumeDevices
f3466f8adc1 fix: flake integration test
ed74d4cd52f Revert "Revert "fix: handle corner cases in the async preemption""
e8dc272c533 Update etcd to 3.6.4
0f7cd149596 Fix prerelease-lifecycle for volumeattributesclass
9c8dacb0374 ContainerRestartRules feature gate should work with probes
48fd30113c6 [PodLevelResources] Add missing label to Downward API test
57ceb56c6fa Bump etcd sdk to v3.6.4
b562335cb36 Build etcd v3.6.4 image
17d733e2433 KEP-5229: Send API calls through dispatcher and cache
40a90df3b36 DRA E2E: remove stress test
b956484c25a KEP-5229: Add metrics for async API dispatcher
006d7620a8c Revert "fix: handle corner cases in the async preemption"
727a6e6db50 Reject pod when attachment limit is exceeded (#132933)
a652896307c Allow white-spaced CABundle during webhook client creation and validation (#132514)
f1737db166b Update DRA Pod spec comments
b7de71f9ce7 feat(kubelet): Add ResourceHealthStatus for DRA pods
d4a83b9a522 fix(golangci-lint): skip config verification when -c none is used
252513a1b99 Add WithFeature and WithSerial, also check if cgroup v2 is used in test
1bc995c195e Generated files
f925e555483 E2E tests for container hugepage resources immutability
9f5b09eb7bb Unit test pod level hugepage Default and Validation logic
845e94d3707 Validation logic and Defaulting update for pod level hugepages
c15a54f8c0c draadminaccess: move metrics test from e2e to integration
d176808d3a9 Rename hack/*-yamlfmt to -owners-fmt
7adcd21148f Replace cmd/yamlfmt with k-sigs/yaml/yamlfmt
79833578f66 KEP-3695: add kubeletPodResources feature gate to Beta
2cb955d8cca Add KYAML support to kubectl
8182a27f3b0 Re-vendor sigs.k8s.io/yaml @ v1.6.0
94bf8fc8a9d Promoted API `VolumeAttributesClass` and `VolumeAttributesClassList` to `storage.k8s.io/v1`.
8e3f93c8796 Unit test propagate pod level hugepages to containers
52b457421a9 Pod level hugepage cgroup when unset in container
add7132a6db E2E tests for pod level resources Kubelet Preemption
976a617d059 E2E tests for pod level resources eviction manager
13b122b6ffe Unit tests for pod level resources eviction manager
9a3ca05f6bc Use pod level resources for eviction manager
b34f8782e2f Add e2e tests
9086e52feeb Implement restart rules in kubelet
af595a44aef Add container restart rules to API
5dc2030c027 4033: GA KubeletCgroupDriverFromCRI feature gate
27e16751538 Make PSA host enforcement honor emulation version
32053b1d2f3 chore: replace ptr caster with unified ptr.To
83a0d0c660a kubelet: add metric for version CRI implementation will lose support
ffe306d6795 client-go, kubectl: Replace deprecated ErrWaitTimeout with recommended method (#132718)
cb33accc8fc JSON & YAML output for kubectl api-resources (#132604)
8a2db4da426 fix: adjust the log level in the preemption
4c9bf4719b8 fix: handle cornor cases in the async preepmtion
bf98e45afb3 Migrate pkg/kubelet/volumemanager to contextual logging
aecd37e6fb4 Moving Scheduler interfaces to staging: Move PodInfo and NodeInfo interfaces (together with related types) to staging repo, leaving internal implementation in kubernetes/kubernetes/pkg/scheduler
c954e13255a Revert "DRAAdminAccess: add upgrade downgrade test"
12d67506661 client-go/metadata/fake: sets opts.Watch to true
b37fd0cab28 [KEP-4816] DRAPrioritizedList to Beta
6767d54bba6 Bump DRA API version to "v1" in "deviceattribute" package in "k8s.io/dynamic-resource-allocation" module
449763fb115 e2e: podresources: disable memory manager integration
b768c1d1d5b DRA API: bump storage version to v1beta2
24de875cebc DRA: graduate DynamicResourceAllocation feature to GA
d8df1dc1b89 DRA RBAC: fix kube-scheduler bootstrap policy
21d929f5992 integration: use --runtime-config-emulation-forward-compatible
5c4f81743c2 DRA: use v1 API
cff91579e80 DRA API: v1 registration + tests
4e592f6c145 DRA API: s/v1beta2/v1/ and generated files
1f2f433f76d DRA API: verbatim copy v1beta2 -> v1
837b7395d29 kubelet: DRA: Close gRPC connection when removing DRA plugin
c7d6c096833 List available endpoints for kube-apiserver (#132581)
5f4a1aa58c3 chore: ptrTo util removal with ptr.To
a82187cf11a [PodLevelResources] Update Downward API defaulting for resource limits
4c87e60d0db Tests using .host field in probes must be at priviledged level
f94fcac8680 Add new fixture testData for 1.34 PSA
fc0474d7718 Copy test fixtures to 1.34 from 1.32
9540a963964 Copy test fixtures to 1.33 from 1.32
4a3ebf886c4 update the minimal version to fix unit/fixture tests
333b19b4416 Add PSA for blocking .host field on pod probes and lifecycle
c7bf3b81f6a Add flake debugging for admission test
a806e069e26 Remove WinDSR feature gate unit test
765d84e9bff Test only EndpointSlices, not Endpoints, in dual-stack e2e tests
2cb48f77f0f schedule pod availability checks at the correct time in ReplicaSets
61cc6cf8072 draadminaccess test make it serial
33b45c8383e Update "should proxy through a service and a pod" to look at EndpointSlices
d70e7e223cf Port aggregated apiserver discovery to EndpointSlices
41dc2d3b024 Add utilities for getting EndpointSlices for a Service
f7109ed281a [KEP-3751] Allow PVC VACName to update to nil or empty when status.currentVAC is nil
c35e4ad2b24 add codes for drop disabled pod fields
8d65e1e98ee Add e2e tests.
f31aeca4256 Add code for overriding hostnames
88b76214343 Add validation for the HostnameOverride field.
c889ee17a2f Convert kubelet plugin manager from gogo to protoc
abb1b26d508 DRA: Add experimental allocator variant
17cc5e9ecd8 e2e: node: podresources: exercise with dynamicresources enabled
ee8ef383bec Update kubectl kustomize to kyaml/v0.20.1, cmd/config/v0.20.1, api/v0.20.1, kustomize/v5.7.1
af6c97bd14f add Feature Gate.
8b3814c4ab8 Add the HostnameOverride field to the Pod API
c2a06e7912c DRA: skip flaky test case on Windows
f6061605fb5 DRA E2E: run multi-node control plane tests also with two nodes
f0e29208985 DRA E2E: simplify "control plane" test names
603751ee80d DRA E2E: remove redundant test
21ed19798ea kubelet: DRA: Handle grpc.ErrServerStopped in plugin tests
61bd5789be4 Updated to not directly change the global variable `claim`
4f0a5771abd test: add e2e case for mutating named port
db9b9b5a429 Build etcd v3.6.3 image
179551a7cb3 feat: Implement warnings for unrecognized formats in CRDs
437a2ad693f feat: Add func to export the supportedVersionedFormats
d943239c57b added debug_redact to cri api secrets
88af8b6060a Add PodLevelResources to the Windows OS limitations in the API doc
c2b26617bec Check OS for PodLevelResources in kubelet
e2c308aff93 Check OS for PodLevelResources in API server
f6aee636906 add validation logic for APIVersion fields of HPA
6f3b6b91f08 KEP-3721: Support for env files (#132626)
0b60c121947 KEP-4222: Adopt text and JSON transcoding support for CBOR.
917659269af Bump to github.com/fxamacker/cbor/v2 v2.9.0.
216f7485bd9 DRAAdminAccess: add upgrade downgrade test
303a7056ffc e2e: node: podresources: enable multi-container tests
38a9a8a59dc e2e: node: podresources: add tests for missing pod
19b00ecc941 update CCM image to v33.1.1
b070b0a5c5f chore: residual boolptr and intptr removal
407bcf88645 kubelet: add metrics for userns pods
e5ccc31e704 chore: replace float64Ptr with ptr.To helper in validation and integration tests
545b36ba295 fix uncore e2e check
b97decb7d91 client-go/dynamic/fake: sets opts.Watch true
f626e847e72 Migrate pkg/kubelet/winstats to contextual logging
ce2d979390e Run Unschedulable scheduler_perf test case with SchedulerAsyncAPICalls feature gate enabled
0da0897c18d Bump external snapshotter for vgs tests
78bf3410c88 DRA E2E: revisit conformance classification of tests
911df655d3b chore: migrate kubelet lifecycle to contextual logging.
872f0682d58 Use "k8s.io/api/resource/v1beta2" instead of "k8s.io/dynamic-resource-allocation/api" for resource API imports.
31d2de59dd9 Split the symlink target error cases into for each condition
a4fb1562f4a introduce resolvePCIeRoot instead of resolveSysDevicesPath
f3d4b216f3a assign return value to a variable instead of using it directly
7f27c88d0fb Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
ee26a5837c4 Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
8b558a1bc3e fix(validation-gen): correct typos in comments and documentation
63a958ff344 chore(validation-gen): remove TODO regarding ratcheting behavior for slices and maps
c659b418265 e2e test for mirror pod with pod generation
a5b9c7a7981 bump resource claim controller concurrent syncs to 50
6d4000f844e Pod Certificates: make update
4624cb9bb92 Pod Certificates: Basic implementation
facbb66142e Temporarily revert restart-on-node-IP-change behavior of proxy NodeManager
e2d37f3cd7e kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
0dc51b16f9e kube-proxy: merge NodeEligibleHandler with NodeManager
d4892fef768 kube-proxy: merge NodePodCIDRHandler with NodeManager
373fb487f60 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
d21ca8674ce kube-proxy: add NodeTopologyConfig for tracking topology labels
8acda3631f7 Belatedly add tests of proxy NodeConfig and ServiceCIDRConfig
edf4654d76d generate proto
18918e20085 add CSR declarative_validation_test.go tests
69a8a169d59 add WithOrigin and MarkedByDeclarative, update hand-written to error at list instead of list item field, add additional tests for approved+denied case
6a2d5a1e644 feat: add CSR status.conditions approved+denied declarative validation tags and associated declarative validation tags to v1 and v1beta1 types.go
248ad21610b graduate prefer-align-cpus-by-uncorecache to beta
6e77bff18b8 pod sandbox image is not being used by kubelet any longer
43706d6b7a8 add warnings when creating headless service with specified load balancer ip,external ips and/or session affinity
53aa4332b56 fix integration tests
8996e81fc87 fix unit tests
dd4dd3d8ea4 feat: Enabledeclarative validation in CertificateSigningRequest subresources updates
ccc82775f45 expand test coverage for uncore alignment
cb29414b44f Extend E2E test coverage for PSI metrics under pressure
4ed231da063 kubelet/imagePullManager: add benchmarks for image pull record accessors
5486e6f44e2 DRAAdminAccess: move to beta
5d4010d2d24 Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta
4fc9546e0e2 KEP-5229: Implement API dispatcher
549f7c4fc98 image pull manager: add in-memory LRU intents/pulled records caching
ea326373ef3 e2e: node: cpumanager cgroup v1 compatibility
b8d74e75c7b Add test case to prove MaxElements correctly set on IntOrString
7e5aafcb164 ci: remove unnecessary test harness
457df1cf981 ci cleanup: make sure to remove test KUBECONFIGs
3026020b44a Convert `k8s.io/kubelet/pkg/apis/deviceplugin` from gogo to protoc
4f9f6c05363 scheduler_perf: hide "metric ... not found" errors
b8758ac31b7 node: mm-mgr: migrate to contextual logging
2e756e7412c fix data race in OIDC integration tests by serializing test server starts
03acd266a31 chore: residual uint64ptr removal with ptr.To
b84271a7795 DRAAdminAccess: add e2e
ab839c93ff8 feat(kubelet): migrate kuberuntime to contextual logging
30e5cdd6412 kubelet: don't fetch image credentials if the image is present and if we don't need to check if the pod is allowed to pull it
cbba3281a3a integration: fix etcd output handling
d0fc938a07f DRA client: fix conversion of watch channel
f77ce8951e6 DRA: debug output for list/watch client
9d7d3a61722 Bump sample-device-plugin base image to alpine:3.22
7ddb0426266 feat(cmd/kubelet): support structured and contextual logging
fb4e2522240 test: add batch pod deletion for kubelet e2e tests
4b8dd9612ff cleanup: remove example plugins
067bd16b154 Add unit tests to check if right feature gate is checked based on resize request.
f71080c930e Create separate feature gates for static CPU Manager and static Memory Manager support
07ef7842be2 Change memory manager static policy to a public const
ae5247afc18 address feedback
65951744564 unit test for HandlePodReconcile retrying pending resizes
0d24c3b57f0 add sourcesReady parameter to fakeKubelet constructor
6e86af48ccb fix check if requests have shrunk
6a40bcb4268 Retry pending resizes if a status update leads to aggregate requests shrinking
22d724969c9 kubelet: record container_resize_requests metric for all resize updates
13a6d2121c1 check a couple extra failure scenarios
8957109b76b only record resizes in progress and pending after all pods are added
d51375dccf2 record 'kubelet_pod_deferred_resize_accepted_total' metric
b8fc1b6750f record 'kubelet_pod_infeasible_resizes_total' metric
d845e1fd6b8 record 'kubelet_pod_pending_resizes' metric
23005281f74 record 'kubelet_pod_in_progress_resizes' metric
0595ddaafa6 record 'kubelet_container_requested_resizes_total' metric
468aa5e30c4 record 'kubelet_pod_resize_duration_milliseconds' metric
12966276334 define and register ippr metrics
3964fbeab14 kubelet: integrate sa creds in image pull manager
f1728bd584a Add ServiceAccount coordinates to ImagePullCredentials v1alpha1
b9dd2fdec03 credentialprovider: track service account cred source in ext provider keyring
9a4c0f9b2f1 scheduler_perf: Add memory tracking to performance tests
8a42f4ccce5 Add support for CEL list library.
5d31866313a dedupe fetching allocatable and available resources in node test
79dc0b8a414 Add jitter to priodically executed process in storage to avoid too concurrent executions
a48420e3ceb promote PodObservedGenerationTracking to beta
336b5aff452 Check for valid UID range when runasnonroot is true
e9492239b24 Promote windows graceful shutdown to Beta
00bf3b37a74 Graduate PodLifecycleSleepActionAllowZero to GA
99059895f4f Account for caching and maximum object size when estimating LIST request
2256f5747dd Add resize completed event after Inprogress conditionCleared is cleared
d42a1d58d0e DRAAdminAccess: add metrics
f5d12ed39a1 fix: Compare versions instead of pointer comparison
8dc20a0f62d Fix IntOrString cost estimation when schema has a MaxLength constraint
a2e9e9f6677 fix pass ctx into a revised HandleError function
729cd583ad9 scheduler integration: fail test instead of existing
bfa33b18a08 fix(kube-proxy) avoid add zero-masked loadBalancerSourceRanges to ipset
d6e85b504d0 Add kubelet_credential_provider_config_info metric
14a5ef56a34 fix pipeline failure
21e2fcea9ec Add automatic_reload_last_config_info metric for auth configs
5f829195e6b Only warn when AppArmor annotation doesn't match pod field
f2c48ffec9e Add generic config info custom collector
11921f75857 [KEP-5100] WinOverlay feature gate to GA
e417232f92b Warn when using AppArmor annotations with a pod field
4fdf09fdc1b Stop syncing AppArmor fields to annotations
3ecb3d230f3 Remove unused appArmor*InUse functions
75ae2d727a0 Add an E2E test for memory limit decrease usage check
2a9388c3036 Move memory limit decrease e2e test to success cases
c7a78185c25 Remove the restriction on memory limit decrease
d9c91127d06 Check memory usage before decreasing limits
465f7281419 use gomega.BeComparableTo instead of Equal for resource quantity check in resize test
cedcbfb94c3 Update cel-go to v0.26.0
24065780ed7 Add e2eendpointslice.WaitForEndpointPorts, use in some tests.
f456a70bdea use CreateBatch and MakeResizePatch
5cea72d5649 DRA integration: add test case for FilterTimeout
241ac018e25 DRA integration: remove unnecessary anonymous import
bc338e7505c DRA scheduler: implement filter timeout and cancellation
430c79b53fc chore(validation-gen): hold uniqueness check of listmap
1745094c405 Update VolumeAttributesClass API Description
2cb30c77949 Refactor target check
86bc1bf0a45 more complex e2e test for deferred resizes
66de1960a5d Increase maxSeats for List requests
025c606e398 DRA scheduler: add plugin configuration
ee38a001311 DRA scheduler: add DRASchedulerFilterTimeout feature gate
837ef29f5a2 scheduler: enhance and document Filter cancellation
7910b43cd39 scheduler_perf: document benchstat usage
b9ce92d50eb edit versioned_feature_list.yaml
070621bf776 Remove unit tests that rely on feature gate enablement check
3f847d97c32 GA the NodeSwap feature gate
1a7630c0979 Remove deprecated LegacySidecarContainers feature gate
300c7b815a2 set the timeout to Get method
2b13b87e609 chore: replacing timer ptr with ptr.To
532d48fe6ad Convert `k8s.io/kubelet/pkg/apis/podresources` from gogo to protoc
cf68f75fc33 Deprecate apiserver_storage_objects and replace it with apiserver_resource_objects metric using labels consistent with other metrics
db342010f46 kube-controller-manager: enable WatchListClient
cef9f9edb6e kubeadm: fix a bug where it should generate default etcd command based on etcd version when the etcd image tag supports semver
ace2a224926 drop rules for release-1.30 as it is EOL
6737c31d0f7 update publishing bot go rules for release-1.31/1.32
a1a85ddb161 SSA: test optional map keys
4d34975a466 sigs.k8s.io/structured-merge-diff/v6 v6.3.0
3357e8fc057 SSA: add integration tests
a2a3839a8ee DRA scheduler: add pohly as approver
4bc2ad6eea7 migrate pkg/kubelet/preemption to contextual logging
b96e3cac741 migrate pkg/kubelet/pod to contextual logging
0cb31bc4073 migrate pkg/kubelet/nodeshutdown to contextual logging
75ccd69babe migrate pkg/kubelet/kubeletconfig to contextual logging
1d0fd592881 kubectl: add port names to describe pod output
7dad9e2af6f migrate pkg/kubelet/apis to contextual logging
f141907ddd8 DRA kubelet: add v1 gRPC
1b5a08cbfb5 cleanup: fetch individual PodResourceInfo from allocated resource state
6e7e6b37c7e Fix the cost issue to match the bug fix for target being nil in CEL side.
ad220eb6c32 chore: remove residual int64ptr usage with ptr.To
a9644686381 Add PodCPUAndMemoryStats to stats.Provider interface
8f4a624a593 Fix pipeline errors
e8536c01910 add item + union and item + zeroroneof output tests
be72d963b88 add validate/zeroorone_test.go and add +k8s:zeroOrOneOfMember output tests
10b20852e3c feat(validation-gen): add +k8s:zeroOrOneOfMember tag validator and associated validate method
81f18759e6e add validate/union_test.go and add +k8s:unionMember and +k8s:unionDiscriminator output tests
5bc9b691141 feat(validation-gen): add +k8s:unionMember and +k8s:unionDiscriminator tag validators and associated validate methods
bfb42fc31c9 refactor item.go with buildMatchConditions, make itemTagValidator a LateTagValidator
5d1c5ebd8cb add ParentPath to context, remove Parent from context and plumb changes in validators
c50da38aa18 allow field validators to generate variables
e7aeb4ff5c1 Promote MutableCSINodeAllocatableCount to Beta
9bcaa8c86b1 Fix conversion-gen caching incorrect memory equality comparisons
b35ad4e9b01 Add e2eendpointslice.WaitForEndpointPods, use in various test
dbecdd18763 Use e2eendpointslice.WaitForEndpointCount in more network tests
b7998a397b5 Add e2eendpointslice.WaitForEndpointCount, use it in some network tests
dd3691b1698 refactor allocator, removed claimsToAllocate from NewAllocator(), instead, passed it through Allocate()
8e6651520e6 Convert `k8s.io/kms/apis` from gogo to protoc
2f605f49fcf CHANGELOG: Update directory for v1.34.0-beta.0 release
9cf00ec6d17 kube-apiserver: promote WatchList feature to beta
e4320fe25cf e2e_node: DRA: test handling fatal serving failures
ea05ad8887b e2e_node: DRA: add errorOnCloseListener
fc21d3f37dc e2e: DRA: enable test plugin to cancel main context on error
1981c985b17 e2e: DRA: support test and public options
d44b737447f DRA: handle grpc.Server.Serve failures
169965350cc e2e_node: Refactor DRA tests to use variadic options
52fab5969cc Add NominatedNodeNameForExpectation feature flag
fd23fa3d423 Graduate ListFromCacheSnapshot to Beta
665599417ab Add e2eendpointslice.WaitForEndpointSlices, use it in a few places
b5931f53dd7 Auto update openapi spec
a100dfdfaa5 Using alpha as the stored version for one release.
6e932445326 Add validation of volumeClaimTemplates in StatefulSet
ae4a43de6dd Refactor: isolate flag registration to kube-apiserver to eliminate global state
5b4c1872a0f chore: residual intptr removal with ptr.To
e9aab4648fd CHANGELOG: Update directory for v1.31.11 release
dc0ca0be3f8 CHANGELOG: Update directory for v1.33.3 release
d6caa36dcc7 CHANGELOG: Update directory for v1.32.7 release
d460611e77c Add more checks
b69fd9d42c4 Add egress selector support to JWT authenticator
e9c1ca724f0 Add conversion-gen memory equality test
62521d83508 fix observedGeneration in pod resize conditions
38637260281 add unit-test for ensuring authn latency annotation
760eb7d5dea fix: record authentication latency before audit filter wraps up
26c8ee7b858 DRA: Improve allocator with better backtracking
d383c8e0243 Update history of checkpoint support in Kubelet
20914ef4e90 Prevent running two HPA cachers for different API versions
bc5088cbf35 Revert "Kube proxy node manager"
f8c7131b46b Drop experimental- prefix from etcd flags
d8747d716e4 Use object size estimation for non-recursive list
05e1c4b4893 e2e: node: fix podresources API feature label
6e1875fac94 local-up-cluster.sh: don't require to be invoked in the root
356be5ae30f DRA E2E: move upgrade/downgrade test into test/e2e_dra
c8ca9249acd DRA integration: add upgrade/downgrade testing with local-up-cluster.sh
60e9316c0cc DRA E2E: refactor helper code
2e3228e2ca9 DRA E2E: support deploying driver on localhost
e5f57d2cfab ktesting: add WithoutCancel
e01603b2e33 ktesting: document side effect of SetDefaultVerbosity during init
0b1bed1a1e0 ktesting: WithCancel does not cancel on test completion anymore
f381d737247 DRA E2E: retry exec of hostpathplugin
c2080e7e45d DRA E2E: support using ktesting
906505281fc ktesting: add step Begin/End
b7c2d6aba50 ktesting: skip logging error when capturing it
4977163860b DRA E2E: reduce port proxy verbosity
5721c927e6a DRA E2E: increase verbosity of resource claim controller
1a284472f17 E2E framework: retry also on EOF errors
6a7b9589f61 E2E framework: support setting REST config
bd30b0adef6 remove general avaliable feature-gate DevicePluginCDIDevices
9c0e65b085d test/apimachinery/watchlist: server supports sending resources in Table format
2dfc4e25a9a endpoints/handlers/respone: include metadata when IncludeNone and watchlist requested
e1a0cf6244f handle stoppedCh and listenerStoppedCh returned by cc.SecureServing.Serve
6cd00cdcba0 Auto gen
a3ecea296c1 manual change
4f3334b7cee Promote feature gate
0d8fd61e64c address review comments
32afbd9ea5d Inconsistency resets cache snapshots and prevents collection of new ones until cache is marked consistent again
4f77a461863 Generated files
a04e7cf5eb8 KEP-4601: Graduate selector authorization to stable
6f4be0d8c93 DRA allocator: skip unsupported test cases
740e568468e address review comments
61542e7a987 Cleanup: Remove field name from invalid field detail message
14f3c26842d Remove redundant metric field.
ad03cb87336 chore: residual strPtr utility removal with ptr.To
af249fb2e97 DRA E2E: test mixture of extended resources + ResourceClaim
9a7dddf5a71 fix test
09ec6f74483 chore
85adda5e68f Use object size to estimate list cost assigning 1 sear per 100KB
f20be4c094c add test which checks release method calls Get
7d9eb2b3d0d test/apimachinery/watchlist: update tests that receive resources in Table format
da7c55e0d2f reflector: detects unsupported meta.Table gvks for watchlist
ebc1ccc491c Bump k8s.io/kube-openapi to latest SHA (f3f2b991d03b)
8d1cbc83d8c endpoints/handlers/get: remove watchListEndpointRestrictions
14d1bbf36f4 chore: maxPtr utility removal with ptr.To
6462ad918e7 codegen tool: resolves GOBIN via `go env`
1073b3b9055 Add unit tests for AddPod()
fcb595a2df7 service-ip-alloc: delay ip processing on service recreate
8de14b526e9 service-ip-alloc: make repair loop consumer clock interface
e3836172845 Fix TestProgressNotify for etcd v3.6.2
e0f9914ef72 chore: replace int32Ptr usage with ptr.To
cf4912eb4e5 chore(validation-gen): reorder imports
419e70b7637 run update-codegen
4c8f489b817 add +k8s:neq tests
fc1c832c495 feat: add +k8s:neq tag which enforces field is neq to a specified comparable value
fb971325c39 feat(validation-gen): add new test cases for item validation
5cc2721f6c6 feat(validation-gen): add k8s:item
af05aa61d9c feat: Add validation ratcheting for subfields tag
daef13ecc36 chore: improve error rendering and add unit tests for ErrorMatcher
f40ee6f996d feat(validation-gen): add new test cases for validation of slices and maps
b059bb55143 feat(validation-gen): enhance validation functions for slices and maps
0b1fa64a920 refactor(validation-gen): streamline type validation logic
7ad89e19971 feat(validation-gen): add FieldValidator
ba45e37b24b chore: removed boolPtrFn helpers with ptr package implementation
5971802fdda chore: intPtr removal with ptr.To
a091fa607ea Add apiserver_resource_size_estimate_bytes metric
e6cf7dbf063 Enable running cache inconsistency detection by default
a06b3d356c8 Bump dependencies, images and versions used to Go 1.24.5 and distroless iptables
cba38b62932 DRA allocator: fix linter hint
5eab2b7a6e4 Remove unuse runtimeCache parameter from stats.Provider
46e2c22fd76 kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
fa9e466945c kube-proxy: merge NodeEligibleHandler with NodeManager
c6735d9b3bc kube-proxy: merge NodePodCIDRHandler with NodeManager
45c355ca58b Move unschedulablePods struct to a separate file
bfeaae3310f Compact watch cache based on last observed etcd compaction
c43104cbea8 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
af7abde0e55 kube-proxy: add NodeTopologyConfig for tracking topology labels
98c4514eae2 add e2e_node tests for uncore alignment
70191dd21ca fix uncore cache alignment for odd integer cpus
65e0cff3c5a add Replicaset -> ReplicationController conversion test
9df4c35a60a Disable SchedulerAsyncPreemption feature correctly in integration tests
3636d5bd3a5 Added NodeSelectors field to DriverDefinition
4f0d3eaa36b enhance exec probe logging with pod and container context
ffe90820710 DRA allocator: select tests based on supported features
b1a35c640eb Build etcd image v3.6.2
7e37711d6ee kubelet: Add service account UID to token cache key for proper invalidation
45dfb46448a Add TokenRequestServiceAccountUIDValidation feature gate with UID validation
237fbde8b1e clean up e2e test and sorting code
4d2566eb5a1 credentialprovider: wire in service account mode cache type
03db2278d52 kubelet: Add CacheType field to ServiceAccountTokenAttributes with validation
ff4746af139 increase verbosity of kubelet preemption log
f2de8897e77 Add metrics for mutation
bfa7f38c6af fix TestPodResourceAllocationReset for windows
e8b914c4b83 address comments
6052c569db3 prioritize resize requests by priorityClass and qos class
c126870ebc9 Bump RecoverVolumeExpansionFailure to GA
7b906f204a6 DRA allocator: fork the code
5caf7bca15b DRA allocator: refactor code
03e32bd260f Expose compaction revision from compactor
5e3ea8e279c Add test for compactor
bbab5941103 local-up-cluster: stop running Docker
f57662856f9 local-up-cluster: store logs in artifacts directory
81b6e1d3a34 local-up-cluster: start containerd before Docker
27a77370dde local-up-cluster: simplify installing packages
ddda1dca33c local-up-cluster.sh: add dry-run mode
0950b9ee508 DRA allocator: export DeviceClassLister
bc5aa94d8d1 local-up-cluster.sh: allow configuring all ports
a4b1d26b14b local-up-cluster.sh: dump config on KUBE_VERBOSE >= 2
5665bafaa86 CHANGELOG: Update directory for v1.34.0-alpha.3 release
381b3f376bd clear just the errors rather than the entire in-progress condition when a new resize is allocated
b89ab301f5c feedback round 2
67aaa956da3 Update docs on shutdown and draining
7a6f6fdf721 Delete unnecessary mutex
271233a62ae Prevent the failure of releasing the lock by updating the resource version in case of a resource conflict
d9de590a26b test: increase test coverage for pkg/kubelet/types
2dd07e92428 DRA E2E: ResourceSlice Controller test flake
26f54e5c0e3 chore: replace int64ptr with ptr.To
f2b24b98494 Increase verbosity of frequently printed loglines in binder plugin
621482d68b6 update pause version to 3.10.1
ce456c87f1c add SuccessCriteriaMet status for kubectl get job
bb6bd520126 Add feature gate enable test for KubeletPodResourcesGet
c925243779a address feedback
c6fef9752c2 fix: improve the pod level request validation (#132551)
89344dc2391 feat(validation-gen): add k8s:enum validator
345641f106b feat(validation-gen): add Enum validator function
adb71d041d6 Forcefully expire lease in integration test to fix flake
637bf55cbc2 bump golang.org/x/vuln/cmd/govulncheck to v1.1.4
e0cc07af866 Promote PSI metrics feature to beta
b46a124db31 skip pending resize evaluation if sources aren't ready
35bf1522b0e update allocation manager unit tests to cover push and retry of pending resizes
e6d165b879b move resize allocation out of the sync loop
87fe2491a11 add some additional helpers to kubelet status manager
cb2baef9122 move handlePodResourcesResize unit tests into allocation_manager_test
1a62ade7428 cleanup conntrack entries test for UDP service
8f92a81787e node: e2e: podresources: add more e2e tests
380ed8d9b3a e2e: node: memory manager: build everywhere, run only on linux
bc56d0e45a2 podresources: list: use active pods in list
30a3bfdbcba chore: remove residual uint64ptr usage with ptr package
006b2a3b52c e2e: node: cpumanager: fix cpu quota non-regression tests
54f86a22e88 chore: removing redundant type conversion
25d9d8d9ba7 refactor: use getLocalNode() to avoid code duplication
bc9e8e1a910 add a context argument to prePodCreationModificationFunc()
83584d13c49 fix: TestPatchResourceTimeout flaky test
994e106dc0d ci: update sample-apiserver version to v0.33.2
3379d5ac4b6 make sure all streams are created before starting demux websocket
1cec0acebf2 Short circuit CategorizeEndpoints when there are no endpoints
c53b41e98c2 Add testing compaction in storage List tests
1ac60e35e96 e2e test: Add a container_swap_limit_bytes metric
bdd662f7c6b unit test: Add a container_swap_limit_bytes metric
341957a367c Add a container_swap_limit_bytes metric
c530b022576 chore: depr. pointer pkg replacement for pkg/security and plugin/pkg
dfe6a5c9c13 Clean up `unversioned_feature_list.yaml` file
e909e0cf738 chore: replacement of toPtr helper functions with ptr packge
841886df76f Convert externaljwt from gogo to protoc
1b730abf8dc cleanup: use HandleErrorWithXXX instead of logger.Error where errors are intentionally ignored
075abb07a91 ci: redis removal for e2e test dependency simplicity
830a088d1bc chore: remove strPtr usage with ptr.To instead
838f3afc521 storage/etcd3: add back missing errcheck
604cc2b51f4 hack/update-openapi-spec.sh
5adc3bf08a6 hack/update-codegen.sh
ae7d637b893 Delete unused ResizeContainerPatch function
f1b35cae913 Use MakeResizePatch instead of hand-written patch strings in resize E2Es
00c1c1a58e8 Generate an E2E resize patch from original & desired ResizableContainerInfo
cfd65c5f74d chore: replacement of helper functions to ptr packge
ff7c781e251 Loop over all IP address from each node
d9de37d9316 chore: typo invaILd occurrence replacement
1ae1964e88e chore: depr. pointer pkg replacement for pkg/apis
31156514102 chore: remove uint64Ptr using ptr.To instead
38080c082e1 kubeadm: use named ports in static pod manifests
baf71997f53 chore: depr. pointer pkg replacement for pkg/controller
8abcdf0885a chore: depr. pointer pkg replacement for pkg/controller
f966647b4de chore: depr. pointer pkg replacement for pkg/apis
6cef8492e71 chore: depr. pointer pkg replacement for cli-runtime
bc72fb81c35 chore: depr. pointer pkg replacement for test/e2e
d193ffe57ff Use sets.Set instead of a local impl
277c665e8bc use early return
81be9065d12 improve the log message to clarify what users should do
e74bbd5db48 chore: depr. pointer pkg replacement for test/e2e
2f7148782b2 chore: depr. pointer pkg replacement for test/e2e and utils
1802c556524 chore: depr. pointer pkg replacement for test integration
b22ffdb48f2 golangci-lint: exclude naming convention check for swagger docs
0e8424fcf00 chore: depr. pointer pkg replacement for the e2e_node
bb24afe586c chore: depr. pointer pkg replacement for component-base
bd8d5f9798c chore: depr. pointer pkg replacement for controller-manager
fe61e825e04 chore: second depr. pointer pkg replacement for apiserver
4a61b817013 chore: first depr. pointer pkg replacement for apiserver
4625908a640 remove unused file
995a7872c55 chore: remove utilpointer usage in pkg/api/pod
ebae4193371 feat: add PreBindPreFlight and implement in in-tree plugins
c5b0c9fdc01 chore: depr. pointer pkg replacement for psa policy
88d885e4073 chore: depr. pointer pkg replacement for psa admissiontest
dc947510da6 chore: depr. pointer pkg replacement for psa tests
35e118a4794 chore: depr. pointer pkg replacement for apiext. apiservers validations
4a205cc7fd3 chore: depr. pointer pkg replacement for apiext. pkg/cntroller
107c58eeea3 chore: depr. pointer pkg replacement for apiextensions in general
b8ec161d7f1 chore: depr. pointer pkg replacement for apiext. integration
ca1d7fff7f1 chore: remove utilpointer usage in pkg/apis/autoscaling
0ad351281bc Cleanup duplicate function to get port number from named port
1ac5f661ed8 Don't log irrelevant zone hints message on no endpoints
27812e44bce chore: depr. pointer pkg replacement for apiext. pkg/registry
b72ab8a4e14 chore: depr. pointer pkg replacement for the cloud-provider
b464bbeb8f7 Remove gogo-protobuf from CRI
ce7b3694f7c chore: remove utilpointer usage in package test/integration/service/loadbancer_test.go
9016f9cb1bf chore: remove utilpointer usage in conversion package
90bbce56b95 PriorityMemoryEvictionOrdering: allocate more memory when swap is provisioned
25498cd34d7 Eviction tests: small refactor
43b22a24395 Apply fix to namespace deletion test (#132691)
0766a3c6b14 chore: depr. pointer pkg replacement for the kube-aggregator apiregistration
6c3146e3557 chore: depr. pointer pkg replacement for the csr
9345552274d chore: depr. pointer pkg replacement for the reflactor
ebea328f173 Fix volume limit e2e test cleanup
38bf213271e podtopologylabels: update topology.k8s.io->topology.kubernetes.io
2e966244ed8 DRA resourceslice controller: fix recreation after quick delete
fa313170001 Remove unused PodIndexLabel feature reference
8c6c7df736d remove apiserver_storage_objects metrics after crd deleted
a7e8a505c25 Improve ignore-not-found behavior (#132542)
1c1f00a5f47 fix: add RV check on GC delete calls
84f6d742c5b Make dynamic and metadata clients plumb DeleteOptions
ad0b2bf4f57 DRA E2E: serialize costly test
33cd2e1ba08 Fix AuthInfo godoc for Token / TokenFile precedence (#132659)
c6f87f6e64a Fix offline expansion tests for case where no node expansion tests is required
b44b0fbf129 Update github.com/emicklei/go-restful/v3 to v3.12.2
58e620cc440 Bump go.yaml.in/yaml/v3 to v3.0.4
00f8cbae6b8 Bump sigs.k8s.io/json to latest - no code changes
22138ef552b Add DNS e2e test of NameIsDNSLabel validated Service names
97c1974e9c2 Add integration test for RelaxedServiceNameValidation.
