mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 20:59:41 +02:00
e7a13cbbc3
2447 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Joshua Watt
|
d8a2857633 |
classes/image-oci-umoci: Allow environment variables to have spaces
Quote the environment variable argument passed to umoci to allow it to
correctly handle spaces. Note that this requires that OCI_IMAGE_ENV_VARS
have the argument quoted with single quotes, as in:
OCI_IMAGE_ENV_VARS = "FOO='bar bat'"
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Leonard Anderweit
|
28e044b98e |
podman-compose: Actually update to v1.0.6
Commit |
||
|
Bruce Ashfield
|
d9af8d1514 |
podman: update to 4.7.1
Bumping libpod to version v4.7.1-6-g85b5f5723, which comprises the following commits:
d1cb93d79 rtd: implement v2 build file
8d045d4c9 Adjust to path name change for resolved unit
eb5b5dbc8 Switch version to 4.7.2-dev
ef83eeb9c New version: v4.7.1
cc5acabf0 Update RELEASE_NOTES.md for v4.7.1
456450438 compat API: speed up network list
a2efda96d inspect: ignore ENOENT during device lookup
f931f08a7 test/system: --env-file test fixes
297a66c30 Revert "feat(env): support multiline in env-file"
46a85e054 Revert "docs(env-file): improve document description"
6afddf430 Revert "fix(env): parsing --env incorrect in cli"
c5ca7e5fc [CI:DOCS] update swagger version on docs.podman.io
51ee25d3f Fix locale issues with WSL version detection
4d15c88a9 switch version to 4.7.1-dev
073183fe1 Bump to v4.7.0
44f727fb0 [CI:DOCS] v4.7.0 RELEASE_NOTES update
2d32314d2 rpm: remove gvproxy subpackage
a2697c028 packit: tag @containers/packit-build team on copr build failures
54ce0ca7c specgen, rootless: fix mount of cgroup without a netns
d2f9af717 pass --syslog to the cleanup process
133e3a4f2 fix --authfile auto-update test
2c62815e1 version: switch back from -rc1 to -dev
7845dd175 New pre-release: v4.7.0-rc1
49f76e95e [CI:DOCS] Update release notes for v4.7.0-rc1
fa6f94001 Cirrus: Update operating branch
0728a10c6 Move podman build opts to common file
8a9f778e2 Add ability for machine rm -f for WSL
919dce131 Plumbing to run machine tests with hyperv
ade0c4932 CI: trace setup and runner scripts
c37443e8b Bump to Buildah v1.32.0
9b36f334d [CI:DOCS] bump release notes on main with the latest release
cae110f8b fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5
4a2a423df Add --filter pod= autocompletion
075cf2254 e2e: ExitCleanly(): manual test fixes
db5adca73 e2e: continuing ExitCleanly(): just the replacements
c689fb4a5 Fix some spelling and formatting
522e0f43f Add support for Ulimit in quadlet
b1e3e8d97 Run codespell on code
6b7f718b4 wire in new buildah build options
f9aba28ca make golangci-lint happy
c1b6effac add !remote tag to pkg/specgen/generate
3acee29cf pkg/specgen: do not depend on libimage for remote
2c2299ad8 bump buildah to latest
bf86ed72c [CI:DOCS] restart.md: migrate to container unit
304b22729 fix(deps): update module k8s.io/kubernetes to v1.28.2
4ed3273f6 Add support for PidsLimit in quadlet
70560f916 Add DNS fields to Container and Network unit groups
777b5efa4 [CI:DOCS] update API docs version list
7b9114023 Try to fix broken CI (gvisor-something)
df011f437 e2e: more ExitCleanly(): manual test fixes
cb1cb338c e2e: more ExitCleanly(): dumb string replacements
62ac96e12 e2e: create_test: use ExitCleanly()
b0f77acd1 e2e: diff_test: use ExitCleanly()
5920bfa2e The `podman init` command cannot modify containers.
639a1a029 bump c/common to latest main
806c5de12 Podmansh: use podmansh_timeout
eefaa512a e2e: more ExitCleanly(): low-hanging fruit
9b17d6cb0 vendor: update checkpointctl to v1.1.0
cdcf18b86 kube: add DaemonSet support for generate
75b4679a7 vendor of containers/(common, storage, image)
19bd9b33d libpod: move oom_score_adj clamp to init
4f017236e e2e: commit_test: use ExitCleanly()
3a4be5e90 e2e: container_clone_test.go: use ExitCleanly()
8cb14e54a e2e: use ExitCleanly() in cleanup_test.go
925794c6a Ensure HC events fire after logs are written
65a64da27 [CI:DOCS] podman-systemd.unit: fix equivalents
d9a85466a Add support for kube TerminationGracePeriodSeconds
5eb0a53a0 Update podman-kube-play.1.md.in
c2cd93cdc Split up alt binaries to speed up build
7bf9f302a Switch installer task to EC2
fbbad0439 pod: fix duplicate volumes from containers.conf
0c75eac63 tests: add test for pod cgroups
b8f6a12d0 libpod: create the cgroup pod before containers
331b3c216 cmd, specgen: allow cgroup resources without --infra
83334fb4e specgen: allow --share-parent with --infra=false
5de8f4aba libpod: allow cgroup path without infra container
5121c9eb0 libpod: check if cgroup exists before creating it
38209ef49 libpod: refactor platformMakePod signature
627ac1c96 libpod: destroy pod cgroup on pod stop
9a347619d utils: export MoveUnderCgroup
556db46a6 libpod: refactor code to new function
65bddfcd2 e2e: use ExitCleanly() in checkpoint tests
479680232 [CI:DOCS]Remove use of --latest|-l from tutorial
afeab39d1 CI test runner: upgrade tests rely on system tests
59bd6a74a run --rmi: "cannot remove" is a warning, not an error
70cf9740f StopContainer: display signal num when name unknown
6f913f5f3 URGENT: fix broken CI
b83485022 Add support for kube securityContext\.procMount
589867d71 podman: don't restart after kill
2d7d8d1d1 Tmpfs should not be mounted noexec
c2575f726 sys tests: run_podman: check for unwanted warnings/errors
1211518e8 chore(deps): update dependency setuptools to ~=68.2.0
465150f10 e2e: use ExitCleanly() in attach & build tests
27495981c Some distros do not default to docker.io for shortname searches
30abd7f1a security: accept empty capabilities list
c32cfb1d0 systests: random_free_port: fix EADDRINUSE flake
a5798e9f5 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
dbfc3e7e0 Restrict fcos_test to amd64, arm64
7b2fc5f8d fix(deps): update github.com/containers/libhvee digest to 56fb235
0a913d578 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
f9fd40221 fix(deps): update module golang.org/x/tools to v0.13.0
71549c642 Ignore spurious container-removal errors
e5bf0f96d fix(deps): update module golang.org/x/net to v0.15.0
fdf694fcf systests: manifest zstd test: lots of tiny cleanups
9730c0373 vendor: update github.com/opencontainers/runc to main
e825bd5d5 [skip-ci] Update actions/checkout action to v4
8b4a79a74 linux, rootless: clamp oom_score_adj if it is too low
681b6db3f machine: increase max number of inotify instances
302d15334 fix(deps): update module golang.org/x/term to v0.12.0
f094884c1 Remove redundant nil checks in system connection remove
17037af48 fix(deps): update module golang.org/x/text to v0.13.0
1d51cd14a fix(deps): update module golang.org/x/sys to v0.12.0
f542d21a7 fix(deps): update github.com/containers/libhvee digest to 2bf7930
d4fedb288 docs(readme): fix a broken link
50cd072bf [CI:BUILD] Podman FCOS image from main
58a0b7ac8 Update golang.org/x/exp digest to d852ddb
fe7bafb83 Add port forwarding and gvproxy machine test
702709a91 libpod: do not parse --hostuser in base 8
13342e503 fix: default typo
3a6fc8d2b Add Japanese locale and translation of index
39c5b7fac remove rh.container.bot@gmail.com
a62abfe3d Tweaks and cleanups to prepare hyperv for CI
a0738e7e6 system tests: housekeeping: various small fixes
4082b67f6 CI: e2e: first use of new ExitCleanly() matcher
6cbd17c0f CI: e2e: new ginkgo matcher, ExitCleanly()
da1246d58 CI: e2e: fetch the standard system-test image
d20b5869f kube play: fix pull policy
18d35b612 Fix gidmap command in example
e66c04c1f vendor containers/common@12405381ff
b95ae3b4a manifest,push: support add_compression from containers.conf
1085177fe hyperv ignition: use gvforwarder instead of vm
2a8e6acec Set remote username earlier for hyperv
26cefcbf9 Added an additional troubleshooting problem and solution
a3c2d6ad2 Remove a dependency on libimage from pkg/bindings
f1c24df4f Rename parameter in pkg/bindings
259ab8594 Remove a dependency on libimage from pkg/api/handlers
4cac1d3bc Don't re-inspect an image
99834947d Cirrus: Remove multi-arch podman image builds
91b8bc7f1 uid/gid mapping flags
18c2a2be8 [DOC] Clarify default behaviour on uidmap
60e3b5ef1 Update containers/common to latest
fe3c4562f update libhvee
1b45fd723 /_ping handler: return OSType http header
2dbb0b096 e2e: fix race condition (kube play + logs)
fe11db1e8 Update module github.com/vbauerster/mpb/v8 to v8.6.0
7ef97fa49 Kube - support List documents
346e5e52e kube down/play --replace: handle absent objects
0938ee189 push, manifest-push: --force-compression must be true with --compression-format
4b347609d oci: print stderr only after checking state
461230c49 Updated docs to reflect pod spec sysctls support added in v4.6
b8146a8a2 [CI:BUILD] Packit: Disable unexpected journal message check for cockpit-podman
a6f2f5854 [CI:BUILD] Packit: Restrict cockpit tests to recent Fedoras
b6b300c79 Update machine init/set tests
da81bc13a Add rootful status to machine inspect
d3618719b Dedup and refactor image acquisition
adf34cbd7 Share podman sock bindings with other WSL distros
db95e678a Fix user-mode validation check
d898ae7f9 system tests: try to fix sdnotify flakes
ecf9f9fd8 Cirrus: Disable only hello multiarch build
f32e954b8 Set StopTimeout for service-container started under podman kube play
d2ec127c1 Set StopTimeout for compat API if not set by client
6f284dbd4 podman exec should set umask to match container
2c5c2d213 [CI:BUILD] Packit: run cockpit-podman tests in PRs
52ed7fce2 Add infra-name annotations to kube gen/play
a5f6a4a3b kube: notifyproxy: close once
7a94f8c12 system service: unset NOTIFY_SOCKET
638f994c2 Update module k8s.io/kubernetes to v1.28.1
7c9c96981 API attach: return vnd.docker.multiplexed-stream header
60e58f059 test/apiv2/60-auth.at: use `doesnotexists.podman.io`
61dd7f80c e2e tests: use registry:2.8.2 (was 2.8)
243f365aa create apiutils package
c5b4eb943 api docs: document stream format
70f77efef Revert "Remove `hello` multi-arch image build"
82bd56be7 manifest-push: add support for --force-compression
469ace091 push: add support for --force-compression
202cc433a Update module github.com/onsi/ginkgo/v2 to v2.12.0
7e0130f75 Remove `hello` multi-arch image build
1b0e64a10 hack/perf/system-df.sh: add `df` benchmarks
148d95d8d Expand env variables for cmds/entrypoint with format $(ENV)
e092f887f vendor c/storage@6902c2d
c416e4576 Ignore the resource limits on cgroups V1 rootless systems
9e680cbc6 Fixups for stopping gvproxy
21c9517b5 Revert "GHA: Closed issue/PR comment-lock test"
f0e8e79c9 GHA: Closed issue/PR comment-lock test
5477fd38a GHA: Add workflow to lock closed issues/PRs
75ce47347 [CI:DOCS] update auto-update docs
85d0df330 chore(deps): update dependency containers/automation_images to v20230816
bc35e28c0 fix(deps): update module github.com/google/uuid to v1.3.1
3d00744d2 libpod: sum per-interface network stats for FreeBSD
5eee8825e Set default Umask for `podman kube play`
ef8f4db81 [CI:BUILD] rpm: spdx compatible license field
e9539768c chore(deps): update dependency golangci/golangci-lint to v1.54.2
63a8926e9 Implement automatic port reassignment on Windows
45ce4834a Add support for ramfs as well as tmpfs in volume mounts
bdc304058 Validate current generation of WSL2 with user-mode-networking
67756ac60 use container restart policy if user specifies one
0772d8ddb Stop gvproxy on hyperv machine stop
50136ea86 [CI:BUILD] rpm: depend on man-db
36e09f18b Update machine list test
8b2990131 Update machine start tests
c3dbfa9a1 Update machine rm tests
c726cf810 libpod: improve conmon error handling
ed1f514d5 cirrus setup: install en_US.UTF-8 locale
8f85aaf07 fixup "podman logs with non ASCII log tag" tests
27b41f087 libpod: use /var/run instead of /run on FreeBSD
9b4f1cdb9 cirrus/lib.sh: extend env to passthrough at start for locale work
ff66f31dd libpod: correctly pass env so alternative locales work
29c298856 cgroups_linux: use SessionBusPrivateNoAutoStartup
362747cfa podmansh man page UID=$(id -u lockedu) is not allowed
e38cf33a6 CI: systests: remove pasta ICMP tests
7103fdb3f podman.1.md: Fix formatting of exit code 127, clarify wording of `exit code` example.
896cab612 document available secret drivers
53dd37cc4 pkg/specgen: add support for read-only root on FreeBSD
d5841ed52 add --module flag
6a3f09e8a Update dependency setuptools to ~=68.1.0
1d5890bcd Add riscv64 architecture to the cross build target
252f51de8 GetFcosArch add `riscv64` arch
98e7d7af0 Update WSL backend to be compat with FCOS defaults
9e14e3ebe enabled hyperv image downloads
3e2e360b9 fix(deps): update module github.com/containers/ocicrypt to v1.1.8
abd35d4d3 [CI:DOCS] Fix git build example in build page
0c52d1004 CI: e2e manifest_test: use image from quay
31dc42224 Cirrus: Remove EC2 experimental flag
4c7546cb3 sphinx: skip options include dir
345b9b029 Update rootfs.md: Fix formatting and wording of idmap option
f33b01b73 fix: Docker API compatible bool deserialization
4cb2d48ca Revert "compat,build: pull must accept string"
68bd81470 Add missing verb in machinectl example
78d6cd4c9 [CI:DOCS] Update Release Notes and Release Process
b6349017a chore(deps): update dependency golangci/golangci-lint to v1.54.1
4b80492bd fix podman top missing output flake
5908999e6 New partial-line test is flaking
555b4f930 [CI:BUILD] Packit: add back fedora-eln targets
f0dac3677 Cirrus: Prune defunct job + fix noop alias
1947f035c Bump bundled gvproxy to 0.7.0
df28df1ae systests: tests for --env and --env-file
bcebcad1f Update system connection add & remove
310f971fc Add tests for podman farm
dce3ef3c4 Add podman farm update command
44a704dfc Add podman farm remove command
59a8140f1 Add podman farm list command
6fcdf1a19 Add podman farm create command
1d5ef29f0 Add podman farm subcommand
23d5b5008 CI: e2e: add delay before podman logs or journalctl
2951316b2 Add completion for Farms
b672ddc79 Vendor c/common changes
3963c5639 chore(deps): update dependency golangci/golangci-lint to v1.54.0
a55c2636d file logger: fix podman logs --tail with partial lines
7ce654fea fix(env): parsing --env incorrect in cli
4c4bc0922 Update docker.io/library/golang Docker tag to v1.21
f55c48ad3 podman stop --cidfile missing --ignore
7ef03517f Skip podman exec cannot be invoked on Debian
95ceacefb Re-enable checkpoint test on Debian SID
c193dbd94 Require a non-generic reason for non-Fedora skip
d79e3a23d CI FIXME removal/update.
5ec856652 Update dependency containers/automation_images to v20230807
7988dd82c [skip-ci] Update dawidd6/action-send-mail action to v3.8.0
8a410784b [CI:DOCS] fixed couple typos in build docs
282594e58 Stop timer in function waitPidStop
7c0bccaf7 packit: Build PRs into default packit COPRs
afaeedef7 Add support for host-gateway
2de22ebf0 Ensure volumes-from mounts override image volumes
03d7a5120 Minor: Include shasums in GHA workflow artifacts
d63ac0652 Minor: Add important comment to windows GHA workflow
9d7fe4e90 Minor: Update/fix dry-run input descriptions
518daef72 [CI:DOCS] Quadlet - provide more information about network files
819129b0d man-page xref: check for duplicate entries
39641482c cp: close temporary file on error path
018fdb48e Makefile: work around the lack of 'man -l' on FreeBSD
0b7769fda Update module golang.org/x/net to v0.14.0
ec5a9b9cc libpod: fix a crash in 'kube generate' on FreeBSD
23c5890f2 remove temporary files when copy [NO NEW TESTS NEEDED]
fab62f816 Update module golang.org/x/sys to v0.11.0
b46d72fec [ci] Remove the podman socket in remove_packaged_podman_files()
706c51b52 [ci] Correct the podman systemd file names
dd4f47dd9 Always show RemoteSocket.Exists in json
fc7c6efd3 Fail if ssh key exists
69e883493 Fix regression for hyperv
803a49da4 [CI:BUILD] Makefile: rpm target generates correct version
1a63c1b23 Fix nits in #19480
1e5453943 Add support for passing container stop timeout as -1 (infinite)
d50054f1e pkg/specgen: Add device support for FreeBSD
f5058f148 [CI:DOCS] man: remove duplicate entry .LastUp
a8974d4a3 CI: e2e: remove useless test
53d44a65e Check tty flag to set default terminal in Env
62a22c5d6 Run codespell on code
44f159ed3 Deprecate podman generate systemd
346f9cb4e manifest/push: add support for --add-compression
8ccda1ee8 [CI:DOCS]Update Release Notes
b91599742 CI: sys: quadlet %T test: do not rely on journal
4d69f0146 GHA: Support testing build/sign workflows
15f35d354 Remove unnecessary backslashes
18e75daa5 [docs] Use code blocks for commands in podman-completion
f3ebd798c Make podman run --rmi automatically set --rm
8b7701f52 machine: QEMU: recover from failed start
49b8b971a vendor: bump c/image to v5.26.1-0.20230801083106-fcf7f0e1712a
bfd2a8cad secret: add support for `--ignore` with rm
21ebe0e90 Move `writeConfig` logic to shared function
597ccff0b Move some logic of `setRootful` to a common file
98cf8462a move `removeFilesAndConnections` to a common file
75a8f13c4 Move `waitAPIAndPrintInfo` to common file
55c7b5cec Move `addSSHConnectionsToPodmanSocket` code to shared file
0489d3aa6 Update module golang.org/x/net to v0.13.0
d74c225f4 chore(deps): update dependency containers/automation_images to v20230726
27d79e1fc Skip pasta local forwarder test on debian SID
b69cd8d84 Skip broken/flaky blkio-weight test
822f2f495 Skip tarball re-inport test in rawhide for CI
851cd9cca Cleanup CIDFile on podman-remote run --rm command
a237c3f46 CI: e2e: remove workaround for missing login file
42ad0c6e7 vendor: bump c/image and c/common
5b7dce8a3 Add support for confined users
78b850c48 Cirrus: Temp. disable rawhide validation task
def70012b Limit git-validation to 'short-subject'
33b8c451e Fix up man page and add test on globs
850482b31 Move alternate image acquisition to separate function
906af5bbc Move `getDevNullFiles` into a common file
89f1fdc7f Update github.com/digitalocean/go-qemu digest to 2e3d018
d6847b19c Convert QEMU functions to methods with documentation
6930f39a6 Update docs/source/markdown/podman-build.1.md.in
e1114f03c do not redefine gobuild for eln
39341f283 Set default userns from containers.conf file
4f1f88d7c Mention TimeoutStartSec in quadlet man page
ada71889c inspect with network=none show SandboxKey netns path
93f4cc1b5 [CI:DOCS] GHA: Use stable go for Mac/Win builds
ff7d287fc Breakup AppleHV machine funcs
64873e322 Codespell fixups
acbe7703f Update docs/source/markdown/podman-stats.1.md.in
0b7157e3b CI: e2e: reenable containerized checkpoint tests
c67ef7c1a docs(env-file): improve document description
4ee31dc37 Don't log EOF error when using podman --remote build with an empty context directory.
f2794f9a8 API: kill: return 409 on invalid state
170a78631 feat(env): support multiline in env-file
19deb6a34 Adds documentation to new functions that were added
481143e58 `startHostNetworking`: get DevNull files
13da82466 `Remove`: remove network and ready sockets from registry
d896431b2 `Remove`: remove files and connections
32265e1f6 `Remove`: collect files to destroy
381b103dd `Init`: read and split ign file
aa6827a67 `Init`: write ign config
cc30639d7 `Init`: add network and registry socks to registry
78d3b549c `Init`: add SSH conns to podman sock
630e7ba39 Improve the description of fields in podman-stats man page
22a8b6886 make /dev & /dev/shm read/only when --read-only --read-only-tmpfs=false
663fe9446 Mention no comment lines in Containerfile.in podman-build man page
e973d15c3 [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
837bc2568 Fix HyperV loadMachineFromJSON function name
416a471ee machine: QEMU: lock VM on stop/rm/set
bb57c1631 libpod: add 'pod top' support on FreeBSD
f592c33fb [CI:DOCS] Build and Sign Mac Pkginstaller
f540bbffa Make sure users changes --authfile before checking
8757fe88a github: add issue type as link to podman github discussions
3523b9b05 Break QEMU `config.go` code into its own functions
c341a0ffe machine: QEMU: lock VM on start
afe8d5d84 libpod: fix 'podman kube generate' on FreeBSD
0fefcf8a4 Add glob support to podman run/create --mount
d6815da8c kube: add DaemonSet support
239a5b64a Fix artifacts script after removal of msitools msi build
e335a66a9 System tests: quadlet: fix race in %T test
d6a32a3da If quadlets have same name, only use first
db0ba9b25 Add support for mounts listed in containers.conf
6dda21984 Update vendor of containers/common
33891e8e9 System tests: add test tags
5ba055937 [CI:DOCS] socket_activation.md: increase socat timeout
dfec510b4 go-md2man: use vendored-in version, not system
a92bb3219 CI: use different TMPDIR on prior-fedora
6894e2031 system tests: authfile-exists: minor cleanup
d70f15cc0 start(): don't defer event
de122bb44 Fix: use --all in podman stats to get all containers stats
349d775de Verify authfile exists if user specifies it
e0ef23955 libpod: don't generate errors for createTimer etc.
0cfd12786 add "healthy" sdnotify policy
cbc96a7b4 Remove LICENSE and general doc files that are installed by the main package
37f0e9620 Add missing `
2f21df7b3 Remove legacy msitools based msi installer
ac212605c Remove any quotes around distribution id
e596b17fb add a podman-compose command
eee2817de pkg/specgen: Don't crash for device spec with...
d2796c6c1 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
f4fbd6fd0 Update vendor of containers/(storage,image)
d4fc66af9 Clean up /var/tmp/ when using oci-archives when creating containers
49257a3c5 [CI:BUILD] RPM: separate out gvproxy for copr and rawhide
b57091ac9 Reduce qemu machine function sizes
baf30e612 [CI:DOCS] migrate socket_activation.md to quadlet
7314569cb [CI:DOCS] Update kube play volume support
b5ce0ab2d Fix language, typos and markdown layout
cb5450af7 [CI:DOCS] Add note about QUADLET_UNIT_DIRS to simplify quadlet debug
0bb73bf55 Add note on debugging quadlet unit files
d4cfc498d Remove unnecessary use of the word "please".
