mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 12:50:22 +02:00
c431b46959
955 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
c431b46959 |
crun: update to v1.9.2
Bumping crun to version 1.9.2-12-g8af8ee2, which comprises the following commits:
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
122f8ae linux: open mounts before setgroups if in a userns
64105d9 Use overlay and single nix derivation
35274d3 NEWS: tag 1.9.2
8f6b76f tests, podman: enable more tests
255268d Reset the inherited cpu affinity after moving to cgroup
745b6d9 tests, podman: run tests on overlay
f42e279 tests, podman: get more information on the environment
379b17c tests, podman: avoid deprecated options
bd251c9 rpm: do not special case krun man
fe4e15d build: install krun.1 only if krun is enabled
0cabf0c rpm: fix manpage installation
67ee730 Packit: notify @containers/packit-build team on failed tasks
1f2769e linux: fix fallback mechanism in a userns
a0b7e18 NEWS: tag 1.9.1
bb4e975 utils: partially rewrite improve error message patch
14afa8a utils: fix ignore ENOTSUP when chmod a symlink
0acb237 oci-validation,test: lock tap to @16.3.8
bbb1c87 tests: install device-mapper-devel
75dd83c podman, test: disable more tests failing in the CI
98db1d2 utils: improve error message for ensure_dir
57262a2 utils: ignore ENOTSUP when chmod a symlink
523eed3 linux: add new fallback when mount fails with EBUSY
2239c50 linux: teach MS_MOVE to do_mount
c9a1a12 Add man page for krun
8645d1a Fix CentOS 7 Build by Checking if FSOPEN_CLOEXEC exists
a538ac4 NEWS: tag 1.9
1e2f0c4 fix: correctly handle unknow signal string
41fa779 crun delete: call systemd's reset-failed
76b80ae fix random errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
8933a2cf4c |
cri-tools: update to v1.28.0-tip
Bumping cri-tools to version v1.26.0-353-gf8733ddf, which comprises the following commits:
f570bc09 Bump golang.org/x/net from 0.16.0 to 0.17.0
75c136c8 Validate sandbox and container metadata
4f3475f5 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0
93bc1bf2 Bump golang.org/x/net from 0.15.0 to 0.16.0
57d7848c Switch to `github.com/distribution/reference`
f61309ae Bump github.com/docker/distribution
6a1c7883 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0
024268e7 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1
04fb3af1 Verify required checkpoint parameters are set
544d4792 Remove duplicated import "k8s.io/cri-api/pkg/apis"
dbd6c086 Enable staticcheck linter with SA1019 to find deprecated methods
06bb4c99 Use executor.StreamWithContext instead of deprecated executor.Stream
092eddc1 Address deprecation of Strings.Title
9059543c Remove unnecessary rand.Seed
52fcfd43 Address deprecated io/ioutils
833ab93c Address deprecated call cli.NewExitError of urfave/cli package
3e036cfa Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0
b84b1817 Bump actions/checkout from 3 to 4
4b5c3fe1 Update version compatibility between Kubernetes and cri-tools
7458ab35 Bump golang.org/x/net from 0.14.0 to 0.15.0
aa049113 Bump github.com/docker/docker
71beb1da Fix containerd tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
82d2ac74cb |
cri-o: update to 1.29.0
Bumping cri-o to version v1.27.0-662-gf8ccf314a, which comprises the following commits:
3b7ab35ff build(deps): bump crate-ci/typos from 1.16.17 to 1.16.18
f7d3228a7 Avoid an unnecessary c/storage lookup in ListImages
96e6aa9b5 Inline getImageCacheItem into ListImages
e4f2b888d Split imageIsBeingPulled from ListImages
c7188518d Simplify ListImages more
1cfe3c8bb Simplify appendCachedResult
ae597ba16 Remove the "filter" parameter to ListImages
e0750462f Turn ListImages(filter) into ImageStatus
50ce23e89 Simplify storageImageStatus a bit
2cb166512 Simplify ImageStatus a bit
1b0e82a22 Split storageImageStatus from ImageStatus
ad8be44cc Simplify error handling in ImageStatus
203612b23 Move the ImageResult -> ImageStatusResponse conversion out of the loop
97329e4fa build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
013a0998c Update release-notes to v0.16.1
dc44bac35 Fix quoting issue in usage help text
f22040da2 crio: add support for --imagestore
1d0e5d074 build(deps): bump crate-ci/typos from 1.16.15 to 1.16.17
bb4ab8110 Run GitHub actions in `update-nixpkgs-*` branches
45a6e70e7 Update nixpkgs
8ec74c5fa contrib/test: pin the latest release of runc
2505851e0 Update crun to 1.9.2
f3e53a058 test: Add test for image pinning behavior
12cabc651 internal/storage: compute Pinned field from recently loaded image
0fd641c6d build(deps): bump crate-ci/typos from 1.16.14 to 1.16.15
347194d3f build(deps): bump crate-ci/typos from 1.16.13 to 1.16.14
f532cbd89 Add nixpkgs update cron
8fa9260fc build(deps): bump crate-ci/typos from 1.16.12 to 1.16.13
72280f09c Update install.md removed spaces (markdown lint error)
fe9ed4e3a storage: add support to split filesystem using imagestore
544db3209 RFC: Use RuntimeContainerMetadata for passing container data
c9309ebb6 Add a layer name in one step
4f5a2e95c Microoptimize reference creation
3a77cc956 Eliminate the now unused imageAuthFile and isPauseImage parameters
61d86923c Simplify createContainerOrPodSandbox again
a936e6861 Simplify CreatePodSandbox
39095cbb4 CHANGE: Simplify CreateContainer image lookup
a09320639 Eliminate the clearly dead part of the just copy&pasted code
a7f841955 Blindly copy the image handling code from createContainerOrPodSandbox into callers
6cabaaee1 Remove an imageID parameter to CreatePodSandbox
2b4652c52 Fix/Add error handling
8e1e1e672 update containers storage to 1.50.2
5d8538318 build(deps): bump DavidAnson/markdownlint-cli2-action from 12 to 13
6c1574efc Fix nix `dirty` build
d951faa32 Make the release branch fast forward a cronjob
5dee42bcf build(deps): bump crate-ci/typos from 1.16.11 to 1.16.12
91b83b10c Fix release notes job
096f803a3 Bump golang dependencies
7d86c2e25 docs: fix CI failure
f182fb411 Bump version to 1.29.0
51bae7a96 Remove the IsFullIdentifier check from Server.pullImage again
7eb248b1a Don't silently modify the caller's SystemContext
2d72e13e6 Fix a VERY misleading comment.
472d2c5f9 Remove an unnecessary check
23d7c35d5 Remove an unnecessary parse call
6f9a7173f Remove an unnecessary check
8c3e301da Optimize handling of full image IDs
5f45d232a Remove the ErrCannotParseImageID special case
335d4b0f3 Fix a VERY misleading comment
b489507c9 Remove a completely unused ErrImageMultiplyTagged
98f171147 Make Server.pullImage responsible for rejecting image IDs
e292f17c0 docs: Update the containers/image branch name
6005b03f2 contrib/test/ci: remove the redundant golang setup file
059a7b5f8 Add conmon-rs binary to bundle
4ac3aeef2 internal/storage: address unpredictable behavior of image names
61a0b7c79 config/server: add functions to check IDMap support in runtime
9ce778351 Remove golang-go from debian installation
3d450274e Pause container during checkpointing
e069cc827 contrib/test: fix golang version extraction for CI
0774b644d build(deps): bump actions/checkout from 3 to 4
d6f4c7100 Adopters.md: fix linting issue
d805d28fd Add new adopter
940de5009 build(deps): bump crate-ci/typos from 1.16.10 to 1.16.11
ac9c6fbfe Don't vendor main Kubernetes repo any more
4a1e406b0 Mention Roadmap GitHub Project in README.md
bacc5e638 build(deps): bump crate-ci/typos from 1.16.9 to 1.16.10
9cbd8d555 build(deps): bump cachix/install-nix-action from 22 to 23
798a8d701 build(deps): bump actions/checkout from 3 to 4
758e3d8c3 cgmgr: reorder setting of sched_load_balance for pod cgroup
0e6b13e08 build(deps): bump crate-ci/typos from 1.16.8 to 1.16.9
ff434ba27 build(deps): bump github.com/containers/podman/v4 from 4.6.1 to 4.6.2
0002792fa build(deps): bump DavidAnson/markdownlint-cli2-action from 11 to 12
3aa18aff3 Switch to go 1.21
5b9f7f96d Add dependabot group for OTEL deps
d7ad3fcbf build(deps): bump github.com/containers/buildah from 1.31.2 to 1.31.3
85c3d9db1 Bump conmon and crun dependencies
5ab387fe5 build(deps): bump github.com/containers/common from 0.55.3 to 0.55.4
a4f2d8071 server: remove deprecated functionality
28ae1f81a Fix bundle e2e tests
a9afa0442 Add ppc64le binaries to release notes
c8f8ca498 Add Kubernetes package test for static binary bundle
734e1538c build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
873c0f420 Policy: Allow backport of independent features
bebd421b5 Configure systemd install path based on OS
ec4bbac12 feat(cmdrunner): add support for context
59f9b823d move shmSetup in server/sandbox to internal/factory/sandbox
d1946b30a blockio: add blockio_reload option
ce1cdfa54 main: create parent crio dir before creating clean.shutdown.supported
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
022ec69e9b |
containerd: update to 1.7.7
Bumping containerd to version v1.7.7-5-g5e21abb18, which comprises the following commits:
d0a1fedb5 *: add runc-fp as runc wrapper to inject failpoint
04491240a containerd-shim-runc-v2: avoid potential deadlock in create handler
6982a0df5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0e2320398 Uncopypaste parsing of OCI Bundle spec file
a34fa5681 Prepare release notes for v1.7.7
6ca0aebf0 Allow for images with artifacts to pull
7df492a95 remotes/docker: Fix MountedFrom prefixed with target repository
7779ce64e remotes: always try to establish tls connection when tls configured
b3db314a5 Bump x/net to 0.13
a83c66813 Require plugins to succeed after registering readiness
171d76849 cri: call RegisterReadiness after NewCRIService
6013b5e03 cri: stop recommending disable_cgroup
3d27bc738 Handle unexpected shim kill events
4ffa3ed29 Build binaries with 1.21.1
5756f6064 [release/1.7] vendor: github.com/Microsoft/hcsshim v0.11.1
09633b539 deprecate logs package, but disable linter (for transitioning)
cb201519f alias log package to github.com/containerd/log v0.1.0
a5024e6dd vendor: github.com/stretchr/testify v1.8.4
7bd976af3 vendor: github.com/sirupsen/logrus v1.9.3
3ca015e55 nri: update mock plugin handlers
4cd208c1f vendor: update github.com/containerd/nri@v0.4.0
8cd2d33c2 [release/1.7] remotes/docker: Add MountedFrom and Exists push status
3e09c65b2 Prepare release notes for v1.7.6
5ebf05d97 push: inherit distribution sources from parent
d206896dd content: add InfoProvider interface
423693d7b [release/1.7] update to go1.20.8
c7a35ccdc Fix transfer service dependencies:
38d4e506d Invoke Stable ABI compatibility function in windows platform matcher
ddffc7c9a Update hcsshim tag to v0.11.0
b449440a4 CRI: Support Linux usernames for !linux platforms
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Mingli Yu
|
5cec30aae4 |
umoci: Remove the buildpath issue
Pass -trimpath to the build to fix the below build path issue: WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths] Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
01da1f2a29 |
buildah: update to 1.32.0
The new version has an internally stripped binary, so we inhibit the
QA warning.