19e7e38af29 Add unit test for Ingress service ref relaxed validation
37a90b7c244 Add unit test for Service relaxed validation
b430159c86a Allow Ingress service refs to be validated with apimachineryvalidation.NameIsDNSLabel
487eb8a9e47 Allow Service names to be validated with apimachineryvalidation.NameIsDNSLabel
9043afae6d9 kubectl: Cache Verifier.HasSupport calls
179c4398f35 use defaultImage per OS
998776d80bb remove breaking test
a17b0d7f66d gofmt
1514568ddfe rename sortedfeatures -> sorted
9e1a21816d2 update README
5cebe66b646 update log line
dcbed2fbdce Graduate PodLifecycleSleepAction to GA
977c6707333 Add unit tests for minReady new behaviour
4b99dc5f1e0 document hostnetwork <> port implications
952d2727a66 Add OrderedNamespaceDeletion to conformance.
12330a6c426 Drop BoundedFrequencyRunner from pkg/util/async
5d4a85f9f6c Enable versioned validation fuzz testing for certificates v1/v1alpha1/v1beta1 group
0fd4a0acc10 CSR: Add declarative validation test suite
5db2056682f CSR: Enable declarative validation
eecba765de0 Enable validation-gen on certificates/v1,v1alpha1&v1beta1
ec6471f63ef Remove gnostic-models gopkg.in/yaml.v3 unwanted dependency
d04ee27c98b Update vendor
b41d375b888 pin kube-openapi to v0.0.0-20250628140032-d90c4fd18f59
6d5e0bf2a21 review remarks
95b1151d2ab use format specifier
459188ce25c Port BoundedFrequencyRunner from flowcontrol.RateLimiter to clock.Clock
eae17c21b02 Change how BoundedFrequencyRunner retries work
c16ee887efc Remove burst syncs from BoundedFrequencyRunner
0298e04ea0f Updates to BoundedFrequencyRunner
6da9d363f36 Copy BoundedFrequencyRunner to kube-proxy
799aa8b2a8c Graduate streaming list encoding feature gates
5bae9fa8939 Graduate ConsistentListFromCache to GA
d4e49b2eed7 Ensure Loadbalancer internal port is set to container port from endpointslice if the targetPort is not specified in service info creation.
6a25bdaac8f kubeadm: fix missing log of health check
764a8bc8b61 chore: remove utilpointer usage in package pkg/apis/admissionregistration
a55318fe149 fix: versioned validation test avoid incorrect conversion
4c09aa9073f review: feedback
776382daa58 review: assert
43f6bd45f59 review: assert
fa87098ae30 fix: kubelet CRI portforward concurrent map write on error
a0ea2569a76 chore: remove utilpointer usage in package staging/src/k8s.io/apiserver/pkg/registry/rest/delete
7236f3fc2c2 graduate APIServerTracing featuregate to GA
75fc2b1cf6d promote TracingConfiguration to v1
a8068e27b1d scheduler_perf: Fix version emulation for empty featureGates map
5a20c38da61 remove usage of KubeletTracing featuregate from kubelet
7faf797a946 promote KubeletTracing featuregate to GA
d28791fa625 Remove unused sysfsPath's methods
6e5c99dd059 Review remarks
ee8c265d350 Move Code and Status from pkg/scheduler/framework to k8s.io/kube-scheduler/framework
08dd9c47b36 improve the log message to clarify the cause of the failure
a6e2cd4e8d3 scheduler_perf: add logs to report the failure of measuring SchedulingThroughput
7e816ca9b1e Commented out for unused sysfspath methods
2bc45ca4666 Make test only helpers private (sysfspath methods, touchFile, createSymlink)
94973ba3fc9 Fix typo: s/smock/mock/g
ac86e67b7d2 Commonize filtering of Pods by Owner with all orphans in namespace
ca314b9f561 Fix validation for Job with suspend=true,completions=0 to set Complete condition
1134220e011 Add RelaxedServiceNameValidation feature gate
f644e35d193 kubeadm: cleanup after WaitForAllControlPlaneComponents GA
cfe8604504a kubeadm: graduate WaitForAllControlPlaneComponents to GA
f437aa4aa67 scheduler_perf: Set version emulation only when QueueingHints is disabled
b2f27c0649f fix: Truncate too long Deployment name in RS name (#132560)
d67e7937e63 Remove recovery related featuregates
fa6f27c8f7a Add extra validations for newer resizing related fields
00dd610c93e DRA E2E: run some tests without feature label
f93b4408a77 Drop test that checks openAPI resource name since we currently don't guarantee name stability in the API
3eefb05a2c3 Fix gRPC listener error message in kubeletplugin and some minor renaming
e54e01e0abb Enhance help text for the 'top' command
7d5ab756277 Re-generate applyconfigurations
9af684ae098 Applyconfig-gen: Only the root type is an applyconfiguration
d50e1a684cd Ensure all the files have the updated sorting
f2d8b7ec2cc Add linter to report on unsorted feature gates
efcb03759dc E2E framework: sort tests in JUnit report
dfd34a5b189 fix pod template spec validation missing in sts
a57f15e0816 DRA kubelet: remove v1alpha4
005cef332da DRA kubelet: API clarification
f1845218e2d fixup! DRA: fix deleting orphaned ResourceClaim on startup
585ed0a5cb3 [client-go #1415] Use transformer from provided store within internal stores in reflector to limit memory usage bursts
8632257c934 Cleanup: Remove redundant detail messages in field.Required
e82d4f8e559 review: feedback
5cca0379274 resolve linter check
ce86fca8cd5 Add warnings for use of Alpha features with Emulated Version Warn for both api and feature flag use of alpha features with emulated versions. This is an unsupported use case and users may run into issues.
00d37505033 Move ClusterEvent type to staging repo, leaving some functions (that contain logic internal to scheduler) in kubernetes/kubernetes (#132190)
74af3ac8ad1 Revert "pop respects the context"
2dcce93336e Revert "modify tests"
31667cc7412 Avoid killing kops etcd-manager
6d6a749c62e DRA kubelet: add dra_resource_claims_in_use gauge vector
75432a14108 component-base metrics: allow usage of Prometheus types in tests
1639b090839 Add benchmark for SizeBasedListCostEstimate feature
c75d425ae2e CHANGELOG: Update directory for v1.34.0-alpha.2 release
292679a28ae Handle consistent LIST in watch cache to avoid incorrect semantics while setting ResourceVersion on options
c6c15bbe441 bug: Remove duplicate DaemonSet update validations
39dda2b88dd tests: runtime units
8bd8c14312e tests: add more units
f9a5aec318b Added unit tests
5390f75360d Added podutil.HasAPIObjectReference to deny admission for static pods referencing API objects
8b2eb9090e9 chore: Remove vet target and associated script from Makefile and hack directory
7d85134caee improve unit test coverage for pod observedGeneration
1a59c250eab feat: make CLE timers configurable
ef117edf356 DRA: fix deleting orphaned ResourceClaim on startup
c5b4b133ce3 switch to latest sigs.k8s.io/yaml v1.5.0 (run update-gofmt.sh as well)
e2c6b7fdf97 Override getKeys when cacher is enabled
7cb24179993 Run background cleanup goroutine
ec78b8305ad Estimate average size of objects in etcd and plug it into request cost estimator
190c8c7abc5 Use per-policy marker names for VAP integration tests.
6795d5366f1 feature(kubectl): support mem-percent,cpu-value,cpu-average-value,mem-value,mem-average-value flag to kubectl autoscale
9de075def7d replacing deprecated pointer pkg with newer package version
b8b3984874e client-go/reflector: stop exposing UseWatchList (#132453)
0028ea8e993 Improve containers lifecycle test output parsing
7e0d71fc14b apiserver/storage/cacher/listwatcher: error when the WatchList FG is disabled
ec6ea2213ed test: code coverage increase for kubelet_client
cb4014fb75f cleanup: Migrate more usages of deprecated function ExtractCommentTags
b50d5081766 bugfix(hpa): introduce buildQuantity helper for consistent resource quantity creation
cbba973b6c9 Fixing go-vet finding "call of reflect.DeepEqual copies lock value" by just asserting on the basic fields that should be reset when ClearState() is called
35ecb00f1c5 fix: Add wait for cache sync for customresourcediscovery tests
d6d186ece06 Activly poll for namespace termination instead of sleeping
e1daa69de8c Add printer column validation tests
369e6a25a28 Introduce k8s-short-name and k8s-long-name to the OpenAPI formats supported by CRDs
6f1295ae9d2 fix: prevent SSA from creating CR while CRD terminating
3b0fd328106 e2e: serial: cpumanager: continue on failure
f76e1381d08 e2e: node: fix quota disablement testcases
dc323756cea Bump to latest kube-openapi
d180fe28ad5 Add json-patch v4 compatibility test
2ca4ffe6532 Add evanphx/json-patch/v5 to unwanted dependencies
5a7e04b6cc7 feat: optimize ListAll and ListAllByNamespace to return directly when nothing to select
ae13d101958 KEP-5229: Add SchedulerAsyncAPICalls feature gate
dce69afadea apiserver/cacher: properly wire listwatch options to the listwatcher
0276769c2c8 kubectl: avoid logging during init
6040344a65c kubelet: DRA: fix TestRegistrationHandler
cc7893a42c6 kubelet: DRA: fix unit test failure
cf544da6f7a e2e_node: DRA: add tests for different socket setups
7f6389e7709 e2e_node: DRA: pass socket path as a parameter
3ae99f25471 kubelet: DRA: fix test failure on Windows
c90c2e0d402 kubelet: DRA: fix linter warnings
165bb1da58e DRA kubelet: use TimedWorkersQueue
4ee7374b24e DRA kubelet: add connection monitoring
f927cd01088 DRA kubelet: simplify plugin creation and connection handling
cfeab03ade4 remove kvh.exec
75862f3f461 show namespace on delete (#126619)
56d97283afb fix: Improve error messaging on updating a deleted object
fd8bf1c8211 e2e: retry getting status on restart policy tests
c5f061e0df0 Fix pod and container level swap metrics for CRI
e1d74f1d335 Update etcd image revision to 3.6.1-1
7e3945808d3 nftables: remove filter-output-post-dnat chain
91f2256b34e update filter chains and priority
72305f82f9a Move UnsafeCorruptObjectDeletion outside of etcd3.New function
59dd2bd60dd ci: update test image base: nginx, nginx-new
af89044a78c conntrack: clean stale entries on endpoint port change
861e7b8fae2 fix unit test flake for authn config on windows
2fd93c08988 fix: data race for patchResource func
ccdef28acd3 fixing large resourceversion and limit for storages
fe84377458b e2e/watchlist: new test for checking metadata informer
d6ba9e1b9f7 replacing depr. pointer pkg with new ptr pkg on src/apimachinery
db32c4cf7ca fixing syntax issue for etcd builds
8454093f09e DRA: add e2e test with initContainer using external claim
138e363e413 cleanup shellcheck for temporary HOME directory
66c611125c7 Add namespace-aware orphan pod indexing
5e54df3e72e Fix [Failing test] [sig-node] [Feature:GPUDevicePlugin] [Serial]-related tests
280cecb8fb0 fixing location to ensure the cp commands dont fail
d2945a21fda bumping revision
fa1832484d1 handling the etcd 3.6+ build directory location change
e68d6013449 Don't panic in case of an unknown API error code
4ca91a03052 WIP: Fix tests
2b2c9adef38 Nicer value rendering in API errors
cfff359b419 fix for gimme when $HOME is not writable
6a654e5be0c Deprecate StreamingConnectionIdleTimeout field, that is not being used for a long time
b8cd05881c5 Address PR comments
6f97f5bbf87 Use Mock CSI Driver for MutableCSINodeAllocatableCount storage e2e test (#132373)
176095ac30e [KEP-5100] WinDSR feature gate to GA
64c44e1fa63 Test that generated applyconfigs are a runtime.ApplyConfig
a5d42f56939 Re-Generate applyconfigs
d5527b51930 Update applyconfiguration-gen so acs implement runtime.applyconfiguration
3fe4ea550e8 Add an interface that all applyconfigs implement
b0b52f4fb29 CHANGELOG: Update directory for v1.30.14 release
2bc98f123d7 CHANGELOG: Update directory for v1.31.10 release
20e9f160c97 CHANGELOG: Update directory for v1.32.6 release
9e126a37720 CHANGELOG: Update directory for v1.33.2 release
df32f10e069 apimachinery/pkg/util/errors: deprecated MessageCountMap
de2f22ee8ee e2e/watchlist: intro verifyStoreFor
017c9b94daa e2e/watchlist: rename toSecretPointerSlice
caa64afd017 merge constants.go into attribute.go
73d65f830a1 Put _linux suffix for linux specific go files
88b34ea1f1d Move bdfRegexp from global constant to local variable
fc854a9a861 Introduce DeviceAttribute{Name, Value} and change return type of 'GetPCIeRootAttributeByPCIBusID' with it
8ed8217e9ab Moved device attribute constants from api to deviceattribute package
f7461a12dcb Revert "Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions"
6b9ac7c5160 cluster/gce: rm KUBE_LIST_FROM_CACHE_INCONSISTENCY_DETECTOR
512563e7b08 pkg/proxy/conntrack: refactor
91b4816c230 Optimize job controller performance: reduce work duration time & minimize cache locking
18dd1daaeb9 Add Windows Server 2025 (ltsc2025) to BASEIMAGEs (#132235)
44b4682a320 Use jq docker image for pause windows build
3827d3bc4f1 Drop usage of forked copies of goyaml.v2 and goyaml.v3
2869b6f42c4 Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions
a8ab9eb5fea Simplify the implementation: just provide GetPCIeRootAttributeByPCIBusID
d390902b99a Verify scheduler resource metrics account for Pod Level Resources
32fcaf14067 client-go/util/consistencydetector: move IsDataConsistencyDetectionForWatchListEnabled
72654620a2f removing WaitIntervalString from iptables
bad49390493 client-go/util/consistencydetector: remove CheckListFromCacheDataConsistencyIfRequested
15ca38b521d apimachinery/meta/types.go: remove InitialEventsListBlueprintAnnotationKey const
690790257fd Add test verifying KUBECTL_KUBERC can be turned on and off
45449a78d5e Removing setting KUBECTL_KUBERC env var, now that it's on by default
3f32edeace1 chore: Remove the dependency of the volume manager on the container runtime.
3dc1810bb7e fix: failed unit test.
b8a2127d277 Add random interval to nodeStatusReport interval every time after an actual node status change update or restart
fbf4b47d150 chore: clean up probemanager for shutdownnamager.
3fa23d06af6 Adjusting AdminAccess Type for API v1beta1
2a5e4d55824 add script for verifying dead code elimination
891e7fec6e1 add seperate health check/probe for multi etcd override servers - grouping health checks for exclusion purposes & add exclude integration test
28573e373fd Add error prefixes for authn config load or validation failures
4cb6d3d7761 Validate requests sent to etcd in TestList "test List with limit" scenario
03afe6471bd Add a replacement for cmp.Diff using json+go-difflib
32ec4e68cc8 adding omitempty tag and opt tag
e654deba630 CHANGELOG: Update directory for v1.34.0-alpha.1 release
f4a45862556 fix APIServerTracing test data race
2004ee50f5d Fix -Consistent paginated lists serve from cache
bccc9fe470f KEP-3939: Job Pod Replacement Policy; promote to GA
fc198b92c0d apiserver/handlers/watch: stop encoding initialEventsListBlueprint (#132326)
854499f986b clean: use correct pod template
fae2fdd052c DRA: wrap e2e finalizer update in retry
7a95f3e4787 Fix NetworkPolicy podSelector comments
233a0aeedbf DRA E2E: label tests which need a certain minimum kubelet, II
2cd5dbbdaab modify tests
59f0ab97c25 Add boilerplate header to go files
1c33d987625 pop respects the context
f67d30b3529 handle context in process loop
384240b4d95 Use "Invalid" errors rather than "TypeInvalid"
bdfa8839bec calculateStatus should use the same now time point for each pod
ce44bcdf52b conformance servicecidr read status endpoint
c2988884f34 fix kubeadm e2e tests
cb26d065d39 Validate PCI Address (domain is 16 bits, bus is 8 bits, device is 5 bits, function is 3 bits)
752a043692f fix lint: apply De Morgan's laws to simplify conditionals
76ef6a388f8 fix kubeadm e2e tests
79601d13569 Fix CRI fake_runtime RemovePodSandbox
666f38f4189 DRA: Introduce a helper function producing standardized device attributes for DRA drivers
7a3af908c64 add securitycontext OWNERS to be SIG Node as the package is mostly used and contributed by SIG Node
7f1dde2a0fe test/apimachinery/watchlist: properly wire modified config to informer for fallback case
40c718864b7 chore(apiserver): avoid using html template which disables dce
6a37976848b client-go/rest: rm watchlist
4372c59ebf0 update go version for publishing bot rules
e09b042d34b Bump etcd to v3.6.1
901441c66eb Promote SeparateTaintEvictionController to stable
85bc3cb0960 Remove GetExec method from VolumeHost
9251b2a7a58 Expand webhook test to check rejection metrics
f8b4ea50e8d ./hack/update-internal-modules.sh
71b2f32d70f DRA E2E: label tests which need a certain minimum kubelet
3908550c0dc Update to latest github.com/modern-go/reflect2
d8bfafe07af test/apimachinery/watchlist: prove typed client's List method not streaming
601065a7c6b bug: Fix misleading response codes in admission control metrics
5882df8beb3 promote env test to conformance
69a5bda836e Bump base image used in nonewprivs to alpine:3.22
04110fce1bc Correct error message to print `ResetConfigurationKind`
3443c1115ae make update
798c6ebab85 client-gen/code-generator: remove watchList
db2555628c1 Fix: HPA suppresses FailedRescale event on successful conflict retry
2f943293ed8 client-go/gentype: remove watchlist
f0dde38234f Remove pluginName param from GetMounter and GetExec
fb611f4c93e kubectl delete: Update interactive delete to break on new line
d46e13b9c5f change the command of the terminated container
226c0d10959 Bump ipc-utils base image to alpine:3.22
e75ccce83fc feat: optimize label selector match performance
ac467d3aea4 add ratcheting testcase for validateFalse tag
9384285c604 add ratcheting testcase for minimum tag
1574001a1cd run update-codegen.sh
f574115f14f feat: add default ratcheting support
e9eabb2007d feat(validation-gen): Refactor type handling and introduce utility functions
03c6e15f845 bump to alpine 3.22 and bump apparmor-loader to 1.6
b86b4632b3f disable selinux relabeling when mounting sourcedir to shellcheck
dc3836c49ed Remove deprecated encryption config controller metrics
5a2844a766b Update to etcd v3.6.1 in vendor/
a9108e8f532 Adding `grpcnotrace` tag for production (non-debug) builds
11abb0042d2 Fix outdated links in VolumeSource godocs
4b2fe2a544d pkg/kubeapiserver: use utils/ptr package instead of utils/pointer
69eddde89b4 using finalizer
57d55fbb106 test: Add test case for createNodeOp
1d69a2fbc3a ./hack/update-vendor.sh
edadfee47d3 test/apimachinery/watchlist: prove dynamic client's List method not streaming
348ff7497c3 Build etcd image v3.6.1
3038f3530d1 client-go/dynamic: rm watchlist
86c709cd817 skip nfacct test in IPv6 clusters
e5f36796e34 Bump dependencies, images and versions used to Go 1.24.4 and distroless iptables
07151bb0f4c chore: Add validation error for unsupported map of slices in validation-gen
89f5453e314 Allow system:monitoring role to access kubelet metrics endpoints
2810f6e65f5 add bentheelder to cmd/preferredimports *reviewers*
00a6d2c99c0 add bentheelder to conformance related test *reviewers*
1dd055774cd backfill some sig-testing-reviewers (tech leads aojea and pohly)
ad68a4b4cdd emeritus spiffxp
512f000d0f3 Update tests for StructuredAuthenticationConfiguration feature gate GA
efebfe9e3a5 Set StructuredAuthenticationConfiguration feature gate to GA in v1.34
769d71b3045 Remove unused Expect methods in testscheme
105dd3b0ab0 Add ExpectMatches to ValidationTester
28e973c0447 Better formatting of matcher errors
b39741b5062 e2e: node: serial: fix cgroup path with crio
26b188aaa8f KEP-4633: Graduate to Stable.
fd5d7a18ed1 reduce logspam when calculating sandbox resources
0baeccd32f0 KEP-740: promote ExternalJWTSigner feature to beta
ef2c18a5a0e Add more test cases
eb3c9a3184a Promote feature OrderedNamespaceDeletion to GA.
f8b70124350 Revert "improve display format"
449320a54a2 update github.com/spf13/cobra v1.9.1
260a720a851 Rate-limit the LoadBalancer rolling update test
0a86ca40615 Add healthChecker to the kubeDeps
dacafec88c2 KEP-3015: PreferSameTrafficDistribution to Beta
b2ab0ba1938 Drop unused testing manifest
96b39187c5f Add context to Count()
9d1bc51cbb7 adjust durations for sleepAction
c85ac59df41 Build k8s using latest commit of golang
4a7e68a3555 fix: Fix the issue where kubelet's slow startup causes it to be mistakenly killed by the watchdog.
b02fba7e0e6 Fix incorrect logging of insufficientResources in preemption
fc7ba63ee8b support parsing of iperf 2.2.0 output
1755a9e5455 fix: iperf version in comments
0ca9c380add update all api files
32aa52adf66 tolerate newer golang/oauth2 version
3cfa73bc17b add -q flag for git worktree
97ec8618d3e Fix kubelet iptables startup, clarify semantics of utiliptables calls.
6a4751da7fa Graduate RelaxedEnvironmentVariableValidation Feature gate to GA
f4ab6c2befe cleanup: Migrate deprecated function ExtractCommentTags
0d468f58c07 kuberuntime_manager: don't log entire container spec.
858b88bceef kube-proxy: log ipt errors during platformCheckSupported
1f46b3fdbff Clean backoff record earlier
7b1f4990677 DRA kubelet: rename Store + Plugin -> DRAPluginManager + DRAPlugin
fad670c27b9 DRA kubelet: move RegistrationHandler into Store
494a129d02a DRA kubelet: clarify plugin vs, driver name
0d5578b8395 test/apimachinery/watchlist: prove metadata client's List method not streaming
5b0f0d2efa2 update pr template issue links section
a38ad3a2c67 client-go/metadata: rm watchlist
beb86a8391b KEP-3329: drop PodDisruptionConditions feature gate
b5a8f5d0a50 KEP-3715: drop ElasticIndexedJob feature gate
10de6780cf6 DRA API: remove obsolete types from v1alpha3
0896693693d fix TestNodeAffinityPriority: calculate the priorities correctly even if PreScore is not called
087554448ca Make nodeports scheduling plugin sidecar initContainer aware
1876c544511 Remove unsupported map of slice validation for non-byte elements in validation-gen
50139381006 Change option to a slice
990cb7547ca Use slice.Contains()
28e99ef2ee6 Add type information to tag Docs() and use it to typecheck tags
31aa3c20297 Switch to using named args in output_tests
7892fd95f24 Use codetags in validation-gen
249801b7ccc Fix windows-pause-image-base:<tag>@<digest> invalid reference format
2c4c3037b6a Fix field path for embedded fields in root types
d1bddfd779f Forbid github.com/pkg/errors in k/k
efaaece0fbc go.mod: drop pkg/errors as a direct dep
cbbfabe7fec Support embedded fields properly
d1a858ca9f6 kubeadm: fix one missed pkg/errors location
036f4bfe282 hack: fix KUBE_RACE in benchmark-dockerized.sh
5be254650f8 kubeadm: start using util/errors
f522d7cb858 kubeadm: add a local implementation of wrapped errors
2bf3d8b7336 KEP-3335: drop StatefulSetStartOrdinal feature gate
1d1d0c154c2 promote agnhost to v2.56
258961cb350 pkg/appis/apps: use utils/ptr package instead of utils/pointer
7b664a11352 pkg/volume: drop pointer wrapper functions.
253a08d7e39 pkg/util: drop pointer wrapper functions.
ac5cb23000f Bump gengo/v2 to latest
d6ec03a1302 Preempt based based on allocated resources rather than desired
7d47165e3ec Replace queue.FIFOs with k8s.io/utils/buffer.Ring
705e89b046f Only set pod allocation if admission succeeds
f8b893489c1 Update pkg/kubelet/kubelet_test.go
147073102b7 fix: prevent data race in metric LabelValueAllowList initialization
8cdbbf5cdae Update k8s.io/utils for new generic ring buffer
daae472fe1b e2e_node: verify restart looping container correctly
109ae1bacad feat: Allow leases to have custom labels set when a new holder has the lease
8d3fb9ee0a5 [KEP-2400] kubectl top: add a --show-swap option (#129458)
4c7840ec5d2 podResizeMutex cleanup
c7fdf6abde1 Handler will return the server port number instead of address
6a495241ef3 KEP-3331: Add test to simulate revocation via user validation rule using unique identifier (jti)
466fb815287 test/e2e/apimachinery/namespace.go: make OrderedNamespaceDeletion test serial
7e7aa6d810d e2e: node: cpumanager: require cgroup v2
68efb079aab kuberc: add tests for DefaultGetPreferences
ad3a13e014f Graduate NodeLocalCRISocket to beta
b9d9dea03f4 Update npd from v0.8.20 to v0.8.21
47dead1c403 unexport allocationManager IsPodResizeInProgress
de1d6fbf242 fix: ResolverTypeProvider data race
9b8d7ce4987 pr review feedback
a512de6e094 Clarified the token scope and future plans for the next security scan to refer to it
032a9eaede4 DRA kubelet: code cleanup
a6e22689946 Ensure github.com/pkg/errors is used only in kubeadm
7ccb9657f7c sched: Apply EnablePlugins to CoreResourceEnqueueTestCases
6cb14884b61 test-integration: allow enabling race detection
545fbc99c2b test: drop dependency on github.com/pkg/errors
899f76159f1 add unit test for IsDNS1123SubdomainWithUnderscore function
0a7d9f9bfd9 KEP-4427: Promote Relaxed DNS search string validation to GA
2aa7ef3d273 Address comments
dbdd6a3b435 FieldManagedObjectTracker: Fix to work with unstructured
b7d16fea7fd disable terminatingReplicas reconciliation in ReplicationController
ee33c1a9fc9 e2e: fix userns test
be049397dfd Fix IsDNS1123SubdomainWithUnderscore to return correct error message
4f91a69f2b0 DRA integration: move and extend device status test
0a96613754b proxy: remove iptables wait interval flag
a5aabf9f7e0 DRA kubelet: validation pass before changing claim info cache
5420dcec553 Promote two more EndpointSlice tests to conformance
b9496d1a9d7 Update client-go template with backticks
d70fcf731bd Update client-go PR template
d75af825fbe Extract interface CycleState and move is to staging repo. CycleState implementation remains in k/k/pkg/scheduler/framework
be6807e6a57 Allow specifying a directory for image credential providers json/yaml configuration
aac00c1f0ed add orphanedPods parameter to getRSPods
d13dcbbf95c kube-dns bump to v1.26.4
96b5ae792bc Add code for not expanding volume if it has NodeExpansionNotRequired annotation
2b0b3435078 DRA: Improve implementation of counter management in allocator
1cd71cbb14e ManagedFieldsObjectTracker: Reload scheme
4654496c395 Add code to not expand certain types of volumes
741d0e2b81a Gradute ResilientWatchCacheInitialization to GA
c8f1a653014 agnhost: added server address for conntrack cleanup entries
5058e385b09 DRAAdminAccess: update label key
ee2d3b6a2c2 DRA: Exclude individual devices when PartitionableDevices feature is disabled
ab6fdf46d89 Move the autoscaling e2e tests to be ran in parallel (#131091)
4e3634bbbfb Update security contacts for sig-cli owned repos
b0847b47697 Add unit tests for fsGroupChangePolicy accessors
74167f9041b Fix typo in the `--anonymous-auth` flag name
6410329a07e update go version for publishing bot rules
60b5338d460 Promote automatic_reloads of authn config metrics to BETA
f694c58c6cc feat: graduate QueueingHint to GA
1310fc027a5 kubelet: drop dependency on github.com/pkg/errors
346fe182bea DRA E2E: fail test when ResourceSlice publishing fails
dc2f33f9d8a Update Perl to 5.40
7c0f968ab25 Drop usages of deprecated otelgrpc methods
157903b09b6 Skip backoff when PodMaxBackoffDuration is set to zero
54b2fad0330 kubectl: drop dependency on github.com/pkg/errors
b461d80f3d9 etcd: update etcd image to v3.6.0
df2857e7777 Revert shorthand for kubectl explain --output
1d17ca9b7e9 generate code
8ae7171041b Simplify subresource matching
9715c90b31c Clarify errors and improve tests
4cac349f86b Clarify group version lookup in validateDeclaratively
c2eef42cf4d Add output_tests
6284a0f50bb Tag types with +k8s:isSubresource and +k8s:supportsSubresource for scale
7dc8660d036 Update testing to fully track subresources
6ca6b7bb6ab Add +k8s:isSubresource and +k8s:supportsSubresource tags
105391403fa Enable scale subresource in generated validations
a3eddf7d854 Add declarative validation testing for replicationcontroller/scale
356f395f0de Enable declarative validation for replicationcontroller/scale
030b4ab9cc9 Add declarative validation testing to Scale.spec.replicas
48e1079cf03 Add subresource mapping support to ValidateDeclaratively and introduce configs
8c5c5fb7618 Add origin and use apivalidation.ValidateNonnegativeField for Scale.spec.replicas validation.
d0f6fe30bf1 Add k8s:minimum validation to Scale.spec.replicas
ffb4e003f70 Enable validation-gen for scale group-versions
e63019a8701 DRA integration: refactor code to support other tests
1ffda045cbf update to latest ishidawataru/sctp dependency
50f152440be DRA integration: start scheduler on demand
488c94735ce Bump dependencies, images and versions used to Go 1.24.3 and distroless iptables
699dce0a579 DRA kubelet: fix gRPC timeout flake
7215de79b3c DRA kubeletplugin: some doc updates
24c0e91d295 DRA resource slice controller: disable resync
01820ff7c27 chore(scheduler): add filter integration tests for missing part plugins: NodeAffinity plugin
151d9d79f4a Remove package protected field updatePodOther from ActionType. Make ActionType.None public
76f95271a5d kuberc: make update and update-vendor
b8e6de08e1b kuberc: add API violation exceptions
c29accaf581 kuberc: introduce fuzzing for kuberc types
b0370c483af Promote kuberc to beta
1f355e5b441 kuberc: pick the first known version when decoding + tests
0341b27c5d0 kuberc: align internal and v1alpha1 go-types with v1beta1
39195f9a463 kuberc: add v1beta1 types
35870c480d6 client-go remotecommand: avoid "unexpected error" log when there is no error
7287dcd2fb3 vendor: update system-validators to v1.10.1
b35c5c0a301 e2e: Fix shadowed error in reboot test and clean up containers after reboot test (#131699)
f79012a0db3 renamed SIG Node google groups
50fe29e524b Add accessors for fsgroup change policy
17946fe7994 Add Stress Tests for VolumeAttributesClass
32c45ecf10c Bump github.com/vishvananda/netlink to v1.3.1
aea2743e4e9 vendor: update system-validators to v1.10.0
96e4cc65fbc update baseimage
c5f368522d5 kubeadm: fix dryrun-latest e2e by updating cluster-info fixture
d7b6049099e e2e: node: always declare testcase CPU requirements
b571840d00f bug: Remove duplicate ReplicaSet update validation
67345417c03 Update tests to use v1 for AuthenticationConfiguration
aea874e5e47 Duplicate v1beta1 AuthenticationConfiguration to v1
c509e22d11d Add a list of modules that should be pinned at current versions
c4421fc13e7 address more feedback and some cleaning
637d234aae3 feat: Add support for ECDSA-P384 encryption algorithm
b98b86bd6ab DRA: Add scheduler perf test for partitionable devices (#131771)
4cc2bded914 DRA: Add an allocator test that uses an attribute selector
60c36432f2a DRA integration: set up nodes for scheduling
1c3beb47a5c Fix goroutine leak in unit tests
f6fafba424a fix flacky test: ResourceQuota should verify ResourceQuota with terminating scopes through scope selectors
8cf5e8db78d Deprecate kubeconfig's preference field in favor of kuberc
1ce8503e91e add UT for volumepathhandler
a8ed33bc646 feat: add metrics for compatibility version
c4a59afe9dc Fix incorrect URL in build/dependencies.yaml file
5bb3f862a06 DRA: Clean up allocator tests
5834476681c fix lint and unit test failures
676978641e1 address feedback
88e1909e518 move pod admission and resize logic into the allocation manager
35307319740 Kubectl: check version skew (#127365)
3878f7e7489 E2E ResourceQuota: ensure consistent ResourceQuote during scope selector test
4a353d07e4f E2E ResourceQuota: fix pod creation flake
4b10ba9eef8 E2E ResourceQuota: dump last ResourceQuota
f712b01ddb5 Unify references to group resource in metrics
d3afe8a87eb hack/local-up-cluster.sh: remove kubelet --cloud-config
772d0106651 client-go workqueue: clarify parallel reenqueuing
d043beb223b HealthChecker has a List method
9b3830fba23 Bump google.golang.org/grpc v1.72.1
be5d8c767b2 Update cmd/kubeadm/app/cmd/upgrade/apply.go
c0885e018ae Fix --config option from suggested kubeadm command
8f49fb5ce7e future-proof csi test mocks
adc4916dfe4 feat: introduce pInfo.UnschedulableCount to make the backoff calculation more appropriate
968e19d1b6f docs: avoid broken link
a271d3e5339 cleanup: remove error comment of AddIndexers func
5def7fadf3e Drop dependency on x/exp package in mount_linux_test.go
b9e2a160832 e2e_node: dra: test plugin registration retry
aef61622aed e2e: dra: implement ResetGRPCCalls
e8be3e575b9 e2e: dra: simulate GetInfo failure
2f50d0a510d Add kube-api-linter plugin to golangci-lint
0e5eab042c3 test: Use sub-tests in watch tests
5da12b5aee9 Add tests that validate the return value of resize operation
c369e3cd493 etcd: build etcd image v3.6.0
65a27eb97d6 restrict the use of scheme internally to client-go
671d1a07a58 Bump the busybox image
88b23605404 ResourceQuota E2E: more informative failure message
ba77d27560a DRA E2E: reduce risk of flake in ResourceSlice stress test
6b0ebedccc1 Set non-experimental WatchProgressNotifyInterval config field
079d4e52c24 Fix kubeadm etcd client interface
cf0bbf1171e bump etcd client to 3.6
7bccb1acb5e Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go
139fab0ebdc kubelet: don't import testing dependency in non-test code
90b256537c2 Add suggestChangeEmulationVersion if setting locked feature.