a6a207673 libpod: fix FreeBSD 'podman-remote top' default behaviour
709beb6c0 fix(deps): update module github.com/onsi/gomega to v1.27.9
3e534eff9 Add support for ShmSize to quadlet
4b9f670ca Quadlet system test - force journald log driver for short lived containers
731bd7d94 fix(deps): update module github.com/containers/libhvee to v0.4.0
413552e10 quadlet recursively scan for unit files
ce736413b Ensure that we appropriately warn that TCP is insecure
558a70262 systests: quadlet: fixes for RHEL8
8d190704a Quadlet - Allow setting Service WorkingDirectory for Kube units
24bf6fc24 Quadlet system test - do not rely on journalctl in kube file tests
3d6bc2f86 Fix markdown in docs for podman-network-create
11ffea313 Man pages: check for corrupt tables
1d14bb7a8 quadlet systest: fix broken tmpdir references
e55e128fc Add `since` as valid filter option for `volume` subcommands
6df17332b Podmansh: Better error, increase timeout to 30s
96241159a Fix multiple filter options logic for `podman volume ls `
00a5b0709 Add bash-completion for podman inspect
3b6343202 Fix windows installer
d7e25e14a Add missing reserved annotation support to `play`
d2862c7dd Avoid progress hang with empty files
5c0912b07 Revert the usage of `home.GetConfigHome()`
5aa52659b Fix bug report issue template README link
47997857f Replace error check for non-existent file
8febb6aa1 Emergency gating-test fixes for RHEL8
d8d600b1d Add progress bar for decompress image
46058cfed refactor: move progressbar to a function
ca9874ab7 Use pkg/homedir to get the home config directory
7fb17ae78 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.2
a224ff731 Should be checking tmpfs versus type not source
9e60f3ec5 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.1
b4ffbcdfd Enabled arm64 arch for podman applehv provider
4e4078dbb [CI:BUILD] Packit: remove pre-sync action
d0602e8f7 Add `--podman-only` flag to `podman generate kube`
13a950016 Update vendor containers/(common, buildah, image, storage)
f256f4f95 Use constants for mount types
310a8f103 libpod: use define.TypeBind when resolving container paths
1e9410094 Tests: remove/update obsolete skips
a3bbc3a2c Fix trust not using local policy file
0997cf012 Fix `podman container prune` docs for `--filter`
a8d8c9497 Add more tests for liveness probes with default hostname & named ports
383d683f8 docs: podman-build --network add slirp and pasta
5e64cbf35 docs: podman run --network mention comma separted names
1443e2918 Podman machine AppleHV pass number 3
315a7887a Makefile: `package` -> `rpm`
85d936133 network create: document --internal better
e43127e0b pkg/specgen: fix support for --rootfs on FreeBSD
8c16322a8 machine start: qemu: wait for SSH readiness
12dc546fc [CI:BUILD] Packit: downstream task action fix
2b2c4453f Fix container errors not being sent via pod removal API
6ec261e7a Add missing return after utils.InternalServerError()
d1950869a Update cmd/podman/login.go
cce8501a5 [CI:DOCS] Reformat and reorder table with --userns options
d497eb369 Add secret support to podman login
2a9b9bb53 netavark: macvlan networks keep custom nameservers
c6b5b9a02 remote: fix podman-remote play kube --userns
441af003a fix(deps): update container-device-interface to v0.6.0
656ad760f go mod: no longer use 1.18
aeef403cd fix(deps): update module github.com/containers/libhvee to v0.3.0
6fd4ae6d2 chore(deps): update module github.com/gin-gonic/gin to v1.9.1 [security]
0dcfe6e06 Run codespell on code
3ad55f48b system service: unset listen fds on tcp
f1c68b79e add hostname to network alias
b6ec2127b libpod: set cid network alias in setupContainer()
4e96686e9 AppleHV enablement pass #2
72a1857e4 e2e: Fetch the correct user name
7b54fd84e Add `--no-trunc` flag to maintain original annotation length
600de05e3 Fix TCP probes when the optional host field is not given
ac3a115c3 Add support for using port names in Kubernetes health probes
4494cefbc Fix: cgroup is not set: internal libpod error after os reboot
932fae402 Allow setting volume and network names in Quadlet
427b959a1 pasta tests: automatically determine test parameters
97fd03ccd test/e2e: wait for socket
a69194b02 manifest inspect: support authentication
70428baef api: fix slow version endpoint
f8213a6d5 libpod: don't make a broken symlink for /etc/mtab on FreeBSD
499b8d13c CI: remove build without cgo task
42ea0bf9c libpod: use io.Writer vs io.WriteCloser for attach streams
597ebeb60 top: do not depend on ps(1) in container
3f8ee70d0 make --syslog errors non fatal
dbec2b5aa api: fix doc for default ps_args
1b7eb44d3 Fixes typo in the path where quadlet looks for files
efefd8cf5 Add --replace flag to podman secret create
eec438222 [CI:DOCS] uidmap man pages: fix corrupt italics
8d24e2838 [skip-ci] Update github/issue-labeler action to v3.2
f9077689e [CI:DOCS] podman-system-service.1.md: document systemd usage
dd16661b1 fix(deps): update module github.com/docker/docker to v24.0.4+incompatible
65136521e fix(deps): update module github.com/docker/docker to v24.0.3+incompatible
fa654e985 Use bytes size consistently instead of human size
dee94ea69 bugfix: do not try to parse empty ranges
9e4045768 [CI:BUILD] Packit: fix pre-sync action for downstream tasks
531fb21d0 fix(deps): update module golang.org/x/tools to v0.11.0
ab2fa45ad fix(deps): update module golang.org/x/net to v0.12.0
459b1578c fix(deps): update module golang.org/x/term to v0.10.0
99f93d55c e2e: fix two toolbox flakes
fc5aa9c9c test/e2e: use GinkgoT().TempDir() over MkdirTemp()
ea8992cb4 test/e2e: use random ImageCacheDir
17a06d343 test/e2e: remove RHEL7 workaround
bc22aefce test/e2e: remove unnecessary code in SynchronizedAfterSuite
ff7790038 test/e2e: do not use /tmp for podman commands
db7cb1dbf test/tools: vendor ginkgo v2.11
c20612bab test/e2e: write timings directly to file
a0b765552 machine start: qemu: adjust backoffs
d874790bc auto update: fix usage of --authfile
ba1355b23 system tests: refactor registry code
94b321337 fix(deps): update module golang.org/x/text to v0.11.0
644f7cd9b pkg/specgen: properly identify image OS on FreeBSD
a3a62275c libpod: use new libcontainer BlockIO constructors
2d68c3add [CI:BUILD] Minor: Don't confuse osx-debugging
5aabc5088 [CI:DOCS] Better document the default value of --userns
e4644c3cb Cirrus: build FreeBSD binaries in a VM
92fc0f481 Makefile: add support for building freebsd release tarballs
4a5396b46 [CI:DOCS] uidmap man pages: fix corrupt tables
5a8e092a2 fix(deps): update github.com/crc-org/vfkit digest to c9a4b08
d0359fcca fix(deps): update module github.com/containers/buildah to v1.31.0
300eb36b4 fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
94e59bd2f Use /proc/self/gid_map as intended, not uid_map
a16488f89 fix(command): ignore `--format` in `podman search --list-tags`
9fb2f8e10 podman machine start: fix ready service
8408ad498 Makefile: don't rely on the non-standard -r flag for ln
39624473b pasta: Create /etc/hosts entries for pods using pasta networking
fe0de8b9f fix(deps): update module github.com/containers/libhvee to v0.2.0
2393fe453 pasta tests: add sanity check for test name vs function
4da3e47b6 pasta tests: cleanup + 1 new test
43b9426fc cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
e3f2a97d1 cmd/podman/system: add API server support on FreeBSD
0d7da5c0b [CI:DOCS] Document support of pod security context IDs
f64a1a1cc rootless: use default_rootless_network_cmd config
e4efd709d Revert^3 "pasta: Use two connections instead of three in TCP range forward tests"
17cd5aecb pasta: Workaround occasional socat failures in CI
13c7d05cc pasta: Remove some leftover code from pasta bats tests
bc58dae36 Bump c/image to v5.26.0, c/common 0.54.0
2cb549339 fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.3
bf60bb073 Display secret to user in inpspect
448e01566 [CI:BUILD] RPM: Fix koji and ELN issues
8fb719a9e e2e: systemd test: major fixes
865d77e94 pkg/specgen: add support for 'podman run --init' on FreeBSD
74b4615aa Bump version after v4.6 branch cut
b6e636cbe Remove 'inspecting object' from inspect errors
fe8355be7 pasta: Fix pasta tests to work on hosts with multiple interfaces
d15cca024 [CI:DOCS] fix command incorrect in windows
bcb89fc8b Fix readonly=false failure
609c47ae6 pkg/specgen: Add support for Linux emulation on FreeBSD
cf9ebcddf Fix up podmansh man page
05eb3e6f1 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
f5cc0487e Fixes for vendoring Buildah
0f4c86e26 vendor in latest buildah
6eaf8a271 tests: fix "Storing signatures" check
b80fd54a5 update c/image and c/storage to latest
eeb7aeb49 Kube quadlets can support autoupdate as well as containers
2160a114c debug tail 800 lines flake
dd81f7ac6 Pass in correct cwd value for hooks exe
227c07aeb specgen: honor --device-cgroup-rule with a new user namespace
0220f3338 specgen, rootless: raise error with --device-cgroup-rule
db37d66cd make image listing more resilient
17a18b16c Update module google.golang.org/protobuf to v1.31.0
bc5269f18 Trim whitespace from unit files while parsing
516034215 Re-organize hypervisor implementations
ba3da15e0 play.go: remove volumes on down -f
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Jörg Sommer
|
002aaf7029 |
packagegroup-container: require ipv6 for podman
The recipe *podman* requires the distro feature *ipv6*. Using a distro
without it causes the build of *packagegroup-container* fails, even if
*packagegroup-podman* is not used:
ERROR: Nothing RPROVIDES 'podman' (but /build/../work/layers-3rdparty/meta-virtualization/recipes-core/packagegroups/packagegroup-container.bb RDEPENDS on or otherwise requires it)
podman was skipped: missing required distro feature 'ipv6' (not in DISTRO_FEATURES)
NOTE: Runtime target 'podman' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['podman']
NOTE: Runtime target 'packagegroup-docker' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['packagegroup-docker', 'podman']
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2474e287c9 |
umoci: allow encoding of multiple entrypoint or cmd arguments
umoci can encode both entrypoint and cmd lists into the oci image. This is done by using the --config.entrypoint and --config.cmd arguments multiple times. We can split our OCI_* variables on space and support multiple arguments in either command and keep compatibility with existing users. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
58a5300e7a |
kubernetes: update to 1.28.2
Bumping kubernetes to version v1.28.2-44-ge3b5e621f07, which comprises the following commits:
b5e28b1cdd6 [go] Bump images, dependencies and versions to go 1.20.10
1cd2ac99542 .: bump golang.org/x/net to v0.17.0
cecc0e93916 Mark a volume as uncertain-attached after detach error
15101d92e18 Unit & integration tests for OpenAPIV2 AddUpdateAPIService
9f4011446a2 Fix 120878 - Refactor cacheabledownloader so handler can be updated and fix AddUpdateAPIService to update handler
489c08ddf47 Fix 120739 - Prevent AddUpdateAPIService from blocking on updating spec
d35a00e218c Fix 120758 - prevent cache Load on uninitialized spec
985ef265511 Add nil checks for hpa object target type values
88669d0a23b Make a certain ipv4-vs-ipv6 config error non-fatal, for backward compat
84a3ad3573b [go] Bump images, versions and deps to use Go 1.20.9
63fcac91c42 Only configure swap if available on node
07a74666cb2 Use local isCgroup2UnifiedMode consistently
57bbc335fd7 cronjob controller: ensure already existing jobs are added to Active list of cronjobs
8ea9b219c69 reintroduce resourcequota.NewMonitor
794d56966e8 change rolling update logic to exclude sunsetting nodes
a08ec1215fe vsphere: adapt to govmomi bump
ef63f36ff82 .: bump govmomi to v0.30.6
aba7c443072 Increase range of job_sync_duration_seconds
bcaa53c9c10 sync Service API status rest storage
a68748c7cd0 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.2
89a4ea3e1e4 Release commit for Kubernetes v1.28.2
0c6a0c3f69b kubeadm: remove reference of k8s.io/kubernetes/pkg/apis/core/v1
47507f9f022 fix race on etcd client constructor for healthchecks
7d33fba21a8 e2e pods: fix WaitForPodsResponding retry
2480fce67f5 kmsv2: reload metrics bug fix backport
110a6fe8a9f scheduler: start scheduling attempt with clean UnschedulablePlugins
0aebbad4731 fix(queue_test): make sure the first bind failure via counter
798a0abe368 [go] Bump images, versions and deps to use Go 1.20.8
62321a9201c scheduler: unit test case for concurrent event with other pod
e5b981ebcd7 scheduler: fix tracking of concurrent events
16298b54483 fix verify errors
38904e5f2d1 remove used vars
ce017591468 sort stability list of metrics in the shell command
b5fd7e9f23c Feature-gate SidecarContainers code in pkg/kubelet/kuberuntime
958c30349fa Add an e2e test for the pod sandbox changed scenario
ac67de196ff fix: concurrent map writes in e2e test
19c4cf0f1a0 Automated cherry pick of #119776: Fix a job quota related deadlock (#120319)
dda909d6c51 TopologyAwareHints: Take lock in HasPopulatedHints
8656da75f2a Fallback to legacy discovery on a wider range of conditions in aggregator
526e25b685a Fix OpenAPI aggregation cleanup
0bca3b0e4de apiextensions-apiserver: generate applyconfigurations
8c7c4f3fc4d Revert to json-patch 4.12.0
a4fdac21a98 update build cross image to the correct release branch image
fc184558921 Mark Job onPodConditions as optional in pod failure policy
955843efcf3 Incorporating feedback on 119341
4c8b24d8618 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.1
8dc49c4b984 Release commit for Kubernetes v1.28.1
ad60b95eb63 Add wait for cache sync
175bbaa8894 check for overflow
f3f88b8e7b5 Fix CEL cost handling of zero length replacement strings
90715527543 Use env varaibles for passing path
53902ce5ede Use environment varaibles for parameters in Powershell
e8abf3c441c e2e framework util subtle bug checking endpoints
a1fdd1152d9 Pass Pinned field to kubecontainer.Image
27e6c94259f prep for go1.21: use -e in go list
04de4683cb1 kubeadm: fix nil pointer when etcd member is already removed
8fd45c6bd0f update to golangci-lint v1.54.1 + go-ruleguard v0.4.0
cce3f6ffa79 Make gomaxprocs install optional, limit to tests
20b69aea685 Drop [Feature: tag to make sure this tests runs on pre-submits
58ac6e12ccc Statefulset should wait for new replicas when removing .start.ordinal
e7cfe85b9c1 e2e WaitForServiceEndpointsNum take into account the address family
96696c15f89 fix: when PreFilter returns UnschedulableAndUnresolvable, copy the state in all nodes in statusmap
d20fe4d8487 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0
855e7c48de7 Release commit for Kubernetes v1.28.0
b4053c3b293 Fix a bug that PostFilter plugin may not function if previous PreFilter plugins return Skip
b4fac632cd1 Remove release-notes for the PR#118895
5f7b27f4ade Remove release-notes for the PR#118895
87caf500e1f Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0-rc.1
c5048f41fe3 CHANGELOG: Update directory for v1.28.0-rc.1 release
add7e14df11 Release commit for Kubernetes v1.28.0-rc.1
c6efaf16c1e apiserver/etcd3: fix segv during metric collection
6ddcdef29ae kube-proxy: fix combination of --config and logging command line flags
0d90d1ffa5e Revert "Merge pull request #118895 from RyanAoh/kep-1860"
1876ddf7149 Avoid returning nil responseKind in v1beta1 aggregated discovery
55ca1a6ee15 Remove leases test case from AdmissionWebhookMatchConditions suit
050c0437e60 fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent
9bc857d6d90 [releng] Update publishing-bot rules for release branches to Go 1.20.7
38a81ca04f3 Bump distroless-iptables to 0.2.7
ae86051ec5a Bump protoc
ab26637eae4 Add test coverage of result size of string operations
8e72718249e Bump cel-go to v0.16.1
72c8cf9fce7 [go] Bump images, versions and deps to use Go 1.20.7
2ceca1c78db e2e WaitForServiceEndpointsNum should watch EndpointSlices
2f30fae0e8b scheduler: fix data race after binding failure
1b90dff5276 .*: bump golang.org/x/net to v0.13.0
73107c1b755 Update OWNERS
53c8872cc18 Update OWNERS
2a82aac5248 Update CHANGELOG-1.28.md for KMSv2KDF
294c7df3285 Avoid pulling node-problem-detector through CDN
b4ef4015a29 Avoid pulling mounter.tar through the CDN
cfcbce31a39 apiextensions: fix validation error for status.storedVersions
936819c21bc docs: update release note for KMSv1 deprecation
6689fd97469 DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates
a65d2075072 calculate the correct machine-type
182a4f858a3 API warn non-ExternalName services w/ externalName
7bd0a857e30 API warn ExternalName services with externalIPs
dd8a64d7e15 publishing-bot rules for release-1.28 branch
a005617111c CHANGELOG: Update directory for v1.28.0-rc.0 release
7d13c9b096b set map to nil if an empty string is passed
eb4063f0ced Add cases to tests `AdmissionWebhook` MatchConditions size limit (#119404)
ef4907eddd7 Add e2e tests for admission webhooks MatchCondition fields (#118319)
a248c4de521 test: fix NodeLogQuery tests to query the correct node for logs
45710678b30 Release commit for Kubernetes v1.28.0-rc.0
67769438e1d kmsv2 test feature enablement disablement and restart
18a7025383c update documentation with descriptions
7e0a9a7f4e7 Use statusReason for reason under x-kubernetes-validations (#119544)
3b9af471185 add admission policy integration test all resources
22bf29ad22f Treat empty string as nil in fuzzer for CEL Reason field
a164005cc09 Fix non-test code relying on test-code
e1b0bc3d0a7 bugfix: use matched resource for AdmissionRequest.resource, not the resource it was converted from
5e2e8c80647 bump validatingadmissionpolicy alpha->beta
1c99f9591b0 add node-env and instance-type flags to node-e2e tests
d6479587445 update codegen
ef8670c946d refactor: replace usage of v1alpha1 with v1beta1
294f5c9a42f make update
ae185e91186 e2e: test LastPhaseTransitionTime field when binding PV
a9c3444a47b test: add coverage for pv status update and create strategy
bf49c727ba1 kmsv2: KDF based nonce extension
aa65bab4269 implement pv last phase transition time
c97eb2b5cb0 Fix XValidations deepcopy to copy contents of nested pointers
76eefd3a012 CHANGELOG: Update directory for v1.28.0-beta.0 release
1b4de065df4 add LastPhaseTransitionTime field to PersistentVolume
5310dd7ff53 add PersistentVolumeLastPhaseTransitionTime feature gate
a31fee98f09 rename function for dropping disabled fields
dbea2791129 Fix the flaky TestJobApiBackoffReset test
8f35fceae37 update vendor to use containerd cgroups
c4bf42199a0 do not touch swap for cgroup v1 if swap not enabled
74fcf3e7668 implementation of PodReplacementPolicy kep in the job controller
cb6d7fbe66c update documented metrics
f50e74206e1 Address comment
c46ffc2b422 Refactor jsonpath parser and add tests.
b3b775baa51 test: adjust tests for v1beta1 validatingadmissionpolicy
88becfc0ba5 api: add v1beta1 ValidatingAdmissionPolicy/Binding types and storage
b5e9e0168cf feature: add multiple params capability to VAP controller
3f63a2d17d4 refactor: make scope of ParamKind available to vap controller
6323c106e9b refactor: use the provided sharedInformerFactory for params
9a595209bd2 update-codegen
c8dbf4712cf add namespaceParamRef to v1alpha1 and internal
03aad1f823c Fix the semantic meaning of etcd server within component statuses and metrics.
e0a6eb93a1f node_e2e: Fix createStaticSystemNodeCriticalPod's invalid spec
2863b3d1ab7 Revert "refactor: simplify RunScorePlugins for readability + performance"
3685e5e5a9c CHANGELOG: Update directory for v1.24.16 release
51bfe417b81 CHANGELOG: Update directory for v1.25.12 release
c575a1e31aa CHANGELOG: Update directory for v1.26.7 release
ba01bfcdc6c CHANGELOG: Update directory for v1.27.4 release
ce929520376 add podReplacementPolicy and terminating field to job api
35d0af9243c Include ignored pods when computing backoff delay for Job pod failures
ee82654e398 Add pod_swap_usage_bytes as an expected metric in e2e test
81abfca4078 Add a haveKeys() helper function to match multiple keys
1000ed64e09 Use debian-base instead of distroless for conformance image
d6e525877b5 [KEP-2876]Add reason and fieldPath into CRD validation rules (#118041)
b1d685a05fe apiextensions: validate status updates with status schema
06a81d13959 cmd/kubelet: implement drop-in configuration directory for kubelet
c1aef65640b Add integration test
cd5f3d9f9d5 Add impl for uvip
2c8288ac873 feat: improves metric and logging
0449cef8fd5 Increase timeout for DRA kubelet plugin client
a15c27661e6 Job controller implementation of backoff limit per index (#118009)
b5012ba1e2d Mark existing NodeLogQuery e2e tests as [LinuxOnly] since they do not run on Windows
bfb2c6a22a2 update go.mod
668497e7550 use ratcheting schema validator when feature is enabled
e0f9db42ace add ratcheting schema validator using new openapi hooks
6f238334ab4 add CRDValidationRatcheting feature gate
635875ad521 refactor: convert slices to []interface before inserion into VendorExtensible
9ee6d97fc05 refactor: add ValidateCustomResourceUpdate to support future validators for CRD Updates
a8a2fb317c8 Add tracking and reporting of executing requests
1351845133b Update cri-api change in v1.28.0
59b4951c649 Expose commit memory used in WindowsMemoryUsage struct
0ec99fb0b24 Kubelet DRA: fix failing test cases
f6431c61386 DRA: don't query claims from API server
cf0b74774f6 Extend the API for the Job job-index-failure-count annotation
d281daee335 Prefer pods without a deletion timestamp over pods with a deletion timestamp when getting an ordered list of active pods.
0372e4b6620 add unit test for dra/manager.go.
fcbfdc17106 Extend the Job API for BackoffLimitPerIndex
3fd40ffb0ef addons/metrics-server: fix nanny rbac permissions
056c19e8b39 Add slash ended urls for service-account-issuer-discovery to match API in swagger (#117511)
89ab733760a Improve docs on framework.CycleState
4da418aba7f refactor: cleanup to NewSchemaValidator takes JSONSchemaProps
ba581300213 refactor: rename apiservervalidation -> apiextensionsvalidation
735be024cf9 Make CRDs built and aggregated lazily for oasv2
ea23e13463f Update OpenAPI Aggregator
850dc6123af Remove ability to re-enable serving deprecated policyv1beta1 APIs
e7be841957d cli-runtime: make VerifiableQueryParam shared-parameter aware
a4a607198a1 hack/update-openapi-spec.sh
961c1503b5b Bump kube-openapi
4cb5547f934 Adjust summary API e2e test
e429793db1e Unit tests: node swap usage resource metric
1d368420b28 Add a node swap usage resource metric (/metrics/resource)
7d187f967ba Unit tests: CRI swap stats
59e3e3897e3 Add SwapStats to summary API through CRI
87ff9c45256 Add swap statistics to CRI-API
053d7ac61f5 Unit tests: cadvisor swap stats
c74ee8045de Add SwapStats to summary API through cadvisor
a05d200ac89 Add SwapStats to NodeStats, PodStats and ContainerStats
d029f0ef060 Add restartable init container lifecycle hook e2e tests
f17e9117776 Add restartable init container probe e2e tests
9d6c1030db0 Generate containers ready condition including restartable init containers
3bf282652f0 Allow restartable init containers to have lifecycle
7ef2d674e24 Allow restartable init containers to have livenessProbe
2c8b37498e5 Allow restartable init containers to have readinessProbe
8b20dbd0d16 Add validateStartupProbe
c7e7eee554a feature(scheduling_queue): track events per Pods (#118438)
91ea8043355 Replace lavalamp with jpbetz as feature-approver for api-machinery
94c8ad289bb Enable admissionWebhookMatchCondition by default
4321d8c60f3 Graduate NodeSwap to Beta1
f1e7386fbc4 Deprecate now-unused kubelet iptables flags
d486736dd38 Remove IPTablesOwnershipCleanup checks and dead code
77cbd86b0b1 Add metrics for cloud-provider node sync, update.
d3c506133f1 Skip apiserver_admission_webhook_request_total during context-canceled
7698fe76397 Add StatefulSet pod index as pod label (#119232)
2e217e8cea1 Reduce duplication between helpers for checking featuregate
7edd72f7805 Update generated documentation
137474e2839 Fix validation options for old pvc
d765fa6b747 Update generated stuff after changing comments
f01a1faa8cb Update comments about allocatedResourceStatus
c072e5b3a7e Update test generated data for 1.26 branch
db8998265e9 Update 1.27 generated data
6a780f57ce5 Update generated data
e0111871149 Update code to use new generic allocatedResourceStatus field
d3ef2d4fe95 priority & fairness: support dynamically configuring work estimator max seats
9189c3d5599 fix tests
aa788219f46 fix metric names
d32aa62d844 promote beta metrics
65ce7222ced All sig node approvers should be able to merge changes to CRI API
9cb2c103107 Adding node feature owners
00de051729a Make matchConditionsFeatureGateInitiallyEnabled a boolean instead
48eee4eed86 Fix e2e tests for overriding timoutGracePeriodSeconds of probes
0074b24ca42 Graduate AdmissionWebhookMatchCondition to beta
bfa62e0009a kubelet: retry RuntimeConfig call and prep for nil values from GetLinux
6aeff13def3 Never drop the `terminationGracePeriodSeconds` of a probe
d0952686f68 CRI: add cavieats about cgroup driver field
d7797fbc616 kubelet: get cgroup driver config from CRI
fd434003f3f kubelet: initialization of runtime service earlier in the startup
37330a13924 Add KubeletCgroupDriverFromCRI feature gate
d2d5e2e27dc Add CRI fake runtimes for RuntimeConfig rpc
0f05a92ce68 cri-api: add rpc for querying runtime configuration
660be4484b4 Update publishing-bot rules for release branches to Go 1.20.6
be01f4a0838 KEP-3178 IPTablesOwnershipCleanup to GA
ff62cca47b8 Bump distroless-iptables to 0.2.6
229eb93a834 DRA: report NodePrepareResource errors
b57c7e2fe4b Add CDI devices to device plugin API
b1850497b4b Integration tests for IP mode field
7eab0d7a0de Proxy changes for IP mode field
7c6e399b228 Generated code for IP mode field
e6863757f4f Add IP mode field
e38ab6d3671 Add PodGC changes for PodReplacementPolicy
169abcc0398 openapi: reference shared parameters
6c0ea702d43 Conditionally serialize flushFrequency as int
19f61caabee aggregate kube-proxy metrics
bd9b78d6861 kubeadm: remove the limitation that the 'ignorePreflightErrors' field can not be set to 'all' in kubeadm config file, and keep CLI / config consistent
6b3ce3004db Add integration tests for match conditions feature gate enablement
b883f305011 kubeadm: Support `kubeadm config validate` for ResetConfiguration
171b19d9fe1 fix histogram vec compare using ignore fields
9b6af80a631 upgrade prometheus common to v0.44.0
8f9e2cb8a80 kubeadm: Support `kubeadm config migrate` for ResetConfiguration
22f0f2e210f kubeadm: add 'kubeadm config print reset-defaults' command for ResetConfiguration
13172cba5c0 ValidatingAdmissionPolicy: support namespace access (#118267)
df0d51d3b35 add some detailed message for dup container ports(steal from thockin)
1732b23a343 Ignore context canceled from validate and mutate webhook failopen metric
90ab7580aae add list of served versions to storage version
9564bdc39de Ensure final diff is used for setting expectations for Job pod creation
8a4a29d5917 remove todo/spelling
bef43788fc0 update histogram
01b9f4b6eb8 matchCondition metrics
5f37c102cb5 revert changes in staging
d9bd413f991 Proactively bump golang.org/x/net to v0.12.0
883d0c3b717 Add a dummy implementation of proxyutil.LineBuffer
34640772ed4 implement SchedulerQueueingHints feature gate
619be9c1537 Add a swap e2e test
4b6314f815b Unit test: Swap - Limited/Unlimited Swap, cgroups v1/v2, etc
a30410d9ceb LimitedSwap: Automatically configure swap limit for Burstable QoS Pods
e4da568f331 Make kuberuntime unit tests environment independent + support cgroup v2
f37aec6c57f Add LIMITED_SWAP env var to enable limited swap
0ed7bdb057e Update vendor
69c4bc29f55 [go] Bump images, versions and deps to use Go 1.20.6
2a907e60043 kubeadm: fix fuzzing for ResetConfiguration
2e6715bc77b kubeadm: implementation of `ResetConfiguration` API types
037847066ce replace strings.Index with strings.Contains instead
3e2a1a7b9ce Regenerate
b2613dd381b Add e2e to check that hostIPs and Downward API works
14b09c414ac Add DownwardAPI validation for status.hostIPs
335d905ce95 Downward API support for status.hostIPs
bf030fd68ab Add validate HostIPs
267e76a66e2 Add status.hostIPs in validEnvDownwardAPIFieldPathExpressions
c287943bdd5 Add status.hostIPs in ConvertDownwardAPIFieldLabel
7a81ef6406c Add fuzzer for PodStatus
e6bdd224c17 Add HostIPs for kubelet
dacb6890027 Add dropDisabledStatusFields
e061143de7f Add HostIPs field and update PodIPs field
c2c001a243a Add FeatureGate PodHostIPs
ce90eb2cc2f Fix validation to use field.Forbidden instead of Required
7305c967101 QueueSet and controller part of borrowing by exempt PLs
2069835094d Tolerate only the two allowed field changes
3754d2da20f apf: allow admin to change the Exempt field only of the exempt pl
f8e4e8abac8 apf: add validation to exempt for borrowing
f78d6062eb8 Update generated code for APF borrowing by exempt
a9d8cace1f5 Fix AutoUpdateAnnotationKey, NominalConcurrencyShares
3d3240c8b43 apf: add API changes for borrowing by exempt pl
b635f2a401f ValidatingAdmissionPolicy: Variable Composition (#118642)
49d03468021 Pre-allocate webhook accessors arrays for mutating and validating webhooks
037091284e2 fix unit test bug
423f4dfc798 Add quantity library to CEL (#118803)
a1a5f49bb9c remove statefulset label added to wrong branch
1ae60c0ed16 use job completion index annotation as label
131216fa8f2 chore: hashes keyID
049614f884e ValidatingAdmissionPolicy controller for Type Checking (#117377)
d25075f3424 update generated list of stable metrics
c291e6355c4 feat: implements metrics for encryption config hot reload
be2e5417ea2 allow api-approvers to approve directories touched by generation
80ab8f0542f dra: handle scheduled pods in kube-controller-manager
cffbb1f1b29 dra controller: enhance testing
5cec6d798c3 dra: revamp event handlers in kube-controller-manager
0bb419b1498 promote the following APF metrics to beta:
39207dada25 Add integration test for node authorizer claim references
4121c1fc79a auth: don't allow kubelet to from modify ResourceClaimStatuses
c688478a28b Fix lifecycle generator to check the version correctly (#119268)
ddc0d947900 dra API: ensure that pod status contains no duplicate resource claims
052b06bdad3 Remove test Pods sharing a single local PV
22d8ae1ba6e Enable NewVolumeManagerReconstruction
9914909f5aa Define tcpProtocol in one place in the unit tests rather than many
967ef293786 Remove/clarify two FIXME comments in the proxier unit test
14375947869 Remove some stray references to the ProxyTerminatingEndpoints feature gate
7e3b53042b1 Pass Job context down to firstPendingIndexes
4835d9e1371 Belatedly clean up some "Endpoints" vs "EndpointSlice" distinctions in the unit tests
4d8f569b037 Remove KUBECTL_EXPLAIN_OPENAPIV3 environment variable
c5147c91b88 controlplane: kubernetes.default controller stop polling
9f5b6db8be8 test: azure: check error for cloud detection.