Bumping buildah to version v1.31.0-159-g4f3d7b0b6, which comprises the following commits:
5151ccff5 .cirrus.yml: run tests relative to the release-1.32 branch
2326d4929 Tag v1.32.0
e90b3502b GetTmpDir is not using ImageCopyTmpdir correctly
ccac7ca0b Run codespell on code
6be719454 Bump vendor containers/(common, storage, image)
9545744e8 Cirrus: Remove multi-arch buildah image builds
206cda149 fix(deps): update module github.com/containerd/containerd to v1.7.6
0191bc671 Split GetTempDir from internal/util
6e6827b27 Move most of internal/parse to internal/volumes
292b429f6 copier: remove libimage dependency via util package
4f3abf936 Add some docs for `build --cw`, `commit --cw`, and `mkcw`
e89fac6c9 Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`
cc619c28d Make sure that pathnames picked up from the environment are absolute
4ee5f020a fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
fd72bbee2 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
754568580 Don't try to look up names when committing images
d5b02e551 fix(deps): update module golang.org/x/crypto to v0.13.0
3fc5274d3 docs: use valid github repo
f94689199 fix(deps): update module golang.org/x/sys to v0.12.0
6ec6f046f vendor containers/common@12405381ff
df1bc3834 push: --force-compression should be true with --compression-format
9c5cde533 Update module github.com/containerd/containerd to v1.7.5
3ebeaa2dd [skip-ci] Update tim-actions/commit-message-checker-with-regex action to v0.3.2
cc9f15f09 docs: add reference to oci-hooks
3454d5b29 Support passing of ULimits as -1 to mean max
f330c77be GHA: Attempt to fix discussion_lock workflow
4942cc908 Fixing the owner of the storage.conf.
f4e43f0e8 pkg/chrootuser: Ignore comments when parsing /etc/group on FreeBSD
2b57cef2b Use buildah repo rather then podman repo
a8bbc9f5f GHA: Closed issue/PR comment-lock test
82069390f fix(deps): update module github.com/containers/storage to v1.49.0
4c4ff3128 chore(deps): update dependency containers/automation_images to v20230816
af3891258 Replace troff code with markdown in buildah-{copy,add}.1.md
e997a966f [CI:BUILD] rpm: spdx compatible license field
a3f2aa3c7 executor: build-arg warnings must honor global args
f6fb75d9d fix(deps): update module github.com/containers/ocicrypt to v1.1.8
5643a7fa8 chroot: `setSeccomp` add support for `ArchPARISC(64)` and `ArchRISCV64`
8428dee36 make,cross: restore loong64
e3cd4d790 Clear CommonBuildOpts when loading Builder status
d68d9a237 buildah/push/manifest-push: add support for --force-compression
3445a775a vendor: bump c/common to v0.55.1-0.20230811093040-524b4d5c12f9
2d6e43071 chore(deps): update dependency containers/automation_images to v20230809
065b95599 [CI:BUILD] RPM: fix buildtags
3964ca9d6 fix(deps): update module github.com/opencontainers/runc to v1.1.9
591b5390d chore(deps): update dependency ubuntu to v22
204c5a1ce chore(deps): update dependency containers/automation_images to v20230807
9ab3b526d [CI:BUILD] Packit: add fedora-eln targets
ed2a501c9 [CI:BUILD] RPM: build docs with vendored go-md2man
5bdb8c70d packit: Build PRs into default packit COPRs
fc7329d7c Update install.md
f6c4ead1b Update install.md changes current Debian stable version name
2254ca208 fix(deps): update module golang.org/x/term to v0.11.0
248f5a2b3 fix(deps): update module golang.org/x/crypto to v0.12.0
ae36f6542 tests: fix layer-label tests
f888b3d84 buildah: add --layer-label for setting labels on layers
239b2a877 Cirrus: container/rootless env. var. passthrough
65c1c9327 Cirrus: Remove duplicate env. var. definitions
978be7796 fix(deps): update github.com/containers/storage digest to c3da76f
62d405771 Add a missing .Close() call on an ImageSource
e588986fa Create only a reference when that's all we need
fe947ed9c Add a missing .Close() call on an ImageDestination
597d30880 CI:BUILD] RPM: define gobuild macro for rhel/centos stream
b9ac8d5e0 manifest/push: add support for --add-compression
d27a82356 manifest/inspect: add support for tls-verify and authfile
071f851da vendor: bump c/common to v0.55.1-0.20230727095721-647ed1d4d79a
512273587 vendor: bump c/image to v5.26.1-0.20230726142307-8c387a14f4ac
3d8616537 fix(deps): update module github.com/containerd/containerd to v1.7.3
c20d0164f fix(deps): update module github.com/onsi/gomega to v1.27.10
2e7dcc143 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
6a236937a fix(deps): update module github.com/containers/image/v5 to v5.26.1
d78f6c2a2 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0
dbc71b7cc Update vendor of containers/(storage,image,common)
331fac670 fix(deps): update module github.com/opencontainers/runc to v1.1.8
9cc5d5e8c [CI:BUILD] Packit: remove pre-sync action
09a1cd698 fix(deps): update module github.com/containers/common to v0.55.2
11cec8523 [CI:BUILD] Packit: downstream task script needs GOPATH
70cb4c7e0 Vendor in containers/(common, image, storage)
173ac7dc9 fix(deps): update module golang.org/x/term to v0.10.0
8b84d9b8a [CI:BUILD] Packit: fix pre-sync action for downstream tasks
97b84029a contrib/buildahimage: set config correctly for rootless build user
cba7b9fae fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
e00845797 Bump to v1.32.0-dev
f704a67a1 Update debian install instructions
4c72c25a2 pkg/overlay: add limited support for FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
7e17ee02a3 |
catatonit: update to version 0.2.0
Main change is the relicense from GPL-3 to GPL-2, which will allow
catatonit (and hence podman) to be used in deployments where the license
previously posed an issue.
Contains the following commits:
7f0c9bb version: release catatonit 0.2.0
fe191ef license: switch to GPLv2-or-later
Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
51a017123d |
k3s: update to v1.28.2
Bumping k3s to v1.28.2, which comprises the following commits:
6330a5b49c Update to v1.28.2 and go v1.20.8 (#8364)
550dd0578f Bump kine to v0.10.3
b3bb7e5a11 update channel for version v1.28 (#8305)
0d23cfe038 Add RWMutex to address controller
cba9f0d142 Add new CLI flag to disable TLS SAN CN filtering
2cb7023660 Use already imported semver, bump kine
f2d0c5409a Add check for support on cp nodes
51f1a5a0ab Review comments and fixes
42c2ac95e2 CLI + Backend for Secrets Encryption v3
e45a674457 Add new encryption test
b967f92785 Replace os.Write with AtomicWrite function
ced330c66a [v1.28] CLI Removal for v1.28.0 (#8203)
62db5fa27c Update to v1.28.1 (#8239)
af50e1b096 Update to v1.28.0-k3s1 (#8199)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
827092c2ec |
docker-compose: fix textrel QA issue
Fix textrel QA issue like below:
ERROR: QA Issue: docker-compose: ELF binary /usr/lib/docker/cli-plugins/
docker-compose has relocations in .text [textrel]
The problem could be fixed by adding -buildmode=pie, as this option has
already been in GOBUILDFLAGS except for mips and riscv32, let's make
use of GOBUILDFLAGS.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
77fc0a2613 |
podman: mark incompatible with mips
Some of the (current) rdepends for skopeo are not compatible with mips. To make this restriction more obvious, we also mark skopeo itself incompatible with mips. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4e602f8949 |
skopeo: mark incompatible with mips
When building skopeo for mips(64), we get the following errors: | go.go:(.text+0xdd07fc): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0830): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0864): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | collect2: error: ld returned 1 exit status Tag the recipe as incompatible with mips to avoid having it built at all. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
b65fe24b8c |
nerdctl: fix textrel QA issue
Fix the following QA issue: ERROR: QA Issue: nerdctl: ELF binary /usr/bin/nerdctl has relocations in .text [textrel] We want to use -buildmode=pie, in order to avoid duplicating codes with go.bbclass, make use of GOBUILDFLAGS. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
96598a7d71 |
nerdctl: upgrade to v1.5.0
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
0e2058840e |
docker-compose: upgrade to v2.20.3
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
03085cfb54 |
docker-compose: fix installation location for multilib
In case of multilib, the location is /usr/lib64/docker/cli-plugins, which cannot be recognized by docker. We should use nonarch_libdir instead. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
86ec0fea15 |
k3s: update to v1.27.5
We refresh one patch, but otherwise, the build is unchanged. Generated via: scripts/oe-go-mod-autogen.py --repo https://github.com/rancher/k3s.git --rev v1.27.5+k3s1 Bumping k3s to version v1.27.5+k3s1, which comprises the following commits: 8d074ecb5a Add RWMutex to address controller f365a9cb98 Add new CLI flag to enable TLS SAN CN filtering 8d6483a59e Update to v1.27.5 (#8236) e31f00f863 Move flannel to 0.22.2 f8727f56d7 E2E test for token coverage (#8184) 84ded911e9 Bump helm-controller/klipper-helm versions 66bae3e326 Bump dynamiclistener for init deadlock fix e83b1ba4aa Fixed the etcd retention to delete orphaned snapshots based on the date (#8177) 561db17a31 chore: Bump Trivy version (#8178) 38a0b91c1a chore: Bump Trivy version (#8150) 7f58a1cb23 Run integration test CI in parallel (#8156) c97211866a Fix for cluster-reset backup from s3 when etcd snapshots are disabled (#8155) 9702f92345 Fix for Kubeflag Integration test (#8154) b2e71553ce Use VERSION_K8S in tests instead of grep go.mod bc332ac667 Use 'go list -m' instead of grep to look up versions 53fc3eef0a add --disable-cloud-controller and --disable-kube-proxy test (#8018) e551308db8 fix for etcd-snapshot delete with --etcd-s3 flag (#8110) 45bc26309f Remove terraform test package (#8136) fd531140e5 Bump kine to v0.10.2 ca7aeed090 Etcd snapshots retention when node name changes (#8099) 23d6842f9a Bump versions for etcd, containerd, runc, kine a0da8eded3 Bump docker/docker to master commit aa76942d0f Add FilterCN function to prevent SAN Stuffing 3515d712a7 Fix typo in terraform/README.md (#8090) a87b183f9c E2E: Support GOCOVER for more tests + fixes (#8080) 46cbbab263 Consolidate CopyFile functions (#8079) 59eec78c62 Fix tailscale bug with ip modes 468bddb59c update stable channel to v1.27.4+k3s1 (#8067) 767b64ba58 Fix coreos multiple installs (#8083) cc9dce5764 Security bump to docker/distribution (#8047) f21ae1d949 Make apiserver egress args conditional on egress-selector-mode 546dc247a0 Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl (#7991) 6d360e6473 Unit test for MustFindString (#8013) 946c8ea842 ADR on secrets encryption v3 (#7938) 780e638099 Update flannel to v0.22.1 e56839b329 Update cni plugins version to v1.3.0 36645e7311 fix update go version doc (#8028) d8ae6ef59b Update to v1.27.4 (#8014) be44243353 Adjust default kubeconfig file permissions (#7978) 0b18a65d4f Revert "Warn that v1.28 will deprecate reencrypt/prepare (#7848)" 58a8deb25d fix image_scan.sh script and download trivy version (#7950) 3eb4e12c3b Don't use zgrep in `check-config` if apparmor porfile is enforced (#7939) 34617390d0 Generation of certificates and keys for etcd gated if etcd is disabled. (#6998) 2eddfe6cf4 Add retry for clone step (#7862) 782a3a1cb4 Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform (#7879) 8405813c12 Fix rootless node password (#7887) 607320d670 Improve for K3s release Docs (#7864) b9a2bf11ee Support setting control server URL for Tailscale. 