5314fcece31 Promote automatic_reloads of authz config metrics to BETA
1b9bb3393f5 test: Fix CURL download of Windows busybox test image
b0ab168a71e CHANGELOG: Update directory for v1.30.13 release
ec7e732cbcc e2e: dra: move gomega matchers to dedicated package
fcfd87812f1 CHANGELOG: Update directory for v1.31.9 release
2b7f8e1682c CHANGELOG: Update directory for v1.32.5 release
1ab54ffa642 CHANGELOG: Update directory for v1.33.1 release
bba9c49e101 e2e: DRA: test 2 claims with the same name
8d8fd92966b DRA: test mismatched claim UIDs
96da66054db DRA: genTestClaimInfo: add claimUID parameter
69e16d2f544 DRA: kubelet: check for duplicate claim names
b9fec8bf4ff fix scheme import
cf8acf5cb73 package bootstrap matches dir
e9fcdabcf50 feat: kubectl debug: add label for debugger pod
b13cf0a65ae tests: userns: Add framework.WithFeatureGate()
9549c111551 fix e2e network test flake because of network programming latency
ef0547741db verify scripts: preserve exit code
0114d33c346 datapol: compare types directly
a1a4bc8fec8 fix: add BackoffExpiration to DeepCopy
2fe65bbf48b fix(kubelet): update lease duration when config changes
094466539e0 Add rotation and clean up for logging
125600e7458 Remove unused GetHostname method
ee94ba913ad Run codegen
4eb9fb21b69 applyconfig-gen: handle non-pointer embedded members
c374ab81185 Add a breaking example for applyconfig-gen
70e05132645 Separate getList and watch errors to prevent TestGetCacheBypass flakes
5121115711e Add sig/scheduling label to scheduler integration tests and staging repo OWNERS
1ed6cf21966 Add e2e tests for kuberc
0ad8e65d90e e2e pod readiness gate network flake
fe1b1fff7c6 Remove unused GetHostIP method
504b681ae14 Adding Joel Speed
47f85960638 DRA: prevent admin access claims from getting duplicate devices
c5e4cab9b1e e2e: add corresponding featuregate label to node features
c4d6fcb1974 Remove misleading comment from NodeTaint TimeAdded field
d0b6ea36b60 update got to 1.23.8 for the active release branches
3043257b838 remove release-1.29 as it is deprecated
9fd545bcc46 [sig-scheduling] SchedulerPreemption [Serial] validates various priority Pods preempt expectedly with the async preemption: replace finalizers with preStop hook and TerminationGracePeriodSeconds
74e9b27e56e Port "Service endpoints latency should not be very high" to EndpointSlices
e5f7fc25e71 TestNodeAffinityScoring: wait all nodes
e42aba6c0ce Optimize RS Controller Performance: Reduce Work Duration Time & Minimize Cache Locking
28602c66fcf Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption_test.go
52e7aa37daa gofmt
a507e64fe4b Have separate tests for custom selection vs ordering, add comments around system pod eligibility
283c5e6b61f Have IsEligiblePod be supplemental to priority check, update tests
3ed73e058ae Clean up the affinity explanation, fix for new lint rule
d4bc527a7b8 Update comments: affinity info, default behavior, priority->importance
95ebc2c10e9 Apply suggestions from code review
7f57c6e52dc Update factory to use generics, keep single New function
137da6a4882 Remove line about equal priority, fix typo
b8ac1714370 Apply suggestions from code review
224e6a3a355 Rename EligiblePod* to IsEligiblePod*
4bf6841495e Update the customizations to operate on individual pods, for more flexibility later
c34f8db5594 Remove unnecessary context and typecheck, switch to cmp.Diff
c6f2d3879b8 Fix gofmt in default_preemption_test.go
78b059c064e rename OrderedPods -> OrderPods
2616202ac9e Implement tests with example customizations, add direct constructor
760daaf1100 feature(scheduler): Custom pod selection/ordering in DefaultPreemption
721947a5703 Update staging/src/k8s.io/apiserver/pkg/audit/request_log_test.go
153233c677d review from tallclair
e418ee3a92c Avoid encoding in LogResponseObject when we are not going to use it
26c198dc202 Some fixes
0b915a538fd Cleanup after rebase
a6586aa610a Addressed comments
e262cccf23b Cleanup after rebase
86104043588 Add e2e tests for Partitionable Devices
ece35e58828 Update DRA e2e test framework to allow publishing advanced ResourceSlices
a437a269f18 Fix comments on ginkgo label functions
85734ac6b38 DRA E2E: don't run prioritized list tests twice
808a5cfd469 e2e tests: remove all cloud provider calls in storage/volume_provisioning.go
51407868295 feat: improve the backoff calculation to o(1)
cfe7d042435 Account consumed newlines properly in YAML decoder
d5a56739cee use framework.ExpectNoError instead
699ec0a538a Remove wrong comment
f718096b744 NoExecute taint should be added when a Node's ready condition becomes Unknown
3911b677bd4 test: wait for nodes to be in scheduler's cache
ea6b4ea7e9d kubeadm: bump supported etcd version
9d963298a3b test: Close response body in watch tests
d1fb42a4000 fix: fixes a possible panic in `NewYAMLToJSONDecoder`
960a4939f25 Eliminate AuditContext`s SetEventLevel
c39705281c9 Self nominate adrianmoisey as sig-network reviewer
b09d034a570 DRA E2E: revise test labeling
13bd0b4ee82 e2e: node: rewrite the sidecar related tests
f4265638be9 e2e: node: factor out reservedCPUs
a8c8b0987dd e2e: node: dissolve skipIfNotEnoughAllocatableCPUs
32d4724ab8c e2e: node: add comment about reserved CPU
daf2fc71002 e2e: node: rewrite multi-pod tests
ccc662c228e e2e: node: initial multi-container tests
2419d9ccc5f e2e: node: rewrite: multi-cpus single-container pods
e4726719a75 e2e: node: rewrite more compatibility tests
74fda8c700a e2e: node: rewrite compatibility tests
dd3f9b60741 e2e: node: rewrite CFS quota tests
b9ce058ab67 e2e: node: rewrite strict-cpu-reservation tests
3eb2e65fc30 e2e: node: rewrite cpumanager tests
94dd0b8402a Move test cases from mounted_volume_resize into testsuites/volume_expand.go
4aa3c968a78 Build etcd image v3.6.0-rc.5
641834d030e Fix broken recursion
eb4641d6512 Add container Resources to the backoff key
080d6f9ead7 test: pass the test context to http requests
3f188e5d86b refactor: Use http method constants in apimachinery
75afa1e0acf Fix API server crash on concurrent map iteration and write
f93e4645c18 refactor: Stop using ioutil in apiserver
9e3a1b0a908 Add comment describing the feature gate with a link to KEP
e3f3da5e795 Swap KUBECTL_COMMAND_HEADERS to use the proper feature gate mechanism
d1b5f268b48 Drop KUBECTL_ENABLE_CMD_SHADOW featgure gat entirely
a6abd717eae DRA: Fix failure to allocate large number of devices
6cca37b36fe Add integration test for log verbosity
69682b75e50 Manually read verbosity before kubectl command construction
ee4c6b90ce9 add HirazawaUi to kubeadm approvers list
77b1236a523 fix: Kubernetes versions in unit tests
f40892f4813 client-go: call out WithContext inconsistency
871cabeedb0 deflake e2e tests: StatefulSet Non-retain StatefulSetPersistentVolumeClaimPolicy should delete PVCs after adopting pod (WhenScaled)
8b81a3d883e Rename GetStableKey to GetBackoffKey
861682235cf DRA: Fix incorrect behavior for AllocationMode: All in ResourceClaim when used in subrequests
a3097010faa Change the implementation design of matchLabelKeys in PodTopologySpread to be aligned with PodAffinity (#129874)
ce02da8daba generate code
4821604f83a Reorganize scheme type converter into apimachinery utils
e81887276c6 refactor: Add request method constants
af1d60f30bc Add hpa reviewers
0acc7bd4dcc HPA: Fix int overflow in GetExternalPerPodMetricReplicas
b9cb3cb3339 update klog flags
57218ac969d Revert "kube-proxy: log errors during proxy boot"
9def40c9e7b DRA E2E: fix "must manage ResourceSlices"
c71e29ff12b DRA E2E: fix flaky "sequential update with pods replacing each other"
d28c8cd4887 fix: not removing the plugin from the unsched plugins after PreEnqueue
47d296d62d7 feat: introduce pInfo.GatingPlugin to filter out events more generally
441dd305150 userns: Wrap more errors
43f61e80de3 userns: Improve error returned if userns is not supported
c5efc843dac Fix rudimentaryErrorBackoff to only be created once
97e64e80c3e Fix typo in comment
68f0204e3e1 Better logs and debugging
8a571f7fb80 Rename discover() to discoverType()
eb3c061cafb Reorder and merge blocks handling named types
67bab26ea13 hasValidations should return cached values first
bb10f55fd1e Fix lint warnings
22fa3c747b1 add retries to exec command in cgroup verification
8652b6ab283 Update sig-network-approvers/reviewers
b1bb9a5885a Kubelet: Randomize ClusterRole name in e2e
863168e4749 e2e: stabilize Windows memory pressure eviction test
4ed3768dc95 userns: Use len to handle empty non-nil slices
97a2cb39ce2 Make sig-scheduling-api-approvers actual approvers
6d927c3c250 Comment out sig-scheduling-api-reviewers, since it's currently empty.
038bb1a9a5c Remove alculquicondor who is stepping down from sig-scheduling-api-reviewers
55b5827d8f0 integration: etcd data
aa9f156d7aa integration test for compatibility version
3be3051fb77 Adding test case for the webhook behavior change
cf82fd7e9ce Treat error decoding a mutating webhook patch as error calling the webhook
9bcec340f88 modify unit test for compatibility version
15ab88f88bf remove networking v1alpha1 and make update
54b014be1cd use networkingv1 as default storage for servicecidr and ipaddresses
b2fe862ae3d graduate disableAllocatorDualWrite and lock MultiCIDRServiceAllocator
d2fa246b069 Update codegen
d78b295a845 Reenable guard to only validat root and scale subresources until ratcheting merges.
94d043b149b Drop KUBECTL_DEBUG_CUSTOM_PROFILE feature gate entirely
d52f05dad3a remove hwdef from hack reviewer
2e6ec2414c8 Remove unused function
2e8b409a5ff Rewrite Subresources godoc.
164fefa9483 Update codegen
2119555e02b Add subresource to operation, do not special case subresources in validation-gen
2073ba2372b pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on
2b3f2aa705c propogate error
10c5bdd6a1a Apply feedback
36685c6f1ce Add information about expected status
6c89041043c fix(scheduler): node pre-check logic to consider NoExecute taint effect
e36a168a630 test/e2e/node/kubelet_authz.go: fix SAR to include service account groups
aeb43eb22f6 Migrate ExtractCommentTags to ExtractFunctionStyleCommentTags
1ec7231f633 DRA node: reject static pods which reference ResourceClaims
2ea4b1aba60 golangci-lint: don't warn about conversion and defaulting functions
15d9a93d7c8 golangci-lint: redirecting stderr raced with termination of script
3b5cfeaf204 DRA: use v1beta2
b262d56165f DRA: client-go wrapper with latest API as types
8e9abfaf217 DRA: v1beta1 <-> v1beta2 conversion
d7a64d68b56 DRA resourceslices: clarify code
a171795e313 DRA resourceslices: better error reporting
6392b54e12a DRA resourceslices: avoid update loop when partitionable devices feature is off
5af026120a1 test: bump agnhost image to 2.54
e5ffec242a3 Bump CNI to 1.7.1
47fddb08f75 Expand has() tests for omitempty and omitzero
c2c003a71fc update k8s.io/utils to bring fakeClock.Waiters()
b3bf5ed0ee1 verify-shellcheck.sh: normalize KUBE_ROOT using pwd -P
a1a6208863e use the minimal shellcheck image instead
e0983dbee87 remove unused shell imports in verify-shellcheck
7b50c8a510f jwt: support CEL expressions with escaped names
784c589a77a Check for newer resizing related fields after expansion is successful
6bb6c993429 Drop null creationTimestamp from test fixtures
41805aff915 Update runtime convertor to honor IsZero()
bc605171713 bump cbor to add omitzero support
06b0784062f bump structured-merge-diff to add omitzero support
fdf0bb41a44 Omit null metadata.creationTimestamp
79891eac8bb agnhost: bump version to 2.54
09912f35219 Make ToUnstructured match stdlib omitempty and anonymous behavior
49f765e2b3c Remove redundant Required validation for IngressRules
c78556fb4b9 agnhost pause: report signal, support termination message
a6549edd1a7 kubeadm: use named ports for coredns probes
0faeb5a0d09 golangci-lint: move into hack/tools/golangci-lint
5d9a2f30f28 golangci-lint: finish migration to v2
9bada79de10 DRA node test: fix useless gomega.Consistently
4adb58565cb chore: bump golangci-lint to v2
f6d0498017f Continue alias creation when __completion is used to enable completion
dceae3b3889 DRA e2e: avoid terminationGracePeriodSeconds
56e533f4a08 servicecidr: only patch status if necessary
7fedcc34e49 refactor default service cidr sync status logic
edda4b02d61 fixup! Introduce special handling for updates involving a single resource slice.
6d8b41fac66 Introduce special handling for updates involving a single resource slice.
2e98d87c561 api: Fix typo in word "immediately"
5441f5fdef7 jwt: add unit tests for using CEL with deeply nested claims
43ce37ed481 Address feedback
7e1cec680e5 e2e: Deduplicate cgroup verification
cc4c14d4cb2 Disable size check for xfs/ext3/ext4 filesystems before expansion
48054afd6ac Relax external signer path validation to allow relative paths
5712881cac1 Disable disk size checking when calling NeedsResize function
e500f94519c add missing space in string concatenation (kubeapiserver)
c5a2c69b943 add missing space in string concatenation (kubeadm)
43a0da5880e add missing space in string concatenation (kube-proxy)
66b8a8427cf Fix CEL equality bug for structs will nil field not marked as omitempty
1b9386aac37 Add comment explaining the metric sampling logic for plugin execution metrics
0a4ab936763 fix incorrect comments
4d5d48da706 Remove unused volume limit constants
3a5dda78afd e2e network: blue green deployments
ea644182714 Appease linters
43d6ea12e3f jwt: refactor CEL eval to drop unstructured and map[string]any
064074c07ac Add lazy reflective CEL object wrapper
903d6d4f030 Don't reinitialize test framework during each test case
a56378d9fcb Update UserNamespaceSupport feature gate name
3cadb6ff808 DRA test: update examples
c6f652d5fe0 Refactor pod failure policy defaults
68b1a950f9b kube-proxy should check global IPv6 enablement
2080bafa154 Add sunnylovestiramisu as Reviewer
d6b45bc98d9 [FG:InPlacePodVerticalScaling] clean code resize test
dddfeb4a0e4 Handle unsupported node expansion for RWX volumes
62ddcfba575 kube-proxy: conditionally skip e2e
8bb7b056378 dependencies: github.com/client9/misspell -> github.com/golangci/misspell
ad40bc88568 kubectl describe service: Add Traffic Distribution
28e7acf0f93 improve display format
f30c23a7831 kubectl: sort configmaps alphabetically to avoid random order
db960d10078 Fix openid discovery docs with external jwt signer.
1869f6f23a9 Fix typo in service account config test.
c7a870135a3 nftables: cleanup service chain checks
494b2b563f8 use testing.TempDir and delete helper function
efcceee903b reduce assignment
f42ee7a2d67 use slices package to reduce the codes
9cb3dfb5d3c kube-proxy: log errors during proxy boot
2d337f5151b Retool validator utils realType and unaliasType
835bb2ecc5c Change v8n context.Type and Parent on typedefs
6ea1db51a75 Disallow pointers as listmap keys
fc7f0173577 Handle typedef fields in optional validations
9d519c7c46e Fix immutable validation for structs with pointers
0b190b81748 Add test cases for immutable to verify pointers
855918f75c2 Add tests for optionalness of typedef fields
7a24c4ce5d9 chore: update github.com/google/cel-go dependency to v0.25.0
addaf680aed remove v1.31.0 api testdata
86a43f4b539 Add v1.33.0 API testdata
89156452aeb fix nil pointer panic on windows node
00908ce2d13 Wait for resource quota status to be populated
d5bf33e7d71 update-codegen.sh: automatically install protoc
8a2f367ec3e automatically install goimports when running update-codegen
1473aeaac4d add goimports to tools module
540ea5949f3 skip kubectl proxy env tests when the host is localhost/loopback and would not be proxied
1214dc223c7 kubelet: Use node addresses from informer
c0b2f341a72 clean up cloud provider code because cloud provider only supports empty or external and cloud is nil
187b43d5ada enable dep-approvers for staging go.mod/go.sum
f50ad91ed76 Create a single TypeDiscoverer for all inputs
08794974b79 track gopkg.in/yaml.v3 as an unwanted depdendency
aee4945252f alculquicondor stepping down from sig-scheduling approvers
58e5dfd45c4 attempt to re-introduce dep-approvers for go.mod/go.sum
74e84dbf5a3 Add more test cases to TestDescribeSecret test (#131422)
6eff9db0f10 chore: Add VeryShortWatchError typed error
92359cdc69d update godoc for and rename observedGeneration helpers
932cff5dd41 add more error details to the failing cgroup check
c3bb59d078a Fix etcd3 watcher flake
0d3d2733f60 Update go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful to v0.44.0
a2281f97bb0 bump fsnotify v1.9.0
44d7132afbf Update hnslib version in Windows KubeProxy.
7c53a5aaa4d Remove feature label NodeOutOfServiceVolumeDetach
f74424bd7c1 etcd: better logging
24257f2d316 Remove deprecated scheduler cache metrics
269d3ae5147 Fix comment for default gRPC log level in DRA plugin
2ea68920776 Always check for Immutable selector in Deployment Replicaset Daemonset (#131017)
947a9f26fa3 Move pod resize e2e utilities out of e2e/framework
609e4a9ba04 Unhandled panic crash on rollout_history printer.PrintObj (#130503)
fa8e37f7805 Allow disabling caching for webhook authorizers when using `apiserver.config.k8s.io/v1{alpha1,beta1}.AuthorizationConfiguration` (#129237)
1db2d6a0184 Mark NodeExpansion finsihed without featuregate check
70ebe90b139 Also change final status by removing featuregate check
849924b6ba5 Increase delay in kuberuntime termination order test to prevent time rounding flake.
0e40ed642bc Check for newer fields when deciding expansion recovery feature status
4fa090bd812 Remove alculquicondor from test framework OWNERS
6a17858ff9b CHANGELOG: Update directory for v1.33.0 release
90de4b58943 Remove warning about resizing failed for unknown reason
41809284025 Update cri-tools to v1.33.0
f63702de0f9 scheduler: return UnschedulableAndUnresolvable when node capacity is insufficient
d10eb869276 fix: Fix non-constant format string in framework.Logf call
b9a6a257b7d add TODO for unifying .go-version
5c84ee07eee test/images: read .go-version instead of duplicating
722581f5f68 Expand etcd data test to n-3
c21f26895c2 Fix VAP test for v1.34
bfcee664500 Bump DefaultKubeBinaryVersion to 1.34
27815acee14 remove outdate comment
64b4c96e20f fix: use correct apiextensions v1 API instead of apiregistration v1
a53ea3357c2 Updates prober_total_total to BETA and updates the list of stable metrics
f844abfc6f9 Fix typo in ResourceEncodingConfig comment
ff108e72a52 DRA device taints: fix rare unit test flake
97dd6dc2846 Add warning message for attach
8672956f730 etcd: use Unix Domain socket for testserver
33f16a55ba2 etcd: fix 5 second delay during shutdown
ff2e6dddc8b DRA device taints: work around fake.ClientSet informer race
638abf03396 DRA device taints: more logging in test
40f2085d68a DRA device taint: clean up test initialization
091d09b4479 deflake e2e tests: CustomResourcePublishOpenAPI works for multiple CRDs of same group and version but different kinds
db1e107150d Job: Fix API comments for SuccessCriteriaMet
ac3274521be scheduler: remove duplicate nominatedNodeName clearing in preemption
373866eee99 Build etcd v3.6.0-rc.4 image
7fcc1bcf1d1 chore: move watch handler tests to handlers pkg
3fcb26f0179 reduce etcd install log noise
3e609ecf6e9 fix: Watcher deadlock from Stop not being called
c704025a0eb Fix error handling and csi json file removal interaction
1654aa619c2 deflake intergation test: TestEndpointHandlers
3d53bfec09f Typo fix: watchActcion
4e3026fdb81 pr fix
7d6f86594fc kubectl: sort secrets alphabetically to avoid random order
8f1326251c2 Improve Job API comment for the backoffLimit
9d5f78a990a Update OWNERS_ALIASES add aojea to sig-network-api-reviews
e8dbfc0b6ff add miss Shutdown call for selinux_warning controller
405b9e80221 Check expected emitted events with assert.Equal
5ebeb8defac don't only run events in nested lists consecutively
614b1e90170 Run all permutations of events in ResourceSliceTracker tests
29b499e2ba4 simplify applyEventPair
45b0ddff12c make input events a slice
3883e050fc1 Use shared test fixtures for ResourceSlice Tracker test cases
7f21df6ab14 resolved review comments
5928fc0e600 Add ContainerIter utility for ranging over pod containers
3b2cd123479 fix(kubelet): acquire imageRecordsLock when removing image
6d6abaab7d1 Simplify etcd3 watcher
b82fd6c2888 add e2e test for healthz/
8bc7e6c10e0 add etcd server overrides to etcd probe factory for healthz and readyz
b141ac6a235 adjust container_spec_memory_limit_bytes e2e to range: ppc64le is 44*1024 less
2aa39a0c77c Update the busybox test image to 1.37.0
f9c1876b45d Make proxy CleanupLeftovers methods quieter
b61ca041b45 Add some missing cleanup to "kube-proxy --cleanup"
c1ff9cf4e81 chore: Upgrade the mockery version to v2.53.3.
ffe235d2dd3 replace context.TODO with context.Background in tests
4bd0c024e9d add goleak to kubelet vendor via hack/update-vendor.sh
161b44d04ed add missing header in httpstream_test.go; whitespace in imports
79150d1ecf1 add unit tests to verify the fix
42d3716d727 fixed the formatting
268033a5116 Fixed go routine leak in kubelet tests
30f1bcadea4 Add a unit test for iptables.CleanupLeftovers, improve ipvs test
94530dad7b7 Move iptables/ipvs/ipset interface creation into CleanupLeftovers
975e653af44 RWX tests should create RWX volumes
5ad90c3b63a merge RunBenchmarkPerfScheduling and runBenchmarkPerfScheduling
780c0d67251 add license description in options.go
4f33b74a35c Use Go 1.24 os.Root instead of filepath-securejoin
5677f7ab0b1 Make Request#RequestURI honor configured context root
b206264ffba Shorten long directory names with e2e pod logs
2800c16c8b9 Remove FlowSchemas handling non-leases-backed leader election
16f4a5c4eac cleanup unneed code
88fbccd6982 Fix the allocatedResourceStatuses Field name mismatch in PVC status validation
302a8505833 Update coredns version to v1.12.1
d4fd41285b8 update the log message to reflect success and failed jobs
cc42846187b Fix for HNS local endpoint was being deleted instead of the remote endpoint.
551f3c7824d merge the integration tests into a single one
de98a71ff57 Update PodSecurityLevel used during Service CIDRs tests
58ff3129add update kubelet_authz.go to new test framework
c7d0ed5c488 add integration test for job failure event delay and remove the unit test
6747bf7a9cb Clean up leaked goroutines in cache unit tests
04d0715e663 scheduler-perf: add option to enable api-server initialization
16af0d79d87 update sig-autoscaling maintainers
653f48d8867 Certificate store: ensure data is written to disk
5a14fdbf7f3 e2e: Keep original error when exec in container fails
9c228e81d24 Increase kubectl cp command timeout to 30 seconds
310b395a04f [cloud-provider] respect the "exclude-from-external-load-balancers=false" label
ae08504ca62 Remove unneeded return values
2c94112a026 Disable thresholds for PreemptionBasic and PreemptionPVs tests
f7d8853213d Add dom4ha to SIG-Scheduling approvers
8e65a62b3fd Deduplicate MilliCPUToQuota function & constants
3067bbfe159 hack/ginkgo-e2e.sh: fix misplaced brackets
5e4600e46ba e2e service ip preservation test
f7e82d8059d clarify mutual exclusivity of service account annotation keys in godoc
4fa96391457 kubectl http proxy e2e: do not append os.Environ() redundantly
f7f4aa02baf kubectl e2e: debug appended environment variables
5aa61f84797 Test tooling: fix agnhost pause command
65b8fba34bb Mask Linux thermal interrupt info in /proc and /sys.
0ff1e3778f1 Remove general available feature-gate PodDisruptionConditions
fe14689f221 bump k8s.io/utils
1c3dc397ae1 make update
8af1629f7ae remove inaccurate hostNetwork doc comment
bad6c7e4cc5 Set LANGUAGE env variable in TestDiffProgram for consistent locale behavior
c005b85d4df Reduce locking duration on cache to fetch data from Cache
252d584cb73 Implement validation-gen lint for CI
1a694bfd328 Make validation-gen lint errors easier to read
8dc6806d26d Expose NodeInfo to PreFilter plugins and Framework
5413d0edfa4 chore: correct the comment on UnschedulablePlugins
8db5f061838 adding commits of the original PR
1b8bbcac44c Add integration test
1402a54917e Removed unused function UncompressLog.
88a3c000e5b Implement CSI e2e test for MutableCSINodeAllocatableCount
d868eeb0889 Migrate pkg/kubelet/status to contextual logging
7f263b057dd Tag api change instead of apimachinery on generated openapi. changes
4120ed1df05 chore: `make update` for doc changes
356e148045e fix: comment on preferred PodAntiAffinity
a2624f9c64b make update
21f7026c25c clean up CSIDriverRegistry
a68501da72b Add check to see if promote worked within the retry loop
53499d97eec prefer error over bool, prefer Should(gomega.Succeed())
d54ff7441e1 test: don't panic during an Eventually retry loop
cab6045a40f hack: remove verify-e2e-suites.sh
73afab1856c handle review comments
51fdd55e87e use sync map for the cache
3a5f8b4b99c Update OWNERS_ALIASES for sig scalability
547c005cb7f handle job complete update delayed event
410ada00220 Made the unsupportedError msg more readable
780fac5a37d chore(kubelet): migrate network to contextual logging
125b8d2809d Removed kubelet test duplicate line.
c1efa2e1618 delete test/e2e/common/storage/volumes.go
42943796244 e2e storage test: intree driver adds the support for nfs v3
6df869347bc remove outdate comment about pv controller
32999059054 Based on the issue #8304 add mfahlandt as ne Co Chair for Contributor Experience
9a60ea01f9f fix getPodMatches should call /runningpods endpoint
5da366e3efa Update pkg/quota/v1/evaluator/core/resource_claims.go
ce7d3ea00cc fix wrong api version in toExternalResourceClaimOrError
0f0f9d01c0d remove out-of-date comments about version
c2b455f55c6 remove unnecessary functions
44d31af29bf Add example in etcd override flag help text
3dc611e6666 fix container lifecycle e2e tests
4a4fb0a11ce Fix LC_CTYPE for kubemark start scripts
ea644981df4 Update pkg/controller/certificates/cleaner/cleaner.go
1e1e2dee909 Update pkg/controller/certificates/cleaner/cleaner.go
006ebbc33a8 Fix comment typos
4bf5f1a6b31 kubelet: add coverage for identical kubelet config and drop-in config content
eae133919f0 fix: killPodOptions support JSON serialization
55ba8f063b1 kube-scheduler: Fix a misleading error message in the VolumeRestrictions plugin
a52863827ba [kubectl] drain daemonSetFilter with other APIVersion
9f50740b7bc Simplify span handling
c64b6f80eb7 Trace across start handler invocations, nesting spans
6fd8954fe86 kube-controller-manager: also support context for record.NewBroadcaster
bea35b1f565 remove non-lease resource locks in tests.
ff74405bd39 kubelet: remove --register-schedulable flag
05be83b3848 tracing: set audit-id on incoming requests
eda71f9e958 cleaner.go should use time.Until instead of t.Sub(time.Now())
1354bb9e2ea Update log verbosity for node health and taint checks
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
03eb707025 |
docker-distribution: update to v3.0.0-tip
We drop a patch that is now in the upstrem project, as well as the
new commits below:
Bumping distribution to version v3.0.0-63-g76fe6170, which comprises the following commits:
0e77b285 chore: labeler: add area/client mapping for internal/client/**
2f1a51dc client: add Accept headers to Exists() HEAD
ad5d9994 build(deps): bump github/codeql-action from 4.30.7 to 4.30.8
6d764586 build(deps): bump github/codeql-action from 3.26.5 to 4.30.7
11519e6d build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
99c47b61 build(deps): bump actions/labeler from 5 to 6
e1e5d051 build(deps): bump actions/setup-go from 5 to 6
f5512709 build(deps): bump actions/upload-pages-artifact from 3 to 4
0fb77d6a Fix broken link to Docker Hub fair use policy
251bf1b9 build(deps): bump actions/checkout from 4 to 5
6e59b824 Fixes #4683 - uses X/Y instead of Gx/Gy for thumbprint of ecdsa keys
b559f27a Switch to UUIDv7
b39441b1 Fix markdown syntax for OTEL traces link in docs
53dde7fc fix: set OTEL traces to disabled by default
68cd681b docs: Add note about `OTEL_TRACES_EXPORTER`
1fc84617 fix tests
02b1f6e3 fix(registry/handlers/app): redis CAs
bb278c2b fix: fixed data race in TestSchedule test
b09be3d6 build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
6970080b s3-aws: fix build for 386
e629f886 docs: Add OpenTelemetry links to quickstart docs (#4270)
fea36383 refactor: replace map iteration with maps.Copy/Clone
369663e4 Fix S3 driver loglevel param
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
424f6c5701 |
docker-moby: update to docker-v29.0.0-rc.1
Along with the listed updates, we also update the cli, adjust our build
path (it is now under moby), refresh patches and explicitly export
trimpath to avoid QA warnings.