1db11c07ff2 node authorizer: limit kubelet access to ResourceClaim objects
71ef0dafa72 add flag 'logging-format' to kube-proxy
c550c17f7f0 accept int or string flush frequency
148acc8632c enable arm64 support for GCE node configuration
75186b1c32a Fix, deprecate apiserver_flowcontrol_request_concurrency_limit
c52911e59ad docs: add comment describing `LoadConfigFromFile`
5c18810f357 chore: update license date for configfile tests
72aeb961322 test: add tests for `LoadConfigFromFile`
b3373ae2738 refactor: make only `LoadConfigFromFile` public - `loadConfig` can be made public again when needed (not required now)
8e284389a5d feat: make `loadConfig` and `loadConfigFile` public functions - so that users who import kube-scheduler libraries can use these functions to read kube scheduler config
0599b3caa0f change the QueueingHintFn to pass a logger
39bb8f4bb1d Implement ConsistentListFromCache feature gate
0695853a306 Improve naming and code comments
08d40f53a7a dra: test with and without immediate ReservedFor
98ba89d31d5 resourceclaim controller: avoid caching deleted pod unnecessarily
28b6c906966 Move DeleteFunc logging to level 2
761016482da Properly setup mutatingWebhookConfigurationManager{}
747dbd9b6b7 run `./hack/verify-gofmt.sh`
1eb60939fe5 Add smart reload for `MutatingWebhooks`
aeefb762ece Properly handle parameter in `shareInformer.DeleteFunc`
a01a8cb07e7 Fix webhook accessors caching pattern
7d3d44af776 Add webhookAccessors smart reloads unit tests
c6f36e8702a Fix deadlock issue
99875b3fb73 Webhook Accessors Smart Recompilation
7d064812bb4 kube-controller-manager: finish conversion to contextual logging
d743c50bb9e kubelet: support batched prepare/unprepare in v1alpha3 DRA plugin API
7a63997c8a1 Improve apiserver storage size metric to allow it's graduation
610509fedd9 Update standard app protocols
f1f2fa9da8a kube-apiserver/corerest: split apart generic code
01c3a51a780 node: podresources: getallocatable: move to GA
c1decb6763d Fix TestConditionalProgressRequester and TestWaitUntilFreshAndListTimeout flakes
1b8ddf6b79a podgc controller: convert to contextual logging
f924bf95df9 dynamic resource allocation: Improve code coverage of state checkpoint
c635a7e7d83 node: devicemgr: topomgr: add logs
d78671447f2 e2e: node: add test to check device-requiring pods are cleaned up
5cf50105a2b e2e: node: devices: improve the node reboot test
b926aba2689 e2e: node: devicemanager: update tests
3bcf4220ece kubelet: devices: skip allocation for running pods
ab3a0b78ea3 Match both old and new kubectl version for a while in e2e
c143a875edb dra e2e: fix "reallocation works" flake
6f1a29520fe scheduler/dra: reduce pod scheduling latency
e01db325735 scheduler util: handle cache.DeletedFinalStateUnknown in As
ef48efc736c scheduler dynamicresources: minor logging improvements
363874e9b56 setcap: update to debian bookworm v1.0.0
19869478c11 Migrate /pkg/controller/disruption to structured and contextual logging
b81f07ac9a6 Add enj to apiserver options approver
6d6595d0f6e Add jpbetz as approver of apiserver integration tests
43b509de420 staging: Add endpointslice to publishing data.
7c873327b67 Convert controller name to reconciler variable.
29fad383dab move endpointslice reconciler to staging endpointslice repo
c0030a4d27e Add support for watchlist to APF
9759fc3c230 Fix the converts an empty string to nil.
22c66784e03 staging: add endpointslice repo
a34e06e74c7 kube-apiserver/corerest: structure Config
75e3576523f kube-apiserver: rewire service controllers: kubernetesservice + IP repair
f22aa42aa81 bump go.mod cadvisor to v0.47.3
f855a23b455 topologymanager: promote TopologyManagerPolicyOptions feature to beta
3267dd9d529 kubectl delete: Introduce new interactive flag for interactive deletion (#114530)
23833b9c81c topologymanager: Increase TopologyManager test coverage by adding negative test cases around NUMA topology discovery
998654e0443 topologymanager: fix TopologyManagerPolicyBetaOptions not being enabled by default
fec25785ee6 dra: store generated ResourceClaims in cache
ba810871ada dra e2e: check that not generating a ResourceClaim works
0fc62d5ded0 dra: generated files
444d23bd2f1 dra: generated name for ResourceClaim from template
98461be8ffa Implement conditionalProgressRequester that allows requesting watch progress notification if watch cache is not fresh
cd14e97ea80 Add a builder for ContainerAllocateResponse objects
db2a1edbdd6 Generate empty cdi annotations
f0e3c32fe56 Move CDI annotation code to utils package
354b6c409f5 Rename updateReconstructedFromAPIServer
1903f5aa2ad Rename volumesNeedDevicePath
7cd60df4aa1 Update volumesInUse after attachability is confirmed
0a2272dc68d Add uncertain state of volume attach-ability
bf48165232f Remarks to syncJobCtx
990339d4c3e Introduce syncJobContext to limit the number of function parameters
94b782680c0 Update publishing-bot rules for release branches to Go 1.20.5
f443c458afe move non-graceful node shutdown to GA
645cb907320 migrated pkg/controller/endpointslicemirroring to contextual logging
98c6e25c371 update name of pod index label
09849b09cf4 migrated pkg/controller/endpointslice to contextual logging
de076430957 Document address family of listening INET sockets
08dd657a71c Implement metrics agreed on the KEP
9b1c4c7b57f Implement KEP-3836
cca66011067 Add reason to force detach metric
e655931274f expended type checking.
8fb5b6eb4c1 node-e2e: Add container lifecycle e2e tests for preStop hook
47ef977ddd5 Direct reference to the packages
7286d122fb7 Mark pods with restartable init containers as `UnschedulableAndUnresolvable`
0a987079128 Sidecar: Update printPod to show restartable init container information
ea1eb7f8f79 implement sidecar resource calculation
03c22176877 Sidecar: Add e2e tests
b94fa250c27 Sidecar: Implement lifecycle of the restartable init container
c187b381173 Sidecar: Generated code
5d26bcd468b Sidecar: API changes
10dc1ca0846 Skip GracefulNodeShutdown on older systemd versions
f7a1fb76f4f Only declare job as finished after removing all finalizers
3f07fc3acc9 Remove long/golang version information making short the default
3a5268502f3 Remove deprecated scheduler CLI flags
68ed020b2a3 Split IptablesRulesTotal metric into two different metrics
bc059817dc5 fix: Add "metav1.CauseType" to "field.ErrorType" map
c0eb0caf4ac Support fine-gained rescheduling in ReservePlugin
d7708e79d32 Use cmp diff
278a8376e17 Fix: fiterror in permit plugin not handled perfectly
14bd9bc127e CHANGELOG: Update directory for v1.28.0-alpha.4 release
2fe38f93e53 feat: Append job creation timestamp to cronjob annotations (#118137)
1acdb4ae86e [KMSv2] Mark KMS v1beta1 as deprecated with no further fixes (#119007)
02c59710eaa Test the IptablesRulesTotal metric in TestSyncProxyRulesRepeated
ecf0cee91ce update comment on feature flag
3a02ecb3418 check test case param instead of feature flag in unit test code
b10cc642b56 DRA controller: batch resource claims for Allocate
be0db3f93d7 clean up the implementation around QueueingHintFn
5175752df74 Issue 4230: remove readiness check for cache exclusion
132d477cb7a use stopCh to avoid goroutine leak in tests
20a25cbfcfb Add user specified image to CRI `ContainerConfig`
65e818d4ecf Introduce apiserver_flowcontrol_current_executing_seats metric
1bf2f6c9c05 feat(NodePorts): return Skip status in PreFilter
dfc1838379f Migrated pkg/controller/volume|util|replicaset|nodeipam to contextual logging
6c0387d0047 Migrated pkg/controller/endpoint to contextual logging
3cf2822bc58 Migrated pkg/controller/garbagecollector to contextual logging
921b7e6e8f7 remove equalReady and replace with k8 util function
a647f9febbf default enabled pod index for test cases, add test case disabling it
322da7c1aae fix gc metrics
02efe09abe3 component-base/logs: improve handling of re-applying a configuration
1240a29af9c Hide numberOfMissedSchedules as an algorithm internal number
c733c57962f pkg/controlplane: wire core storage as RESTStorageProvider
65b34221ebb kube-apiserver: remove IP repair plumbing from kubernetes service controller
9dcc57ede62 Stop using deprecated API
5e1777be529 Update debian-base to bookworm
a514f40131c dra resourceclaim controller: delete generated claims when pod is done
e8a0c42212d dra resourceclaim controller: remove reservation for completed pods
7f5a02fc7e4 dra resourceclaim controller: enhance logging
d1ba893ad8e dra resourceclaim controller: refactor isPodDone
e2900da46aa Remove unnecessary utiliptables.Interface arg from local detectors
7690c6e8121 Simplify getDualStackLocalDetectorTuple
cefd50a753e Improve the single-stack LocalDetector behavior
bfccfa7016b Add names to the getLocalDetector unit tests, use t.Run
16e9cc42c1a e2e node: remove unused test/e2e_node/gcp
932d0337b82 e2e: detect unexpected command line arguments
68aee61d4f7 SPLIT: kube-apiserver/corerest: split out service IP setup logic
443bf3b01b0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/cache
dad3e4d2112 SPLIT: kube-apiserver/corerest: split constructor
31943cc3f44 kubeadm: check the GV after the config migration
b4f479d1f29 bump npd to v0.8.13
a556feb7cbe run hack/update-vendor.sh to fix verify master
4149933ed2e kube-apiserver: move "public IP matches IP family" check to option validation
616c9599880 FIXUP: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
c26e1ba10c3 [UT] increase coverage kubeadm/app/phases/dns
b36fdd68b72 Test consistent List
01b1174c114 kubeadm: fix "migrate config --allow-experimental-api" to print v1beta4 kubeadm configurations instead of v1beta3
18f2e9055fc Add OIDC integration tests
c68a6b07456 kubeadm: fix fuzzing for ExtraEnvs defined in the control plane component
80b035a116a kubeadm: Support custom env in control plane component
6b01ece5806 scheduler-perf: fix perfdash display problem
29e5771aa4d scheduler-perf: shorten "Name" label in metrics
e08bd3bc263 Simplify DeleteCollection
7b62d000a4d MOVE: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
2b03f04ce58 Initialize the AuditEvent with the AuditContext (#113611)
c903c29c3b1 e2e: support admissionapi.LevelRestricted in test/e2e/framwork/pod
19cb6d036ae kube-apiserver/corerest: remove redundant interface
ede17eace45 test-e2e: Retrigger the RBD image post merge job
a966d186083 Double-check the proxy configuration vs the available IP families
36e458612a9 cmd/kube-apiserver: move back master count variable from generic controlplane
1cfb932111e kubectl: Allow parallelizing diffing
bcbc12cd79c Fix `should be able to create and delete a critical pod` test
4517d3004ad bump kube-dns to v1.22.23
985cf718a43 [Dual-stack] Fix generateAPIPodStatus() of kubelet handling Secondary IP hostIPs order may not be be consistent. If secondary IP is before primary one, current logic adds primary IP twice into PodIPs, which leads to error: "may specify no more than one IP for each IP family". In this case, the second IP shouldn't be added.
f6a86bb2030 fix indent error
c143710ecf1 upgrade npd image version to v0.8.13 for kubemark
96694514a75 Remove csiDriver Conformance test
bb0c3a08189 Remove proxyutil.IsProxyableIP / IsProxyableHostname
59592ba4639 Add OIDC test server
1f2bf32e95f Figure out single-stack/dual-stack support before creating the proxier
8abfa89e82b Move proxy platformSetup call, and do LocalDetector setup from there
ebb0fdd4f6f Don't explicitly filter config.NodePortAddresses by IP family
a74b9fde3aa Don't pass around full node in proxy constructor, just pass PodCIDRs
0537c1da563 kubeadm: move migrate / validate tests out of config_tests.go
b01a4145b2c Install ecr-credential-provider during node e2e tests
4e6aa5fb861 kube-proxy service health: add new return header with number of local endpoints
a5df442be78 flowcontrol: copy object before passing it to client-go Create to avoid data race
ea34d039256 integration testing: configure gRPC logging during init
1c48b7ec144 Add servedVersions info in StorageVersion API
d548983dbb2 Use table-driven table for TestPerPodSchedulingMetrics
e0af0a5a455 add test case param for feature flag
d68f5f0d921 fix tests
44f1c4dd94d fix duplicate metrics issue
84b3d9b7b7e remove legacy NetworkPolicy tests
0eeca0987a6 fix tests
04ea1d506b4 promote sli metrics to beta
f96d83af668 Copy container logs for easier debugging
dfc150ca182 e2e: node: podresources: cooldown the rate limit
f7cf9effa33 fix kubelet podWorkers.SyncKnownPods() typo
52ef833b6c2 Bump cadvisor version in tests to v0.47.2
8266c4d934d Generalize watch storage tests
d53762ec3a5 remove unnecessary comment in pkg/scheduler/framework.QueueingHintFn
1b47e6433b8 dra delayed allocation: deallocate when a pod is done
dbdd861ea36 chore: address review feedback
72294e4eff0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/queue/
f269acd12b2 Make QueueSet support exempt behavior; use it
931456a1427 Simplify the node name for metrics - just use localhost
3e5fafd57ab Drop docker.log and add cloud-init-output.log
1c7e87cff27 client-go: add DNS resolver latency metrics (#115357)
150f732c7ee [StructuredAuthenticationConfig] wire request context to claim resolver
4a5a242a68d dra e2e: using logging for background activity
f1700e4b95b Cache authz decisions within validating policy admission.
60fb8f2fbc5 Exclude terminal pods from Daemonset e2e tests
24f4785e3eb kubeadm: remove unused Kind and Resource functions from output API
16fdd3e5eef apiserver: introduce larger buckets for flowcontrol request_wait_duration_seconds bucket
90f82d05ce2 kubeadm: remove unused Kind and Resource functions from kubeadm internal API
fd15c6791a4 kubeadm: restore and generalize the TestMigrateOldConfig test
d616cf72a3b Add unit tests for parallel StatefulSet create & delete
c6079843792 apiserver: introduce larger buckets for request_filter_duration_seconds metric
ef265101648 Return Skip in PodTopologySpread#PreScore under specific conditions
732775ee7d1 Paginate within DeleteCollection call.
0d41d509d2d scheduler_perf: replace gomega.Eventually with wait.PollUntilContextTimeout
cecebe8ea2f scheduler_perf: add TestScheduling integration test
dfd646e0a89 scheduler_perf: fix namespace deletion
d9c16a1cedd scheduler_perf: fix goroutine leak in runWorkload
2e7f37353cb test/integration: avoid errors in fake PC controller during shutdown
812556365b6 kubeadm: backdate generated CAs by 5 minutes
44692a486f9 client-go: allow to set NotBefore in NewSelfSignedCACert()
cfa2fa6d774 put feature gate in alphabetical order
860aab842db fix a reference to the wrong variable name
a75b00ea39d Better URL for scraping metrics from kubelet
685b0c5efa1 Bump to latest node-problem-detector version with arm64
cad338890df add test for apiservices.apiregistration.k8s.io discoverability in openapi/v3
9e3b5b65838 update openapi
ad2b4368e21 expose apiregistration.k8s.io into OpenAPIV3
bb8766daaf6 feature flags should be ordered alphabetically
7f4c187ab26 kubectl explain should work for both cluster and namespace resources and without a GET method
a9afaa1eee9 add feature gate
dfce076c6cf Update the template.pot file with latest message IDs.
a4519665fe0 Skip terminal Pods with a deletion timestamp from the Daemonset sync (#118716)
9c7166ff639 wait for eventhandlers to sync before run scheduler
bde66bfb55c kubelet dra: restore skipping of unused resource claims
874daa8b52c kubelet dra: fix checking of second pod which uses a claim
6c587b43e92 Cleanup pods at the end in Pod conditions e2e node test
56c5c8f7eef Revert "Make CA valid 1 hour in the past"
ecd727e4c75 Fix PodGC test when PodDisruptionConditions disabled (#118805)
bdbf07525fa test: remove exception comments in discovery tests
6fd830a075f hack/tools: bump golangci-lint and consequently staticcheck
1af54256969 hack: disable gomega.Consistently/Eventually check due to false positives
f618e613322 e2e: replace gomega.HaveLen(0) with gomega.BeEmpty()
e7df337ebad e2e: replace gomega.Equal(true/false) with gomega.BeTrue/BeFalse()
8b33e8bdd1b e2e: fix gomega.Expect calls without assertions
0ef1f2f2d89 Set AWS specific credential provider when running there
b0f694f50ac CHANGELOG-1.27: Add note for AWS in-tree provider removal
af1c9e49c49 Update schedule logic to properly calculate missed schedules
0033f658085 increase the log level for the GetTargetNodeName error message
08198fe22b5 Extend Large Create Timeout to 60 min
9354e78289f no-op: split transformer interface
21760534157 add completion index as pod label
8083d0d22e2 pkg/controlplane/apiserver: remove temporary import restriction of cmd/kube-apiserver
764da8a01dc FIXUP: cmd/kube-apiserver/app/options: split apart controlplane part
1b3779baa0d MOVE: cmd/kube-apiserver/app/options: split apart controlplane part
3df92362abd fix openapi/v3 non local apiservices aggregation
4298953c26c kubeadm: remove unused Kind and Resource functions from v1beta4 API
6e079545c48 cmd/kube-apiserver: move options completion into options package
f04484fe775 kubeadm: add the --allow-experimental-api flag to "config" commands
0774f779d5c kubeadm: add v1beta4 to the kubeadm API scheme
38222014c61 kubelet pod-resources: add e2e for KubeletPodResourcesGet feature
f7239e40959 Better back off delays and connection timeout to talk to containerd
e4f93d8a82d ipallocator bug if ips has leading zeros
89a9e480f9b fix: update deployment e2e tests
41d961758ee update cri-api change in v1.27
22258a263f4 Fix stable metric finder for NewDesc with custom import name
13842746227 Update metric documentation
45aa59946af Refactor FindAttachablePluginBySpec out of CSI code path
07f38a3ec18 add test
6f8d38406a7 feature(scheduler): implement ClusterEventWithHint to filter out useless events
531d38e323c features: rename UserNamespacesStatelessPodsSupport
556d713a4ad apis: drop check for volumes with user namespaces
8ed23558b44 Do not set jm.syncJobBatchPeriod=0 if not needed
17013d39604 Review remarks to improve HandlePodCleanups in kubelet
e3ee9b9adc1 Fix the deletion of rejected pods
c91c578795c scheduler_perf: skip expensive cleanup during benchmarks
92a35f5bca9 Usse generics to simplify pkg/registry/flowcontrol/ensurer
902c711fb49 Unset gated pod info timestamp in addToActiveQ
56cb4c93918 [bug] Update DefaultObjectDescriber to handle interface params (#118190)
1053d1bbcf5 CEL lib: Expose errors on authz decisions instead of raising them from check().
406899360b5 Refactor shouldDelegateList/shouldListFromStorage to better explain decisions
e4cf103c9b9 Test all cases for LIST request cache bypass
7f532891c9c e2e tests: set all PSa labels instead of just enforcing
a9af2de8fdd Refactor WithRequireLeader to make it part of the etcd store
1bd3f072fa7 stop ignoring storage class selection errors
e5cbc51d29d e2e framework: allow setting all PSa labels at once
edb59e9bc75 kubeadm: move token defaulting and related constants to token package
ec70b2ec801 e2e dra: add "kubelet must skip NodePrepareResource if not used by any container"
fdd992da865 upgrade image addon-manager/kube-addon-manager:v9.1.6 to v9.1.7
420fbd11e44 ignore Histogram for prometheus client v1.16.0
c98e72841b1 Add a connection backoff to talk to CRI impls
409bc8ccc05 deps: Bump to cAdvisor v0.47.2
f72c2c2b7d2 add process start to prometheus handler opts
bbc7ca94a42 CHANGELOG: Update directory for v1.28.0-alpha.3 release
ab75e48494c storage: stop using deprecated io/ioutil
687ca0e0bb2 fix(script): handle wait_for_success failed condition
eecac058718 kubeadm: add v1beta4 API boilerplate
63e5b6bdb24 Parallel StatefulSet pod create & delete
2fb472c83cd Refactor StatefulSet controller update logic
784a309b917 Do not error in Job controller sync when there are pod failures
f2e3157df0a Remove AdvancedAuditing feature gate.
bbae445d172 fix metrics test with 1.16.0 prometheus client
180c2332bf8 [UT] increase coverage ut for kubeadm/app/features
564c236ce28 Do NOT prepull images for e2e-node jobs
c84b5b0a99f Cleanup unnecessary renames of variable t
c9b01dd9778 Fix race in logging expectations
3dd1bac4dce Set small DefaultJobPodFailureBackOff in Job integration tests
85d9339ef8f add KCM names into CCM cmd allowed import-restrictions
3b55f20bd34 update vendor
4e6a3fb9c10 deduplicate cloud provider controller names
e5f5a9bfdbe use controller names for CLI FlagSets to show the names in help
cd56748ec57 reference controllers correctly from CLI help
9fd8f568fe0 introduce CCM controller aliases and unify controller names
94792d85dea simplify TestValidateControllersOptions test
97309511366 introduce KCM controller aliases and unify controller names
ba1755132e1 support controller name aliases in GenericControllerManagerConfigurationOptions
2596245f5a7 Replace deprecated sets.Int with sets.Set[int] in Job integration tests
e5116a39c96 fix: kubectl expose fails for apps with same-port, different-protocol
958c8fb6950 Make use of `k8s.io/utils/pointer.Duration`
ede2ec22b68 kubeadm: drop older etcd versions from kubeadm support
8cd65e9cee6 reorder hack/unwanted-dependencies.json map keys and arrays
f44029705f9 exit 1 if status are not as expected(order)
a1e0aa0e504 DRA Node E2E: add NodeAlphaFeature to fix CI
74c5ff97f18 Lower the constants for the rate limiter in Job controller
f54c15d4e80 Change the fieldpath in the deprecated plugin response
471fd1ae8a1 deprecate RBD plugin from available in-tree drivers
c51a422d787 Cleanup job controller handling of backoff
fff5b35023b Adding review changs to update
889ecf865b7 always execute condition for wait.PollUntilContextTimeout with immediate=true
5aa5f1abc9c update prometheus/client_golang v1.14.0 to v1.16.0
5bde9404a09 Remove unused error return value from internal function
8636f9353a8 CHANGELOG: Update directory for v1.27.3 release
763555814b5 CHANGELOG: Update directory for v1.26.6 release
3bf93156d80 Update pending_eligible_endpoints.yaml to match APISnoop
ff2a1f0167f CHANGELOG: Update directory for v1.25.11 release
a29be0cfb00 update container runtime flags to use containerd instead of docker
89adbc6e5b5 check for AWS environment before running sudo
7f650acb3c1 CHANGELOG: Update directory for v1.24.15 release
a83edd35c4a DRA Node E2E: relabel test suite to fix CI
c27f9fdeb79 Add warnings for big number of completions and parallelism
a86380c7813 Update CLI help text for grammar and consistency
96e7d5f1f25 Bump iscsi test server image
e0f273ffdaf use ingress-gce-glbc v1.23.1 image for CI
e213448db12 Updated kubectl explain help output
7bc449d7e0c add contextual logging to job-controller
cfbc5dc54f8 mount-utils: fix linter warnings in tests
8ced101db53 mount-utils: stop using ioutil in tests
699d118d85f mount-utils: stop using ioutil
b690450e846 mount-utils: don't reread mountinfo on newer kernels
8c79a911331 mount-utils: isMountPointMatch: simplify and speedup
404e844468b mount-utils: add isMountPointMatch test and benchmark
4bb02392793 mount-utils: IsMountPoint: fix
167252fb5e0 mount-utils: format with gofumpt
55b690ee018 kmsv2: no-op refactor priming logic into its own function
15003c609d0 kmsv2: refine probing logic to avoid slow starts
d8150b81601 kmsv2: add a sanity check to confirm that new state is always valid
8c06ca68d7d Details added in kubectl explain help
4960207b317 DRA Node E2E: test NodePrepareResource timeout
5c5f6e8fe2f DRA Node E2E: add NodePrepareResourceCalled API
673d0aaa60c DRA Node E2E: add call blocking to the Kubelet plugin APIs
a60314c47ef Make etcd component status consistent with health probes
e1735b98637 Make CA valid 1 hour in the past
5e048041e40 remove helper function for unused storage feature in pkg/proxy/util
e1aef2ac917 Bump publishing bot rules for Go 1.19 branches
9cb52a6872c Fix the flaky legacy_service_account_token_clean_up_test.
4e20a8f52bc kill all processes in a container in the event of OOM
0222e6d4ae3 Update kind details for DRA e2e
75cf25c0e7f iscsi: use dbus from the host
f7a5817bc65 e2e storage: terminate worker quietly on test completion
22de2c27d1b scheduler: improve cache_test.go - Add test name to enhance test readability - Remove redundant test tables
325205efb72 Migrated pkg/controller/endpoint to contextual logging
be14b026e33 fix the integration test
a7eb7ed5c6a refactor: simplify RunScorePlugins for readability + performance
587f992a7b2 e2e: deflake a HPA CPU test by stabilizing cpu consumption
672614b57e8 apf: refactor bootstrap ensure strategy
910630fbea2 kubelet: mark '--azure-container-registry-config' flag as deprecated
5e6ae25a33b Updates chairs, tech leads for sig cloud provider
34368884783 move luxas as an emeritus approver of test/e2e/lifecycle
e97d9803f2f add SataQiu as a test/e2e/lifecycle approver
4977189c1b0 Fix ginkgo noColor deprecation warning
e6bc945a61b Add startup probe in integration test
ea1de7517ee CHANGELOG: Update directory for v1.28.0-alpha.2 release
7ccc2317839 add test for authorizer type checking.