4ab01f3941 Warn that v1.28 will deprecate reencrypt/prepare (#7848) 9e334153cf add e2e s3 test (#7833) bca0adbca8 Fix code spell check 7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller 324f9ad4da fix e2e startup flaky test (#7839) 72d50b1f7c Add `--data-dir` to the `k3s certificate rotate-ca` cli (#7791) d593c83603 Remove file_windows.go f21a01474d Check if we are on ipv4, ipv6 or dualStack when doing tailscale 0809187cff Adding cli to custom klipper helm image (#7682) c7dec8ed24 Update stable channel to v1.27.3+k3s1 (#7827) 70691a95ee Faster K3s Binary Build Option (#7805) 2215870d5d chore: pkg imported more than once fe9604cac1 Update Kubernetes to v1.27.3 (#7790) d968e64de0 Add commands to logout from tailscale 43611bb5ad Fix the error report b66a118362 Bump helm-controller to v0.15.0 for create-namespace support a5874f855f Remove unused libvirt config c6a6e8ef57 Fix spelling check cc22c80e49 Add issue template for OS validation (#7695) efa86a63e8 Remove unnecessary daemonset addition/deletion (#7696) 7c151d468f add private registry e2e test (#7653) 869e030bdd VPN PoC 1e73bb8967 Run integration tests on E2E changes, ensures correct coverage values 8f9502233a E2E: Inject gocover ENV for k3s commands 4a68fbd8e9 E2E: Use sudo for all RunCmdOnNode 00f3e2413f chore: Bump Trivy version (#7672) dc6c569b98 Shortcircuit commands with version or help flags (#7683) 3a8e98a3b8 Bump docker go.mod (#7681) e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins 5170bc5a04 Improve error response logging 45d8c1a1a2 Soft-fail on node password verification if the secret cannot be created b0188f5a13 Test Coverage Reports for E2E tests (#7526) afc88cec88 check variant before version to decide rpm target and packager fa0dc5900a Use el8 rpm for fedora 38 and 39 (#7664) 7c0a7687c6 add format command on Makefile and remove vendor 9227e0bde2 Bump vagrant libvirt with fix for plugin installs (#7605) b64a226ebd Make LB image configurable when compiling k3s a5928ee137 chore: Bump golang:alpine version 612473755d Add ADR 7b61aacb56 Fix test file list 64a5f58f1e Create new kubeconfig for supervisor use 8748813a61 Use distinct clients for supervisor, deploy, and helm controllers e9958cf070 Bump metrics-server to v0.6.3 and update tls-cipher-suites 93279d2f59 Bump klipper-lb to v0.4.4 0485a56f33 allow coredns override extensions 85e10cf9d2 update channels (#7634) 9543470eb7 Add el9 selinux rpm (#7635) d1b0254b91 Update flannel version 213d7ad499 Revert "Add el9 selinux rpm (#7443)" (#7608) d55ec08675 Add el9 selinux rpm (#7443) fe554fe703 Pin emicklei/go-restful to v3.9.0 91c5e0d75a Fix iptables rules clean during upgrade d069a85fcc Update to v1.27.2-k3s1 (#7575) 290f67c939 Add '-all' flag to apply to inactive units 2b24c9917c Bump alpine from 3.17 to 3.18 in /conformance (#7551) 266926693a Bump alpine from 3.17 to 3.18 in /package (#7550) 9bcfac8b88 Add Rotation certification Check (#7097) 4aafff0219 Wrap error stating that it is coming from netpol cbe8d33c93 Bump containerd/runc to v1.7.1-k3s1/v1.1.7 8f450bafe1 Bump helm-controller version for repo auth/ca support 06296815e6 Adding PITS and Getdeck Beiboot as adopters thanks to Schille and Miworfi for the additions (#7524) 607cbf0ad6 Bump containerd to v1.7.0 and move back into multicall binary 239021e759 Consistently use constant-time comparison of password hashes 9ec1789c21 Bump kube-router version to fix a bug when a port name is used c6dc789e25 Add support for `-cover` + integration test code coverage (#7415) 3982213f06 add kube-* server flags integration tests (#7416) b32bf49541 Bump kine to v0.10.1 c98137ddca Fix token startup test cf9ebb3259 Fail to validate server tokens that use bootstrap id/secret format 7175ebe2be E2E: Startup test cleanup + RunCommand Enhancement (#7388) bbb8ee0b2d Add dependabot label and reviewer (#7423) cedefeff24 Bump cni plugins to v1.2.0-k3s1 a736b4b1b9 local-storage: Fix permission (#7217) 437ad128c7 Migrate netutil methods into /utils/net.go e1d4cff14c Enable FindString to search dotD config files (#7323) 132b41c3bf Add v1.27 channel (#7387) d5f560360e Handle multiple arguments with StringSlice flags (#7380) a3ddff2f29 chore: Bump Trivy version e61fde93c1 Fix MemberList error handling and incorrect etcd-arg passthrough 91afb38799 Retry cluster join on "too many learners" error f1b6a3549c Fix stack log on panic c44d33d29b Fix race condition in tunnel server startup 1ca035accc Add e2e test for --disable-agent 31a6386994 Improve egress selector handling on agentless servers 5348b5e696 Improve error message when CLI wrapper Exec fails bbda54b332 Add longhorn storage test (#6445) 0247794aa9 go generate 0bbc6ad3f0 Bump traefik to v2.9.10 1ac03aad43 Add integration tests for etc-snapshot server flags and refactor /tests/integration/integration.go/K3sStartServer (#7300) ef648b7a5d Bump Runc and Containerd (#7339) 9539147ee1 Bump k3s-root for aarch64 page size fix ad41fb8c96 Create CRDs with schema bc5b42c279 Cleanup help messages (#7369) f076080b2b Bump cri-dockerd (#7347) 87f0dc5dd3 update channel server for april 2023 (#7327) 66fcca66cb ensure that klog verbosity is set to the same level as logrus by repeatedly settting it every second during k3s startup 36699bbd60 Changed command -v redirection for iptables bin check 944f811dc5 v1.27.1 CLI Deprecation (#7311) f2bde63eea Kubernetes v1.27.1 (#7271) 8d0255af07 Bump Trivy version (#7257) 779d5f3aa2 chore: Updated the content of the file "/tmp/updatecli/github/k3s-io/... (#7256) 554ad87c8d chore: Bump golang:alpine version (#7292) 257fa2c54c Update to v1.26.4-k3s1 (#7282) d9f40d4f5b Update install script to clean iptables rules before start 0c683720ad Update kube-router to insert iptables rules right after kubernetes ones 6b51ed478d Fix call for k3s-selinux versions in airgapped environments (#7264) 027cc187ce Add coreos and sle micro to selinux support (#6945) 30638072c9 Update klipper lb to v0.4.2 (#7210) 6c394abb32 Add make commands to terraform automation and fix external dbs related issue (#7159) 3e3512bdae Updated kube-route version to move the iptables ACCEPT default rule at the end of the chain d95980bba3 Lock bootstrap data with empty key to prevent conflicts 12091fc724 Bump actions/setup-go from 3 to 4 2992477c4b Debounce kubernetes service endpoint updates ece4d8e45c Fix tests to not hide failure location in dummp assert functions e54ceaa497 Fix issue with stale connections to removed LB server 5dece799df Update remotedialer to silence errors when disconnecting 4182dcaac8 [UpdateCLI] Improve Klipper Helm and Helm controller bumps (#7146) 127cea1f3f Upgrade helm-controller to v0.13.3 (#7209) d2e04b826a Don't apply hardened args to agent (#7089) d388b82d25 go generate de80c07053 Ensure that loopback is used for the advertised address when resetting b010db0cff Ensure that loopback is used for the advertised address when resetting 877247a691 Bump runc to v1.1.5 eb982bbbde Bump etcd to v3.5.7 cee3ddbc4a Bump Local Path Provisioner version (#7167) ddd9665fed Improve Trivy configuration (#7154) fdf994dc35 [UpdateCLI] Improve workflow (#7142) 37b3f4d25c Run go generate in local-path-provisioner Updatecli pipeline (#7181) 8ec7d5e6b0 fix_get_sha_url (#7187) a99376663b Drone Pipelines enhancement (#7169) fb491f5ebf Update stable channel to v1.26.3+k3s1 (#7161) d13ee64403 Enhance `k3s check-config` (#7091) 01ea3ff27b Update flannel to fix NAT issue with old iptables version c97370be6f Clean E2E VMs before testing (#7109) 7c32f88fec Pin golangci-lint version to v1.51.2 (#7113) dc4a148725 Update to v1.26.3-k3s1 (#7108) 561ec056c1 Drone: Cleanup E2E VMs on test panic (#7104) 9980504196 Fix to Rotate CA e2e test (#7101) 85b261096c Add automation for Restart command for K3s (#7002) 19ac384929 Remove Nikolai from MAINTAINERS list (#7088) 7d2f997b3e Added multiClusterCIDR E2E test 262cd7de0a Added IPv6 check and agent restart on e2e test utils 15ee88964b Added multiClusterCidr feature 822ee79eb8 Remove deprecated nodeSelector label beta.kubernetes.io/os (#6970) a912902aa7 Add missing kernel config checks (#6946) 8503d0143c skip all pipelines based on what is in the PR (#6996) 977a85559e Add support for cross-signing new certs during ca rotation 68fcb48a35 Update/rename certs.sh; add default cert rotation script b7f90f389c Wait for kubelet port to be ready before setting (#7041) a45d081027 update stable version in channel server (#7066) d218068f34 Adds a warning about editing to the containerd config.toml file (#7057) c259403af1 Bump various dependencies for CVEs (#7044) e098b99bfa Update flannel and kube-router (#7039) c78dc4db71 Add flannel adr (#6973) 522ad1e697 Add E2E to Drone (#6890) ea094d1d49 Update to v1.26.2-k3s1 (#7011) ee28c20b62 Bump kine to v0.9.9 cbe4bcfeee Add test for filterByIPFamily cc333d8d0c Fix ServiceLB dual-stack ingress IP listing 2156015521 Improve default umask for certs.sh 23d98cec22 Fix CACertPath stripping trailing path components 0c302f4341 Fix etcd member deletion 9efa0797b7 Don't default to local K3s for startup test (#6950) 7739c8b97e Update flannel to v0.21.1 b8e69712a3 Updated flannel version to v0.21.0 3d146d2f1b Allow for multiple sets of leader-elected controllers 0d416d797d Wait for server to become ready before creating token 290d7e8fd1 Fix access to hostNetwork port on NodeIP when egress-selector-mode=agent ddcc4d4034 go generate c6d0afd0cb Check for existing resources before creating them 32d62c5786 Use default address family when adding kubernetes service address to SAN list a92f163c9d Add NATS to the list of supported data stores (#6876) b43dd7746d Add CI test c900089e88 Add ADR 87f9c4ab11 Ensure that node exists when using node auth 992e64993d Add support for kubeadm token and client certificate auth 373df1c8b0 Add support for `k3s token` command 7d49202721 Ignore value conflicts when reencrypting secrets (#6850) be7f751863 Add e2e tests for CA cert rotation 8a6404f97c Add basic test for custom CA certs 9b6b72941f Clarify ADR based on design review feedback f13768c247 Add ADR 215fb157ff Add `certificate rotate-ca` to write updated CA certs to datastore 3c324335b2 Add utility functions for getting kubernetes client 58d40327b4 Fix CA cert hash for root certs 0919ec6755 Ensure cluster-signing CA files contain only a single CA cert 1ec242d816 Add example certificate generation script 7e59376bb9 Fix check for (open)SUSE version (#6791) ee007bc7cf Bump deps: trivy, sonobuoy, dapper (#6807) bb353f5d2b Fix reference to documentation (#6860) 7cad3db251 E2E: Consoldiate docker and prefer bundled tests into new startup test (#6851) 32086717fc Ensure flag type consistency (#6852) 750cff561d Bump vagrant boxes to fedora37 (#6832) 9fcc7c0db8 Fix cronjob example (#6707) 0d4caf4e24 Wait for cri-dockerd socket (#6812) 1c6fde9a52 go generate 369b81b45e Honor Service ExternalTrafficPolicy 94d1a87509 Bump wrangler version for EndpointSlice support 86e36225f5 Consolidate E2E tests and GH Actions (#6772) 808c71a63e Add Ayedo (#6801) 75f77ab951 E2E Rancher and Hardened script improvements (#6778) f0655f153e update stable channel to v1.25.6+k3s1 (#6828) 3cb6fa5cc7 Set cri-dockerd version at build time f72649d1bd Bump cri-dockerd 89f7062431 Add build tag to disable cri-dockerd f10af367c3 Update to v1.26.1-k3s1 (#6774) f19892c2d2 drone correct plugins/docker tag supporting linux/arm (#6769) 291f8bfe00 Slow dependency CI to weekly (#6764) 2007cdd54f generate report and upload test results (#6737) 7bbcac92fd Bump download action to v3 (#6746) d71ab6317e Update stable to 1.25.5+k3s2 (#6753) f54b5e4fa0 Fix CI tests 23c1040adb Bugfix: do not break cert-manager when pprof is enabled (#6635) a4549cf989 chore: Bump golang:alpine version (#6683) 8340b54309 Pass through default tls-cipher-suites cc3583399a Add explicit permissions to workflows (#6700) d85952d6a0 Bump ubuntu from 20.04 to 22.04 in /tests/e2e/scripts (#6686) 674a05478f Containerd restart testlet (#6696) d78e490716 Bump containerd to v1.6.15-k3s1 e53500f37f Bump alpine from 3.16 to 3.17 in /conformance (#6687) c7151e8b61 Bump alpine from 3.16 to 3.17 in /package (#6688) 3cafc8e6dd RIP Codespell (#6701) fd8481a29d Adjust e2e test run script and fixes (#6718) a298bfdb18 Add jitter to scheduled snapshots and retry harder on conflicts f0ec6a4c12 Exclude December r1 releases from channel server bc6bebc998 Bump containerd to v1.6.14-k3s1 454440f9a3 Add Dependabot config for security ADR (#6560) 870d9c32b0 Fix OpenRC init script error 'openrc-run.sh: source: not found' (#6614) 97f162291a Change Updatecli GH action reference branch (#6682) beafd9eaff Update stable to v1.25.5 (#6618) 8f28de259c Add initial Updatecli ADR automation (#6583) 9e97a3b4aa Current status badges (#6653) fae8817655 Bump k3s-root version to v0.12.1 0c9b43746b Preload iptable_filter/ip6table_filter f8b661d590 Update to v1.26.0-k3s1 (#6370) b5d39df929 Deprecation of `etcd-snapshot` command in v1.26 (#6575) d723775792 Remove deprecated flags in v1.26 (#6574) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7ed351dbdc |
docker: drop docker-ce recipe
docker-ce is now the same as moby. We've had a warning for quite some time now, so it is time to remove the recipe. We don't RPROVIDE docker-ce in the docker-moby recipe as part of this removal, as all docker packages have been RPROVIDING "docker" regardless of the variant. images and packagelists should be using that provider, not docker-moby and docker-ce Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
103695c7b9 |
docker-moby: update to 24.0.6
Bumping moby to version v24.0.6, which comprises the following commits:
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
1d983e2e8a update golangci-lint to v1.54.2
d2e9a19358 CONTRIBUTING.md: update links to golang docs and blog
73f6053bb3 api: swagger: update link to Go documentation
de13951b9d docs/api: update links to Go documentation
377af4c9b4 Dockerfile: Windows: update Golang download domains to cut down redirects
088cec8f0f hack: update link to GOPATH documentation
ed2f5d1d85 c8d/builder: Don't drop fields from created image
1d10e8633d daemon: Handle NotFound when deleting container lease
63422515ba c8d/run: Allow running container without image
49671250f6 c8d/commit: Don't produce an empty layer
b83f5a89f4 Don't return an error if the lease is not found
4ac2355d62 hack: use long SHA for DOCKER_GITCOMMIT
ac2a80fcc3 ci(bin-image): clean up metadata
5eef5a7f59 ci(bin-image): clean up env var handling
aaf84dd4cf remove Dockerfile.e2e
a99e62fa3d distribution: show image schema deprecation on all registries
e239799583 distribution: update warning for deprecated image formats