Bumping moby to version docker-v29.0.0-rc.1-54-gd1a720cb15, which comprises the following commits:
5fa3c65682 client: Client.PluginList: add options-struct
aa36c44ef9 api/types/volume: move `UpdateOptions` to `client.VolumeUpdateOptions`
709336a2c3 api/types/network: EndpointSettings: make MacAddress "operational data"
e84bbc09b1 integration/container: fix daemon min API version
1caf3dd3b2 integration-cli: TestDockerCLIBuildSuite/TestBuildEmitsEvents: reduce logs
acfe4e8613 gha: add support for docker-v* tags
b87ed4512a integration/container: fix test using wrong daemon
ecd7551310 daemon/server/router/container: fix back-filling of top-level network fields
865cfe9a7f client: VolumesPrune: rewrite to use option structs and result
b11d9d410f client: NetworksPrune: rewrite to use option structs and result
0672a0f999 client: ImagesPrune: rewrite to use option structs and result
91323b7a35 client: ContainersPrune: rewrite to use option structs and result
d9a03a374f daemon: consolidate "log-level" and "log-format" options and flags
4e6c955e78 daemon/command: configureDaemonLogs: don't panic
06ff7d9cd4 daemon/config: add validateDaemonLogConfig function
c73fe6d26e daemon/config: move daemon log-config to a separate struct
a6cf5e19e8 daemon/command: remove placeholder
c584855329 daemon/command: configureProxyEnv: accept smaller struct
0a2ab376ff daemon/config: slight cleanup of Config struct
69702bd821 fix minor linting issues
3b075a79b9 api: remove image inspect `Parent`, `DockerVersion` from swagger docs
d62a521c7d daemon: initialize volumes if nil on decode
a65293c036 libnetwork/osl/kernel: ApplyOSTweaks: don't log errors if not found
adb4269928 api/types/image: remove deprecated Summary.VirtualSize field
2537eae6f3 api/types/container: remove support for config mac address
e77f116c9c integration: remove some version-gates for API < v1.44
2c59be7011 daemon: raise default minimum API version to v1.44
47fe719b33 api/types/build: remove deprecated BuildCache.Parent field
36f1c830bb add back replace rules and re-vendor
45caa74e3b api/types/sytem: remove deprecated DiskUsage.BuilderSize
a5d9619093 api/docs: remove BuildCache.Parent field for API v1.42 and up
e1722eb8d8 daemon/command: disable c8d snapshotter when userns remapping enabled
1aa73144f2 update to go1.25.3
5e9e261107 vendor: github.com/moby/moby/client v0.1.0-beta.2
01a19e9d95 vendor: github.com/moby/moby/api v1.52.0-beta.2
b1e57881c3 gha/labeler: disable sync-labels to preserve human-added labels
3848b16bca Removed all occurrences of wrapError in libcontainerd/remote
28018a51d8 update to go1.25.2
39cf847787 api: regenerate with go-swagger v0.33.1
b4c3b29245 Dockerfile: update to go-swagger v0.33.1 (for go1.25)
bbdd24d145 api/templates: align with go-swagger v1.32.3
b3f74e85aa Dockerfile: bump gotest.tools/gotestsum v1.13.0
ac3960a44c api/types/container: omit `Config.OnBuild` when empty
0ee0283c9d gha/labeler: Some more file-based rules
15289ad2dc client: Filters: add Clone method
a6206f2da9 dockerd-rootless: default MTU 65520 for slirp4netns
7e63d2a81b dockerd-rootless.sh: if no slirp4netns, try pasta
cfdb9068f0 client: ImagePullResponse: use sync.OnceValue
3c44bd67b2 client: ImagePullResponse: don't panic without reader
4210e4ad16 daemon/internal/netiputil: make "MaybeXXX" functions a function, not var
4c6e571d38 api/pkg/stdcopy: move stdWriter to daemon/internal
8cf0529a8c api/types/swarm: add documentation to clarify virtual IP address type
c2812dc285 api: fix swarm network field from addr to prefix
9912ccd7b3 Clean up bridge device on network create error
e6bac8983b introduce ImagePullResponse to manage JSONMessage stream decoding
7652f38c28 client: remove API-version compatibility for API < v1.44
7ea066c8d1 client: add Filters type
778e5bfad3 api/types/filters: move to daemon/internal
96b29f5a1f client: remove support for negotiating API version < v1.44 (docker 25.0)
ef5feb4992 vendor: golang.org/x/net v0.45.0
3f75e2116f vendor: golang.org/x mod v0.28, net v0.44, text v0.29, crypto v0.42, tools v0.37
6de0417884 vendor: golang.org/x/sync v0.17.0
4bc628581d vendor: golang.org/x/sys v0.36.0
9169ed2873 client: touch-up some godoc
04318e0d86 client: update some tests using obsolete API versions
ca9c5c6f7b vendor: github.com/moby/swarmkit/v2 v2.1.1
1b1608f2cd hack: add patch to buildkit tests
3c418bea4e vendor: update buildkit to v0.25.1
0aed907a86 update to go1.24.8
0cc04d0c5c Network restore, don't update config to match state
b1e20b6a3a api/types/system: remove deprecated Commit.Expected field
1a7d7cc015 builder: use proper percentage calculations for default gc policy
dbcbe87d52 ci: fix cache for go modules
f8d3c4e4a7 api/types/image: InspectResponse: remove deprecated Parent, DockerVersion
1a81903854 api/types/image: InspectResponse: remove deprecated fields
a8dd9c5025 daemon/pkg/plugin: stop propagating Plugin.Config.DockerVersion field
1d3687aeee ci: update gha cache attributes
a99b7947e1 daemon: stop propagating Image.DockerVersion field
f6e1bf2808 Rework Go mod tidy/vendor checks
45a728a13b image inspect: fix legacy fields for API < v1.52 response
fdd61821da use consistent alias for docker image spec
c4fda95bea api/types/plugin: deprecate Config.DockerVersion field
a9a1ac3c45 Dockerfile: update compose to v2.40.0
94ab6a9c5e Dockerfile: update buildx to v0.29.1
b9ac2cea0c Dockerfile: update cli to v28.5.0
222a3fe94e integration-cli: remove deprecated buildImage utility
bd8a99b400 api/types/image: InspectResponse: deprecate Parent, DockerVersion
288b9f033b integration-cli: remove deprecated buildImageSuccessfully utility
15bef6ff1a daemon/server: move GetImageOpts, ImageInspectOpts to imagebackend
95e77d6861 daemon/images: minor linting fixes
e204ba1dca daemon/internal/compat: add extra fields recursively, and don't replace
50269e6e39 api/types/swarm: remove `PortConfigProtocol`
ea76dbefeb api/types/swarm: deprecate PortConfigProtocol
c646091d57 api: move container port type to network package
038bfbfbd4 api: omit legacy fields from image inspect if not set
f289cb2d7c api: docs: sync v1.52 yaml
d6899ca5a5 api/types/registry: use netip types as appropriate
fd4329a620 api/types/container: use netip types as appropriate
d5c838dc5e internal: move sliceutil from daemon/internal
a90adb6dc1 api/types/network: use netip types as appropriate
ef31514a9f api/t/network: move IPAM validation to daemon
4d6a2be79d api/t/network: validate EndpointIPAMConfig in daemon
2da472b1a5 api/types/system: use netip types where appropriate
cc082add87 api/types/swarm: use netip types as appropriate
46ab36ae46 daemon/internal: move netiputil from libnetwork
470f5b50a5 internal/sliceutil: map nil to nil
df506c107e negociate content-type used by /events API
0ad35e3ef0 Add existence check for go.mod and go.sum files
cb3abacc52 api/types/container: add network port and port range types
c46704a80f client/build_prune: Wrap result in a struct
a35b3cd149 client/build_cancel: Add options struct
3f3bbe4430 vendor: github.com/moby/buildkit v0.25.0
9a32a7e0d1 daemon, client: remove version-gate for daemon-side AutoRemove
af5988238a client: reduce uses of obsolete API versions in tests
eafca64a6b daemon/server: implement image-inspect with "compat" package
51cbd2ed16 api: swagger: remove VirtualSize fields for API > v1.43
a7edbe8e5f api: remove support for `KernelMemoryTCP`
fb2f8115c8 api: deprecate `KernelMemoryTCP` support
eff4f064a3 daemon/libnetwork/internal/kvstore: remove unused ErrBackendNotSupported
1697aecbd5 daemon/libnetwork/internal/kvstore: remove unused BOLTDB and Backend type
94bcf89412 Eliminate warning about endpoint count store delete
08d014cac8 api/docs: remove email field from example auth
344ab458a1 api/types/registry: remove deprecated AuthConfig.Email field
3241d46525 client: Client.doRequest: adjust error matching for TLS1.3 handshake
b8fbd0539e vendor: github.com/deckarep/golang-set/v2 v2.8.0
178d697484 integration-cli: adjust TestHTTPSInfoRogueCert for TLS1.3 handshake
efa077848f api/types/storage: define generic `Storage` type for container inspect
77bf85647c contrib: add docker_client SELinux policy module to access socket in container
b48fcf6cdb client/checkpoint_list: Wrap result in a struct
646e068cf1 api/checkpoint: Don't return null if no checkpoints
38fb0dd10c Add build tag "no_libnftables"
062479f95c vendor: github.com/hashicorp/go-memdb v1.3.5
3912ffacd6 integration/nw: TestEmptyPortBindingsBC use context
e80e2908ba dockerversion: use t.Context() in tests
aca0adfb97 daemon: use t.Context() in tests
8905c3052b daemon/libnetwork: use t.Context() in tests
01f9186d6d daemon/logger: use t.Context() in tests
c1c9087404 daemon/containerd: use t.Context() in tests
544f8f53ed daemon/builder: use t.Context() in tests
415274d62a vendor: github.com/opencontainers/cgroups v0.0.5
73ed41ef79 vendor: github.com/coreos/go-systemd/v22 v22.6.0
0f393630f8 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
6db6de2c20 Use libnftables in dynamically linked binary
e8d3609031 hack: use custom ref for buildkit tests
21d2d55500 vendor: update buildkit to v0.25.0-rc1
de5e64b3bd Add option WithSetNsHandles for testutil SetupTestOSContextEx
0fb46d08ad api: docs: remove deprecated BridgeNfIptables, BridgeNfIp6tables
362d4d9538 testutil:SetupTestOSContext - don't leak namespaces, netlink handles
a32a53ae01 daemon/containerd: pass custom metaHeaders to resolver
2223b7f582 daemon/server/imagebackend: add PushOptions struct
9d53093db6 daemon/server/imagebackend: add PullOptions struct
cbafff64e4 project: mark 23.0 branch as unmaintained (EOL)
5d22d9bec9 integration/service: rename var to prevent shadowing
471f24bafc daemon/server/backend: CreateImageConfig: change "Pause" to "NoPause"
bad3dfe9cb client: ContainerCommitOptions: change "Pause" to "NoPause"
1135ab0283 Dockerfile: update xx to v1.7.0
f5847040cc client: Client.negotiateAPIVersionPing: trim v-prefix before handling
af3f971431 client: TestNegotiateAPIVersionAutomatic: gofumpt
a8cb35f01a client: TestPingHeadFallback: check method, path, and fix example response
87d1da50f0 test: migrate test api network get defaults and filter
d9cdfd2887 client: remove unused Client.HTTPClient() method
d4d93bf558 daemon/container: remove State.ExitCode() method
ee4b7a8374 daemon/container: remove NewState() constructor
d06f0d008d explicitly access Container.State.Health.Health
0df791cb72 explicitly access Container.State instead of through embedded struct
aa492314a1 ipams: Re-enable legacy remote plugins support
41a6ad5def client: remove deprecated ImageListOptions.ContainerCount
02c4bb6a0c daemon/config: More tests for DNS addresses
f7ed1b84d2 client: ImageList: don't discard reference filter on API < 1.25
d60b4ea278 client: fix version-gate for readonly-recursive mounts validation on service
0673d43663 client: remove "version" header for service create, update
9fc12daf80 client: remove version-gate for "--force" on "volume remove"
839c2709af client: WithMockClient: match version behavior of actual client
8f8a2db52c client: rename validateAPIVersion to validateServiceSpecForAPIVersion
0468dac252 client: Client.ContainerCreate: fix panic when passing a nil config
6d0551e13a api/types/network: CreateRequest: remove deprecated CheckDuplicate field
50ea842e17 client: separate exec methods to ExecAPIClient interface
94309db0aa daemon/server: Server.makeHTTPHandler: pass Route as argument
81506ad8b1 daemon/server/router: NewRoute: don't use un-keyed struct literal
82e5d3064a client: ImageBuildResponse: remove OSType field
5028ff1f40 integration-cli: remove startContainerGetOutput, runCommandWithOutput
2a867f0c4d daemon/server/backend: remove ExecInspect, ExecProcessConfig alias
ff21989215 api/types/container: move ExecInspect type to client
c1be6ef5de api/docs: remove KernelMemory option from old API versions
c5991341eb remove support for deprecated kernel memory limit
20d8342a4b move endpoint API version constraints to API server
b70c1a439d gha: add missing dependency to Windows workflows
18b289f9df daemon/server: fix requests not logged with --log-level=trace
839e46f97c client: remove support for API < v1.22 filter format
a83d91f427 API: /info: remove `SecurityOptions` re-formatting for API < 1.25
082b4e8d77 client: move ExecOptions to client
6a642300f0 client: move ExecStartOptions, ExecAttachOptions to client
c8c13fe058 API: /info: remove magic `<unknown>` values for API < 1.39
c600f62c25 api/docs: sync swagger and update changelog
6084882b98 client: tidy go.mod
2bb0443ae9 Release IPv6 address if unused due to sysctl setting
252659278e Configure addresses before adding them to DNS or /etc/hosts
18b8e369ae Split OS-specific code out of Sandbox.populateNetworkResources
a8b9eff902 Don't set up DNS in Network.createEndpoint
ddf10ee1cd Delay Endpoint config until the osSbox exists
b043980e6f daemon/config: remove deprecated CommonConfig.CorsHeaders
4c7deaf832 Windows containers: restore network name after reboot
9129094b98 Windows containers: report HNS network name in inspect
aa78f19066 ipvlan-l2: do not allocate a gateway address from IPAM
468e3521b0 macvlan: do not allocate a gateway address from IPAM
caae209d25 api/types/container: remove deprecated ExecOptions.Detach
19edf44896 daemon/config: remove deprecated Config.
fabe66322f builder/remotecontext: remove deprecated "Rel()" utility
cf243b64aa daemon: fix build after revendoring api module
c2c2b80e90 daemon: report IPAM status for Swarm networks
b092c8ca64 api/t/container: drop NetworkSettingsBase
fc1ff44bc2 api/t/container: drop DefaultNetworkSettings
d5d3716705 daemon/i/compat: disable HTML encoding
8efe6b0183 Add TestJoinError
73413ea693 bridge_linux_test.go: gofumpt
52c9cfd016 Use sbLeave to roll back on error from sbJoin
53390f85dd Put clearNetworkResources() inline in its only caller
916fa31ab5 Acquire Sandbox.joinLeaveMu for Endpoint force-Delete
a9db1e9a26 Endpoint.sbLeave: don't load ep from store
b192d06ec7 Remove network info from container when endpoint join fails
1b74b3e1ce api/types/events: Message: remove deprecated Status, ID, and From fields
5815eb82ee daemon/events: omit deprecated event fields on API >= v1.52
c4eb791dba daemon/events: remove tests for deprecated API fields
33a05ac344 daemon/internal: add "compat" package for legacy responses
3f86797d3f api,daemon: report IPAM status for network
ee8abb845d d/libnetwork: move uint128 to its own package
65ffac3dbf internal/iterutil: add Chain, Chain2 iterators
ee24728b1e go.mod: replace client
139b6464b5 api/docs: fix events example response
f8925bac6f daemon: Do not default to c8d image store on Windows
bdd0a2a970 gha: extract vm test to a separate workflow
8c8324b37f Dockerfile.windows: remove deprecated 7Zip4Powershell
9d2e74d43d gha: Add automatic PR labeling for modules
705f26010e client/image_inspect: Unexport ImageInspectOptions
67c8064bb3 client: remove ImageInspectWithAPIOpts function
5303799297 go.mod: re-add replace github.com/moby/moby/api
2f1015482f libnet/d/windows: ReleasePorts: use errors.Join
fc86411353 libnet/d/windows: inline releasePort
9efc1cc264 libnet/portmapper: rename, move PortMapper to portallocator
4b230a4909 internal/testutils: merge with internal/testutil
d3e45f8743 testutil: move back to internal
af677b61a5 libnet/portmapper: clean up windows port mapper
90f31c6c27 libnet/portmapper: remove dead field bridgeName
f6e5b3afc5 libnet/portmapper: drop unused NewWithPortAllocator
9e7de1b679 libnet/portmapper: remove unused field proxyPath
f6c59f9779 libnet/portmapper: merge mapper.go & mapper_windows.go
b48442db4c libnet/portmapper: remove dead DeleteForwardingTableEntry
32710d3e5e libnet/portmapper: remove dead AppendForwardingTableEntry
eb2e296711 daemon: GetContainerStats: use errdefs for error-type handling
97eceb266a errdefs: remove deprecated IsXXX utilities
2d73fed24e update AUTHORS
37de02378c Prepare release notes for v2.0.0-beta.0
de4ae66d08 Update client vendor to use tag
b5dde0234c add back replace
1499623a9d go.mod: update client to v0.1.0-beta.0
0525ae2aed api: image inspect: remove temporary backfill for Config fields
d98a8c59ab testutil/daemon: fail gracefully if DEST is unset
8995619b9d testutil/daemon: fix DOCKER_USERLANDPROXY env var
b5035def03 Prepare release notes for client/v0.1.0-beta.0
76964752d3 Update client api version to v1.52.0-beta
a1e3a109ee api/docs: sync v1.52 docs with latest
0fe1af95f3 api/docs: remove temporary "full" example for image config (v1.50, v1.51)
7bfbb6e8ca api/swagger: remove temporary "full" example for image config
2d1af4e4e4 api/types/build: move build options to client and backend
5232d82c1b daemon/server/backend: move build options to buildbackend
8b8a3cb14c api/types/image: move LoadResponse to client
a8afc2c6fb api/types/checkpoint: move checkpoint options to client
f1da80e8d3 contrib/check-config: check SCTP protocol option
d904f3b625 Prepare api/1.52.0-beta releases
4e30076e4d Add mailmap entry for Austin
e656f39952 api/t/network: generate more structs from Swagger
ea1c2530da api/t/network: generate Inspect, Summary structs
26e335b647 api/types/build: move `CachePruneOptions` to client mod
798abe8965 vendor: github.com/spf13/cobra v1.10.1
02a50be1f9 vendor: github.com/spf13/pflag v1.0.10
aaa9dd4e26 gha: skip "vm" checks if `ci/validate-only` label is set
ccf1363680 api/docs: update v1.52 docs with current swagger
c208f90796 api/templates: vendor structfield template
57ce548341 client: move container options together with their users
4d20b6fe56 api/types/container: move container options to client
c441b2ef19 api/types/image: make `InspectResponse.GraphDriver` optional
1a86389419 api/types/network: separate Summary from Inspect
f8bd170b2a daemon: validate args in network.New*Filter
ea1dfbda9e daemon: prune networks using network.Filter
f0d10ae733 d/network: filter networks individually
a4a90c2248 api: fix deprecation of "keep-storage" /build/prune query parameter
e46a991dc5 api: remove unused DefaultVersion, MinSupportedAPIVersion consts
30406d42e3 update to go1.24.7
e2e9f36c5f api/types/system: move `SecurityOpt` type and `DecodeSecurityOptions` to client
d47b0db4f9 vendor: update buildkit to v0.24.0
ca97d071b7 fix: client vendor with config struct changes
37d6a1909b libcontainerd/remote: wrapError: don't convert c8d errdefs error
36303969b9 libcontainerd/remote: container.NewTask: move vars to where used
f37094ad4f libnet/d/bridge: CreateEndpoint: use d.config directly
ae24edfc0d libnet/d/bridge: merge configure into newDriver
2436458227 libnet/d/bridge: Register: pass a Configuration struct
386a3a6bba libnet/config: mv config_{unsupported,windows}.go
18f2e61d08 libnet/config: rm config_freebsd.go
e099f1e409 daemon: Daemon.ContainerExecStart: fix typo in log field
6e512cc292 libnet/d/ipvlan: Register: remove unused config param
459f4f431d libnet/d/macvlan: Register: remove unused config param
43014a891b libnet/d/overlay: Register: remove unused config param
18efa5513d libnet: makeDriverConfig: drop support for label-based config
1470048e00 libnet: remove drivers_freebsd.go
4ea085187a libnet/d/bridge: export Configuration
7b75f355e5 daemon/srv/r/ctr: handlePortBindingsBC: fix warning
fbad7b568d libcontainerd/remote: task.Exec: log warning on cleanup failure
e67b3b0b90 libcontainerd/remote: task.Exec: rename processID -> execID
003e17ff5a libcontainerd/remote: task.Exec: preserve parent context during cleanup
167b0e9ea6 libcontainerd/remote: task.Exec: make defer error-handling more explicit
55c929c97f libcontainerd/remote: rename var that shadowed import
023ae2e218 contrib: remove udev rules for hiding loopback devices
0ca7ac3258 daemon: backfill empty PBs slices for backward compat
4d2a293ff3 libnet/drvapi: make NetworkAllocate optional
cbd04b6f08 libnet/cnmallocator: use a list of local netdrivers
478d1fc8ba Bump go.mod minimum-go-version to 1.24
269960a4c6 integration-cli: TestConcurrentPush: refactor to improve failure logs
8031b077bc gha/arm64: Setup qemu
ce338dec81 integration/internal: Print Buildkit logs
27fca93b65 c8d/history: Fix non-native platforms
ad830a47af integration/internal: Handle Buildkit in GetImageIDFromBody
f66f555ad4 graphdriver/windows: Potential fix for access denied
ea73c88d12 libnet/cnmallocator: rm drivers_darwin.go
18b21a32a1 libnet/cnmallocator: rm drivers_unsupported.go
60fa39d559 hack: temporarily use custom buildkit ref for testing
5682f65cca hack/dind-systemd: collect firewalld logs
03df89b84a hack/dind-systemd: enable firewalld debug logs
77ce202515 vendor: update buildkit to v0.24.0-rc2
3c83038936 hack: use heredocs in generate-swagger-api.sh
854ec0a1ad d/libn/internal/addrset: add popcount methods
b7c597ec35 api/t/ctr: deprecate DefaultNetworkSettings
c9fdad2552 daemon: marshal legacy `registry.ServiceConfig` extra fields for compatability
d0de293513 testutil/daemon: remove unused FindContainerIP
80bb864fd6 api/t/ctr: deprecate NetworkSettingsBase
16dc39136c api/t/ctr: deprecate NetworkSettingsBase.Bridge
20b679b4a6 client: Extract clientConfig for opt applying
9ddf9d87e7 client: Remove newMockClient
7cd089edd9 client/volume_test: Use functional option to create mock client
72e11d78d7 client/task_test: Use functional option to create mock client
a1e304f76c client/system_test: Use functional option to create mock client
407af72993 client/swarm_test: Use functional option to create mock client
124bba478a client/service_test: Use functional option to create mock client
98434a5ea4 client/secret_test: Use functional option to create mock client
c99f2eaf34 client/request_test: Use functional option to create mock client
8581a15c25 client/plugin_test: Use functional option to create mock client
0b577c703a client/ping_test: Use functional option to create mock client
d401228b43 client/options_test: Use functional option to create mock client
643e94ebf5 client/node_test: Use functional option to create mock client
5a82c3397e client/network_test: Use functional option to create mock client
be76beee8f client/image_test: Use functional option to create mock client
005a289703 client/distribution_test: Use functional option to create mock client
bc1d436aa9 client/container_test: Use functional option to create mock client
c70aac772e client/config_test: Use functional option to create mock client
6452807fb4 client/client_test: Use functional option to create mock client
a3d073e160 client/checkpoint_test: Use functional option to create mock client
17396e5d94 client: Add WithMockClient opt
09ecd74cf3 CI: add oraclelinux-8 for running tests with cgroup v1
1570ca934d Dockerfile: install fuse-overlayfs
e15c51a03d Makefile: propagate DOCKER_IGNORE_BR_NETFILTER_ERROR
ed78637b9a nftables: iterate over rules
9dc0c094e6 cmd/docker-proxy: set O_NONBLOCK unconditionally
12897011fa vendor: github.com/ishidawataru/sctp v0.0.0-20250829011129-4b890084db30
785ae9a0f9 Rework the interface to libnet/internal/nftables
cf913f5b0a d/cluster: use lockedManagerAction in more places
4b866fdcef d/cluster: add context param to lockedManagerAction
8839f53175 d/libnet: TestUserChain: fix error matching for nonexistent chains
fbde2bcb9a nftabler,nftablesdoc: stringify numerical dstnat prio
a4949b669e iptablesdoc: remove -n from iptables -L invocations
fc045ad139 libnet/pmapi: remove firewaller arg from Map/UnmapPorts
9b1c4ad3b1 libnet/pm/routed: don't set up firewall rules directly
9d9b05446c libnet/pm/nat: move back fw / proxy steps into the bridge driver
268e636b2b libnet/pmapi: let portmappers specify NAT/fwding rules
c6717f4387 libnetwork: provide endpoint name for IPAM drivers
5349095cd1 vendor: github.com/docker/go-events 605354379745 (main)
229a29649f vendor: github.com/moby/buildkit v0.24.0-rc1
071e6472db Unmap IPv4 addresses loaded from store
b721c4f4a8 daemon: minor touchups for backend system info response marshal
60c6e57b82 hack/make/test-integration: disable firewalld integration
1b4fcb8da7 api/types/network: move `CreateOptions` type to client module
b0b7260c77 ImageCache.restoreCachedImage: rename var that shadowed import
1e249cc309 api/types/network: move connect/disconnect options types to client module
3003c5fe45 d/libnet: fix CreateOptionIPAM capitalization
853aed171b api/types/image: move image option types to client
33066cddb1 api/types/swarm: move `SecretListOptions` type to client
33cdcd62f5 daemon: Daemon.getInspectData: also set Config
fae54e03af api/types/container: merge InspectResponse and ContainerJSONBase
c9a0c93b04 d/libnet: remove unused arg from CreateOptionIpam
b85c91f1b8 fix vendor
44972d7427 daemon: Daemon.getInspectData: inline struct-literals
94d0b10503 api/types/swarm: move `ServiceInspectOptions` type to client
a2291e5eac api/types/swarm: move `ServiceListOptions` type to client
3b1e16594b api/types/swarm: move `ServiceUpdateOptions` type to client
bb4125e89f api/types/swarm: move `ServiceCreateOptions` type to client
4dcc7af116 api/types/swarm: move `UpdateFlags` type to client
ad0fa5a872 api/types/swarm: move `TaskListOptions` type to client
2718f953f0 api/types/swarm: move `NodeRemoveOptions` to client
7d2b87e95f api/types/swarm: move `NodeListOptions` to client mod
b1260cd493 api/types/swarm: move `ConfigListOptions` to client
bdce1608c8 api: move authconfig package from types/registry to pkg
ff0e644c88 daemon/cluster: use authconfig package for decoding
9f1d8be252 docs/contributing: minor fixes
dbe19a506e fluentd logger: add read timeout configuration.
28ba0fcaae vendor: github.com/fluent/fluent-logger-golang v1.10.1
3bcaf1c4da vendor: github.com/tinylib/msgp v1.3.0
27b609b401 vendor: github.com/philhofer/fwd v1.2.0
1d6c7663c4 d/libnet/i/nftables: move golden files into subdir
28afa75c39 d/libnet: TestIptabler: move golden files into subdir
ce4a331287 d/libnet: TestNftabler: move golden files into subdir
c5e75cc485 daemon/containerd: remove convertError utility
6fbea5f5c1 image delete: inline some variables, and touch-up TODOs
7f8ce05f6e client: check for Digested reference instead of Canonical
eed354379c api: docs: update v1.52 swagger with latest changes
0de3d2ec51 Dockerfile: update rootlesskit to v2.3.5
70d096313f vendor: github.com/rootless-containers/rootlesskit/v2 v2.3.5
fe8516cf4b client: refactor `InspectOptions` to `NetworkInspectOptions`
5eaed0366c api/types/network: move `InspectOptions` to client mod
6084c6ae78 client: refactor `ListOptions` to `NetworkListOptions`
d6aa6ae9bd api/types/network: move `ListOptions` to client
d867f9f0f1 api/docs: update description for AuthConfig.Email field
6cfff7e880 api/types/registry: update deprecation comment for AuthConfig.Email
7aa50424e3 daemon: decouple daemon backend from client volume list options
9fc6a1e437 api/types/volume: refactor volume options to prune report
ee22a62dd5 client: refactor `ListOptions` to `VolumeListOptions`
c48585f104 api/types/volume: move `ListOptions` to client mod
56626a1222 api/types/system: move `DiskUsageOptions` to client mod
4665aa11ce client: refactor `SearchOptions` to `ImageSearchOptions`
40025bdf43 api/types/registry: move `SearchOptions` to client
e8d0aba254 vendor: golang.org/x/sync v0.16.0
60125b888c contrib: update dockerfiles to debian 13 "trixie"
39d4dbea9c Dockerfile: update debian frozen image to trixie-slim
15f92925f0 vendor: go.etcd.io/bbolt v1.4.3
eb9774cbf9 client: rename `ListOptions` type to `EventsListOptions`
d73dd4990c api/types/events: move `ListOptions` type to client
db72cc28c7 Rename test helper function input parameters to not shadow client package
f07d359043 client: rename `ResizeOptions` type to `ContainerResizeOptions`
882fd68b1b api/types/container: move `ResizeOptions` type to client
14262696d7 libnet/pa: OSAllocator: retry allocations
201968cc03 libnet/pa: OSAllocator: listen after bind
86ae7a56d2 daemon: Fix container restore with automatic driver selection
555e3939c9 daemon: Fix forceful switch to containerd image store
47bdbf5a4b client/pkg/jsonmessage: remove unused fields
c4e82bab70 api/types/volume: move `DiskUsage` type internal to daemon backend
0d61b55add api/types/image: move `DiskUsage` type internal to daemon backend
566c44edfe api/types/container: move `DiskUsage` type internal to daemon backend
d588092be2 api/types/build: move internal to daemon backend
eac4c43aaa integration/system: remove TestEventsBackwardsCompatible
b0d9a90f45 integration/system: add TestEventsNonBlocking
000f5e8d10 daemon: Daemon.ContainerStats: small cleanups
f4ae01a38a daemon/server/router/system: getEvents: use event consts for filtering
6b52a16f14 integration/network/bridge: add "generated" header to markdown docs
48557f72f9 daemon/libnetwork: TestUserChain: rename golden files
ff8364a39f hack/test/unit: use empty default values
fbd3cdc007 fix vendor
da2b1a2930 Fix image prune events for containerd backend
b68ff62ab7 daemon/libnetwork/bitmap: add OnesCount method
be7a769b69 Dockerfile: disable CGO for building utilities
8de606beb1 Dockerfile: remove trailing slashes for GOBIN
aa80ad2572 Copy the daemon/internal/timestamp package to internal client package
812aa46d81 Move the api/types/time package to internal daemon package
033ec8be44 daemon/router/image: initialize default authConfig
f0c069ffc9 gha: Add conditional skip for jobs with 'ci/validate-only' label
8013d80c24 hack/test/unit: run in the right module when TESTDIRS is used
97587945ef .github/workflows: Add kind label validation to PR workflow
d2e0895b9b daemon: deprecate env vars set by legacy links
b13ea83488 api: bump github.com/google/go-cmp v0.7.0
56c48e8708 d/libn/bitmap: tidy up constants, branchy math
82ba7fef17 api/types/container: rename Port to PortMapping
48038347d7 Match device driver on name and ignore capabilities
2aba802ae6 daemon: don't strong-type filters
a2aa7be724 vendor: go.etcd.io/bbolt v1.4.2
1c34ff94bc client: consistently use defer for ensureReaderClosed
f6b63e6013 client.sendRequest: clean-up logic for error-handling
2a4f70309d client.doRequest: improve GoDoc to clarify behavior
d69fde4c60 client: Client.Ping: improve error handling and fallback
b2e6fd31cf Restore DOCKER_DRIVER environment variable for storage driver configuration.
80294ddb60 client: make checkResponseErr a regular function
423980614e daemon: use slices.Clone, maps.Collect in some places
6505e8d605 daemon/libnetwork/types: rename StaticRoute.GetCopy to Copy
1e11e64c9c daemon/libnetwork/types: remove TransportPort.Equal()
561e14ea3f daemon/libnetwork/types: remove TransportPort.GetCopy()
385297ee40 daemon/libnetwork/types: remove unused IsIPNetValid utility
7960f742a2 daemon/libnetwork: Endpoint.CopyTo: use maps/slices.Clone
a82a68a445 daemon/libnetwork: replace endpointJoinInfo.CopyTo with Copy()
2d5100749d daemon/libnetwork: replace EndpointInterface.CopyTo with Copy()
80452e5d4a daemon/libnetwork/types: PortBinding.Equal: use non-pointer receiver
7d5312ab56 daemon/libnetwork/types: rename PortBinding.GetCopy to Copy and non-pointer
e387dc977e daemon/libnetwork/types: cleanup GetIPNetCopy, GetIPNetCanonical
68a94ecbb5 daemon/libnetwork/types: remove GetIPCopy; use slices.Clone
115b801a3b daemon/libnetwork/types: remove GetMacCopy; use slices.Clone
cfad3ed6b9 daemon/libnetwork: replace IpamInfo.CopyTo with IpamInfo.Copy()
2f74f245b6 daemon/libnetwork: replace IpamConf.CopyTo with IpamConf.Copy()
796a4ce952 daemon/libnet/drv/bridge: stubPortMapper.UnmapPorts: fix slices.Delete
a4fbbc1570 Add context to restore and load containers
85b79f83f4 Fix hardlink handling in containerd snapshot remap
ead007f1f1 Use native snapshotter for integration tests and run
99181f56ce Fix symlink evaluation to a directory that may not exist
4816383c0b Add environment variable to define the threshold
185ae7ec2c docs: api: Tweak type of ForceUpdate to uin64
c8173c5c1f api: swagger: Tweak type of ForceUpdate to uint64
0a89d98bad daemon/libnetwork/types: remove errdefs aliases
892ebd2f17 daemon/libnet/drivers/windows: small cleanup in error-handling
11094e27b0 api/types/network: modernize EndpointIPAMConfig.Copy, EndpointSettings.Copy
b48df69b02 daemon: Daemon.ContainerInspect: move vars closer to where used
582ee7ea57 daemon/builder/dockerfile: copyRunConfig: use slices/maps.Clone
0ded8645b6 Fix custom runtimes handling on Windows
aa6838ae54 vendor: go.uber.org/zap v1.27.0
daf843b72f vendor: go.uber.org/multierr v1.11.0
aa85a44139 vendor: github.com/google/btree v1.1.3
fe32e4a999 vendor: github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8
76fc74317a vendor: github.com/golang/gddo v0.0.0-20190904175337-72a348e765d2
632fb0c89a Update graphdriver check logic to account for disabling of snapshotter
b41babafaa Fix windows test graphdriver setting
8700bca2bf Update migration test to use graphdriver env
00463b9216 Fix containerd image count
7f87cf9d8a Check for snapshotter plugin availability
632de98f75 Enable containerd snapshotters by default
9f5f4f5a42 Add containerd migration to daemon startup
2fff6b442e check-config.sh: report IP forwarding sysctl state
f71e86eed5 rootless: enable IP forwarding
f802d8a08e When cleaning iptables rules, warn on filter-FORWARD DROP
67ffa47090 nftables: don't enable IP forwarding
7dfeee8460 Drop FirewallCleanerSetter interface
200a75b34a Return concrete types from NewNftabler/NewIptabler
050fbbccca chore: use errors.Join instead of github.com/hashicorp/go-multierror
96f8c6395e chore: enable use-any rule from revive
c6be4ad999 libnet/pa: don't set SO_REUSEADDR on UDP sockets
3862a0875c check for net.ErrClosed instead of "use of closed network connection"
9cae3fb167 docs/contributing: remove GIT_BRANCH image tag references
04d95003fd Stabilize TestSaveAndLoadPlatform integration test.