54cae706786 Pass the mandatory parameters to support testing on ARM64
fdc49f5257c Return deprecation warning for storageOS,PhotonPD,ScaleIO..etc
151509fb74d Remove unreachable warning on volume name dup
d73923c8ebf fix 'pod' in kubelet prober metrics
0ddaa7f7c9f Fix warnings on "duplicate" env vars
4820cc852a0 Minor fix on variable
a6f5abfb81e Updating names from webhookconversion to conversionwebhook
0fe84ff7cb1 Re-add the legacy wsstream package and deprecate it
8f3109da791 Refactor wsstream library from apiserver to apimachinery
6d4abd7e7b6 bump distroless-iptables to v0.2.5
04fa4184ed3 add support for authorizer to type checking.
e5a15c87e9d Ensure timeout test handlers don't complete before timing out.
f2a64cb91d7 fix Cronjob status.lastSuccessfulTime not populated by a manually triggered job
2f6b1d3c0fb Ensure Job sync invocations are batched by 1s periods
ed429c4388a replace node-role.kubernetes.io/master taint with node-role.kubernetes.io/control-plane for gce kubelet flags
b1da721bdd7 Update vendor with hack/update-vendor.sh
88b69cdd0e6 Fix flaky persistent volumes e2e test
d9e12db547e Bump images, versions and deps to use Go 1.20.5
ea6495e8284 Remove StartupProbe on debug with pod copy
ac15d697578 remove RetroactiveDefaultStorageClass feature gate checks
6afb363ca17 test: remove RetroactiveDefaultStorageClass feature gate
97a81a59f62 test: correct validation test error message
42722ffef02 graduate RetroactiveDefaultStorageClass feature to GA in 1.28
7f87ec9406a storage: Add MadhavJivrajani as reviewer
7ac36bd0720 test/integration: use t.Log in TestAPIServiceWaitOnStart
77cf37ee543 STRUCTURE: cmd/kube-apiserver: move admission construction back from controlplane
7961812bed8 STRUCTURE: cmd/kube-apiserver: move OpenAPI construction back from controlplane
43be9c3a0ac MOVE: cmd/kube-apiserver: move genericapiserver construction into controlplane package
9be6e7bb339 STRUCTURE: cmd/kube-apiserver/app: stratify construction with options/config/server
e6ed4c7934d CLEANUP: cmd/kube-apiserver/app: remove trivial funcs
f7d4e90b5c4 MOVE: cmd/kube-apiserver/app.createAPIExtensionsConfig -> pkg/controlplane
087fbc9304f Remove invalid merge key
4962e6eacb9 Squash detectNodeIP and nodeIPTuple together
b5db644422d Add merge map key validation to StorageVersions
58162ffd63b DRA: add node tests
b69b34bec64 Move a kube-proxy unit test to the correct file
4bee9b2b352 structured logging in proxy/ipvs/ipset
26801d6541a kube-proxy avoid race condition using LocalModeNodeCIDR
4dbece1e203 e2e-framework: remove node-role.kubernetes.io/master taint from non-blocking-taints
dddbecb47e2 prune's xml files to display only top level tests and failed sub-tests
8b0a6ed6999 re-send the shutdown signal in case the dbus restart is not done
4d0e25151db Fix SELinux contexts used in e2e tests
010343562c6 dependencies: update github.com/dustin/go-humanize v1.0.1
743e5525edb fix eviction failing test for nil feature gates assignment
6d66fbc6b67 storage: Move cacher tests to reside with the cacher code
70978e4af61 cacher: Move common testing utils to a single file
bdfb96c57d3 chore: os.SEEK_END os.SEEK_SET and use b.Logf(...) instead of b.Log(fmt.Sprintf(...))
7a80d7c839c add warning for duplicate containers[*].ports with the same port, protocol, hostPort, and hostIP
923db7bd8e0 chore: use strings.Contains instead
e9e4acb1dde k8s.io/apiserver: remove skewed completion from EtcdOptions
4d85a1f00cb storage: Implement TestWatchFromZero for cacher
2e76ac31fd8 Replace os.Setenv with testing.T.Setenv in tests
ac5ce5cbce7 Replace os.Setenv with testing.T.Setenv in tests
b274a9bf7c4 remove csidriver endpoints from pending_eligible_endpoints.yaml
5d4bf0b6f90 Promote CSIDriver e2e test to Conformance
3085b57869a Do not copy bytes for cached serializations
c009667c6c6 deprecate CephFS plugin from available in-tree drivers.
1fcfd1d5090 pkg/util/iptables: use buf.String() instead of string(buf.Bytes())
9eaa50cc829 Rename scheduler queue variables for consistency
6195f96e56e minor fix comments in netpol so its easy to understand the tests for newcomers, remove one misleading comment (#118264)
410b6023d6f scheduler: fix code style issues for pkg/scheduler
71ab7dc791f Remarks
70d3bb43e56 Adjust the algorithm for computing the pod finish time
b994e639a6b Add mininumKubelet tag into ReadWriteOncePod test
db9fcfeed29 Move cri/streaming to k8s.io/kubelet staging repository
da4a8d831b9 kubectl: use bytes.Buffer.String
8e4228a8c1f remove CSI-migration gate
a5c4fbe9791 chore(fix): test jsonpath condition parsing errors
9d3e55ec431 Support JSONPath condition without value
f520f6fd06c Add Pod Termination e2e tests to test termination grace period seconds
b4dfae25dee fix terminationGracePeriod blocked by preStop
fd92acba5a8 chore: should use buf.String() instead of string(buf.Bytes())
20866b3f85a dryrun: Don't reuse current object for conversion
f351c6d1ecc k8s.io/apiserver: apply storage object count tracker implicitly
45c9e066164 Fix errant debugging code in codegen
a51be9786ba remove enabled by default beta resources that have been removed
f4d326a1fcc verify: produce JUnit file also for pull-kubernetes-verify-strict-lint
a4ea058cc75 feature(scheduler_perf): distinguish result in scheduler_scheduling_attempt_duration_seconds metric result
322968e9b38 Update unwanted dependencies per CI instructions
2111e79f56a Update gnostic references
1993a4cb379 vendor
0b4efddae01 verify: nicer failure message rendering in Prow
dbbb21469f4 verify: pick relevant lines from verify-golangci-lint.sh as failure message
d6168bb6587 Add ephemeralcontainer to imagepolicy securityaccount admission plugin
70ff750c755 chore: io/ioutil deprecated
1ce285ad3df Revert "removed the deprecated `azureFile` in-tree storage plugin"
daa71159077 kubeadm: add deprecation message for UpgradeAddonsBeforeControlPlane feature gate
a6c7f63b188 Set the node-ips annotation correctly with CloudDualStackNodeIPs
d49c43abde5 kubeadm: add integration test to ensure that the supported etcd version is always available for the stable Kubernetes version
6d23da045fc Migrated pkg/scheduler/framework/plugins/interpodaffinity to use contextual logging
db2389ba9c8 kube-proxy: remove log warning about not using config file
15aa00fc836 Remove unused `getSeccompProfilePath` helper function
d0a64739e2c e2e dra: collect and check GRPC calls
68901de8981 Enable optionals and add tests
5c0b59891d6 Bump cel-go to v0.16.0
5b3510c0b67 Fixing gmsa-webhook install steps for Windows GMSA full tests
c539c739161 Changes to buckets and comments
35d2431b3a8 informer: fix race against Run and SetTransform/SetWatchErrorHandler
64269620597 Changes to histogram buckets
c48c4c679ad Fix ginkgo deprecation warning
5a14573258b clean: use info instead of error to log queue closed message when scheduler exit
f2a5e247ebf add pacoxu to kubeadm approvers list
705c6ff315b Review comments, added metric namespace, moved utility functions, and etc
a8ef109aca0 CHANGELOG: Update directory for v1.28.0-alpha.1 release
369e3faa4ff Moving Kubelet Credential Provider test to common so that it can be run both as Node and Cluster test
2d8c820741d move pkg/util/ipset inside pkg/proxy/ipvs
85e0d8c8b14 Revert "kubeadm: add --feature-gates flag for kubeadm upgrade node"
f3ba9353363 Consistently use proxyutil as the name for pkg/proxy/util
b3111170f8e remove Ephemeral Containers form list
64c9070f8d0 add pod containers[*].port duplicate warning
f9ae3e774d0 testutil: use contextual logging
534f5edb53c Cleanup boilerpate.py
d9e2583af16 test/e2e: replace deprecated ioutil
4b4b3b71b78 clean up dead code
4523a301c87 kubeadm: enable --feature-gates flag for kubeadm upgrade node
074900e81bd scheduler: update the scheduler interface and cache methods to use contextual logging
0951204298a kubeadm: Supports() return true for all alpha/beta/ga/deprecated
c6aaa1eab04 kubeadm: lower the log level of EtcdSupportedVersion warning message as it is a kubeadm internal warning
4e6d929580a deprecate csi migration for ceph rdb
11a40406a1f Promote Ephemeral containers e2e test to Conformance
bf116e85943 Optimize reflect checks further, save item type information
12e3d9fcc4c Implement WithAlloc variants for EachListItem and ExtractList
efc601302ad Extract List reflect optimization
b8a3bd673dc Add WithAlloc interface and stub implementations with base benchmarks
4aa5441de2e Move pkg/util/ipvs inside pkg/proxy/ipvs
0535e742241 feature(schedule_one): use heap to find the highest score node
532fe3c9653 Add kerthcet and sanposhiho as SIG scheduling approvers
8df1a5e6dcb Webhook conversion metrics
a045fedd025 Update google.golang.org/genproto
455169bd66a e2e storage: add missing error checking for WaitForVolumeAttachmentTerminated
d76043958fb Follow up from dynamic retryAfter
510287d3444 Fix the git-repo test error caused by the correct use of loop variables
926bc9bf8e5 Update podFailurePolicy comment from alpha-level to beta
7d2e1888f8a Chore: fix the example about how to use PollUntilContextTimeout
4d2ff08bfa1 e2e-framework: code cleanup for mismatched comments
15678e4a67e Optimize usage message of commands which have subcommands.
6a867eacd85 kubeadm: warning only for deprecated FG
4dfc684b342 Set kube-proxy memory request to 50Mi
5d18f471494 Improve clarity and guidance in provisioner waiting message
7a6b4a9215e dra scheduler plugin test: fix loopvar bug and "reserve" expected data
e31b2080f5a e2e framework retry on Service unavailable errors
a50549cc906 e2e rc: if the pods are running but not ready the test will fail
133eff3df49 implement LegacyServiceAccountTokenCleanUp alpha
a6003ae1e11 fix unknown field error in rs e2e
27057def059 Signature fix for registeropenapi
4373ae05f34 Update vendor
72e4c9a82ac kubeadm: add the "config validate" subcommand
f4891842194 Delete CRDs created during field validation tests.
2ea6896f90c Add warning log callback in client-go loading rules (#117233)
485d1631cd3 Remove Azure file in-tree storage plugin
2eed9b4143a Should get ENABLE_CLIENT_GO_WATCH_LIST_ALPHA when new reflector
e2ed8f8c3ca style: correct the sentence
08139044040 Fix: Restricted profile comply with PSS (#117543)
c68f8586580 proxy/ipvs: github user name change: daman1807 -> aroradaman
05b3beb7f02 Create e2e test for CSIDriver endpoints
d459b4429f4 integration: remove special verbosity for garbagecollector and graph_builder
931cc96b8d4 remote windows condition when #116693 is merged
0bff705acd8 Preserve code blocks in templates.Normalizer (#118029)
7470a94f5a9 add some log for debuging
6232ac734a0 Merge duplicated Linux/Windows kube-proxy setup code
08ce5805769 Add ProxyServer.platformSetup
e0b7f31ce6e use standard base image in dra dev
149f4878a70 Simplify DeferCleanup.
dbb6d25f13b e2e: apply timeout for CSI Storage Capacity test only to node
1c05cf1d516 kube-scheduler: NewFramework function to pass the context parameter
1b206399f6a fix using stale binaries in local-up-cluster
ece68cf8337 Fix update-vendor.sh logging
cba8c1f5e2e Fixing windows memory allocation e2e tests after a refactor
96d48de9b97 add OWNERS for cmd/prune-junit-xml
86a258b13a2 kmsv2: ignore cache key expiration on reads
89439b570fc test/e2e: use agnhost latest version in the manifest
b30720fc9f0 Add test for starting kubelet with a CSI volume mounted
ad9e264c3cc test/e2e: Use json.NewSerializerWithOptions in place of json/yaml newSerializers.
048938f1d85 hpa: cleanup `currentReplicas` code
0f5535ea259 registry/core/service: remove incorrect comments
2db577a560c scheduler-perf: inject "benchmark" as name into JSON result filename
0789bbe9f7a Update k8s.po
b6364dddfe6 update webhook test to go 1.21
d8db9640fab kubeadm: remove function pointer comparison in phase test
2658a2b627f Make connection lost retryable in webhook
ed26fcf5b87 cleanup useless null pointer check about nodeInfo.Node() from snapshot for in-tree plugins
e21cf9a54e9 Setup e2e_node to support testing on ARM64
ec8d94f2057 Grab logs from all the containers when DNS related tests fail
182cd425d3b graduate LegacyServiceAccountTokenTracking to GA
337728b0255 Improve backoff policy in reflector.
0fe27a06f99 Cleanup the Job controller handling of terminating pods
c74790e266a remove redundunt type conversion, unused variable...etc
07c94553608 fix apiserver InstallAPIGroups slices out of range
aa11cc69696 Mark grpc-gateway v1 as an unwanted dependency
19ae2de19cb kubeadm: speedup init by 0s or 20s
e4102d5e300 Test APIService safe handling at startup
3be3997193a Fix waiting for CRD sync at server start
71ec9df5b61 update image tags in manifests to reflect the version listed in the source
a10ff53d8e6 Reword the event message to read better for a single secret
b2eae2f92e9 Support podman for building release images
6b4251c0fdf Remove statefulset from logcheck.conf
3f1d8e7aeb4 Apply to use contextual logging for all loggers in statefulSet
d9b941b7827 Remove undesired verbose fields from log
bea71a3e4ee remove unused pv informer from expand_controller
4c9887e3ebd Updating the nodeAffinity of gated pods having nil affinity should be allowed
a0f14c1c5ea CHANGELOG: Update directory for v1.25.10 release
bab8002fb38 CHANGELOG: Update directory for v1.24.14 release
80b9c853613 belated cleanup of some kube-proxy stuff for old versions
e553fe1fff0 CHANGELOG: Update directory for v1.27.2 release
c9e4de90dbe CHANGELOG: Update directory for v1.26.5 release
526d45416fb update err status code check in transformation metrics
5a75a03a774 Improve warning message
b76ef2e095f fix: move to `dl.k8s.io` from `kubernetes-release` bucket
fc4fb004cf6 add reviewers and labels to yamlfmt
93462377120 Update docker/containerd/runc versions and capture more logs
885f3d7a7df Sort and limit to the describers the return (string, error)
9e9a6cde4b8 test/integration/scheduler: fix data races
b035c373db8 build latest sample-api-server for test/e2e
bafae5c0764 rename err to lookupErr
8b9cbe62025 fix false positive kubectl plugin unit tests
b9950b5192d Drop zeitgeist from tools go.mod
36f0caf7ecd remove GlusterFS references from test/e2e/* comments/descriptions
d83c3ce7ca8 make rbd and iscsi test images in parity with the test code
9de2846c72c remove glusterdynamic provisioner images reference from tests
763e7923fb9 e2e: replace ubuntu-slim with agnhost in hpa cm noExporterDeployment
261de704c25 kubeadm: fix a bug where the static pod changes detection logic is inconsistent with kubelet
666be79d670 legacy names of volume plugins have been gone a LONG time
8b4840aa374 clean up unsupport etcd version
e0ebac6c9ca drop redundant NArg check when looping Args
82c40e3697e drop redundant NArg check when looping Args
829bcea7634 remove vestigial BUILD file
0616d15712b Fix perf-test by increasing the error margin
46ed70ecac5 Bump runc to v1.1.7
51d79c4d6b0 e2e: use gomega.Expect instead of deprecated framework.Expect*
1daf74d25c4 Initialize data if nil
b81cfb9cb8c Update vendor
15c5713015e managedfields: Remove gvk from SkipNonApplied
b52e57c589a managedfields: Improve/strengthen version checking for Apply
559d12fcce0 managedfields: Create NewFakeFieldManager
45853e20ae5 openapi: Create client -> TypeConverter function
45603efecb7 Create e2e test for PodEphemeralcontainers endpoints
ebaf49dbd70 Export DefaultServerUrlFor utility function
5519b89a28e Validate lock identity
e3eb4bd0c56 updating dependencies.yaml for etcd v3.5.9 version
c99cf53a108 e2e: deflake hpa e2e custom metrics tests
247ea7fc780 use upstream etcd github path instead of redirecting one
6616e1f2385 update etcd version in install.sh to 3.5.9
0e456dcf866 Clarify localhost nodeport comments/errors
a744a186b67 Rename GetNodeAddresses to GetNodeIPs, return net.IP
2ca215fd994 Add NodePortAddresses.MatchAll()
d6e488b998e Changing annotate PrintFlags from annotate to annotated
d8e82b1417c e2e: use gomega.Expect instead of framework.ExpectEqual in windows/*
8c6c1e53194 plugin_evaluation_total metric support preScore/score
3680a5230c3 Bump docker/distribution to 2.8.2
3ac74973610 Chore: cleanup in interpodaffinity
073b4cf66ad test/e2e/dra: fix kind cluster creation
3b69fa2fa54 dependencies: update github.com/mitchellh/go-wordwrap v1.0.1
19ae103e829 emit warning on deprecated annotation volume.beta.kubernetes.io/storage-class
517c5b75c5d Update unwanted deps
d6d1dbdd82a Update kube-openapi, drop mapstructure
a52dcd0d9f3 Add DelayCacheUntilActive option to start informers after leader election
7c554ea1d91 Regenerate discovery fixtures
2ab6fd3590b Capture discovery API output in test fixtures
3867569ae27 codegen
0819d342040 using parsers in applyDefaultImageTag
7da7468a3fc cleanup: duplicate request_test TestRequestAbsPathPreservesTrailingSlash
f0f92853ad8 Add api-machinery TL owners permissions for jpbetz
e4dd6f68dc8 remove CSIStorageCapacity featuregate
9ac657bb94e Make NodePortAddresses explicitly IP-family-specific
f7bb9a9a0a7 Remove a mostly-unused variable in the ipvs proxy
1ca8f84eede Scheduler: Pass the supported nodeSelectorOperators to the field.NotSupported
d85b91f343b scheduler-perf: measure workload runtime and relabel workloads
aa405c8aac6 Allow runtimes to provide additional context on CRI pull errors
83fb5a50bc9 dependencies: bump k8s.io/utils
daebf1c735d Simplify plugin resolution check function
f562375c8a6 add changelog for kube-addon-manager v9.1.7
be4c4a51ea2 Update pending_eligible_endpoints.yaml
d34d4755ae2 Promote APIResources e2e test to Conformance
6e2ea32fc89 feature(DynamicResources): return Skip in PreFilter
a0133b7cc47 proxy/ipvs: added daman1807 as reviewer
dcefc42b35a update vendor dependencies for the change
ae749238786 etcd depdencies are updated to v3.5.9
13cef6a7549 cleanup unused variables for v1beta2 component config
815578295ae Revert "support short name for flowschema and prioritylevelconfiguration"
72202f9a007 Revert "add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations"
45836971f27 cli: replace intstr.FromInt with intstr.FromInt32
8580c116d5c fix: use dl.k8s.io, not kubernetes-release bucket
ef9f8d7c0c8 kubeadm: Remove leading zeros from etcd member ID in log messages
ff4c6916ec7 kubeadm: Fix log message when etcd member is added as learner
196e2f041b1 Update the cgroups v2 toleration in local-up-cluster
7248b9263f0 Fix comments on InformerFor
6ac1bae2815 test: Improve debug output of init container tests
1f16d711857 kubelet: Rename PodManager DeletePod to RemovePod
166256f73e8 kubelet: Reduce the interface pod.Manager consumers accept
8bd94dfa762 kubelet: Organize and document kubelet pod-related members
bb568844b67 kubelet: Separate the MirrorClient from the PodManager
80b1aca580b kubelet: Remove dispatchWork and inline calls to UpdatePod
e7207c85467 kubelet: Merge orphaned mirror pod names into GetPodsAndMirrorPods
f8086f2dac1 kubelet: Convert IsMirrorOf to a function
02960a8253e kubelet: Remove unused mirrorPodFunc in eviction
1168b118750 Stabilize local-up-cluster in our CI
3dc4eea8896 proxy/service_health: release read lock early
655f2f74010 replace build to build.sh
cc1251123ba use wait to avoid blocking the SIGTERM handler
808098c4c69 proxy/ipvs: healthzServer for instantiating the proxier
4b50c4bb016 Update --image-gc-low-threshold option's description
3da79e2850d OpenAPI V3 invalid document checks
cbe825b2b6c ginkgo update to v2.9.4 and gomega to 1.27.6
feb63fb0285 e2e_kubeadm: stop using deprecated framework.ExpectEqual
7681135f1b1 etcd: Build image 3.5.9-0
7a4787ade10 openconsensus update to v0.24.0
82d1e356de4 deps: go-gcfg update to the v1.2.3
f03b5cdc083 update containerd/ttrpc to v1.2.2
dd49af86b7b [UT] add ut for pkg/client/conditions
f7948c6e2e4 use kubectl v1.27.1 in cluster addon manager
eb1483fe64d user --prune-allowlist in kube-addons.sh
20602c819be e2e framework: remove dependency on k8s.io/kubernetes/pkg/api/v1/pod
2e2afc7fd27 Job: Use generic Set in validation
1ffe3f467e8 lavalamp is taking a long break
1ea17254bf0 hack/tools: bump logcheck to v0.5.0
3fa55d469c7 fix a bug where the AttachedVolume is not printed correctly in the log
8c82855467b When expecting pods count only active ones
de882f5193b Job: Replace deprecated pointer utils with supported ones
8f11f5bb2b5 DRA: use containerd 1.7 in kind image
123845da886 Log a warning if a ImagePullSecrets does not exist
3f3e1d507d0 add new metrics for the internal client-go transport generator
e7c679c362c cidrset, multicidrset: directly use getIndexForIP method
fe728996ca8 scheduler test: call frameworkruntime.WithLogger function for contextual logging
b4563925678 Migrated `pkg/scheduler/framework/runtime` to use contextual logging
bfb4f8b7071 etcd version monitor build go version update to 1.19.9
0ae902fca4c update golang version of etcd build to 1.19.9
3b634de6ffc test/e2e/dra: update README
5fdeaa8e42c update for feedback
6f23c774085 QueryParamVerifier falls back on invalid v3 document
d5f4b9634c6 DRA: fix image build on Mac
569695b0226 e2e/network: setting --max-time for curl
5fd5768ef32 kubeadm: Make etcd member removal idempotent
164113bc1c3 fix a bug where the KubeletConfiguration is not printed correctly in the log
a5575425b03 add no resources found message to rollout-status command (#117884)
c0611b6bb33 Return Skip in InterPodAffinity#PreScore under specific conditions
11f1d241654 unit tests: Fixes kubelet util unit tests for Windows
3a394bbeada fix:translations zh_CN LC_MESSAGES k8s.po error
4634073d0b9 Use getter function for plugin subcommand resolution
2c03afac4c8 apimachinery/util: stop using deprecated io/ioutil
e3d5feb76c4 fix HPA plain metric calculate
6607834207a Use the same report files as before
9150e6b55a1 s/of referencedFrom/from referenceFrom/
4bbf611773d Retool validation for pod HostNetwork ports
ec3379a717e Do hostNet Pod-ports -> hostPorts in Pod defaults
ef796dca9bb Simpler openapi gen - subprojects do themselves
93b2845bec7 Codegen: subprojects openapi
4909dbd0d7f Deprecate generate*groups.sh -> kube_codegen.sh
c3971002c9d MinimizeIPTablesRestore to GA
8f229057484 [refactor] refactoring flags and options in Expose cmd
82e3fa0930e fix fd leaks and failed file removing for main pkg and cmd
5289a7b029f fix fd leaks and failed file removing for test directory
b94c6daa0b7 fix fd leaks and failed file removing for pkg kubectl and pod-security-admission
982d2966cd3 fix fd leaks and failed file removing for pkg controller-manager and apiserver
73aeed8766c fix fd leaks and failed file removing for pkg client-go
f49cc5eb113 add remove_file in client-go util directory
c8737346db4 Export GOMAXPROCS environment variable
e865b30abd0 update serial number to a valid non-zero number in ca certificate (#117791)
308ab380d7c Add unit testcases of refMap.
23ac0fdaa52 APF: Dynamically compute retry-after based on history
99ebc8d9f82 Tweak annotating kubemark nodes on startup
aab02d52f4d Fix make etcd image failed
91570a36614 promote ServiceNodePortStaticSubrange to beta
e79daae6823 Chore: clearify need update test cases
fb4d0150b96 Convert apiextensions-apiserver to new codegen
29913a89735 Convert code-generator/examples to new codegen
643bf1b0362 Convert kube-aggregator to new codegen
1e0b7aab756 Convert metrics to new codegen
e368f1b25bf Convert sample-controller to new codegen
d0e5adb58bc Add a new way for subprojects to do codegen
05b3449346e kubeadm: Add etcd client unit tests
fc1b2287798 kubeadm: Use internal etcd client through an interface
e740f8340ee Introduce CEL EnvSets for managing safe rollout of new CEL features, libraries and expression variables
235c261196e Job: Fix a misspelling
b4560f9e573 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
f2de1a00b8f storage/etcd: skip SendInitialEvents if the request is backward compatible
bbf5c03dd80 Add NodeLogQuery e2e tests
ddb8c8a38b4 remove ServiceInternalTrafficPolicy e2e feature tag
16fecf3e761 Refactor APF handler in preparation for dynamic retryAfter
d3237b72587 unittests: Fixes unit tests for Windows (part 7)
ccb4ca89549 record podUID in refMap in watchBasedManager
e4340f0d9bd Job: Use generic Set in controller
22d0aa1d04a remove DevicePlugins featuregate
27cdddeaf16 update Feature:KubeletCredentialProviders] e2e test name
2ebc0cc0257 remove unwantedReferences
57969c1b52c Fix etcd3 config changed
4e24237f3bc e2e services: retry if healthcheck nodeport is not avaioable
e560df770e3 respect local GOPROXY setting in build/common.sh
c56839c0a1e etcd: Update version to 3.5.8
64f2fe2357d kubeadm: fix crictl pull using wrong flag, use -i and -r
936265e8707 Add podUID in AddReference and DeleteReference
cd51c1803e2 Add new partial/full sync time metrics for iptables kube-proxy
a862a5f2d24 Use the right executable ss/netstat in log message
ae08fe1e199 ProbeTerminationGracePeriod promote to GA
2cb215e1091 Add all describers to the exported DefaultObjectDescriber
5ea40d14fd9 Added e2e_node test for sigkilled pods exit code and exit reason check
3e57a0bd138 Add go.work and go.work.sum to .gitignore
008576da073 Improve and simplify maintenance of APF bootstrap objects
194ac957ad3 make resize of hollow objects more verbose in start-kubemark
c3e77bf21cd Update podFailurePolicy comments from alpha-level to beta
4fa7e444805 Remove gcp cloud-provider checks for kubelet version >= 1.7.2
1c45bacfb0e mount-utils: fix flaky test 'TestFormat'
6a5cf99aad1 pkg/proxy: human-readable messages
c2c8b8d1783 pkg/proxy: using generic sets
359bcec0e09 benchmark test to evaluate the overhead of podMatchesScopeFunc
edd032e22b7 Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
e807a6aec57 Disable NewVolumeManagerReconstruction feature gate
0c9f55588c5 Simplify creation of default KubeProxyConfiguration
ec2cc36404e e2e: disable jig.ExternalIPs
b849ff57b85 e2e reasonable grace termination period timeout
791573ddb60 promote ProxyTerminatingEndpoints to GA
b249b4ca9bb Promote ExpandedDNSConfig feature to the GA stage
5aca41af50f [local-up-cluster] Use the kubectl we built
8524d21bf48 Bump Ginkgo Poll Progress parameters to a sane level
034528a9f04 scheduler perf: add DynamicResourceAllocation test cases
1c52fb38759 Update publishing-bot rules for release branches to Go 1.19.9
19f7cb23c8c e2e agnhost functionality to RST TCP connections
63b69dd50ce Add support for CRI `ErrSignatureValidationFailed`
859359ad6ae Fix strict linting
a7035f54595 Pass Context to StartTestServer
2d866ec2fc8 Teardown only scheduler in integration tests
8969fdd2f51 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
cede96336a8 Depend on k8s.io/utils cpuset
9f46cbc6fa4 Update k8s.io/utils version to v0.0.0-20230313181309-38a27ef9d749
10a869fc752 Remove duplicated config fields from ProxyServer
1f7c07f3553 scheduler: remove deprecated v1beta2 KubeSchedulerConfiguration
a3848714f55 dependencies: update gh/Azure/go-autorest to latest version
17c17da97b6 e2e_node: move getSampleDevicePluginPod to device_plugin_test.go
c53cc4fe0db Update distroless-iptables to v0.2.4
c4575c34382 Fix up detect-local-mode validation
3734fe7ab1d Remove some useless error checks
19885264f3d [go] Bump images, dependencies and versions to go 1.20.4
d82684e691d Add check to skip PodTopologySpread PreFilter if no constraints are specified
d22b9310e6e Allow override of prerelease/buildID portions of version at runtime
36b760a9317 upgrade etcd deps to v3.5.8
7c5573d326d Fix cmd, integration, and conformance tests
69eccd41b89 endpointslice: reduce visibility of vars/funcs
933b665c18c Upgrades spf13/cobra to 1.7.0
3653b21e6ba Move glusterfs 1.25 deprecation notice to the deprecation section.