bb22b8a418 ci(bin-image): check repo origin
fb6784bdf0 gha: set 10-minute timeout on "report" actions
74bf46aea6 c8d/diff: Reuse mount, mount parent as read-only
b76a0c7d00 c8d/export: Use ref counted mounter
54953f2f5a integration: Add test for not breaking overlayfs
3897724f4a volume/local: Fix debug log typo
0c131f58ba ci(bin-image): populate DOCKER_GITCOMMIT, take 2
448ae33f87 ci(bin-image): populate DOCKER_GITCOMMIT
3ce0dc7e35 bakefile: Remove default value of DOCKER_GITCOMMIT
600aa7b7a5 c8d/inspect: Ignore manifest with missing config
5d2c383d72 remove s390x and ppc64ls pipelines
15bd07b4fd update runc binary to v1.1.9
cc39fb9f6b Integration test for capabilities
bf2b8a05a0 Do not drop effective&permitted set
e67f9dadc6 hack/make/.binary: use with-go-mod.sh
314b84b023 hack: enable Go modules when building dockerd and docker-proxy
72947f5022 hack: use Git-free ROOTDIR convention
7e7bc0f1bc vendor: github.com/containerd/containerd v1.6.22
5f0df8c534 vendor github.com/containerd/ttrpc v1.1.2
25b709df48 windows: fix --register-service when executed from within binary directory
b7d1e98ae7 libnet/d/bridge: Allow IPv6 ICC from any IP address
749e687e1b integration/windows: Unskip some kill tests
128838227e hack/test: Don't fail-fast before integration-cli
b7c5385b81 update to go1.20.7
4cd50eb1ed TestDaemonProxy: use new scanners to check logs
a49bca97df Fix daemon proxy test for "reload sanitized"
d6536d44e9 TestDaemonProxy: check proxy settings early
a6f8e97342 Improve test daemon logging
Bumping docker-cli to version v24.0.6, which comprises the following commits:
fab55e13c cli/command/system: fix "docker events" not supporting --format=json
d3485b9e9 cli/registry: client.iterateEndpoints: remove check for APIVersion1
613380299 cli/registry: fix client.pullManifestList not de-referencing manifest
b83959e00 force TestNewHistoryCommandSuccess to use UTC timezone
28a08a22b un-skip history test and fix golden mismatches
8e0393932 update cli-docs-tool to v0.6.0
efd052eb8 docs/reference: run.md: remove stray whitespace
d9770a962 adding -c option for docker run/build in manpages
6efe73abe cli/command/manifest: update link to Go documentation
d97753101 man: update links to Go documentation
e9f843bf0 docs/reference: update links to Go documentation
cfbaee468 CONTRIBUTING.md: update links
daeee4697 update flag-description for --cgroup-parent
08ad72160 Update docs/command output for volume pruning
3c4fe7b3e docs: add missing docs for "DOCKER_TLS" env-var
dc45bcc99 Stop slowing bash init by caching plugins path slowly
710dd00e9 replace dockerfile/dockerignore with patternmatcher/ignorefile
bf632329d vendor: github.com/moby/patternmatcher v0.6.0
3c6c0bce1 cli/registry/client: set actions when authn with token
65655cc26 cmd/docker: areFlagsSupported: don't Ping if not needed
11606268f login: Add message about using PATs
a8987063b docs: document special host-gateway value for add-host
c0e376854 update to go1.20.7
We refresh one patch to adapt to the new build script structure.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
81fb357125 |
crun: update to v1.8.7
Bumping crun to version 1.8.7-32-gf8fa497, which comprises the following commits:
76b80ae fix random errors
d602fc0 build(deps): bump actions/checkout from 3 to 4
d348000 linux: fix check for oom_score_adj
382edc9 wasmer: inherit_stdout instead of capture
5057f98 wasmer: use latest wasix API
f60a903 linux: do not join already joined namespaces
46ef792 lua: fixed luarocks package directory structure
0e506e5 linux: add support for ridmap mount option
44e51fa linux: honor rbind
f6f92b8 utils: tighten check in check_fd_under_path()
58fa192 fix typos in comments
9e66109 linux + cgroup-systemd: fix error return values
668f5d5 features: Support mountExtensions
1836bed lua: rename variable to fix spelling
2779f02 linux: support arbitrary idmapped mounts
08def0a linux: move function definition forward
53a9996 NEWS: tag 1.8.7
a867e35 lua: fix missing dereference of pointer
c90c3ca cgroup-systemd: fix error return value
b6c8708 tests: Update expected features output
7c524e7 features: Fix annotations formatting
f0054ea src/libcrun: Mark we implement up to OCI 1.1.0
59e2b84 build(deps): bump uraimo/run-on-arch-action from 2.5.0 to 2.5.1
3a50988 use just enough arg_unused to silence -Wunused-parameter
9864f09 Packit: enable eln builds, enable wasmedge on all non-eln builds
cf72f8b container: fix error return value
88441d9 linux: simplify setns with pidfd
261a4fa mount_flags.c: regenerate
f9f4e06 mount_flags.perf: add get_mount_flags_from_wordlist
387d3ac packit: Build PRs into default packit COPRs
907d032 libcrun: handle SIGWINCH by resizing terminal_fd
57a252b nix: rename `default-nix` to `default-amd64.nix`
5224aa2 build-aux: simplify `release.sh`
a7102e8 github: simplify `release.yml`
8908248 Add support for riscv64 arch
31eeb19 cgroup: fix error return value
fec9b0f RPM: include criu dependencies
02ee7c4 linux: do not create error twice
c786d4c linux: simplify error handling
c972772 linux: do not write twice errors
74a3874 linux: use helper functions instead of custom read/write
35a0166 linux: define helper to ack on the sync socket
c3e518e libcrun: drop symbol for crun_make_error
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d79b200eda |
cri-tools: update to v1.28.0
Bumping cri-tools to version v1.26.0-318-gd5f3f2df, which comprises the following commits:
71beb1da Fix containerd tests
7d7fd9bb add --pinned flag for `crictl images`
f74240d3 Bump github.com/google/uuid from 1.3.0 to 1.3.1
25ae10aa `crictl images -v` prints Pinned when image is pinned
163da8b9 Move events streaming test to own suite with BeforeEach and AfterEach
5461a963 Validate template
aa7bd9a9 Fix tests
88b0bedc Update cmd/crictl/events.go
3a881ad2 Address review comments
459ff574 Remove the Kubernetes incubator reference from README.md
9d084877 Vendor Kubernetes v1.28.0
b703e6a9 Add crictl events command
7f5104d9 Bump latest version in README.md
552f7387 Use previous and latest tag from git in release script
db0bc1a3 Vendor Kubernetes v1.28.0-rc.1
2b86addd Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9
26d35da6 Fix seccomp value in test
a8a71d9f statsp: enhance description
e373e4a8 crictl: add metricsp command
5b337756 Dedup test code and activate linter
ba784045 Bump golang.org/x/net from 0.12.0 to 0.14.0
86ca3498 Bump golang.org/x/sys from 0.10.0 to 0.11.0
306ebdfa crictl: deduplicate display boilerplate
16975aba Make `haircommander` an approver
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5569d65881 |
cri-o: update to release 1.28.0
Bumping cri-o to version v1.28.0, which comprises the following commits:
23dec8c7d version: bump to v1.28.0
c104a0608 build(deps): bump github.com/containers/storage from 1.48.0 to 1.49.0
5524b65d3 add info about pulling image before doing the tutorial
922573ffe build(deps): bump crate-ci/typos from 1.16.6 to 1.16.8
67724cb6f build(deps): bump github.com/containers/podman/v4 from 4.6.0 to 4.6.1
a2d46ae01 build(deps): bump github.com/containers/ocicrypt from 1.1.7 to 1.1.8
7e3522a9c Added a flag internal-repair
39ea33e29 feat: Added a feature to check at reboot time shutdown was clean or not, If it was not clean then apply repair logic
c5def7f72 build(deps): bump crate-ci/typos from 1.16.5 to 1.16.6
b873985b8 Add `conmon` to ppc64le static bundle
3e3f70c22 Update install.md
9c3d622a6 Vendor Kubernetes v1.28.0
a7f160b49 build(deps): bump crate-ci/typos from 1.16.3 to 1.16.5
d2fa125a4 Update nixpkgs and use overlay
80fdf486e Add containers_events_dropped_total metric
e19002329 Fix indentation in installation instructions
94f5e75c8 Update cri-tools to v1.28.0
a8d7c29e1 Vendor Kubernetes v1.28.0-rc.1
23f51c3e1 Update OWNERS_ALIASES
f1bb83127 Update runc to v1.1.9
581a388ac build(deps): bump crate-ci/typos from 1.16.2 to 1.16.3
5022d956a test/image.bats: add test for checking crun-wasm workflow
05ef7a189 *: add platform_runtime_paths to RuntimeHandler
6a0c4b9ec build(deps): bump github.com/containers/image/v5 from 5.26.1 to 5.27.0
f18d122e8 Revert "devices: fill the FileMode field in spec"
8937245b0 build-static: misc fixes needed for 1.25.4 generation
abfc2d616 build(deps): bump crate-ci/typos from 1.16.1 to 1.16.2
3f06640cf contrib/test/ci: add crun-wasm
3a9232c62 build(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0
bb98e2b2a Set mount type HostToContainer for mounts that include container storage root
309d045ec add script bumping
927843ea4 test/metrics: simplify oom test, add debug
64fdfbcaa build(deps): bump github.com/opencontainers/image-spec
15a586215 build(deps): bump github.com/opencontainers/runtime-spec
f30ef84ad build(deps): bump github.com/onsi/gomega from 1.27.8 to 1.27.10
ecd7f9a3e cri: implement RuntimeConfig rpc
2463fdf78 vendor: update Kubernetes to v1.28.0-beta.0
edc5ece7b build(deps): bump github.com/containers/podman/v4
ef1653c8e internal/config/seccomp: Sync call signature of (*Config).Setup
67b43c4b5 internal/config/cgmgr: add non-linux stubs
1dffd7e71 internal/config/node: add non-linux stubs
ecb372986 internal/config/device: add non-linux stubs
10168b534 internal/config/nsmgr: add non-linux stubs
8edfbfd45 internal/config/capabilities: add non-linux stubs
2bd7fcbd8 internal/config/apparmor: add non-linux stubs
da69490d0 oci: update unit tests for new stop code
be5bac87b oci: simplify stopping code
7371b1e77 oci: don't return ErrContainerStopped from StopContainer
c0e34644c build(deps): bump github.com/containers/buildah from 1.31.0 to 1.31.1
41b13e28d Fix ImageRef field for containers to default to an image ID
930f49889 runc: 1.1.7 -> 1.1.8
b563cd728 Add Adobe to ADOPTERS.md
3bc609eb1 build(deps): bump sigs.k8s.io/release-sdk from 0.10.2 to 0.10.3
4e0f88970 build(deps): bump github.com/opencontainers/runc from 1.1.7 to 1.1.8
e6af91f6a oci: change IsAlive to Living
320671ed2 devices: fill the FileMode field in spec
126bd4ca9 build(deps): bump crate-ci/typos from 1.16.0 to 1.16.1
b79391fe1 Update bats to v1.10.0
5e86a5261 build(deps): bump github.com/go-chi/chi/v5 from 5.0.8 to 5.0.10
92e1d1910 Bump vendored Podman to v4.6-rc2
a3d229acf internal/factory/container: get CDI devices from CRI field.
21181672b Add Debian 12 as a supported OS to the install doc
b7c826d38 build(deps): bump github.com/containers/common from 0.55.1 to 0.55.2
151572a56 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
c0c7ce5ae Add OpenSSF best practices badge in favor of CII
0d92db47e build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0
70e5b76ca build(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2
79859a9d9 build(deps): bump crate-ci/typos from 1.15.10 to 1.16.0
7ebe2f614 Update vendored Kubernetes to v1.28.0-alpha.4
c28303fad container_test: fix "AddCapabilities ALL" test case
e176397c8 vendor: drop podman replace and update runc
eff07b834 Run irqbalance tests in serial within the actual suite
059dce220 build(deps): bump crate-ci/typos from 1.15.9 to 1.15.10
d43833d61 Bump bats in ci jobs to latest release
66ac754c7 build(deps): bump github.com/containers/buildah from 1.30.0 to 1.31.0
59952bf00 build(deps): bump github.com/containers/common from 0.54.0 to 0.55.1
ff3bb58db build(deps): bump crate-ci/typos from 1.15.7 to 1.15.9
4fe0b8164 build(deps): bump github.com/containers/image/v5 from 5.26.0 to 5.26.1
cb51739b1 server: use platform struct to set OS details
bac73aa42 Pre-check request values on container creation
5a85cfc95 Remove non existent Debian builds from install instructions
73cf5597a test: fix make mockgen test failure
dfdd2acde vendor: update release-sdk to v0.10.2
abcf50239 build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.1
9c78a1e23 vendor: update containers/storage to v1.48.0
87b126342 build(deps): bump github.com/intel/goresctrl from 0.3.0 to 0.4.0
8a9d4ef17 vendor: update containers/common to v0.54.0
cb247caf5 build(deps): bump github.com/containers/image/v5 from 5.25.0 to 5.26.0
ad3dd698b build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0
b8bb276a0 build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
0882a1dcb build(deps): bump crate-ci/typos from 1.15.6 to 1.15.7
6b9e49d3b Try to find `CONTAINER_CNI_PLUGIN_DIR` by binary lookup
40bbe8218 vendor: fix vendoring issue
f6317807c typos: add WRONLY to the list of extend-ignore-re
6a10113c7 build(deps): bump crate-ci/typos from 1.14.12 to 1.15.6
1062a4cd3 build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0
91d6bd38b vendor: bump github.com/onsi/ginkgo/v2 to 2.11.0
7f66c1428 build(deps): bump cachix/install-nix-action from 21 to 22
d0526337e vendor: bump github.com/urfave/cli/v2 to 2.25.7
7a2b9a220 vendor: bump golang.org/x/sync to 0.3.0
ba0751938 vendor: bump golang.org/x/net to 0.11.0
9f0680cde vendor: bump github.com/prometheus/client_golang to 1.16.0
67a132dc6 runtime handler hooks: run default hook when container stops gracefully
49d9efe8b vendor: bump github.com/stretchr/testify to 1.8.4
001733570 vendor: bump github.com/sigstore/rekor to 1.2.1
d274dd121 Use a variable to manage the version of kata used for testing.