1f323d5035 client: README: add badges
662154a940 api: README: add badges
b4e353c02b README: add license and OpenSSF badge
df3aea43aa remove references to "vendor.mod"
98790830eb Deprecate api/types/strslice.StrSlice and remove its use
b25b421f97 update to go1.24.6
677c2a19d9 vendor: github.com/docker/go-connections v0.6.0
50789e2bab testutil/fakestorage: inline go code and remove contrib/httpserver
d49a354cb2 testutil/fakestorage: use local paths, fix port-mapping and optimize
8be1b2372a Dockerfile: update containerd binary to v1.7.28
b9b52d59b8 download-frozen-image-v2: Use curl -L
359a881cea download-frozen-image-v2: handle 307 responses without decimal
12c6345d3a libn/d/overlay: don't deref nil PeerRecord on error
dcaf8893a0 windows: do not forgot IPAM configuration when re-creating networks
0ad765c67d add back replace and vendor, tidy
f5f984eec6 Dockerfile: update runc binary to v1.3.0
234349d173 api/docs: sync v1.52 swagger with current version
833dc69ad9 docs: improve the description of the `outputs` parameter for `/build` endpoint
c145229828 update some fixtures in tests
90c3d29bfb go.mod: tidy
78ccee32b3 update various "doc" links in code
d82f50557e Bump api version in client and main module to v1.52.0-alpha.1
a0a7d9a3d7 Add release notes for client/v0.1.0-alpha.0
32ec26be6c Update client and main module api version to latest alpha tag
e30b8e3393 update golangci-lint settings
57256a9b62 fix error-capitalization
c13266d2c0 api/types: move plugin types to api/types/plugin
c17d43ae67 api/types: move ErrorResponse to common/ErrorResponse
15f78b752c daemon: make buildSandboxOptions, buildSandboxPlatformOptions more atomic
77c2e3279d daemon/libnetwork: Sandbox.EnableService/DisableService slight cleanup
bfce6556c4 client: use stdlib errors
3fe93532e4 client: tidy go.mod
3b14c5488f go.mod: github.com/containerd/containerd/v2 v2.1.4
259eb259bc go.mod: dario.cat/mergo v1.0.2
d8b622b315 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
8e63b55146 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
044234f847 api/docs: add v1.52 swagger
59e8fe8479 Prepare release notes for v1.52.0
dfac16c297 hack: Update cosmetic occurences of the old package name
83267a0fda go.mod: github.com/docker/docker v28.3.3
5b3e1a6425 go.mod: tidy
0ae3cb000e validate/pkgimports: Fix package name
22bd59010e hack: Fix dockerversion not being set correctly
79148460b0 hack/make.ps1: Replace old package name with moby/v2
2dcd8b8def golangci: Replace old package name with moby/v2
cad3a5775b docs: fix URI fragment by changing it to the existing subheading
778d8e3a26 libnet/d/bridge: handleFirewalldReloadNw: fix deadlock
519adb26c3 libnet/d/bridge: driver: un-embed mutex
752a3b302c api/pkg/stdcopy: add example
26cf610e6e api/pkg/stdcopy: improve docs
c010c84ade api/pkg/stdcopy: don't use iota for consts
195a6bbb1e client: touch-up godoc
e7c784c270 Dockerfile: add GO_SWAGGER_VERSION build-arg
908895b9c3 api: update "interface{}" to "any"
51bbc37f64 api/types/strslice: use slices.Equal
dab42db691 contrib: remove editorconfig
5fbbf040aa contrib: remove mac-install-bundle.sh
5a40d4ed9f contrib: remove syntax (Dockerfile syntax) files
62545ddf90 daemon/internal/image: remove image-spec markdown
4cfc260a5f TESTING.md fix links to gotest.tools, and some touch-ups
1205a15db1 libnetwork/types: define RouteType type
6aab881534 libnetwork/types: make Protocol consts strong-typed
ec5dbaf233 libnetwork/types: define IPFamily options using syscall.AF_XXX consts
95eeb0b3b0 libnetwork/types: define IPFamily type for IP-family consts
ee560a3b23 api/types: fix Plugin.Config.Interface.Types def'n
2783f80ecf api/types: generate with latest go-swagger
5365f08ae2 daemon/config: make DNSConfig.DNS a netip.Addr
a43198845b daemon/pkg/registry: un-export ResolveAuthConfig
5fbf680f5d daemon/pkg/registry: move newIndexInfo to search
6a7f0008a3 daemon/pkg/registry: move searchRepositories to where it's used
17d0ac56f3 daemon/pkg/registry: remove session; make searchRepositories a func
0c73c459b4 daemon/pkg/registry: un-export GetAuthConfigKey
eda6a499e3 router/distribution: fetchManifest; detach from distributionRouter
aac2623115 integration/container: TestCheckpoint: inline containerExec util
03991f4846 builder-next: puller.Snapshot: cleanup handling of v1 images
0156a42200 daemon/libnetwork/resolvconf: remove unused code
bbec7a5150 migrated test container API rename to docker/cli
1e499bae79 daemon: consolidate platform-specific inspectExecProcessConfig
49aa38e9e7 update links to swarmkit v2 docs
c98e5cb60b update github links to moby/moby
cf15d5bbc6 remove obsolete //go:build tags
02b3f1cd99 integration: remove stray "distribution" directory
297ea75204 check_config: add nftables modules to optional features
83357620e2 Update unit test script for windows
58c95cde9b Replace uses of code which requires 1.24+
900a0516de Update hack/test/unit for go module
1d571e619d Rename build package to moby v2 module
65867642d3 Remove go module workarounds
f74e5d48b3 Create github.com/moby/moby/v2 module
a954a0f4a2 Remove profiles
53bd828853 Remove libnetwork
e55d294ea7 api/types/registry: add TODO/note about empty authConfigs
8b68b977b1 Revert "api/types/registry: EncodeAuthConfig: use empty string for zero value"
5bbf3af980 daemon: fix linting S1016 (staticcheck) false positive
d58dc493fe replace direct uses of nat types for api/types/container aliases
494677f93f api/types/container: add aliases for go-connections/nat types
f3ba0b2dc2 client/pkg/jsonmessage: remove Stream interface
19edf5c53c client/pkg/jsonmessage: remove DisplayJSONMessagesToStream
fdaccdb233 pkg/jsonmessage: stop printing deprecated progressDetail, errorDetail
94ac102e4b api: remove deprecated NoBaseImageSpecifier
0d8ca8eefe Move pkg/jsonmessage to client/pkg/jsonmessage
d00ecdc479 Move pkg/streamformatter to api/pkg/streamformatter
66862e14d1 Move pkg/progress to api/pkg/progress
1da417980c Move api/stdcopy to api/pkg/stdcopy
ebef4a44fd Split streamformatter from jsonmessage
5a144c40e2 pkg/streamformatter: reduce jsonmessage.JSONMessage dependency
f4127d76c5 pkg/jsonmessage: move JSONProgress to api/types/jsonstream
0515e1c991 pkg/jsonmessage: move JSONError to api/types/jsonstream
9a52e474a3 pkg/jsonmessage: suppress unhandled errors
02fcde0c18 Add separate const for daemon httputils to avoid jsonmessage import
e257027903 pkg/jsonmessage: remove github.com/morikuni/aec dependency
d7082848a6 tidy vendor.mod
6c7e2909c2 api/types/filters: remove deprecated ToParamWithVersion
5535e81a79 pkg/system: move to daemon/internal
d94171bfaa pkg/system: make XattrError linux-only
aa9de914ca pkg/system: remove unused ErrNotSupportedPlatform
28b822d5b3 pkg/system: remove Lgetxattr, Lsetxattr stubs for non-Linux
450ac30e4a pkg/system: LUtimesNano: remove stub for non-Linux
03f44e6d14 pkg/system: MkdirAllWithACL: remove stubs and unused os.FileMode arg
6f9e099fd3 pkg/system: remove deprecated IsAbs
53a3085256 pkg/system: remove deprecated EscapeArgs
1313b8caff pkg/fileutils: move ReadSymlinkedDirectory to daemon
ae0a3d6918 pkg/fileutils: move ReadSymlinkedDirectory internal to daemon
bae46854c5 pkg/fileutils: remove unused CopyFile utility
46854ca5ab daemon/pkg/registry: remove copy of rootless.RunningWithRootlessKit
f1c65c1dd6 daemon/pkg/registry: Service.Auth: remove unused statusMessage return
f797ced96a daemon/pkg/registry: remove unused ParseRepositoryInfo, RepositoryInfo
e30d541da0 daemon/pkg/registry: remove unused ReadCertsDirectory
d80e16bb18 daemon/pkg/registry: remove unused ParseSearchIndexInfo
4c1ab68c6c daemon/builder/remotecontext: remove detection of system.XattrError
1dc53e8ec7 Update client go.mod
03d7f47f31 Update api go.mod
5bbb7182e7 Move logdriver to internal under daemon/logger
d7cfe97984 Update logdriver to remove proto definitions
f866621303 contrib/check-config: fix kernel version range check
df8d45c7c9 contrib/check-config: fix MEMCG_SWAP
ee24dcec3d Move swarm runtime plugin storage type to internal
86190e7366 Move swarm runtime plugin spec to swarm types
d761d9d358 pkg/rootless: move to daemon/internal
17959aff2c remove pkg/stdcopy as it has moved to the api module
c055c3e098 remove pkg/stringid as it has moved to the client module
76e2ca1d41 pkg/stack: move to daemon/internal
f78d595c96 runconfig: move to daemon/internal/runconfig
75bc4c5292 daemon/server/router/container: request sysInfo from daemon / backend
02867f9473 runconfig: rewrite ContainerDecoder to DecodeCreateRequest
5e567a3856 daemon/server/httputils: remove ContainerDecoder interface
ec3e83a7b5 api/types/container: move StateStatus, NewStateStatus internal again
667cb4bec8 fix vendor
26fda349b8 runconfig: remove exported errors
969b293778 iptables: remove SCTP checksum rule
e6298db297 cli/ is not in moby repo (anymore)
83510a26b3 api/types: move backend types to daemon/server
be27300c6e daemon/server/router/checkpoint: remove unused httputils.ContainerDecoder
b448dc5575 daemon/server/router/container: postCommit: only decode Config
6b4dfb0135 integration-cli: migrate TestPostContainersCreateShmSizeXXX to integration
617326a40c testutil, integration-cli: fix minor linting issues
da92ea2837 integration-cli/daemon: rewrite CheckActiveContainerCount with client
6adbeff449 integration-cli: remove parseEventTime utility
281a3f6c41 integration-cli: remove deprecaed inspectMountSourceField
6124c00827 integration-cli: buildImageSuccessfully: don't wrap buildImage
877529c62d integration-cli: remove deprecated inspectFieldWithError utility
68480dc11d integration-cli: remove createTmpFile utility
29a7d4039e integration-cli: remove deprecated inspectFieldMap utility
d100fd6a77 integration/system: remove "hdr" utility
97827e1a58 integration-cli: TestContainerAPIGetExport: fix minor linting issues
f73aba83dc client: TestContainerStats: fix minor linting issues
f67e6555bf api/types/container.StatsResponseReader: move to client
4dda328af8 client: rename files for system-commands to their canonical name
96a6884cb3 api/types: move DiskUsage types to api/types/system
82c069c857 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
24aa86991c api/types: move PluginCreateOptions to client
b93ad81898 api/types: move plugin client options into client
44ae4cd2b7 api/types: move HijackedResponse into client
f491b70aa4 integration-cli: remove "requirement" package
ca1c5ee08f pkg/stringid: move to daemon, and provide copy in client
0abcdb7405 Update golangci for lazyregexp
6514282136 Move internal/testutils/networking to integration/internal/testutils/networking
14eb2770b9 Move internal/unshare to daemon/internal/unshare
28de87fb28 Move internal/unix_noeintr to daemon/internal/unix_noeintr
5b913b3ea0 Move internal/sliceutil to daemon/internal/sliceutil
20cc1a6203 Move internal/rootless to daemon/internal/rootless
8042010175 Move internal/platform to daemon/internal/platform
c3b0e0130a Move internal/otelutil to daemon/internal/otelutil
b62b542c2e Move internal/opts to daemon/internal/opts
713d7f5ed1 Move internal/nlwrap to daemon/libnetwork/nlwrap
fd21e3b935 Move internal/multierror to daemon/internal/multierror
baea1c5092 Move internal/ioutils to daemon/internal/ioutils
50743e3f38 Move internal/containerfs to daemon/internal/containerfs
ca9c4dffb7 Move internal/cleanups to daemon/internal/cleanups
222b2b8b2f Move internal/lazyregexp to daemon/internal/lazyregexp
9566272f30 Move pkg/tarsum to daemon/builder/remotecontext/internal/tarsum
ca5d2348d0 Move pkg/idtools to daemon/internal/idtools
7bfb804dbe Move registry to daemon/pkg/registry
f1f83dae55 Move reference to daemon/internal/refstore
c74ba95583 Move oci to daemon/pkg/oci
f24455c90b Move image to daemon/internal/image
1ff6011e04 Move distribution to daemon/internal/distribution
fa9a3c383d Move layer to daemon/internal/layer
3003c56c57 Delete TestRunDNSOptionsBasedOnHostResolvConf
3205fcf6c7 pkg/stringid: TruncateID: touch-up doc
6ed00d5044 registry: ConvertToHostname: use strings.Cut
547a2db21d registry: TestNewIndexInfo: inline testIndexInfo (thelper)
5ea78575e7 registry: fix assorted gocritic issues
406ee2feb5 registry: translateV2AuthError: fix singleCaseSwitch (gocritic)
ecb0354da5 registry: isCIDRMatch: fix captLocal (gocritic)
1ceda96864 registry: serviceConfig.loadInsecureRegistries: fix ifElseChain (gocritic)
d4e85443ff registry: remove deprecated RepositoryInfo.Class field
cc2d564a9e registry: remove deprecated RepositoryInfo.Official field
38453db513 contrib: remove gitdm
0d9304c9e1 docs: remove old rootless placeholder
a1f68bf5a6 overlay: Reload Ingress iptables rules in swarm mode
8b208f1b95 libnetwork: split programIngress() and dependent functions on Add and Del functions
50e6f4c4cb libnetwork: refactor ingress chain management for improved rule handling and initialization
4f0485e45f libnetwork: add FlushChain methods for improved iptables management
262c32565b libnetwork: refactor rule management to use Ensure method for Append and Insert operations
19a8083866 libnetwork: refactor iptable functions to include table parameter for improved rule management
c2e2e7fe24 libnetwork: extract plumpIngressProxy steps in a separate function
51ed289b06 libnetwork: extract programIngressPorts steps in a separate functions
752758ae77 libnetwork: extract creation/initiation of INGRESS-DOCKER chains in separate function
07393071ad bridge: Reapply endpoint iptables rules on firewalld reload
6d457d9695 bridge: Trigger firewalld reload during bridge integration tests
f1a97bda3d api/types/container: remove deprecated Stats type
4d5a7289a0 api: move docs to api module
bdcf4e8c85 adjust minimum API-version for multiple platforms on save/load
a401c0c046 runconfig: update fixtures for TestDecodeContainerConfig
1378604cc3 integration-cli: remove tests for pre-docker 1.7 clients
8d8bbefb90 client: remove deprecated CommonAPIClient interface
728f0769e1 client: remove deprecated ImageInspectWithRaw
2f200f9e05 client: remove deprecated IsErrNotFound helper
5ed9891eed client: remove deprecated ErrorConnectionFailed helper
a0fa5da2ab client: remove deprecated NewClient and NewEnvClient functions
30322dd649 client: fix example, and update refs to old modules
4859497098 pkg/stdcopy: fix missing alias for stdcopy.Systemerr
01c7b4233c hack/validate: remove obsolete exception
b91ebbde6d Refactor containerd platform matchers.
fcc8209e12 Add support for multiple platforms in image export and loading.
2303e6bff6 client: Client.doRequest: add special handling for DNS resolution errors
67596f01e2 client: Client.doRequest: add special handling for "not found" errors
462d0ff5aa client: Client.doRequest: simplify permission check and unwrap error
7072acac79 client: Client.doRequest: preserve wrapped error
3b4fbaacd7 client: Client.doRequest: use early return
cf1695bef1 Add option --bridge-accept-fwmark
2a342079c6 api/types/container: add missing type for exec-inspect response.
a600da91f4 profiles/apparmor, seccomp: migrate to separate module
30752f0780 Always allow access to routed endpoints
4538a1de0a libnetwork: handle coalesced endpoint events
e1a586a9a7 libnetwork/d/overlay: handle coalesced peer updates
8340e109de libn/d/win/overlay: dedupe NetworkDB definitions
c7b93702b9 libn/d/overlay: extract hashable address types
844023f794 libnetwork/driverapi: make EventNotify optional
69c3c56eba libn/networkdb: report prev value in update events
34fb2486ef test: migrate test api client version old not supported
cc9e6a13a2 api/types/swarm/runtime: remove module path for generating proto
76c1afeb97 api/types/plugins/logdriver: remove module path for generating proto
85ecf8c0f4 api: update references to old module name
a17a2e8f3d api/stdcopy: touch-up godoc
5b8ef1aff2 api: remove redundant //go:build lines
260cc008f4 fix vendor
4e246efcd1 libnet/d/bridge: mv portmapper to libnet/pms/{nat,routed}
289ef96d8b libnet/d/bridge/i/rlkclient: move to libnet/i/rlkclient
41cd92f6c0 libnet/portmapperapi: add PortMapper interface, registry
afb231d027 libnet/d/bridge: add a new Hairpin config flag
6f59a8e665 libnet/d/bridge: call setChildHostIP while binding
43f384c452 libnet/d/bridge: connectivityConfiguration: use PortBindingReq type
aa36cc5d25 libnet/d/bridge: move portBinding to portmapperapi
429818f969 libnet/d/bridge: move portBindingReq to portmapperapi
090c319f2e Don't allow the daemon to start with nftables and Swarm enabled
26e487db78 testutil: Fix sense of hasFwBackendArg check
6e7a2c830d Add Health attribute on the docker ps command
c4f9616c4a client: cleanup encoding body and add test-coverage
024414b47e integration: rename vars that shadowed import
20d594fb79 deprecate pkg/stdcopy, move to api/stdcopy
f651a5d5e9 registry: remove uses of lazyregexp
b33b4bd290 internal/testutils/networking: rm uses of lazyregexp
daa991c3d8 testutil/environment: don't use regex for string-matching error
0dc3193b2b integration-cli: remove uses of lazyregexp
6f9758047d fix: add create log stream awslog driver log option to validate list
c47afd41c8 Create github.com/moby/moby/client module
afd6487b2e Create github.com/moby/moby/api module
135cea2a10 Update test-unit for client module
7e708a5416 Update unit tests for api module
0971099c5f Add options to vendor to add and remove replace
eab076f217 Gocompat tests no longer needed with go modules
c469e5ebab daemon/server: rename vars that shadowed imports
61b19a494a oci: deprecate SetCapabilities
b9196ed703 oci: fix godoc for SetCapabilities, TweakCapabilities
5c683e8603 oci: sort defaultLinuxMaskedPaths
0433def57d internal/platform: remove NumProcs() stub for Linux
1a504f68fd Add nftables+firewalld tests to CI
02d7a3026a Support nftables+firewalld
d95dceb3b1 build: device entitlement support
655dbe69d0 pkg/tailfile: rename vars that shadowed type
a089c51160 pkg/idtools: remove deprecated functions and types
3bc64b312e runconfig: decodeContainerConfig: fix godoc referencing wrong type
ab5d348b77 integration-cli: remove uses of "runconfig"
0c3185a835 daemon: killProcessDirectly: use "WithFields" for logging
1cc42643ae hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
18e463a082 api/types: remove deprecated RequestPrivilegeFunc type
a3920ae6a0 api/types: remove deprecated IDResponse type
3e5a06179e api/types: remove deprecated container-inspect types
8347b05435 api/types: remove deprecated Container type
f050df0329 api/types: remove deprecated ContainerState type
7abeb4d5a4 api/types: remove deprecated container-networksettings types
c5a2194b5d api/types: remove deprecated container Health types
76bf0e2929 api/types: remove deprecated MountPoint
207db8792e api/types: remove deprecated Port
fa8177ba7a api/types: remove deprecated GraphDriverData
836ec65d5f api/types: remove deprecated ImageInspect, RootFS
7d3459e7fb api/types: remove deprecated SecretCreateResponse, SecretListOptions
68744c8b05 api/types: remove deprecated ConfigCreateResponse, ConfigListOptions
33f07ff3f4 api/types: remove deprecated NodeListOptions, NodeRemoveOptions
f13796d2af api/types: remove deprecated TaskListOptions
72b1e11264 api/types: remove deprecated ServiceCreateOptions
3faead6fc1 api/types: remove deprecated ServiceUpdateOptions
55ad118eaf api/types: remove deprecated ServiceListOptions, ServiceInspectOptions
91558ae3f3 api/types: remove deprecated SwarmUnlockKeyResponse
74fe646ac2 api/types: remove deprecated build-cache types
3eac6e7888 api/types: remove deprecated BuildResult
088cb2ffa6 api/types: remove deprecated build-related types
1359046a36 pkg/process: call out that "Zombie" is only supported on Linux
94618ac3ab pkg/process: separate exported funcs from implementation
a88e13f4f9 client: fix datarace when accessing cli.Version field
e6cdf24bcd windows: include labels when re-creating non-default nat networks
d4e026fe20 Wait for container dependencies upon daemon start up
39ab393274 Add daemon option --firewall-backend
7b9bd987bf api: deprecate NoBaseImageSpecifier
a632b8495b daemon: define default (and maximum) API version
2b17ab0ec6 libnet/internal/resolvconf: fix naming of error (errname)
aa757e591d libnet/internal/resolvconf: don't use rc.WriteFile in tests
8d54d36bce libnet/internal/resolvconf: fix naming of error
60a3a28a04 libnet/internal/resolvconf: minor optimizations
f22a3dfdb7 libnet/internal/resolvconf: optimize Generate() without text/template
0775ab6661 libnet/internal/resolvconf: add benchmark for Generate()
41da5700a4 client: define default (and maximum) API version
b54bde4376 Move testutils image load to integration internal
b83f36877f Move internal/mod to daemon/internal/builder-next/worker/mod
af86e80825 Move daemon/build to daemon/builder/backend
7d48302134 Move builder to daemon/builder
6ff9bea6a7 Move builder/builder-next to daemon/internal/builder-next
3a447bc079 api/types/registry: EncodeAuthConfig: use empty string for zero value
472e09ac47 api/types/registry: DecodeAuthConfig: add early returns and improve errors
6865032baa api/types/registry: add BenchmarkDecodeAuthConfig
c1b95c0ca2 ci/windows: Always run tests with c8d
967daa627a integration: Skip TestRunMountImageMultipleTimes on Windows
a615ec798d builder/remotecontext/git: fix linting issues
6a8654a808 api: bump to 1.52
ac5f464649 libnetwork/networkdb: improve quality of randomness
5799deb853 libnetwork/networkdb: test quality of mRandomNodes
d8730dc1d3 libnetwork/networkdb: add convergence test
7771a38896 Remove integration test using daemon internals
17d5f731f1 Move internal/safepath to daemon/volume/safepath
7edd7c68b1 Move internal/mounttree to daemon/internal/mounttree
daeaac0d3c Move internal/directory to daemon/internal/directory
33d824b838 Move quota to daemon/internal/quota
04f5276267 Move volume to daemon/volume
fdd9ae3465 libnet/internal/resolvconf: use slices.Clone
b1ce0c89f0 client: always send (empty) body on push
50d2dafc7f libnet/portallocator: introduce OSAllocator
14bd3451d8 client: ContainerExecAttach: update GoDoc links
830e0d79f5 vendor: github.com/opencontainers/cgroups v0.0.4
d66cf14a87 registry: replace pkg/homedir.GetConfigHome for os.UserConfigDir
14d9be4978 daemon: Fix mounting same image multiple times with different destinations
a28f031298 Fix libnetwork proto generation
b1884b6bba Restore libnetwork/resolvconf
3b5f7c2a29 Move internal/modprobe to daemon/libnetwork/internal/modprobe
7f4713a364 Move internal/maputil to daemon/libnetwork/internal/maputil
22ed8b1327 hack/make/test-docker-py: split test-exclusions to separate lines
7a720df61f Move libnetwork to daemon/libnetwork
f05652867d Move opts to daemon/pkg/opts
fb2117987d Dockerfile: upgrade Delve to v1.25.0
18438f3c13 Dockerfile: update compose to v2.38.2
8c3e10a011 Dockerfile: update buildx to v0.25.0
4dee288b51 Dockerfile: update cli to v28.3.2
9bcb12aa48 daemon: ContainerExtractToDir: make AllowOverwriteDirWithFile opt-in
fd8fec18cd integration/container: XFAIL flaky TestExecResize on Windows
4a8d77c958 api/types/container: remove deprecated ContainerTopOKBody alias
3d8d9c2bb3 api/types/container: remove deprecated ContainerUpdateOKBody alias
f8a2550a22 pkg/system: deprecate IsAbs and move internal
63bada41e5 pkg/system: deprecate EscapeArgs and move internal
0fc1493654 pkg/system: remove EnableContainerdRuntime, ContainerdRuntimeSupported
a327a9f341 integration-cli: fix flaky TestRestartStoppedContainer
59d5743a43 testutil/daemon: Daemon.Stop() don't log when already stopped
1c8b09ccf6 integration-cli: TestDockerNetworkHostModeUngracefulDaemonRestart start, not restart
9e69fc567e testutil/daemon: remove string-matching for error
cf41e9ac60 testutil/daemon: gofumpt
d6c90dcb87 integration/container: fix flaky TestRemoveContainerWithVolume
d30e61bff4 api/types/registry: add some tests for encoding/decoding authconfig
c31368fffb Don't raise an error when stopping a stopped docker-proxy
f6b3b257c8 implement test api images history integration test on dedicated file
669163c416 remove test api images history integration cli test suite
04dbcddd6a migrate test api images history integration cli test to integration test
adad33b30e Fix expected results for nftablesdoc tests
dde698a2e8 integration/container: add basic test for ContainerInspectWithRaw
16ed75572f client: TestContainerInspectWithEmptyID test both inspect variants
7f602d3b94 When switching between iptables/nftables, delete old rules
a5e3f39770 integration/container: avoid ContainerInspectWithRaw with "size"
88b67eb2fc integration/container: cleanup TestCreateWithCustomReadonlyPaths
bd091c1a9d integration/container: cleanup TestCreateWithCustomMaskedPaths
779052873d Add nftablesdoc
ad579b8a1d daemon/container: remove deprecated IsValidStateString
312eebde49 daemon/container: remove deprecated IsValidHealthString
e9fb208e87 daemon/container: remove deprecated StateStatus, WaitCondition
0d24798529 daemon/graphdriver: remove error or deprecated graphdriver-plugins
7767525ccd daemon/graphdriver: remove deprecated GetDriver()
1fe4a0a7ad daemon/graphdriver: remove redundant init()
bd8f9c3c1b registry: remove deprecated APIEndpoint.AllowNondistributableArtifacts
65d424e126 registry: remove deprecated APIEndpoint.Official
7252c3c78d registry: remove deprecated APIEndpoint.TrimHostName
11a18d3b00 api/types/registry: remove deprecated fields for non-distributable artifacts
b3e513f80a registry: remove deprecated Service.ResolveRepository()
5862b926f5 registry: remove deprecated SetCertsDir and unify CertsDir code
924cd22d1d registry: remove deprecated HostCertsDir
178416334f Run CI tests with nftables
ea29dffaa5 daemon/server: remove compatibility with API v1.4 auth-config on push
54e67d0054 daemon: AuthenticateToRegistry: remove statusMessage return
e8396af484 nftabler: add per-port rules
b677c1a671 Replace integration import test use of image type
d90277372f libn/d/overlay: drop obsolete writeToStore comment
30b9480107 Create legacy links during endpoint Join
dd9e289b6e Don't pass sandbox options to ProgramExternalConnectivity
4f7afb8ac9 Remove libnet's logic to track a driver's port mapping state
89d3419093 libnetwork/d/overlay: fix logical race conditions
843cd96725 libn/d/overlay: fix encryption race conditions
a1d299749c libn/d/overlay: inline secMapWalk into only caller
74713e1a7d libnetwork/d/overlay: un-embed mutexes
a05080c26c libnet/d/bridge: split NATed and routed port mappings
d229c1ba31 libnet/d/bridge: norm pb reqs before forming groups
e2034267f6 nftabler: add per-endpoint rules
b5bf89c315 libnet/d/bridge: pass SCTP sock to the proxy
0a047e825c update to go1.24.5
0ea28fede0 integration/networking: increase context timeout for attach
c833bd598e vendor: github.com/ishidawataru/sctp v0.0.0-20250708014235-1989182a9425
03a662b80e vendor: code.cloudfoundry.org/clock v1.37.0
08bde5edfa libnetwork/networkdb: fix broadcast queue deadlocks
aff444df86 libn/networkdb: make TestNetworkDBIslands not flaky
1e1be54d3e libn/networkdb: prevent spurious rejoins in tests
21d9109750 libn/networkdb: stop forging tombstone entries
428dbe617a nftabler: add network level rules
a55fede2d4 Pass context to nftables functions
1c5d6d1ee3 Mark iptabler/nftabler golden results as generated
ee6a6b061f daemon/pkg/plugin: remove dependency on legacy distribution package
09689298e3 distribution: fix detection of v1 images and remove libtrust dependency
ac9d5a6068 integration-cli: TestPullFailsWithAlteredLayer: use OCI manifest
fd47ccef7b integration-cli: TestPullFailsWithAlteredManifest: use OCI manifest
4e818970e2 integration-cli: TestPullManifestList: use OCI media-types
f6ef56a0bc integration-cli: TestPullManifestList: rewrite using OCI types
51d6687754 api: swagger: Tweak type of GwPriority to integer
bfc0c7cff5 docs: api: Tweak type of GwPriority to integer
557b5d60d3 layer: remove LogReleaseMetadata utility
7d18f65eb2 distribution/xfer: improve test reporting
291872e086 remove type conversions
ade244f97d deprecate layer.CreateChainID for OCI identity
10e9ab66f9 image/tarexport: inline validateManifest utility
471f173170 image/tarexport: improve error messages for invalid archives
033750cf80 image/tarexport: remove suport for loading v0/v1 images
ebfafa1561 contrib: add Wireshark plugins for NetworkDB
aae26b80fe Remove client buildkit dep
e93e15afb0 Replace use of env test util with standard library call
4754c15e2b Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
fa4f3c979f gha: remove GO_VERSION build-arg from builds
136c0e591b image: RootFS.Clone: simplify
aea776332b pkg/stack: suppress some unhandled errors
e32d26cb59 libnet/diag: remove /stackdump endpoint
a881e9e057 Remember port binding state in the bridge driver
7ea50c14d6 Remote network driver: remember gateway state
054738bce3 Pass gateway endpoint ids to ProgramExternalConnectivity
07e5be0a18 image: remove special handling for legacy "layers+base" windows images
5efd2286da vendor: update buildkit to v0.23.2
e1b70074ec distribution/xfer: LayerDownloadManager.Download: remove initialRootFS arg
173436c702 distribution/xfer: rename var that shadowed type
0683bc6355 fix some inconsistency in import aliases
d207ee97ff daemon/listeners: extract utility for DACL, and improve docs
18dc570918 remove project dev "reports"
93bbd21d82 rename codecov.yml to .codecov.yml
ce3c8785dc restartmanager: move to daemon/internal
256f96ef59 remove VENDORING.md
717188201a contrib: remove mkimage-xxx scripts
3f8630cb84 internal/usergroup: move to daemon/internal
cbe6e31487 internal/usergroup: move windows consts to builder/dockerfile
8dbe0f45a9 integration-cli: debug TestPushToCentralRegistryUnauthorized
5fe253cd79 builder/dockerfile: BuildFromConfig: combine loops
a30b63eafc integration-cli: remove uses of deprecated dockerCmdWithResult utility
90f9ce14f1 Move libcontainerd to daemon/internal/libcontainerd
3ee8c1e3a9 Move libcontainerd/types to daemon/internal/libcontainerd/types
841a369b8f Move libcontainerd/supervisor to daemon/internal/libcontainerd/supervisor
fe959261d3 Move libcontainerd/shimopts to daemon/internal/libcontainerd/shimopts
4e8bd050bf Move libcontainerd/remote to daemon/internal/libcontainerd/remote
dd1656e6bc Move libcontainerd/queue to daemon/internal/libcontainerd/queue
6835f367e5 Move libcontainerd/local to daemon/internal/libcontainerd/local
5419eb1efc Move container to daemon/container
a02ba3c7df Move container/stream to daemon/internal/stream
9d9cb00d50 Move container/stream/bytespipe to daemon/internal/stream/bytespipe
3581b982f7 Move plugin to daemon/pkg/plugin
1c700c876f Move plugin/v2 to daemon/pkg/plugin/v2
f5ceed8719 Move plugin/executor/containerd to daemon/internal/plugin/executor/containerd
0b2582dc8f Move internal/metrics to daemon/internal/metrics
87238882e0 Move api/server to daemon/server
3a6e3f85c6 Move api/server/backend/build to daemon/build
79f802d46a Move api/server/httputils to daemon/server/httputils
c7a87f0dee Move api/server/httpstatus to daemon/server/httpstatus
d64bd2cceb Move api/server/middleware to daemon/server/middleware
72a020fcd8 Move api/server/router to daemon/server/router
f293628f55 Move api/server/router/volume to daemon/server/router/volume
15c8007064 Move api/server/router/system to daemon/server/router/system
45172bbf23 Move api/server/router/swarm to daemon/server/router/swarm
f6ba5a5241 Move api/server/router/session to daemon/server/router/session
3eb5fe0277 Move api/server/router/plugin to daemon/server/router/plugin
baa58ddc6a Move api/server/router/network to daemon/server/router/network
0cbb4ac8e6 Move api/server/router/image to daemon/server/router/image
a063389af7 Move api/server/router/grpc to daemon/server/router/grpc
9ff489863c Move api/server/router/distribution to daemon/server/router/distribution
ced7798ed8 Move api/server/router/debug to daemon/server/router/debug
3a9db5fbd6 Move api/server/router/container to daemon/server/router/container
fcf3ff1b2f client: remove getDockerOS utility in favor of "Ostype" header
d6136b660f Move api/server/router/checkpoint to daemon/server/router/checkpoint
31b6886eb1 Move api/server/router/build to daemon/server/router/build
1c0d381f4e client: client.tryImagePush: accept registry.RequestAuthConfig
ca0afe91b9 client: client.tryImageCreate: accept registry.RequestAuthConfig
79b4e18883 client: add staticAuth utility
871543a8c5 client: Client.ServiceUpdate: don't manually construct header value
a824db247f Add progress aux emitter to build backend
374fa24a53 Add multierror function to api network
0964fa01ba Remove dependency on testutil from client
58404b0c28 Remove dependency on httputil for client hijack test
e7289e7e02 hack: check windows resources are set in the binary
44623fb856 cmd: use dockerfile to generate win event messages
0ea20c9f72 cmd: fix winresources and move them out cli package
6b8afec95b fix redefines-builtin-id from revive
90ab64cbda fix increment-decrement from revive
381d9d0723 fix use-errors-new from revive
f0136d1dba fix superfluous-else from revive
369c8f828e fix var-declaration from revive
d72f219a11 gha/bin-image: update tags comment
b40fe5cb8b pluginrpc-gen: align generator with generated
f8fcc20c3b Update maintainer info for austinvazquez
38b98bcf68 gha/bin-image: add major and minor version image tags
057e35dd65 libnetwork/d/overlay: ref-count encryption params
1c2b744ca2 libnetwork/d/overlay: properly model peer db
59437f56f9 libnetwork/d/overlay: refactor peer db impl
33139da522 Split part of dockerd main to command under daemon
98047c5190 Move cmd/dockerd/trap to daemon/command/trap
ea11b5f3fe Move cmd/dockerd/debug to daemon/command/debug
53475e1adf integration/container: TestCreateByImageID: minor improvements
fcf666f9b0 dockerfile: update govulncheck to v1.1.4
8c067c5223 client: Client.addHeaders: remove special handling for api < 1.25
ef50844a0b docs: cut api docs for v1.51
5a02e7f4e3 vendor: update buildkit to v0.23.1
b466c35da1 Update containerd to v2.1.3
7a12bbe5d3 libn/d/overlay: delete FDB entry from AF_BRIDGE
1d8545d60c daemon/config: Validate: add missing validation for registry mirrors
307c18598d registry: ValidateMirror: improve validation for missing schemes
a90da2edc3 vendor: github.com/opencontainers/cgroups v0.0.3
a7f01d238e libnetwork: fix flaky Swarm service DNS
062082ec9b daemon: containerStop: fix ordering of "stop" and "die" events
bf002e51a0 Split [Program|Revoke]ExternalConnectivity out of libnet driverapi
4ccbca1efe Add TestRoutedNonGateway
d85513e1a3 daemon: LogContainerEventWithAttributes: minor optimisation
ec185e57cf Test Nftabler params
e43968d7ed vendor: github.com/moby/buildkit v0.23.0
0c182d4d57 api/types/container: deprecate ExecOptions.Detach
126f99d776 Add a way to undo nftables.Enable(), for unit tests
1289519b03 vendor: update buildkit to v0.13.0-rc2
c3ac979ecf vendor: github.com/moby/swarmkit/v2 v2.0.0
4891396da6 docs(client/ContainerExecAttach): add a mention to stdcopy.StdCopy
b7ef527bdc pkg/idtools: deprecate IdentityMapping, Identity.Chown
66e9cd97f2 remove deprecated pkg/archive, pkg/chrootarchive
d06c22f27d remove deprecated pkg/reexec
98015c21ec remove deprecated pkg/atomicwriter
cf91441a1b pkg/ioutils: remove deprecated atomicwriter functions
1f0e9077e4 remove deprecated pkg/parsers
c66abe486b nftabler: add mirrored WSL2 loopback0 workaround
d31956b2f7 Add an outline nftabler
04618dfc0b remove deprecated pkg/platform
f1e93a1770 pkg/system: remove deprecated MkdirAll
ce31bf3f0b gha: dco: bump alpine to 3.22
1ad9599da7 Drop DOCKER-ISOLATION rules
2d60b8eacd vendor: github.com/moby/swarmkit/v2 v2.0.0-20250613170222-a45be3cac15c
6ec6e0991a libnetwork/networkdb: prioritize local broadcasts
e9a7154909 libnetwork/networkdb: improve TestCRUDTableEntries
dbb0d88109 libn/networkdb: use distinct type for own networks
51f31826ee libnetwork/networkdb: don't clear queue on rejoin
30b27ab6ea libnetwork/networkdb: drop id field from network
9316396db0 gha: run windows 2025 on PRs, 2022 scheduled
6f484d0d4c gha: update to windows 2022 / 2025
0a30b98447 gha: lower timeouts on "build" and "merge" steps
accbfde61e client: use go-winio.DialPipe directly
df6b405796 libnetwork/d/overlay: drop initEncryption function
713f887698 libnetwork/d/overlay: drop checkEncryption function
cb4e7b2f03 libnetwork/d/overlay: make setupEncryption a method
0d893252ac libnetwork/d/overlay: checkEncryption: drop isLocal param
4b1c1236b9 libnetwork/d/overlay: peerdb: drop isLocal param
48e0b24ff7 libnetwork/d/overlay: elide vtep for local peers
a9e2d6d06e libnetwork/d/overlay: filter local peers explicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5cbd89ca26 |
crun: update to 1.24
Along with the updates, there seems to be an interaction with our
configuration that is causing generation issues for APIs. We do
some tweaks to the script to work in our environment.
Bumping crun to version 1.24-19-g64611d7a, which comprises the following commits:
a9187097 Reset the inherited cpu affinity
d41a45ce Add .editorconfig
1188a679 configure.ac: check if error function is available
a569c2e7 cgroup, systemd: improved "same bpf" check
ccbf0d96 tests: Replace sprintf with snprintf for security
fc084fdf chroot_realpath: Replace sprintf with snprintf
b2032647 tests: fix compiler error
7417ead6 Add tmt integration plan
54693209 NEWS: tag 1.24
676c2c12 linux: fix array bounds warning in libcrun_configure_network
d8a88c06 criu: checkpoint correctly the shared empty directory path
6ead5130 linux: add support for numa set_mempolicy(2)
05b9f561 container: add missing crun_make_error
7f9447ec Revert "cgroup: do not create a sub-cgroup by default"
275305f8 intelrdt: honor default closID
e9711231 intelrdt: factor common code in a new function
dfdcf776 intelrdt: add support for EnableMonitoring
6c10fb5b intelrdt: check that schemata is not empty before failing
a9affe5d status: fix error check
a1119953 cgroup, systemd: validate ebpf is loaded
7160e31b libocispec: sync
4004e5be linux: optimize masked paths with shared empty directory
13d4770d contrib: format contrib files
8aa7545e krun: avoid failing if sev/nitro are not available
1556c13f src/libcrun: limit tmpfs memory usage for masked paths
28d60d87 krun: ensure spec->linux->resources->devices exists
e486eeab linux: fix regression mounting within userns
146fdcfe tests: remove unused debug_on_error option
37f702b7 tests: add ability to set debug=True
2aac0f56 Fix BOF
d417e0a4 Fixed BOF
cfedf930 build(deps): bump actions/checkout from 4 to 5
eb9912e0 build: add check for static builds
262d6ac3 cgroup: do not create a sub-cgroup by default
Bumping libocispec to latest, which comprises the following commits:
345279c runtime-spec: update from upstream
c3e5101 image-spec: update from upstream
92656e9 runtime-spec: update from upstream
19d5aeb runtime-spec: update from upstream
3c98525 image-spec: update from upstream
9d1955f sources.py: fix unconditional return in map value clone
Bumping runtime-spec to version v1.2.1-39-g5610abd, which comprises the following commits:
d7de8c0 ci: bump golangci-lint to v2.5
9758011 ci: add codespell job, fix existing issues
9efd9f2 schema/defs-linux.json: fix max for FileMode
09ec668 config-linux,schema: fix FileMode description
87f15fb schema: fix json
869b2d5 linux: clarify pids cgroup settings
a6c310a config-linux: clarify when the RDT sub-directory should be removed.
b280c07 config-linux: clarify the "MB:"-line filtering in RDT.