9d19c207d22 fix: fixes flake in TestKMSv2Healthz
561548e86c4 unit tests: Fixes kuberuntime unittests for Windows
5f489a33277 feat: rename PodHasNetwork to PodReadyToStartContainers
a40810a2d9d Add comment about removing the feature gate
e51e5962d5a Use early return pattern to avoid nested conditions
e1e38148bb2 Add DisruptionTarget condition when preempting for critical pod
7be3f8e43f7 Remove old metric scheduler_goroutines
e7396e35513 remove ability to re-enable serving deprecated versions of the runtimeclasses kind
d96f83f02f9 windows-tests: Update connectivity check util function
e496085bd34 Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
d257d5dfdc4 Trigger re-sync on any change to providerID
40de26dcff8 KEP-3325: Promote SelfSubjectReview to GA
d9524379210 Fix flaky HPA e2e tests by not failing on context cancelled (#117669)
5fff8cae749 dependencies: klog v2.100.1
d55b67b3490 Clean up brace whitespace in **/validation_test.go
2ad2c15c9ca Update copyright year to 2023
b464d084278 Remove custom fake svc lister in favor of regular indexer
b899ae48477 remove genericfeatures.DryRun in 1.28
c6bdde8051c Create e2e test for APIResources endpoints
ab9c8eb1e8d Removing WindowsHostProcessContainers feature-gate
077cc20f8af fixup patcher test to include field manager
ad5cda4d219 remove checks for fieldmanager from handlers
4721ec7519c include apiextensions types in apiextensions generated openapi
08e756342c2 fix scale not being given gvk in CRD openapi schemas
ffb9c076d77 add OpenAPIV3 config to tests and server options
c2177dca5f6 add error for attempting to initialize field manager with nil typeconverter
94909af68ae supply deduced typeconverter to apiserver tests
302daa889c5 Throw error if OpenAPIV3 config is not provided
1b766839677 filter out directives before taking patch value as-is
6de6cd0a658 add integration test for nested $patch in SMP
e00a9c3a0b1 add subtests
ffeec1f4d44 Update compatibility data test
ec997d5433a Generated files for NetworkPolicyStatus removal
bff8a6cd9f3 Remove withdrawn feature NetworkPolicyStatus
0fcf42f3211 Move test double queue to test file and unexport
208af2d1d83 Localize SpyWorkQueue to cloud-provider for now
a15013ec8b1 Document RetryError properly
73bc9861d25 Improve error logging in processNextServiceItem
18e978a89df Improve RetryError GoDocs
de34540248a Update kube-openapi to fix race
d0677f528c0 Add json tag
69bc6855568 node: podresources: graduate to GA
04ad946e8fb kubelet dra: lock before getting claimInfo CDIDevices and annotations fields
aaa30439bdd reduce util pkg for testing in tempdir.
4c83aae2cc7 kubeadm: replace intstr.FromInt with intstr.FromInt32
026e7c7cb37 registry: replace intstr.FromInt with intstr.FromInt32
0ee9f1b7a75 kubelet: replace intstr.FromInt with intstr.FromInt32
1c4b97ea272 network: replace intstr.FromInt with intstr.FromInt32
5bfe738af2e apps: replace intstr.FromInt with intstr.FromInt32
94410ee8078 api-machinery: replace intstr.FromInt with intstr.FromInt32
4911e9de4a7 api: replace intstr.FromInt with intstr.FromInt32
79266560383 kubelet: Implement support for Windows podAndContainerStatsFromCRI
14952cef5b7 kubelet: Move Linux stats to a Linux specific file
fc8b4657c18 Add tests
ea4ce5dc28e Alias api/errors instead of stdlib errors
a179203bdba Support specifying custom LB retry period from cloud provider
da922f0af67 Remove ability to re-enable serving deprecated discoveryv1beta1 APIs
e28f3de6568 Revert "proxy startup-time config handling cleanup"
d94c733ee2b Use absolute path instead requestURI in openapiv3 discovery (#117495)
34d3c7520be update Deps gopkg.in/warnings.v0 v0.1.1 to v0.1.2
944a4cd3114 Remove ability to re-enable serving deprecated autoscalingapiv2beta APIs
671a3f43fdf Correct the changelog for GlusterFS removal in 1.26.
859690d72a4 Added support for image credential provider for windows and arm64 on gce
28c573358b0 test for init container restarts
d727df1741e node: device-plugin: e2e: Additional test cases
3dbb741c976 node: device-plugin: add node reboot test scenario
a26f4d855d5 node: device-plugin: e2e: Capture pod admission failure
96975737033 node: device-mgr: e2e: adapt to sample device plugin refactoring
282a6a80b92 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d509e79837d node: device-mgr: e2e: Implement End to end test
dc1a5926321 node: device-mgr: Handle recovery by checking if healthy devices exist
53c9103a1de Set ENABLE_AUTH_PROVIDER_GCP to true in gce tests
2572a430344 kubeadm: fix unit test failure on node with multiple cri endpoints
f81b49d8739 Remove ability to re-enable serving deprecated eventv1beta1 APIs
48d01d6d9b0 Remove ability to re-enable serving deprecated batchapiv1beta1 APIs
c6f4bee98dd kubeadm: add deprecated FG UpgradeAddonsBeforeControlPlane
4d9261c7567 Fix LocationOfOrigin shows up unexpectedly
76fe41a996e chore: update cgroups and ttrpc versions
0dbeff4b6e6 remove GA feature gates in 1.28 about network
4e7b6e8ba49 remove DelegateFSGroupToCSIDriver featuregate
fc0d2cd32f5 added init containers tests to simplify the sidecar KEP large PR
258c4c4251e Remove duplicated config fields from ProxyServer
9d4f10f5d28 Fix up detect-local-mode validation
5ece6541b80 proxy/ipvs: don't bind nodeips to the dummy device
5310305098a proxy/ipvs: add a GetAllLocalAddressesExcept() function
f24d1d2c950 use go 1.19.x for etcd version monitor compilation
91ee58050f8 wait: fix PollUntilContextTimeout godoc comment
b3e0bc88640 scheduler_perf: let the test decide which informers are needed
969d28b12b7 scheduler_perf: refactor common code
91df71be549 correct etcd base image reference in the doc
6b40cd8cd37 update test/conformance/image version to v1.4.2
6c8be35fa86 update the etcd base image to v1.4.2
1eca720dcc7 Refactor some watchcache tests
7f370d651dd Migrated `pkg/scheduler/framework/plugins/podtopologyspread` to contextual logging
54e6f609ceb Migrated `pkg/scheduler/framework/plugins/noderesources` to contextual logging
152c1a02723 Chore: Replace re-initialized variables with create new ones
37a9260d5c5 Migrate pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go to use contextual logging
eeb13993832 Migrated `pkg/scheduler/framework/preemption` to use contextual logging
550d4c00746 scheduler_perf: support test case selection via labels
79de8879cbe OWNERS_ALIASES: add self to sig-node-reviewers
217196c59fa Add ROX storage tests (#114628)
6a4cf352b8b remove tracking annotation from validation and webhooks
2af662b05fe Refactors discovery content-type and helper functions
170d5ef9fa0 code cleanup for kubeadm
902c4ecc90f Add jpbetz to approvers of apiextensions-apiserver
0a582431593 node: device-plugin: e2e: Add test case for kubelet restart
09100804722 node: device-plugin: e2e: Provide sleep intervals via constants
4a0f7c791fe node: device-plugin: e2e: Update test description to make it explicit
fd459beeff6 node: device-plugin: e2e: Isolate test to pod restart scenario
5ab4ba62052 node: device-plugin: e2e: Annotate device check with error message
5c4f397361f node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
0aa6a5726a6 node: device-plugins: e2e: Refactor parse log to return string and error
8ed861889aa feat(NodeVolumeLimits): return Skip in PreFilter
28519e240ed Fix scheduler performance regression after adding plugin metrics
c96188a38b5 remove seccomp profile path
96eaed9980d cluster/gce: update cloud-controller-manager to use go-runner
0d27d3cfffc cluster/gce: update cloud-provider-gcp image to latest tagged version
4cdfe600e04 Fix image pull error type `ErrRegistryUnavailable`
6da128bdb3e dependencies: go.uber.org/atomic v1.10.0
87230578802 dependencies: update go.uber.org/multierr v1.11.0
f7ce6f834a1 Chore: add ipfamilies tweak functions
78b8af9fed3 scheduler_perf: update throughputCollector
a325fdbbe5d update Deps gopkg.in/natefinch/lumberjack.v2 v2.0.0 to v2.2.1
da3e7e37816 stop watcher when error occurs
018564b8cfc change the seccompProfile field description to match the imlpementation
6d8a0100f70 Fix typo in kubectl api-resources help text for --categories flag
3c45b61b643 [KCCM]: have providerID trigger re-sync, but not be required for nodes
a4f98e4c1e8 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
e115d5234c2 Fix bug where CEL listOfString.join() results in unexpected error
3229deda37b register missing metrics
24e68b3c6ac use client-go metrics not only rest_client
2bd42061b6e Remove support for EndpointsLeases and ConfigMapsLeases lock from leader election
3f247e59edf Refactor cacher.ListerWatcher code structure
892ebf2d253 Ensure version "*" is passed instead of "" for all authz checks (#116937)
73d9a9cfa06 kubelet/kuberuntime: Fix flaky test 'TestGeneratePodSandboxConfig'
e3d84aa93cd kubeadm: add the experimental (alpha) feature gate UpgradeAddonsAfterControlPlane that supports upgrade coredns and kube-proxy addons after all the control plane instances have been upgraded
78e6cb1cccb intstr: add FromInt32, deprecate FromInt
88e2c344390 Enable a bunch of generic storage tests for watchcache.
860329c04b5 drop v1.25.0 API testdata
440d5910f7d Chore: add app protocol tweak function
06993afdd6a Chore: cleanup whitespaces
3d8f7233da9 Chore: remove impossible and redunant cases
4a6bc66e40f updating microsft/go-winio package to latest version
60d25c3ed77 improve remotecommand testing fuzzing the data stream
d76f5dae67c Add a comment to roleRef to document that it is immutable
959c90c1d9a Chore: add deletion timestamp tweak function
4169d7d0283 golangci-lint: allow exceptions for Go naming convention
4f8eba2a0be Chore: add finalizers tweak function
28db34a231f Chore: add load balancer tweak function
1c465c51e80 Chore: add service port tweak function
0cc7369196b Chore: add LBIngress tweak function
23c242770fe Chore: add etp tweak function
2f6bc661dc3 Chore: rewrite newService function
f9bab9a60b0 add --concurrent-cron-job-syncs flag
bc00f5c071f Update cri-tools to v1.27.0
c3384191ea6 remove validation GCE-ism
28ac914bc54 Remove repeated info
e0d5c4aa93e Move info where its most relevant
0a508ad8067 Update `kubectl edit` documentation
d0412928961 Add v1.27.0 API testdata
7514d8b3339 add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations
95fea2f2bff add test case for merging a patch against empty list
3469bb05db7 kubeadm: fix unit test panic for TestNewResetData
ed37e6986b6 uncomment exit trap to cleanup tmpdir
63d44fdde58 retain KUBE_GOPATH on recursive kube::golang
4d736a0435e cleanup update-mocks.sh
726992f9db9 call kube::golang::setup_env before setting up worktree
17db22d0558 Fix potential mutex usage bug
39e52449f9f remove nodes resource from CoreDNS RBAC manifest
7a14c5ad6dd ensure we can remove _output
11f3ef1ed7d drop linux/arm build warning, now that 1.27 is released, this is covered by the release notes
104c208d0fb add Authentication tracking request/error counts and latency metrics
65f3454c1d9 fix undefined convertion
8efeb5afcfd Dependencies Update google.golang.org/protobuf v1.28.1 to v1.30.0
6f90c536330 Dependencies Update golang.org/x/tools v0.7.0 to v0.8.0
5c584269a79 avoid volume copy in checkAttachableInlineVolume
2bbd07c0192 remove defunct interactive tutorial
1d15354ccb5 update gofuzz dependency
2cd23c8b17c Update go-logr dependencies
062f146d325 Replace the deprecated ioutil method in the pkg/credentialprovider directory
be6709044ad etcd: Build image 3.5.8-0
6db4cbfde7b cacher: do not popExpiredWatchers when the cacher hasn't dispatched any event
eab66a687b2 cacher avoid double locking (#117410)
a02e94ae2b4 e2e: fix flaky test 'should contain OpenAPI V3 for Aggregated APIServer'
0c54d9af6f2 Fix stomping os env in kubectl e2e tests
766f6c3ad41 Include stderr in cred provider plugin errors
eaba1703b1b enhancemanet: reduce calculation calls
a8b808ee6ca Replace the deprecated ioutil methods in the test directory
a959785f964 dependencies: udpate coredns/caddy to v1.1.1
0297329795e Refactor watch bookmark tests to allow sharing between etcd3 and watchcache
45e836a968a Generalize few watch tests from cacher
f3b9e0ddc9b Replace os.Setenv with testing.T.Setenv in tests
7cbbf47f5ea Cleanup environment in tests that call os.Unsetenv
d38ac7e7c6b Replace os.Setenv with testing.T.Setenv in tests
e8d3a4a105c Cleanup environment in tests that call os.Unsetenv
2181eea4843 Replace os.Setenv with testing.T.Setenv in tests
cf125a35611 Replace os.Setenv with testing.T.Setenv in tests
b9ef1603223 Cleanup environment in tests that call os.Unsetenv
240fccd7668 Replace os.Setenv with testing.T.Setenv in tests
89467ad3e9b Replace os.Setenv with testing.T.Setenv in tests
fc643d2e40c Replace os.Setenv with testing.T.Setenv in tests
29b6c54d158 dependencies: update github.com/cenkalti/backoff/v4 to v4.2.1
0a8343352b4 Document gomega.Equal() instead of gomega.BeEqual()
d231d6022b0 Remove endpoints (old leader election) related RBAC from kube-controller-manager ClusterRole
e340325024d Fix nil pointer in test AfterEach for volumeperf.go
453f81d1cae kubelet: pass context to VolumeManager.WaitFor*
4de0d2c6f8f use generic set in storage/validation
3ac77335303 Add `saschagrunert` to `sig-node-reviewers`
7fb88eec73c support fieldSelector spec.hostNetwork
4d73864026c Dependencies Update golang.org/x/timet 90d013bbcef8 to v0.3.0
ff9ebfa90de e2e framework: control k/k/pkg imports
ee99ca25ee6 Remove unnecessary if judgments
1359ebcc5b0 fix doc mismatch
a6339e2702f proxy/conntrack: using common conntrack cleaning function in proxiers
399f09dde05 proxy/conntrack: common function for cleaning stale conntrack entries
efb05630946 proxy/conntrack: moved pkg/util/conntrack -> pkg/proxy/conntrack
37ea51fd567 Improve the performance of map usage
9c0153aef9e KCCM: add providerID predicate to service controller
d3c103edce7 Re-work logic in shouldSyncUpdatedNode
dc4f6f9da6a e2e framework: remove last dependency to k/k/pkg/util
40521fe3601 e2e framework: remove last dependency to k/k/pkg/kubelet
030debc1990 changelog: fix formatting issue with v1.27 change log
4e8c5364bc6 CHANGELOG: Update directory for v1.27.1 release
1b93abb9bac Move kubelet config API to e2e_node
4e928c96b5e skip checks when topologyPolicyName is PolicyNone
71a989e5e9c Fix CHANGELOG-1.27 correct
06dc3d00fcc e2e/apimachinery: Add an e2e test for the API Streaming feature
8d19c0002bb Add node check to vSphere cloud provider
3b7c14e8cfb Remove unnecessary int type conversion
36e6e759182 dependencies: udpate seccomp/libseccomp-golang to v0.10.0
5bce18c98ec dependencies: update go-semver to v0.3.1
d7270f4ba72 dependencies: update go-oidc to v2.2.1
b0d89a7807e dependencies: update github.com/gofrs/uuid v4.4.0
1595d7f52d7 dependencies: update go-systemd to v22.5.0
9cfdf989eda dependencies: update gh/fvbommel/v1.1.0
6b70710b0d1 dependencies: xlab/treeprint v1.2.0
6320b6843a2 dependencies: update netns to v0.0.4
9e2bb40e158 fix typo annotation key notes.
becf73a82b1 add invaild scope test case
c4e1b01416e replace spew methods with dump methods
a96358ac0fa Remove some useless error checks
867be8fc3e2 get rid of e2e/framework -> k/k/pkg/kubelet dependency
2bb35e08f4b Clarify kubelet/kube-proxy iptables rule skew constraints
6d13cad2cf5 dependencies: update gh/Azure/auto-test/{adal,validation}
432a3016a49 Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
9c5a66e2080 Revert "CR conversion: protect from converter input edits"
ed0124855aa add log includes pod preemption details
0979d554435 unit tests: Skip flaky tests on Windows (part 2)
2d06fad5163 dependencies: azure-sdk-for-go to v55->v68
625c3025057 change pv recycler scrub cmd to find -delete
c042837a761 truncate the precision at a millisecond for image pull event message
804d9f47c9f kube-aggregator: correctly use client-go TLS cache with custom dialer
db5d74935ee optimize evict sandbox logic
ccf7ddacfce replace ioutil with os, update doc
5668399a87c Codegen: use openapi-gen via k8s.io/code-generator
b23ab389b4f Add SIG ownership to controller/nodelifecycle
375e3cf869b CHANGELOG: Update directory for v1.24.13 release
f7295ac5e08 CHANGELOG: Update directory for v1.25.9 release
d567d61aa56 Fix a data race in TopologyCache
a62563f1305 Fix TopologyAwareHint not working when zone label is added after Node creation
83a1774df2b CHANGELOG: Update directory for v1.26.4 release
a7a8cd6e5de Codegen: subprojects: nuke existing files
bc302fa4144 Replace uses of ObjectReflectDiff with cmp.Diff
9627c50ef37 Replace uses of ObjectGoPrintDiff with cmp.Diff
29c0b73d640 Replace uses of diff.ObjectDiff with cmp.Diff
dd7af241c11 Replace diff.ObjectDiff with cmp.Equal
97bab44cae3 Replace apimachinery diff.StringDiff with cmp
4f6714ef42d apiserver/etcd: add request and request_error metrics (#117222)
d09842e0adf node-lifecycle-controller: improve monitorNodeHealth test-coverage (#116687)
be101a748dd Remove some unused winkernel arguments/fields/functions
8a790ac2e1b Remove unused ProxyServer.EventClient field
9754386c764 Remove write-only ProxyServer fields
b4c384ebfb2 vendor: bump runc to 1.1.6
c69689659a6 Add `--concurrent-job-syncs` flag to kube-controller-manager
4438208511e api: encode NamespacedName with lower case in JSON
476e407ffd2 cacher: prevent a potential deadlock
7cdffe37c1d update container storage interface spec to v1.8.0
10a8ec5b2cc use case-insensitive header keys for http probes
a6173fad88a Delete duplicate code in schedule.go
5588e8a4cd0 hack/logcheck.conf: remove certificate controller exception
277c03fc799 remove these unrelated openapi files (#117051)
9a468563070 remove reuse buf todo (#117033)
5da386745af Kubectl convert - warn users with NotRegisteredError and Fail on all other errors (#117002)
0eec63fd687 fix the mistake in the release note
02d8fc28faa fix: add the bug as a known issue o on the v1.26 release note
75f17eb38fc optimize watch-cache getlist (#116327)
9c15d75f234 Migrated `pod-security-admission` to contextual logging (#114471)
2bed67d0f1c Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
73eb7c09309 Codegen: easier to read logs for subproject output
bbbb695060a Codegen: subproject: chdir to the project dir
893ec0ca453 Codegen: simpler k8s.io/code-generator/examples
af29cca6ced Codegen: new tools will not become part of 'all'
5f7345deaac Codegen subprojects: consolidate generate-*groups
95e614b3717 Codegen subprojects: deprecate "all" in scripts
a94ed5b8ac8 Codegen metrics: include v1beta2
8b68e063e14 Codegen subprojects: regen defaulters when needed
5200f4b0d36 Codegen subprojects: reify 'all' into explicit
201653aa870 Trivial change to reduce diffs
901dea73073 Fix azure disk e2e after migration
d212041d513 hack/local-up-cluster.sh: Remove old dynamic certs
ed5dd38dcdc CHANGELOG: Update directory for v1.27.0 release
464edfe6f6e test/integration: create nodes directly with kubernetes.io/hostname label
9204e6b286e remove unused constant `expansionFailed` in expansion test.
4491ba89171 rename variable delete to avoid collision to builtin variable
d04d7ffa6ec kubelet: Mark new terminal pods as non-finished in pod worker
0020631985e test: Add node e2e to restart kubelet while pod is terminating
aa73f06e569 scheduler perf: allow creating 0 items
49bbf7c2681 scheduler_perf: fix race condition
a869a898257 scheduler perf: remove cleanup func
b039a2ff2c7 Add new contribex leads to sig-contribex-approvers
9363afc6502 Fixing broken tests
d102a6fea51 HPA Controller - Update Owners
8d18ae6fc24 Use the generic Set in scheduler
b04ca79445e Add unit tests showing the effect of unlimited containers when calculating pod limits.
1dec97436c8 Fix typo at job_test.go
046bb892566 supported version of etcd 3.5.7-0 for Kubernetes v1.27.0-rc.0
f138d29bf2d watchcache: currentCapacity acquires read lock
c77ad3116f4 kubelet: fix setup of emptyDir with sizeLimit (fsquota)
ea74a2d877d cpumanager: fix typo in godoc
1cce3b3e2f5 wait: fix incorrect suggested method
d3ae6c2df3c Specify KUBE_ROOT for test-e2e-node/AWS to work
d9bd22115ff Alias deprecated genericclioptions.IOStreams with new one
26b35ce36ae Remove endpoint related RBAC from scheduler cluster role
7fa3d54ea5b unittests: Fixes server journal unit test on Windows
08a324bf512 cluster/addons: set metrics-resolution to 15s
eba18d503cc cluster/addons: bump metrics-server to v0.6.3
88e055059cd component-base: avoid data race in log format registry
a2fb32870f3 test/integration/auth: fix data race
1dde8ef026e test/integration/framework: avoid race around grpclog.SetLoggerV2
f91518b81a5 Add genericiooptions in allowed list of genericclioptions
b4e4db336f6 More migrations from genericclioptions to genericiooptions
5e1c6cd0d4f pkg/registry/flowcontrol: avoid race condition during Create
934516791c6 Swap assert.Equal parameters oders to follow convention
2d06601b81c RBD: e2e containers base image has been udpated to F38
0518dffd259 iscsi: e2e containers base image has been udpated to F38
8d9386fc402 Remove genericclioptions.IOStreams struct
c3497b30aca More migrations from genericclioptions to genericiooptions
00c30941260 Migrate genericclioptions.IOStreams usage to genericiooptions
51a7751a496 Move genericclioptions.IOStreams into genericiooptions.IOStreams
e450ed98122 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
3d3686b9cf0 Return error for localhost seccomp type with no localhost profile defined
e1bcfd47da9 Sort unmounted volumes message in volume manager
79b3126f00a skip clear quota if FSQuotaMonitoring is disabled
0a37f09c32b Fix directory mismatch for `volume.SetVolumeOwnership()`
731068288e1 correct storage class selection message
cc8cd88a94d remove duplicate validation for csi
978da1e8f13 remove GA feature-gates
bda73bd1129 Refactor remote runners
e389d140ae6 fix as suggested
457bb58ebbf kubectl events: Support fully qualified names for --for flag
1893f639d03 test: Fix flake in node e2e mirror pod tests
ffcf3ee6f87 feature(pkg/api): warning for Pod with null labelSelector in PodAffinity and TopologySpread
70369bfe299 remove GAed KubeletCredentialProviders
5662566e03a Set GOMAXPROCS explicitly
56755b8ffdb fix doc mismatch
8e36e948ce6 verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
dac85fe2d3f [KMSv2] cleanup comments in v2 proto api
feba08a6947 Create local copy to avoid potential race condition
29503fd8d45 openapi: Make file client more easy to re-use
ed48dcd2d71 kubelet: Ensure pods that have not started track a pendingUpdate
db92cc13880 ftr(etcd): add benchmarks
05f4e497f1d Deflake TestGetListNonRecursive
906f0607efc Clean up kms test
d3f6cb717f7 update conformance yaml
7bfcfc4d5de docs: fix storage e2e test README
f7765eb0d42 Add damemi to emeritus SIG scheduling approvers
bbbd366cf39 Move damemi to sig-scheduling reviewers
397cc73dc9b delete unused functions in pkg/controller directory
47f8d42a6ba Add CecileRobertMichon to sig-cluster-lifecycle-leads
449f847630e [KMSv2] update ci script and add readme
86e1f4b9d10 e2e node: bump all nodes ready timeout
beb329f4bfa Do not look at VPC-related resources outside the cluster's network
8d92cfb1316 Added conversions to/from NamespacedName
df0a2538205 generate ReportingInstance and ReportingController in Event
e9b384f5a75 fix typo
f638e2849fb replaced spew.Sprintf with a util pretty print function
838ed7feb53 Improve the performance of map usage
f6fa250e304 Add API approvers
03be789851d Fix sample-controller docs after moving to context-based cancellation
99ad88a2611 Remove unnecessary int type conversion
f2fe1fff655 [KMSv2] add tests for generate transformer
479fcf0b13f kmsv2: validate encrypt response at DEK generation time
8d644fbc725 return skip in volumerestrictions
ade63dd7647 cronjob: add ut for namespace terminating cause no extra log
9a776cbf212 kubelet pod-resources: e2e node test add failure description ExpectNoError
1031977b7d8 kubelet PodResources API: follow-up review comments
ec9515a828e Add structured alternatives to strings in client-go/tools/cache
2b01f63b115 move check for noop managed field timestamp updates
07ebb22db92 added known issue for 1.27 release
80480f8e215 combine conditional checks
7a6d58001b7 handle event errors caused due to terminating namespaces
af95a76bb21 cri-api: fix comment lines about PROPAGATION_PRIVATE
daa1d287e4d fix GetPodVolumeClaims in comments
c14068c2023 deflake: Add retry with timeout to wait for final conditions
fbf33e32e61 Fix memory leak in kubelet volume_manager populator processedPods
27f84b755e1 Migrated the volumezone scheduler plugin to use contextual logging
ddc13e983b5 Chore: add selector labels tweak function
4cab11f26f0 Chore: add persistent volume claim retention policy tweak function
ba9dfe686fd Chore: add persistent volume claim template tweak function
f97d3cf7486 Chore: add rolling update max unavailable type tweak function
1b17b4fa799 Chore: add rolling update partition type tweak function
f3ffeae426f Chore: add update strategy type tweak function
5e0161b3de8 Chore: add labels tweak function
ec34891782c Chore: add annotation tweak function
b907d5af49f Chore: add finalizers tweak function
18ba7c0e433 Chore: add ordinal start tweak function
3eb34d8b6ce Chore: add min ready seconds tweak function
2161d095fa1 Chore: add template restart policy tweak function
4418a9f5906 Chore: add replicas tweak function
7fc08e0ce70 Chore: add pod management policy tweak function
77c7d6efcf6 Chore: add basic make function for stateful set
4a667a1026c fix: remove case sensitive checking of probe headers
81a0ea3da3c return name when error occurred in csi-translation
a2cf4e73459 use describe node to print node events as well
e5674903178 fix: remove last ip when apiserver was shut down
f59ac6e6524 [WinProxy] Adding additional validations to queried endpoint list iteration.