4a7d0857b Update supported version and variable guide for adding repository
0534d7eff governance: tweak voting behavior
bfc7cf55a Use kata 3.0 for testing
db4b8eaab kata tests: Enabling more than one test file for kata tests.
0f08aeb6f kata tests: Update list of skipped tests for the ctr.bats file
4310e3342 Modify ansible files to re-enable kata tests
8224bd8a5 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
f84eb7874 Move reload watcher into `Server`
e3b7406b9 Update golangci-lint and config
159aaf6c6 utils: make this package build on non-linux platforms
c088d69aa fix function name in comment
c702bb78a build(deps): bump DavidAnson/markdownlint-cli2-action from 10 to 11
098fbebf7 Add a test for log linking
5620764ae linklogs: add support for symlinking container directory
5d7ecfe4b Add support for linking pods logs
a7d314bea build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
e614bc756 server: ensure pod labels are present
d84cc85c5 build(deps): bump github.com/BurntSushi/toml from 1.3.1 to 1.3.2
72b735603 OCPBUGS-14750: Pod termination must succeed when a hook fails
98c43d537 Add OSFF scorecard action
85c7e712e main: Added a call to GarbageCollect
ccb91bc8a docs: fix eol test
08f7c0776 build(deps): bump github.com/onsi/gomega from 1.27.7 to 1.27.8
f2feb7c6f Use staging k8s.io/kubelet/cri/streaming package
72011b3c4 Add support for namespaced signature policies
3939fba97 Apply markdown linting, cleanup docs and fix broken links #6890
96e6aed74 Apply markdown linting on the tutorials folder #6890
2ead2413a Apply markdown linting on the contrib folder #6890
5d7b64018 Add markdown linter action #6890
d58f408f5 test: fix timeout metric test
5f74e7994 build(deps): bump github.com/BurntSushi/toml from 1.3.0 to 1.3.1
c87b11115 server: do not take lock to populate pid in container status and inspect
28b34889a build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
b373909cf build(deps): bump github.com/containerd/containerd from 1.7.1 to 1.7.2
d456a11ef crio: deprecate config migration
259e7980c metrics: add metric for resource stalled at stage
85a4ba091 build(deps): bump crate-ci/typos from 1.14.11 to 1.14.12
75aacdb04 Drop support for path based seccomp profiles
e18e2e90a test/helpers: rm useless code
b7d1c2e61 test/helpers: use cli to set container dirs
459372c24 test: adapt for sched_load_balance disable after stop
6da8e46b1 runtime handler hooks: add DefaultCPULoadBalanceHooks
23b9179f9 server: call hooks and NRI in stopContainer
e1c68ea2a Update `README.md` version table
56ac8ac79 crio: remove DefaultsPath config feature
b2a20a418 server: call hooks on infra container creation
2efd04aa4 high perf hooks: workaround libcontainer quirk when disabling cpu quota
9ec701691 cgmgr: export CrioPrefix and use containerCgroupPath more
775690b1e build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7
cf7e0946e tests/timeout: skip for conmon-rs
c1c431836 ci/gha: add space-at-eol check, fix existing ones
0a35354c4 build(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0
65792546b ci: bump shellcheck to 0.9.0
6b2f35e2c test: fix a few cases of SC2086
d6b793c46 contrib/kube-local/kube-local: rm unreachable code
b6014826c test/copyimg: use log.Fatalf
587e3d595 test/*.bats: rm useless echo "$output"
bdb765635 test: rm explicit $status checks
933e33c1c test: simplify assigning IDs
22978429a test/status.bats: simplify exit code checks
ff7bc1b52 test: simplify non-zero exit status checks
0bf509d35 test/cdi.bats: rm run_cmd, use run
21e5dcebe test/nri.bats: fix checking exit code
2fab13028 test/README.md: fix wrong bats example
9c2fcb3bd test/*bats: drop fail()
84ee0c931 Fix using ! in bats tests
045c026da test/timeout: fix "dup ctr" test
1da9bf5f7 ci: require bats 1.9.0
c5a1c1b1e test: separate var setting and img preload
7b9e5201b ci: bump bats to 1.9.0
9ad33da53 build(deps): bump github.com/containers/podman/v4 from 4.5.0 to 4.5.1
2604665cc Update nix and nixpkgs
792a5d0ad test: limit number of parallel jobs
1cc1958de test/cgroup: fix for cgroupfs
aa86e94f0 ci/gha: fix double caching
47c13e037 [FEAT] Add new parameter disable_hostport_mapping in CRI-O
df7df847d build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
f7f085f6f Makefile: Remove GOPATH references
1eeaad851 build(deps): bump cachix/install-nix-action from 20 to 21
7cc3e206c build(deps): bump github.com/onsi/gomega from 1.27.6 to 1.27.7
3b5c9f115 build(deps): bump crate-ci/typos from 1.14.10 to 1.14.11
7003312b0 OCPNODE-1286: Add a CI job to run cri-o e2e tests by enabling the evented pleg feature
47958dc0b Update crun to v1.8.5
9b6a4cff7 Wrap CRI errors on image pull
defdf1c9e build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
6a3ee4e6b docs: update cri-o podman doc and remove stale information
7ed2cfc7f deps: bump runc to 1.1.7
f59c1f72a sandbox: Handle PodLinuxOverhead and PodLinuxResources CRI fields
f5e58c0ea build(deps): bump crate-ci/typos from 1.14.9 to 1.14.10
1009668bb build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
42e0f7fac go.{mod,sum}, vendor: update NRI.
d97ac8a10 contrib/test: reenable Statefulset Basic tests
3761965f8 contrib/test: re-enable block volmod tests
003edc26c high perf hooks: disable CPU quota with libcontainer as a pre start hook
a875ef486 test: add test for cpu-quota.crio.io
e1c3cf960 Check and fix typos in CI
fa57ffd3e *: switch to go-chi/chi mux
6330b1d5f build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
786109a6e build(deps): bump github.com/containerd/containerd from 1.7.0 to 1.7.1
ecc712850 Support image policy verification error
ccaef6a7d build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
484870532 build(deps): bump sigs.k8s.io/release-utils from 0.7.3 to 0.7.4
3480e9efa Fix GitHub action `bundles` test
937ed8cf6 - Convert status cli as a subcommand of crio - Moved commands to the internal criocli package and used them in the crio and crio-status binaries - Adding the status subcommands directly to the binary
a247c52d9 pkg/config: update the description for templateStringCrioImagePinnedImages
4fadec5f1 internal/storge: fix CompileRegexpsForPinnedImages test case
5e751fda3 vendor: fix vendoring
5ecc82e6f contrib/metrics-explorer: fix nested modules
640624ec9 Update CNI plugins to v1.3.0
9fc177ed4 build(deps): bump golang.org/x/net in /contrib/metrics-exporter
8b230dec7 clients connected to container event stream now receive the same data
3fd71bdc9 vendor: fix CI due to incosistent vendoring
20fd7770e fix kubectl version in bug report template
21b47b11c *: update sandbox/pause image to 3.9
edbd4890f internal/storage: add sandbox/pause image to the list of pinned_images
b0531365f build(deps): bump github.com/containernetworking/plugins
22ad8957b Changes to build binaries for ppc64le architecture.
32ec246ba Update README.md and associated files
f10ea341d build(deps): bump golang.org/x/net from 0.9.0 to 0.10.0
c9bb988d1 *: fix warnings related to gosec
0e65290c4 .github/worflows: add go vulnerability management check for cri-o
f9abf50c9 pkg/config: reload pinned_images when the new config is provided
bbe9a7a2c *: add support for pinned_images in crio configuration
dfcf222c3 refactoring vars
386509caf Use native crierrors package for registry unavailable
a90d00103 build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
16ab25339 Vendor latest Kubernetes master
6a095aef7 build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0
5c064914f build(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0
639b6dddf OWNERS: add sohankunkerkar to cri-o-reviewers
4477a804b tests: add a fake pinns call to delay things and cause the timeout
6fa761497 tests: use crictl binary directly when checking its capabilities
1ff3303df cni: configure cgroupPath capability arg
e52e63a41 vendor: bump ocicni to tip
914763fb1 Remove vendor specific changes
08cd56fc9 Migrate image registry to registry.k8s.io
3311658af build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
02fe074f2 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4
0b8a2c068 build(deps): bump github.com/sigstore/rekor from 1.1.0 to 1.1.1
660b63bd7 cgmgr: set sched_load_balance to disabled on sandbox cgroup
5a1707e4c test/pod.bats: update to current setup
f83a4faba cgmgr: create cgroups for systemd cgroup driver for dropped infra pods
f21e178f8 build(deps): bump github.com/prometheus/client_golang
bf23f5c01 Support `RegistryUnavailable` type
e80464e07 Update generated docs
ed9c419e7 OWNERS: allow cri-o reviewers to approve dependabot PRs
58c101634 build(deps): bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3
a4fc119af .github/workflows: remove auto-approve workflow
a0009cb25 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
541b6563d Extend cpu-c-states.crio.io annotation to add max latency
2417374a6 build(deps): bump k8s.io/klog/v2 from 2.90.1 to 2.100.1
249c340d3 contrib/test/ci: fix the bin folder location for cri-tools
cf30845e7 #6833 user ns: Fix segfault while constructing id mappings
38774e14a Use ImageRef instead of ImageName for restore
1f224d1e0 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
7c6676f02 contrib/test/ci/build: use `force:yes` while linking crictl/critest
c9cc1529f .github/workflows: fix the github_token field
a1c09ad99 .github/workflows: fix the token field
30ddd6d89 Fix events generated by Evented PLEG
b8d8ff14b Update c/common to v0.53.0
b34038f8f build(deps): bump actions/setup-go from 3 to 4
4c828dc48 build(deps): bump github.com/opencontainers/runtime-spec
928d5d49c build(deps): bump github.com/prometheus/client_golang
e806005d6 test/network: skip flaky test running on a node with cgroupv2
e914f0e15 test: combined oom test to avoid CI flake
d5048e7ff test/seccomp: fix the syscall
473ee6b73 contrib/test/ci: remove duplicate code
a1c6ae7e4 test/*: consolidate images used for integration tests
25fb4fa76 build(deps): bump github.com/Microsoft/go-winio from 0.6.0 to 0.6.1
a950c837d Download more dependencies instead of vendoring
839bd1203 build(deps): bump github.com/containers/conmon-rs from 0.5.0 to 0.5.1
edbe9c27e build(deps): bump github.com/go-logr/logr from 1.2.3 to 1.2.4
e53dcc003 Stop vendoring release notes tool
1c26776cb .github/workflows: auto approve dependabot PRs
e967a178c user ns: fix segfault when host id mapping is empty
19c0b4d7b server: fix failing tests
edf6a88a9 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1
7a612bc4b Allow restoring of containers with different names
86b36ee6e build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2
6da5b1272 build(deps): bump actions/stale from 7 to 8
1c1cfb92a Fix Flannel PodCIDR in kubeadm tutorial
bac3a79b6 adding support for configmap namespace
603f176a0 Add debug to identify when a relabel was not requested
f9fa10915 Update tutorials/debugging.md
75c8b181b Added documentation to force the Go garbage collector for CRI-O
11f5c4326 Remove remnants of CONTAINER_MANAGE_NS_LIFECYCLE
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13fe43d1e1 |
containerd: update to 1.7.5
Bumping containerd to version v1.7.5-8-g86dc86e62, which comprises the following commits:
ed4bac11e Blockfile: Enlighten blockfile copy on Darwin
4d1cfbbdd Revert "log: define G() as a function instead of a variable"
a34e93241 make repositories of install dependencies configurable
b449440a4 CRI: Support Linux usernames for !linux platforms
503ab21bf go.mod: github.com/containerd/continuity v0.4.2
93b23eb10 Prepare release notes for v1.7.5
fb1292c8d Bump version to v1.7.4
7a0cae3ca [release/1.7] Prepare release notes for v1.7.4
537d7526e integration: issue7496 case should work for runc.v2 only
0f4885c16 Add configurable mount options to overlay
8804a27d7 feat: make overlay sync removal configurable
5add172be Vagrantfile: add strace tool
207e28f36 integration: add ShouldRetryShutdown case based on #7496
b4f480fb3 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode
88ff575c5 pkg/cri/server: fix leaked shim issue
9f61dfb7c integration: add case to reproduce #7496
2a9ae3c51 log: swap logrus functions with their equivalent on default logger
01445bb73 log: add package documentation and summary of package's purpose
932795f45 log: make Fields type a generic map[string]any
707ca94d8 log: add log.Entry type
0a79e67e4 log: define OutputFormat type
dbbe28b7d log: define G() as a function instead of a variable
93b6cb784 log: add all log-levels that are accepted
e8e086e02 log: group "enum" consts and touch-up docs
7aa4f8fdc log: WithLogger: remove redundant intermediate var
bfdce4ce4 log: SetFormat: include returns in switch
6621e0888 log: remove testify dependency
df76aaede removes/docker: remove unnecessary conversion (unconvert)
1c2dd5198 Remove temporary replace
2bf6bd143 vendor: update github.com/containerd/continuity
30a163086 snapshots|pkg: umount without DETACH and nosync after umount
c9eebe3d1 mount: support direct-io for loopback device
1c2977db0 Modify loopback size
cf9c78d2d snapshots/blockfile: fix lint issue
b823b4f54 snapshots/blockfile: deflaky the testsuite
6daeceb11 snapshots/blockfile: use passed in dst in scratchGenerator
99b61aee3 snapshots/blockfile: use loop if options is empty
fd39769ac Add mount options to blockfile snapshotter
8d732c6c2 Add sync before unmount on snapshotter layer test
8472a407e Add blockfile snapshotter to snapshotters doc