84b6c2c docs: fix and elaborate the nodes field in Linux memory policy
0758679 features-linux: expose IntelRdt monitoring support
e51a839 config-linux: define default clos for linux.intelRdt
642344a specs-go/features: add linux.intelRdt.schemata field
34a39b9 config-linux: add intelRdt.enableMonitoring (#1287)
afd830f principles: fix typo
57c9495 Add support for Linux memory policy
c6b3b08 runtime: fail when a poststart hook fails
af0d16d config: Add Hardware description object to the VM configuration
Bumping image-spec to version v1.1.1-22-g6519a62, which comprises the following commits:
02ba6e2 Descriptor size cannot be negative
cee899b Fix: Add entry to schema/go.sum
558802d Docs: Update pandoc for rendering documentation
693d8d7 Update to github.com/russross/blackfriday/v2
cbb69e2 Update to github.com/santhosh-tekuri/jsonschema/v6
d0e1005 Split github.com/opencontainers/image-spec/schema into a separate Go module
84ee56d Fix: correct a broken link to "applying changesets"
0bb67c2 Update GitHub Actions configuration
ab50866 Chore: Remove GOPATH from GitHub Actions
4fecf47 Add blake3 as a registered/supported hash algorithm
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c371e230f4 |
criu: update to v4.1.1
Bumping criu to version v4.1.1, which comprises the following commits:
a44aa6d98 criu: Version 4.1.1
ced15c302 test/zdtm: remove unused compiler argument
570621a48 mount-v2: enter the mount namesapce to propagation properties
b6059ff19 criu: Version 4.1 (CRISC-V)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b9a87151f6 |
cri-tools: update to v1.34.0
Bumping cri-tools to version v1.26.0-1341-g80b852a5, which comprises the following commits:
25cdc3c2 Remove link to outdated kubic repository
72954ec8 Bump crate-ci/typos from 1.38.0 to 1.38.1
559c81a3 Bump crate-ci/typos from 1.37.1 to 1.38.0
c53f9383 Bump crate-ci/typos from 1.37.0 to 1.37.1
5903b9c2 Fix typos
5bb88133 Bump crate-ci/typos from 1.36.3 to 1.37.0
ac9df58c Bump crate-ci/typos from 1.36.2 to 1.36.3
bd5edc46 Bump actions/cache from 4.2.4 to 4.3.0
776c8c28 chore: sync names
550f39b8 docs: updated the typo in CRI-O badge image URL
684cf823 Bump the kubernetes group with 7 updates
c28735fe Disable short name mode in CRI-O e2e tests
6f1e9f52 Bump actions/setup-go from 5.5.0 to 6.0.0
9bf6d58b Bump crate-ci/typos from 1.36.0 to 1.36.2
405add18 Bump crate-ci/typos from 1.35.5 to 1.36.0
bd848a4c Bump ncipollo/release-action from 1.18.0 to 1.20.0
2c5de193 Bump crate-ci/typos from 1.35.5 to 1.35.8
0fa372bb Bump ncipollo/release-action from 1.18.0 to 1.19.1
1ff5e6e8 Switch to to k8s 0.34.0
f7f7c6b0 Bump the gomod group across 1 directory with 8 updates
ad23e1ea Bump the gomod group with 2 updates
2e2646fa Switch to go 1.25
ee8bc12e Bump crate-ci/typos from 1.35.4 to 1.35.5
d9a45203 Update cri-tools to v1.34.0 in README.md
04365fd8 Update k8s and ginkgo
23d42883 Bump the gomod group across 1 directory with 10 updates
b7c27702 Update golangci-lint and config
b39a7917 Bump crate-ci/typos from 1.35.3 to 1.35.4
e57b4a9f Bump actions/checkout from 4.2.2 to 5.0.0
d1e1a989 Vendor Kubernetes v1.34.0-rc.1
b1b79cad Bump crate-ci/typos from 1.35.2 to 1.35.3
dceb355f Bump actions/cache from 4.2.3 to 4.2.4
6c2ceeb8 Bump crate-ci/typos from 1.35.1 to 1.35.2
00e4e773 Bump the gomod group with 4 updates
46823b3a Bump crate-ci/typos from 1.34.0 to 1.35.1
bfca4858 Bump github.com/docker/docker in the gomod group
e4974ec0 Bump sigs.k8s.io/yaml from 1.5.0 to 1.6.0 in the kubernetes group
ed4f9714 Bump the gomod group with 2 updates
c0a16628 support to auto generate pod uuid
532ecbc4 add warning about empty cgroup_parent field in pod config
d0b9a2d9 Bump the kubernetes group with 7 updates
c49a0899 Bump google.golang.org/grpc from 1.73.0 to 1.74.0 in the gomod group
5e45295c Update golangci-lint and config
610c747c doc: add steps to use runp when systemd cgroup driver is used
6e8c942b Bump crate-ci/typos from 1.33.1 to 1.34.0
2fd2e155 Bump the gomod group across 1 directory with 4 updates
c06fef2d Switch to windows-2025 in CI
86334baa Support websocket connections in `critest`
c7e766e7 Bump ncipollo/release-action from 1.16.0 to 1.18.0
1e5de756 Bump the gomod group with 4 updates
9dee32cb Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 in the kubernetes group
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d9fe4df438 |
cri-o: update to v1.34.1
Bumping cri-o to version v1.34.1-9-g5780ac7b4, which comprises the following commits:
6d3fac06f Update log formatting in interceptors to use %+v for better readability of structs
83172bb4c Fix dependencies check
1c84c7c4b Re-add the `--enable-fixed-path` removal for gpgme
43f6eeeda version: bump to 1.34.1
7561efe0b HighPerformanceHooks: Defer irqSMPAffinityFile rollback
c2eab18ba HighPerformanceHooks: Move IRQ balancing to PostStop hook
0790633e6 HighPerformanceHooks: Add mock infra for command and system unit tests
e294f5435 HighPerformanceHooks: Make locks atomic for irq SMP affinity
bbd9d0360 server: Fix network cleanup failures when NetNS path is empty
a8b550ad0 config: configure shortname through configuration and enforce shortnames
7a4365cf5 Add crio.runtime.runtimes seccomp_profile to crio.conf.5 doc
9b922306b build(deps): bump the gomod group with 4 updates
5813011e0 build(deps): bump the gomod group with 2 updates
1c4060d8f Warn when CONTAINER_INCLUDED_POD_METRCIS (typo) is used.
a0a44b5dd Add runtime handler seccomp profile
fdda720ff build(deps): bump github.com/prometheus/client_golang in the gomod group
84ea2f8b6 build(deps): bump the gomod group with 2 updates
165d40bfa build(deps): bump the gomod group with 7 updates
15233a7de tests: add a unit test for log rotation
d07b9575e Update nixpkgs
c411cfa7b build(deps): bump github.com/onsi/ginkgo/v2 in the gomod group
47b7f11ff Update nixpkgs
c5942f667 Update other deps
fb2861507 build(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
fb183a27c runtime_vm: Implement the ReopenContainerLog function
d1839c936 build(deps): bump the gomod group with 4 updates
eb3004491 Use k8s 0.34.0
cc074af34 build(deps): bump the kubernetes group with 7 updates
cf1c33f6e Remove thermal_throttle masked paths.
d10c4e501 Use k8s rc instead of the next minor
558c5483c build(deps): bump the gomod group across 1 directory with 16 updates
9d999d519 Cleanup container user log message and trivial code
655c5f8fe docs: regenerate/update man pages.
2a71e8181 completions: regenerate completions.
64863ccbe nri: add configuration for the default validator.
7c5f1fe54 server: add type conversion functions removed from NRI.
831b8dd9b go.{mod,sum}: update NRI to v0.10.0.
21b03fda2 inspect: add hostnetwork information
cc10ee3cd Add support for conmon-rs log driver and heaptrack config
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
34e36ce8b6 |
containerd: update to v2.2.0-beta.1
Bumping containerd to version v2.2.0-beta.1-12-ga7e49900a, which comprises the following commits:
a4ddfd7eb build(deps): bump the golang-x group with 2 updates
c740c57b4 build(deps): bump github/codeql-action from 3.30.6 to 4.30.8
6316ab81d build(deps): bump softprops/action-gh-release from 2.3.4 to 2.4.1
ed2e81a78 bugfix:sync parent dir to ensure blob entry is reliably stored
bfd6c52b4 Defer removal of deprecated registry config fields to 2.3
71f5d16aa bugfix:fix container logs lost because io close too quickly
c039f5349 ci: bump Go 1.24.8
773bfa0ea Use tartest to simplify generating a tar
6a3b10fe7 Add a test for the erofs differ using tar index mode
42f2784ca Update go.mod to use api/v1.10.0-beta.1
8922d84e5 build(deps): bump google.golang.org/grpc from 1.75.1 to 1.76.0
36c22f45c Update referrers fallback logic to always have a fallback
0f3c5484f Fix gha api release file path
f6b3b8cbe build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
7a7d7a996 build(deps): bump github/codeql-action from 3.30.5 to 3.30.6
669c3047a build(deps): bump softprops/action-gh-release from 2.3.3 to 2.3.4
ba606fe14 build(deps): bump actions/stale from 10.0.0 to 10.1.0
15d5fa725 build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
60fb4adb0 1.6 is EOL
aa571f63c Prepare release notes for api/v1.10.0-beta.0
83a946dca Add missing implicit dependency to podsandbox controller
c69f443ba Update sandbox controllers service implicit dependency
637429a25 Update logging for sandbox controller service
f0aeb9037 Add sandbox controller create call to client
a338d8b2f Fix sandbox client shutdown to ignore not found errors
54ba402a2 Add default sandboxer to client
c7b3114eb Update mount manager code documentation
f3af360f6 Update runtime to read allowed custom mounts from runtime
2189d3d6c build(deps): bump docker/login-action from 3.5.0 to 3.6.0
cfb1b653d build(deps): bump actions/cache from 4.2.4 to 4.3.0
94e6bcea5 Add support for allowing custom types through mount manager
efc995011 Add runtimes option to task manager
dd9c43150 Add option to allow formatted mounts
9c21e867e Handle flaky case for loop autoclear
f7b77e649 Update mount manager cleanup logic
069cbfe8f Use mount manager for temp mounts
93070961b Update snapshotter tests to use mount manager
fa327566b Fix mount manager deactivate errors
9c0cc4a42 Add mount manager format test
61b8426ae Add mount manager documentation
67f0970a5 Add mount activation integration test
39f128b99 fix invalid deactivate error
76a877bb5 Add mount activation support to task service
5b4de2c34 Add implementation of list and get mount activation
184fae60f Add backreference support to mount manager
9794addce Add mount formatting test
d8e5cdd76 Fix gc cleanup and add unit tests for gc
49634889f Update ctr image mounts to use mount manager
62062902f Add support for mount manager to ctr snapshots mount
563b28154 Add mount manager to client
c8e7674cc Add temporary mount support to manager
aba772012 Add debug logs to mount service calls
d23e635a5 Fix mount manager plugin when no handlers provided
75ed5e003 Fix mount manager gc
8db301086 Add mounts api service
67fbf9db9 Generate and vendor proto changes
c5097ac63 Add mount manager to protobuf services and types
4d34b01ce Add loopback and overlay mount manager tests
0e88cde87 build(deps): bump github/codeql-action from 3.30.3 to 3.30.5
5a00693e7 Fix integ-test: looking for sleep inf as longCommand
739821fc5 pkg/display: use platforms.Format for platform display
748cd9f03 Prevent goroutine hangs during ProgressTracker shutdown
54325eedc Fix typos introduced on PR 12323
a7537cb8a Add referrers to default registries
b668614b5 Add referrers to host config
c1b1297c6 Update capabilities for referrers
09b4ac136 Add referrers fetcher to remotes
9ca659a53 Add conf.d include in the default config
de20021f5 Make E2E workflow a required check
cbfb535ad Add a comment to explain why apt-get install erofs-utils can't be used
3df2b5d98 TestErofs/Rename fails with EROFS snapshotter
c1bf79e7a Build and install erofs-utils from source and modprobe erofs
35f94ef70 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
33e6b79fc Fix device mapper suspend/resume flakyness
5be6c0309 build(deps): bump azure/CLI from 2.1.0 to 2.2.0
7e74801b7 Move wintls as internal pkg
d2adfd820 Add support to retrieve certificate and key from windows cert store
6243cf562 Add mount manager tests
f4b7b9344 Improve formatting and support for deactivate
55ff11737 Add loopback mount handler
ed03f3a71 Add mount manager plugin and types
78ca11c1c Add mount garbage collection resource
c71598622 Add mount manager interface to mount package
1809f3ef1 Update metadata gc to run context finishes in parallel
37cec6800 Move transaction context to boltutil
09644bd13 [github-action] release - Empty allowedSignersFile
635907e63 Ensure errContentRangeIgnored error when range-get request is ignored by registry
010ad4c06 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
8112ca64f cri: remove copying of message structs
9d351805b go.mod: Bump up k8s.io to 0.34.1
517ca7566 build(deps): bump google.golang.org/grpc from 1.75.0 to 1.75.1
e009b98ce build(deps): bump github/codeql-action from 3.30.1 to 3.30.3
84aa20676 docs: Update 1.7 LTS support timeline
cfe20b588 add k8s 1.34 support matrix
479cf42ca Add extraction progress to transfer service
09e531b88 Add progress to apply options
a85610d52 Prepare release notes for v2.2.0-beta.0
dba7f8fbe Update releases doc to show v2.2 has started beta
da2a8b34e build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3
6f92111a9 build(deps): bump actions/stale from 9.1.0 to 10.0.0
52c310c98 build(deps): bump actions/github-script from 7.0.1 to 8.0.0
39a38dd60 build(deps): bump google-github-actions/upload-cloud-storage
284716350 build(deps): bump github/codeql-action from 3.30.0 to 3.30.1
d4fd22ce7 build(deps): bump github.com/prometheus/client_golang
b2866150a build(deps): bump the golang-x group with 3 updates
65badbef4 Resolve `staticcheck` complaints on FreeBSD
f45716efe Clean up issues cited by `usetesting` package with golangci
53d78b68d runc:Update runc binary to v1.3.1
c77b70852 pkg/cio: Close(): use errors.Join to return all errors
bfbb18ca8 build(deps): bump github.com/containernetworking/plugins
1fac82f0e build(deps): bump github.com/checkpoint-restore/checkpointctl
6374ac511 build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0
23c51c25b build(deps): bump github/codeql-action from 3.29.11 to 3.30.0
b56804da7 build(deps): bump google-github-actions/auth from 2.1.12 to 3.0.0
683cd7d60 gc:make sure lastCollection is not nil
bcecb979a build(deps): bump lycheeverse/lychee-action from 2.5.0 to 2.6.1
fb28794f4 Update Go requirements in BUILDING
591a769a6 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
f4238238f build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0
fd1a7a102 build(deps): bump google.golang.org/grpc from 1.74.2 to 1.75.0
8ebe57e2e build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
cc2a52ca8 Update pkg/oci to use FS interface
6fa776811 docs: remove shutdown adopter D2iQ Konvoy
56cde7d2c add SystemdCgroup to default runtime options
363e02310 install-runhcs-shim: fetch target commit instead of tags
77905cf6f build(deps): bump go.etcd.io/bbolt from 1.4.2 to 1.4.3
fe4ec31bc build(deps): bump github/codeql-action from 3.29.10 to 3.29.11
f0ee598ff integration: Add test for directives with userns
41953f7ac cri: Fix userns with Dockerfile VOLUME mounts that need copy
48f5d4255 script/test: clean up generated NRI test configuration.
ad207c1ce docs: update docs for NRI v0.10.0.
37b12bf5e Add documentation for cgroup_writable field
b7a401f1d cri: warn about deprecated v0.1.0-style NRI plugins.
cb9fda2e7 nri: add configuration for the default validator.
fa820a5d0 go.{mod,sum}: update NRI to v0.10.0.
3dbb9695a build(deps): bump github/codeql-action from 3.29.7 to 3.29.10
da3dc1ef6 core/mount: Retry unmounting idmapped directories
27ba690a1 core/mount: Test cleanup of DoPrepareIDMappedOverlay()
dd7fe0b76 core/mount: Properly cleanup on doPrepareIDMappedOverlay errors
cb56df4fb build(deps): bump the k8s group with 3 updates
d449d94d2 build(deps): bump github.com/emicklei/go-restful/v3
b595e0173 Update hcsshim to v0.14.0-rc.1 in preparation for containerd/2.2
7a19c94d6 core/mount: Don't call nil function on errors
dc38aaf6c ci:fix TestSandboxRemoveWithoutIPLeakage failed
6dcbdcfb3 ci: add Go 1.25.0
93c034c80 build(deps): bump actions/cache from 4.2.3 to 4.2.4
f77717f50 build(deps): bump lycheeverse/lychee-action from 2.4.1 to 2.5.0
a2d30ba30 build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
6e9b6eada core/mount: Only idmap once per overlayfs, not per layer
6ce7f6d87 pkg/sys: check SupportsPidFD first
c7f19d104 build(deps): bump the golang-x group with 2 updates
8d275704a build(deps): bump actions/checkout from 4.2.2 to 5.0.0
e3b2bcead build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0
5bd22a3e9 build(deps): bump github.com/containerd/go-cni from 1.1.12 to 1.1.13
bd9e577c2 Fix ctr snapshot mount produce invalid mount command for empty option
db31fbc5a ci: bump Go 1.24.6
45e02e1dc sys: fix pidfd leak in UnshareAfterEnterUserns
7340a7a28 fix: create bootstrap.json with 0644 permission
2b48e3cb9 build(deps): bump docker/login-action from 3.4.0 to 3.5.0
398d42313 build(deps): bump github.com/prometheus/client_golang
aeace7daa build(deps): bump google-github-actions/auth from 2.1.11 to 2.1.12
009625290 Block CIM snapshotter & differ
63c9cfcc1 fix typo: collecter -> collector
3653c911b Update mailmap for austinvazquez
55fd29789 build(deps): bump github/codeql-action from 3.29.2 to 3.29.4
6e0579453 build(deps): bump google-github-actions/upload-cloud-storage
22a88c1ac build(deps): bump the k8s group with 3 updates
83deebdd5 build(deps): bump google-github-actions/auth from 2.1.10 to 2.1.11
a38708cc9 build(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2
68a55252f refactor: use the built-in max/min to simplify the code
b70b43f6b time to upgrade to 1.33 cri-tools
4f95737e1 Remove Alpha gate from k8s e2e runs
46325f114 Update 1.6 timeline to add an extended period
ed174c914 cmd/ctr: rename vars that shadowed builtin
4420b5a49 Ensure fetcher always closes body and properly calls release
1b821ca04 fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
118a84147 ci: update crun to 1.22
c5ad254a3 ci: bump Go 1.24.5
0eaa09e35 Make signal notifications work on Windows
636d29832 build(deps): bump the golang-x group with 3 updates
dbb44287f Plumb windows CPU affinity values to runtime spec
12daca5f6 Fix intermittent test failures on Windows CIs
117179ae1 Remove WS2025 from CIs due to regression
222b2d3e7 update pause image to pause:3.10.1
e96ebc008 erofs-snapshotter: make IMMUTABLE_FL optional
f75323f89 nri: enable otel traces in NRI.
b641933cf erofs snapshotter: Add tar index mode
62bbdce7f update go-md2man binary to v2.0.7
fd464031d build(deps): bump github.com/tchap/go-patricia/v2 from 2.3.2 to 2.3.3
e0d733c87 blockfile: Ensure required options are always set
aed961a6f Remove additional fuzzers from CI
24ea5f23f build(deps): bump golangci/golangci-lint-action from 6.5.2 to 8.0.0
a0ed14fd4 erofs-differ: fix filesystem UUID for tar-converted layers
b92e8b544 Add GitHub Action for k8s node e2e tests
eb63b5b4d Amend runtime handler test for stable order
c6ae08193 CRI: Stable sort for RuntimeHandlers
f51a2fbfd Test showing RuntimeHandlers in Status() are unordered
cc913cac6 build(deps): bump github/codeql-action from 3.29.0 to 3.29.2
40f3b74af build(deps): bump go.etcd.io/bbolt from 1.4.1 to 1.4.2
587c0757b build(deps): bump github.com/intel/goresctrl from 0.8.0 to 0.9.0
35cbd7349 Fix port forward error logger to not cause concurrent write
7a46fe7e6 Correct Commit Memory Aggregation for Windows Containers
a4aebea4b build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
100b78711 build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
621d661be Add coverage support for CRI integration tests
bf1c47f5e core/runtime/v2: shimManager.cleanupWorkDirs ignore non-existing path
d553c4014 Update GHA runners to use latest image for most jobs
610f29914 Update garbage collection docs
6537a61d0 Add back reference test for collectible resources
df87a8f71 Add support for backreferences in gc
8ecd6b6fa Update gc tests to make digests easier to identify
cf7f4f5cc restore: skip pull for existing base image
b671a9721 ctr:add sandbox info command to print sandbox info
b95265124 build(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1
9f9ce00aa build(deps): bump the k8s group across 1 directory with 3 updates
a79e79141 ci:fix ci TestContainerExecLargeOutputWithTTY panic
97bbc1f73 Remove unused Windows 2019 powershell scripts
cb53f381e fix when multipart fetching and the server does not return content length
d3516916a Fix fetch always adding range to requests
aea4e685e build(deps): bump github.com/urfave/cli/v2 from 2.27.6 to 2.27.7
ed7746656 ci: bump golangci from 6.5.2 to 7.0.0
37147b13a Disable ST1003: struct field Uid should be UID (staticcheck)
19a713061 Disable QF1003: could use tagged switch on base (staticcheck)
03a44a2d7 fix: Used nolint to ignore the static checks
4ba81d429 fix: ST1001: should not use dot imports (staticcheck)
b52997372 fix: ST1019: removed the duplicate imports
403f86ecc fix: QF1012: Use of fmt.Fprintln(...)
d93d18c85 fix: QF1001: could apply De Morgan's law (staticcheck)
b3eec6d8e fix: ST1005: error strings should not end with punctuation or newlines
1ff590004 fix: QF1004: strings.ReplaceAll instead (staticcheck)
56516173d fix: QF1002: could use tagged switch on host (staticcheck)
0df6d1e6b build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0
4593023f1 build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus
1f288492c build(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
0779c0a6d build(deps): bump softprops/action-gh-release from 2.2.2 to 2.3.2
9b7f24610 build(deps): bump github/codeql-action from 3.28.18 to 3.29.0
b7bda5d6e build(deps): bump go.etcd.io/bbolt from 1.4.0 to 1.4.1
7c97cd331 build(deps): bump the golang-x group with 2 updates
e6708bddf bugfix:close container io when runtime create failed
4bf1705a8 Implement io.ReaderAt on docker fetch reader
734d52c39 chore: remove specific go version code
04ce9f884 feat: preserve nsPath on mount failure to ensure cleanup
af068ff86 Update fetcher errors to include full registry error
6e1f0203e Register remote errors for clients to access registry errors
697d77676 Decode grpc errors in the transfer client proxy
9de26f315 [e2e] add case for shim wait interface
49664dab5 Add context in Process Wait interface
415df3892 ci: bump Go 1.24.4 in CI
2f1948a50 Enable CIs to run on WS2022 and WS2025
8de612020 pkg/oci: don't use var for WithPrivileged
cf667aa7e pkg/oci: add basic test for WithParentCgroupDevices
d72c21450 pkg/oci: don't use vars for WithAllKnownCapabilities, WithAllCurrentCapabilities
ac3c3ad5d pkg/oci: cleanup some tests
4de598d94 pkg/oci: remove compatibility code for go1.16 and older
17c632e78 pkg/oci: fix minor linting issues
cff8184ff support image volume sub path
a8658a708 erofs-snapshotter: fix to work with wrapped errors
4f7c69ae6 Update differ selection in transfer service to prefer default
21f0595b9 Add debug log when transfer returns not implemented
d9bb00578 Add more error details when unpack fails to extract
4dd2cd92c build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
48cec3659 Update transfer supported platforms logic
1ac97c2c1 *: properly shutdown non-groupable shims to prevent resource leaks
128229975 Enable DuplicationSuppressor in transfer service
00edba6aa Remove internal interface from unpacker interface
77562a8e4 fix import for local transfer service
a93c8d3cd build(deps): bump google.golang.org/grpc from 1.72.0 to 1.72.2
4a2c40223 build(deps): bump lycheeverse/lychee-action from 2.4.0 to 2.4.1
ee85517b1 docs: fix v2.1.0 release link
e57b9f751 dep: bump up k8s.io/cri-api to 0.33.0
a4dd2b8f2 go.mod: bump up go to 1.24.3
b9a29bdb9 ci: bump up go to 1.24.3
811d04422 shim-v2:improve shim error message
6e17198f0 Add descriptor to transfer pull image events
213337ce4 Fetch image with default platform only in TestExportAndImportMultiLayer
aa9c17c69 Add symlink breakout test for overriden path
78e838c34 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
b98b99836 build(deps): bump github.com/emicklei/go-restful/v3
fb6dd2cf1 client:improve mount error message
8be437ee8 docs(ansible): fix the folder
d498e690e clones k8s util exec used by streaming code removing k8s util dependencies
6c0d36b24 follow-up changes discussed at end of review creating these packages
b0052d94a pkg/oci: prevent panic for some platform-specific options
ee5ad982f docs/snapshotters/erofs.md: a tip for improved performance
5f2200b2c erofs-differ: fix EROFS native image support
af24e463b update runhcs to v0.13.0
7063ee659 clones vendor of k8s.io/kubelet/pkg/cri/streaming
11efadd36 build(deps): bump github.com/vishvananda/netlink
e29c0fe58 build(deps): bump github.com/Microsoft/hcsshim
21215b216 build(deps): bump dario.cat/mergo from 1.0.1 to 1.0.2
38c9bb93a Revert "perf(applyNaive): avoid walking the tree for each file in the same directory"
1a4c32105 seccomp: kernel v6.13
6180d6243 seccomp: kernel v6.12
fea77e15b ci: bump golang [1.23.9, 1.24.3] in build and release
a2f1f4a67 cri:use debug level when receive exec process exited events
8d3eb6567 Update removal version for deprecated registry config fields
2be7a7310 ci:fix ci timeout on almalinux
98698617c Update internal/cri/server/container_create.go
af05355e4 internal/container_create: if sandboxConfig's metadata is nil will panic
bcfba26ca internal/cleanup: remove Background(), add tests for Do()
ada7bdf19 replace "cleanup.Background" for "context.WithoutCancel"
c4435bb48 internal/cleanup: fix package godoc
e58bc944f core/runtime/v2: cleanup shim-cleanup logs
9ae54175d ctr:make sure containerd socket exist before create client
6ebe15dd4 cri:fix containerd panic when can't find sandbox extension
8bc62da9c client/New: Don't unlazy the gRPC connection implicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cf405d46b3 |
conmon: update to v2.1.13-tip
Bumping conmon to version v2.1.3-280-g42da7ac, which comprises the following commits:
8debcb5 Move attach start message after failure check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2ddec7ea71 |
aardvark-dns: upate to v1.16.0
Bumping aardvark-dns to version v1.16.0-20-g360f28c, which comprises the following commits:
56db1e0 release v1.16.0
2cdc994 release notes for v1.16.0
0c392ba [skip-ci] Update actions/checkout action to v5
5d34b0f fix(deps): update rust crate libc to 0.2.175
254c6d1 test: Remove empty user= directive in dnsmasq.conf to avoid SIGSEGV
b8a6c4c [skip-ci] Update actions/download-artifact action to v5
52cf09a fix(deps): update rust crate tokio to 1.47.1
ef89561 fix(deps): update rust crate tokio to 1.47.0
83b2433 coredns: fix typo in debug message
cdcaf7c coredns: process more than one message per tcp connection
5061851 fix(deps): update rust crate tokio to 1.46.1
fece9be fix(deps): update rust crate tokio to 1.46.0
57e60fa fix new rust 1.88 lint errors
7706847 fix(deps): update rust crate clap to ~4.5.40
6cf86fc fix(deps): update rust crate libc to 0.2.174
4930bb6 fix(deps): update rust crate libc to 0.2.173
9f6a258 make more use of AardvarkError
f93435d fix(deps): update rust crate clap to ~4.5.39
995be0e fix(deps): update rust crate tokio to 1.45.1
147de22 fix github release action
7af0797 bump to v1.16.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5302350d7a |
buildah: update to v1.41.5
Bumping buildah to version v1.41.5-1-g0e4301a18, which comprises the following commits:
7d95c695c Tag v1.41.5
b7b5a915c tests/run.bats: "run masks" test: accept "unreadable" masked directories
913046ac2 Run: create parent directories of mount targets with mode 0755
4094f92e3 [release-1.41] Bump to Buildah v1.41.4
4acf2a549 [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4778d77f24 |
podman: update to v5.6.2
Bumping libpod to version v5.6.2-2-g3529cd312f, which comprises the following commits:
9dd5e1ed33 Bump to v5.6.2
3b1ae51c60 Release notes for v5.6.2
aa5595391d Vendor buildah@v1.41.5
1751612f33 Handle SIGPIPE to prevent machine stuck in Starting state
a2dda0410c Bump Podman to v5.6.2-dev
1e2b231515 Bump to v5.6.1
9812c1f87d Final release notes for v5.6.1
dcdaaf24be update tests duo to CRUN#1767 to support both values
f93cad508a Fix a locking bug in that could cause a double-unlock
bd0386ff56 Add R! to systemd-tmpfiles script for all /tmp dirs
f532f361c0 [v5.6] Bump c/buildah v1.41.4, c/storage 1.59.1, and ...
ca994186f0 kube play: don't follow volume symlinks onto the host
74b2ea3a68 Bump xz to v0.5.15 to pick up a CVE fix
66eb23b4d1 Preliminary release notes for v5.6.1
7601c78be3 do not pass [no]copy as bind mounts options to runtime
26a41ad665 do not pass volume-opt as bind mounts options to runtime
4e83155959 tests: Get rid of netcat on the host and use Bash's /dev/tcp
f8800b7fa8 tests: Replace ncat for socat
8f3fcf7c29 test/e2e: actually start container in startContainer
bc905f25c3 fix(libpod): truncate long hostnames to correct maximum length
a366d42c99 Add a release note for 5.6 Rosetta being disabled-by-default
cd08b088f6 windows: do not convert unconfined seccomp path
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
437efd9259 |
lopper: update to -tip
Bumping lopper to latest, which comprises the following commits:
873dc86 docs(zephyr): Add comprehensive AMD SoC processor documentation with Sphinx integration
56aebd4 lopper: assists: zephyr: Add support to generate AXI Ethernet node
bbc725f lopper: assists: zephyr: Add support to generate ADMA node
2bbaa8a lopper: gen_domain_dts: Add board-specific Kconfig.defconfig generator
c427c8e sanity: schema types validation
a1ee241 schema: add /bits/ 64 type hinting
e8fd208 docs: update READMEs to latest
3da2ee3 openamp: xlnx: fix get_platform() so it does not modify tree compatible string
d2c606f lopper: assists: zephyr: Add support to generate SPIPS node
5da49d5 lopper: assists: zephyr: Add support to generate OSPI node
c99a35c lopper: assists: zephyr: Add CANFD node for zephyr
0318aa1 lopper: assists: Add AMD-VERSAL-GEN2 UFS for Zephyr
9eef3ea lops: microblaze-riscv: Use full extension linkflags
944b5c1 lopper: assists: gen_domain_dts: Add psu_r5_0_atcm_lockstep
0b74369 gen_domain_dts: Add watchdog0 alias support for Zephyr DT generation
b89ae38 lopper:assists:baremetal_getsupported_comp_xlnx: Dynamically read supported procs from YAML condition
d2f950a lopper/tree: add trusted mode for node addtions
bbe8ac4 schema/tree: add /bits/ 16 array and /bits/ 8 support
d878a40 schema: workaround mixed-type /bits/ properties
1288749 gen_domain_dts: Prune IPI child node properties using Yaml schema
fa1200b lopper: assists: gen_domain_dts: Add zynqmp-ipi-mailbox DT yaml
fc77531 lopper: assists: baremetalconfig_xlnx: Avoid unsupported sysmon child node
26ff1d9 lopper: assists: gen_domain_dts: Add tcm IPs to the linux_ignore_ip_list
0db98f3 schema: convert print statements to _warning
3cf6669 schema: add uint64 single and array definitions
3ae7472 schema: complete path based typing
8eb7a1e tree: normalize phandle managmement
d0523e7 tree: enhance 16 bit value support
756c0b8 lop-microblaze-riscv: Remove hardcoded libpath generation in favor of toolchain auto-handling
09b8c42 tree: do not print/create explicit phandle properties
d14118e tree: do property clobber by default
8f70860 schema: support /bits/ 8 and flexible whitespace in parsing
23956b6 schema: strip /* */ comments
b339f7e schema/core: add 16 bit support
93bcf44 lopper:assist: Add processor check for library validation
86b5ebb lopper: gen_domain_dts: zephyr: consolidate mailbox setup
c0dcedc openamp: xlnx: simplify xlnx_rpmsg_update_tree
9115871 openamp: xlnx: remove old fn xlnx_rpmsg_kernel_update_ipis
27762b9 openamp: xlnx: xlnx_rpmsg_ipi_parse: simplify logic
d059e2a openamp: xlnx: cleanup: use list comprehensions where able
1254986 openamp: xlnx: zephyr: ipi: Remove superfluous handling
7aa1fab lopper: assists: Enhancing assists with improved logging for better traceability
9822917 docs: Add docs directory for documenting AMD specific lops and assists usages
12e708b openamp: xlnx: xlnx_openamp_find_channels: add back support for single run
f93c309 lopper: assists: yaml_bindings: Add properties to support MST Protocol
7897482 lopper: assists: gen_domain_dts: Add support for DPLL clock primitive
bdd741f lopper:assist: Define FRL enable macro based on HDMI mode
ccbac5e openamp: xlnx: zephyr: fix up IPI checks
fd90af0 assists/gen_domain_dts: don't use nested quotes
e4714e6 setup: allow yaml nodes to be recursively merged
aedf720 openamp: xlnx: versal2: ensure remoteproc range/regs are IDs limited to 0 or 1
d2dd4a3 openamp: xlnx: add logging
a8e953b openamp: xlnx: only add memory-region property if DDR nodes are present
2c3a5ab openamp: xlnx: Ensure that single run still works
4fd7a05 openamp: xlnx: Err Handling for Zephyr
cc0e518 lopper: gen_domain_dts: zephyr: Cleanup for root node compatible and ipi children
e2be7c1 assists: README: Document optional <machine> arg and auto platform inference
ee2ea68 baremetallinker_xlnx: Select correct DDR system map for platform
59ee3c4 openamp: xlnx: Update mapping to just use v2
807f579 lopper: assists: yaml_bindings: Add dynamic BPC flag
27c80d2 lopper: assists: yaml_bindings: Add linerate property for vtc calculation
915f3cb openamp: xlnx: Update to work with latest
2755d92 assists/subsystem: Add clustercpu property
8f9475f openamp: xlnx: xlnx_remoteproc_construct_carveouts: Ensure that if there exists reserved memory node - append to it
9dc47e8 openamp:xlnx: add check for size strings
1f1b9b3 assists/subsystem: fix cpu expand check
7482536 schema: enhance regex's to be more whitespace tolerant
1c3f28b sanity: unset LOPPER_DTC_ARGS
9b817c6 openamp:xlnx: update to work with latest gen machine conf consecutive runs
b133397 openamp: xlnx: update to account for second run
2955e6f tree: when adding becomes merging, consider children
9366900 yaml: do parent key replacement in-place
61a19c9 schema: add support for /bits/ notation
933aaee tree: make dtc escaping exception safe
97be86b sanity: embedded lop test
a2ddd8c lopper/yaml: allow "parent" properties to be written to yaml
80db4fb openamp: xlnx: Update zephyr flow for latest
63a1b99 tree: ensure strings are dtc safe
cb23ccd lops/domain: make lops more descriptive
0b5422b tree: automatically update lnodes on label set
3664bb7 lopper_sanity: add multi-yaml, parent include and glob tests
1c6f28a assists/subsyste: make domain access management more robust
9542d1b yaml: input search and error if files are not found
3d59b12 assists/subsystem: add type hint for json encoded strings
309c33a schema: convert to lopper log format
21fe9b6 lopper: update phandle descriptions while building the schema
899bcbc lopper: consolidate phandle parsing and analysis
0501728 tree: allow subnodes to be retreived by name
b666add fdt: handle boolean properties as int
45a9d93 assists/domain_access: add reserved-memory and chosen node merging
88b61cb lopper: ensure that input files are unique and compatible
f5adfe4 lopper/schema: allow saving of the schema
0a170fc schema/fdt: improve property type detection and debug
af8018c sanity: adjust to schema API changes
c7ec270 lopper: enable schema for type checking
8e6e1db lopper: introduce schema support
d3b58fc assists/subsystem: add parent and glob handling
dbc1302 lopper-core: strict/permissive handling enforcement
f8a4b88 lops: add autorun domain processing lop
04e3c37 lopper: add autorun lop files
a5d31ba yaml: introduce parent key support
8fd077e lopper/yaml: implement preemptive merging of yaml files
e9b7a71 inputs: enhance property merging
7178d62 lopper/assists: Add automatic platform inference to xlnx_overlay_pl_dt
1bbebf5 assist:baremetal_getsupported_comp_xlnx: Add variant support for platform-specific example filtering
7b785fa openamp: xlnx: add fix for libmetal ipis
f59ad9e openamp: xlnx: Use IPIs from SDTGEN
073e05e lopper: gen_domain_dts: Remove IPI deletion
05ae429 Lopper: Assists: Allow application creation when required memory is exactly matched
f77119b baremetalconfig_xlnx: improve clock offset logic
8121752 openamp: xlnx: zephyr: fix up for latest
02eccfe lopper: assists: Add AMD-Xilinx IPI for Zephyr
54fa128 openamp: xlnx: fix bug for linker generation
88e9679 lopper:assist: Preserve Individual Memory Regions in Memory Config to Avoid Merging Holes
8fa4f93 assists: zephyr_supported_comp: Remove timeout-sec property from wwdt
a4c16bd assists: bmcmake_metadata: Add support to define generic CMAKE_MACHINE defines using family
f6d4fcc lopper: gen_domain_dts: Add IPI node filtering for A78 processors
fa0b351 openamp: xlnx: zephyr: clean up parsing code path
8bcd2b2 openamp: xlnx: zephyr: output mailbox node given domain YAML
1a08579 openamp: xlnx: zephyr: Add IPC node
5919f78 lopper: assists: gen_domain_dts: Add support for generating AXI SPI compatible node for zephyr
28903f8 lopper: assists: gen_domain_dts: Bug fixes in the zephyr A78 support
1cecbb8 lopper: assists: gen_domain_dts: Add support for zephyr board dt handling
7050320 openamp: xlnx: support latest zephyr build flows
2e4d500 lopper/assists: Generate pl.dtso instead of pl.dtsi for overlay output
b2052d2 lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root
a9c713d assists: generate_config_object: Check key before indexing into map
5cc1d67 lopper: assists: gen_domain_dts: Add support for generating cortexA78 specific Zephyr device-tree
757d2e5 assists: gen_domain_dts: Add special handling for QDMA IP when it is configured as Endpoint mode
06f2eff lopper:assists: Add Versal QDMA PL IP support to XDMA YAML
0634982 lopper/assists/README: Add --firmware-name option documentation for xlnx_overlay_pl_dt.py
e8048da lopper: assists: zephyr: Add interrupt-names to UARTPSV
65e7e8b lopper/xlnx_overlay_pl_dt: Add support to override firmware-name via command-line
bb0b0c3 lopper: lops: Update the lops to use outdir option
5014ddf lopper:assists: Add support to read the custom configurations in the YAML
9573da8 lopper: Fix tx_clk index handling in clock property
b0983f5 tree: add alias lookup to deref()
b513a01 lopper: pass output directory in the lop environment
9f84e4c assists: Exclude TTC sub-nodes from peripheral test generation
055968c assists: generate_config_object: Avoid generating corrupted config object
6196b98 lopper: assists: gen_domain_dts: Don't generate PMP related configuration incase of pmp-entries is zero
a03c519 lopper: Support specific clock retrieval
3b2fed2 lopper: make support binary checks work with no input SDT
2fd02d5 lopper_lib: handle invalid cpu phandles gracefully
9399826 lopper: handle NotADirectoryError when searching for input files
a4e7a3f lopper: allow phaandle replaceent exclusions
299f01e lopper: consider arguments when filtering assist options
c47115d lopper: sync lopper_base definition of dt_compile with fdt/dt functions
efb278e assists: baremetallinker: Add DDR_PL NOC specific address ranges
b3d1ced gen_domain_dts: Retain memory controller nodes in linux device tree
7aa07f3 assists: gen_domain_dts: Delete the afi (xlnx, afi-fgpa) and clocking (xlnx, fclk) nodes from linux dt
b1b177c ops/assists: add support for disabling selected IPs and removing status="okay"
4adabd7 lopper: lops: Restrict FreeRTOS OS selection for Versal2
e861668 lopper: explictly declare the Lopper package variable default
8caa4b1 loper/dt: update dt_compile to match libfdt version
d24db69 lopper: allow assists to be called without an input SDT
0bffe70 lopper-sanity: adjust node tests for new __lopper-phandles__ node
d71030d lopper: learn phandle patterns from source code
d194515 lopper: support pcpp-python as well as pcpp
0846969 lopper:assists:baremetal_getsupported_comp_xlnx: Add support to include the examples in the lib_list.yaml
5b46bb1 sanity: add embedded lop and phandle replacment sanity test (example)
fa0c035 lopper: allow priority on embedded lops
4560397 baremetal_xparameters_xlnx: Add macros DDRMC5 device type
bdbe71e lopper: improve tmpfile handling
67b71f3 isospec: disable phandle resolution on yaml nodes
5c55e6e tree: add phandle_resolution flag
3421043 lopper: lops: lop-microblaze-riscv: Update multilib mapping when fpu is configured in the design case
2a10805 assists: generate_config_object: Fix overwriting of ipi_bit_pos by adding break statement after assignment
81fb3e1 assists/domain_access: update logging and error checks
e2a1f39 tree: resolve node after adding as subnode
f1b899e openamp: xlnx: versal2: Update compatible string for cluster
377d871 Revert "lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root"
4bca811 lopper: assists: gen_domain_dts: Don't delete memory node when generating zephyr device-tree
5a78f6d lopper: update README with xlnx_overlay_pl_dt.py details and usage
eaabffe lopper: assists: baremetalconfig_xlnx: Add special handling for pciepsu driver
8c5290b openamp: xlnx: updates for latest driver
c5ea88b lopper: assists: zephyr: Add GPIOPS nodes for zephyr
8681dc5 lopper: assists: zephyr: Add SDHC node for zephyr
f6c99bc assists: gen_domain_dts: Add support to read input clock for r52
8945793 assists: gen_domain_dts: Add support to create clock nodes
fda70d0 assists: gen_domain_dts: Keep the nodes having no base address in linux dt
6dc564d lopper: assists: bmcmake_metadata_xlnx: Add speed_grade property
39db3ed lopper: assists: convert zephyr mb-v fast interrupt error message to warning
6232e03 lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root
71d56c4 lopper: assists: baremetal_xparameters_xlnx: Generate CPU-specific macros for MicroBlaze processors
bd7deb3 ops/assists: Introduce new assist file to address PL overlay issues
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
183ff71f2b |
docs: update README with improved layer description
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Patrick Vogelaar
|
39d095241e |
docker: make ca-certificates a packageconfig
Moving ca-certificates into a packageconfig allows using docker without installing all the certificates. Signed-off-by: Patrick Vogelaar <patrick.vogelaar@belden.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4aebf900d9 |
cloud-init: update to 25.2
We also convert to meson, so the python setuptools patch is dropped.