db5590a194b Remove sig-network-driver-approvers alias
fc8892d26d7 Add more labels (esp. area/kube-proxy) to sig-network OWNERS
2f3800e1007 Make pkg/util/iptables and pkg/util/ipvs owned by sig-network
10b36075df6 Cleanup: use Set instead of map in endpointSlice utils
eb60dce33b0 deprecate ExperimentalHostUserNamespaceDefaulting
94f2d351644 Wire bootstrap token authn secret lister only when it is enabled
d71aea434e5 docs(readme): add go report and latest release badges
a780544f58c add log for kubemark start
d25572c3892 kubelet: HandlePodCleanups takes an extra sync to restart pods
41ed0e12341 Add an image for kubectl
1c7155e7ff6 Move hollow_proxy.go from pkg/kubemark to pkg/proxy/kubemark
8d3a498c879 don't ignore UID impersonation in webhook clients
364b66ddd65 admission ApplyTo: take in clients
630af564be3 Update cri-tools to v1.26.1
1aeec10efb7 DRA: get rid of unneeded loops over pod containers
017bb93887f certificate controller: use contextual logging
c94a9a14d8d update gofmt
8cbe9fe543e trigger update event when service ipFamilies changes.
b430464df06 gce: podresources: don't disable on windows
6b4ffdb9f75 node: re-implement Localendpoint on windows
195fc2f5162 kubelet: podresources: rename variable
d6d19a290de Simplify statefulset fuzzer
376bda41c74 undeprecate kubelet --provider-id flag
8bb328680c0 upgrade cluster-autoscaler v1.26.1 to fix ci warnings
c94bcabd7e2 [fix][typing] startResourceClaimController errrorf message has typos
31e1df9ae6c Bump Konnectivity to 0.1.2
aadb87bdcdb kubelet: Do not mutate pods in the pod manager
13192176002 Remove vestigal err check from CEL admission controller.
a6ffbb41f8e Squashed commit of the following:
bbf2b968c89 skip pod resource check when request is zero
64ecb161d47 Codegen: git grep returns non-zero if no match
241d46d1dd5 Codegen: deepcopy needs to run before swagger
3405853e6d0 Codegen: clean up stray ls-files use
3dd0c416639 support short name for flowschema and prioritylevelconfiguration
e2b10505162 add some buff for pod initial restart count that is not zero
efee9b4866d cleanup: promote ProbeTerminationGracePeriod to conformance tests
b0eeeacfc0c fix: the volume is not detached after the pod and PVC objects are deleted
4d3f92d5f75 Update toplogy keyset initialization
a890724f9ef cronjob: return immediately when failed to create job for the namespace is terminating
37aff025ff8 cleanup: remove Clear for fake job controller
b7cdbca2374 Add more tests that should exist but don't for some reason
67d7f09eb82 hack/OWNERS: add pohly as reviewer and approver
5dca1be0160 Add tests
bab2c18c246 Add jsonpath support for explain
77692f1b1c5 fix linting
fabf1cba947 Add warning about TLS 1.3 cipher suites
6ad156d80ee Cleanup: modify some sentences about statefulset
13354d3da4d Add note about TLS 1.3 cipher suites
c50c19d13af remove unused not api functions in the pkg/apis directory
b1e3326eaee Fix gorestful typos in the APIServerHandler.Director docstring
a3b44b574fb cluster/gce: Fetch image from image family
26f0325734c fix typo in volume util
0311a4e8e6d Fixed typo
9b9f22f06b5 Fix unknown field error in deployment lifecycle e2e
6f19e8656f5 Apply suggestions from code review
1134134e727 kubelet/cm/containermap: Improving test coverage
87f094c5e88 Replaces path.Operation with filepath.Operation (part 2)
5111bced373 fix test cases that may be incorrect
9a3c4aa2dc9 initial e2e tests for ValidatingAdmissionPolicy
bd778449f4d versioning of CRI API
34d980e7709 i18n: Fix bug where package-level variables are not translated.
ad2d23eb9ff Add test for cmd/kubeadm/app/phases/upgrade/compute.go
fd4adba9acd add sig/storage label for pkg/controller/volume package PR
2557b35202f controller: add non-exist node test case
95fe0a158c2 Fix strategic merge patch $deleteFromPrimitiveList bug
76c8765bda5 ensure etc-host file permission is 644 whatever umask is
73883c71574 Remove default annotations from copied storage class
f16f9100e57 cleanup: delete unused AuditDynamicOptions in apiserver
583ea17efd6 Add parameter to set SecurityContext for containers in tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2c49b125b5 |
docker-distribution: update to 2.8.3
Bumping distribution to version v2.8.3-2-gd607c6cc, which comprises the following commits:
6b9f48f3 docs: remove blank line
a4fa6992 Add v2.8.3 release notes
5e6b1b5c Do not close HTTP request body in HTTP handler
29b00e8b digestset: deprecate package in favor of go-digest/digestset
d1ab2430 [release/2.8] vendor: github.com/opencontainers/go-digest v1.0.0
3dda0677 deprecate reference package, migrate to github.com/distribution/reference
3c6f7788 update to go1.20.8
31f5cd48 Handle rand deprecations in go 1.20
29b8ba0b Update to go 1.20
3316b198 Update to golang 1.19.10
444d053e update golangci-lint to v1.52
b800af44 ignore SA1019: ac.(*accessController).rootCerts.Subjects has been deprecated
0a98a00d Ignore SA1019: SplitHostname is deprecated.
2ec0471b Dont parse errors as JSON unless Content-Type is set to JSON
cb121c3f Set Content-Type header in registry client ReadFrom
b57133cc referene: fix formatting of "deprecated" comment.
2c4bf1a6 replace deprecated function
110cb753 Enable build tags in 2.8
2d62a402 s3: add interface assertion
2548973b Enable Go build tags
ab7178cc Pass BUILDTAGS argument to go build
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f7188da2ca |
oe-go-mod-autogen: clarify need to update main SRCREV
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9e8a6af947 |
moby: update to v24.0.6-tip
Bumping moby to version v24.0.6-36-gf9b8a35ac4, which comprises the following commits:
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
f87492689e update to go1.20.10
3715eaf078 update to go1.20.9
31f49bd685 Make one-shot stats faster
37796c7029 Revert "daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw"
51dc5fb58f integration/internal/swarm: rename max/min as it collides with go1.21 builtin
4e11c149d1 pkg/tailfile: rename max/min as it collides with go1.21 builtin
0b97ecddb0 pkg/plugins: rename max/min as it collides with go1.21 builtin
710c748801 pkg/sysinfo: rename max/min as it collides with go1.21 builtin
b340a777c0 pkg/archive: rename max/min as it collides with go1.21 builtin
e996dffe56 daemon: rename max/min as it collides with go1.21 builtin
334719141c api/types/versions: rename max/min as it collides with go1.21 builtin
0702941de6 restartmanager: rename max/min as it collides with go1.21 builtin
bed0c789dd daemon/cluster: format code with gofumpt
30fe6540a5 libcontainerd/windows: Don't reap on failure
1320e79bd8 libcontainer/windows: Remove unneeded var declaration
a1ba69a82b libcontainer/windows: Fix process not being killed after stdio attach failure
1f3ea9841e update containerd binary to v1.7.6
58224457c3 ipam: Replace ChildSubnet with parent Subnet when its mask is bigger
df983b7990 daemon: fix under what conditions container's mac-address is applied
f014c349a0 update to go1.20.8
e2ab5f72eb 24.0: Update buildkit to fix source policy order
8216da20af more robust dockerd-rootless-setuptools.sh
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c431b46959 |
crun: update to v1.9.2
Bumping crun to version 1.9.2-12-g8af8ee2, which comprises the following commits:
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
122f8ae linux: open mounts before setgroups if in a userns
64105d9 Use overlay and single nix derivation
35274d3 NEWS: tag 1.9.2
8f6b76f tests, podman: enable more tests
255268d Reset the inherited cpu affinity after moving to cgroup
745b6d9 tests, podman: run tests on overlay
f42e279 tests, podman: get more information on the environment
379b17c tests, podman: avoid deprecated options
bd251c9 rpm: do not special case krun man
fe4e15d build: install krun.1 only if krun is enabled
0cabf0c rpm: fix manpage installation
67ee730 Packit: notify @containers/packit-build team on failed tasks
1f2769e linux: fix fallback mechanism in a userns
a0b7e18 NEWS: tag 1.9.1
bb4e975 utils: partially rewrite improve error message patch
14afa8a utils: fix ignore ENOTSUP when chmod a symlink
0acb237 oci-validation,test: lock tap to @16.3.8
bbb1c87 tests: install device-mapper-devel
75dd83c podman, test: disable more tests failing in the CI
98db1d2 utils: improve error message for ensure_dir
57262a2 utils: ignore ENOTSUP when chmod a symlink
523eed3 linux: add new fallback when mount fails with EBUSY
2239c50 linux: teach MS_MOVE to do_mount
c9a1a12 Add man page for krun
8645d1a Fix CentOS 7 Build by Checking if FSOPEN_CLOEXEC exists
a538ac4 NEWS: tag 1.9
1e2f0c4 fix: correctly handle unknow signal string
41fa779 crun delete: call systemd's reset-failed
76b80ae fix random errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
8933a2cf4c |
cri-tools: update to v1.28.0-tip
Bumping cri-tools to version v1.26.0-353-gf8733ddf, which comprises the following commits:
f570bc09 Bump golang.org/x/net from 0.16.0 to 0.17.0
75c136c8 Validate sandbox and container metadata
4f3475f5 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0
93bc1bf2 Bump golang.org/x/net from 0.15.0 to 0.16.0
57d7848c Switch to `github.com/distribution/reference`
f61309ae Bump github.com/docker/distribution
6a1c7883 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0
024268e7 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1
04fb3af1 Verify required checkpoint parameters are set
544d4792 Remove duplicated import "k8s.io/cri-api/pkg/apis"
dbd6c086 Enable staticcheck linter with SA1019 to find deprecated methods
06bb4c99 Use executor.StreamWithContext instead of deprecated executor.Stream
092eddc1 Address deprecation of Strings.Title
9059543c Remove unnecessary rand.Seed
52fcfd43 Address deprecated io/ioutils
833ab93c Address deprecated call cli.NewExitError of urfave/cli package
3e036cfa Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0
b84b1817 Bump actions/checkout from 3 to 4
4b5c3fe1 Update version compatibility between Kubernetes and cri-tools
7458ab35 Bump golang.org/x/net from 0.14.0 to 0.15.0
aa049113 Bump github.com/docker/docker
71beb1da Fix containerd tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
82d2ac74cb |
cri-o: update to 1.29.0
Bumping cri-o to version v1.27.0-662-gf8ccf314a, which comprises the following commits:
3b7ab35ff build(deps): bump crate-ci/typos from 1.16.17 to 1.16.18
f7d3228a7 Avoid an unnecessary c/storage lookup in ListImages
96e6aa9b5 Inline getImageCacheItem into ListImages
e4f2b888d Split imageIsBeingPulled from ListImages
c7188518d Simplify ListImages more
1cfe3c8bb Simplify appendCachedResult
ae597ba16 Remove the "filter" parameter to ListImages
e0750462f Turn ListImages(filter) into ImageStatus
50ce23e89 Simplify storageImageStatus a bit
2cb166512 Simplify ImageStatus a bit
1b0e82a22 Split storageImageStatus from ImageStatus
ad8be44cc Simplify error handling in ImageStatus
203612b23 Move the ImageResult -> ImageStatusResponse conversion out of the loop
97329e4fa build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
013a0998c Update release-notes to v0.16.1
dc44bac35 Fix quoting issue in usage help text
f22040da2 crio: add support for --imagestore
1d0e5d074 build(deps): bump crate-ci/typos from 1.16.15 to 1.16.17
bb4ab8110 Run GitHub actions in `update-nixpkgs-*` branches
45a6e70e7 Update nixpkgs
8ec74c5fa contrib/test: pin the latest release of runc
2505851e0 Update crun to 1.9.2
f3e53a058 test: Add test for image pinning behavior
12cabc651 internal/storage: compute Pinned field from recently loaded image
0fd641c6d build(deps): bump crate-ci/typos from 1.16.14 to 1.16.15
347194d3f build(deps): bump crate-ci/typos from 1.16.13 to 1.16.14
f532cbd89 Add nixpkgs update cron
8fa9260fc build(deps): bump crate-ci/typos from 1.16.12 to 1.16.13
72280f09c Update install.md removed spaces (markdown lint error)
fe9ed4e3a storage: add support to split filesystem using imagestore
544db3209 RFC: Use RuntimeContainerMetadata for passing container data
c9309ebb6 Add a layer name in one step
4f5a2e95c Microoptimize reference creation
3a77cc956 Eliminate the now unused imageAuthFile and isPauseImage parameters
61d86923c Simplify createContainerOrPodSandbox again
a936e6861 Simplify CreatePodSandbox
39095cbb4 CHANGE: Simplify CreateContainer image lookup
a09320639 Eliminate the clearly dead part of the just copy&pasted code
a7f841955 Blindly copy the image handling code from createContainerOrPodSandbox into callers
6cabaaee1 Remove an imageID parameter to CreatePodSandbox
2b4652c52 Fix/Add error handling
8e1e1e672 update containers storage to 1.50.2
5d8538318 build(deps): bump DavidAnson/markdownlint-cli2-action from 12 to 13
6c1574efc Fix nix `dirty` build
d951faa32 Make the release branch fast forward a cronjob
5dee42bcf build(deps): bump crate-ci/typos from 1.16.11 to 1.16.12
91b83b10c Fix release notes job
096f803a3 Bump golang dependencies
7d86c2e25 docs: fix CI failure
f182fb411 Bump version to 1.29.0
51bae7a96 Remove the IsFullIdentifier check from Server.pullImage again
7eb248b1a Don't silently modify the caller's SystemContext
2d72e13e6 Fix a VERY misleading comment.
472d2c5f9 Remove an unnecessary check
23d7c35d5 Remove an unnecessary parse call
6f9a7173f Remove an unnecessary check
8c3e301da Optimize handling of full image IDs
5f45d232a Remove the ErrCannotParseImageID special case
335d4b0f3 Fix a VERY misleading comment
b489507c9 Remove a completely unused ErrImageMultiplyTagged
98f171147 Make Server.pullImage responsible for rejecting image IDs
e292f17c0 docs: Update the containers/image branch name
6005b03f2 contrib/test/ci: remove the redundant golang setup file
059a7b5f8 Add conmon-rs binary to bundle
4ac3aeef2 internal/storage: address unpredictable behavior of image names
61a0b7c79 config/server: add functions to check IDMap support in runtime
9ce778351 Remove golang-go from debian installation
3d450274e Pause container during checkpointing
e069cc827 contrib/test: fix golang version extraction for CI
0774b644d build(deps): bump actions/checkout from 3 to 4
d6f4c7100 Adopters.md: fix linting issue
d805d28fd Add new adopter
940de5009 build(deps): bump crate-ci/typos from 1.16.10 to 1.16.11
ac9c6fbfe Don't vendor main Kubernetes repo any more
4a1e406b0 Mention Roadmap GitHub Project in README.md
bacc5e638 build(deps): bump crate-ci/typos from 1.16.9 to 1.16.10
9cbd8d555 build(deps): bump cachix/install-nix-action from 22 to 23
798a8d701 build(deps): bump actions/checkout from 3 to 4
758e3d8c3 cgmgr: reorder setting of sched_load_balance for pod cgroup
0e6b13e08 build(deps): bump crate-ci/typos from 1.16.8 to 1.16.9
ff434ba27 build(deps): bump github.com/containers/podman/v4 from 4.6.1 to 4.6.2
0002792fa build(deps): bump DavidAnson/markdownlint-cli2-action from 11 to 12
3aa18aff3 Switch to go 1.21
5b9f7f96d Add dependabot group for OTEL deps
d7ad3fcbf build(deps): bump github.com/containers/buildah from 1.31.2 to 1.31.3
85c3d9db1 Bump conmon and crun dependencies
5ab387fe5 build(deps): bump github.com/containers/common from 0.55.3 to 0.55.4
a4f2d8071 server: remove deprecated functionality
28ae1f81a Fix bundle e2e tests
a9afa0442 Add ppc64le binaries to release notes
c8f8ca498 Add Kubernetes package test for static binary bundle
734e1538c build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
873c0f420 Policy: Allow backport of independent features
bebd421b5 Configure systemd install path based on OS
ec4bbac12 feat(cmdrunner): add support for context
59f9b823d move shmSetup in server/sandbox to internal/factory/sandbox
d1946b30a blockio: add blockio_reload option
ce1cdfa54 main: create parent crio dir before creating clean.shutdown.supported
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
022ec69e9b |
containerd: update to 1.7.7
Bumping containerd to version v1.7.7-5-g5e21abb18, which comprises the following commits:
d0a1fedb5 *: add runc-fp as runc wrapper to inject failpoint
04491240a containerd-shim-runc-v2: avoid potential deadlock in create handler
6982a0df5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0e2320398 Uncopypaste parsing of OCI Bundle spec file
a34fa5681 Prepare release notes for v1.7.7
6ca0aebf0 Allow for images with artifacts to pull
7df492a95 remotes/docker: Fix MountedFrom prefixed with target repository
7779ce64e remotes: always try to establish tls connection when tls configured
b3db314a5 Bump x/net to 0.13
a83c66813 Require plugins to succeed after registering readiness
171d76849 cri: call RegisterReadiness after NewCRIService
6013b5e03 cri: stop recommending disable_cgroup
3d27bc738 Handle unexpected shim kill events
4ffa3ed29 Build binaries with 1.21.1
5756f6064 [release/1.7] vendor: github.com/Microsoft/hcsshim v0.11.1
09633b539 deprecate logs package, but disable linter (for transitioning)
cb201519f alias log package to github.com/containerd/log v0.1.0
a5024e6dd vendor: github.com/stretchr/testify v1.8.4
7bd976af3 vendor: github.com/sirupsen/logrus v1.9.3
3ca015e55 nri: update mock plugin handlers
4cd208c1f vendor: update github.com/containerd/nri@v0.4.0
8cd2d33c2 [release/1.7] remotes/docker: Add MountedFrom and Exists push status
3e09c65b2 Prepare release notes for v1.7.6
5ebf05d97 push: inherit distribution sources from parent
d206896dd content: add InfoProvider interface
423693d7b [release/1.7] update to go1.20.8
c7a35ccdc Fix transfer service dependencies:
38d4e506d Invoke Stable ABI compatibility function in windows platform matcher
ddffc7c9a Update hcsshim tag to v0.11.0
b449440a4 CRI: Support Linux usernames for !linux platforms
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
62d5c5a4f5 |
kernel: drop 6.4 .inc file
6.4 is no longer in OEcore, so we drop our associated kernel .inc file. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Mingli Yu
|
5cec30aae4 |
umoci: Remove the buildpath issue
Pass -trimpath to the build to fix the below build path issue: WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths] Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
01da1f2a29 |
buildah: update to 1.32.0
The new version has an internally stripped binary, so we inhibit the
QA warning.
Bumping buildah to version v1.31.0-159-g4f3d7b0b6, which comprises the following commits:
5151ccff5 .cirrus.yml: run tests relative to the release-1.32 branch
2326d4929 Tag v1.32.0
e90b3502b GetTmpDir is not using ImageCopyTmpdir correctly
ccac7ca0b Run codespell on code
6be719454 Bump vendor containers/(common, storage, image)
9545744e8 Cirrus: Remove multi-arch buildah image builds
206cda149 fix(deps): update module github.com/containerd/containerd to v1.7.6
0191bc671 Split GetTempDir from internal/util
6e6827b27 Move most of internal/parse to internal/volumes
292b429f6 copier: remove libimage dependency via util package
4f3abf936 Add some docs for `build --cw`, `commit --cw`, and `mkcw`
e89fac6c9 Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`
cc619c28d Make sure that pathnames picked up from the environment are absolute
4ee5f020a fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
fd72bbee2 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
754568580 Don't try to look up names when committing images
d5b02e551 fix(deps): update module golang.org/x/crypto to v0.13.0
3fc5274d3 docs: use valid github repo
f94689199 fix(deps): update module golang.org/x/sys to v0.12.0
6ec6f046f vendor containers/common@12405381ff
df1bc3834 push: --force-compression should be true with --compression-format
9c5cde533 Update module github.com/containerd/containerd to v1.7.5
3ebeaa2dd [skip-ci] Update tim-actions/commit-message-checker-with-regex action to v0.3.2
cc9f15f09 docs: add reference to oci-hooks
3454d5b29 Support passing of ULimits as -1 to mean max
f330c77be GHA: Attempt to fix discussion_lock workflow
4942cc908 Fixing the owner of the storage.conf.
f4e43f0e8 pkg/chrootuser: Ignore comments when parsing /etc/group on FreeBSD
2b57cef2b Use buildah repo rather then podman repo
a8bbc9f5f GHA: Closed issue/PR comment-lock test
82069390f fix(deps): update module github.com/containers/storage to v1.49.0
4c4ff3128 chore(deps): update dependency containers/automation_images to v20230816
af3891258 Replace troff code with markdown in buildah-{copy,add}.1.md
e997a966f [CI:BUILD] rpm: spdx compatible license field
a3f2aa3c7 executor: build-arg warnings must honor global args
f6fb75d9d fix(deps): update module github.com/containers/ocicrypt to v1.1.8
5643a7fa8 chroot: `setSeccomp` add support for `ArchPARISC(64)` and `ArchRISCV64`
8428dee36 make,cross: restore loong64
e3cd4d790 Clear CommonBuildOpts when loading Builder status
d68d9a237 buildah/push/manifest-push: add support for --force-compression
3445a775a vendor: bump c/common to v0.55.1-0.20230811093040-524b4d5c12f9
2d6e43071 chore(deps): update dependency containers/automation_images to v20230809
065b95599 [CI:BUILD] RPM: fix buildtags
3964ca9d6 fix(deps): update module github.com/opencontainers/runc to v1.1.9
591b5390d chore(deps): update dependency ubuntu to v22
204c5a1ce chore(deps): update dependency containers/automation_images to v20230807
9ab3b526d [CI:BUILD] Packit: add fedora-eln targets
ed2a501c9 [CI:BUILD] RPM: build docs with vendored go-md2man
5bdb8c70d packit: Build PRs into default packit COPRs
fc7329d7c Update install.md
f6c4ead1b Update install.md changes current Debian stable version name
2254ca208 fix(deps): update module golang.org/x/term to v0.11.0
248f5a2b3 fix(deps): update module golang.org/x/crypto to v0.12.0
ae36f6542 tests: fix layer-label tests
f888b3d84 buildah: add --layer-label for setting labels on layers
239b2a877 Cirrus: container/rootless env. var. passthrough
65c1c9327 Cirrus: Remove duplicate env. var. definitions
978be7796 fix(deps): update github.com/containers/storage digest to c3da76f
62d405771 Add a missing .Close() call on an ImageSource
e588986fa Create only a reference when that's all we need
fe947ed9c Add a missing .Close() call on an ImageDestination
597d30880 CI:BUILD] RPM: define gobuild macro for rhel/centos stream
b9ac8d5e0 manifest/push: add support for --add-compression
d27a82356 manifest/inspect: add support for tls-verify and authfile
071f851da vendor: bump c/common to v0.55.1-0.20230727095721-647ed1d4d79a
512273587 vendor: bump c/image to v5.26.1-0.20230726142307-8c387a14f4ac
3d8616537 fix(deps): update module github.com/containerd/containerd to v1.7.3
c20d0164f fix(deps): update module github.com/onsi/gomega to v1.27.10
2e7dcc143 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
6a236937a fix(deps): update module github.com/containers/image/v5 to v5.26.1
d78f6c2a2 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0
dbc71b7cc Update vendor of containers/(storage,image,common)
331fac670 fix(deps): update module github.com/opencontainers/runc to v1.1.8
9cc5d5e8c [CI:BUILD] Packit: remove pre-sync action
09a1cd698 fix(deps): update module github.com/containers/common to v0.55.2
11cec8523 [CI:BUILD] Packit: downstream task script needs GOPATH
70cb4c7e0 Vendor in containers/(common, image, storage)
173ac7dc9 fix(deps): update module golang.org/x/term to v0.10.0
8b84d9b8a [CI:BUILD] Packit: fix pre-sync action for downstream tasks
97b84029a contrib/buildahimage: set config correctly for rootless build user
cba7b9fae fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
e00845797 Bump to v1.32.0-dev
f704a67a1 Update debian install instructions
4c72c25a2 pkg/overlay: add limited support for FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
7e17ee02a3 |
catatonit: update to version 0.2.0
Main change is the relicense from GPL-3 to GPL-2, which will allow
catatonit (and hence podman) to be used in deployments where the license
previously posed an issue.