6740d77ca Add blockfile as a builtin
07cc24b32 Add blockfile snapshotter
32e3b76ee Add diffservice to contrib
661e505c8 Add proxy differ
af79c07fd update runc binary to v1.1.9
c0b1c8f74 fix ci Linux Integration test fail
4e97a115f cri: Don't use rel path for image volumes
34a5d0330 fix: allow attaching to any combination of stdin/stdout/stderr
c5e7b84c0 update to go1.20.7, go1.19.12
2eaeb3205 Fix ro mount option being passed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dae8061c08 |
conmon: update to 2.1.8
Bumping conmon to version v2.1.3-87-g6d88cb3, which comprises the following commits:
6d88cb3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.12.0
00e08f4 bump to v2.1.8
57d5e7f fix(deps): update module github.com/containers/storage to v1.48.0
adc748c cli: log parsing errors to stderr
b0bdc23 Update nix and use an overlay
04cf7ba chore(deps): update dependency containers/automation_images to v20230809
ccdae54 gh actions: bump to go 1.21
4e61870 gh actions: drop perma-failing jobs
730d92c fix(deps): update module github.com/onsi/ginkgo/v2 to v2.11.0
73ab92e Changes to build conmon for `riscv64`
53b3691 stdio: ignore EIO for terminals
77ce312 refactor: handle a broken pipe with write_sync_fd
fa67ce6 ensure console socket buffers are properly sized
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
48b63ed575 |
buildah: update to 1.31.3
Bumping buildah to version v1.31.1-23-g0926e05c3, which comprises the following commits:
f449589dd [release-1.31] Bump to v1.31.4-dev
3ae75d4a4 [release-1.31] Bump to v1.31.3
68fa52ca5 [release-1.31] Bump c/common 0.55.4, c/image 5.26.2, c/storage 1.48.1
140f028d6 rpm: spdx compatible license field
20b479ec4 RPM: fix buildtags
d1e3a7bf3 [release-1.31] Bump to v1.31.3-dev
d4d1d7513 [release-1.31] Bump to v1.31.2
4d9260cc3 [release-1.31] Bump to v1.31.2-dev
800b1549b [release-1.31] Bump to v1.31.1
0a63bc63d [release-1.31] Remove zstd:chunked from man, bump c/common to v0.55.3
98f684ff3 [CI:BUILD] Packit: add fedora-eln targets
708c07761 [CI:BUILD] RPM: build docs with vendored go-md2man
68fa9389a packit: Build PRs into default packit COPRs
95e1dfb3d [CI:BUILD] Packit: remove pre-sync action
806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
22989818f3 |
runc-docker: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
606fe98a98 |
runc-opencontainers: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kai Kang
|
64c7c56236 |
k3s: not compatible with mips
k3s depends on 'virtual-containerd' provided by containerd-opencontainers which is not compatible with mips. So set COMPATIBLE_HOST for k3s that not compatible with mips to align with containerd-opencontainers. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
33a437dc42 |
docker-compose: not compatible with mips
docker-compose rdepends on docker which is not compatible with mips. So set COMPATIBLE_HOST for docker-compose accordingly. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
113af45b75 |
lxcfs: add systemd to REQUIRED_DISTRO_FEATURES
lxcfs requires systemd, so we add it to the feature check. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Changqing Li
|
8f25bfcbae |
oci-image-tools: don't build for riscv64
Currently oci-image-tools has a do_compile error for riscv64. The
problem could be reproduced by:
MACHINE=qemuriscv64 bitbake oci-image-tools
So explicitly set COMPATIBLE_HOST here to avoid it building for riscv64.
When someone interested in using this recipe for riscv64 fixes the
compile issue, this setting could be removed.
Also don't build packagegroup-container/packagegroup-kubernetes since
they depends on oci-image-tools
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
dbffe9f4c2 |
netavark: skip plugins in ptest
Skip the plugin tests that were introduced in 1.6.0 and lead to ptest failure. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Patrick Wicki
|
898d0e9c3b |
netavark: require iputils for ptest
Fixes ptest not working on systems using busybox ping. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
08435d20b1 |
recipes/classes/scripts: Drop SRCPV usage
bitbake has been enhanced such that SRCPV is no longer needed in PV to handle updating git hashes and task signatures. We can simplify our PV by dropping SRCPV Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a03c4f5845 |
podman: introduce README for testing/configuration
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7bd56074fe |
docker-compose: drop python variant
The python variant of docker-compose is no longer updated. We have the golang version, so we drop this recipe to avoid use of an obselete and potentially non-secure application. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
78f1c22f61 |
skopeo: update to 1.13.1
Bumping skopeo to version v1.13.1-4-g416218f5, which comprises the following commits:
882b087b Packit: remove pre-sync action
3162e17e [release-1.13] Bump to v1.13.2-dev
8ace37a4 [release-1.13] Bump to v1.13.1
cac20311 [release-1.13] Bump c/common to v0.55.2
d5b1f34e [release-1.13 backport] [CI:BUILD] Packit: install golist before updating downstream spec
85d99af2 [release-1.13] Bump to v1.13.1-dev
8b9999e1 Bump to v1.13.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dddc423fa3 |
runc-docker: update to 1.1.8
Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits:
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
7c36375a Update github actions packages in validate workflow
1fa89476 VERSION: back to development
82f18fe0 VERSION: release 1.1.8
ef6491ec tests/int/delete: make sure runc delete removes failed unit
ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN"
1188c5a1 runc delete: call systemd's reset-failed
71e76007 libct/cg/sd: remove logging from resetFailedUnit
3a4b3af6 tests/int/cgroups: remove useless/wrong setting
6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed.
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ea3b6a8398 |
runc-opencontainers: update to 1.1.8
Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits:
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
7c36375a Update github actions packages in validate workflow
1fa89476 VERSION: back to development
82f18fe0 VERSION: release 1.1.8
ef6491ec tests/int/delete: make sure runc delete removes failed unit
ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN"
1188c5a1 runc delete: call systemd's reset-failed
71e76007 libct/cg/sd: remove logging from resetFailedUnit
3a4b3af6 tests/int/cgroups: remove useless/wrong setting
6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed.
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5d01102077 |
podman-tui: update to v0.9.1
Bumping podman-tui to version v0.9.1, which comprises the following commits:
d77db5fd bump to 0.9.1
ad29f4fa Container create error fix when selecting a volume
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ba6e5e9db1 |
podman: update to 4.6.0
Bumping libpod to version v4.6.0-14-g2215847e6, which comprises the following commits:
f05f00717 do not redefine gobuild for eln
45fd917fa [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
8ee1f1197 [v4.6] [CI:BUILD] RPM: separate out gvproxy for copr and fedora >= 38
5831bd68b System tests: add test tags
954177e7e API: kill: return 409 on invalid state
e4e983e7a Mention TimeoutStartSec in quadlet man page
d68ee576e If quadlets have same name, only use first
94431182b Bump to v4.6.1-dev
38e6fab96 Bump to v4.6.0
8aec5997e Update release notes for v4.6.0
09b1da382 Ensure that we appropriately warn that TCP is insecure
0115a4800 CI: remove build without cgo task
598ebe8a1 libpod: use io.Writer vs io.WriteCloser for attach streams
574b78291 top: do not depend on ps(1) in container
255111269 api: fix doc for default ps_args
34274ce15 Add more tests for liveness probes with default hostname & named ports
48deafc64 Fix TCP probes when the optional host field is not given
6817e0ae3 Add support for using port names in Kubernetes health probes
5445bd6f0 [CI:DOCS] fix command incorrect in windows
50195c244 [CI:DOCS] Reformat and reorder table with --userns options
924bc7055 [CI:DOCS] Better document the default value of --userns
e4c38e719 Add missing return after utils.InternalServerError()
7a4bd4c95 Fix markdown in docs for podman-network-create
7cbe41212 Fix multiple filter options logic for `podman volume ls `
5ea019419 Should be checking tmpfs versus type not source
b4859d283 Use constants for mount types
39b7ac99d Fix `podman container prune` docs for `--filter`
7ba306ec6 docs: podman-build --network add slirp and pasta
c810420c8 docs: podman run --network mention comma separted names
2c970dd01 network create: document --internal better
5106b7a38 pkg/specgen: fix support for --rootfs on FreeBSD
41f809e3e systests: quadlet: fixes for RHEL8
061841c0c Fix windows installer
8f05405db Podmansh: Better error, increase timeout to 30s
2b683a400 Emergency gating-test fixes for RHEL8
d0dee61e7 Packit: remove pre-sync action
70e30a2be [CI:DOCS] Update RELEASE_NOTES.md with Makefile change
b8ef289e3 Bump to v4.6.0-dev
bfe2e0fca Bump to v4.6.0-rc2
145748d1f Makefile: `package` -> `rpm`
be21bc082 Update release notes
8fffcf4d6 system tests: refactor registry code
624bb8350 machine start: qemu: wait for SSH readiness
732a02c57 machine start: qemu: adjust backoffs
afe48ba36 auto update: fix usage of --authfile
24439cdd2 [CI:BUILD] Packit: downstream task action fix
7b3d47c3b Fix container errors not being sent via pod removal API
9d0470f12 netavark: macvlan networks keep custom nameservers
5583358f6 add hostname to network alias
2aea98cab libpod: set cid network alias in setupContainer()
d0b0c6285 Fix: cgroup is not set: internal libpod error after os reboot
258135221 test/e2e: wait for socket
a3a62854f api: fix slow version endpoint
28e92b9de manifest inspect: support authentication
e354514dc libpod: don't make a broken symlink for /etc/mtab on FreeBSD
c81a00101 make --syslog errors non fatal
edc51d9ff Fixes typo in the path where quadlet looks for files
a673bb23e [CI:DOCS] uidmap man pages: fix corrupt italics
dd7dbb826 [CI:DOCS] podman-system-service.1.md: document systemd usage
a312553fc Use bytes size consistently instead of human size
2ef2a671e bugfix: do not try to parse empty ranges
662cca7cc pkg/specgen: properly identify image OS on FreeBSD
cf5c4c9ee [CI:DOCS] Document support of pod security context IDs
c8cfcc253 pkg/specgen: add support for 'podman run --init' on FreeBSD
fc8f229bd Remove 'inspecting object' from inspect errors
ee6329374 Fix readonly=false failure
a3598ff61 pkg/specgen: Add support for Linux emulation on FreeBSD
e30197e6f Fix up podmansh man page
47e6ce19c Pass in correct cwd value for hooks exe
f654f7cc7 specgen: honor --device-cgroup-rule with a new user namespace
fcf673d5d specgen, rootless: raise error with --device-cgroup-rule
f70189991 make image listing more resilient
62fc35c07 Trim whitespace from unit files while parsing
ed5618759 play.go: remove volumes on down -f
04897ee64 Vendor c/common v0.55.2
ff71df0e8 system service: unset listen fds on tcp
6960a8183 [CI:DOCS] [Release Notes]: add static routes
e4cf2afbc [CI:DOCS] tag podmansh as tech preview in RELEASE_NOTES.md
c422072b6 [CI:DOCS] uidmap man pages: fix corrupt tables
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5bc9a9fc2f |
netavark: update to 1.7.0
Bumping netavark to version v1.7.0-49-gab03eec, which comprises the following commits:
067bbde fix(deps): update rust crate serde to 1.0.180
0ae529b fix(deps): update rust crate serde_json to 1.0.104
e155cbf fix(deps): update rust crate serde to 1.0.179
e64a5a9 fix(deps): update rust crate serde to 1.0.176
6f5dc41 fix(deps): update rust crate clap to 4.3.19
074de60 fix(deps): update rust crate serde to 1.0.175
2a2d066 fix(deps): update rust crate clap to 4.3.17
cb49b4f fix(deps): update rust crate clap to 4.3.15
69c802a fix(deps): update rust crate clap to 4.3.12
c627b76 fix(deps): update rust crate serde_json to 1.0.103
747384d [CI:BUILD] Packit: remove pre-sync action
64d55ee fix(deps): update rust crate serde_json to 1.0.102
cc1d2aa fix(deps): update rust crate nispor to 1.2.12
c227eed macvlan: use netlink type for bclim
f92a065 bump netlink deps
ba31874 fix(deps): update rust crate serde to 1.0.171
355ad29 fix(deps): update rust crate serde to 1.0.167
91665d4 fix(deps): update rust crate clap to 4.3.11
dd3a221 fix(deps): update rust crate serde to 1.0.166
0eb2033 fix(deps): update rust crate serde_json to 1.0.100
1340988 iptables: improve error when ip6?tables commands are missing
6f56308 fix(deps): update rust crate clap to 4.3.10
e7518b2 fix(deps): update rust crate zbus to 3.14.1
3455012 [CI:BUILD] RPM: Fix ELN build and cleanup spec
1691f8c bump to v1.8.0-dev
158e11b release v1.7.0
6ba1f8a Update release notes for v1.7.0
15af075 fix(deps): update rust crate tokio to 1.29
6e06b7d netavark: make --config required for dns
816d73d fix(deps): update rust crate serde_json to 1.0.99
14d4c54 fix(deps): update rust crate clap to 4.3.8
c5784bc [CI:BUILD] Packit: add Fedora downstream tasks
d2d3092 run cargo update
da6ee1f fix(deps): update rust crate serde_json to 1.0.97
0d62a35 fix(deps): update rust crate sha2 to 0.10.7
77b09a7 fix(deps): update rust crate clap to 4.3.4
68080c7 chore(deps): update dependency containers/automation_images to v20230614