Bumping cloud-init to version 25.2-65-gb04c475f3, which comprises the following commits:
b04c475f3 feat(schema): add support for the not keyword (#6469)
f626daa0f fix: correct netplan renderer target (#6465)
d4f268a51 feat(hetzner): enable hotplug support and prepare IPv6 integration (#6445)
f68c11dcc fix(net-convert): respect output directory with netplan
8a90aa5ab fix(bddeb): require exec permissions on temporary folder
7b591b9bc fix: properly quote commands in `do_as` function (#6400)
1e9aba633 Optionalize bash completion. (#6441)
b12c9f1bb docs(nocloud): Fix file schema examples (#6455)
1955952be fix(systemd): revert auditd.service dependency (#6448)
2cdc58f24 fix: bddeb tool needs distro debian param for package dependency lookup
ae2311d1e fix(test): raises match against an empty string will always pass
254d459cd fix(test): marks applied to fixtures have no effect
cd03bf97c test: refactor test_reporting.py to use only pytest (#6449)
c5c635847 Update wait_for_cloud_init.rst to be more consistent about systemd usage (#6442)
8d888b336 fix: add OpenRC support to Meson build (#6426)
5fd23da61 feat(rh_subscription): new release_version field (#6347)
822358b0c chore: bump isort version (#6446)
ada8b0cb7 net_convert.py: make some import failures not generate an error (#6399)
6f27d0e8d test: fix lru_cache test wrapper (#6443)
464903f96 docs(cc_raspberry_pi): Fix example4 (#6439)
f123b65e7 test: refactor test_data.py to use only pytest (#6440)
12ab35987 tests: convert util.pathprefix2dict tests from unittest to pytest (#6433)
63d5b797d chore: hand off responsibilities (#6432)
e10c8809e feat: support nmap in socket protocol (#6339)
f9fc38095 feat(cc_raspberry_pi): remove remote_gpio interface (#6429)
6de2a6e73 fix(docs): Fix typo in `fDQn` (#6420)
8b05eaa0d Refresh dev docs for tests (#6428)
93af2dda8 fix(raspberry-pi-os): Update ntp client (#6425)
664563504 fixed defs types in cloud-init cmd devel make_mime (#6419)
16f2039d0 test: remove CiTestCase fully (#6416)
8ebe74fd5 test: drop citestcase from test_reporting_hyperv.py (#6413)
d3240b168 test: drop citestcase from net/test_init.py (#6410)
21cc50c6d test: drop citestcase from test_version.py (#6415)
890873f50 fix: read-dependencies syntax error on regex (#6326)
fed437569 doc: add testing links to doc/rtd Development headings (#6326)
697999962 chore: update developer specfile and build for opensuse (#6326)
232e8c18f chore: update developer specfile redhat/fedora and dependencies (#6326)
ad367e2b1 chore: drop yaml validation target, covered in unittests (#6326)
ff9a69ba1 chore: update debian developer packaging template (#6326)
a5d280996 fix: add apt-get update before development pkg install (#6326)
cf59dba84 chore!: switch to meson.build due to PEP632 (#6326)
e0bf72661 chore: render vlan, bond, bridge mac properly in network state (#6397)
9648ad628 chore: replace all mailing-list references with GH Discussions
ffba354cc chore: replace all IRC references with matrix
4349e29c0 fix: fixed defs types in cloud-init analyze show (#6353)
3c067c6b7 chore(tox): align check_format's pylint folder targets (#6414)
442d45186 test: drop citestcase from net/test_network_state.py (#6402)
64afa5343 test: drop citestcase from net/test_dhcp.py (#6401)
885843a52 chore(ci): bump pylint version, fix test failures (#6408)
a90e65252 chore(ci): fix cloud-init test failures from new pylint (#6407)
922468845 chore(ci): bump versions for black, ruff, and mypy (#6406)
f1f28d0a0 doc: change `jammy` to `noble` (#6398)
d094a99eb test: drop citestcase from t* tests (#6379)
1c1eebb52 fix: add missing test mock (#6395)
0af8dcbfe test: drop citestcase net_freebsd (#6374)
6a4075f35 test: drop citestcase from test_util.py (#6387)
d2f422d17 Add 'to: default' support in network state (#6391)
52ec5ae24 test: drop citestcase from s* tests (#6378)
c9e282a23 test: drop citestcase from r, s and u sources (#6373)
df9175600 test: drop citestcase from v sources (#6372)
861773055 test: drop citestcase from n and o sources (#6363)
dbc63b030 fix: make tools/tox-venv with current versions of tox (#6365)
ab2a33659 test: skip gpg dependency test on questing (#6388)
dc0bfda39 feat(networkd): add support for rendering bridge devices (#6349)
265fabd5f cloud-init-hotplugd: remove use of "exec" and unnecessary exit (#6357)
e682bef5b Release 25.2
f21d266eb fix: Ensure 822 template renders correctly on Debian (#6381)
3fc9a0648 test: support systemctl try-reload-or-restart messaging alternatives (#6377)
8f89f5604 test: increase 2nd disk size for disk setup tests (#6376)
1b908e331 feat(clean): Add a new clean option to clean fstab entries (#6348)
aa4a1d354 test: handle TMPDIR != "/tmp" (#6356)
c7007900d fix: add openeuler hosts template to avoid cloud-init service failures (#6328)
58c2b9d47 test: increase timeout on test_clean_package_install (#6362)
c1551ade3 test: relax checks on authorized keys (#6361)
10d933bd8 fix: Correct v2 ENI route and dns rendering (#6331)
a15b77b18 test: drop citestcase from i sources (#6346)
af8bb5f97 test: drop citestcase from g and h sources (#6344)
23e728cc1 test: drop citestcase from c and d sources (#6336)
b15f97de2 test: drop citestcase from al* sources tests (#6318)
e210598d9 disk_setup: Optionally use 'sfdisk' for GPT
13891e06a disk_setup: Fully support full GPT partition GUIDs
deb0f9e5b fix(ENI): render keys with hyphens (#6333)
219cbbbb8 fix: fixed defs types in cloudinit analyze dump (#6343)
01b93d065 feat(networkd): support vlan and bond rendering (#6324)
12ce7d9fb fix(analyze-boot): use monotonic clock for containers #6322
90d80fe3f clean: do not attempt to find datasource when cache has been cleaned (#6325)
c3e881f2c test: drop citestcase from azure_helper tests (#6335)
a729cd7e5 chore: remove unused target arg from Activator.available
b92f3cd50 chore: add typing to cloudinit.net.eni
08a9dcf34 feat(azure): Implement the clean callback for DataSourceAzure (#6321)
0fec2e239 feat(oracle): set keep_configuration to true for iscsi instances
cf5bb7b08 feat(network): add keep_configuration setting to v1
60d40baa2 doc: Document how to wait for cloud-init
5e11d38db doc: Document changed systemd order in 24.4
08630373f fixed defs types in cloudinit analyze (#6308)
c4e80f7b6 ci: downgrade LXD to fix integration tests (#6340)
699b0afab test: drop citestcase from azure source test (#6320)
067197e33 fix: catch and log exception during pip upgrade in ansible pull (#6301)
61f25bed0 test: drop citestcase from some config tests
c57cf3f15 fix: GCE datasource query issue (#3398) (#6279)
720d00b2b test: drop citestcase from distro tests (#6317)
2dab1fdcb test: drop citestcase from rest of config tests (#6314)
7d602e0a8 ci: update patch checking to use current supported releases (#6315)
dfaf5fd69 test: drop FilesystemMockingTestCase (#6294)
753c7a671 test: ensure image setup only runs once, even for xdist
bf233fe71 test: turn reaper into a fixture
1eb9e5c91 test: refactor obtaining session args into new function
9a480f1ce test: simplify passing of lxd_setup callback
aefdbe06b test: drop citestcase from analyze tests (#6312)
3a56dd0d6 test: drop FilesystemMockingTestCase in netconfig (#6290)
2a2491939 test: expose tests.unittests.ditros._get_distro (#6290)
fbbe53c47 doc: detailed examples of openstack config alternatives for non-x86 images (#6303)
0fbea98bb test: drop FilesystemMockingTestCase in smartos (#6291)
6873d635d test: drop some FilesystemMockingTestCases (#6284)
422573b66 docs: clarify what #include can include (#6309)
87e748188 doc(ssdlc): Add hardening page (#6297)
9ecb0db69 docs: Document network device table and limitations (#6187)
2b6c7e654 fix: allow downstreams to strip invalid MTU (#6246)
de6ae26fe test: drop FilesystemMockingTestCase from cc tests (#6282)
ff1d9f041 docs: use correct jinja content-type (#6296)
a5083f810 test: drop ResponsesTestCase (#6277)
4e3ca8208 test: Consolidate use of paths fixture (#6289)
a113049d0 test: pytestify test_vmware.py (#6288)
1dfd7b597 feat(ca_certs): Add CentOS support (#6287)
ab2cc28d0 feat(wsl): Reuse metadata as Landscape installation_request_id (#6200)
37b0e26a5 test: drop / pytestify ResourceUsingTestCase (#6276)
21961048a docs(mounts): Correct fs-freq reference to fs_freq (#6262)
bffd33209 test: pytestify ds_identify tests (#6274)
170ef23a8 test: pytestify t/u/test_log.py (#6275)
0ecd7b772 feat(hetzner): integrate private networks metadata (#6224)
685361722 test: pytestify cloudinit.s.helpers.netlink tests (#6273)
009c4cfd3 Release 25.1.4
02879c364 Release 25.1.3
e3f42adc2 fix: strict disable in ds-identify on no datasources found
55692b0fe test: add integration test to install cloud-init from clean state (#6260)
eb9c1239d docs: provide example3 for PAM and ssh_pwauth behavior (#27)
8b45006c4 fix: Make hotplug socket writable only by root (#25)
8c3ae1bb9 fix: Don't attempt to identify non-x86 OpenStack instances
703117132 doc: update discourse release schedule link (#6263)
770e01212 doc: update discourse link
cf8e70266 chore: log URL when retrying 503s (#6264)
f1a156ca5 test: add option to keep instance on error (#6241)
aa29a62f1 eni.py: ensure that a "dns" entry is not rendered in interfaces file (#6253)
20c9074cf feat(azure): improve handling for reading VM ID (#6199)
f731cdf35 fix: remove unnecessary 'Wants' from cloud-init-main.service (#6255)
805ad91c4 test: use latest version of LXD in integration tests (#6249)
8d9cae224 docs: include missing --seed flags in clean CLI (#6244)
8024a4a4b ec2: Improve metadata retrieval by iterating all interfaces (#6233)
c61e42a03 feat: Add Raspberry Pi OS support (#5827)
c3848d574 feat(azure): add interface to dhcp_log_func (#6238)
b8ed20e3d fix: fix untyped-defs on tests/unittests and cloudinit/sources (#6230)
4512e9e3c test: pre-fetch instance id when logging from reaper (#6234)
6f8d157e2 feat: Add subnet metric support for netplan (#6222)
e830bfb9e test: remove FilesystemMockingTestCase from test_cc_apk_configure.py (#6226)
e67b35901 fix: make 'cloud-init --all-stages' work interactively (#6211)
7bd9659c8 test: remove FilesystemMockingTestCase from test_util.py (#6220)
7b11c084c test: remove FilesystemMockingTestCase from test_dmi.py (#6219)
d6e7ace4d docs: merge "Availability" and "Supported distros" pages (#6217)
52820da4a fix: ansible-pull multiple playbooks on older ansible ver < 2.12 (#6218)
752d4a6c7 docs: remove monospace formatting from SSH section heading (#6215)
1eb5bbabd fix: no traceback on command line missing subcommand (#6214)
e2bef7815 feat: Change ansible pull module type from dict to list (#6010)
951f397a5 test(apt): add questing versiong for hello pkg (#6213)
ab4f8cf81 docs: Use Noble for examples instead of Jammy (#6209)
6e1e3d47b feat(ca_certs): add rocky to rhel distro overrides (#6208)
990145862 docs: ensure proper 'sudo' representation (#6196)
50e42da3b fix(net): ignore udevadm failures when enumerating nics (#6185)
b5046c400 Release 25.1.2 (#6197)
dc6a6817d revert "chore: Deprecate partially supported system config (#5515)"
315908aad fix: copr builds of CentOS9 require CRB and baseurl in centos.repo (#6192)
282b7296f chore: add fedora package build support for run-container and read-deps (#6174)
27f09b77e test: drop fixed xfail tests
619e3fc63 fix: simplify MAAS check logic
4668c5ad6 feat(azure): allow unspecified user name (#6177)
a90db9223 fix: stop reporting error if cloud-init receives signal (#6159)
589c9461d Fix: Add Ephemeral Network for CloudStackLocal DS (#6144)
74d0bf2a1 docs: clarify examples for network addresses/gateway (#6186)
cc791571c fix: setup.py doesn't match AmazonLinux CPE 2.2 releases (#6173)
7a0265d36 fix: ensure MAAS datasource retries on failure (#6167)
e018cdb29 cloud.cfg.tmpl: do not enable cc_reset_rmc for Alpine Linux (#6170)
d709574e5 tests: ibm avoid schema validation for DataSourceNone on ibm (#6168)
d17c77787 tests: ibm fix apt and ds-id testing (#6168)
e1a499dbd test: fix integration test on new lxd versions (#6164)
41f790816 tests: ibm correct logged message. Invalid schema: vendor-data (#6163)
15d2e89c7 tests: ibm expect invalid vendor-data in stderr (#6160)
ccd69e8b6 tests: ibm expect invalid vendor-data in stderr (#6158)
5a0b09b03 tests: fix ibm expected warnings on invalid vendor-data schema (#6157)
3c2ff0ca7 fix: drop udev remove action in hotplug (#6152)
f322144d7 chore: remove reference to refresh_rmc_and_interface module (#6156)
755e9811f chore: reorder iface filters & log on inherited MAC (#6140)
a87e4da88 fix(azure): update ReportableErrorUnhandledException (#6133)
cc8d1b4c4 chore: make auditd wait for cloud-init-local.service (#6138)
1ce03e269 chore: allow custom pkg-config binary path (#6118)
851d25956 fix: rename "reload-or-try-restart" to "try-reload-or-restart" (#6142)
a376f0266 chore: make lint interpreter configurable (#6121)
a748c5066 fix: ensure system sshd_config is not overwritten (#6105)
de415c61c fix(oracle): properly detect ipv6 only for private ULA addresses (#6123)
59ffa16ac feat(oracle): downgrade warning log about falling back to imds (#6134)
c0b65f920 Release 25.1.1 (#6120)
802717a1a chore: remove remaining references to .github-cla-signers (#6116)
441d677bd fix(cli): wrong usage output when invalid arg in subcommand (#6115)
a3c73f9cd fix(Azure): don't reraise FileNotFoundError during ephemeral setup (#6113)
fb5e24f32 fix(azure): handle unexpected exceptions during obtain_lease() (#6092)
34cb46e20 feat: add callback for datasources to clean config changes (#6100)
2ad1b675a chore: Fix untyped-defs on tests/unittests/config (#6104)
9e648827b chore: switch to has-signed-canonical-cla GH action (#6109)
ff9c8e9d7 Allow to set mac_address for VLAN subinterface (#6081)
022152954 change retry sleep for wireserver (#6107)
53d6f413d test: pytestify cc_chef tests, add migration test
5367237fc chef
23ad9b966 chef: migrate files in old config directories for backups and cache
0dbbed7a2 fix: correct the path for Chef's backups (#5994)
8f7739b58 test: replace version check with has_netplanlib() (#6106)
70c239b22 feat(vmware): Support network events (#6063)
2400f4b65 test: correctly mock fallback nic in openstack tests (#6101)
3179611bf fix: Remove erroneous EC2 reference from 503 warning (#6077)
1931ee5a6 test: update keys_to_console timeout (#6087)
340481d46 test: move to has_netplanlib() in test_networking.py (#6089)
671baf22d fix: NM reload and bring up individual network conns (#6073)
3da7eca87 ci(oracle): fix issue installing cloud-init on custom image creation (#6084)
ad984da18 test: decouple netplan integrations from libnetplan SRU (#6085)
ee7b6aa83 test: warning on users/groups test is version specific (#6078)
9547ec19c test: fix errors in custom datasource networking (#6076)
a136a979d test: ensure software-properties-common properly removed (#6080)
b73643fb7 test: remove script death check from test_signal_handler.py (#6079)
f696327d2 test: ensure NoCloud networking works on plucky (#6072)
c21dbade9 fix: stop warning on dual-stack request failure (#6044)
a9f19a92d test: Add integration test for signal handling warnings/errors (#6037)
da32327a7 feat(azure): format ReportableErrorImdsInvalidMetadata without repr (#6052)
50a8747da docs: v1.cloud_name section typo (#6070)
d590f649e fix: install_method: pip cannot find ansible-pull command path (#6021)
aba3791c3 fix: Fix DataSourceAliYun exception_cb signature (#6068)
9311e066f fix: Update OauthUrlHelper to use readurl exception_cb signature
582f16c14 test: add OauthUrlHelper tests
8810a2dcc test: Remove CiTestCase from test_url_helper.py
c60771d8e test: pytestify test_url_helper.py
9704ba816 test: check for correct logrotate config (#6060)
eefaae571 test: don't fail test if ppa has no uploads (#6059)
d264ac6f3 test: make users/groups warning test release aware (#6056)
6250553ca fix: when get_session_cloud() fails, _SESSION_CLOUD isn't set (#6051)
1286a55b8 chore: Sort .gitignore
15ebbba71 chore: Add new entries to gitignore and glob more
3221b4b03 fix: track more removed modules (#6043)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f0401f5870 |
xen-tools: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
690655a511 CI: Include microcode for x86 hardware jobs
0258350a63 CI: save toolstack artifact as cpio.gz
69a629b462 CI: Switch to new argo artefact
1532272067 CI: remove now unused alpine-3.18-arm64-rootfs job and its container
7f26cba32c CI: avoid repacking initrd as part of the test job
20212a32e9 CI: Rename intermediate artefacts in qemu-* scripts
fd7218e3f4 CI: write whole etc/issue for domU initrd
16b30e0827 CI: switch qubes runners to use console.exp
563af5983b CI: fix waiting for final test message
17bad6958a CI: wait for Xen to start before waiting for test to complete
a70222e30c CI: Drop stale test-artifacts/alpine/3.18.dockerfile
18d59a6056 CI: Update ARM64 tests from Linux 6.6.74 to 6.6.86
e9978d089a CI: Update x86 tests from Linux 6.1.19 to 6.6.56
87ab3ad445 CI: adjust resolving network interface into PCI device
052e7f57ec CI: wait for the network interface in PCI passthrough tests
23f7c8341c CI: consistently use DOCKER_CMD in makefiles
78317ae331 CI: increase verbosity of starting a domain
17c6958bb4 CI: include domU kernel messages in the console output log
d747ca04b4 CI: enable XHCI console in Xen debug build on Alpine
0ab5bedcfd CI: prevent grub unpacking initramfs
a30bb23e9a ci: add Intel KabyLake HW runner
d6a11ac363 ci: create boot.ipxe for legacy boot
59be07b2d3 automation/eclair: Reduce verbosity of ECLAIR logs.
2b430f8685 automation: add tools/tests jobs on the AMD Zen3+ runner too
56899974ca automation: allow selecting individual jobs via CI variables
b0a94e392c automation: add jobs running tests from tools/tests/*
f2603e2b1d automation: skip building domU if there is no test defined for it
d4e5f8c627 automation: upgrade arm32 kernel from bullseye to bookworm
56badca5d8 automation: upgrade Linux kernel for arm64 tests to 6.6.74
35cb38b222 x86: constrain sub-page access length in mmio_ro_emulated_write()
f1e8b37f50 xen: remove -N from the linker command line
a05e4817f9 x86/intel: workaround several MONITOR/MWAIT errata
fc07876bea x86/EFI: correct mkreloc header (field) reading
7d9bbb8ba8 compat/memory: avoid UB shifts in XENMEM_exchange handling
23a02992ed x86emul: also clip repetition count for STOS
ade8230830 x86/HVM: update repeat count upon nested lin->phys failure
dee15facf8 x86/mm: account for the offset when performing subpage r/o MMIO access
6b399ed19f xen/rangeset: fix incorrect subtraction
f1dd955988 include: sort $(wildcard ...) results
f01a09d0b1 x86emul/test: drop check for AVX512-4FMAPS
1a8df8282c xen: x86: irq: initialize irq desc in create_irq()
2bd2c08a0f x86/cpu: Validate CPUID leaf 0x2 EDX output
e0d9137ae7 xen: vm_event: do not do vm_event_op for an invalid domain
5b5a11c6c8 sched/null: avoid another crash after failed domU creation
da24dccf53 x86/MTRR: hook mtrr_bp_restore() back up
ad82c8c7b6 x86/ucode: Extend AMD digest checks to cover Zen5 CPUs
ad569a4bd7 x86/ucode: Perform extra SHA2 checks on AMD Fam17h/19h microcode
41d65b3114 xen/lib: Introduce SHA2-256
95d726d28b tools/libxl: do not use `-c -E` compiler options together
c413eff3c5 automation/eclair: Remove bespoke service B.UNEVALEFF
e071b23394 CI: Add yet another HW runner
dd81219b84 automation/cirrus-ci: add smoke tests for the FreeBSD builds
fdbb32a9a9 automation/cirrus-ci: store XTF and Xen build artifacts
e6816c3758 automation/cirrus-ci: build XTF
cfa5bc6f0a automation/cirrus-ci: use matrix keyword to generate per-version build tasks
81189d7116 automation/console.exp: do not assume expect is always at /usr/bin/
0b37231312 automation/cirrus-ci: store Xen Kconfig before doing a build
44407a9d92 automation/cirrus-ci: update FreeBSD to 13.5
0a84ef2731 automation/cirrus-ci: add timestamps
8f94c1ec72 automation/cirrus-ci: store xen/.config as an artifact
2599ee0b60 CirrusCI: Use shallow clone
3ccbe66d30 xen/percpu: don't initialize percpu on resume
b1bbf20a93 x86/P2M: synchronize fast and slow paths of p2m_get_page_from_gfn()
64f9c54daa ARM/vgic: Fix out-of-bounds accesses in vgic_mmio_write_sgir()
ad063b08b1 tools/ocaml: Fix oxenstored build warning
a2cf6f9d52 Arm/domctl: correct XEN_DOMCTL_vuart_op error return value
52c99f4b43 x86/pmstat: correct get_cpufreq_para()'s error return value
108fcc6a73 x86/PVH: account for module command line length
f14c523da1 x86/emul: Emulate %cr8 accesses
990a3d8710 x86/emul: Rearrange the logic in hvmemul_{read,write}_cr()
a1f8f1e681 x86/PVH: expose OEMx ACPI tables to Dom0
fcbd016bd2 xenpm: sanitize allocations in show_cpufreq_para_by_cpuid()
92afeb2961 x86/boot: Simplify the expression for extra allocation space
859e2c4f84 xen/compiler: Fix the position of the visibility pragma
de440d0407 x86/vga: fix mapping of the VGA text buffer
da36efa852 x86/xlat: fix UB pointer arithmetic in COMPAT_ARG_XLAT_VIRT_BASE
fbb06cfa73 x86/shadow: fix UB pointer arithmetic in sh_mfn_is_a_page_table()
8c788b41d7 x86/mkelf32: account for offset when detecting note segment placement
c607822b5a x86/setup: correct off-by-1 in module mapping
c1badde601 xen/arinc653: call xfree() with local IRQ enabled
97f064d9ab x86/mm: Fix IS_ALIGNED() check in IS_LnE_ALIGNED()
408935872a x86/ioremap: prevent additions against the NULL pointer
b29984df38 libxl: avoid infinite loop in libxl__remove_directory()
80cbb29612 xen/sched: fix arinc653 to not use variables across cpupools
f2ddbeb9dd tools/libxl: Skip missing PCI GSIs
1ddf72bbdf tools/ctrl: Silence missing GSI in xc_pcidev_get_gsi()
94928e415f x86/hvm: check return code of hvm_pi_update_irte when binding
74b40fe105 x86/vmx: fix posted interrupts usage of msi_desc->msg field
f581b36608 x86/msr: expose MSR_FAM10H_MMIO_CONF_BASE on AMD
4a480e7a14 x86/vlapic: Fix handling of writes to APIC_ESR
70038e8c09 tools/xl: fix channel configuration setting
bc3006b9fe x86/dom0: be less restrictive with the Interrupt Address Range
a1a5bd40b5 x86/iommu: account for IOMEM caps when populating dom0 IOMMU page-tables
1d8d5753b7 x86/dom0: correctly set the maximum ->iomem_caps bound for PVH
b5ade8ef26 x86/dom0: attempt to fixup p2m page-faults for PVH dom0
48f013199a x86/emul: dump unhandled memory accesses for PVH dom0
9d465658b4 update Xen version to 4.20.1-pre
3ad5d648cd Update to Xen 4.20
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
71c31c79b5 |
xen: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7c5b606679 |
xen: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
690655a511 CI: Include microcode for x86 hardware jobs
0258350a63 CI: save toolstack artifact as cpio.gz
69a629b462 CI: Switch to new argo artefact
1532272067 CI: remove now unused alpine-3.18-arm64-rootfs job and its container
7f26cba32c CI: avoid repacking initrd as part of the test job
20212a32e9 CI: Rename intermediate artefacts in qemu-* scripts
fd7218e3f4 CI: write whole etc/issue for domU initrd
16b30e0827 CI: switch qubes runners to use console.exp
563af5983b CI: fix waiting for final test message
17bad6958a CI: wait for Xen to start before waiting for test to complete
a70222e30c CI: Drop stale test-artifacts/alpine/3.18.dockerfile
18d59a6056 CI: Update ARM64 tests from Linux 6.6.74 to 6.6.86
e9978d089a CI: Update x86 tests from Linux 6.1.19 to 6.6.56
87ab3ad445 CI: adjust resolving network interface into PCI device
052e7f57ec CI: wait for the network interface in PCI passthrough tests
23f7c8341c CI: consistently use DOCKER_CMD in makefiles
78317ae331 CI: increase verbosity of starting a domain
17c6958bb4 CI: include domU kernel messages in the console output log
d747ca04b4 CI: enable XHCI console in Xen debug build on Alpine
0ab5bedcfd CI: prevent grub unpacking initramfs
a30bb23e9a ci: add Intel KabyLake HW runner
d6a11ac363 ci: create boot.ipxe for legacy boot
59be07b2d3 automation/eclair: Reduce verbosity of ECLAIR logs.