Contains the following commits:
7f0c9bb version: release catatonit 0.2.0
fe191ef license: switch to GPLv2-or-later
Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
51a017123d |
k3s: update to v1.28.2
Bumping k3s to v1.28.2, which comprises the following commits:
6330a5b49c Update to v1.28.2 and go v1.20.8 (#8364)
550dd0578f Bump kine to v0.10.3
b3bb7e5a11 update channel for version v1.28 (#8305)
0d23cfe038 Add RWMutex to address controller
cba9f0d142 Add new CLI flag to disable TLS SAN CN filtering
2cb7023660 Use already imported semver, bump kine
f2d0c5409a Add check for support on cp nodes
51f1a5a0ab Review comments and fixes
42c2ac95e2 CLI + Backend for Secrets Encryption v3
e45a674457 Add new encryption test
b967f92785 Replace os.Write with AtomicWrite function
ced330c66a [v1.28] CLI Removal for v1.28.0 (#8203)
62db5fa27c Update to v1.28.1 (#8239)
af50e1b096 Update to v1.28.0-k3s1 (#8199)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
77d31a83ed |
oe-go-mod-autogen: add extra information to duplicate module paths
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4c88600803 |
devtools: fork python3-flask-cors
It is currently unclear if we have a hard dependency on this version of the module. meta-python has a newer version, so we are now breaking tests for yocto compliance (the layer changes the hash). For now, we fork the recipe to avoid the error and start preparing to drop it. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d258c3d499 |
python3-nacl: drop recipe
We introduced this to support python3-docker-compose, but docker compose has moved onto being a go application. meta-python has a newer version of the recipe, so our old one is causing signature issues. Dropping the recipe keeps everything happy Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
827092c2ec |
docker-compose: fix textrel QA issue
Fix textrel QA issue like below:
ERROR: QA Issue: docker-compose: ELF binary /usr/lib/docker/cli-plugins/
docker-compose has relocations in .text [textrel]
The problem could be fixed by adding -buildmode=pie, as this option has
already been in GOBUILDFLAGS except for mips and riscv32, let's make
use of GOBUILDFLAGS.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7e9472c72b |
kernel: add 6.5 support
The 6.5 kernel has now been tested against core and meta-virtualization so we add the .inc file to show that status. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
77fc0a2613 |
podman: mark incompatible with mips
Some of the (current) rdepends for skopeo are not compatible with mips. To make this restriction more obvious, we also mark skopeo itself incompatible with mips. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4e602f8949 |
skopeo: mark incompatible with mips
When building skopeo for mips(64), we get the following errors: | go.go:(.text+0xdd07fc): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0830): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0864): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | collect2: error: ld returned 1 exit status Tag the recipe as incompatible with mips to avoid having it built at all. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ccddfb1f8b |
libslirp-virt: remove recipe
The external to m-virt users of libslirp-virt have been validated against the OEcore version. Having this recipe in world builds causes errors with sstate with recent changes to bitbake. Until we hit another runtime incompatibility, we can drop this recipe. A previous commit excluding the recipe from world builds was created as a reminder that we'll need to have that in place if the recipe returns. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
71041030c6 |
libslirp-virt: exclude from world
Recent changes in oe-core have made the sysroot error on duplicate files and symlinks. We have this recipe as a compatibility fallback to some older container stacks. package lists and recipes that need this, can exclude the oe-core recipe as required. For now, we exclude it from world build, and mark it incompatible with the oe-core libslirp. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
b65fe24b8c |
nerdctl: fix textrel QA issue
Fix the following QA issue: ERROR: QA Issue: nerdctl: ELF binary /usr/bin/nerdctl has relocations in .text [textrel] We want to use -buildmode=pie, in order to avoid duplicating codes with go.bbclass, make use of GOBUILDFLAGS. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5510a784ff |
oe-go-mod-autogen: add README and extended --help information
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ad460da806 |
oe-go-mod-autogen: add -v alias for -d
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
65b6286994 |
iptables: add kernel-module-xt-nat to RRECOMMENDS
docker-compose needs it, otherwise, exporting port would failure when running `docker compose up'. To reproduce the issue, use commands shown in https://docs.docker.com/compose/gettingstarted/. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
96598a7d71 |
nerdctl: upgrade to v1.5.0
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
0e2058840e |
docker-compose: upgrade to v2.20.3
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
03085cfb54 |
docker-compose: fix installation location for multilib
In case of multilib, the location is /usr/lib64/docker/cli-plugins, which cannot be recognized by docker. We should use nonarch_libdir instead. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ae22af84a0 |
oe-go-mod: enhance help message
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ff3dd2d68e |
oe-go-mod-autogen: whitespace cleanup, license and copyright
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
23ea9c77f9 |
oe-go-mod-autogen.py: add script to help adding/upgrading go mod recipes
oe-go-mod-autogen.py is a helper script for go mod recipes. It follows
Bruce's initiative about how to deal with go mod recipes in OE.
Example:
cmd: <path_to>/meta-virtualization/scripts/oe-go-mod-autogen.py \
--repo https://github.com/docker/compose --rev v2.20.3
output: src_uri.inc, relocation.inc, modules.txt
Copy these three generated files to replace the original ones,
then we only need update PV and SRCREV, and docker-compose is upgraded.
Below are some technical details.
* get module's repo from module name
This script checks the following two URLs to determine the module's repo.
1. https://<module_name_tweaked>?=go-get=1
2. https://pkg.go.dev/<module_name_tweaked>
The module_name_tweaked is derived from module_name, with the last components
removed one by one. Let me use two examples to explain this.
For module_name sigs.k8s.io/json, the sigs.k8s.io/json is first used as
module_name_tweaked for searching. And we can correctly get the repo URL, so
the search stops.
For module_name github.com/k3s-io/etcd/api/v3, the following ones are used
as module_name_tweaked:
github.com/k3s-io/etcd/api/v3
github.com/k3s-io/etcd/api
github.com/k3s-io/etcd
And when searching 'github.com/k3s-io/etcd', we get the repo URL, so the search
stops.
* determine the srcdir:destdir mapping in 'vendor' creation
To correctly form the 'vendor' directory, the mapping is critical.
This script makes use of tag matching and path matching to determine
the subpath in the repo for the module.
* avoid subpath being overriden by parent path
We need to avoid subpath being overriden by parent path. This is needed
for both SRC_URI ordering in src_uri.inc and the sites mapping ordering
in relocation.inc. This script simply uses the length as the ordering key,
simply for the reason that if a path is a subpath of another path, it must
be longer.
* the .git suffix is removed to sync with each other
Unlike normal recipes, go mod recipe usually have many SRC_URIs. This script
remove the '.git' suffix from repo URL so that the repo URLs are in sync
with each.
* basic directory hierarchy and caching mechanism
<cwd>/repos: hold the repos downloaded and checked
<cwd>/wget-contents: hold the contents to determine the module's repo
<cwd>/wget-contents/<module_name>.repo_url.cache: the repo value cache
This is to avoid unnecessary URL fetching and repo cloning.
* the ERROR_OUT_ON_FETCH_AND_CHECKOUT_FAILURE switch in script
The script must get the correct repo_url, fullsrc_rev and subpath for
each required module in go.mod to correctly generate the src_uri.inc and
relocation.inc files. If this process fails for any required module, this
script stop immediately, as I deliberately set ERROR_OUT_ON_FETCH_AND_CHECKOUT_FAILURE
to True in this script. The purpose is to encourage people to report
problems to meta-virt so that we can improve this script according to
these feedbacks. But this variable can set to False, then the script
only records the failed modules in self.modules_unhandled with reasons
added, people can modify the generated src_uri.inc and relocation.inc
to manually handle these unhandled modules if they are urgent to
add/upgrade some go mod recipes.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
86ec0fea15 |
k3s: update to v1.27.5
We refresh one patch, but otherwise, the build is unchanged. Generated via: scripts/oe-go-mod-autogen.py --repo https://github.com/rancher/k3s.git --rev v1.27.5+k3s1 Bumping k3s to version v1.27.5+k3s1, which comprises the following commits: 8d074ecb5a Add RWMutex to address controller f365a9cb98 Add new CLI flag to enable TLS SAN CN filtering 8d6483a59e Update to v1.27.5 (#8236) e31f00f863 Move flannel to 0.22.2 f8727f56d7 E2E test for token coverage (#8184) 84ded911e9 Bump helm-controller/klipper-helm versions 66bae3e326 Bump dynamiclistener for init deadlock fix e83b1ba4aa Fixed the etcd retention to delete orphaned snapshots based on the date (#8177) 561db17a31 chore: Bump Trivy version (#8178) 38a0b91c1a chore: Bump Trivy version (#8150) 7f58a1cb23 Run integration test CI in parallel (#8156) c97211866a Fix for cluster-reset backup from s3 when etcd snapshots are disabled (#8155) 9702f92345 Fix for Kubeflag Integration test (#8154) b2e71553ce Use VERSION_K8S in tests instead of grep go.mod bc332ac667 Use 'go list -m' instead of grep to look up versions 53fc3eef0a add --disable-cloud-controller and --disable-kube-proxy test (#8018) e551308db8 fix for etcd-snapshot delete with --etcd-s3 flag (#8110) 45bc26309f Remove terraform test package (#8136) fd531140e5 Bump kine to v0.10.2 ca7aeed090 Etcd snapshots retention when node name changes (#8099) 23d6842f9a Bump versions for etcd, containerd, runc, kine a0da8eded3 Bump docker/docker to master commit aa76942d0f Add FilterCN function to prevent SAN Stuffing 3515d712a7 Fix typo in terraform/README.md (#8090) a87b183f9c E2E: Support GOCOVER for more tests + fixes (#8080) 46cbbab263 Consolidate CopyFile functions (#8079) 59eec78c62 Fix tailscale bug with ip modes 468bddb59c update stable channel to v1.27.4+k3s1 (#8067) 767b64ba58 Fix coreos multiple installs (#8083) cc9dce5764 Security bump to docker/distribution (#8047) f21ae1d949 Make apiserver egress args conditional on egress-selector-mode 546dc247a0 Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl (#7991) 6d360e6473 Unit test for MustFindString (#8013) 946c8ea842 ADR on secrets encryption v3 (#7938) 780e638099 Update flannel to v0.22.1 e56839b329 Update cni plugins version to v1.3.0 36645e7311 fix update go version doc (#8028) d8ae6ef59b Update to v1.27.4 (#8014) be44243353 Adjust default kubeconfig file permissions (#7978) 0b18a65d4f Revert "Warn that v1.28 will deprecate reencrypt/prepare (#7848)" 58a8deb25d fix image_scan.sh script and download trivy version (#7950) 3eb4e12c3b Don't use zgrep in `check-config` if apparmor porfile is enforced (#7939) 34617390d0 Generation of certificates and keys for etcd gated if etcd is disabled. (#6998) 2eddfe6cf4 Add retry for clone step (#7862) 782a3a1cb4 Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform (#7879) 8405813c12 Fix rootless node password (#7887) 607320d670 Improve for K3s release Docs (#7864) b9a2bf11ee Support setting control server URL for Tailscale. 4ab01f3941 Warn that v1.28 will deprecate reencrypt/prepare (#7848) 9e334153cf add e2e s3 test (#7833) bca0adbca8 Fix code spell check 7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller 324f9ad4da fix e2e startup flaky test (#7839) 72d50b1f7c Add `--data-dir` to the `k3s certificate rotate-ca` cli (#7791) d593c83603 Remove file_windows.go f21a01474d Check if we are on ipv4, ipv6 or dualStack when doing tailscale 0809187cff Adding cli to custom klipper helm image (#7682) c7dec8ed24 Update stable channel to v1.27.3+k3s1 (#7827) 70691a95ee Faster K3s Binary Build Option (#7805) 2215870d5d chore: pkg imported more than once fe9604cac1 Update Kubernetes to v1.27.3 (#7790) d968e64de0 Add commands to logout from tailscale 43611bb5ad Fix the error report b66a118362 Bump helm-controller to v0.15.0 for create-namespace support a5874f855f Remove unused libvirt config c6a6e8ef57 Fix spelling check cc22c80e49 Add issue template for OS validation (#7695) efa86a63e8 Remove unnecessary daemonset addition/deletion (#7696) 7c151d468f add private registry e2e test (#7653) 869e030bdd VPN PoC 1e73bb8967 Run integration tests on E2E changes, ensures correct coverage values 8f9502233a E2E: Inject gocover ENV for k3s commands 4a68fbd8e9 E2E: Use sudo for all RunCmdOnNode 00f3e2413f chore: Bump Trivy version (#7672) dc6c569b98 Shortcircuit commands with version or help flags (#7683) 3a8e98a3b8 Bump docker go.mod (#7681) e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins 5170bc5a04 Improve error response logging 45d8c1a1a2 Soft-fail on node password verification if the secret cannot be created b0188f5a13 Test Coverage Reports for E2E tests (#7526) afc88cec88 check variant before version to decide rpm target and packager fa0dc5900a Use el8 rpm for fedora 38 and 39 (#7664) 7c0a7687c6 add format command on Makefile and remove vendor 9227e0bde2 Bump vagrant libvirt with fix for plugin installs (#7605) b64a226ebd Make LB image configurable when compiling k3s a5928ee137 chore: Bump golang:alpine version 612473755d Add ADR 7b61aacb56 Fix test file list 64a5f58f1e Create new kubeconfig for supervisor use 8748813a61 Use distinct clients for supervisor, deploy, and helm controllers e9958cf070 Bump metrics-server to v0.6.3 and update tls-cipher-suites 93279d2f59 Bump klipper-lb to v0.4.4 0485a56f33 allow coredns override extensions 85e10cf9d2 update channels (#7634) 9543470eb7 Add el9 selinux rpm (#7635) d1b0254b91 Update flannel version 213d7ad499 Revert "Add el9 selinux rpm (#7443)" (#7608) d55ec08675 Add el9 selinux rpm (#7443) fe554fe703 Pin emicklei/go-restful to v3.9.0 91c5e0d75a Fix iptables rules clean during upgrade d069a85fcc Update to v1.27.2-k3s1 (#7575) 290f67c939 Add '-all' flag to apply to inactive units 2b24c9917c Bump alpine from 3.17 to 3.18 in /conformance (#7551) 266926693a Bump alpine from 3.17 to 3.18 in /package (#7550) 9bcfac8b88 Add Rotation certification Check (#7097) 4aafff0219 Wrap error stating that it is coming from netpol cbe8d33c93 Bump containerd/runc to v1.7.1-k3s1/v1.1.7 8f450bafe1 Bump helm-controller version for repo auth/ca support 06296815e6 Adding PITS and Getdeck Beiboot as adopters thanks to Schille and Miworfi for the additions (#7524) 607cbf0ad6 Bump containerd to v1.7.0 and move back into multicall binary 239021e759 Consistently use constant-time comparison of password hashes 9ec1789c21 Bump kube-router version to fix a bug when a port name is used c6dc789e25 Add support for `-cover` + integration test code coverage (#7415) 3982213f06 add kube-* server flags integration tests (#7416) b32bf49541 Bump kine to v0.10.1 c98137ddca Fix token startup test cf9ebb3259 Fail to validate server tokens that use bootstrap id/secret format 7175ebe2be E2E: Startup test cleanup + RunCommand Enhancement (#7388) bbb8ee0b2d Add dependabot label and reviewer (#7423) cedefeff24 Bump cni plugins to v1.2.0-k3s1 a736b4b1b9 local-storage: Fix permission (#7217) 437ad128c7 Migrate netutil methods into /utils/net.go e1d4cff14c Enable FindString to search dotD config files (#7323) 132b41c3bf Add v1.27 channel (#7387) d5f560360e Handle multiple arguments with StringSlice flags (#7380) a3ddff2f29 chore: Bump Trivy version e61fde93c1 Fix MemberList error handling and incorrect etcd-arg passthrough 91afb38799 Retry cluster join on "too many learners" error f1b6a3549c Fix stack log on panic c44d33d29b Fix race condition in tunnel server startup 1ca035accc Add e2e test for --disable-agent 31a6386994 Improve egress selector handling on agentless servers 5348b5e696 Improve error message when CLI wrapper Exec fails bbda54b332 Add longhorn storage test (#6445) 0247794aa9 go generate 0bbc6ad3f0 Bump traefik to v2.9.10 1ac03aad43 Add integration tests for etc-snapshot server flags and refactor /tests/integration/integration.go/K3sStartServer (#7300) ef648b7a5d Bump Runc and Containerd (#7339) 9539147ee1 Bump k3s-root for aarch64 page size fix ad41fb8c96 Create CRDs with schema bc5b42c279 Cleanup help messages (#7369) f076080b2b Bump cri-dockerd (#7347) 87f0dc5dd3 update channel server for april 2023 (#7327) 66fcca66cb ensure that klog verbosity is set to the same level as logrus by repeatedly settting it every second during k3s startup 36699bbd60 Changed command -v redirection for iptables bin check 944f811dc5 v1.27.1 CLI Deprecation (#7311) f2bde63eea Kubernetes v1.27.1 (#7271) 8d0255af07 Bump Trivy version (#7257) 779d5f3aa2 chore: Updated the content of the file "/tmp/updatecli/github/k3s-io/... (#7256) 554ad87c8d chore: Bump golang:alpine version (#7292) 257fa2c54c Update to v1.26.4-k3s1 (#7282) d9f40d4f5b Update install script to clean iptables rules before start 0c683720ad Update kube-router to insert iptables rules right after kubernetes ones 6b51ed478d Fix call for k3s-selinux versions in airgapped environments (#7264) 027cc187ce Add coreos and sle micro to selinux support (#6945) 30638072c9 Update klipper lb to v0.4.2 (#7210) 6c394abb32 Add make commands to terraform automation and fix external dbs related issue (#7159) 3e3512bdae Updated kube-route version to move the iptables ACCEPT default rule at the end of the chain d95980bba3 Lock bootstrap data with empty key to prevent conflicts 12091fc724 Bump actions/setup-go from 3 to 4 2992477c4b Debounce kubernetes service endpoint updates ece4d8e45c Fix tests to not hide failure location in dummp assert functions e54ceaa497 Fix issue with stale connections to removed LB server 5dece799df Update remotedialer to silence errors when disconnecting 4182dcaac8 [UpdateCLI] Improve Klipper Helm and Helm controller bumps (#7146) 127cea1f3f Upgrade helm-controller to v0.13.3 (#7209) d2e04b826a Don't apply hardened args to agent (#7089) d388b82d25 go generate de80c07053 Ensure that loopback is used for the advertised address when resetting b010db0cff Ensure that loopback is used for the advertised address when resetting 877247a691 Bump runc to v1.1.5 eb982bbbde Bump etcd to v3.5.7 cee3ddbc4a Bump Local Path Provisioner version (#7167) ddd9665fed Improve Trivy configuration (#7154) fdf994dc35 [UpdateCLI] Improve workflow (#7142) 37b3f4d25c Run go generate in local-path-provisioner Updatecli pipeline (#7181) 8ec7d5e6b0 fix_get_sha_url (#7187) a99376663b Drone Pipelines enhancement (#7169) fb491f5ebf Update stable channel to v1.26.3+k3s1 (#7161) d13ee64403 Enhance `k3s check-config` (#7091) 01ea3ff27b Update flannel to fix NAT issue with old iptables version c97370be6f Clean E2E VMs before testing (#7109) 7c32f88fec Pin golangci-lint version to v1.51.2 (#7113) dc4a148725 Update to v1.26.3-k3s1 (#7108) 561ec056c1 Drone: Cleanup E2E VMs on test panic (#7104) 9980504196 Fix to Rotate CA e2e test (#7101) 85b261096c Add automation for Restart command for K3s (#7002) 19ac384929 Remove Nikolai from MAINTAINERS list (#7088) 7d2f997b3e Added multiClusterCIDR E2E test 262cd7de0a Added IPv6 check and agent restart on e2e test utils 15ee88964b Added multiClusterCidr feature 822ee79eb8 Remove deprecated nodeSelector label beta.kubernetes.io/os (#6970) a912902aa7 Add missing kernel config checks (#6946) 8503d0143c skip all pipelines based on what is in the PR (#6996) 977a85559e Add support for cross-signing new certs during ca rotation 68fcb48a35 Update/rename certs.sh; add default cert rotation script b7f90f389c Wait for kubelet port to be ready before setting (#7041) a45d081027 update stable version in channel server (#7066) d218068f34 Adds a warning about editing to the containerd config.toml file (#7057) c259403af1 Bump various dependencies for CVEs (#7044) e098b99bfa Update flannel and kube-router (#7039) c78dc4db71 Add flannel adr (#6973) 522ad1e697 Add E2E to Drone (#6890) ea094d1d49 Update to v1.26.2-k3s1 (#7011) ee28c20b62 Bump kine to v0.9.9 cbe4bcfeee Add test for filterByIPFamily cc333d8d0c Fix ServiceLB dual-stack ingress IP listing 2156015521 Improve default umask for certs.sh 23d98cec22 Fix CACertPath stripping trailing path components 0c302f4341 Fix etcd member deletion 9efa0797b7 Don't default to local K3s for startup test (#6950) 7739c8b97e Update flannel to v0.21.1 b8e69712a3 Updated flannel version to v0.21.0 3d146d2f1b Allow for multiple sets of leader-elected controllers 0d416d797d Wait for server to become ready before creating token 290d7e8fd1 Fix access to hostNetwork port on NodeIP when egress-selector-mode=agent ddcc4d4034 go generate c6d0afd0cb Check for existing resources before creating them 32d62c5786 Use default address family when adding kubernetes service address to SAN list a92f163c9d Add NATS to the list of supported data stores (#6876) b43dd7746d Add CI test c900089e88 Add ADR 87f9c4ab11 Ensure that node exists when using node auth 992e64993d Add support for kubeadm token and client certificate auth 373df1c8b0 Add support for `k3s token` command 7d49202721 Ignore value conflicts when reencrypting secrets (#6850) be7f751863 Add e2e tests for CA cert rotation 8a6404f97c Add basic test for custom CA certs 9b6b72941f Clarify ADR based on design review feedback f13768c247 Add ADR 215fb157ff Add `certificate rotate-ca` to write updated CA certs to datastore 3c324335b2 Add utility functions for getting kubernetes client 58d40327b4 Fix CA cert hash for root certs 0919ec6755 Ensure cluster-signing CA files contain only a single CA cert 1ec242d816 Add example certificate generation script 7e59376bb9 Fix check for (open)SUSE version (#6791) ee007bc7cf Bump deps: trivy, sonobuoy, dapper (#6807) bb353f5d2b Fix reference to documentation (#6860) 7cad3db251 E2E: Consoldiate docker and prefer bundled tests into new startup test (#6851) 32086717fc Ensure flag type consistency (#6852) 750cff561d Bump vagrant boxes to fedora37 (#6832) 9fcc7c0db8 Fix cronjob example (#6707) 0d4caf4e24 Wait for cri-dockerd socket (#6812) 1c6fde9a52 go generate 369b81b45e Honor Service ExternalTrafficPolicy 94d1a87509 Bump wrangler version for EndpointSlice support 86e36225f5 Consolidate E2E tests and GH Actions (#6772) 808c71a63e Add Ayedo (#6801) 75f77ab951 E2E Rancher and Hardened script improvements (#6778) f0655f153e update stable channel to v1.25.6+k3s1 (#6828) 3cb6fa5cc7 Set cri-dockerd version at build time f72649d1bd Bump cri-dockerd 89f7062431 Add build tag to disable cri-dockerd f10af367c3 Update to v1.26.1-k3s1 (#6774) f19892c2d2 drone correct plugins/docker tag supporting linux/arm (#6769) 291f8bfe00 Slow dependency CI to weekly (#6764) 2007cdd54f generate report and upload test results (#6737) 7bbcac92fd Bump download action to v3 (#6746) d71ab6317e Update stable to 1.25.5+k3s2 (#6753) f54b5e4fa0 Fix CI tests 23c1040adb Bugfix: do not break cert-manager when pprof is enabled (#6635) a4549cf989 chore: Bump golang:alpine version (#6683) 8340b54309 Pass through default tls-cipher-suites cc3583399a Add explicit permissions to workflows (#6700) d85952d6a0 Bump ubuntu from 20.04 to 22.04 in /tests/e2e/scripts (#6686) 674a05478f Containerd restart testlet (#6696) d78e490716 Bump containerd to v1.6.15-k3s1 e53500f37f Bump alpine from 3.16 to 3.17 in /conformance (#6687) c7151e8b61 Bump alpine from 3.16 to 3.17 in /package (#6688) 3cafc8e6dd RIP Codespell (#6701) fd8481a29d Adjust e2e test run script and fixes (#6718) a298bfdb18 Add jitter to scheduled snapshots and retry harder on conflicts f0ec6a4c12 Exclude December r1 releases from channel server bc6bebc998 Bump containerd to v1.6.14-k3s1 454440f9a3 Add Dependabot config for security ADR (#6560) 870d9c32b0 Fix OpenRC init script error 'openrc-run.sh: source: not found' (#6614) 97f162291a Change Updatecli GH action reference branch (#6682) beafd9eaff Update stable to v1.25.5 (#6618) 8f28de259c Add initial Updatecli ADR automation (#6583) 9e97a3b4aa Current status badges (#6653) fae8817655 Bump k3s-root version to v0.12.1 0c9b43746b Preload iptable_filter/ip6table_filter f8b661d590 Update to v1.26.0-k3s1 (#6370) b5d39df929 Deprecation of `etcd-snapshot` command in v1.26 (#6575) d723775792 Remove deprecated flags in v1.26 (#6574) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7ed351dbdc |
docker: drop docker-ce recipe
docker-ce is now the same as moby. We've had a warning for quite some time now, so it is time to remove the recipe. We don't RPROVIDE docker-ce in the docker-moby recipe as part of this removal, as all docker packages have been RPROVIDING "docker" regardless of the variant. images and packagelists should be using that provider, not docker-moby and docker-ce Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
103695c7b9 |
docker-moby: update to 24.0.6
Bumping moby to version v24.0.6, which comprises the following commits:
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
1d983e2e8a update golangci-lint to v1.54.2
d2e9a19358 CONTRIBUTING.md: update links to golang docs and blog
73f6053bb3 api: swagger: update link to Go documentation
de13951b9d docs/api: update links to Go documentation
377af4c9b4 Dockerfile: Windows: update Golang download domains to cut down redirects
088cec8f0f hack: update link to GOPATH documentation
ed2f5d1d85 c8d/builder: Don't drop fields from created image
1d10e8633d daemon: Handle NotFound when deleting container lease
63422515ba c8d/run: Allow running container without image
49671250f6 c8d/commit: Don't produce an empty layer
b83f5a89f4 Don't return an error if the lease is not found
4ac2355d62 hack: use long SHA for DOCKER_GITCOMMIT
ac2a80fcc3 ci(bin-image): clean up metadata
5eef5a7f59 ci(bin-image): clean up env var handling
aaf84dd4cf remove Dockerfile.e2e
a99e62fa3d distribution: show image schema deprecation on all registries
e239799583 distribution: update warning for deprecated image formats
bb22b8a418 ci(bin-image): check repo origin
fb6784bdf0 gha: set 10-minute timeout on "report" actions
74bf46aea6 c8d/diff: Reuse mount, mount parent as read-only
b76a0c7d00 c8d/export: Use ref counted mounter
54953f2f5a integration: Add test for not breaking overlayfs
3897724f4a volume/local: Fix debug log typo
0c131f58ba ci(bin-image): populate DOCKER_GITCOMMIT, take 2
448ae33f87 ci(bin-image): populate DOCKER_GITCOMMIT
3ce0dc7e35 bakefile: Remove default value of DOCKER_GITCOMMIT
600aa7b7a5 c8d/inspect: Ignore manifest with missing config
5d2c383d72 remove s390x and ppc64ls pipelines
15bd07b4fd update runc binary to v1.1.9
cc39fb9f6b Integration test for capabilities
bf2b8a05a0 Do not drop effective&permitted set
e67f9dadc6 hack/make/.binary: use with-go-mod.sh
314b84b023 hack: enable Go modules when building dockerd and docker-proxy
72947f5022 hack: use Git-free ROOTDIR convention
7e7bc0f1bc vendor: github.com/containerd/containerd v1.6.22
5f0df8c534 vendor github.com/containerd/ttrpc v1.1.2
25b709df48 windows: fix --register-service when executed from within binary directory
b7d1e98ae7 libnet/d/bridge: Allow IPv6 ICC from any IP address
749e687e1b integration/windows: Unskip some kill tests
128838227e hack/test: Don't fail-fast before integration-cli
b7c5385b81 update to go1.20.7
4cd50eb1ed TestDaemonProxy: use new scanners to check logs
a49bca97df Fix daemon proxy test for "reload sanitized"
d6536d44e9 TestDaemonProxy: check proxy settings early
a6f8e97342 Improve test daemon logging
Bumping docker-cli to version v24.0.6, which comprises the following commits:
fab55e13c cli/command/system: fix "docker events" not supporting --format=json
d3485b9e9 cli/registry: client.iterateEndpoints: remove check for APIVersion1
613380299 cli/registry: fix client.pullManifestList not de-referencing manifest
b83959e00 force TestNewHistoryCommandSuccess to use UTC timezone
28a08a22b un-skip history test and fix golden mismatches
8e0393932 update cli-docs-tool to v0.6.0
efd052eb8 docs/reference: run.md: remove stray whitespace
d9770a962 adding -c option for docker run/build in manpages
6efe73abe cli/command/manifest: update link to Go documentation
d97753101 man: update links to Go documentation
e9f843bf0 docs/reference: update links to Go documentation
cfbaee468 CONTRIBUTING.md: update links
daeee4697 update flag-description for --cgroup-parent
08ad72160 Update docs/command output for volume pruning
3c4fe7b3e docs: add missing docs for "DOCKER_TLS" env-var
dc45bcc99 Stop slowing bash init by caching plugins path slowly
710dd00e9 replace dockerfile/dockerignore with patternmatcher/ignorefile
bf632329d vendor: github.com/moby/patternmatcher v0.6.0
3c6c0bce1 cli/registry/client: set actions when authn with token
65655cc26 cmd/docker: areFlagsSupported: don't Ping if not needed
11606268f login: Add message about using PATs
a8987063b docs: document special host-gateway value for add-host
c0e376854 update to go1.20.7
We refresh one patch to adapt to the new build script structure.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
81fb357125 |
crun: update to v1.8.7
Bumping crun to version 1.8.7-32-gf8fa497, which comprises the following commits:
76b80ae fix random errors
d602fc0 build(deps): bump actions/checkout from 3 to 4
d348000 linux: fix check for oom_score_adj
382edc9 wasmer: inherit_stdout instead of capture
5057f98 wasmer: use latest wasix API
f60a903 linux: do not join already joined namespaces
46ef792 lua: fixed luarocks package directory structure
0e506e5 linux: add support for ridmap mount option
44e51fa linux: honor rbind
f6f92b8 utils: tighten check in check_fd_under_path()
58fa192 fix typos in comments
9e66109 linux + cgroup-systemd: fix error return values
668f5d5 features: Support mountExtensions
1836bed lua: rename variable to fix spelling
2779f02 linux: support arbitrary idmapped mounts
08def0a linux: move function definition forward
53a9996 NEWS: tag 1.8.7
a867e35 lua: fix missing dereference of pointer
c90c3ca cgroup-systemd: fix error return value
b6c8708 tests: Update expected features output
7c524e7 features: Fix annotations formatting
f0054ea src/libcrun: Mark we implement up to OCI 1.1.0
59e2b84 build(deps): bump uraimo/run-on-arch-action from 2.5.0 to 2.5.1
3a50988 use just enough arg_unused to silence -Wunused-parameter
9864f09 Packit: enable eln builds, enable wasmedge on all non-eln builds
cf72f8b container: fix error return value
88441d9 linux: simplify setns with pidfd
261a4fa mount_flags.c: regenerate
f9f4e06 mount_flags.perf: add get_mount_flags_from_wordlist
387d3ac packit: Build PRs into default packit COPRs
907d032 libcrun: handle SIGWINCH by resizing terminal_fd
57a252b nix: rename `default-nix` to `default-amd64.nix`
5224aa2 build-aux: simplify `release.sh`
a7102e8 github: simplify `release.yml`
8908248 Add support for riscv64 arch
31eeb19 cgroup: fix error return value
fec9b0f RPM: include criu dependencies
02ee7c4 linux: do not create error twice
c786d4c linux: simplify error handling
c972772 linux: do not write twice errors
74a3874 linux: use helper functions instead of custom read/write
35a0166 linux: define helper to ack on the sync socket
c3e518e libcrun: drop symbol for crun_make_error
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d79b200eda |
cri-tools: update to v1.28.0
Bumping cri-tools to version v1.26.0-318-gd5f3f2df, which comprises the following commits:
71beb1da Fix containerd tests
7d7fd9bb add --pinned flag for `crictl images`
f74240d3 Bump github.com/google/uuid from 1.3.0 to 1.3.1
25ae10aa `crictl images -v` prints Pinned when image is pinned
163da8b9 Move events streaming test to own suite with BeforeEach and AfterEach
5461a963 Validate template
aa7bd9a9 Fix tests
88b0bedc Update cmd/crictl/events.go
3a881ad2 Address review comments
459ff574 Remove the Kubernetes incubator reference from README.md
9d084877 Vendor Kubernetes v1.28.0
b703e6a9 Add crictl events command
7f5104d9 Bump latest version in README.md
552f7387 Use previous and latest tag from git in release script
db0bc1a3 Vendor Kubernetes v1.28.0-rc.1
2b86addd Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9
26d35da6 Fix seccomp value in test
a8a71d9f statsp: enhance description
e373e4a8 crictl: add metricsp command
5b337756 Dedup test code and activate linter
ba784045 Bump golang.org/x/net from 0.12.0 to 0.14.0
86ca3498 Bump golang.org/x/sys from 0.10.0 to 0.11.0
306ebdfa crictl: deduplicate display boilerplate
16975aba Make `haircommander` an approver
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5569d65881 |
cri-o: update to release 1.28.0
Bumping cri-o to version v1.28.0, which comprises the following commits:
23dec8c7d version: bump to v1.28.0
c104a0608 build(deps): bump github.com/containers/storage from 1.48.0 to 1.49.0
5524b65d3 add info about pulling image before doing the tutorial
922573ffe build(deps): bump crate-ci/typos from 1.16.6 to 1.16.8
67724cb6f build(deps): bump github.com/containers/podman/v4 from 4.6.0 to 4.6.1
a2d46ae01 build(deps): bump github.com/containers/ocicrypt from 1.1.7 to 1.1.8
7e3522a9c Added a flag internal-repair
39ea33e29 feat: Added a feature to check at reboot time shutdown was clean or not, If it was not clean then apply repair logic
c5def7f72 build(deps): bump crate-ci/typos from 1.16.5 to 1.16.6
b873985b8 Add `conmon` to ppc64le static bundle
3e3f70c22 Update install.md
9c3d622a6 Vendor Kubernetes v1.28.0
a7f160b49 build(deps): bump crate-ci/typos from 1.16.3 to 1.16.5
d2fa125a4 Update nixpkgs and use overlay
80fdf486e Add containers_events_dropped_total metric
e19002329 Fix indentation in installation instructions
94f5e75c8 Update cri-tools to v1.28.0
a8d7c29e1 Vendor Kubernetes v1.28.0-rc.1
23f51c3e1 Update OWNERS_ALIASES
f1bb83127 Update runc to v1.1.9
581a388ac build(deps): bump crate-ci/typos from 1.16.2 to 1.16.3
5022d956a test/image.bats: add test for checking crun-wasm workflow
05ef7a189 *: add platform_runtime_paths to RuntimeHandler
6a0c4b9ec build(deps): bump github.com/containers/image/v5 from 5.26.1 to 5.27.0
f18d122e8 Revert "devices: fill the FileMode field in spec"
8937245b0 build-static: misc fixes needed for 1.25.4 generation
abfc2d616 build(deps): bump crate-ci/typos from 1.16.1 to 1.16.2
3f06640cf contrib/test/ci: add crun-wasm
3a9232c62 build(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0
bb98e2b2a Set mount type HostToContainer for mounts that include container storage root
309d045ec add script bumping
927843ea4 test/metrics: simplify oom test, add debug
64fdfbcaa build(deps): bump github.com/opencontainers/image-spec
15a586215 build(deps): bump github.com/opencontainers/runtime-spec
f30ef84ad build(deps): bump github.com/onsi/gomega from 1.27.8 to 1.27.10
ecd7f9a3e cri: implement RuntimeConfig rpc
2463fdf78 vendor: update Kubernetes to v1.28.0-beta.0
edc5ece7b build(deps): bump github.com/containers/podman/v4
ef1653c8e internal/config/seccomp: Sync call signature of (*Config).Setup
67b43c4b5 internal/config/cgmgr: add non-linux stubs
1dffd7e71 internal/config/node: add non-linux stubs
ecb372986 internal/config/device: add non-linux stubs
10168b534 internal/config/nsmgr: add non-linux stubs
8edfbfd45 internal/config/capabilities: add non-linux stubs
2bd7fcbd8 internal/config/apparmor: add non-linux stubs
da69490d0 oci: update unit tests for new stop code
be5bac87b oci: simplify stopping code
7371b1e77 oci: don't return ErrContainerStopped from StopContainer
c0e34644c build(deps): bump github.com/containers/buildah from 1.31.0 to 1.31.1
41b13e28d Fix ImageRef field for containers to default to an image ID
930f49889 runc: 1.1.7 -> 1.1.8
b563cd728 Add Adobe to ADOPTERS.md
3bc609eb1 build(deps): bump sigs.k8s.io/release-sdk from 0.10.2 to 0.10.3
4e0f88970 build(deps): bump github.com/opencontainers/runc from 1.1.7 to 1.1.8
e6af91f6a oci: change IsAlive to Living
320671ed2 devices: fill the FileMode field in spec
126bd4ca9 build(deps): bump crate-ci/typos from 1.16.0 to 1.16.1
b79391fe1 Update bats to v1.10.0
5e86a5261 build(deps): bump github.com/go-chi/chi/v5 from 5.0.8 to 5.0.10
92e1d1910 Bump vendored Podman to v4.6-rc2
a3d229acf internal/factory/container: get CDI devices from CRI field.