0e976f1 fix(deps): update rust crate clap to 4.3.3
175c095 fix(deps): update rust crate log to 0.4.19
23c48d8 aardvark: fix missleading dns disabled log
d31c157 firewall: add NETAVARK_ISOLATION_3 chain for strict isolation
bb690f9 docs: fix link to getting started
ca147fb fix(deps): update rust crate serde to 1.0.164
871096c netlink: fix incorrect info log for del_route
72aa0dd dhcp-proxy: apply new ip address/gateway
2a17957 test-dhcp: fix broekn has_ip() check
44b5a28 dhcp-proxy: actually implement renewing leases
1a5f674 dhcp-proxy: simplify code
f7e950b dhcp-proxy: drop macaddr dependency
827bdd9 dhcp-proxy: remove some unused traits
5b2662e fix(deps): update rust crate zbus to 3.13.1
8fd57c7 fix(deps): update rust crate clap to 4.3.2
7000903 chore(deps): update rust crate once_cell to 1.18.0
e495d0b fix(deps): update rust crate url to 2.4.0
3a2c8e5 fix(deps): update rust crate clap to 4.3.1
3fcbfab chore(deps): update dependency containers/automation_images to v20230601
be0e01e chore(deps): update rust crate chrono to 0.4.26
3bdb499 chore(deps): update rust crate chrono to 0.4.25
f9dce04 fix(deps): update rust crate log to 0.4.18
8db90d8 chore(deps): update rust crate once_cell to 1.17.2
e4e78f0 macvlan: add bclim option
3d3563b parse_option(): return option instead of default
e0ae9bc add no_default_gateway option
d39db0b fix(deps): update rust crate clap to 4.3.0
ba0cb46 chore(deps): update dependency containers/automation_images to v20230517
62b35fd fix(deps): update rust crate serde to 1.0.163
416853b Add ability to add static route
d2ef6cc fix(deps): update rust crate serde to 1.0.162
9e0e186 Cirrus: Update fedora name to match image
11626fc fix(deps): update rust crate clap to 4.2.7
e6ee988 chore(deps): update dependency containers/automation_images to v20230426
85dde17 correct typo in Makefile
8418f9b simplify path printing
65ff4f1 fix(deps): update rust crate tokio to 1.28
690fa8d aardvark-dns pid: return better errors
394789f fix comment in Subnet definition
2362e82 aardvark: no error when aardvark config is not there
5d41c71 fix(deps): update rust crate zbus to 3.12.0
bdf84b8 fix(deps): update rust crate clap to 4.2.4
fced2f1 fix(deps): update rust crate clap to 4.2.2
6aeabc0 fix(deps): update rust crate serde_json to 1.0.96
f0d5cc8 update clap to v4
be0e133 fix(deps): update rust crate serde to 1.0.160
173d7ac bump to v1.7.0-dev
2f01092 v1.6.0 release
1d2d150 Update release notes for v1.6.0
e1b0aa9 dhcp-proxy: fix typo for --activity-timeout
f125bf0 chore(deps): update dependency containers/automation_images to v20230405
8b4c678 dhcp-proxy: use better error when connection fails
c4a216d add documentation for netavark plugins
3ad293d add stderr example plugin to test stderr passthrough
cee4d9f add netavark plugin driver
b2ffb90 add example error plugin
bc35cdd add host-device example plugin
ab8156d plugin: add simple plugin interface
092b9a3 netlink: add dump_addresses
cc1730e netlink: add set_link_ns
14a5205 dhcp-proxy: correctly exit > 0 on errors
24698f1 fix(deps): update rust crate tonic to 0.9
50b0fbb fix(deps): update rust crate mozim to 0.2.2
a5eba62 fix(deps): update rust crate serde to 1.0.159
dd0034c fix(deps): update rust crate netlink-sys to 0.8.5
40695e6 dhcp-proxy: create socket directory only when used
fe9ca67 dhcp-proxy: do not remove socket when running under systemd
dca3d53 Makefile: netavark-dhcp-proxy.service use correct path
71d128a fix(deps): update rust crate http to 0.2.9
5d85d4e chore(deps): update rust crate once_cell to 1.17.1
08d163e fix(deps): update rust-futures monorepo to 0.3.28
0370986 fix(deps): update rust crate serde_json to 1.0.95
2d7cb2a chore(deps): update dependency containers/automation_images to v20230330
9fd64cf Disable Dependabot in favor of Renovate
5ed1430 chore(deps): update rust crate chrono to 0.4.24
3f3a73e build(deps): bump ipnet from 2.7.1 to 2.7.2
1b8d361 build(deps): bump serde from 1.0.158 to 1.0.159
a3d7d79 build(deps): bump serde_json from 1.0.94 to 1.0.95
4f0dcc0 update,main: dont write empty space when no network_dns_servers is given
9532644 fix(deps): update rust crate tokio to 1.27
5ea45b7 Quit Leasing when Client disconnects
b2aeb6c build(deps): bump mozim from 0.2.1 to 0.2.2
f36ff11 iptables: fix incorrect debug statement
cdf27dc build(deps): bump serde from 1.0.156 to 1.0.158
8a1975a iptables: port fw handle wildcard address correctly
ab6c621 chore(deps): update dependency containers/automation_images to v20230320
2f38b17 build(deps): bump zbus from 3.11.0 to 3.11.1
99142bf build(deps): bump anyhow from 1.0.69 to 1.0.70
e42393c [CI:BUILD] Packit: trigger builds on commit to main branch
c30f461 Cirrus: Invalidate v2 bin cache
28c63f2 Include Systemd Files in RPM Package
8ec9d4b Cirrus: Fix success failing on artifact extraction
95c6fc4 fix lint issue with new rust version 1.68
d84e415 Cirrus: Update to newer CI VM images
c637b1a build(deps): bump serde from 1.0.152 to 1.0.156
ca27aa6 combine dhcp-proxy and netavark into one binary
cecef1e update: should allow empty network_dns_servers
07dfcae build(deps): bump libc from 0.2.139 to 0.2.140
bf22c29 fix aarch64 ncat flake
98f18b8 update to mozim 0.2.1
64bb7f0 build(deps): bump zbus from 3.10.0 to 3.11.0
4199dc0 packit: Update build release tag correctly
de88f04 test: move proto option into run_nc_test()
91f3bfb test: add netns pid param to port checks
eea98ee test: import podman code to check for ports
9d070c8 cirrus.yaml: add new binaries in art_prep_script
bca5370 fix netavark-dhcp-proxy binary in system unit
31b4bb4 import netavark-proxy-dhcp tests
c599b2e add build_proxy_client target
c76e257 add netavark-dhcp-proxy to rpm
a8cff4d Fix dhcp-proxy build
8dc8c96 Merge nv-dhcp-proxy into nv
3a365ed fix default route metric test name
ad222b7 build(deps): bump tokio from 1.25.0 to 1.26.0
c505c58 Support none parameter on NETAVARK_FW
2272042 build(deps): bump anyhow from 1.0.68 to 1.0.69
2798f06 Fix typos
88a2a7a update netlink-packet-{route,core} to 0.15 and 0.5
216f6f6 build(deps): bump serde_json from 1.0.92 to 1.0.93
bbbec75 build(deps): bump zbus from 3.8.0 to 3.10.0
70d6f33 [CI:BUILD] Packit: initial enablement
065243d Allow custom cargo binary path
5ce550d build(deps): bump serde_json from 1.0.91 to 1.0.92
781b84e Cirrus: Reduce requested CPUs for compile-tasks
9deb91b bump to version 1.0.6-dev
dbdeb9a v1.0.5 release
43c9bf2 release notes updates for v1.0.5
97f91f0 build(deps): bump netlink-sys from 0.8.3 to 0.8.4
b8fae87 build(deps): bump tokio from 1.24.1 to 1.25.0
3919e0f build(deps): bump zbus from 3.7.0 to 3.8.0
f688710 Switch to explicit platform list for `cargo vendor-filterer`
67b7da4 Add renovate.json5
c02fb16 Convert a few words to more inclusive
102b81c build(deps): bump nix from 0.26.1 to 0.26.2
60c08e9 Minor: Add script remote re-use comment.
dae850f Cirrus: Fix two minor typos.
c361afa Cirrus: Improve caching effectiveness
f11a8fc Fix UDS path
823e69b build(deps): bump ipnet from 2.7.0 to 2.7.1
c55b1b3 build(deps): bump tokio from 1.23.0 to 1.24.1
e7c41c8 build(deps): bump zbus from 3.6.2 to 3.7.0
d690d35 build(deps): bump serde from 1.0.151 to 1.0.152
5a19903 build(deps): bump libc from 0.2.138 to 0.2.139
040f3d6 add ipvlan support
058be67 fix lint issues for rust 1.66
2524e56 update CI images
8055fb4 build(deps): bump serde_json from 1.0.89 to 1.0.91
f80f417 Add ability for MacVLAN dhcp
a810489 build(deps): bump serde from 1.0.150 to 1.0.151
53c6774 build(deps): bump anyhow from 1.0.66 to 1.0.68
bcb52af CI: install mandown for validate
97e90a3 fix make docs
3eee824 build(deps): bump serde from 1.0.149 to 1.0.150
820d538 build(deps): bump sysctl from 0.5.2 to 0.5.4
753c3de build(deps): bump ipnet from 2.6.0 to 2.7.0
bd1bf8b build(deps): bump zbus from 3.6.1 to 3.6.2
a3f90ec build(deps): bump ipnet from 2.5.1 to 2.6.0
3a1ff24 lock: stop using yanked 0.8.13 crossbeam-utils
75b440c Cirrus: Add backup to aardvark-binary artifact DL
a03b7b1 Bump to v1.4.1-dev
c2a4b9a Release v1.4.0
0e3268b Update release notes for v1.4.0
011f899 release,make: add rule crate-publish for publishing crates.io
302828f main: Pass config_dir as `&str`
bb4c73d [skip-ci] GHA/Cirrus-cron: Fix execution order
d957601 build(deps): bump serde from 1.0.148 to 1.0.149
cece3d6 build(deps): bump nix from 0.25.0 to 0.26.1
354450f build(deps): bump libc from 0.2.137 to 0.2.138
8c1a071 build(deps): bump zbus from 3.5.0 to 3.6.1
7563db2 remove verify_vendor CI task
15894f3 chrono: use from_timestamp_opt
0c61f05 update: add support for netavark update command
2f0b025 Add nspath to commands
64d762f build(deps): bump serde from 1.0.147 to 1.0.148
d27588c build(deps): bump env_logger from 0.9.3 to 0.10.0
46f9f59 aardvark, netavark: support network scoped dns via network_dns_servers
c9cbc6a build(deps): bump serde_json from 1.0.88 to 1.0.89
84b9078 Drop now unneeded futures dep
c858e2f Make use of zbus::blocking wrappers
84a0ddd Port to zbus 3.5
a3c8156 Drop direct zvariant dep
03cb6a5 remove number of .clone() calls
581352c build(deps): bump serde_json from 1.0.87 to 1.0.88
9dad47a fix iptables teardown
d7d88da fix rust doc comments
effd448 GHA: Add cirrus-cron rerun job
ada06b4 fix new lint issues reported with rust 1.65
2af0d9f update CI images
f5d114d Correct dev version
34f1488 Bump to v1.3.0-dev
6df8139 Release v1.3.0
53a7b00 v1.3.0 Release notes
832098f run cargo update
d36af04 build(deps): bump ipnet from 2.5.0 to 2.5.1
e383f8d build(deps): bump env_logger from 0.9.1 to 0.9.3
0cc2556 macvlan modes: use upstream consts
e6d09ff macvlan: remove tmp interface when name already used in netns
0789f44 Add support for route metrics
52b1b08 Drop indirect dependency on time 0.1
72c42b6 netlink: return better error if ipv6 is disabled
980d68a macvlan: fix name collision on hostns
3c03dce build(deps): bump libc from 0.2.136 to 0.2.137
99459c1 build(deps): bump clap from 3.2.22 to 3.2.23
8247f46 Ignore dns-enabled for macvlan
bd18cb1 build(deps): bump libc from 0.2.135 to 0.2.136
3f7e75e build(deps): bump serde_json from 1.0.86 to 1.0.87
b65a35b build(deps): bump serde from 1.0.145 to 1.0.147
885f657 netlink: check sequence_number
795fa47 build(deps): bump anyhow from 1.0.65 to 1.0.66
61181e5 tests: add test for verifying multiple custom dns severs
95c982b tests: unskip exisiting test for custom dns server
698627b build(deps): bump futures from 0.3.24 to 0.3.25
6e04f79 netlink: improve error message on invalid netlink result
3aac0a0 NetworkOptions::load(): do not open /dev/stdin
f07cc04 use cargo-vendor-filterer to create vendor tarball
d89f4bd teardown: handle errors better
c9de5d0 error: remove unused equal code
c11c5f8 fix broken build
f6e0258 netavark ,aardvark: accept and populate custom dns_servers for containers
59be422 netlink: add del_{addr,route} calls
6646be4 error: NetavarkError use Into<String> Trait
0417eb8 netlink: add basic unit tests
454ebb3 bridge: do not set gateway for internal network
c017bfe README.md: remove latest release section
652d233 build(deps): bump libc from 0.2.134 to 0.2.135
3166b7b build(deps): bump serde from 1.0.144 to 1.0.145
ca5f4f6 build(deps): bump serde_json from 1.0.85 to 1.0.86
7c93f79 Do not use ipv6 autoconf #2
36a20bf fix test issues in podman
0fb6ddc improve error messages
96993f4 netlink: use low level sync api
4881651 add simple script to measure the netavark perfomance
4294bf6 Do not use ipv6 autoconf
0805420 build(deps): bump tokio from 1.21.1 to 1.21.2
060c6a6 Make build date reproducible
08c3152 Cirrus: Use images w/ fixed-in-time rust + clippy
3d4fe6b build(deps): bump libc from 0.2.133 to 0.2.134
7ab86f6 build(deps): bump clap from 3.2.8 to 3.2.22
cbc0a31 Bumping to v1.2.0-dev
90cccc1 Release v1.2.0
We also refresh one patch, and add protobuf-c as a build depenency
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4ecc9488d1 |
lxcfs: update to 5.0.4 and convert to meson
This is a large update to lxcfs, that includes a move to meson as the build backend. We drop a couple of uneeded patches, and add a new meson specific one as the detection of pid_* functions is failing. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
6b10588476 |
lxc: update to 5.0.3
Bumping lxc to version lxc-5.0.3, which comprises the following commits:
cb8e38aca Release LXC 5.0.3
85d3f4b1d github: Update for main branch
d195603e3 CONTRIBUTING: add a note on AI generated code
54227bdb1 get_hierarchy: dont WARN about no usable controller
be7efff35 github: Add DCO/target tests
8751cd208 explicitly convert *mainloop_handler to __u64
c16bb5b71 tests: fix parse_config_file seccomp test
95ef57c73 src/tests: Fix container creation errors
30c79f8a7 rename functions which clash with libsystemd's
3801a6a3d mainloop: io_uring: disable IORING_POLL_ADD_MULTI
fba0ae071 terminal: make a terminal FDs non-blocking
1af412d2f file_utils: add fd_make_nonblocking helper
eaaf041f6 file_utils: rename fd_make_nonblocking to fd_make_blocking
d05fb8a45 setproctitle(): Handle potential NULL return from strrchr()
709d42691 make setproctitle()'s /proc/pid/stat parsing safe
b183d437b console-log test: make sure container is stopped before restarting
d638d5951 tree-wide: convert fcntl(FD_CLOEXEC) to SOCK_CLOEXEC
c12c0acb0 Allow fuse mounts in apparmor start-container.
c93418d98 Add support for squashfs images in oci via atomfs
3754e803f apparmor: don't try to mmap empty files
706ee25cd initutils: use PRIu64 for uint64_t in setproctitle
3cdd5078c lxc-net.in: fix nftables syntax for IPv6 NAT
97bf62247 Fix strlcat's return value checks
7c81572af Fix typo: bev_type -> bdev_type
727adc052 drop broken lxc-test-fuzzers
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
06e6947fc9 |
docker-distribution: update to 2.8.2
Bumping docker-distribution to version v2.8.2-2-g8728c52e, which comprises the following commits:
ab7178cc Pass BUILDTAGS argument to go build
a173a9c6 Add v2.8.2 release notes
483ad69d registry/errors: Parse http forbidden as denied
2b0f84df Revert "registry/client: set Accept: identity header when getting layers"
5f3ca1b2 Add release notes for 2.8.2-beta.2 release
e884644f Dockerfile: fix filenames of artifacts
ac6c72b2 Add 2.8.2-beta.1 release notes
ae58bde9 Fix gofmt warnings
3f2a4e24 update to go1.19.9
9c04409f [release/2.8] ignore deprecation of io/ioutil
3d8f3cc4 Dockerfile: update xx to v1.2.1
70db3a46 bump up golang version
db1389e0 dockerfiles: formatting
018472de dockerfiles: set ALPINE_VERSION
19b3feb5 Update to xx 1.1.1
14bd72bc Dockerfile: switch to xx
2392893b bump up golang v1.17
092a2197 [release/2.8] fix package name in Dockerfile
22a80503 fix(ci): use go install instead of go get
1d52366d Merge pull request #2815 from bainsy88/issue_2814
521ea3d9 Fix runaway allocation on /v2/_catalog
ad5991de Fix panic in inmemory driver
38018aeb Fix CVE-2022-28391 by bumping alpine from 3.15 to 3.16
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3fe898899f |
crun: update to v1.8.6
Bumping crun to version 1.8.6-11-gd7ee549, which comprises the following commits:
c786d4c linux: simplify error handling
c972772 linux: do not write twice errors
74a3874 linux: use helper functions instead of custom read/write
35a0166 linux: define helper to ack on the sync socket
c3e518e libcrun: drop symbol for crun_make_error
080e560 features: use exported function libcrun_make_error
5c2dedc Make the spec file parseable without copr_username defined
73f759f NEWS: tag 1.8.6
26ef1e0 linux: add sync before sending mounts
71c53b0 RPM: Set Epoch only for Copr builds
ee0e405 tests: install procps-ng for podman tests
6a3d7a7 Packit: initial enablement
58bb52c tests: fix cpu-weight-systemd test under a user manager
ee111ae tests: skip test_uid_tty if no tty is attached
74dd5f9 tests: use get_crun_path() in oci_features
b160e2c cgroup-resources: allow setting swap to 0
19cd8aa ps: fix segfault with pids=NULL
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
08f58c3181 |
cri-tools: update to v1.27.1
Bumping cri-tools to version v1.26.0-279-gdd51f3b7, which comprises the following commits:
16975aba Make `haircommander` an approver
e3cc516b override path defaults for FreeBSD
f8f05611 Use `UserSpecifiedImage` for seccomp tests
a4110ef6 Bump github.com/onsi/gomega from 1.27.9 to 1.27.10
2cffae40 Bump github.com/docker/docker
2d4e6c27 Bump github.com/onsi/gomega from 1.27.8 to 1.27.9
4a84e5a3 Bump github.com/opencontainers/runc from 1.1.7 to 1.1.8
28bbd92a Switch to logrus in favor of glog
edf8fd39 Update version in README
dafc2b62 Add `crictl runtime-config` command
01952e78 Use google/uuid
183c8fa3 Fix release notes job
cf42ba9f Drop support for docker log format
c1e6f2eb Bump Kubernetes to v1.28.0-alpha.4
fc7c11ed Bump github.com/docker/docker
fcb21b99 Revert "fix listCoontainerStats not filter"
ffb1ef1e Bump github.com/docker/docker
505d5ce7 Bump Kubernetes to v1.27.3
49cf12cb Bump golang.org/x/net from 0.11.0 to 0.12.0
0aa3049e Bump golang.org/x/sys from 0.9.0 to 0.10.0
e6438103 fix listCoontainerStats not filter
2ee62a09 Typo fix in critest
5b6b7180 Format print output in imagefsinfo cmd
b432bc8d Bump github.com/onsi/ginkgo/v2 from 2.10.0 to 2.11.0
d901bb43 Bump github.com/urfave/cli/v2 from 2.25.6 to 2.25.7
acc3f298 Bump golang.org/x/net from 0.10.0 to 0.11.0
5feab035 Bump github.com/urfave/cli/v2 from 2.25.5 to 2.25.6
90b22c75 Bump golang.org/x/term from 0.8.0 to 0.9.0
0b7c24b5 Bump google-github-actions/setup-gcloud from 0 to 1
5c28a488 Bump actions/upload-artifact from 1 to 3
c3a28fe2 add dependabot config to update github actions
806c66f9 update actions using node12
5e9d1f5d Add image build test to GitHub actions
b80b9bde Bump github.com/onsi/gomega from 1.27.7 to 1.27.8
8e03fbd3 Bump github.com/onsi/ginkgo/v2 from 2.9.7 to 2.10.0
a8ca78a0 Pin `FROM` images to tags
bde07883 Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
5fd98895 Migrate to field based seccomp tests
5d362aa6 Bump github.com/onsi/ginkgo/v2 from 2.9.6 to 2.9.7
32ba4251 added testing on 1.7
b7e85c71 Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.6
4714253b Update critest from 1.17 to 1.27
88a2b60b Bump github.com/urfave/cli/v2 from 2.25.3 to 2.25.5
63e39e26 Bump github.com/docker/docker
2c0f354e Bump github.com/docker/docker
aeea5099 Update the incorrect link to release page in crictl.md
ea559418 Bump github.com/onsi/gomega from 1.27.6 to 1.27.7
7ed308a3 Bump github.com/sirupsen/logrus from 1.9.1 to 1.9.2
f0bf767c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
791ffcd5df |
cri-o: update to 1.27.1
Bumping cri-o to version v1.27.1-7-gab7845e07, which comprises the following commits:
fbfca3a52 oci: update unit tests for new stop code
6dec88e7c oci: simplify stopping code
5b7b82f56 oci: don't return ErrContainerStopped from StopContainer
0e4df2e9c oci: change IsAlive to Living
92b455156 devices: fill the FileMode field in spec
e54504a00 version: bump to 1.27.1
a61082768 vendor: drop podman replace and actually update runc
9c86a1269 vendor: bump runc to 1.1.6
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c82deadd3b |
containerd: update to 1.7.2
Bumping containerd to version v1.7.3-2-g98e8e05b6, which comprises the following commits:
2eaeb3205 Fix ro mount option being passed
4cb2f1515 [release/1.7] Add release notes for v1.7.3
b461ecacf cri: memory.memsw.limit_in_bytes: no such file or directory
14328ae03 migrate to community owned bucket
b985f7ef1 update runc binary to v1.1.8
f7a20e17c Move logrus setup code to log package
7353c0286 ctr: update WritePidFile to use atomicfile
ae7021300 shim: WritePidFile & WriteAddress use atomicfile
186eb64b7 cri: write generated CNI config atomically on Unix
64c3dcd8e atomicfile: new package for atomic file writes
083f57160 capture desc variable in range variable just in case that it run in parallel mode
a9440ce6b Use t.TempDir instead of os.MkdirTemp
eea3440d8 use strings.Cut instead of strings.Split for parsing imageConfig.User
eace67180 fix userstr for dditionalGids on Linux
973778193 Update Go to 1.20.6,1.19.11
60a6db9c2 Cirrus CI: configure apt-get to wait for locks
6b6b0c828 bugfix(port-forward): Correctly handle known errors
898eca21e Change http.Header copy to builtin Clone
fa2efc406 Resolve docker.NewResolver race condition
241514815 pkg/cri/server: Test net.ipv4.ping_group_range works with userns
801e8c806 pkg/cri/server: Fix net.ipv4.ping_group_range with userns
d5639a5a8 vendor: github.com/containerd/zfs v1.1.0
403033e52 update go to go1.20.5, go1.19.10
15d65709e ci: remove libseccomp-dev installation for nightly
a08ae718c [release/1.7] go.mod: Update cgroups to 3.0.2
c2c54af9d Update ginkgo to match cri-tools' version
6281d46df seccomp: always allow name_to_handle_at
3bf3996d9 integration/client: add timeout to `TestShimOOMScore`
699d6701a Pinned image support
18c6503d9 runtime/v2/runc: handle early exits w/o big locks
dafbeb5b1 No more nondistributable layers in MS registry
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7867b58ca2 |
conmon: update to 2.1.7
Bumping conmon to version v2.1.3-74-g75f8ceb, which comprises the following commits:
fa67ce6 ensure console socket buffers are properly sized
2902909 Remove lgtm badge
2832e4f chore(deps): update dependency containers/automation_images to v20230614
7a7c893 log fds more permissive
c26648e Fix close_other_fds on FreeBSD
ebc6717 chore(deps): update dependency containers/automation_images to v20230601
8225789 chore(deps): update dependency containers/automation_images to v20230517
dcee6fb Update nixos image and dependencies' version.
e907fdc Changes to build conmon for ppc64le
5510eb0 fix compile regression on FreeBSD
be144a1 chore(deps): update dependency containers/automation_images to v20230426
3fcc1d2 Packit: update config
676e86d ctrl: fix a debug statement
b7aa7b1 [skip-ci] Update actions/setup-go action to v4
d8bf969 [skip-ci] Update actions/checkout action to v3
53debe6 [skip-ci] Update actions/cache action to v3
758ff5a vendor: bump to latest packages
44448e7 fix(deps): update module github.com/containers/libpod to v4
95ecbf5 chore(deps): update dependency containers/automation_images to v20230405
3b447bc conmon: drop return after pexit()
d637b73 ctrl: make accept4 failures fatal
cbc7c40 cmsg: recvfd returns an error on failures
0251765 cmsg: fix program name
5fcb8da ctrl: on EINTR retry accept4
08c34bd Add renovate configuration
9a3af8f logging: avoid opening /dev/null for each write
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
63dd08bf86 |
buildah: update to 1.31.1
Bumping buildah to version v1.31.1-3-g0cc7680cc, which comprises the following commits:
806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream
a3056cacd [release-1.31] Bump c/common
d0de60bbf Bump 1.31.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|