2b430f8685 automation: add tools/tests jobs on the AMD Zen3+ runner too
56899974ca automation: allow selecting individual jobs via CI variables
b0a94e392c automation: add jobs running tests from tools/tests/*
f2603e2b1d automation: skip building domU if there is no test defined for it
d4e5f8c627 automation: upgrade arm32 kernel from bullseye to bookworm
56badca5d8 automation: upgrade Linux kernel for arm64 tests to 6.6.74
35cb38b222 x86: constrain sub-page access length in mmio_ro_emulated_write()
f1e8b37f50 xen: remove -N from the linker command line
a05e4817f9 x86/intel: workaround several MONITOR/MWAIT errata
fc07876bea x86/EFI: correct mkreloc header (field) reading
7d9bbb8ba8 compat/memory: avoid UB shifts in XENMEM_exchange handling
23a02992ed x86emul: also clip repetition count for STOS
ade8230830 x86/HVM: update repeat count upon nested lin->phys failure
dee15facf8 x86/mm: account for the offset when performing subpage r/o MMIO access
6b399ed19f xen/rangeset: fix incorrect subtraction
f1dd955988 include: sort $(wildcard ...) results
f01a09d0b1 x86emul/test: drop check for AVX512-4FMAPS
1a8df8282c xen: x86: irq: initialize irq desc in create_irq()
2bd2c08a0f x86/cpu: Validate CPUID leaf 0x2 EDX output
e0d9137ae7 xen: vm_event: do not do vm_event_op for an invalid domain
5b5a11c6c8 sched/null: avoid another crash after failed domU creation
da24dccf53 x86/MTRR: hook mtrr_bp_restore() back up
ad82c8c7b6 x86/ucode: Extend AMD digest checks to cover Zen5 CPUs
ad569a4bd7 x86/ucode: Perform extra SHA2 checks on AMD Fam17h/19h microcode
41d65b3114 xen/lib: Introduce SHA2-256
95d726d28b tools/libxl: do not use `-c -E` compiler options together
c413eff3c5 automation/eclair: Remove bespoke service B.UNEVALEFF
e071b23394 CI: Add yet another HW runner
dd81219b84 automation/cirrus-ci: add smoke tests for the FreeBSD builds
fdbb32a9a9 automation/cirrus-ci: store XTF and Xen build artifacts
e6816c3758 automation/cirrus-ci: build XTF
cfa5bc6f0a automation/cirrus-ci: use matrix keyword to generate per-version build tasks
81189d7116 automation/console.exp: do not assume expect is always at /usr/bin/
0b37231312 automation/cirrus-ci: store Xen Kconfig before doing a build
44407a9d92 automation/cirrus-ci: update FreeBSD to 13.5
0a84ef2731 automation/cirrus-ci: add timestamps
8f94c1ec72 automation/cirrus-ci: store xen/.config as an artifact
2599ee0b60 CirrusCI: Use shallow clone
3ccbe66d30 xen/percpu: don't initialize percpu on resume
b1bbf20a93 x86/P2M: synchronize fast and slow paths of p2m_get_page_from_gfn()
64f9c54daa ARM/vgic: Fix out-of-bounds accesses in vgic_mmio_write_sgir()
ad063b08b1 tools/ocaml: Fix oxenstored build warning
a2cf6f9d52 Arm/domctl: correct XEN_DOMCTL_vuart_op error return value
52c99f4b43 x86/pmstat: correct get_cpufreq_para()'s error return value
108fcc6a73 x86/PVH: account for module command line length
f14c523da1 x86/emul: Emulate %cr8 accesses
990a3d8710 x86/emul: Rearrange the logic in hvmemul_{read,write}_cr()
a1f8f1e681 x86/PVH: expose OEMx ACPI tables to Dom0
fcbd016bd2 xenpm: sanitize allocations in show_cpufreq_para_by_cpuid()
92afeb2961 x86/boot: Simplify the expression for extra allocation space
859e2c4f84 xen/compiler: Fix the position of the visibility pragma
de440d0407 x86/vga: fix mapping of the VGA text buffer
da36efa852 x86/xlat: fix UB pointer arithmetic in COMPAT_ARG_XLAT_VIRT_BASE
fbb06cfa73 x86/shadow: fix UB pointer arithmetic in sh_mfn_is_a_page_table()
8c788b41d7 x86/mkelf32: account for offset when detecting note segment placement
c607822b5a x86/setup: correct off-by-1 in module mapping
c1badde601 xen/arinc653: call xfree() with local IRQ enabled
97f064d9ab x86/mm: Fix IS_ALIGNED() check in IS_LnE_ALIGNED()
408935872a x86/ioremap: prevent additions against the NULL pointer
b29984df38 libxl: avoid infinite loop in libxl__remove_directory()
80cbb29612 xen/sched: fix arinc653 to not use variables across cpupools
f2ddbeb9dd tools/libxl: Skip missing PCI GSIs
1ddf72bbdf tools/ctrl: Silence missing GSI in xc_pcidev_get_gsi()
94928e415f x86/hvm: check return code of hvm_pi_update_irte when binding
74b40fe105 x86/vmx: fix posted interrupts usage of msi_desc->msg field
f581b36608 x86/msr: expose MSR_FAM10H_MMIO_CONF_BASE on AMD
4a480e7a14 x86/vlapic: Fix handling of writes to APIC_ESR
70038e8c09 tools/xl: fix channel configuration setting
bc3006b9fe x86/dom0: be less restrictive with the Interrupt Address Range
a1a5bd40b5 x86/iommu: account for IOMEM caps when populating dom0 IOMMU page-tables
1d8d5753b7 x86/dom0: correctly set the maximum ->iomem_caps bound for PVH
b5ade8ef26 x86/dom0: attempt to fixup p2m page-faults for PVH dom0
48f013199a x86/emul: dump unhandled memory accesses for PVH dom0
9d465658b4 update Xen version to 4.20.1-pre
3ad5d648cd Update to Xen 4.20
89fd1ba884 Config.mk: Bump tags to final
6bf05e0867 SUPPORT.md: Define support lifetime
5cd830509d CHANGELOG.md: Set release date for 4.20
720499db05 CHANGELOG.md: Finalize changes in 4.20 release cycle
c0a7c96182 IOMMU/x86: the bus-to-bridge lock needs to be acquired IRQ-safe
48c7aff2f4 PPC: Activate UBSAN in testing
ac8198c532 Switch to release builds by default
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2fade05b86 |
kernel: add 6.16 support
Adding the 6.16 configuration files to support meta-virt against 6.16 kernels. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Anil Dongare
|
23dff61259 |
grpc-go 1.59.0+git: Ignore CVE-2024-7246
Upstream Repository: https://github.com/grpc/grpc-go Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2024-7246 Type: Security Fix CVE: CVE-2024-7246 Score: 6.3 (Medium) Patch: https://github.com/grpc/grpc/issues/36245 Analysis: -CVE-2024-7246 describes an HTTP/2 HPACK header table poisoning issue found in the gRPC C-core implementation (grpc/grpc). -The vulnerability does not apply to the pure Go implementation (grpc-go) used in Yocto (meta-virtualization layer). -Marking as not-applicable-config (implementation difference). -The affected code path is not present in grpc-go.Hence ignoring the CVE for grpc-go. Reference: [1] https://nvd.nist.gov/vuln/detail/CVE-2024-7246 [2] https://github.com/grpc/grpc/issues/36245 [3] Upstream gRPC release notes confirming fixed versions for gRPC C-core (not grpc-go). Signed-off-by: Anil Dongare <adongare@cisco.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
17a69ce26e |
cri-o: correct SRC_URI and HOMEPAGE
cri-o now resides under https://github.com/cri-o/cri-o. The old URL, https://github.com/kubernetes-sigs/cri-o, now redirects to https://github.com/cri-o/cri-o. Correct SRC_URI and HOMEPAGE to use https://github.com/cri-o/cri-o. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Darshan Patel
|
5b76b43ce1 |
doc: Fix typo in README
- Corrected minor typographical error(s) in the documentation for clarity. Signed-off-by: Darshan Patel <darshan.patel@arm.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
6f84db4be0 |
umoci: update to v0.5.0 -tip
Bumping umoci to version v0.5.0-49-g645eba4, which comprises the following commits:
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
837d335ced |
skopeo: update to v1.20.0
Bumping skopeo to version v1.20.0, which comprises the following commits:
e2c1eecd Bump to v1.20.0
33d3ae41 chore(deps): update module github.com/docker/docker to v28.3.3+incompatible [security]
36176ac4 fix(deps): update github.com/opencontainers/image-spec digest to 2daaaaf
d1bbcb46 openshiftCluster.dockerLogin: create path with parents
5973d144 integration: rename registry binary
a4f3fb31 Update dependency golangci/golangci-lint to v2.3.0
203a4cf7 Improve parameter passing to hack/test-system.sh
319d18c0 Improve parameter passing to hack/test-integration.sh
94e94998 Centralize policy edits in copySuite.policyFixture
5d2cb67f Use t.Cleanup in fileFromFixture
d64b5991 Update module github.com/spf13/pflag to v1.0.7
0aab0745 Update module github.com/containers/common to v0.64.0
a3b8e175 Update opencontainers/image-spec after https://github.com/opencontainers/image-spec/pull/1253 .
f17b4c96 Update module github.com/containers/image/v5 to v5.36.0
f87d5696 Update dependency golangci/golangci-lint to v2.2.2
f9bdc2d8 Consolidate options shared between copy and sync to sharedCopyOptions
1f18641d Consistently use AddFlagSet before flag definitions
4ac60afc Update GPG keys not to use SHA-1
862c2331 Update module golang.org/x/term to v0.33.0
ef2375bc Update module github.com/Masterminds/semver/v3 to v3.4.0
3de83e9f Update dependency golangci/golangci-lint to v2.2.1
3c93577b Packit: disable official CentOS Stream update job
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
be00049d5a |
runc: update to v1.3.0
Bumping runc to version v1.3.0-24-g81693c22, which comprises the following commits:
765cd9dc runc update: don't lose intelRdt state
3ac9e165 [1.3] rootfs: remove /proc/net/dev from allowed overmount list
0f13e3f7 tests/int/cgroups.bats: exclude dmem controller
ce4ad992 libcontainer: close seccomp agent connection to prevent resource leaks
2ff79594 Preventing containers from being unable to be deleted
c6825478 fix rootfs propagation mode
15dc7b51 libct/configs: stop using deprecated id
af614c94 libct/configs: fix/improve deprecation notices
daada5e8 libct/configs: add package docstring
34fd5f0e gha/ci: allow validate/all-done to succeed for non-PRs
24537420 ci/gha: allow to run jobs manually
3a93edb6 ci/gha: fix exclusion rules
6923754a ci: bump golangci-lint to v2.1
996b5185 VERSION: back to development
4ca628d1 VERSION: release v1.3.0
60e2125b go.mod: Delete exclude directives
7031f31d runc: embed version from VERSION file
51b5267a runc --version: use a function
7b2b95d9 ci: bump to golangci-lint v2.0
6a39b491 libct/intelrdt: fix staticcheck ST1020 warnings
1ceca371 Fix staticcheck ST1020/ST1021 warnings
5d9653d8 Fix a few staticcheck QF1001 warnings
bd84d8a3 libct: fix staticcheck QF1006 warning
c3318434 notify_socket.go: fix staticcheck warning
708fe761 rootfs: improve error messages for bind-mount vfs flag setting
4f7de1e0 mount: add string representation of mount flags
2d2dd7fd ci: upgrade to criu-4.1-2 in Fedora
3c375a84 Unify and fix rootless key setup
5275ebb9 ci: install newer criu for almalinux-8
657ab785 ci: bump bats to v0.11.0
6a249199 script/setup_host_fedora.sh: use bash arrays
477391a7 script/setup_host_fedora.sh: remove -p from mkdir
d230ee59 tests/int: rm some "shellcheck disable" annotations
bcc92067 ci: bump shellcheck to v0.10.0
a46cf790 Makefile: bump shfmt to v3.11.0
6d667629 runc pause/unpause/ps: get rid of excessive warning
763f3d58 pause: refactor
55e45c64 VERSION: back to development
159c67f8 VERSION: Release v1.3.0-rc.2
d8e6733e CHANGELOG: port 1.2.x changes
713045ed tests: Add env var tests
8dd36d11 libct: Override HOME if its set to the empty string
a56f2bc8 libct: we should set envs after we are in the jail of the container
73973fb0 test: check whether runc set a correct default home env or not
109116ae criu: Add time namespace to container config after checkpoint/restore
c991b266 .cirrus.yml: install less dependencies
ffbb1dd9 CI: migrate Vagrant + Cirrus to Lima + GHA
473c740e doc: update spec-conformance.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3877bf4bb9 |
podman: update to v5.6.0
Bumping libpod to version v5.6.0-7-g41224eb949, which comprises the following commits:
cd08b088f6 windows: do not convert unconfined seccomp path
fb14c3192d podman events: show network create/remove event with journald
57cb2ca3c6 Bump Podman to v5.6.1-dev
da671ef6cf Bump to v5.6.0
98c3228471 Update release notes for v5.6.0 final release
43cb0db93b [v5.6] Bump Buildah to v1.41.3
f6584e443a [v5.6] Reverse skipped test for 26773
3354423c0d Add a deprecation notice for users of BoltDB
11efbf84c7 Bump Podman to v5.6.0-dev
ec0652f4ad Bump to v5.6.0-rc2
44e1f1e598 Update release notes for v5.6.0-RC2
5dc87663a9 feat: add Podman artifact support to Go bindings and remote clients
906b97e3e1 compat: remove deprecated VirtualSize
17a1e6cfb2 compat: add shared-size par to GET /images/json
8bcfe0ea56 compat: RepoTags and RepoDigest return [] and not null
e1f65f1642 compat: remove GET /system/df BuilderSize
ec778d94b5 compat: GET /_ping return Builder-Version: 1
57493f61d0 [v5.6] Bump Buildah to v1.41.1
8865152a3b [v5.6] Skip failing Buildah v1.41.1 test
e98899689c Remove Experimental from Artifacts man pages
21cf326c7b [v5.6] Bump c/storage to v1.59.1, c/image 5.36.1, and
797a59cefa Bump Podman to v5.6.0-dev
a3a6d9cc33 Bump to v5.6.0-rc1
e22fc65217 Add release notes for Podman v5.6.0-rc1
f3e3aace95 Temp fix for #26680
6aa70f07c2 Update "podman diff container and image with same name" e2e test
e6f812c21e API server: drop inherit-labels/annotations for compat builds
7bc9691045 buildah-bud tests: handle "-t oci:" and such, skip a new --output
ac99084d03 API handler: don't force the SkipUnusedStages flag
55f4d2aa25 API handler: don't force the CompatVolumes flag
db2baee9fa API handler: don't force the IdentityLabel flag
3e673591ad Update compat-volumes setting for remotes
bf79a9b71e Update inherit-labels setting for remotes
bfe6cbe319 pkg/emulation.parseBinfmtMisc(): accept empty "flags" fields
a615dde1a5 build endpoint: document the "timestamp" flag
7517e3267a remote build: relay more new flags introduced in buildah 1.41
73f3e98947 Feat: send additional build contexts for remote builds
97103ffef5 Add Buildah build's passwd test helper
2f71314b4a Add CLI updates for inherit and unset annotations
97f27f35a5 Add missing manpages options for Buildah v1.41.0
048729a560 Bump to Buildah v1.41.0
ca5deaace1 fix(deps): update module github.com/onsi/gomega to v1.38.0
cfdf27b350 test/system: add quadlet drop-in regression test for subdirs
022bac25ea Quadlet - fix dropin overwrites if different parent dirs
ea5b83c0cb chore(deps): update dependency golangci/golangci-lint to v2.3.0
0fda2d8aa2 added updated state in podman-auto-update.1.md.in
f293c1a179 Initial implementation of `podman quadlet` commands
3c33b33424 fix(deps): update module github.com/containers/common to v0.64.0
82ad043197 docs: add description about our code structure
da3df0c45b fix(deps): update common, image, and storage deps
c1cf4b0d89 podman rm: handle case where conmon was killed
8b1f06bf8f podman inspect: fix error difference between local and remote
21356fa06b Update module github.com/containers/storage to v1.59.0
df7d787b4c Update module github.com/opencontainers/cgroups to v0.0.4
55296e1c44 Fix test that checks for podman exec leaks
e899f49926 Update common, image, and storage deps
b48eb6e2fb volume export: refuse to write to terminal (TTY)
e55270a51a podman auto-update: include container in invalid policy message
4bc22a4b3c Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY]
0c586807ea chore(deps): update dependency golangci/golangci-lint to v2.2.2
215cecdbaa Maintainers: add Nicola Sella as Reviewer
78d4f63b93 Maintainers: add Jan Kaluza as Reviewer
5731557d54 Maintainers: add Lewis Roy as Reviewer
b4ed23dc27 fix(deps): update module golang.org/x/net to v0.42.0
8987fd412a fix(deps): update module golang.org/x/crypto to v0.40.0
047d231008 test/e2e: podman update make env check stricter
a360b29626 pkg/bindings/containers: do not ignore ErrUnexpectedEOF
ffec133766 pkg/bindings/containers: do not create sub slice
f42453457c pkg/bindings/containers: don't check for short read
439448c287 Quadlet - add support for the Policy key for .image files
5e44c17309 Clarifies error message when using an improperly formatted secret with kube
3e8b2d7d96 Fix seccomp profile path on Windows
c01eaa87dd fix(deps): update module golang.org/x/term to v0.33.0
1c943f0ad8 docs: replace fuse-overlayfs example with additionalimagestore
b59648a2d6 hack/podman_cleanup_tracer.bt: check map before deleting keys
1f8bc9d736 hack/podman_cleanup_tracer.bt: clamp str size for strcontains()
5e5bfadf93 hack/podman_cleanup_tracer.bt: use new max str lenth
152849ebd2 libpod/build: add headers
c735f8e237 Update the journalctl function to ignore No entry message
0e106c24e0 fix(deps): update common, image, and storage deps
0f61e48ac5 [Artifacts] Remove erroneous ArtifactListOptions var ImagePushOptions
53b5cb5581 [Artifacts] Add note about ArtifactInspectOptions Remote var
cd807f8ff6 Quadlet - print warning when fail to parse
2b4b4c5b06 manpages: adds example for podman system renumber
b10beb5395 Add basic locking to Libartifact
c5c6e44d7d Fix documentation around checkpoints
4410fcb394 cirrus: setup WSL logging
99e719aec8 fix(deps): update github.com/containers/image/v5 digest to 3532547
13816eb86f Fix `podman inspect` to correctly handle log_size_max
31b4efcaec warn instead of error, lift logic to main.go
68e7136536 Enforce wsl.exe UTF-8 encoded output
9fbe2fffe9 WSL commands execution refactoring
0f403ac43e Clarify meaning of --syslog
4b1f7bcb9a Quadlet - Error when units define User, Group, or DynamicUser in Service group
5391721aa3 fix(deps): update common, image, and storage deps
10a5f9715b fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.6
d8599658ff Makefile: add Makefile to sources
145fb74dbf rpm: add grpcnotrace build tag
3d453572a9 Makefile: add grpcnotrace build tag
62bfeb5d88 Add conditional release-checking system test
fed198eaf9 api: Don't HTML escape application/json responses
ffbb0ed7b0 update CI images 2025-06-27
92a6298729 chore(deps): update dependency golangci/golangci-lint to v2.2.1
38ed6c6589 vendor: update c/{common,image,storage} to main
5786d5f846 fix new lint errors from the docker update
f1a1948b23 Quadlet - Do not override existing Environment in Service group for Pod units
cf87278e66 vendor: update docker to v28.3.0
570fbf0078 pkg/domain/infra/tunnel: ignore error from removeContainer()
247c1dfb53 libpod: remove deadcode
09caf60687 remove test/framework/framework.go
d2291d7f1a pkg/util: remove deadcode
552e38ec6d remove pkg/util/camelcase
6893ecc469 pkg/rootless: remove deadcode
880808dfb9 pkg/parallel: remove deadcode
6bfd28bc6f pkg/namespaces: remove deadcode
f3c82a917c pkg/machine: remove deadcode
d919a3666b pkg/libartifact: remove deadcode
6da360a223 pkg/fileserver: remove deadcode
fb5cbb9b1f pkg/farm: remove deadcode
1a0917de35 pkg/errorhandling: remove deadcode
4d5e0a647c podman images --sort use ChoiceValue flag
a92e685c0b pkg/domain: remove deadcode
fc21bcd7d1 pkg/bindings: remove deadcode
9d328d8782 pkg/api: remove deadcode
75bad52af5 remove unused ShouldRestart() code
1d3089ea82 cmd/podman: remove deadcode
054036f073 podman images --sort autocomplete options
c99d237349 Update Neil Smith's GitHub username in MAINTAINERS.md
2ef0148b8a machine: enable nested virt on libkrun by default
e00dfa606a pkg/machine/e2e: add CVE-2025-6032 regression test
b5783ae1fb test/e2e: fix podman run check dns flake
b099a93580 Bump bundled krunkit from 0.2.1 to 0.2.2
bfc327a08e Secret create - add ignore option to allow noop
f21dacc4fb cmd/podman: add --latest option to update #26380
f266034d56 docs: document when a volume is chowned
98876454cb Refactor `volume import` to support the remote client
67fa077a5c update image_fix -> automation_images#407 skip test duo to rawhide know issues
5ab4328318 Podman pull - add policy flag
17601aa913 Pod YAML: Add support for `lifecycle.stopSignal`
726b506acc machine init: fix tls check
ca1c4388b3 update podman-machine-start with examples for --no-info and --quiet
01fb3aaae4 test/e2e: fix "with unsafe hostPath subpaths" test
964069326d quadlet: remove indirect logrus import
fa67681601 docs: add three examples to podman-generate-spec man page
e4c810a8f1 fix panic on state refresh
5989370c39 pkg/systemd: expose [Pod] ExitPolicy key for pod create --exit-policy
1f9893817b volumes: add new --uid and --gid option
d79d596bce docs: add an example to podman-secret-rm man page
a218dfa2fd chore(deps): update dependency pytest to v8.4.1
d7f980b719 [CI:DOCS] Tweak Governace slightly
a93b63c4ad remove .github/workflows/pr-title.yml
0439167943 remove hack/install_catatonit.sh
bf7c9a1536 Makefile: remove some old files from clean target
8cfe7bb003 remove cni/
6623ab8d17 remove pkg/timetype
5d88999447 remove contrib/modules-load.d
241f2d7928 remove contrib/snapcraft
4582c3413f remove contrib/script/size.sh
605b1f7386 remove contrib/remote/containers.conf
e9aad3d40d remove contrib/dependabot-dance
14b1ee5837 remove contrib/dependencies.txt
febb667865 remove contrib/containers-common
4ec7d35cbb Removed the 'Deleted: ' prefix from each example
6b996445bc add more exmples applying current style for each page
15d8b5b2fb docs: add an example to podman-network-rm man page
139d3fc82b [CI] Correct ST1005 staticcheck lint rule
6510d81f69 docs: add examples to podman-system-migrate man page
63bf454d66 Refactor `podman export` to work with the remote client
0ab8a3c576 artifact mount: add new name option to specify filename
c647a7200e Fixes: #26374 add example network connect with mac address
21f34601eb artifact mount: improve single blob behavior
6368b248f0 docs: remove bogus markdown heading in podman-ps
fd325e33fd Update podman system prune doc
bd2c838b0e fix 26348: add container diff --latest doc
ffa4c124a1 Add missing --pod examples to podman ps manpage
93d66542d4 Move 'Examples' section down in the podman-volume-create man page
bb571b48c3 fix(ci): add ST1005 linter rule
cbba265f29 Add examples of `--all` flag
1a461fe41a Manpages: podman machine init add example with --now
24e5c00e6e Update docs/source/markdown/podman-secret-inspect.1.md
4a35cf00ec Improve documentation for podman-secret-inspect, closes #26362
ad7087af56 Add Craig Loewen to Reviewer role
ae49463a8f man pages: Add an example about --no-prune
085082a805 Manpages: add podman exec missing example of detach option
d680c48eaf fix(cmd): improve ValidURL reliability
d1187be8a3 Bunch of trivial manpage fixes
1141ae4a87 libpod: log file doesn't need to be executable
9922bddb1f libpod: do not dereference nil pointer
54afcdf6b3 libpod: fix file descriptor leak
5838bfef9a podman-update: fix EXAMPLES
2221ca9943 test: check podman update errors on non-block devices
3f0cdb9414 pkg/specgen: error out when a block device isn't
9b6e548387 pkg/specgen: refactor FinishThrottleDevices, WeightDevices
2b6c477884 quadlet: handle generate environment params that inherit from host
ad882ac730 fix(deps): update module go.etcd.io/bbolt to v1.4.1
d4a8598ca4 make validate-in-container changes
0080368fd6 Clarified the consequences of --network=host
22789928d4 podman machine: pull wsl image from machine-os
48b19e98f9 remove hack/libdm_tag.sh
9aedc47aff rpm: build rpm with libsqlite3 tag
c6842d3425 Makefile: use libsqlite3 build when possible
c45b27ffb0 Remove bin/podman.cross Make target
c96d87ccad Allow generate-bindings on darwin
087a44a8e7 Update module github.com/go-swagger/go-swagger to v0.32.3
f0c15f1c7a docs: replace RemapUsers=keep-id with UserNS=keep-id
2825521337 tmpfs: Add support for noatime mount option
a87bef9606 fix(deps): update module golang.org/x/net to v0.41.0
0f7b21ad00 pkg/machine: remove unsused net recover file
0c77654be7 Revert "podman machine: fix proxy test"
adc35b157e pkg/machine: remove old fw_cfg service
0b8dd90840 podman machine: fix proxy test
0c406f25ad pkg/machine/e2e: skip rosetta test
793242da8d RPM: Limit Epoch 102 to podman-next copr
18ecd2046b quadlet: generate RequiresMountsFor for Type=bind volumes
b85d770be0 Make podman.io update action reusable
971321228c Skip layer digests for podman system check --quick
465578d7ec test/buildah-bud: skip new build-with-two-outputs on remote
4286f03b34 test/buildah-bud: update buildah-tests.diff
c1653bdc29 Build the `dumpspec` test helper for the `buildah bud` tests
ac71bc6cf2 vendor: update buildah to latest main
96abeafc61 vendor: update c/{common,image,storage} to latest main
d44f0afa84 vendor: update github.com/docker/docker to v28.2.2
94478a4144 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2
a0f7db44e8 quadlet: add InterfaceName option to network unit
8532ecb710 fix wsl install workflow on machine init command
99cfdc04db feat: Add OCI Artifact support to the Podman REST API
eadded9154 build: reuse parse.ContainerIgnoreFile from buildah
87450b8f8b podman buildx inspect support
0719acbe7f chore(deps): update dependency pytest to v8.4.0
89b8e23385 test/system: check --dns-option behavior
c87a761e05 podman system check: Fix error check logic
75dc508e98 libpod: don't force only network search domains
04a1a39a69 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.5
869fceb0fd update c/common to latest main
da95bbdd5d play kube: never add empty alias
b64817de40 fix(deps): update github.com/opencontainers/runtime-tools digest to 0ea5ed0
2c252a7614 Don't BuildRequires: ostree-devel
3837339e0e Allow not specifying type with --mount flag
775a85004f Add "dest" as an alias for "destination" in `--mount`
f2d941b241 docs: quadlet can translate names now
db53f6240d e2e: ref full URL for aarch64 criu precheckpoint issues
a17f8afbbc specgen/generate: Fix log tag priority
5e7c0a66ce e2e: skip pre-checkpoint tests on aarch64
3a981915f0 Handle "Entrypoint":[] in compat containers/create API.
415668c802 system df --verbose don't crash
b276e7ef21 Fix SQLite volume lookup queries matching too liberally
b551939be6 vendor: update c/{buildah,common,image,storage} to main
e0b08fcfa3 Recreate the Rootfs in mountStorage for infra-container.
ca20c42a52 test: fix race conditions in /dev/kmsg tests
f25cefcb1b Fix overlay volumes on Windows
d5520ded64 chore(deps): update dependency setuptools to ~=80.9.0
051be9b2d2 libpod: Don't exclude running deps from the container graph inputs
66bf98e27c compat API: respect base_hosts_file containers.conf option
416bb84c0e Trigger podman.io version bump from release action
ad05a878df Packit: remove propose-downstream for centos stream
44ec71358e Packit: use fedora-all alias for tests
9d4267c8f2 Disable the tests for rootless pods
5bfdb25b26 Support --cpuset-<cpus/mems> in podman kube play
5797c1dd27 pkg/machine: don't use dummy linger service
79a857e0a0 pkg/machine: correctly enable lingering
9872f0e83c Update expected output for a machine copy test
af495e1aa9 Replace alpine_nginx with TESTIMAGE in e2e tests
9a452db918 Support '$FOCUS' env variable on winmake too
6265ef07ae pre-commit: exclude rpm/gating.yaml from check-yaml
50379429ca lint: Fix linter issues on TMT files
cff69f89e9 Update release notes on main
c39fd061f0 fix CONTRIBUTING to say reference issue number 'or' url
92a15085cb compat: fix Container State.Status JSON values
f10e2ffd36 chore(deps): update dependency setuptools to ~=80.8.0
953e385bd2 libpod: fix mount order for "/" volume
b9cc2d87d7 Update RELEASE_PROCESS.md
6d6ebad829 github: remove fcos next image workflow
3ab45807b4 [skip-ci] Packit: set fedora-all after F40 EOL
736ca60378 test/e2e: do not check dns.podman
7c0262db3d compat: Add DefaultAddressPools field to GET /info
265ca77276 Be explicit about ssh configs suitable only for localhost
b82f2962c3 compat: Add CgroupnsMode to POST /containers/create
06ddffc81d Update dependency setuptools to ~=80.7.1
9c206a467d docs: drop --pre-checkpoint requirement
90ee7c86a3 podman: remember hooks-dir on restarts
53f118d135 GHA Release: Fix windows installer uploads
3e08c2abf0 Revert "GHA: Pin Go to 1.24.2"
db65baaa21 fix macos compile issue with go 1.24.3
206d92c25f Packit: disable OpenScanHub scans
fb9ef0dda0 GHA: Pin Go to 1.24.2
fe84fbae72 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1
637c264e2e fix issues found by nilness
6ae920de8b Bump bundled krunkit to 0.2.1
59d9f1ea5d chore(deps): update dependency setuptools to ~=80.4.0
5471f6e191 chore(deps): update dependency docker to v7
59c45a01c7 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.5
6a96f70180 fix(deps): update module github.com/crc-org/vfkit to v0.6.1
b572b892b1 fix(deps): update module github.com/containernetworking/plugins to v1.7.1
077649f9d0 Fix: Use SIGKILL instead of SIGTERM when ExecStopContainer timeout is 0
499ea1168b Fix: Ensure HealthCheck exec session terminates on timeout
d7fefb7064 [skip-ci] Tighten version match
700c679cd2 Quadlet - Update the docs to reflect the default naming of resources
09d9d3e26b Revert "Quadlet - fix pod name to depend on the name of the generate service"
5be3f8d480 Fix a shellcheck warning about word splitting
a5748206d1 fix(deps): update module github.com/vishvananda/netlink to v1.3.1
7a161115f9 Fix parsing of paths for unmask
b6eeaea7f3 Take path for wsl instead of forcing through WindowsApps
d12588f581 fix(deps): update module golang.org/x/net to v0.40.0
136f2e1ba4 Update win-installer github job for arm64
efc3b178bb Build windows arm64 artifacts
35e1c2033a Fix windows arm64 installer build
f4819412b8 README.md: add openssf passing badge
9dffc251fc fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.6
d6239385fd Update podman-secret-create.1.md
4f38c2fea2 Quadlet - fix pod name to depend on the name of the generate service
4a4b8dcfe9 fix(deps): update module golang.org/x/crypto to v0.38.0
f825639ebc Verify the ExecSession pid before killing it.
32d389a19c fix(deps): update module golang.org/x/term to v0.32.0
1f7d8e2273 fix(deps): update github.com/vishvananda/netlink digest to 9d88d83
fbdeff2b88 fix(deps): update module golang.org/x/sys to v0.33.0
0b1623e2e4 fix(deps): update module golang.org/x/sync to v0.14.0
5d6c784252 docs: fix markdown format
ec6423e73b chore(deps): update dependency golangci/golangci-lint to v2.1.6
78065fd8c7 chore(deps): update dependency setuptools to ~=80.2.0
3448ba5091 Automatically bump to -dev after tag
7fddbd4d4d Update winmake.ps1 to build arm64 artifacts
2419732eb7 [skip-ci] TMT: system tests
ac6080bea9 pkg/machinie: use TZ env for reading local timezone
a90fad3fc8 pkg/machine: rework getLocalTimeZone on linux
193d7b8202 pkg/machine: properly setup zoneinfo symlink
b431f06e64 pkg/machine: do not add broken localtime symlink
039679d0ae fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0
ebcdd3c8cd fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.4
bc810cb07d fix(deps): update github.com/hugelgupf/p9 digest to abc96d2
b7f67badf3 chore(deps): update dependency setuptools to ~=80.1.0
941a6d0c05 pkg/signal: ignore SIGTOP for signal proxy
a4d0067249 pkg/signal: rework CatchAll() behavior
8de2e0ec21 sigproxy: ignore if container already removed
80065f7224 ci: Load null_blk for I/O limit tests
8160e02459 test/e2e: Use nullb0 for IO limit tests
3b61e56152 test/system: Use correct device for I/O limit tests
f6b91d7be0 inspect: Ignore character devices for IO limits
d7eaf42727 Do not error on tz detection
c9b1bd1cf3 Stop setting btrfs_noversion build tag
9c5f7662d1 Remove providers checks from the Windows Installer
9b2fb40ab8 Quadlet - remove the usage of cid and podid for container and pod files
8e6ecb97c9 Fix running machines with volumes containing spaces
ad20e257d6 Makefile: move some Go-related variable definitions up
24267452e6 Handle signal preventing Start from completing
f6be9fbc7f Build documentation in a container on Win arm64
2b06c01357 Fix mach os pr release action
8d65e0e36c bump main to 5.6-dev
579b17425e pkg/bindings: wrap image push decode error
6c0e581fa9 pkg/bindings: fix infinite loop/memory leak in image pull
ae9e85bfc5 Update "check.c" to be C23 compliant
7b1055a5fb feat: Add support for configuring swap in Podman machine
6c9f378a9b fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
3f56de0199 Quadlet - use helper function to initialize service struct
2588b96993 Fix logging podman machine server9 output
fd444bd7d7 OWNERS: Fix Github handle
e66ff395b7 Fix handling of "r_limits" in Podman REST API /libpod/containers/create
7819879776 chore(deps): update dependency setuptools to v80
6e7de438cc bug: Correct Docker compat REST API image delete endpoint
a969dbd73e update podman socket output to include also exposed ports
585f046e95 Disable FS mount in volume only test
4268c61dd0 Added tests for inheritlabel fix
0c4d023822 Fix: inheritlabels=true if query param absent
75f05a9807 Add Mohan Boddu as community manager
710c077342 chore(deps): update dependency golangci/golangci-lint to v2.1.5
7e14a03409 fix(deps): update module github.com/cpuguy83/go-md2man/v2 to v2.0.7
633f727f2d Quadlet - use helper function for handling key=val type keys
802fc15b1e Add Label to quadlet pod
0eac57ed31 podman start: remove container if needed
3a2d7587fe remote: don't print bogus error when starting container attached
9b751a27b9 [skip-ci] Packit: do not merge PR in CI
e443bffe5a [skip-ci] Packit: re-enable fedora-41 targets
4dd9340a56 hack/bats: Pass --tap (-t) option to bats
bfd5de309f hack/bats: Fix to allow multiple tests
bf7dcd5619 Fix: Remove appending rw as the default mount option
c1ad54f89a hack/bats: Allow specifying PODMAN_ROOTLESS_USER
0463ad12cb libpod: fix a confusing error message from 'podman system reset' on FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6d45724b26 |
crun: update to 1.23.1
Bumping crun to version 1.23.1-9-gca8e5c74, which comprises the following commits:
eb9912e0 build: add check for static builds
bb04c555 libocispec: sync
a9d12996 linux: never chown devices
eecadda9 tests: fix test_mount return type
38c5795e tests: add capabilities to net test
d20b23db NEWS: tag 1.23.1
f56fc445 utils: add bounds checking for Unix domain socket paths
59066cc9 ring_buffer: do not use the reserved byte
abc42863 utils: write to ring buffer whenever there is space available
7d21fa1e tests, podman: skip auth test
3fc25616 NEWS: tag version 1.23
69c3ba16 krun: define KRUN_NITRO_IMG_TYPE_EIF if missing
aa9e1c51 krun: drop unused variable
55d603f2 krun: enable virtio-gpu
e76c7451 container: refactor container_init_setup
7acad117 container: refactor libcrun_container_run_internal
e83abf35 linux: refactor do_mounts
f9edd528 container: use xmalloc instead of malloc and OOM
2dbee366 criu: Add support for tcp-close
3040a07f cgroup-resources: extract common pattern
d30d1512 linux: fix regression in libcrun_configure_network
220a39a6 krun: Give container access to nitro_enclaves device
ac297b79 krun: Allow /dev/kvm to be unavailable with nitro
500f1c92 krun: Configure nitro enclave data if enabled
d9ddb935 krun: Use nitro flavor when indicated
702d09b7 krun: Open libkrun-nitro handle during loading
54771724 krun: End loop traversal when SEV device found
72b35020 linux: add missing crun_make_error
e2789c70 container: propagate error from exec setup
4e5375cb libcrun: inline can_skip into write_cgroup_resources_v2
ad9f90b7 tests: add test_bpf_devices
6f466dcc cgroup,systemd: do not install duplicated ebpf
edf66788 cgroup,systemd: check for loaded bpf on update
227bd0f1 cgroup,systemd: use BPFProgram=device if supported
832db004 write_devices_resources_v2: refactor
1dae52ba cgroup,systemd: allow empty slice in cgroupsPath
5610c0cf RPM/Packit: wasmedge support Fedora-only
39bdaaef Packit: disable propose_downstream for CentOS Stream
c6dfc871 RPM: placeholder check to silence rpmlint
8d61001d crun: print version even with invalid rundir
76805119 Remove dead code after exit
0b9aab09 handler: add NULL check to handler_manager_free
a755e043 utils: Add NULL pointer check to cleanup_close_vecp
66d710ce linux: add NULL check to cleanup_free_init_statusp
ce47a219 linux: Add NULL pointer checks to free_remount
54d4b042 string_map: ignore empty map
f25352f9 linux: limit mounts creation outside of namespace
d51df096 lua: clean up unused defines
4b7257d4 linux: fix regression with idmapped mounts
83f601d3 lua: fix build errors
4de19b63 NEWS: tag 1.22
aa082854 tests: install catatonit package
72e5468e tests: improve cpu_weight_systemd coverage
4998c928 cgroup: improve conversion from shares to weight
aaeeefc3 tests: install gperf on alpine
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|