21181672b Add Debian 12 as a supported OS to the install doc
b7c826d38 build(deps): bump github.com/containers/common from 0.55.1 to 0.55.2
151572a56 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
c0c7ce5ae Add OpenSSF best practices badge in favor of CII
0d92db47e build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0
70e5b76ca build(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2
79859a9d9 build(deps): bump crate-ci/typos from 1.15.10 to 1.16.0
7ebe2f614 Update vendored Kubernetes to v1.28.0-alpha.4
c28303fad container_test: fix "AddCapabilities ALL" test case
e176397c8 vendor: drop podman replace and update runc
eff07b834 Run irqbalance tests in serial within the actual suite
059dce220 build(deps): bump crate-ci/typos from 1.15.9 to 1.15.10
d43833d61 Bump bats in ci jobs to latest release
66ac754c7 build(deps): bump github.com/containers/buildah from 1.30.0 to 1.31.0
59952bf00 build(deps): bump github.com/containers/common from 0.54.0 to 0.55.1
ff3bb58db build(deps): bump crate-ci/typos from 1.15.7 to 1.15.9
4fe0b8164 build(deps): bump github.com/containers/image/v5 from 5.26.0 to 5.26.1
cb51739b1 server: use platform struct to set OS details
bac73aa42 Pre-check request values on container creation
5a85cfc95 Remove non existent Debian builds from install instructions
73cf5597a test: fix make mockgen test failure
dfdd2acde vendor: update release-sdk to v0.10.2
abcf50239 build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.1
9c78a1e23 vendor: update containers/storage to v1.48.0
87b126342 build(deps): bump github.com/intel/goresctrl from 0.3.0 to 0.4.0
8a9d4ef17 vendor: update containers/common to v0.54.0
cb247caf5 build(deps): bump github.com/containers/image/v5 from 5.25.0 to 5.26.0
ad3dd698b build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0
b8bb276a0 build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
0882a1dcb build(deps): bump crate-ci/typos from 1.15.6 to 1.15.7
6b9e49d3b Try to find `CONTAINER_CNI_PLUGIN_DIR` by binary lookup
40bbe8218 vendor: fix vendoring issue
f6317807c typos: add WRONLY to the list of extend-ignore-re
6a10113c7 build(deps): bump crate-ci/typos from 1.14.12 to 1.15.6
1062a4cd3 build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0
91d6bd38b vendor: bump github.com/onsi/ginkgo/v2 to 2.11.0
7f66c1428 build(deps): bump cachix/install-nix-action from 21 to 22
d0526337e vendor: bump github.com/urfave/cli/v2 to 2.25.7
7a2b9a220 vendor: bump golang.org/x/sync to 0.3.0
ba0751938 vendor: bump golang.org/x/net to 0.11.0
9f0680cde vendor: bump github.com/prometheus/client_golang to 1.16.0
67a132dc6 runtime handler hooks: run default hook when container stops gracefully
49d9efe8b vendor: bump github.com/stretchr/testify to 1.8.4
001733570 vendor: bump github.com/sigstore/rekor to 1.2.1
d274dd121 Use a variable to manage the version of kata used for testing.
4a7d0857b Update supported version and variable guide for adding repository
0534d7eff governance: tweak voting behavior
bfc7cf55a Use kata 3.0 for testing
db4b8eaab kata tests: Enabling more than one test file for kata tests.
0f08aeb6f kata tests: Update list of skipped tests for the ctr.bats file
4310e3342 Modify ansible files to re-enable kata tests
8224bd8a5 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
f84eb7874 Move reload watcher into `Server`
e3b7406b9 Update golangci-lint and config
159aaf6c6 utils: make this package build on non-linux platforms
c088d69aa fix function name in comment
c702bb78a build(deps): bump DavidAnson/markdownlint-cli2-action from 10 to 11
098fbebf7 Add a test for log linking
5620764ae linklogs: add support for symlinking container directory
5d7ecfe4b Add support for linking pods logs
a7d314bea build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
e614bc756 server: ensure pod labels are present
d84cc85c5 build(deps): bump github.com/BurntSushi/toml from 1.3.1 to 1.3.2
72b735603 OCPBUGS-14750: Pod termination must succeed when a hook fails
98c43d537 Add OSFF scorecard action
85c7e712e main: Added a call to GarbageCollect
ccb91bc8a docs: fix eol test
08f7c0776 build(deps): bump github.com/onsi/gomega from 1.27.7 to 1.27.8
f2feb7c6f Use staging k8s.io/kubelet/cri/streaming package
72011b3c4 Add support for namespaced signature policies
3939fba97 Apply markdown linting, cleanup docs and fix broken links #6890
96e6aed74 Apply markdown linting on the tutorials folder #6890
2ead2413a Apply markdown linting on the contrib folder #6890
5d7b64018 Add markdown linter action #6890
d58f408f5 test: fix timeout metric test
5f74e7994 build(deps): bump github.com/BurntSushi/toml from 1.3.0 to 1.3.1
c87b11115 server: do not take lock to populate pid in container status and inspect
28b34889a build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
b373909cf build(deps): bump github.com/containerd/containerd from 1.7.1 to 1.7.2
d456a11ef crio: deprecate config migration
259e7980c metrics: add metric for resource stalled at stage
85a4ba091 build(deps): bump crate-ci/typos from 1.14.11 to 1.14.12
75aacdb04 Drop support for path based seccomp profiles
e18e2e90a test/helpers: rm useless code
b7d1c2e61 test/helpers: use cli to set container dirs
459372c24 test: adapt for sched_load_balance disable after stop
6da8e46b1 runtime handler hooks: add DefaultCPULoadBalanceHooks
23b9179f9 server: call hooks and NRI in stopContainer
e1c68ea2a Update `README.md` version table
56ac8ac79 crio: remove DefaultsPath config feature
b2a20a418 server: call hooks on infra container creation
2efd04aa4 high perf hooks: workaround libcontainer quirk when disabling cpu quota
9ec701691 cgmgr: export CrioPrefix and use containerCgroupPath more
775690b1e build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7
cf7e0946e tests/timeout: skip for conmon-rs
c1c431836 ci/gha: add space-at-eol check, fix existing ones
0a35354c4 build(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0
65792546b ci: bump shellcheck to 0.9.0
6b2f35e2c test: fix a few cases of SC2086
d6b793c46 contrib/kube-local/kube-local: rm unreachable code
b6014826c test/copyimg: use log.Fatalf
587e3d595 test/*.bats: rm useless echo "$output"
bdb765635 test: rm explicit $status checks
933e33c1c test: simplify assigning IDs
22978429a test/status.bats: simplify exit code checks
ff7bc1b52 test: simplify non-zero exit status checks
0bf509d35 test/cdi.bats: rm run_cmd, use run
21e5dcebe test/nri.bats: fix checking exit code
2fab13028 test/README.md: fix wrong bats example
9c2fcb3bd test/*bats: drop fail()
84ee0c931 Fix using ! in bats tests
045c026da test/timeout: fix "dup ctr" test
1da9bf5f7 ci: require bats 1.9.0
c5a1c1b1e test: separate var setting and img preload
7b9e5201b ci: bump bats to 1.9.0
9ad33da53 build(deps): bump github.com/containers/podman/v4 from 4.5.0 to 4.5.1
2604665cc Update nix and nixpkgs
792a5d0ad test: limit number of parallel jobs
1cc1958de test/cgroup: fix for cgroupfs
aa86e94f0 ci/gha: fix double caching
47c13e037 [FEAT] Add new parameter disable_hostport_mapping in CRI-O
df7df847d build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
f7f085f6f Makefile: Remove GOPATH references
1eeaad851 build(deps): bump cachix/install-nix-action from 20 to 21
7cc3e206c build(deps): bump github.com/onsi/gomega from 1.27.6 to 1.27.7
3b5c9f115 build(deps): bump crate-ci/typos from 1.14.10 to 1.14.11
7003312b0 OCPNODE-1286: Add a CI job to run cri-o e2e tests by enabling the evented pleg feature
47958dc0b Update crun to v1.8.5
9b6a4cff7 Wrap CRI errors on image pull
defdf1c9e build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
6a3ee4e6b docs: update cri-o podman doc and remove stale information
7ed2cfc7f deps: bump runc to 1.1.7
f59c1f72a sandbox: Handle PodLinuxOverhead and PodLinuxResources CRI fields
f5e58c0ea build(deps): bump crate-ci/typos from 1.14.9 to 1.14.10
1009668bb build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
42e0f7fac go.{mod,sum}, vendor: update NRI.
d97ac8a10 contrib/test: reenable Statefulset Basic tests
3761965f8 contrib/test: re-enable block volmod tests
003edc26c high perf hooks: disable CPU quota with libcontainer as a pre start hook
a875ef486 test: add test for cpu-quota.crio.io
e1c3cf960 Check and fix typos in CI
fa57ffd3e *: switch to go-chi/chi mux
6330b1d5f build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
786109a6e build(deps): bump github.com/containerd/containerd from 1.7.0 to 1.7.1
ecc712850 Support image policy verification error
ccaef6a7d build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
484870532 build(deps): bump sigs.k8s.io/release-utils from 0.7.3 to 0.7.4
3480e9efa Fix GitHub action `bundles` test
937ed8cf6 - Convert status cli as a subcommand of crio - Moved commands to the internal criocli package and used them in the crio and crio-status binaries - Adding the status subcommands directly to the binary
a247c52d9 pkg/config: update the description for templateStringCrioImagePinnedImages
4fadec5f1 internal/storge: fix CompileRegexpsForPinnedImages test case
5e751fda3 vendor: fix vendoring
5ecc82e6f contrib/metrics-explorer: fix nested modules
640624ec9 Update CNI plugins to v1.3.0
9fc177ed4 build(deps): bump golang.org/x/net in /contrib/metrics-exporter
8b230dec7 clients connected to container event stream now receive the same data
3fd71bdc9 vendor: fix CI due to incosistent vendoring
20fd7770e fix kubectl version in bug report template
21b47b11c *: update sandbox/pause image to 3.9
edbd4890f internal/storage: add sandbox/pause image to the list of pinned_images
b0531365f build(deps): bump github.com/containernetworking/plugins
22ad8957b Changes to build binaries for ppc64le architecture.
32ec246ba Update README.md and associated files
f10ea341d build(deps): bump golang.org/x/net from 0.9.0 to 0.10.0
c9bb988d1 *: fix warnings related to gosec
0e65290c4 .github/worflows: add go vulnerability management check for cri-o
f9abf50c9 pkg/config: reload pinned_images when the new config is provided
bbe9a7a2c *: add support for pinned_images in crio configuration
dfcf222c3 refactoring vars
386509caf Use native crierrors package for registry unavailable
a90d00103 build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
16ab25339 Vendor latest Kubernetes master
6a095aef7 build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0
5c064914f build(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0
639b6dddf OWNERS: add sohankunkerkar to cri-o-reviewers
4477a804b tests: add a fake pinns call to delay things and cause the timeout
6fa761497 tests: use crictl binary directly when checking its capabilities
1ff3303df cni: configure cgroupPath capability arg
e52e63a41 vendor: bump ocicni to tip
914763fb1 Remove vendor specific changes
08cd56fc9 Migrate image registry to registry.k8s.io
3311658af build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
02fe074f2 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4
0b8a2c068 build(deps): bump github.com/sigstore/rekor from 1.1.0 to 1.1.1
660b63bd7 cgmgr: set sched_load_balance to disabled on sandbox cgroup
5a1707e4c test/pod.bats: update to current setup
f83a4faba cgmgr: create cgroups for systemd cgroup driver for dropped infra pods
f21e178f8 build(deps): bump github.com/prometheus/client_golang
bf23f5c01 Support `RegistryUnavailable` type
e80464e07 Update generated docs
ed9c419e7 OWNERS: allow cri-o reviewers to approve dependabot PRs
58c101634 build(deps): bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3
a4fc119af .github/workflows: remove auto-approve workflow
a0009cb25 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
541b6563d Extend cpu-c-states.crio.io annotation to add max latency
2417374a6 build(deps): bump k8s.io/klog/v2 from 2.90.1 to 2.100.1
249c340d3 contrib/test/ci: fix the bin folder location for cri-tools
cf30845e7 #6833 user ns: Fix segfault while constructing id mappings
38774e14a Use ImageRef instead of ImageName for restore
1f224d1e0 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
7c6676f02 contrib/test/ci/build: use `force:yes` while linking crictl/critest
c9cc1529f .github/workflows: fix the github_token field
a1c09ad99 .github/workflows: fix the token field
30ddd6d89 Fix events generated by Evented PLEG
b8d8ff14b Update c/common to v0.53.0
b34038f8f build(deps): bump actions/setup-go from 3 to 4
4c828dc48 build(deps): bump github.com/opencontainers/runtime-spec
928d5d49c build(deps): bump github.com/prometheus/client_golang
e806005d6 test/network: skip flaky test running on a node with cgroupv2
e914f0e15 test: combined oom test to avoid CI flake
d5048e7ff test/seccomp: fix the syscall
473ee6b73 contrib/test/ci: remove duplicate code
a1c6ae7e4 test/*: consolidate images used for integration tests
25fb4fa76 build(deps): bump github.com/Microsoft/go-winio from 0.6.0 to 0.6.1
a950c837d Download more dependencies instead of vendoring
839bd1203 build(deps): bump github.com/containers/conmon-rs from 0.5.0 to 0.5.1
edbe9c27e build(deps): bump github.com/go-logr/logr from 1.2.3 to 1.2.4
e53dcc003 Stop vendoring release notes tool
1c26776cb .github/workflows: auto approve dependabot PRs
e967a178c user ns: fix segfault when host id mapping is empty
19c0b4d7b server: fix failing tests
edf6a88a9 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1
7a612bc4b Allow restoring of containers with different names
86b36ee6e build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2
6da5b1272 build(deps): bump actions/stale from 7 to 8
1c1cfb92a Fix Flannel PodCIDR in kubeadm tutorial
bac3a79b6 adding support for configmap namespace
603f176a0 Add debug to identify when a relabel was not requested
f9fa10915 Update tutorials/debugging.md
75c8b181b Added documentation to force the Go garbage collector for CRI-O
11f5c4326 Remove remnants of CONTAINER_MANAGE_NS_LIFECYCLE
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13fe43d1e1 |
containerd: update to 1.7.5
Bumping containerd to version v1.7.5-8-g86dc86e62, which comprises the following commits:
ed4bac11e Blockfile: Enlighten blockfile copy on Darwin
4d1cfbbdd Revert "log: define G() as a function instead of a variable"
a34e93241 make repositories of install dependencies configurable
b449440a4 CRI: Support Linux usernames for !linux platforms
503ab21bf go.mod: github.com/containerd/continuity v0.4.2
93b23eb10 Prepare release notes for v1.7.5
fb1292c8d Bump version to v1.7.4
7a0cae3ca [release/1.7] Prepare release notes for v1.7.4
537d7526e integration: issue7496 case should work for runc.v2 only
0f4885c16 Add configurable mount options to overlay
8804a27d7 feat: make overlay sync removal configurable
5add172be Vagrantfile: add strace tool
207e28f36 integration: add ShouldRetryShutdown case based on #7496
b4f480fb3 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode
88ff575c5 pkg/cri/server: fix leaked shim issue
9f61dfb7c integration: add case to reproduce #7496
2a9ae3c51 log: swap logrus functions with their equivalent on default logger
01445bb73 log: add package documentation and summary of package's purpose
932795f45 log: make Fields type a generic map[string]any
707ca94d8 log: add log.Entry type
0a79e67e4 log: define OutputFormat type
dbbe28b7d log: define G() as a function instead of a variable
93b6cb784 log: add all log-levels that are accepted
e8e086e02 log: group "enum" consts and touch-up docs
7aa4f8fdc log: WithLogger: remove redundant intermediate var
bfdce4ce4 log: SetFormat: include returns in switch
6621e0888 log: remove testify dependency
df76aaede removes/docker: remove unnecessary conversion (unconvert)
1c2dd5198 Remove temporary replace
2bf6bd143 vendor: update github.com/containerd/continuity
30a163086 snapshots|pkg: umount without DETACH and nosync after umount
c9eebe3d1 mount: support direct-io for loopback device
1c2977db0 Modify loopback size
cf9c78d2d snapshots/blockfile: fix lint issue
b823b4f54 snapshots/blockfile: deflaky the testsuite
6daeceb11 snapshots/blockfile: use passed in dst in scratchGenerator
99b61aee3 snapshots/blockfile: use loop if options is empty
fd39769ac Add mount options to blockfile snapshotter
8d732c6c2 Add sync before unmount on snapshotter layer test
8472a407e Add blockfile snapshotter to snapshotters doc
6740d77ca Add blockfile as a builtin
07cc24b32 Add blockfile snapshotter
32e3b76ee Add diffservice to contrib
661e505c8 Add proxy differ
af79c07fd update runc binary to v1.1.9
c0b1c8f74 fix ci Linux Integration test fail
4e97a115f cri: Don't use rel path for image volumes
34a5d0330 fix: allow attaching to any combination of stdin/stdout/stderr
c5e7b84c0 update to go1.20.7, go1.19.12
2eaeb3205 Fix ro mount option being passed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dae8061c08 |
conmon: update to 2.1.8
Bumping conmon to version v2.1.3-87-g6d88cb3, which comprises the following commits:
6d88cb3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.12.0
00e08f4 bump to v2.1.8
57d5e7f fix(deps): update module github.com/containers/storage to v1.48.0
adc748c cli: log parsing errors to stderr
b0bdc23 Update nix and use an overlay
04cf7ba chore(deps): update dependency containers/automation_images to v20230809
ccdae54 gh actions: bump to go 1.21
4e61870 gh actions: drop perma-failing jobs
730d92c fix(deps): update module github.com/onsi/ginkgo/v2 to v2.11.0
73ab92e Changes to build conmon for `riscv64`
53b3691 stdio: ignore EIO for terminals
77ce312 refactor: handle a broken pipe with write_sync_fd
fa67ce6 ensure console socket buffers are properly sized
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
48b63ed575 |
buildah: update to 1.31.3
Bumping buildah to version v1.31.1-23-g0926e05c3, which comprises the following commits:
f449589dd [release-1.31] Bump to v1.31.4-dev
3ae75d4a4 [release-1.31] Bump to v1.31.3
68fa52ca5 [release-1.31] Bump c/common 0.55.4, c/image 5.26.2, c/storage 1.48.1
140f028d6 rpm: spdx compatible license field
20b479ec4 RPM: fix buildtags
d1e3a7bf3 [release-1.31] Bump to v1.31.3-dev
d4d1d7513 [release-1.31] Bump to v1.31.2
4d9260cc3 [release-1.31] Bump to v1.31.2-dev
800b1549b [release-1.31] Bump to v1.31.1
0a63bc63d [release-1.31] Remove zstd:chunked from man, bump c/common to v0.55.3
98f684ff3 [CI:BUILD] Packit: add fedora-eln targets
708c07761 [CI:BUILD] RPM: build docs with vendored go-md2man
68fa9389a packit: Build PRs into default packit COPRs
95e1dfb3d [CI:BUILD] Packit: remove pre-sync action
806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
22989818f3 |
runc-docker: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
606fe98a98 |
runc-opencontainers: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kai Kang
|
64c7c56236 |
k3s: not compatible with mips
k3s depends on 'virtual-containerd' provided by containerd-opencontainers which is not compatible with mips. So set COMPATIBLE_HOST for k3s that not compatible with mips to align with containerd-opencontainers. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
14a3a03937 |
packagegroup-kubernetes: set COMPATIBLE_HOST
packagegroup-kubernetes requires kubernetes which is only compatible with x86_64, arm and aarch64, so set COMPATIBLE_HOST for packagegroup-kubernetes to align with it. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |