mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 12:50:22 +02:00
eb53a19811
1168 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Jose Quaresma
|
9a1f4d91d9 |
docker-compose: drop patches from the removed python version
Drop unused patches from the python version removed in
|
||
|
Chen Qi
|
0eef35edee |
docker: remove unnecessary dependencies
The build is not using the codes from these source packages. Remove the dependencies. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
62ac94c50d |
runc-opencontainers: update to 1.1.10
Bumping runc to version v1.1.10-2-gf3446b1e, which comprises the following commits:
be887840 VERSION: back to development
18a0cb0f VERSION: release 1.1.10
b426e9b7 libct/cgroups.OpenFile: clean "file" argument
8214e634 libct/cg: support hugetlb rsvd
f8be7009 [1.1] tests/int/helpers: add get_cgroup_path
1f66027a ci/gha: fix downloading Release.key
5a5b2cc3 Fix directory perms vs umask for tmpcopyup
b365458f fix a typo in cloned_binary.c: re-use -> reuse
8f66c9fb fix two typos
016b2b42 Handle kmem.limit_in_bytes removal
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2e11f93ab4 |
crun: update to v1.11.2
Bumping crun to version 1.11.2-7-gff2b74f, which comprises the following commits:
2cc04ea systemd: fallback to system bus
767ba88 Fix build without libcap
98d9cc9 systemd, cgroup: configure cgroups before joining them
ab0edee NEWS: tag 1.11.2
c965462 src: fix codespell error
267f2c5 make: fix clang-format
6e65f5e cgroup: fix crash on cgroup v1 without cpu resources
57e6f9c terminal: adopt ptsname_r POSIX specified return value
6674353 fix: remove the redundant header file
1084f95 NEWS: tag 1.11.1
4cbc9ad linux: force remount with mounts from parent
11f8d3d NEWS: tag 1.11
f8e4f4e cgroup: honor cpu burst
8b44699 systemd: set CPUQuota and CPUPeriod on the scope
5a0ede2 systemd, cgroupv1: set the cpuset data also on the scope
20bb4aa systemd, cgroupv2: set the cpuset data also on the scope
970d20e tests: fix ioprio test
3b874c2 linux: append tmpfs mode if missing for mounts
863008d init: add new function to check file mode
7c3393c cgroup: always use the user session for rootless
c60c9f2 Update nixpkgs
c053c83 NEWS: tag 1.10
2cc7390 linux: new mount option "copy-symlink"
33cabe6 tests: fix test name
9ee3460 linux: fix error propagation
53c28d9 utils: export safe_readlinkat
a549ce0 tests: skip ioprio tests as rootless
1466b7b linux: Fix -Wunused-result compiler warnings when run './configure' only
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c43ce48045 |
moby: update to v24.0.7
Bumping moby to version v24.0.7, which comprises the following commits:
05d7386665 daemon: daemon.containerRestart: don't cancel restart on context cancel
dd37b0b960 vendor: github.com/klauspost/compress v1.17.2
7058c0d24d vendor: github.com/klauspost/compress v1.16.5
57bd388582 daemon: overlay2: Write layer metadata atomically
05d95fd503 daemon: release sandbox even when NetworkDisabled
2783345d3a daemon/c8d: Use non cancellable context in defers
a9e20aeaed daemon/containerd: rename some vars that collided with imports
a8d0a58b24 daemon/containerd: newROLayerForImage: remove unused args
c981f8aff7 daemon/containerd: log errors when releasing leases
73814c48df internal: Add compatcontext.WithoutCancel
535b70e90c Update check-config.sh
dde5995051 vendor: golang.org/x/net v0.17.0
8864727bae vendor: golang.org/x/crypto v0.14.0
81d73e17f7 vendor: golang.org/x/text v0.13.0
d8c62df0b6 vendor: golang.org/x/sys v0.13.0
d7a1fcef8f vendor: golang.org/x/net v0.13.0, golang.org/x/crypto v0.11.0
a22da0d5c4 vendor: golang.org/x/text v0.11.0
85234039a6 vendor: golang.org/x/crypto v0.9.0
9702281ba0 vendor: golang.org/x/sys v0.10.0
01860dc813 vendor: golang.org/x/crypto v0.3.0
daf599ea0a replace dockerfile/dockerignore with patternmatcher/ignorefile
1dffa3a814 vendor: github.com/moby/patternmatcher v0.6.0
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
19039eae0b profiles/apparmor: deny /sys/devices/virtual/powercap
164a1a0f14 oci/defaults: deny /sys/devices/virtual/powercap
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
a215d8320e |
buildah: drop statically linked x86 entrypoint
commit e89fac6c9bf8d0b [Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`] added a statically linked x86 entrypoint binary This entrypoint is not currently used in the tested / supported worflows. To avoid packaging QA warnings on non-x86 architectures, we remove the binary during the compilation phase. If it does need to be rebuilt in the future, buildah's Makefiles will have to be changed to not test the host for architecture support, and use the OE defined target arch and cross compilers instead. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5587dd1535 |
podman: fix documentation build issues
podman commit dfec510b41b5 [go-md2man: use vendored-in version, not
system] removes the shell test for go-md2man, which means our native
executable is not found.
While we could export GOMD2MAN and point it to our sysroot version
(${RECIPE_SYSROOT_NATIVE}/usr/bin/go-md2man), we could run into the
issues with formatting that the podman commit is trying to avoid.
If we pass our build host architecture to the build, it will be
used and the executable created as part of the compilation.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kai Kang
|
710f858012 |
umoci & buildah & podman-tui: mark incompatible with mips
Since the runtime dependency skopeo has been marked incompatible with mips, mark for umoci accordingly. buildah and podman-tui rdepends on podman which has been marked incompatible with mips, so mark for them too. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leonard Anderweit
|
28e044b98e |
podman-compose: Actually update to v1.0.6
Commit |
||
|
Bruce Ashfield
|
d9af8d1514 |
podman: update to 4.7.1
Bumping libpod to version v4.7.1-6-g85b5f5723, which comprises the following commits:
d1cb93d79 rtd: implement v2 build file
8d045d4c9 Adjust to path name change for resolved unit
eb5b5dbc8 Switch version to 4.7.2-dev
ef83eeb9c New version: v4.7.1
cc5acabf0 Update RELEASE_NOTES.md for v4.7.1
456450438 compat API: speed up network list
a2efda96d inspect: ignore ENOENT during device lookup
f931f08a7 test/system: --env-file test fixes
297a66c30 Revert "feat(env): support multiline in env-file"
46a85e054 Revert "docs(env-file): improve document description"
6afddf430 Revert "fix(env): parsing --env incorrect in cli"
c5ca7e5fc [CI:DOCS] update swagger version on docs.podman.io
51ee25d3f Fix locale issues with WSL version detection
4d15c88a9 switch version to 4.7.1-dev
073183fe1 Bump to v4.7.0
44f727fb0 [CI:DOCS] v4.7.0 RELEASE_NOTES update
2d32314d2 rpm: remove gvproxy subpackage
a2697c028 packit: tag @containers/packit-build team on copr build failures
54ce0ca7c specgen, rootless: fix mount of cgroup without a netns
d2f9af717 pass --syslog to the cleanup process
133e3a4f2 fix --authfile auto-update test
2c62815e1 version: switch back from -rc1 to -dev
7845dd175 New pre-release: v4.7.0-rc1
49f76e95e [CI:DOCS] Update release notes for v4.7.0-rc1
fa6f94001 Cirrus: Update operating branch
0728a10c6 Move podman build opts to common file
8a9f778e2 Add ability for machine rm -f for WSL
919dce131 Plumbing to run machine tests with hyperv
ade0c4932 CI: trace setup and runner scripts
c37443e8b Bump to Buildah v1.32.0
9b36f334d [CI:DOCS] bump release notes on main with the latest release
cae110f8b fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5
4a2a423df Add --filter pod= autocompletion
075cf2254 e2e: ExitCleanly(): manual test fixes
db5adca73 e2e: continuing ExitCleanly(): just the replacements
c689fb4a5 Fix some spelling and formatting
522e0f43f Add support for Ulimit in quadlet
b1e3e8d97 Run codespell on code
6b7f718b4 wire in new buildah build options
f9aba28ca make golangci-lint happy
c1b6effac add !remote tag to pkg/specgen/generate
3acee29cf pkg/specgen: do not depend on libimage for remote
2c2299ad8 bump buildah to latest
bf86ed72c [CI:DOCS] restart.md: migrate to container unit
304b22729 fix(deps): update module k8s.io/kubernetes to v1.28.2
4ed3273f6 Add support for PidsLimit in quadlet
70560f916 Add DNS fields to Container and Network unit groups
777b5efa4 [CI:DOCS] update API docs version list
7b9114023 Try to fix broken CI (gvisor-something)
df011f437 e2e: more ExitCleanly(): manual test fixes
cb1cb338c e2e: more ExitCleanly(): dumb string replacements
62ac96e12 e2e: create_test: use ExitCleanly()
b0f77acd1 e2e: diff_test: use ExitCleanly()
5920bfa2e The `podman init` command cannot modify containers.
639a1a029 bump c/common to latest main
806c5de12 Podmansh: use podmansh_timeout
eefaa512a e2e: more ExitCleanly(): low-hanging fruit
9b17d6cb0 vendor: update checkpointctl to v1.1.0
cdcf18b86 kube: add DaemonSet support for generate
75b4679a7 vendor of containers/(common, storage, image)
19bd9b33d libpod: move oom_score_adj clamp to init
4f017236e e2e: commit_test: use ExitCleanly()
3a4be5e90 e2e: container_clone_test.go: use ExitCleanly()
8cb14e54a e2e: use ExitCleanly() in cleanup_test.go
925794c6a Ensure HC events fire after logs are written
65a64da27 [CI:DOCS] podman-systemd.unit: fix equivalents
d9a85466a Add support for kube TerminationGracePeriodSeconds
5eb0a53a0 Update podman-kube-play.1.md.in
c2cd93cdc Split up alt binaries to speed up build
7bf9f302a Switch installer task to EC2
fbbad0439 pod: fix duplicate volumes from containers.conf
0c75eac63 tests: add test for pod cgroups
b8f6a12d0 libpod: create the cgroup pod before containers
331b3c216 cmd, specgen: allow cgroup resources without --infra
83334fb4e specgen: allow --share-parent with --infra=false
5de8f4aba libpod: allow cgroup path without infra container
5121c9eb0 libpod: check if cgroup exists before creating it
38209ef49 libpod: refactor platformMakePod signature
627ac1c96 libpod: destroy pod cgroup on pod stop
9a347619d utils: export MoveUnderCgroup
556db46a6 libpod: refactor code to new function
65bddfcd2 e2e: use ExitCleanly() in checkpoint tests
479680232 [CI:DOCS]Remove use of --latest|-l from tutorial
afeab39d1 CI test runner: upgrade tests rely on system tests
59bd6a74a run --rmi: "cannot remove" is a warning, not an error
70cf9740f StopContainer: display signal num when name unknown
6f913f5f3 URGENT: fix broken CI
b83485022 Add support for kube securityContext\.procMount
589867d71 podman: don't restart after kill
2d7d8d1d1 Tmpfs should not be mounted noexec
c2575f726 sys tests: run_podman: check for unwanted warnings/errors
1211518e8 chore(deps): update dependency setuptools to ~=68.2.0
465150f10 e2e: use ExitCleanly() in attach & build tests
27495981c Some distros do not default to docker.io for shortname searches
30abd7f1a security: accept empty capabilities list
c32cfb1d0 systests: random_free_port: fix EADDRINUSE flake
a5798e9f5 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
dbfc3e7e0 Restrict fcos_test to amd64, arm64
7b2fc5f8d fix(deps): update github.com/containers/libhvee digest to 56fb235
0a913d578 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
f9fd40221 fix(deps): update module golang.org/x/tools to v0.13.0
71549c642 Ignore spurious container-removal errors
e5bf0f96d fix(deps): update module golang.org/x/net to v0.15.0
fdf694fcf systests: manifest zstd test: lots of tiny cleanups
9730c0373 vendor: update github.com/opencontainers/runc to main
e825bd5d5 [skip-ci] Update actions/checkout action to v4
8b4a79a74 linux, rootless: clamp oom_score_adj if it is too low
681b6db3f machine: increase max number of inotify instances
302d15334 fix(deps): update module golang.org/x/term to v0.12.0
f094884c1 Remove redundant nil checks in system connection remove
17037af48 fix(deps): update module golang.org/x/text to v0.13.0
1d51cd14a fix(deps): update module golang.org/x/sys to v0.12.0
f542d21a7 fix(deps): update github.com/containers/libhvee digest to 2bf7930
d4fedb288 docs(readme): fix a broken link
50cd072bf [CI:BUILD] Podman FCOS image from main
58a0b7ac8 Update golang.org/x/exp digest to d852ddb
fe7bafb83 Add port forwarding and gvproxy machine test
702709a91 libpod: do not parse --hostuser in base 8
13342e503 fix: default typo
3a6fc8d2b Add Japanese locale and translation of index
39c5b7fac remove rh.container.bot@gmail.com
a62abfe3d Tweaks and cleanups to prepare hyperv for CI
a0738e7e6 system tests: housekeeping: various small fixes
4082b67f6 CI: e2e: first use of new ExitCleanly() matcher
6cbd17c0f CI: e2e: new ginkgo matcher, ExitCleanly()
da1246d58 CI: e2e: fetch the standard system-test image
d20b5869f kube play: fix pull policy
18d35b612 Fix gidmap command in example
e66c04c1f vendor containers/common@12405381ff
b95ae3b4a manifest,push: support add_compression from containers.conf
1085177fe hyperv ignition: use gvforwarder instead of vm
2a8e6acec Set remote username earlier for hyperv
26cefcbf9 Added an additional troubleshooting problem and solution
a3c2d6ad2 Remove a dependency on libimage from pkg/bindings
f1c24df4f Rename parameter in pkg/bindings
259ab8594 Remove a dependency on libimage from pkg/api/handlers
4cac1d3bc Don't re-inspect an image
99834947d Cirrus: Remove multi-arch podman image builds
91b8bc7f1 uid/gid mapping flags
18c2a2be8 [DOC] Clarify default behaviour on uidmap
60e3b5ef1 Update containers/common to latest
fe3c4562f update libhvee
1b45fd723 /_ping handler: return OSType http header
2dbb0b096 e2e: fix race condition (kube play + logs)
fe11db1e8 Update module github.com/vbauerster/mpb/v8 to v8.6.0
7ef97fa49 Kube - support List documents
346e5e52e kube down/play --replace: handle absent objects
0938ee189 push, manifest-push: --force-compression must be true with --compression-format
4b347609d oci: print stderr only after checking state
461230c49 Updated docs to reflect pod spec sysctls support added in v4.6
b8146a8a2 [CI:BUILD] Packit: Disable unexpected journal message check for cockpit-podman
a6f2f5854 [CI:BUILD] Packit: Restrict cockpit tests to recent Fedoras
b6b300c79 Update machine init/set tests
da81bc13a Add rootful status to machine inspect
d3618719b Dedup and refactor image acquisition
adf34cbd7 Share podman sock bindings with other WSL distros
db95e678a Fix user-mode validation check
d898ae7f9 system tests: try to fix sdnotify flakes
ecf9f9fd8 Cirrus: Disable only hello multiarch build
f32e954b8 Set StopTimeout for service-container started under podman kube play
d2ec127c1 Set StopTimeout for compat API if not set by client
6f284dbd4 podman exec should set umask to match container
2c5c2d213 [CI:BUILD] Packit: run cockpit-podman tests in PRs
52ed7fce2 Add infra-name annotations to kube gen/play
a5f6a4a3b kube: notifyproxy: close once
7a94f8c12 system service: unset NOTIFY_SOCKET
638f994c2 Update module k8s.io/kubernetes to v1.28.1
7c9c96981 API attach: return vnd.docker.multiplexed-stream header
60e58f059 test/apiv2/60-auth.at: use `doesnotexists.podman.io`
61dd7f80c e2e tests: use registry:2.8.2 (was 2.8)
243f365aa create apiutils package
c5b4eb943 api docs: document stream format
70f77efef Revert "Remove `hello` multi-arch image build"
82bd56be7 manifest-push: add support for --force-compression
469ace091 push: add support for --force-compression
202cc433a Update module github.com/onsi/ginkgo/v2 to v2.12.0
7e0130f75 Remove `hello` multi-arch image build
1b0e64a10 hack/perf/system-df.sh: add `df` benchmarks
148d95d8d Expand env variables for cmds/entrypoint with format $(ENV)
e092f887f vendor c/storage@6902c2d
c416e4576 Ignore the resource limits on cgroups V1 rootless systems
9e680cbc6 Fixups for stopping gvproxy
21c9517b5 Revert "GHA: Closed issue/PR comment-lock test"
f0e8e79c9 GHA: Closed issue/PR comment-lock test
5477fd38a GHA: Add workflow to lock closed issues/PRs
75ce47347 [CI:DOCS] update auto-update docs
85d0df330 chore(deps): update dependency containers/automation_images to v20230816
bc35e28c0 fix(deps): update module github.com/google/uuid to v1.3.1
3d00744d2 libpod: sum per-interface network stats for FreeBSD
5eee8825e Set default Umask for `podman kube play`
ef8f4db81 [CI:BUILD] rpm: spdx compatible license field
e9539768c chore(deps): update dependency golangci/golangci-lint to v1.54.2
63a8926e9 Implement automatic port reassignment on Windows
45ce4834a Add support for ramfs as well as tmpfs in volume mounts
bdc304058 Validate current generation of WSL2 with user-mode-networking
67756ac60 use container restart policy if user specifies one
0772d8ddb Stop gvproxy on hyperv machine stop
50136ea86 [CI:BUILD] rpm: depend on man-db
36e09f18b Update machine list test
8b2990131 Update machine start tests
c3dbfa9a1 Update machine rm tests
c726cf810 libpod: improve conmon error handling
ed1f514d5 cirrus setup: install en_US.UTF-8 locale
8f85aaf07 fixup "podman logs with non ASCII log tag" tests
27b41f087 libpod: use /var/run instead of /run on FreeBSD
9b4f1cdb9 cirrus/lib.sh: extend env to passthrough at start for locale work
ff66f31dd libpod: correctly pass env so alternative locales work
29c298856 cgroups_linux: use SessionBusPrivateNoAutoStartup
362747cfa podmansh man page UID=$(id -u lockedu) is not allowed
e38cf33a6 CI: systests: remove pasta ICMP tests
7103fdb3f podman.1.md: Fix formatting of exit code 127, clarify wording of `exit code` example.
896cab612 document available secret drivers
53dd37cc4 pkg/specgen: add support for read-only root on FreeBSD
d5841ed52 add --module flag
6a3f09e8a Update dependency setuptools to ~=68.1.0
1d5890bcd Add riscv64 architecture to the cross build target
252f51de8 GetFcosArch add `riscv64` arch
98e7d7af0 Update WSL backend to be compat with FCOS defaults
9e14e3ebe enabled hyperv image downloads
3e2e360b9 fix(deps): update module github.com/containers/ocicrypt to v1.1.8
abd35d4d3 [CI:DOCS] Fix git build example in build page
0c52d1004 CI: e2e manifest_test: use image from quay
31dc42224 Cirrus: Remove EC2 experimental flag
4c7546cb3 sphinx: skip options include dir
345b9b029 Update rootfs.md: Fix formatting and wording of idmap option
f33b01b73 fix: Docker API compatible bool deserialization
4cb2d48ca Revert "compat,build: pull must accept string"
68bd81470 Add missing verb in machinectl example
78d6cd4c9 [CI:DOCS] Update Release Notes and Release Process
b6349017a chore(deps): update dependency golangci/golangci-lint to v1.54.1
4b80492bd fix podman top missing output flake
5908999e6 New partial-line test is flaking
555b4f930 [CI:BUILD] Packit: add back fedora-eln targets
f0dac3677 Cirrus: Prune defunct job + fix noop alias
1947f035c Bump bundled gvproxy to 0.7.0
df28df1ae systests: tests for --env and --env-file
bcebcad1f Update system connection add & remove
310f971fc Add tests for podman farm
dce3ef3c4 Add podman farm update command
44a704dfc Add podman farm remove command
59a8140f1 Add podman farm list command
6fcdf1a19 Add podman farm create command
1d5ef29f0 Add podman farm subcommand
23d5b5008 CI: e2e: add delay before podman logs or journalctl
2951316b2 Add completion for Farms
b672ddc79 Vendor c/common changes
3963c5639 chore(deps): update dependency golangci/golangci-lint to v1.54.0
a55c2636d file logger: fix podman logs --tail with partial lines
7ce654fea fix(env): parsing --env incorrect in cli
4c4bc0922 Update docker.io/library/golang Docker tag to v1.21
f55c48ad3 podman stop --cidfile missing --ignore
7ef03517f Skip podman exec cannot be invoked on Debian
95ceacefb Re-enable checkpoint test on Debian SID
c193dbd94 Require a non-generic reason for non-Fedora skip
d79e3a23d CI FIXME removal/update.
5ec856652 Update dependency containers/automation_images to v20230807
7988dd82c [skip-ci] Update dawidd6/action-send-mail action to v3.8.0
8a410784b [CI:DOCS] fixed couple typos in build docs
282594e58 Stop timer in function waitPidStop
7c0bccaf7 packit: Build PRs into default packit COPRs
afaeedef7 Add support for host-gateway
2de22ebf0 Ensure volumes-from mounts override image volumes
03d7a5120 Minor: Include shasums in GHA workflow artifacts
d63ac0652 Minor: Add important comment to windows GHA workflow
9d7fe4e90 Minor: Update/fix dry-run input descriptions
518daef72 [CI:DOCS] Quadlet - provide more information about network files
819129b0d man-page xref: check for duplicate entries
39641482c cp: close temporary file on error path
018fdb48e Makefile: work around the lack of 'man -l' on FreeBSD
0b7769fda Update module golang.org/x/net to v0.14.0
ec5a9b9cc libpod: fix a crash in 'kube generate' on FreeBSD
23c5890f2 remove temporary files when copy [NO NEW TESTS NEEDED]
fab62f816 Update module golang.org/x/sys to v0.11.0
b46d72fec [ci] Remove the podman socket in remove_packaged_podman_files()
706c51b52 [ci] Correct the podman systemd file names
dd4f47dd9 Always show RemoteSocket.Exists in json
fc7c6efd3 Fail if ssh key exists
69e883493 Fix regression for hyperv
803a49da4 [CI:BUILD] Makefile: rpm target generates correct version
1a63c1b23 Fix nits in #19480
1e5453943 Add support for passing container stop timeout as -1 (infinite)
d50054f1e pkg/specgen: Add device support for FreeBSD
f5058f148 [CI:DOCS] man: remove duplicate entry .LastUp
a8974d4a3 CI: e2e: remove useless test
53d44a65e Check tty flag to set default terminal in Env
62a22c5d6 Run codespell on code
44f159ed3 Deprecate podman generate systemd
346f9cb4e manifest/push: add support for --add-compression
8ccda1ee8 [CI:DOCS]Update Release Notes
b91599742 CI: sys: quadlet %T test: do not rely on journal
4d69f0146 GHA: Support testing build/sign workflows
15f35d354 Remove unnecessary backslashes
18e75daa5 [docs] Use code blocks for commands in podman-completion
f3ebd798c Make podman run --rmi automatically set --rm
8b7701f52 machine: QEMU: recover from failed start
49b8b971a vendor: bump c/image to v5.26.1-0.20230801083106-fcf7f0e1712a
bfd2a8cad secret: add support for `--ignore` with rm
21ebe0e90 Move `writeConfig` logic to shared function
597ccff0b Move some logic of `setRootful` to a common file
98cf8462a move `removeFilesAndConnections` to a common file
75a8f13c4 Move `waitAPIAndPrintInfo` to common file
55c7b5cec Move `addSSHConnectionsToPodmanSocket` code to shared file
0489d3aa6 Update module golang.org/x/net to v0.13.0
d74c225f4 chore(deps): update dependency containers/automation_images to v20230726
27d79e1fc Skip pasta local forwarder test on debian SID
b69cd8d84 Skip broken/flaky blkio-weight test
822f2f495 Skip tarball re-inport test in rawhide for CI
851cd9cca Cleanup CIDFile on podman-remote run --rm command
a237c3f46 CI: e2e: remove workaround for missing login file
42ad0c6e7 vendor: bump c/image and c/common
5b7dce8a3 Add support for confined users
78b850c48 Cirrus: Temp. disable rawhide validation task
def70012b Limit git-validation to 'short-subject'
33b8c451e Fix up man page and add test on globs
850482b31 Move alternate image acquisition to separate function
906af5bbc Move `getDevNullFiles` into a common file
89f1fdc7f Update github.com/digitalocean/go-qemu digest to 2e3d018
d6847b19c Convert QEMU functions to methods with documentation
6930f39a6 Update docs/source/markdown/podman-build.1.md.in
e1114f03c do not redefine gobuild for eln
39341f283 Set default userns from containers.conf file
4f1f88d7c Mention TimeoutStartSec in quadlet man page
ada71889c inspect with network=none show SandboxKey netns path
93f4cc1b5 [CI:DOCS] GHA: Use stable go for Mac/Win builds
ff7d287fc Breakup AppleHV machine funcs
64873e322 Codespell fixups
acbe7703f Update docs/source/markdown/podman-stats.1.md.in
0b7157e3b CI: e2e: reenable containerized checkpoint tests
c67ef7c1a docs(env-file): improve document description
4ee31dc37 Don't log EOF error when using podman --remote build with an empty context directory.
f2794f9a8 API: kill: return 409 on invalid state
170a78631 feat(env): support multiline in env-file
19deb6a34 Adds documentation to new functions that were added
481143e58 `startHostNetworking`: get DevNull files
13da82466 `Remove`: remove network and ready sockets from registry
d896431b2 `Remove`: remove files and connections
32265e1f6 `Remove`: collect files to destroy
381b103dd `Init`: read and split ign file
aa6827a67 `Init`: write ign config
cc30639d7 `Init`: add network and registry socks to registry
78d3b549c `Init`: add SSH conns to podman sock
630e7ba39 Improve the description of fields in podman-stats man page
22a8b6886 make /dev & /dev/shm read/only when --read-only --read-only-tmpfs=false
663fe9446 Mention no comment lines in Containerfile.in podman-build man page
e973d15c3 [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
837bc2568 Fix HyperV loadMachineFromJSON function name
416a471ee machine: QEMU: lock VM on stop/rm/set
bb57c1631 libpod: add 'pod top' support on FreeBSD
f592c33fb [CI:DOCS] Build and Sign Mac Pkginstaller
f540bbffa Make sure users changes --authfile before checking
8757fe88a github: add issue type as link to podman github discussions
3523b9b05 Break QEMU `config.go` code into its own functions
c341a0ffe machine: QEMU: lock VM on start
afe8d5d84 libpod: fix 'podman kube generate' on FreeBSD
0fefcf8a4 Add glob support to podman run/create --mount
d6815da8c kube: add DaemonSet support
239a5b64a Fix artifacts script after removal of msitools msi build
e335a66a9 System tests: quadlet: fix race in %T test
d6a32a3da If quadlets have same name, only use first
db0ba9b25 Add support for mounts listed in containers.conf
6dda21984 Update vendor of containers/common
33891e8e9 System tests: add test tags
5ba055937 [CI:DOCS] socket_activation.md: increase socat timeout
dfec510b4 go-md2man: use vendored-in version, not system
a92bb3219 CI: use different TMPDIR on prior-fedora
6894e2031 system tests: authfile-exists: minor cleanup
d70f15cc0 start(): don't defer event
de122bb44 Fix: use --all in podman stats to get all containers stats
349d775de Verify authfile exists if user specifies it
e0ef23955 libpod: don't generate errors for createTimer etc.
0cfd12786 add "healthy" sdnotify policy
cbc96a7b4 Remove LICENSE and general doc files that are installed by the main package
37f0e9620 Add missing `
2f21df7b3 Remove legacy msitools based msi installer
ac212605c Remove any quotes around distribution id
e596b17fb add a podman-compose command
eee2817de pkg/specgen: Don't crash for device spec with...
d2796c6c1 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
f4fbd6fd0 Update vendor of containers/(storage,image)
d4fc66af9 Clean up /var/tmp/ when using oci-archives when creating containers
49257a3c5 [CI:BUILD] RPM: separate out gvproxy for copr and rawhide
b57091ac9 Reduce qemu machine function sizes
baf30e612 [CI:DOCS] migrate socket_activation.md to quadlet
7314569cb [CI:DOCS] Update kube play volume support
b5ce0ab2d Fix language, typos and markdown layout
cb5450af7 [CI:DOCS] Add note about QUADLET_UNIT_DIRS to simplify quadlet debug
0bb73bf55 Add note on debugging quadlet unit files
d4cfc498d Remove unnecessary use of the word "please".
a6a207673 libpod: fix FreeBSD 'podman-remote top' default behaviour
709beb6c0 fix(deps): update module github.com/onsi/gomega to v1.27.9
3e534eff9 Add support for ShmSize to quadlet
4b9f670ca Quadlet system test - force journald log driver for short lived containers
731bd7d94 fix(deps): update module github.com/containers/libhvee to v0.4.0
413552e10 quadlet recursively scan for unit files
ce736413b Ensure that we appropriately warn that TCP is insecure
558a70262 systests: quadlet: fixes for RHEL8
8d190704a Quadlet - Allow setting Service WorkingDirectory for Kube units
24bf6fc24 Quadlet system test - do not rely on journalctl in kube file tests
3d6bc2f86 Fix markdown in docs for podman-network-create
11ffea313 Man pages: check for corrupt tables
1d14bb7a8 quadlet systest: fix broken tmpdir references
e55e128fc Add `since` as valid filter option for `volume` subcommands
6df17332b Podmansh: Better error, increase timeout to 30s
96241159a Fix multiple filter options logic for `podman volume ls `
00a5b0709 Add bash-completion for podman inspect
3b6343202 Fix windows installer
d7e25e14a Add missing reserved annotation support to `play`
d2862c7dd Avoid progress hang with empty files
5c0912b07 Revert the usage of `home.GetConfigHome()`
5aa52659b Fix bug report issue template README link
47997857f Replace error check for non-existent file
8febb6aa1 Emergency gating-test fixes for RHEL8
d8d600b1d Add progress bar for decompress image
46058cfed refactor: move progressbar to a function
ca9874ab7 Use pkg/homedir to get the home config directory
7fb17ae78 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.2
a224ff731 Should be checking tmpfs versus type not source
9e60f3ec5 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.1
b4ffbcdfd Enabled arm64 arch for podman applehv provider
4e4078dbb [CI:BUILD] Packit: remove pre-sync action
d0602e8f7 Add `--podman-only` flag to `podman generate kube`
13a950016 Update vendor containers/(common, buildah, image, storage)
f256f4f95 Use constants for mount types
310a8f103 libpod: use define.TypeBind when resolving container paths
1e9410094 Tests: remove/update obsolete skips
a3bbc3a2c Fix trust not using local policy file
0997cf012 Fix `podman container prune` docs for `--filter`
a8d8c9497 Add more tests for liveness probes with default hostname & named ports
383d683f8 docs: podman-build --network add slirp and pasta
5e64cbf35 docs: podman run --network mention comma separted names
1443e2918 Podman machine AppleHV pass number 3
315a7887a Makefile: `package` -> `rpm`
85d936133 network create: document --internal better
e43127e0b pkg/specgen: fix support for --rootfs on FreeBSD
8c16322a8 machine start: qemu: wait for SSH readiness
12dc546fc [CI:BUILD] Packit: downstream task action fix
2b2c4453f Fix container errors not being sent via pod removal API
6ec261e7a Add missing return after utils.InternalServerError()
d1950869a Update cmd/podman/login.go
cce8501a5 [CI:DOCS] Reformat and reorder table with --userns options
d497eb369 Add secret support to podman login
2a9b9bb53 netavark: macvlan networks keep custom nameservers
c6b5b9a02 remote: fix podman-remote play kube --userns
441af003a fix(deps): update container-device-interface to v0.6.0
656ad760f go mod: no longer use 1.18
aeef403cd fix(deps): update module github.com/containers/libhvee to v0.3.0
6fd4ae6d2 chore(deps): update module github.com/gin-gonic/gin to v1.9.1 [security]
0dcfe6e06 Run codespell on code
3ad55f48b system service: unset listen fds on tcp
f1c68b79e add hostname to network alias
b6ec2127b libpod: set cid network alias in setupContainer()
4e96686e9 AppleHV enablement pass #2
72a1857e4 e2e: Fetch the correct user name
7b54fd84e Add `--no-trunc` flag to maintain original annotation length
600de05e3 Fix TCP probes when the optional host field is not given
ac3a115c3 Add support for using port names in Kubernetes health probes
4494cefbc Fix: cgroup is not set: internal libpod error after os reboot
932fae402 Allow setting volume and network names in Quadlet
427b959a1 pasta tests: automatically determine test parameters
97fd03ccd test/e2e: wait for socket
a69194b02 manifest inspect: support authentication
70428baef api: fix slow version endpoint
f8213a6d5 libpod: don't make a broken symlink for /etc/mtab on FreeBSD
499b8d13c CI: remove build without cgo task
42ea0bf9c libpod: use io.Writer vs io.WriteCloser for attach streams
597ebeb60 top: do not depend on ps(1) in container
3f8ee70d0 make --syslog errors non fatal
dbec2b5aa api: fix doc for default ps_args
1b7eb44d3 Fixes typo in the path where quadlet looks for files
efefd8cf5 Add --replace flag to podman secret create
eec438222 [CI:DOCS] uidmap man pages: fix corrupt italics
8d24e2838 [skip-ci] Update github/issue-labeler action to v3.2
f9077689e [CI:DOCS] podman-system-service.1.md: document systemd usage
dd16661b1 fix(deps): update module github.com/docker/docker to v24.0.4+incompatible
65136521e fix(deps): update module github.com/docker/docker to v24.0.3+incompatible
fa654e985 Use bytes size consistently instead of human size
dee94ea69 bugfix: do not try to parse empty ranges
9e4045768 [CI:BUILD] Packit: fix pre-sync action for downstream tasks
531fb21d0 fix(deps): update module golang.org/x/tools to v0.11.0
ab2fa45ad fix(deps): update module golang.org/x/net to v0.12.0
459b1578c fix(deps): update module golang.org/x/term to v0.10.0
99f93d55c e2e: fix two toolbox flakes
fc5aa9c9c test/e2e: use GinkgoT().TempDir() over MkdirTemp()
ea8992cb4 test/e2e: use random ImageCacheDir
17a06d343 test/e2e: remove RHEL7 workaround
bc22aefce test/e2e: remove unnecessary code in SynchronizedAfterSuite
ff7790038 test/e2e: do not use /tmp for podman commands
db7cb1dbf test/tools: vendor ginkgo v2.11
c20612bab test/e2e: write timings directly to file
a0b765552 machine start: qemu: adjust backoffs
d874790bc auto update: fix usage of --authfile
ba1355b23 system tests: refactor registry code
94b321337 fix(deps): update module golang.org/x/text to v0.11.0
644f7cd9b pkg/specgen: properly identify image OS on FreeBSD
a3a62275c libpod: use new libcontainer BlockIO constructors
2d68c3add [CI:BUILD] Minor: Don't confuse osx-debugging
5aabc5088 [CI:DOCS] Better document the default value of --userns
e4644c3cb Cirrus: build FreeBSD binaries in a VM
92fc0f481 Makefile: add support for building freebsd release tarballs
4a5396b46 [CI:DOCS] uidmap man pages: fix corrupt tables
5a8e092a2 fix(deps): update github.com/crc-org/vfkit digest to c9a4b08
d0359fcca fix(deps): update module github.com/containers/buildah to v1.31.0
300eb36b4 fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
94e59bd2f Use /proc/self/gid_map as intended, not uid_map
a16488f89 fix(command): ignore `--format` in `podman search --list-tags`
9fb2f8e10 podman machine start: fix ready service
8408ad498 Makefile: don't rely on the non-standard -r flag for ln
39624473b pasta: Create /etc/hosts entries for pods using pasta networking
fe0de8b9f fix(deps): update module github.com/containers/libhvee to v0.2.0
2393fe453 pasta tests: add sanity check for test name vs function
4da3e47b6 pasta tests: cleanup + 1 new test
43b9426fc cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
e3f2a97d1 cmd/podman/system: add API server support on FreeBSD
0d7da5c0b [CI:DOCS] Document support of pod security context IDs
f64a1a1cc rootless: use default_rootless_network_cmd config
e4efd709d Revert^3 "pasta: Use two connections instead of three in TCP range forward tests"
17cd5aecb pasta: Workaround occasional socat failures in CI
13c7d05cc pasta: Remove some leftover code from pasta bats tests
bc58dae36 Bump c/image to v5.26.0, c/common 0.54.0
2cb549339 fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.3
bf60bb073 Display secret to user in inpspect
448e01566 [CI:BUILD] RPM: Fix koji and ELN issues
8fb719a9e e2e: systemd test: major fixes
865d77e94 pkg/specgen: add support for 'podman run --init' on FreeBSD
74b4615aa Bump version after v4.6 branch cut
b6e636cbe Remove 'inspecting object' from inspect errors
fe8355be7 pasta: Fix pasta tests to work on hosts with multiple interfaces
d15cca024 [CI:DOCS] fix command incorrect in windows
bcb89fc8b Fix readonly=false failure
609c47ae6 pkg/specgen: Add support for Linux emulation on FreeBSD
cf9ebcddf Fix up podmansh man page
05eb3e6f1 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
f5cc0487e Fixes for vendoring Buildah
0f4c86e26 vendor in latest buildah
6eaf8a271 tests: fix "Storing signatures" check
b80fd54a5 update c/image and c/storage to latest
eeb7aeb49 Kube quadlets can support autoupdate as well as containers
2160a114c debug tail 800 lines flake
dd81f7ac6 Pass in correct cwd value for hooks exe
227c07aeb specgen: honor --device-cgroup-rule with a new user namespace
0220f3338 specgen, rootless: raise error with --device-cgroup-rule
db37d66cd make image listing more resilient
17a18b16c Update module google.golang.org/protobuf to v1.31.0
bc5269f18 Trim whitespace from unit files while parsing
516034215 Re-organize hypervisor implementations
ba3da15e0 play.go: remove volumes on down -f
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
58a5300e7a |
kubernetes: update to 1.28.2
Bumping kubernetes to version v1.28.2-44-ge3b5e621f07, which comprises the following commits:
b5e28b1cdd6 [go] Bump images, dependencies and versions to go 1.20.10
1cd2ac99542 .: bump golang.org/x/net to v0.17.0
cecc0e93916 Mark a volume as uncertain-attached after detach error
15101d92e18 Unit & integration tests for OpenAPIV2 AddUpdateAPIService
9f4011446a2 Fix 120878 - Refactor cacheabledownloader so handler can be updated and fix AddUpdateAPIService to update handler
489c08ddf47 Fix 120739 - Prevent AddUpdateAPIService from blocking on updating spec
d35a00e218c Fix 120758 - prevent cache Load on uninitialized spec
985ef265511 Add nil checks for hpa object target type values
88669d0a23b Make a certain ipv4-vs-ipv6 config error non-fatal, for backward compat
84a3ad3573b [go] Bump images, versions and deps to use Go 1.20.9
63fcac91c42 Only configure swap if available on node
07a74666cb2 Use local isCgroup2UnifiedMode consistently
57bbc335fd7 cronjob controller: ensure already existing jobs are added to Active list of cronjobs
8ea9b219c69 reintroduce resourcequota.NewMonitor
794d56966e8 change rolling update logic to exclude sunsetting nodes
a08ec1215fe vsphere: adapt to govmomi bump
ef63f36ff82 .: bump govmomi to v0.30.6
aba7c443072 Increase range of job_sync_duration_seconds
bcaa53c9c10 sync Service API status rest storage
a68748c7cd0 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.2
89a4ea3e1e4 Release commit for Kubernetes v1.28.2
0c6a0c3f69b kubeadm: remove reference of k8s.io/kubernetes/pkg/apis/core/v1
47507f9f022 fix race on etcd client constructor for healthchecks
7d33fba21a8 e2e pods: fix WaitForPodsResponding retry
2480fce67f5 kmsv2: reload metrics bug fix backport
110a6fe8a9f scheduler: start scheduling attempt with clean UnschedulablePlugins
0aebbad4731 fix(queue_test): make sure the first bind failure via counter
798a0abe368 [go] Bump images, versions and deps to use Go 1.20.8
62321a9201c scheduler: unit test case for concurrent event with other pod
e5b981ebcd7 scheduler: fix tracking of concurrent events
16298b54483 fix verify errors
38904e5f2d1 remove used vars
ce017591468 sort stability list of metrics in the shell command
b5fd7e9f23c Feature-gate SidecarContainers code in pkg/kubelet/kuberuntime
958c30349fa Add an e2e test for the pod sandbox changed scenario
ac67de196ff fix: concurrent map writes in e2e test
19c4cf0f1a0 Automated cherry pick of #119776: Fix a job quota related deadlock (#120319)
dda909d6c51 TopologyAwareHints: Take lock in HasPopulatedHints
8656da75f2a Fallback to legacy discovery on a wider range of conditions in aggregator
526e25b685a Fix OpenAPI aggregation cleanup
0bca3b0e4de apiextensions-apiserver: generate applyconfigurations
8c7c4f3fc4d Revert to json-patch 4.12.0
a4fdac21a98 update build cross image to the correct release branch image
fc184558921 Mark Job onPodConditions as optional in pod failure policy
955843efcf3 Incorporating feedback on 119341
4c8b24d8618 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.1
8dc49c4b984 Release commit for Kubernetes v1.28.1
ad60b95eb63 Add wait for cache sync
175bbaa8894 check for overflow
f3f88b8e7b5 Fix CEL cost handling of zero length replacement strings
90715527543 Use env varaibles for passing path
53902ce5ede Use environment varaibles for parameters in Powershell
e8abf3c441c e2e framework util subtle bug checking endpoints
a1fdd1152d9 Pass Pinned field to kubecontainer.Image
27e6c94259f prep for go1.21: use -e in go list
04de4683cb1 kubeadm: fix nil pointer when etcd member is already removed
8fd45c6bd0f update to golangci-lint v1.54.1 + go-ruleguard v0.4.0
cce3f6ffa79 Make gomaxprocs install optional, limit to tests
20b69aea685 Drop [Feature: tag to make sure this tests runs on pre-submits
58ac6e12ccc Statefulset should wait for new replicas when removing .start.ordinal
e7cfe85b9c1 e2e WaitForServiceEndpointsNum take into account the address family
96696c15f89 fix: when PreFilter returns UnschedulableAndUnresolvable, copy the state in all nodes in statusmap
d20fe4d8487 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0
855e7c48de7 Release commit for Kubernetes v1.28.0
b4053c3b293 Fix a bug that PostFilter plugin may not function if previous PreFilter plugins return Skip
b4fac632cd1 Remove release-notes for the PR#118895
5f7b27f4ade Remove release-notes for the PR#118895
87caf500e1f Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0-rc.1
c5048f41fe3 CHANGELOG: Update directory for v1.28.0-rc.1 release
add7e14df11 Release commit for Kubernetes v1.28.0-rc.1
c6efaf16c1e apiserver/etcd3: fix segv during metric collection
6ddcdef29ae kube-proxy: fix combination of --config and logging command line flags
0d90d1ffa5e Revert "Merge pull request #118895 from RyanAoh/kep-1860"
1876ddf7149 Avoid returning nil responseKind in v1beta1 aggregated discovery
55ca1a6ee15 Remove leases test case from AdmissionWebhookMatchConditions suit
050c0437e60 fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent
9bc857d6d90 [releng] Update publishing-bot rules for release branches to Go 1.20.7
38a81ca04f3 Bump distroless-iptables to 0.2.7
ae86051ec5a Bump protoc
ab26637eae4 Add test coverage of result size of string operations
8e72718249e Bump cel-go to v0.16.1
72c8cf9fce7 [go] Bump images, versions and deps to use Go 1.20.7
2ceca1c78db e2e WaitForServiceEndpointsNum should watch EndpointSlices
2f30fae0e8b scheduler: fix data race after binding failure
1b90dff5276 .*: bump golang.org/x/net to v0.13.0
73107c1b755 Update OWNERS
53c8872cc18 Update OWNERS
2a82aac5248 Update CHANGELOG-1.28.md for KMSv2KDF
294c7df3285 Avoid pulling node-problem-detector through CDN
b4ef4015a29 Avoid pulling mounter.tar through the CDN
cfcbce31a39 apiextensions: fix validation error for status.storedVersions
936819c21bc docs: update release note for KMSv1 deprecation
6689fd97469 DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates
a65d2075072 calculate the correct machine-type
182a4f858a3 API warn non-ExternalName services w/ externalName
7bd0a857e30 API warn ExternalName services with externalIPs
dd8a64d7e15 publishing-bot rules for release-1.28 branch
a005617111c CHANGELOG: Update directory for v1.28.0-rc.0 release
7d13c9b096b set map to nil if an empty string is passed
eb4063f0ced Add cases to tests `AdmissionWebhook` MatchConditions size limit (#119404)
ef4907eddd7 Add e2e tests for admission webhooks MatchCondition fields (#118319)
a248c4de521 test: fix NodeLogQuery tests to query the correct node for logs
45710678b30 Release commit for Kubernetes v1.28.0-rc.0
67769438e1d kmsv2 test feature enablement disablement and restart
18a7025383c update documentation with descriptions
7e0a9a7f4e7 Use statusReason for reason under x-kubernetes-validations (#119544)
3b9af471185 add admission policy integration test all resources
22bf29ad22f Treat empty string as nil in fuzzer for CEL Reason field
a164005cc09 Fix non-test code relying on test-code
e1b0bc3d0a7 bugfix: use matched resource for AdmissionRequest.resource, not the resource it was converted from
5e2e8c80647 bump validatingadmissionpolicy alpha->beta
1c99f9591b0 add node-env and instance-type flags to node-e2e tests
d6479587445 update codegen
ef8670c946d refactor: replace usage of v1alpha1 with v1beta1
294f5c9a42f make update
ae185e91186 e2e: test LastPhaseTransitionTime field when binding PV
a9c3444a47b test: add coverage for pv status update and create strategy
bf49c727ba1 kmsv2: KDF based nonce extension
aa65bab4269 implement pv last phase transition time
c97eb2b5cb0 Fix XValidations deepcopy to copy contents of nested pointers
76eefd3a012 CHANGELOG: Update directory for v1.28.0-beta.0 release
1b4de065df4 add LastPhaseTransitionTime field to PersistentVolume
5310dd7ff53 add PersistentVolumeLastPhaseTransitionTime feature gate
a31fee98f09 rename function for dropping disabled fields
dbea2791129 Fix the flaky TestJobApiBackoffReset test
8f35fceae37 update vendor to use containerd cgroups
c4bf42199a0 do not touch swap for cgroup v1 if swap not enabled
74fcf3e7668 implementation of PodReplacementPolicy kep in the job controller
cb6d7fbe66c update documented metrics
f50e74206e1 Address comment
c46ffc2b422 Refactor jsonpath parser and add tests.
b3b775baa51 test: adjust tests for v1beta1 validatingadmissionpolicy
88becfc0ba5 api: add v1beta1 ValidatingAdmissionPolicy/Binding types and storage
b5e9e0168cf feature: add multiple params capability to VAP controller
3f63a2d17d4 refactor: make scope of ParamKind available to vap controller
6323c106e9b refactor: use the provided sharedInformerFactory for params
9a595209bd2 update-codegen
c8dbf4712cf add namespaceParamRef to v1alpha1 and internal
03aad1f823c Fix the semantic meaning of etcd server within component statuses and metrics.
e0a6eb93a1f node_e2e: Fix createStaticSystemNodeCriticalPod's invalid spec
2863b3d1ab7 Revert "refactor: simplify RunScorePlugins for readability + performance"
3685e5e5a9c CHANGELOG: Update directory for v1.24.16 release
51bfe417b81 CHANGELOG: Update directory for v1.25.12 release
c575a1e31aa CHANGELOG: Update directory for v1.26.7 release
ba01bfcdc6c CHANGELOG: Update directory for v1.27.4 release
ce929520376 add podReplacementPolicy and terminating field to job api
35d0af9243c Include ignored pods when computing backoff delay for Job pod failures
ee82654e398 Add pod_swap_usage_bytes as an expected metric in e2e test
81abfca4078 Add a haveKeys() helper function to match multiple keys
1000ed64e09 Use debian-base instead of distroless for conformance image
d6e525877b5 [KEP-2876]Add reason and fieldPath into CRD validation rules (#118041)
b1d685a05fe apiextensions: validate status updates with status schema
06a81d13959 cmd/kubelet: implement drop-in configuration directory for kubelet
c1aef65640b Add integration test
cd5f3d9f9d5 Add impl for uvip
2c8288ac873 feat: improves metric and logging
0449cef8fd5 Increase timeout for DRA kubelet plugin client
a15c27661e6 Job controller implementation of backoff limit per index (#118009)
b5012ba1e2d Mark existing NodeLogQuery e2e tests as [LinuxOnly] since they do not run on Windows
bfb2c6a22a2 update go.mod
668497e7550 use ratcheting schema validator when feature is enabled
e0f9db42ace add ratcheting schema validator using new openapi hooks
6f238334ab4 add CRDValidationRatcheting feature gate
635875ad521 refactor: convert slices to []interface before inserion into VendorExtensible
9ee6d97fc05 refactor: add ValidateCustomResourceUpdate to support future validators for CRD Updates
a8a2fb317c8 Add tracking and reporting of executing requests
1351845133b Update cri-api change in v1.28.0
59b4951c649 Expose commit memory used in WindowsMemoryUsage struct
0ec99fb0b24 Kubelet DRA: fix failing test cases
f6431c61386 DRA: don't query claims from API server
cf0b74774f6 Extend the API for the Job job-index-failure-count annotation
d281daee335 Prefer pods without a deletion timestamp over pods with a deletion timestamp when getting an ordered list of active pods.
0372e4b6620 add unit test for dra/manager.go.
fcbfdc17106 Extend the Job API for BackoffLimitPerIndex
3fd40ffb0ef addons/metrics-server: fix nanny rbac permissions
056c19e8b39 Add slash ended urls for service-account-issuer-discovery to match API in swagger (#117511)
89ab733760a Improve docs on framework.CycleState
4da418aba7f refactor: cleanup to NewSchemaValidator takes JSONSchemaProps
ba581300213 refactor: rename apiservervalidation -> apiextensionsvalidation
735be024cf9 Make CRDs built and aggregated lazily for oasv2
ea23e13463f Update OpenAPI Aggregator
850dc6123af Remove ability to re-enable serving deprecated policyv1beta1 APIs
e7be841957d cli-runtime: make VerifiableQueryParam shared-parameter aware
a4a607198a1 hack/update-openapi-spec.sh
961c1503b5b Bump kube-openapi
4cb5547f934 Adjust summary API e2e test
e429793db1e Unit tests: node swap usage resource metric
1d368420b28 Add a node swap usage resource metric (/metrics/resource)
7d187f967ba Unit tests: CRI swap stats
59e3e3897e3 Add SwapStats to summary API through CRI
87ff9c45256 Add swap statistics to CRI-API
053d7ac61f5 Unit tests: cadvisor swap stats
c74ee8045de Add SwapStats to summary API through cadvisor
a05d200ac89 Add SwapStats to NodeStats, PodStats and ContainerStats
d029f0ef060 Add restartable init container lifecycle hook e2e tests
f17e9117776 Add restartable init container probe e2e tests
9d6c1030db0 Generate containers ready condition including restartable init containers
3bf282652f0 Allow restartable init containers to have lifecycle
7ef2d674e24 Allow restartable init containers to have livenessProbe
2c8b37498e5 Allow restartable init containers to have readinessProbe
8b20dbd0d16 Add validateStartupProbe
c7e7eee554a feature(scheduling_queue): track events per Pods (#118438)
91ea8043355 Replace lavalamp with jpbetz as feature-approver for api-machinery
94c8ad289bb Enable admissionWebhookMatchCondition by default
4321d8c60f3 Graduate NodeSwap to Beta1
f1e7386fbc4 Deprecate now-unused kubelet iptables flags
d486736dd38 Remove IPTablesOwnershipCleanup checks and dead code
77cbd86b0b1 Add metrics for cloud-provider node sync, update.
d3c506133f1 Skip apiserver_admission_webhook_request_total during context-canceled
7698fe76397 Add StatefulSet pod index as pod label (#119232)
2e217e8cea1 Reduce duplication between helpers for checking featuregate
7edd72f7805 Update generated documentation
137474e2839 Fix validation options for old pvc
d765fa6b747 Update generated stuff after changing comments
f01a1faa8cb Update comments about allocatedResourceStatus
c072e5b3a7e Update test generated data for 1.26 branch
db8998265e9 Update 1.27 generated data
6a780f57ce5 Update generated data
e0111871149 Update code to use new generic allocatedResourceStatus field
d3ef2d4fe95 priority & fairness: support dynamically configuring work estimator max seats
9189c3d5599 fix tests
aa788219f46 fix metric names
d32aa62d844 promote beta metrics
65ce7222ced All sig node approvers should be able to merge changes to CRI API
9cb2c103107 Adding node feature owners
00de051729a Make matchConditionsFeatureGateInitiallyEnabled a boolean instead
48eee4eed86 Fix e2e tests for overriding timoutGracePeriodSeconds of probes
0074b24ca42 Graduate AdmissionWebhookMatchCondition to beta
bfa62e0009a kubelet: retry RuntimeConfig call and prep for nil values from GetLinux
6aeff13def3 Never drop the `terminationGracePeriodSeconds` of a probe
d0952686f68 CRI: add cavieats about cgroup driver field
d7797fbc616 kubelet: get cgroup driver config from CRI
fd434003f3f kubelet: initialization of runtime service earlier in the startup
37330a13924 Add KubeletCgroupDriverFromCRI feature gate
d2d5e2e27dc Add CRI fake runtimes for RuntimeConfig rpc
0f05a92ce68 cri-api: add rpc for querying runtime configuration
660be4484b4 Update publishing-bot rules for release branches to Go 1.20.6
be01f4a0838 KEP-3178 IPTablesOwnershipCleanup to GA
ff62cca47b8 Bump distroless-iptables to 0.2.6
229eb93a834 DRA: report NodePrepareResource errors
b57c7e2fe4b Add CDI devices to device plugin API
b1850497b4b Integration tests for IP mode field
7eab0d7a0de Proxy changes for IP mode field
7c6e399b228 Generated code for IP mode field
e6863757f4f Add IP mode field
e38ab6d3671 Add PodGC changes for PodReplacementPolicy
169abcc0398 openapi: reference shared parameters
6c0ea702d43 Conditionally serialize flushFrequency as int
19f61caabee aggregate kube-proxy metrics
bd9b78d6861 kubeadm: remove the limitation that the 'ignorePreflightErrors' field can not be set to 'all' in kubeadm config file, and keep CLI / config consistent
6b3ce3004db Add integration tests for match conditions feature gate enablement
b883f305011 kubeadm: Support `kubeadm config validate` for ResetConfiguration
171b19d9fe1 fix histogram vec compare using ignore fields
9b6af80a631 upgrade prometheus common to v0.44.0
8f9e2cb8a80 kubeadm: Support `kubeadm config migrate` for ResetConfiguration
22f0f2e210f kubeadm: add 'kubeadm config print reset-defaults' command for ResetConfiguration
13172cba5c0 ValidatingAdmissionPolicy: support namespace access (#118267)
df0d51d3b35 add some detailed message for dup container ports(steal from thockin)
1732b23a343 Ignore context canceled from validate and mutate webhook failopen metric
90ab7580aae add list of served versions to storage version
9564bdc39de Ensure final diff is used for setting expectations for Job pod creation
8a4a29d5917 remove todo/spelling
bef43788fc0 update histogram
01b9f4b6eb8 matchCondition metrics
5f37c102cb5 revert changes in staging
d9bd413f991 Proactively bump golang.org/x/net to v0.12.0
883d0c3b717 Add a dummy implementation of proxyutil.LineBuffer
34640772ed4 implement SchedulerQueueingHints feature gate
619be9c1537 Add a swap e2e test
4b6314f815b Unit test: Swap - Limited/Unlimited Swap, cgroups v1/v2, etc
a30410d9ceb LimitedSwap: Automatically configure swap limit for Burstable QoS Pods
e4da568f331 Make kuberuntime unit tests environment independent + support cgroup v2
f37aec6c57f Add LIMITED_SWAP env var to enable limited swap
0ed7bdb057e Update vendor
69c4bc29f55 [go] Bump images, versions and deps to use Go 1.20.6
2a907e60043 kubeadm: fix fuzzing for ResetConfiguration
2e6715bc77b kubeadm: implementation of `ResetConfiguration` API types
037847066ce replace strings.Index with strings.Contains instead
3e2a1a7b9ce Regenerate
b2613dd381b Add e2e to check that hostIPs and Downward API works
14b09c414ac Add DownwardAPI validation for status.hostIPs
335d905ce95 Downward API support for status.hostIPs
bf030fd68ab Add validate HostIPs
267e76a66e2 Add status.hostIPs in validEnvDownwardAPIFieldPathExpressions
c287943bdd5 Add status.hostIPs in ConvertDownwardAPIFieldLabel
7a81ef6406c Add fuzzer for PodStatus
e6bdd224c17 Add HostIPs for kubelet
dacb6890027 Add dropDisabledStatusFields
e061143de7f Add HostIPs field and update PodIPs field
c2c001a243a Add FeatureGate PodHostIPs
ce90eb2cc2f Fix validation to use field.Forbidden instead of Required
7305c967101 QueueSet and controller part of borrowing by exempt PLs
2069835094d Tolerate only the two allowed field changes
3754d2da20f apf: allow admin to change the Exempt field only of the exempt pl
f8e4e8abac8 apf: add validation to exempt for borrowing
f78d6062eb8 Update generated code for APF borrowing by exempt
a9d8cace1f5 Fix AutoUpdateAnnotationKey, NominalConcurrencyShares
3d3240c8b43 apf: add API changes for borrowing by exempt pl
b635f2a401f ValidatingAdmissionPolicy: Variable Composition (#118642)
49d03468021 Pre-allocate webhook accessors arrays for mutating and validating webhooks
037091284e2 fix unit test bug
423f4dfc798 Add quantity library to CEL (#118803)
a1a5f49bb9c remove statefulset label added to wrong branch
1ae60c0ed16 use job completion index annotation as label
131216fa8f2 chore: hashes keyID
049614f884e ValidatingAdmissionPolicy controller for Type Checking (#117377)
d25075f3424 update generated list of stable metrics
c291e6355c4 feat: implements metrics for encryption config hot reload
be2e5417ea2 allow api-approvers to approve directories touched by generation
80ab8f0542f dra: handle scheduled pods in kube-controller-manager
cffbb1f1b29 dra controller: enhance testing
5cec6d798c3 dra: revamp event handlers in kube-controller-manager
0bb419b1498 promote the following APF metrics to beta:
39207dada25 Add integration test for node authorizer claim references
4121c1fc79a auth: don't allow kubelet to from modify ResourceClaimStatuses
c688478a28b Fix lifecycle generator to check the version correctly (#119268)
ddc0d947900 dra API: ensure that pod status contains no duplicate resource claims
052b06bdad3 Remove test Pods sharing a single local PV
22d8ae1ba6e Enable NewVolumeManagerReconstruction
9914909f5aa Define tcpProtocol in one place in the unit tests rather than many
967ef293786 Remove/clarify two FIXME comments in the proxier unit test
14375947869 Remove some stray references to the ProxyTerminatingEndpoints feature gate
7e3b53042b1 Pass Job context down to firstPendingIndexes
4835d9e1371 Belatedly clean up some "Endpoints" vs "EndpointSlice" distinctions in the unit tests
4d8f569b037 Remove KUBECTL_EXPLAIN_OPENAPIV3 environment variable
c5147c91b88 controlplane: kubernetes.default controller stop polling
9f5b6db8be8 test: azure: check error for cloud detection.
1db11c07ff2 node authorizer: limit kubelet access to ResourceClaim objects
71ef0dafa72 add flag 'logging-format' to kube-proxy
c550c17f7f0 accept int or string flush frequency
148acc8632c enable arm64 support for GCE node configuration
75186b1c32a Fix, deprecate apiserver_flowcontrol_request_concurrency_limit
c52911e59ad docs: add comment describing `LoadConfigFromFile`
5c18810f357 chore: update license date for configfile tests
72aeb961322 test: add tests for `LoadConfigFromFile`
b3373ae2738 refactor: make only `LoadConfigFromFile` public - `loadConfig` can be made public again when needed (not required now)
8e284389a5d feat: make `loadConfig` and `loadConfigFile` public functions - so that users who import kube-scheduler libraries can use these functions to read kube scheduler config
0599b3caa0f change the QueueingHintFn to pass a logger
39bb8f4bb1d Implement ConsistentListFromCache feature gate
0695853a306 Improve naming and code comments
08d40f53a7a dra: test with and without immediate ReservedFor
98ba89d31d5 resourceclaim controller: avoid caching deleted pod unnecessarily
28b6c906966 Move DeleteFunc logging to level 2
761016482da Properly setup mutatingWebhookConfigurationManager{}
747dbd9b6b7 run `./hack/verify-gofmt.sh`
1eb60939fe5 Add smart reload for `MutatingWebhooks`
aeefb762ece Properly handle parameter in `shareInformer.DeleteFunc`
a01a8cb07e7 Fix webhook accessors caching pattern
7d3d44af776 Add webhookAccessors smart reloads unit tests
c6f36e8702a Fix deadlock issue
99875b3fb73 Webhook Accessors Smart Recompilation
7d064812bb4 kube-controller-manager: finish conversion to contextual logging
d743c50bb9e kubelet: support batched prepare/unprepare in v1alpha3 DRA plugin API
7a63997c8a1 Improve apiserver storage size metric to allow it's graduation
610509fedd9 Update standard app protocols
f1f2fa9da8a kube-apiserver/corerest: split apart generic code
01c3a51a780 node: podresources: getallocatable: move to GA
c1decb6763d Fix TestConditionalProgressRequester and TestWaitUntilFreshAndListTimeout flakes
1b8ddf6b79a podgc controller: convert to contextual logging
f924bf95df9 dynamic resource allocation: Improve code coverage of state checkpoint
c635a7e7d83 node: devicemgr: topomgr: add logs
d78671447f2 e2e: node: add test to check device-requiring pods are cleaned up
5cf50105a2b e2e: node: devices: improve the node reboot test
b926aba2689 e2e: node: devicemanager: update tests
3bcf4220ece kubelet: devices: skip allocation for running pods
ab3a0b78ea3 Match both old and new kubectl version for a while in e2e
c143a875edb dra e2e: fix "reallocation works" flake
6f1a29520fe scheduler/dra: reduce pod scheduling latency
e01db325735 scheduler util: handle cache.DeletedFinalStateUnknown in As
ef48efc736c scheduler dynamicresources: minor logging improvements
363874e9b56 setcap: update to debian bookworm v1.0.0
19869478c11 Migrate /pkg/controller/disruption to structured and contextual logging
b81f07ac9a6 Add enj to apiserver options approver
6d6595d0f6e Add jpbetz as approver of apiserver integration tests
43b509de420 staging: Add endpointslice to publishing data.
7c873327b67 Convert controller name to reconciler variable.
29fad383dab move endpointslice reconciler to staging endpointslice repo
c0030a4d27e Add support for watchlist to APF
9759fc3c230 Fix the converts an empty string to nil.
22c66784e03 staging: add endpointslice repo
a34e06e74c7 kube-apiserver/corerest: structure Config
75e3576523f kube-apiserver: rewire service controllers: kubernetesservice + IP repair
f22aa42aa81 bump go.mod cadvisor to v0.47.3
f855a23b455 topologymanager: promote TopologyManagerPolicyOptions feature to beta
3267dd9d529 kubectl delete: Introduce new interactive flag for interactive deletion (#114530)
23833b9c81c topologymanager: Increase TopologyManager test coverage by adding negative test cases around NUMA topology discovery
998654e0443 topologymanager: fix TopologyManagerPolicyBetaOptions not being enabled by default
fec25785ee6 dra: store generated ResourceClaims in cache
ba810871ada dra e2e: check that not generating a ResourceClaim works
0fc62d5ded0 dra: generated files
444d23bd2f1 dra: generated name for ResourceClaim from template
98461be8ffa Implement conditionalProgressRequester that allows requesting watch progress notification if watch cache is not fresh
cd14e97ea80 Add a builder for ContainerAllocateResponse objects
db2a1edbdd6 Generate empty cdi annotations
f0e3c32fe56 Move CDI annotation code to utils package
354b6c409f5 Rename updateReconstructedFromAPIServer
1903f5aa2ad Rename volumesNeedDevicePath
7cd60df4aa1 Update volumesInUse after attachability is confirmed
0a2272dc68d Add uncertain state of volume attach-ability
bf48165232f Remarks to syncJobCtx
990339d4c3e Introduce syncJobContext to limit the number of function parameters
94b782680c0 Update publishing-bot rules for release branches to Go 1.20.5
f443c458afe move non-graceful node shutdown to GA
645cb907320 migrated pkg/controller/endpointslicemirroring to contextual logging
98c6e25c371 update name of pod index label
09849b09cf4 migrated pkg/controller/endpointslice to contextual logging
de076430957 Document address family of listening INET sockets
08dd657a71c Implement metrics agreed on the KEP
9b1c4c7b57f Implement KEP-3836
cca66011067 Add reason to force detach metric
e655931274f expended type checking.
8fb5b6eb4c1 node-e2e: Add container lifecycle e2e tests for preStop hook
47ef977ddd5 Direct reference to the packages
7286d122fb7 Mark pods with restartable init containers as `UnschedulableAndUnresolvable`
0a987079128 Sidecar: Update printPod to show restartable init container information
ea1eb7f8f79 implement sidecar resource calculation
03c22176877 Sidecar: Add e2e tests
b94fa250c27 Sidecar: Implement lifecycle of the restartable init container
c187b381173 Sidecar: Generated code
5d26bcd468b Sidecar: API changes
10dc1ca0846 Skip GracefulNodeShutdown on older systemd versions
f7a1fb76f4f Only declare job as finished after removing all finalizers
3f07fc3acc9 Remove long/golang version information making short the default
3a5268502f3 Remove deprecated scheduler CLI flags
68ed020b2a3 Split IptablesRulesTotal metric into two different metrics
bc059817dc5 fix: Add "metav1.CauseType" to "field.ErrorType" map
c0eb0caf4ac Support fine-gained rescheduling in ReservePlugin
d7708e79d32 Use cmp diff
278a8376e17 Fix: fiterror in permit plugin not handled perfectly
14bd9bc127e CHANGELOG: Update directory for v1.28.0-alpha.4 release
2fe38f93e53 feat: Append job creation timestamp to cronjob annotations (#118137)
1acdb4ae86e [KMSv2] Mark KMS v1beta1 as deprecated with no further fixes (#119007)
02c59710eaa Test the IptablesRulesTotal metric in TestSyncProxyRulesRepeated
ecf0cee91ce update comment on feature flag
3a02ecb3418 check test case param instead of feature flag in unit test code
b10cc642b56 DRA controller: batch resource claims for Allocate
be0db3f93d7 clean up the implementation around QueueingHintFn
5175752df74 Issue 4230: remove readiness check for cache exclusion
132d477cb7a use stopCh to avoid goroutine leak in tests
20a25cbfcfb Add user specified image to CRI `ContainerConfig`
65e818d4ecf Introduce apiserver_flowcontrol_current_executing_seats metric
1bf2f6c9c05 feat(NodePorts): return Skip status in PreFilter
dfc1838379f Migrated pkg/controller/volume|util|replicaset|nodeipam to contextual logging
6c0387d0047 Migrated pkg/controller/endpoint to contextual logging
3cf2822bc58 Migrated pkg/controller/garbagecollector to contextual logging
921b7e6e8f7 remove equalReady and replace with k8 util function
a647f9febbf default enabled pod index for test cases, add test case disabling it
322da7c1aae fix gc metrics
02efe09abe3 component-base/logs: improve handling of re-applying a configuration
1240a29af9c Hide numberOfMissedSchedules as an algorithm internal number
c733c57962f pkg/controlplane: wire core storage as RESTStorageProvider
65b34221ebb kube-apiserver: remove IP repair plumbing from kubernetes service controller
9dcc57ede62 Stop using deprecated API
5e1777be529 Update debian-base to bookworm
a514f40131c dra resourceclaim controller: delete generated claims when pod is done
e8a0c42212d dra resourceclaim controller: remove reservation for completed pods
7f5a02fc7e4 dra resourceclaim controller: enhance logging
d1ba893ad8e dra resourceclaim controller: refactor isPodDone
e2900da46aa Remove unnecessary utiliptables.Interface arg from local detectors
7690c6e8121 Simplify getDualStackLocalDetectorTuple
cefd50a753e Improve the single-stack LocalDetector behavior
bfccfa7016b Add names to the getLocalDetector unit tests, use t.Run
16e9cc42c1a e2e node: remove unused test/e2e_node/gcp
932d0337b82 e2e: detect unexpected command line arguments
68aee61d4f7 SPLIT: kube-apiserver/corerest: split out service IP setup logic
443bf3b01b0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/cache
dad3e4d2112 SPLIT: kube-apiserver/corerest: split constructor
31943cc3f44 kubeadm: check the GV after the config migration
b4f479d1f29 bump npd to v0.8.13
a556feb7cbe run hack/update-vendor.sh to fix verify master
4149933ed2e kube-apiserver: move "public IP matches IP family" check to option validation
616c9599880 FIXUP: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
c26e1ba10c3 [UT] increase coverage kubeadm/app/phases/dns
b36fdd68b72 Test consistent List
01b1174c114 kubeadm: fix "migrate config --allow-experimental-api" to print v1beta4 kubeadm configurations instead of v1beta3
18f2e9055fc Add OIDC integration tests
c68a6b07456 kubeadm: fix fuzzing for ExtraEnvs defined in the control plane component
80b035a116a kubeadm: Support custom env in control plane component
6b01ece5806 scheduler-perf: fix perfdash display problem
29e5771aa4d scheduler-perf: shorten "Name" label in metrics
e08bd3bc263 Simplify DeleteCollection
7b62d000a4d MOVE: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
2b03f04ce58 Initialize the AuditEvent with the AuditContext (#113611)
c903c29c3b1 e2e: support admissionapi.LevelRestricted in test/e2e/framwork/pod
19cb6d036ae kube-apiserver/corerest: remove redundant interface
ede17eace45 test-e2e: Retrigger the RBD image post merge job
a966d186083 Double-check the proxy configuration vs the available IP families
36e458612a9 cmd/kube-apiserver: move back master count variable from generic controlplane
1cfb932111e kubectl: Allow parallelizing diffing
bcbc12cd79c Fix `should be able to create and delete a critical pod` test
4517d3004ad bump kube-dns to v1.22.23
985cf718a43 [Dual-stack] Fix generateAPIPodStatus() of kubelet handling Secondary IP hostIPs order may not be be consistent. If secondary IP is before primary one, current logic adds primary IP twice into PodIPs, which leads to error: "may specify no more than one IP for each IP family". In this case, the second IP shouldn't be added.
f6a86bb2030 fix indent error
c143710ecf1 upgrade npd image version to v0.8.13 for kubemark
96694514a75 Remove csiDriver Conformance test
bb0c3a08189 Remove proxyutil.IsProxyableIP / IsProxyableHostname
59592ba4639 Add OIDC test server
1f2bf32e95f Figure out single-stack/dual-stack support before creating the proxier
8abfa89e82b Move proxy platformSetup call, and do LocalDetector setup from there
ebb0fdd4f6f Don't explicitly filter config.NodePortAddresses by IP family
a74b9fde3aa Don't pass around full node in proxy constructor, just pass PodCIDRs
0537c1da563 kubeadm: move migrate / validate tests out of config_tests.go
b01a4145b2c Install ecr-credential-provider during node e2e tests
4e6aa5fb861 kube-proxy service health: add new return header with number of local endpoints
a5df442be78 flowcontrol: copy object before passing it to client-go Create to avoid data race
ea34d039256 integration testing: configure gRPC logging during init
1c48b7ec144 Add servedVersions info in StorageVersion API
d548983dbb2 Use table-driven table for TestPerPodSchedulingMetrics
e0af0a5a455 add test case param for feature flag
d68f5f0d921 fix tests
44f1c4dd94d fix duplicate metrics issue
84b3d9b7b7e remove legacy NetworkPolicy tests
0eeca0987a6 fix tests
04ea1d506b4 promote sli metrics to beta
f96d83af668 Copy container logs for easier debugging
dfc150ca182 e2e: node: podresources: cooldown the rate limit
f7cf9effa33 fix kubelet podWorkers.SyncKnownPods() typo
52ef833b6c2 Bump cadvisor version in tests to v0.47.2
8266c4d934d Generalize watch storage tests
d53762ec3a5 remove unnecessary comment in pkg/scheduler/framework.QueueingHintFn
1b47e6433b8 dra delayed allocation: deallocate when a pod is done
dbdd861ea36 chore: address review feedback
72294e4eff0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/queue/
f269acd12b2 Make QueueSet support exempt behavior; use it
931456a1427 Simplify the node name for metrics - just use localhost
3e5fafd57ab Drop docker.log and add cloud-init-output.log
1c7e87cff27 client-go: add DNS resolver latency metrics (#115357)
150f732c7ee [StructuredAuthenticationConfig] wire request context to claim resolver
4a5a242a68d dra e2e: using logging for background activity
f1700e4b95b Cache authz decisions within validating policy admission.
60fb8f2fbc5 Exclude terminal pods from Daemonset e2e tests
24f4785e3eb kubeadm: remove unused Kind and Resource functions from output API
16fdd3e5eef apiserver: introduce larger buckets for flowcontrol request_wait_duration_seconds bucket
90f82d05ce2 kubeadm: remove unused Kind and Resource functions from kubeadm internal API
fd15c6791a4 kubeadm: restore and generalize the TestMigrateOldConfig test
d616cf72a3b Add unit tests for parallel StatefulSet create & delete
c6079843792 apiserver: introduce larger buckets for request_filter_duration_seconds metric
ef265101648 Return Skip in PodTopologySpread#PreScore under specific conditions
732775ee7d1 Paginate within DeleteCollection call.
0d41d509d2d scheduler_perf: replace gomega.Eventually with wait.PollUntilContextTimeout
cecebe8ea2f scheduler_perf: add TestScheduling integration test
dfd646e0a89 scheduler_perf: fix namespace deletion
d9c16a1cedd scheduler_perf: fix goroutine leak in runWorkload
2e7f37353cb test/integration: avoid errors in fake PC controller during shutdown
812556365b6 kubeadm: backdate generated CAs by 5 minutes
44692a486f9 client-go: allow to set NotBefore in NewSelfSignedCACert()
cfa2fa6d774 put feature gate in alphabetical order
860aab842db fix a reference to the wrong variable name
a75b00ea39d Better URL for scraping metrics from kubelet
685b0c5efa1 Bump to latest node-problem-detector version with arm64
cad338890df add test for apiservices.apiregistration.k8s.io discoverability in openapi/v3
9e3b5b65838 update openapi
ad2b4368e21 expose apiregistration.k8s.io into OpenAPIV3
bb8766daaf6 feature flags should be ordered alphabetically
7f4c187ab26 kubectl explain should work for both cluster and namespace resources and without a GET method
a9afaa1eee9 add feature gate
dfce076c6cf Update the template.pot file with latest message IDs.
a4519665fe0 Skip terminal Pods with a deletion timestamp from the Daemonset sync (#118716)
9c7166ff639 wait for eventhandlers to sync before run scheduler
bde66bfb55c kubelet dra: restore skipping of unused resource claims
874daa8b52c kubelet dra: fix checking of second pod which uses a claim
6c587b43e92 Cleanup pods at the end in Pod conditions e2e node test
56c5c8f7eef Revert "Make CA valid 1 hour in the past"
ecd727e4c75 Fix PodGC test when PodDisruptionConditions disabled (#118805)
bdbf07525fa test: remove exception comments in discovery tests
6fd830a075f hack/tools: bump golangci-lint and consequently staticcheck
1af54256969 hack: disable gomega.Consistently/Eventually check due to false positives
f618e613322 e2e: replace gomega.HaveLen(0) with gomega.BeEmpty()
e7df337ebad e2e: replace gomega.Equal(true/false) with gomega.BeTrue/BeFalse()
8b33e8bdd1b e2e: fix gomega.Expect calls without assertions
0ef1f2f2d89 Set AWS specific credential provider when running there
b0f694f50ac CHANGELOG-1.27: Add note for AWS in-tree provider removal
af1c9e49c49 Update schedule logic to properly calculate missed schedules
0033f658085 increase the log level for the GetTargetNodeName error message
08198fe22b5 Extend Large Create Timeout to 60 min
9354e78289f no-op: split transformer interface
21760534157 add completion index as pod label
8083d0d22e2 pkg/controlplane/apiserver: remove temporary import restriction of cmd/kube-apiserver
764da8a01dc FIXUP: cmd/kube-apiserver/app/options: split apart controlplane part
1b3779baa0d MOVE: cmd/kube-apiserver/app/options: split apart controlplane part
3df92362abd fix openapi/v3 non local apiservices aggregation
4298953c26c kubeadm: remove unused Kind and Resource functions from v1beta4 API
6e079545c48 cmd/kube-apiserver: move options completion into options package
f04484fe775 kubeadm: add the --allow-experimental-api flag to "config" commands
0774f779d5c kubeadm: add v1beta4 to the kubeadm API scheme
38222014c61 kubelet pod-resources: add e2e for KubeletPodResourcesGet feature
f7239e40959 Better back off delays and connection timeout to talk to containerd
e4f93d8a82d ipallocator bug if ips has leading zeros
89a9e480f9b fix: update deployment e2e tests
41d961758ee update cri-api change in v1.27
22258a263f4 Fix stable metric finder for NewDesc with custom import name
13842746227 Update metric documentation
45aa59946af Refactor FindAttachablePluginBySpec out of CSI code path
07f38a3ec18 add test
6f8d38406a7 feature(scheduler): implement ClusterEventWithHint to filter out useless events
531d38e323c features: rename UserNamespacesStatelessPodsSupport
556d713a4ad apis: drop check for volumes with user namespaces
8ed23558b44 Do not set jm.syncJobBatchPeriod=0 if not needed
17013d39604 Review remarks to improve HandlePodCleanups in kubelet
e3ee9b9adc1 Fix the deletion of rejected pods
c91c578795c scheduler_perf: skip expensive cleanup during benchmarks
92a35f5bca9 Usse generics to simplify pkg/registry/flowcontrol/ensurer
902c711fb49 Unset gated pod info timestamp in addToActiveQ
56cb4c93918 [bug] Update DefaultObjectDescriber to handle interface params (#118190)
1053d1bbcf5 CEL lib: Expose errors on authz decisions instead of raising them from check().
406899360b5 Refactor shouldDelegateList/shouldListFromStorage to better explain decisions
e4cf103c9b9 Test all cases for LIST request cache bypass
7f532891c9c e2e tests: set all PSa labels instead of just enforcing
a9af2de8fdd Refactor WithRequireLeader to make it part of the etcd store
1bd3f072fa7 stop ignoring storage class selection errors
e5cbc51d29d e2e framework: allow setting all PSa labels at once
edb59e9bc75 kubeadm: move token defaulting and related constants to token package
ec70b2ec801 e2e dra: add "kubelet must skip NodePrepareResource if not used by any container"
fdd992da865 upgrade image addon-manager/kube-addon-manager:v9.1.6 to v9.1.7
420fbd11e44 ignore Histogram for prometheus client v1.16.0
c98e72841b1 Add a connection backoff to talk to CRI impls
409bc8ccc05 deps: Bump to cAdvisor v0.47.2
f72c2c2b7d2 add process start to prometheus handler opts
bbc7ca94a42 CHANGELOG: Update directory for v1.28.0-alpha.3 release
ab75e48494c storage: stop using deprecated io/ioutil
687ca0e0bb2 fix(script): handle wait_for_success failed condition
eecac058718 kubeadm: add v1beta4 API boilerplate
63e5b6bdb24 Parallel StatefulSet pod create & delete
2fb472c83cd Refactor StatefulSet controller update logic
784a309b917 Do not error in Job controller sync when there are pod failures
f2e3157df0a Remove AdvancedAuditing feature gate.
bbae445d172 fix metrics test with 1.16.0 prometheus client
180c2332bf8 [UT] increase coverage ut for kubeadm/app/features
564c236ce28 Do NOT prepull images for e2e-node jobs
c84b5b0a99f Cleanup unnecessary renames of variable t
c9b01dd9778 Fix race in logging expectations
3dd1bac4dce Set small DefaultJobPodFailureBackOff in Job integration tests
85d9339ef8f add KCM names into CCM cmd allowed import-restrictions
3b55f20bd34 update vendor
4e6a3fb9c10 deduplicate cloud provider controller names
e5f5a9bfdbe use controller names for CLI FlagSets to show the names in help
cd56748ec57 reference controllers correctly from CLI help
9fd8f568fe0 introduce CCM controller aliases and unify controller names
94792d85dea simplify TestValidateControllersOptions test
97309511366 introduce KCM controller aliases and unify controller names
ba1755132e1 support controller name aliases in GenericControllerManagerConfigurationOptions
2596245f5a7 Replace deprecated sets.Int with sets.Set[int] in Job integration tests
e5116a39c96 fix: kubectl expose fails for apps with same-port, different-protocol
958c8fb6950 Make use of `k8s.io/utils/pointer.Duration`
ede2ec22b68 kubeadm: drop older etcd versions from kubeadm support
8cd65e9cee6 reorder hack/unwanted-dependencies.json map keys and arrays
f44029705f9 exit 1 if status are not as expected(order)
a1e0aa0e504 DRA Node E2E: add NodeAlphaFeature to fix CI
74c5ff97f18 Lower the constants for the rate limiter in Job controller
f54c15d4e80 Change the fieldpath in the deprecated plugin response
471fd1ae8a1 deprecate RBD plugin from available in-tree drivers
c51a422d787 Cleanup job controller handling of backoff
fff5b35023b Adding review changs to update
889ecf865b7 always execute condition for wait.PollUntilContextTimeout with immediate=true
5aa5f1abc9c update prometheus/client_golang v1.14.0 to v1.16.0
5bde9404a09 Remove unused error return value from internal function
8636f9353a8 CHANGELOG: Update directory for v1.27.3 release
763555814b5 CHANGELOG: Update directory for v1.26.6 release
3bf93156d80 Update pending_eligible_endpoints.yaml to match APISnoop
ff2a1f0167f CHANGELOG: Update directory for v1.25.11 release
a29be0cfb00 update container runtime flags to use containerd instead of docker
89adbc6e5b5 check for AWS environment before running sudo
7f650acb3c1 CHANGELOG: Update directory for v1.24.15 release
a83edd35c4a DRA Node E2E: relabel test suite to fix CI
c27f9fdeb79 Add warnings for big number of completions and parallelism
a86380c7813 Update CLI help text for grammar and consistency
96e7d5f1f25 Bump iscsi test server image
e0f273ffdaf use ingress-gce-glbc v1.23.1 image for CI
e213448db12 Updated kubectl explain help output
7bc449d7e0c add contextual logging to job-controller
cfbc5dc54f8 mount-utils: fix linter warnings in tests
8ced101db53 mount-utils: stop using ioutil in tests
699d118d85f mount-utils: stop using ioutil
b690450e846 mount-utils: don't reread mountinfo on newer kernels
8c79a911331 mount-utils: isMountPointMatch: simplify and speedup
404e844468b mount-utils: add isMountPointMatch test and benchmark
4bb02392793 mount-utils: IsMountPoint: fix
167252fb5e0 mount-utils: format with gofumpt
55b690ee018 kmsv2: no-op refactor priming logic into its own function
15003c609d0 kmsv2: refine probing logic to avoid slow starts
d8150b81601 kmsv2: add a sanity check to confirm that new state is always valid
8c06ca68d7d Details added in kubectl explain help
4960207b317 DRA Node E2E: test NodePrepareResource timeout
5c5f6e8fe2f DRA Node E2E: add NodePrepareResourceCalled API
673d0aaa60c DRA Node E2E: add call blocking to the Kubelet plugin APIs
a60314c47ef Make etcd component status consistent with health probes
e1735b98637 Make CA valid 1 hour in the past
5e048041e40 remove helper function for unused storage feature in pkg/proxy/util
e1aef2ac917 Bump publishing bot rules for Go 1.19 branches
9cb52a6872c Fix the flaky legacy_service_account_token_clean_up_test.
4e20a8f52bc kill all processes in a container in the event of OOM
0222e6d4ae3 Update kind details for DRA e2e
75cf25c0e7f iscsi: use dbus from the host
f7a5817bc65 e2e storage: terminate worker quietly on test completion
22de2c27d1b scheduler: improve cache_test.go - Add test name to enhance test readability - Remove redundant test tables
325205efb72 Migrated pkg/controller/endpoint to contextual logging
be14b026e33 fix the integration test
a7eb7ed5c6a refactor: simplify RunScorePlugins for readability + performance
587f992a7b2 e2e: deflake a HPA CPU test by stabilizing cpu consumption
672614b57e8 apf: refactor bootstrap ensure strategy
910630fbea2 kubelet: mark '--azure-container-registry-config' flag as deprecated
5e6ae25a33b Updates chairs, tech leads for sig cloud provider
34368884783 move luxas as an emeritus approver of test/e2e/lifecycle
e97d9803f2f add SataQiu as a test/e2e/lifecycle approver
4977189c1b0 Fix ginkgo noColor deprecation warning
e6bc945a61b Add startup probe in integration test
ea1de7517ee CHANGELOG: Update directory for v1.28.0-alpha.2 release
7ccc2317839 add test for authorizer type checking.
54cae706786 Pass the mandatory parameters to support testing on ARM64
fdc49f5257c Return deprecation warning for storageOS,PhotonPD,ScaleIO..etc
151509fb74d Remove unreachable warning on volume name dup
d73923c8ebf fix 'pod' in kubelet prober metrics
0ddaa7f7c9f Fix warnings on "duplicate" env vars
4820cc852a0 Minor fix on variable
a6f5abfb81e Updating names from webhookconversion to conversionwebhook
0fe84ff7cb1 Re-add the legacy wsstream package and deprecate it
8f3109da791 Refactor wsstream library from apiserver to apimachinery
6d4abd7e7b6 bump distroless-iptables to v0.2.5
04fa4184ed3 add support for authorizer to type checking.
e5a15c87e9d Ensure timeout test handlers don't complete before timing out.
f2a64cb91d7 fix Cronjob status.lastSuccessfulTime not populated by a manually triggered job
2f6b1d3c0fb Ensure Job sync invocations are batched by 1s periods
ed429c4388a replace node-role.kubernetes.io/master taint with node-role.kubernetes.io/control-plane for gce kubelet flags
b1da721bdd7 Update vendor with hack/update-vendor.sh
88b69cdd0e6 Fix flaky persistent volumes e2e test
d9e12db547e Bump images, versions and deps to use Go 1.20.5
ea6495e8284 Remove StartupProbe on debug with pod copy
ac15d697578 remove RetroactiveDefaultStorageClass feature gate checks
6afb363ca17 test: remove RetroactiveDefaultStorageClass feature gate
97a81a59f62 test: correct validation test error message
42722ffef02 graduate RetroactiveDefaultStorageClass feature to GA in 1.28
7f87ec9406a storage: Add MadhavJivrajani as reviewer
7ac36bd0720 test/integration: use t.Log in TestAPIServiceWaitOnStart
77cf37ee543 STRUCTURE: cmd/kube-apiserver: move admission construction back from controlplane
7961812bed8 STRUCTURE: cmd/kube-apiserver: move OpenAPI construction back from controlplane
43be9c3a0ac MOVE: cmd/kube-apiserver: move genericapiserver construction into controlplane package
9be6e7bb339 STRUCTURE: cmd/kube-apiserver/app: stratify construction with options/config/server
e6ed4c7934d CLEANUP: cmd/kube-apiserver/app: remove trivial funcs
f7d4e90b5c4 MOVE: cmd/kube-apiserver/app.createAPIExtensionsConfig -> pkg/controlplane
087fbc9304f Remove invalid merge key
4962e6eacb9 Squash detectNodeIP and nodeIPTuple together
b5db644422d Add merge map key validation to StorageVersions
58162ffd63b DRA: add node tests
b69b34bec64 Move a kube-proxy unit test to the correct file
4bee9b2b352 structured logging in proxy/ipvs/ipset
26801d6541a kube-proxy avoid race condition using LocalModeNodeCIDR
4dbece1e203 e2e-framework: remove node-role.kubernetes.io/master taint from non-blocking-taints
dddbecb47e2 prune's xml files to display only top level tests and failed sub-tests
8b0a6ed6999 re-send the shutdown signal in case the dbus restart is not done
4d0e25151db Fix SELinux contexts used in e2e tests
010343562c6 dependencies: update github.com/dustin/go-humanize v1.0.1
743e5525edb fix eviction failing test for nil feature gates assignment
6d66fbc6b67 storage: Move cacher tests to reside with the cacher code
70978e4af61 cacher: Move common testing utils to a single file
bdfb96c57d3 chore: os.SEEK_END os.SEEK_SET and use b.Logf(...) instead of b.Log(fmt.Sprintf(...))
7a80d7c839c add warning for duplicate containers[*].ports with the same port, protocol, hostPort, and hostIP
923db7bd8e0 chore: use strings.Contains instead
e9e4acb1dde k8s.io/apiserver: remove skewed completion from EtcdOptions
4d85a1f00cb storage: Implement TestWatchFromZero for cacher
2e76ac31fd8 Replace os.Setenv with testing.T.Setenv in tests
ac5ce5cbce7 Replace os.Setenv with testing.T.Setenv in tests
b274a9bf7c4 remove csidriver endpoints from pending_eligible_endpoints.yaml
5d4bf0b6f90 Promote CSIDriver e2e test to Conformance
3085b57869a Do not copy bytes for cached serializations
c009667c6c6 deprecate CephFS plugin from available in-tree drivers.
1fcfd1d5090 pkg/util/iptables: use buf.String() instead of string(buf.Bytes())
9eaa50cc829 Rename scheduler queue variables for consistency
6195f96e56e minor fix comments in netpol so its easy to understand the tests for newcomers, remove one misleading comment (#118264)
410b6023d6f scheduler: fix code style issues for pkg/scheduler
71ab7dc791f Remarks
70d3bb43e56 Adjust the algorithm for computing the pod finish time
b994e639a6b Add mininumKubelet tag into ReadWriteOncePod test
db9fcfeed29 Move cri/streaming to k8s.io/kubelet staging repository
da4a8d831b9 kubectl: use bytes.Buffer.String
8e4228a8c1f remove CSI-migration gate
a5c4fbe9791 chore(fix): test jsonpath condition parsing errors
9d3e55ec431 Support JSONPath condition without value
f520f6fd06c Add Pod Termination e2e tests to test termination grace period seconds
b4dfae25dee fix terminationGracePeriod blocked by preStop
fd92acba5a8 chore: should use buf.String() instead of string(buf.Bytes())
20866b3f85a dryrun: Don't reuse current object for conversion
f351c6d1ecc k8s.io/apiserver: apply storage object count tracker implicitly
45c9e066164 Fix errant debugging code in codegen
a51be9786ba remove enabled by default beta resources that have been removed
f4d326a1fcc verify: produce JUnit file also for pull-kubernetes-verify-strict-lint
a4ea058cc75 feature(scheduler_perf): distinguish result in scheduler_scheduling_attempt_duration_seconds metric result
322968e9b38 Update unwanted dependencies per CI instructions
2111e79f56a Update gnostic references
1993a4cb379 vendor
0b4efddae01 verify: nicer failure message rendering in Prow
dbbb21469f4 verify: pick relevant lines from verify-golangci-lint.sh as failure message
d6168bb6587 Add ephemeralcontainer to imagepolicy securityaccount admission plugin
70ff750c755 chore: io/ioutil deprecated
1ce285ad3df Revert "removed the deprecated `azureFile` in-tree storage plugin"
daa71159077 kubeadm: add deprecation message for UpgradeAddonsBeforeControlPlane feature gate
a6c7f63b188 Set the node-ips annotation correctly with CloudDualStackNodeIPs
d49c43abde5 kubeadm: add integration test to ensure that the supported etcd version is always available for the stable Kubernetes version
6d23da045fc Migrated pkg/scheduler/framework/plugins/interpodaffinity to use contextual logging
db2389ba9c8 kube-proxy: remove log warning about not using config file
15aa00fc836 Remove unused `getSeccompProfilePath` helper function
d0a64739e2c e2e dra: collect and check GRPC calls
68901de8981 Enable optionals and add tests
5c0b59891d6 Bump cel-go to v0.16.0
5b3510c0b67 Fixing gmsa-webhook install steps for Windows GMSA full tests
c539c739161 Changes to buckets and comments
35d2431b3a8 informer: fix race against Run and SetTransform/SetWatchErrorHandler
64269620597 Changes to histogram buckets
c48c4c679ad Fix ginkgo deprecation warning
5a14573258b clean: use info instead of error to log queue closed message when scheduler exit
f2a5e247ebf add pacoxu to kubeadm approvers list
705c6ff315b Review comments, added metric namespace, moved utility functions, and etc
a8ef109aca0 CHANGELOG: Update directory for v1.28.0-alpha.1 release
369e3faa4ff Moving Kubelet Credential Provider test to common so that it can be run both as Node and Cluster test
2d8c820741d move pkg/util/ipset inside pkg/proxy/ipvs
85e0d8c8b14 Revert "kubeadm: add --feature-gates flag for kubeadm upgrade node"
f3ba9353363 Consistently use proxyutil as the name for pkg/proxy/util
b3111170f8e remove Ephemeral Containers form list
64c9070f8d0 add pod containers[*].port duplicate warning
f9ae3e774d0 testutil: use contextual logging
534f5edb53c Cleanup boilerpate.py
d9e2583af16 test/e2e: replace deprecated ioutil
4b4b3b71b78 clean up dead code
4523a301c87 kubeadm: enable --feature-gates flag for kubeadm upgrade node
074900e81bd scheduler: update the scheduler interface and cache methods to use contextual logging
0951204298a kubeadm: Supports() return true for all alpha/beta/ga/deprecated
c6aaa1eab04 kubeadm: lower the log level of EtcdSupportedVersion warning message as it is a kubeadm internal warning
4e6d929580a deprecate csi migration for ceph rdb
11a40406a1f Promote Ephemeral containers e2e test to Conformance
bf116e85943 Optimize reflect checks further, save item type information
12e3d9fcc4c Implement WithAlloc variants for EachListItem and ExtractList
efc601302ad Extract List reflect optimization
b8a3bd673dc Add WithAlloc interface and stub implementations with base benchmarks
4aa5441de2e Move pkg/util/ipvs inside pkg/proxy/ipvs
0535e742241 feature(schedule_one): use heap to find the highest score node
532fe3c9653 Add kerthcet and sanposhiho as SIG scheduling approvers
8df1a5e6dcb Webhook conversion metrics
a045fedd025 Update google.golang.org/genproto
455169bd66a e2e storage: add missing error checking for WaitForVolumeAttachmentTerminated
d76043958fb Follow up from dynamic retryAfter
510287d3444 Fix the git-repo test error caused by the correct use of loop variables
926bc9bf8e5 Update podFailurePolicy comment from alpha-level to beta
7d2e1888f8a Chore: fix the example about how to use PollUntilContextTimeout
4d2ff08bfa1 e2e-framework: code cleanup for mismatched comments
15678e4a67e Optimize usage message of commands which have subcommands.
6a867eacd85 kubeadm: warning only for deprecated FG
4dfc684b342 Set kube-proxy memory request to 50Mi
5d18f471494 Improve clarity and guidance in provisioner waiting message
7a6b4a9215e dra scheduler plugin test: fix loopvar bug and "reserve" expected data
e31b2080f5a e2e framework retry on Service unavailable errors
a50549cc906 e2e rc: if the pods are running but not ready the test will fail
133eff3df49 implement LegacyServiceAccountTokenCleanUp alpha
a6003ae1e11 fix unknown field error in rs e2e
27057def059 Signature fix for registeropenapi
4373ae05f34 Update vendor
72e4c9a82ac kubeadm: add the "config validate" subcommand
f4891842194 Delete CRDs created during field validation tests.
2ea6896f90c Add warning log callback in client-go loading rules (#117233)
485d1631cd3 Remove Azure file in-tree storage plugin
2eed9b4143a Should get ENABLE_CLIENT_GO_WATCH_LIST_ALPHA when new reflector
e2ed8f8c3ca style: correct the sentence
08139044040 Fix: Restricted profile comply with PSS (#117543)
c68f8586580 proxy/ipvs: github user name change: daman1807 -> aroradaman
05b3beb7f02 Create e2e test for CSIDriver endpoints
d459b4429f4 integration: remove special verbosity for garbagecollector and graph_builder
931cc96b8d4 remote windows condition when #116693 is merged
0bff705acd8 Preserve code blocks in templates.Normalizer (#118029)
7470a94f5a9 add some log for debuging
6232ac734a0 Merge duplicated Linux/Windows kube-proxy setup code
08ce5805769 Add ProxyServer.platformSetup
e0b7f31ce6e use standard base image in dra dev
149f4878a70 Simplify DeferCleanup.
dbb6d25f13b e2e: apply timeout for CSI Storage Capacity test only to node
1c05cf1d516 kube-scheduler: NewFramework function to pass the context parameter
1b206399f6a fix using stale binaries in local-up-cluster
ece68cf8337 Fix update-vendor.sh logging
cba8c1f5e2e Fixing windows memory allocation e2e tests after a refactor
96d48de9b97 add OWNERS for cmd/prune-junit-xml
86a258b13a2 kmsv2: ignore cache key expiration on reads
89439b570fc test/e2e: use agnhost latest version in the manifest
b30720fc9f0 Add test for starting kubelet with a CSI volume mounted
ad9e264c3cc test/e2e: Use json.NewSerializerWithOptions in place of json/yaml newSerializers.
048938f1d85 hpa: cleanup `currentReplicas` code
0f5535ea259 registry/core/service: remove incorrect comments
2db577a560c scheduler-perf: inject "benchmark" as name into JSON result filename
0789bbe9f7a Update k8s.po
b6364dddfe6 update webhook test to go 1.21
d8db9640fab kubeadm: remove function pointer comparison in phase test
2658a2b627f Make connection lost retryable in webhook
ed26fcf5b87 cleanup useless null pointer check about nodeInfo.Node() from snapshot for in-tree plugins
e21cf9a54e9 Setup e2e_node to support testing on ARM64
ec8d94f2057 Grab logs from all the containers when DNS related tests fail
182cd425d3b graduate LegacyServiceAccountTokenTracking to GA
337728b0255 Improve backoff policy in reflector.
0fe27a06f99 Cleanup the Job controller handling of terminating pods
c74790e266a remove redundunt type conversion, unused variable...etc
07c94553608 fix apiserver InstallAPIGroups slices out of range
aa11cc69696 Mark grpc-gateway v1 as an unwanted dependency
19ae2de19cb kubeadm: speedup init by 0s or 20s
e4102d5e300 Test APIService safe handling at startup
3be3997193a Fix waiting for CRD sync at server start
71ec9df5b61 update image tags in manifests to reflect the version listed in the source
a10ff53d8e6 Reword the event message to read better for a single secret
b2eae2f92e9 Support podman for building release images
6b4251c0fdf Remove statefulset from logcheck.conf
3f1d8e7aeb4 Apply to use contextual logging for all loggers in statefulSet
d9b941b7827 Remove undesired verbose fields from log
bea71a3e4ee remove unused pv informer from expand_controller
4c9887e3ebd Updating the nodeAffinity of gated pods having nil affinity should be allowed
a0f14c1c5ea CHANGELOG: Update directory for v1.25.10 release
bab8002fb38 CHANGELOG: Update directory for v1.24.14 release
80b9c853613 belated cleanup of some kube-proxy stuff for old versions
e553fe1fff0 CHANGELOG: Update directory for v1.27.2 release
c9e4de90dbe CHANGELOG: Update directory for v1.26.5 release
526d45416fb update err status code check in transformation metrics
5a75a03a774 Improve warning message
b76ef2e095f fix: move to `dl.k8s.io` from `kubernetes-release` bucket
fc4fb004cf6 add reviewers and labels to yamlfmt
93462377120 Update docker/containerd/runc versions and capture more logs
885f3d7a7df Sort and limit to the describers the return (string, error)
9e9a6cde4b8 test/integration/scheduler: fix data races
b035c373db8 build latest sample-api-server for test/e2e
bafae5c0764 rename err to lookupErr
8b9cbe62025 fix false positive kubectl plugin unit tests
b9950b5192d Drop zeitgeist from tools go.mod
36f0caf7ecd remove GlusterFS references from test/e2e/* comments/descriptions
d83c3ce7ca8 make rbd and iscsi test images in parity with the test code
9de2846c72c remove glusterdynamic provisioner images reference from tests
763e7923fb9 e2e: replace ubuntu-slim with agnhost in hpa cm noExporterDeployment
261de704c25 kubeadm: fix a bug where the static pod changes detection logic is inconsistent with kubelet
666be79d670 legacy names of volume plugins have been gone a LONG time
8b4840aa374 clean up unsupport etcd version
e0ebac6c9ca drop redundant NArg check when looping Args
82c40e3697e drop redundant NArg check when looping Args
829bcea7634 remove vestigial BUILD file
0616d15712b Fix perf-test by increasing the error margin
46ed70ecac5 Bump runc to v1.1.7
51d79c4d6b0 e2e: use gomega.Expect instead of deprecated framework.Expect*
1daf74d25c4 Initialize data if nil
b81cfb9cb8c Update vendor
15c5713015e managedfields: Remove gvk from SkipNonApplied
b52e57c589a managedfields: Improve/strengthen version checking for Apply
559d12fcce0 managedfields: Create NewFakeFieldManager
45853e20ae5 openapi: Create client -> TypeConverter function
45603efecb7 Create e2e test for PodEphemeralcontainers endpoints
ebaf49dbd70 Export DefaultServerUrlFor utility function
5519b89a28e Validate lock identity
e3eb4bd0c56 updating dependencies.yaml for etcd v3.5.9 version
c99cf53a108 e2e: deflake hpa e2e custom metrics tests
247ea7fc780 use upstream etcd github path instead of redirecting one
6616e1f2385 update etcd version in install.sh to 3.5.9
0e456dcf866 Clarify localhost nodeport comments/errors
a744a186b67 Rename GetNodeAddresses to GetNodeIPs, return net.IP
2ca215fd994 Add NodePortAddresses.MatchAll()
d6e488b998e Changing annotate PrintFlags from annotate to annotated
d8e82b1417c e2e: use gomega.Expect instead of framework.ExpectEqual in windows/*
8c6c1e53194 plugin_evaluation_total metric support preScore/score
3680a5230c3 Bump docker/distribution to 2.8.2
3ac74973610 Chore: cleanup in interpodaffinity
073b4cf66ad test/e2e/dra: fix kind cluster creation
3b69fa2fa54 dependencies: update github.com/mitchellh/go-wordwrap v1.0.1
19ae103e829 emit warning on deprecated annotation volume.beta.kubernetes.io/storage-class
517c5b75c5d Update unwanted deps
d6d1dbdd82a Update kube-openapi, drop mapstructure
a52dcd0d9f3 Add DelayCacheUntilActive option to start informers after leader election
7c554ea1d91 Regenerate discovery fixtures
2ab6fd3590b Capture discovery API output in test fixtures
3867569ae27 codegen
0819d342040 using parsers in applyDefaultImageTag
7da7468a3fc cleanup: duplicate request_test TestRequestAbsPathPreservesTrailingSlash
f0f92853ad8 Add api-machinery TL owners permissions for jpbetz
e4dd6f68dc8 remove CSIStorageCapacity featuregate
9ac657bb94e Make NodePortAddresses explicitly IP-family-specific
f7bb9a9a0a7 Remove a mostly-unused variable in the ipvs proxy
1ca8f84eede Scheduler: Pass the supported nodeSelectorOperators to the field.NotSupported
d85b91f343b scheduler-perf: measure workload runtime and relabel workloads
aa405c8aac6 Allow runtimes to provide additional context on CRI pull errors
83fb5a50bc9 dependencies: bump k8s.io/utils
daebf1c735d Simplify plugin resolution check function
f562375c8a6 add changelog for kube-addon-manager v9.1.7
be4c4a51ea2 Update pending_eligible_endpoints.yaml
d34d4755ae2 Promote APIResources e2e test to Conformance
6e2ea32fc89 feature(DynamicResources): return Skip in PreFilter
a0133b7cc47 proxy/ipvs: added daman1807 as reviewer
dcefc42b35a update vendor dependencies for the change
ae749238786 etcd depdencies are updated to v3.5.9
13cef6a7549 cleanup unused variables for v1beta2 component config
815578295ae Revert "support short name for flowschema and prioritylevelconfiguration"
72202f9a007 Revert "add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations"
45836971f27 cli: replace intstr.FromInt with intstr.FromInt32
8580c116d5c fix: use dl.k8s.io, not kubernetes-release bucket
ef9f8d7c0c8 kubeadm: Remove leading zeros from etcd member ID in log messages
ff4c6916ec7 kubeadm: Fix log message when etcd member is added as learner
196e2f041b1 Update the cgroups v2 toleration in local-up-cluster
7248b9263f0 Fix comments on InformerFor
6ac1bae2815 test: Improve debug output of init container tests
1f16d711857 kubelet: Rename PodManager DeletePod to RemovePod
166256f73e8 kubelet: Reduce the interface pod.Manager consumers accept
8bd94dfa762 kubelet: Organize and document kubelet pod-related members
bb568844b67 kubelet: Separate the MirrorClient from the PodManager
80b1aca580b kubelet: Remove dispatchWork and inline calls to UpdatePod
e7207c85467 kubelet: Merge orphaned mirror pod names into GetPodsAndMirrorPods
f8086f2dac1 kubelet: Convert IsMirrorOf to a function
02960a8253e kubelet: Remove unused mirrorPodFunc in eviction
1168b118750 Stabilize local-up-cluster in our CI
3dc4eea8896 proxy/service_health: release read lock early
655f2f74010 replace build to build.sh
cc1251123ba use wait to avoid blocking the SIGTERM handler
808098c4c69 proxy/ipvs: healthzServer for instantiating the proxier
4b50c4bb016 Update --image-gc-low-threshold option's description
3da79e2850d OpenAPI V3 invalid document checks
cbe825b2b6c ginkgo update to v2.9.4 and gomega to 1.27.6
feb63fb0285 e2e_kubeadm: stop using deprecated framework.ExpectEqual
7681135f1b1 etcd: Build image 3.5.9-0
7a4787ade10 openconsensus update to v0.24.0
82d1e356de4 deps: go-gcfg update to the v1.2.3
f03b5cdc083 update containerd/ttrpc to v1.2.2
dd49af86b7b [UT] add ut for pkg/client/conditions
f7948c6e2e4 use kubectl v1.27.1 in cluster addon manager
eb1483fe64d user --prune-allowlist in kube-addons.sh
20602c819be e2e framework: remove dependency on k8s.io/kubernetes/pkg/api/v1/pod
2e2afc7fd27 Job: Use generic Set in validation
1ffe3f467e8 lavalamp is taking a long break
1ea17254bf0 hack/tools: bump logcheck to v0.5.0
3fa55d469c7 fix a bug where the AttachedVolume is not printed correctly in the log
8c82855467b When expecting pods count only active ones
de882f5193b Job: Replace deprecated pointer utils with supported ones
8f11f5bb2b5 DRA: use containerd 1.7 in kind image
123845da886 Log a warning if a ImagePullSecrets does not exist
3f3e1d507d0 add new metrics for the internal client-go transport generator
e7c679c362c cidrset, multicidrset: directly use getIndexForIP method
fe728996ca8 scheduler test: call frameworkruntime.WithLogger function for contextual logging
b4563925678 Migrated `pkg/scheduler/framework/runtime` to use contextual logging
bfb4f8b7071 etcd version monitor build go version update to 1.19.9
0ae902fca4c update golang version of etcd build to 1.19.9
3b634de6ffc test/e2e/dra: update README
5fdeaa8e42c update for feedback
6f23c774085 QueryParamVerifier falls back on invalid v3 document
d5f4b9634c6 DRA: fix image build on Mac
569695b0226 e2e/network: setting --max-time for curl
5fd5768ef32 kubeadm: Make etcd member removal idempotent
164113bc1c3 fix a bug where the KubeletConfiguration is not printed correctly in the log
a5575425b03 add no resources found message to rollout-status command (#117884)
c0611b6bb33 Return Skip in InterPodAffinity#PreScore under specific conditions
11f1d241654 unit tests: Fixes kubelet util unit tests for Windows
3a394bbeada fix:translations zh_CN LC_MESSAGES k8s.po error
4634073d0b9 Use getter function for plugin subcommand resolution
2c03afac4c8 apimachinery/util: stop using deprecated io/ioutil
e3d5feb76c4 fix HPA plain metric calculate
6607834207a Use the same report files as before
9150e6b55a1 s/of referencedFrom/from referenceFrom/
4bbf611773d Retool validation for pod HostNetwork ports
ec3379a717e Do hostNet Pod-ports -> hostPorts in Pod defaults
ef796dca9bb Simpler openapi gen - subprojects do themselves
93b2845bec7 Codegen: subprojects openapi
4909dbd0d7f Deprecate generate*groups.sh -> kube_codegen.sh
c3971002c9d MinimizeIPTablesRestore to GA
8f229057484 [refactor] refactoring flags and options in Expose cmd
82e3fa0930e fix fd leaks and failed file removing for main pkg and cmd
5289a7b029f fix fd leaks and failed file removing for test directory
b94c6daa0b7 fix fd leaks and failed file removing for pkg kubectl and pod-security-admission
982d2966cd3 fix fd leaks and failed file removing for pkg controller-manager and apiserver
73aeed8766c fix fd leaks and failed file removing for pkg client-go
f49cc5eb113 add remove_file in client-go util directory
c8737346db4 Export GOMAXPROCS environment variable
e865b30abd0 update serial number to a valid non-zero number in ca certificate (#117791)
308ab380d7c Add unit testcases of refMap.
23ac0fdaa52 APF: Dynamically compute retry-after based on history
99ebc8d9f82 Tweak annotating kubemark nodes on startup
aab02d52f4d Fix make etcd image failed
91570a36614 promote ServiceNodePortStaticSubrange to beta
e79daae6823 Chore: clearify need update test cases
fb4d0150b96 Convert apiextensions-apiserver to new codegen
29913a89735 Convert code-generator/examples to new codegen
643bf1b0362 Convert kube-aggregator to new codegen
1e0b7aab756 Convert metrics to new codegen
e368f1b25bf Convert sample-controller to new codegen
d0e5adb58bc Add a new way for subprojects to do codegen
05b3449346e kubeadm: Add etcd client unit tests
fc1b2287798 kubeadm: Use internal etcd client through an interface
e740f8340ee Introduce CEL EnvSets for managing safe rollout of new CEL features, libraries and expression variables
235c261196e Job: Fix a misspelling
b4560f9e573 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
f2de1a00b8f storage/etcd: skip SendInitialEvents if the request is backward compatible
bbf5c03dd80 Add NodeLogQuery e2e tests
ddb8c8a38b4 remove ServiceInternalTrafficPolicy e2e feature tag
16fecf3e761 Refactor APF handler in preparation for dynamic retryAfter
d3237b72587 unittests: Fixes unit tests for Windows (part 7)
ccb4ca89549 record podUID in refMap in watchBasedManager
e4340f0d9bd Job: Use generic Set in controller
22d0aa1d04a remove DevicePlugins featuregate
27cdddeaf16 update Feature:KubeletCredentialProviders] e2e test name
2ebc0cc0257 remove unwantedReferences
57969c1b52c Fix etcd3 config changed
4e24237f3bc e2e services: retry if healthcheck nodeport is not avaioable
e560df770e3 respect local GOPROXY setting in build/common.sh
c56839c0a1e etcd: Update version to 3.5.8
64f2fe2357d kubeadm: fix crictl pull using wrong flag, use -i and -r
936265e8707 Add podUID in AddReference and DeleteReference
cd51c1803e2 Add new partial/full sync time metrics for iptables kube-proxy
a862a5f2d24 Use the right executable ss/netstat in log message
ae08fe1e199 ProbeTerminationGracePeriod promote to GA
2cb215e1091 Add all describers to the exported DefaultObjectDescriber
5ea40d14fd9 Added e2e_node test for sigkilled pods exit code and exit reason check
3e57a0bd138 Add go.work and go.work.sum to .gitignore
008576da073 Improve and simplify maintenance of APF bootstrap objects
194ac957ad3 make resize of hollow objects more verbose in start-kubemark
c3e77bf21cd Update podFailurePolicy comments from alpha-level to beta
4fa7e444805 Remove gcp cloud-provider checks for kubelet version >= 1.7.2
1c45bacfb0e mount-utils: fix flaky test 'TestFormat'
6a5cf99aad1 pkg/proxy: human-readable messages
c2c8b8d1783 pkg/proxy: using generic sets
359bcec0e09 benchmark test to evaluate the overhead of podMatchesScopeFunc
edd032e22b7 Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
e807a6aec57 Disable NewVolumeManagerReconstruction feature gate
0c9f55588c5 Simplify creation of default KubeProxyConfiguration
ec2cc36404e e2e: disable jig.ExternalIPs
b849ff57b85 e2e reasonable grace termination period timeout
791573ddb60 promote ProxyTerminatingEndpoints to GA
b249b4ca9bb Promote ExpandedDNSConfig feature to the GA stage
5aca41af50f [local-up-cluster] Use the kubectl we built
8524d21bf48 Bump Ginkgo Poll Progress parameters to a sane level
034528a9f04 scheduler perf: add DynamicResourceAllocation test cases
1c52fb38759 Update publishing-bot rules for release branches to Go 1.19.9
19f7cb23c8c e2e agnhost functionality to RST TCP connections
63b69dd50ce Add support for CRI `ErrSignatureValidationFailed`
859359ad6ae Fix strict linting
a7035f54595 Pass Context to StartTestServer
2d866ec2fc8 Teardown only scheduler in integration tests
8969fdd2f51 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
cede96336a8 Depend on k8s.io/utils cpuset
9f46cbc6fa4 Update k8s.io/utils version to v0.0.0-20230313181309-38a27ef9d749
10a869fc752 Remove duplicated config fields from ProxyServer
1f7c07f3553 scheduler: remove deprecated v1beta2 KubeSchedulerConfiguration
a3848714f55 dependencies: update gh/Azure/go-autorest to latest version
17c17da97b6 e2e_node: move getSampleDevicePluginPod to device_plugin_test.go
c53cc4fe0db Update distroless-iptables to v0.2.4
c4575c34382 Fix up detect-local-mode validation
3734fe7ab1d Remove some useless error checks
19885264f3d [go] Bump images, dependencies and versions to go 1.20.4
d82684e691d Add check to skip PodTopologySpread PreFilter if no constraints are specified
d22b9310e6e Allow override of prerelease/buildID portions of version at runtime
36b760a9317 upgrade etcd deps to v3.5.8
7c5573d326d Fix cmd, integration, and conformance tests
69eccd41b89 endpointslice: reduce visibility of vars/funcs
933b665c18c Upgrades spf13/cobra to 1.7.0
3653b21e6ba Move glusterfs 1.25 deprecation notice to the deprecation section.
9d19c207d22 fix: fixes flake in TestKMSv2Healthz
561548e86c4 unit tests: Fixes kuberuntime unittests for Windows
5f489a33277 feat: rename PodHasNetwork to PodReadyToStartContainers
a40810a2d9d Add comment about removing the feature gate
e51e5962d5a Use early return pattern to avoid nested conditions
e1e38148bb2 Add DisruptionTarget condition when preempting for critical pod
7be3f8e43f7 Remove old metric scheduler_goroutines
e7396e35513 remove ability to re-enable serving deprecated versions of the runtimeclasses kind
d96f83f02f9 windows-tests: Update connectivity check util function
e496085bd34 Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
d257d5dfdc4 Trigger re-sync on any change to providerID
40de26dcff8 KEP-3325: Promote SelfSubjectReview to GA
d9524379210 Fix flaky HPA e2e tests by not failing on context cancelled (#117669)
5fff8cae749 dependencies: klog v2.100.1
d55b67b3490 Clean up brace whitespace in **/validation_test.go
2ad2c15c9ca Update copyright year to 2023
b464d084278 Remove custom fake svc lister in favor of regular indexer
b899ae48477 remove genericfeatures.DryRun in 1.28
c6bdde8051c Create e2e test for APIResources endpoints
ab9c8eb1e8d Removing WindowsHostProcessContainers feature-gate
077cc20f8af fixup patcher test to include field manager
ad5cda4d219 remove checks for fieldmanager from handlers
4721ec7519c include apiextensions types in apiextensions generated openapi
08e756342c2 fix scale not being given gvk in CRD openapi schemas
ffb9c076d77 add OpenAPIV3 config to tests and server options
c2177dca5f6 add error for attempting to initialize field manager with nil typeconverter
94909af68ae supply deduced typeconverter to apiserver tests
302daa889c5 Throw error if OpenAPIV3 config is not provided
1b766839677 filter out directives before taking patch value as-is
6de6cd0a658 add integration test for nested $patch in SMP
e00a9c3a0b1 add subtests
ffeec1f4d44 Update compatibility data test
ec997d5433a Generated files for NetworkPolicyStatus removal
bff8a6cd9f3 Remove withdrawn feature NetworkPolicyStatus
0fcf42f3211 Move test double queue to test file and unexport
208af2d1d83 Localize SpyWorkQueue to cloud-provider for now
a15013ec8b1 Document RetryError properly
73bc9861d25 Improve error logging in processNextServiceItem
18e978a89df Improve RetryError GoDocs
de34540248a Update kube-openapi to fix race
d0677f528c0 Add json tag
69bc6855568 node: podresources: graduate to GA
04ad946e8fb kubelet dra: lock before getting claimInfo CDIDevices and annotations fields
aaa30439bdd reduce util pkg for testing in tempdir.
4c83aae2cc7 kubeadm: replace intstr.FromInt with intstr.FromInt32
026e7c7cb37 registry: replace intstr.FromInt with intstr.FromInt32
0ee9f1b7a75 kubelet: replace intstr.FromInt with intstr.FromInt32
1c4b97ea272 network: replace intstr.FromInt with intstr.FromInt32
5bfe738af2e apps: replace intstr.FromInt with intstr.FromInt32
94410ee8078 api-machinery: replace intstr.FromInt with intstr.FromInt32
4911e9de4a7 api: replace intstr.FromInt with intstr.FromInt32
79266560383 kubelet: Implement support for Windows podAndContainerStatsFromCRI
14952cef5b7 kubelet: Move Linux stats to a Linux specific file
fc8b4657c18 Add tests
ea4ce5dc28e Alias api/errors instead of stdlib errors
a179203bdba Support specifying custom LB retry period from cloud provider
da922f0af67 Remove ability to re-enable serving deprecated discoveryv1beta1 APIs
e28f3de6568 Revert "proxy startup-time config handling cleanup"
d94c733ee2b Use absolute path instead requestURI in openapiv3 discovery (#117495)
34d3c7520be update Deps gopkg.in/warnings.v0 v0.1.1 to v0.1.2
944a4cd3114 Remove ability to re-enable serving deprecated autoscalingapiv2beta APIs
671a3f43fdf Correct the changelog for GlusterFS removal in 1.26.
859690d72a4 Added support for image credential provider for windows and arm64 on gce
28c573358b0 test for init container restarts
d727df1741e node: device-plugin: e2e: Additional test cases
3dbb741c976 node: device-plugin: add node reboot test scenario
a26f4d855d5 node: device-plugin: e2e: Capture pod admission failure
96975737033 node: device-mgr: e2e: adapt to sample device plugin refactoring
282a6a80b92 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d509e79837d node: device-mgr: e2e: Implement End to end test
dc1a5926321 node: device-mgr: Handle recovery by checking if healthy devices exist
53c9103a1de Set ENABLE_AUTH_PROVIDER_GCP to true in gce tests
2572a430344 kubeadm: fix unit test failure on node with multiple cri endpoints
f81b49d8739 Remove ability to re-enable serving deprecated eventv1beta1 APIs
48d01d6d9b0 Remove ability to re-enable serving deprecated batchapiv1beta1 APIs
c6f4bee98dd kubeadm: add deprecated FG UpgradeAddonsBeforeControlPlane
4d9261c7567 Fix LocationOfOrigin shows up unexpectedly
76fe41a996e chore: update cgroups and ttrpc versions
0dbeff4b6e6 remove GA feature gates in 1.28 about network
4e7b6e8ba49 remove DelegateFSGroupToCSIDriver featuregate
fc0d2cd32f5 added init containers tests to simplify the sidecar KEP large PR
258c4c4251e Remove duplicated config fields from ProxyServer
9d4f10f5d28 Fix up detect-local-mode validation
5ece6541b80 proxy/ipvs: don't bind nodeips to the dummy device
5310305098a proxy/ipvs: add a GetAllLocalAddressesExcept() function
f24d1d2c950 use go 1.19.x for etcd version monitor compilation
91ee58050f8 wait: fix PollUntilContextTimeout godoc comment
b3e0bc88640 scheduler_perf: let the test decide which informers are needed
969d28b12b7 scheduler_perf: refactor common code
91df71be549 correct etcd base image reference in the doc
6b40cd8cd37 update test/conformance/image version to v1.4.2
6c8be35fa86 update the etcd base image to v1.4.2
1eca720dcc7 Refactor some watchcache tests
7f370d651dd Migrated `pkg/scheduler/framework/plugins/podtopologyspread` to contextual logging
54e6f609ceb Migrated `pkg/scheduler/framework/plugins/noderesources` to contextual logging
152c1a02723 Chore: Replace re-initialized variables with create new ones
37a9260d5c5 Migrate pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go to use contextual logging
eeb13993832 Migrated `pkg/scheduler/framework/preemption` to use contextual logging
550d4c00746 scheduler_perf: support test case selection via labels
79de8879cbe OWNERS_ALIASES: add self to sig-node-reviewers
217196c59fa Add ROX storage tests (#114628)
6a4cf352b8b remove tracking annotation from validation and webhooks
2af662b05fe Refactors discovery content-type and helper functions
170d5ef9fa0 code cleanup for kubeadm
902c4ecc90f Add jpbetz to approvers of apiextensions-apiserver
0a582431593 node: device-plugin: e2e: Add test case for kubelet restart
09100804722 node: device-plugin: e2e: Provide sleep intervals via constants
4a0f7c791fe node: device-plugin: e2e: Update test description to make it explicit
fd459beeff6 node: device-plugin: e2e: Isolate test to pod restart scenario
5ab4ba62052 node: device-plugin: e2e: Annotate device check with error message
5c4f397361f node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
0aa6a5726a6 node: device-plugins: e2e: Refactor parse log to return string and error
8ed861889aa feat(NodeVolumeLimits): return Skip in PreFilter
28519e240ed Fix scheduler performance regression after adding plugin metrics
c96188a38b5 remove seccomp profile path
96eaed9980d cluster/gce: update cloud-controller-manager to use go-runner
0d27d3cfffc cluster/gce: update cloud-provider-gcp image to latest tagged version
4cdfe600e04 Fix image pull error type `ErrRegistryUnavailable`
6da128bdb3e dependencies: go.uber.org/atomic v1.10.0
87230578802 dependencies: update go.uber.org/multierr v1.11.0
f7ce6f834a1 Chore: add ipfamilies tweak functions
78b8af9fed3 scheduler_perf: update throughputCollector
a325fdbbe5d update Deps gopkg.in/natefinch/lumberjack.v2 v2.0.0 to v2.2.1
da3e7e37816 stop watcher when error occurs
018564b8cfc change the seccompProfile field description to match the imlpementation
6d8a0100f70 Fix typo in kubectl api-resources help text for --categories flag
3c45b61b643 [KCCM]: have providerID trigger re-sync, but not be required for nodes
a4f98e4c1e8 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
e115d5234c2 Fix bug where CEL listOfString.join() results in unexpected error
3229deda37b register missing metrics
24e68b3c6ac use client-go metrics not only rest_client
2bd42061b6e Remove support for EndpointsLeases and ConfigMapsLeases lock from leader election
3f247e59edf Refactor cacher.ListerWatcher code structure
892ebf2d253 Ensure version "*" is passed instead of "" for all authz checks (#116937)
73d9a9cfa06 kubelet/kuberuntime: Fix flaky test 'TestGeneratePodSandboxConfig'
e3d84aa93cd kubeadm: add the experimental (alpha) feature gate UpgradeAddonsAfterControlPlane that supports upgrade coredns and kube-proxy addons after all the control plane instances have been upgraded
78e6cb1cccb intstr: add FromInt32, deprecate FromInt
88e2c344390 Enable a bunch of generic storage tests for watchcache.
860329c04b5 drop v1.25.0 API testdata
440d5910f7d Chore: add app protocol tweak function
06993afdd6a Chore: cleanup whitespaces
3d8f7233da9 Chore: remove impossible and redunant cases
4a6bc66e40f updating microsft/go-winio package to latest version
60d25c3ed77 improve remotecommand testing fuzzing the data stream
d76f5dae67c Add a comment to roleRef to document that it is immutable
959c90c1d9a Chore: add deletion timestamp tweak function
4169d7d0283 golangci-lint: allow exceptions for Go naming convention
4f8eba2a0be Chore: add finalizers tweak function
28db34a231f Chore: add load balancer tweak function
1c465c51e80 Chore: add service port tweak function
0cc7369196b Chore: add LBIngress tweak function
23c242770fe Chore: add etp tweak function
2f6bc661dc3 Chore: rewrite newService function
f9bab9a60b0 add --concurrent-cron-job-syncs flag
bc00f5c071f Update cri-tools to v1.27.0
c3384191ea6 remove validation GCE-ism
28ac914bc54 Remove repeated info
e0d5c4aa93e Move info where its most relevant
0a508ad8067 Update `kubectl edit` documentation
d0412928961 Add v1.27.0 API testdata
7514d8b3339 add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations
95fea2f2bff add test case for merging a patch against empty list
3469bb05db7 kubeadm: fix unit test panic for TestNewResetData
ed37e6986b6 uncomment exit trap to cleanup tmpdir
63d44fdde58 retain KUBE_GOPATH on recursive kube::golang
4d736a0435e cleanup update-mocks.sh
726992f9db9 call kube::golang::setup_env before setting up worktree
17db22d0558 Fix potential mutex usage bug
39e52449f9f remove nodes resource from CoreDNS RBAC manifest
7a14c5ad6dd ensure we can remove _output
11f3ef1ed7d drop linux/arm build warning, now that 1.27 is released, this is covered by the release notes
104c208d0fb add Authentication tracking request/error counts and latency metrics
65f3454c1d9 fix undefined convertion
8efeb5afcfd Dependencies Update google.golang.org/protobuf v1.28.1 to v1.30.0
6f90c536330 Dependencies Update golang.org/x/tools v0.7.0 to v0.8.0
5c584269a79 avoid volume copy in checkAttachableInlineVolume
2bbd07c0192 remove defunct interactive tutorial
1d15354ccb5 update gofuzz dependency
2cd23c8b17c Update go-logr dependencies
062f146d325 Replace the deprecated ioutil method in the pkg/credentialprovider directory
be6709044ad etcd: Build image 3.5.8-0
6db4cbfde7b cacher: do not popExpiredWatchers when the cacher hasn't dispatched any event
eab66a687b2 cacher avoid double locking (#117410)
a02e94ae2b4 e2e: fix flaky test 'should contain OpenAPI V3 for Aggregated APIServer'
0c54d9af6f2 Fix stomping os env in kubectl e2e tests
766f6c3ad41 Include stderr in cred provider plugin errors
eaba1703b1b enhancemanet: reduce calculation calls
a8b808ee6ca Replace the deprecated ioutil methods in the test directory
a959785f964 dependencies: udpate coredns/caddy to v1.1.1
0297329795e Refactor watch bookmark tests to allow sharing between etcd3 and watchcache
45e836a968a Generalize few watch tests from cacher
f3b9e0ddc9b Replace os.Setenv with testing.T.Setenv in tests
7cbbf47f5ea Cleanup environment in tests that call os.Unsetenv
d38ac7e7c6b Replace os.Setenv with testing.T.Setenv in tests
e8d3a4a105c Cleanup environment in tests that call os.Unsetenv
2181eea4843 Replace os.Setenv with testing.T.Setenv in tests
cf125a35611 Replace os.Setenv with testing.T.Setenv in tests
b9ef1603223 Cleanup environment in tests that call os.Unsetenv
240fccd7668 Replace os.Setenv with testing.T.Setenv in tests
89467ad3e9b Replace os.Setenv with testing.T.Setenv in tests
fc643d2e40c Replace os.Setenv with testing.T.Setenv in tests
29b6c54d158 dependencies: update github.com/cenkalti/backoff/v4 to v4.2.1
0a8343352b4 Document gomega.Equal() instead of gomega.BeEqual()
d231d6022b0 Remove endpoints (old leader election) related RBAC from kube-controller-manager ClusterRole
e340325024d Fix nil pointer in test AfterEach for volumeperf.go
453f81d1cae kubelet: pass context to VolumeManager.WaitFor*
4de0d2c6f8f use generic set in storage/validation
3ac77335303 Add `saschagrunert` to `sig-node-reviewers`
7fb88eec73c support fieldSelector spec.hostNetwork
4d73864026c Dependencies Update golang.org/x/timet 90d013bbcef8 to v0.3.0
ff9ebfa90de e2e framework: control k/k/pkg imports
ee99ca25ee6 Remove unnecessary if judgments
1359ebcc5b0 fix doc mismatch
a6339e2702f proxy/conntrack: using common conntrack cleaning function in proxiers
399f09dde05 proxy/conntrack: common function for cleaning stale conntrack entries
efb05630946 proxy/conntrack: moved pkg/util/conntrack -> pkg/proxy/conntrack
37ea51fd567 Improve the performance of map usage
9c0153aef9e KCCM: add providerID predicate to service controller
d3c103edce7 Re-work logic in shouldSyncUpdatedNode
dc4f6f9da6a e2e framework: remove last dependency to k/k/pkg/util
40521fe3601 e2e framework: remove last dependency to k/k/pkg/kubelet
030debc1990 changelog: fix formatting issue with v1.27 change log
4e8c5364bc6 CHANGELOG: Update directory for v1.27.1 release
1b93abb9bac Move kubelet config API to e2e_node
4e928c96b5e skip checks when topologyPolicyName is PolicyNone
71a989e5e9c Fix CHANGELOG-1.27 correct
06dc3d00fcc e2e/apimachinery: Add an e2e test for the API Streaming feature
8d19c0002bb Add node check to vSphere cloud provider
3b7c14e8cfb Remove unnecessary int type conversion
36e6e759182 dependencies: udpate seccomp/libseccomp-golang to v0.10.0
5bce18c98ec dependencies: update go-semver to v0.3.1
d7270f4ba72 dependencies: update go-oidc to v2.2.1
b0d89a7807e dependencies: update github.com/gofrs/uuid v4.4.0
1595d7f52d7 dependencies: update go-systemd to v22.5.0
9cfdf989eda dependencies: update gh/fvbommel/v1.1.0
6b70710b0d1 dependencies: xlab/treeprint v1.2.0
6320b6843a2 dependencies: update netns to v0.0.4
9e2bb40e158 fix typo annotation key notes.
becf73a82b1 add invaild scope test case
c4e1b01416e replace spew methods with dump methods
a96358ac0fa Remove some useless error checks
867be8fc3e2 get rid of e2e/framework -> k/k/pkg/kubelet dependency
2bb35e08f4b Clarify kubelet/kube-proxy iptables rule skew constraints
6d13cad2cf5 dependencies: update gh/Azure/auto-test/{adal,validation}
432a3016a49 Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
9c5a66e2080 Revert "CR conversion: protect from converter input edits"
ed0124855aa add log includes pod preemption details
0979d554435 unit tests: Skip flaky tests on Windows (part 2)
2d06fad5163 dependencies: azure-sdk-for-go to v55->v68
625c3025057 change pv recycler scrub cmd to find -delete
c042837a761 truncate the precision at a millisecond for image pull event message
804d9f47c9f kube-aggregator: correctly use client-go TLS cache with custom dialer
db5d74935ee optimize evict sandbox logic
ccf7ddacfce replace ioutil with os, update doc
5668399a87c Codegen: use openapi-gen via k8s.io/code-generator
b23ab389b4f Add SIG ownership to controller/nodelifecycle
375e3cf869b CHANGELOG: Update directory for v1.24.13 release
f7295ac5e08 CHANGELOG: Update directory for v1.25.9 release
d567d61aa56 Fix a data race in TopologyCache
a62563f1305 Fix TopologyAwareHint not working when zone label is added after Node creation
83a1774df2b CHANGELOG: Update directory for v1.26.4 release
a7a8cd6e5de Codegen: subprojects: nuke existing files
bc302fa4144 Replace uses of ObjectReflectDiff with cmp.Diff
9627c50ef37 Replace uses of ObjectGoPrintDiff with cmp.Diff
29c0b73d640 Replace uses of diff.ObjectDiff with cmp.Diff
dd7af241c11 Replace diff.ObjectDiff with cmp.Equal
97bab44cae3 Replace apimachinery diff.StringDiff with cmp
4f6714ef42d apiserver/etcd: add request and request_error metrics (#117222)
d09842e0adf node-lifecycle-controller: improve monitorNodeHealth test-coverage (#116687)
be101a748dd Remove some unused winkernel arguments/fields/functions
8a790ac2e1b Remove unused ProxyServer.EventClient field
9754386c764 Remove write-only ProxyServer fields
b4c384ebfb2 vendor: bump runc to 1.1.6
c69689659a6 Add `--concurrent-job-syncs` flag to kube-controller-manager
4438208511e api: encode NamespacedName with lower case in JSON
476e407ffd2 cacher: prevent a potential deadlock
7cdffe37c1d update container storage interface spec to v1.8.0
10a8ec5b2cc use case-insensitive header keys for http probes
a6173fad88a Delete duplicate code in schedule.go
5588e8a4cd0 hack/logcheck.conf: remove certificate controller exception
277c03fc799 remove these unrelated openapi files (#117051)
9a468563070 remove reuse buf todo (#117033)
5da386745af Kubectl convert - warn users with NotRegisteredError and Fail on all other errors (#117002)
0eec63fd687 fix the mistake in the release note
02d8fc28faa fix: add the bug as a known issue o on the v1.26 release note
75f17eb38fc optimize watch-cache getlist (#116327)
9c15d75f234 Migrated `pod-security-admission` to contextual logging (#114471)
2bed67d0f1c Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
73eb7c09309 Codegen: easier to read logs for subproject output
bbbb695060a Codegen: subproject: chdir to the project dir
893ec0ca453 Codegen: simpler k8s.io/code-generator/examples
af29cca6ced Codegen: new tools will not become part of 'all'
5f7345deaac Codegen subprojects: consolidate generate-*groups
95e614b3717 Codegen subprojects: deprecate "all" in scripts
a94ed5b8ac8 Codegen metrics: include v1beta2
8b68e063e14 Codegen subprojects: regen defaulters when needed
5200f4b0d36 Codegen subprojects: reify 'all' into explicit
201653aa870 Trivial change to reduce diffs
901dea73073 Fix azure disk e2e after migration
d212041d513 hack/local-up-cluster.sh: Remove old dynamic certs
ed5dd38dcdc CHANGELOG: Update directory for v1.27.0 release
464edfe6f6e test/integration: create nodes directly with kubernetes.io/hostname label
9204e6b286e remove unused constant `expansionFailed` in expansion test.
4491ba89171 rename variable delete to avoid collision to builtin variable
d04d7ffa6ec kubelet: Mark new terminal pods as non-finished in pod worker
0020631985e test: Add node e2e to restart kubelet while pod is terminating
aa73f06e569 scheduler perf: allow creating 0 items
49bbf7c2681 scheduler_perf: fix race condition
a869a898257 scheduler perf: remove cleanup func
b039a2ff2c7 Add new contribex leads to sig-contribex-approvers
9363afc6502 Fixing broken tests
d102a6fea51 HPA Controller - Update Owners
8d18ae6fc24 Use the generic Set in scheduler
b04ca79445e Add unit tests showing the effect of unlimited containers when calculating pod limits.
1dec97436c8 Fix typo at job_test.go
046bb892566 supported version of etcd 3.5.7-0 for Kubernetes v1.27.0-rc.0
f138d29bf2d watchcache: currentCapacity acquires read lock
c77ad3116f4 kubelet: fix setup of emptyDir with sizeLimit (fsquota)
ea74a2d877d cpumanager: fix typo in godoc
1cce3b3e2f5 wait: fix incorrect suggested method
d3ae6c2df3c Specify KUBE_ROOT for test-e2e-node/AWS to work
d9bd22115ff Alias deprecated genericclioptions.IOStreams with new one
26b35ce36ae Remove endpoint related RBAC from scheduler cluster role
7fa3d54ea5b unittests: Fixes server journal unit test on Windows
08a324bf512 cluster/addons: set metrics-resolution to 15s
eba18d503cc cluster/addons: bump metrics-server to v0.6.3
88e055059cd component-base: avoid data race in log format registry
a2fb32870f3 test/integration/auth: fix data race
1dde8ef026e test/integration/framework: avoid race around grpclog.SetLoggerV2
f91518b81a5 Add genericiooptions in allowed list of genericclioptions
b4e4db336f6 More migrations from genericclioptions to genericiooptions
5e1c6cd0d4f pkg/registry/flowcontrol: avoid race condition during Create
934516791c6 Swap assert.Equal parameters oders to follow convention
2d06601b81c RBD: e2e containers base image has been udpated to F38
0518dffd259 iscsi: e2e containers base image has been udpated to F38
8d9386fc402 Remove genericclioptions.IOStreams struct
c3497b30aca More migrations from genericclioptions to genericiooptions
00c30941260 Migrate genericclioptions.IOStreams usage to genericiooptions
51a7751a496 Move genericclioptions.IOStreams into genericiooptions.IOStreams
e450ed98122 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
3d3686b9cf0 Return error for localhost seccomp type with no localhost profile defined
e1bcfd47da9 Sort unmounted volumes message in volume manager
79b3126f00a skip clear quota if FSQuotaMonitoring is disabled
0a37f09c32b Fix directory mismatch for `volume.SetVolumeOwnership()`
731068288e1 correct storage class selection message
cc8cd88a94d remove duplicate validation for csi
978da1e8f13 remove GA feature-gates
bda73bd1129 Refactor remote runners
e389d140ae6 fix as suggested
457bb58ebbf kubectl events: Support fully qualified names for --for flag
1893f639d03 test: Fix flake in node e2e mirror pod tests
ffcf3ee6f87 feature(pkg/api): warning for Pod with null labelSelector in PodAffinity and TopologySpread
70369bfe299 remove GAed KubeletCredentialProviders
5662566e03a Set GOMAXPROCS explicitly
56755b8ffdb fix doc mismatch
8e36e948ce6 verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
dac85fe2d3f [KMSv2] cleanup comments in v2 proto api
feba08a6947 Create local copy to avoid potential race condition
29503fd8d45 openapi: Make file client more easy to re-use
ed48dcd2d71 kubelet: Ensure pods that have not started track a pendingUpdate
db92cc13880 ftr(etcd): add benchmarks
05f4e497f1d Deflake TestGetListNonRecursive
906f0607efc Clean up kms test
d3f6cb717f7 update conformance yaml
7bfcfc4d5de docs: fix storage e2e test README
f7765eb0d42 Add damemi to emeritus SIG scheduling approvers
bbbd366cf39 Move damemi to sig-scheduling reviewers
397cc73dc9b delete unused functions in pkg/controller directory
47f8d42a6ba Add CecileRobertMichon to sig-cluster-lifecycle-leads
449f847630e [KMSv2] update ci script and add readme
86e1f4b9d10 e2e node: bump all nodes ready timeout
beb329f4bfa Do not look at VPC-related resources outside the cluster's network
8d92cfb1316 Added conversions to/from NamespacedName
df0a2538205 generate ReportingInstance and ReportingController in Event
e9b384f5a75 fix typo
f638e2849fb replaced spew.Sprintf with a util pretty print function
838ed7feb53 Improve the performance of map usage
f6fa250e304 Add API approvers
03be789851d Fix sample-controller docs after moving to context-based cancellation
99ad88a2611 Remove unnecessary int type conversion
f2fe1fff655 [KMSv2] add tests for generate transformer
479fcf0b13f kmsv2: validate encrypt response at DEK generation time
8d644fbc725 return skip in volumerestrictions
ade63dd7647 cronjob: add ut for namespace terminating cause no extra log
9a776cbf212 kubelet pod-resources: e2e node test add failure description ExpectNoError
1031977b7d8 kubelet PodResources API: follow-up review comments
ec9515a828e Add structured alternatives to strings in client-go/tools/cache
2b01f63b115 move check for noop managed field timestamp updates
07ebb22db92 added known issue for 1.27 release
80480f8e215 combine conditional checks
7a6d58001b7 handle event errors caused due to terminating namespaces
af95a76bb21 cri-api: fix comment lines about PROPAGATION_PRIVATE
daa1d287e4d fix GetPodVolumeClaims in comments
c14068c2023 deflake: Add retry with timeout to wait for final conditions
fbf33e32e61 Fix memory leak in kubelet volume_manager populator processedPods
27f84b755e1 Migrated the volumezone scheduler plugin to use contextual logging
ddc13e983b5 Chore: add selector labels tweak function
4cab11f26f0 Chore: add persistent volume claim retention policy tweak function
ba9dfe686fd Chore: add persistent volume claim template tweak function
f97d3cf7486 Chore: add rolling update max unavailable type tweak function
1b17b4fa799 Chore: add rolling update partition type tweak function
f3ffeae426f Chore: add update strategy type tweak function
5e0161b3de8 Chore: add labels tweak function
ec34891782c Chore: add annotation tweak function
b907d5af49f Chore: add finalizers tweak function
18ba7c0e433 Chore: add ordinal start tweak function
3eb34d8b6ce Chore: add min ready seconds tweak function
2161d095fa1 Chore: add template restart policy tweak function
4418a9f5906 Chore: add replicas tweak function
7fc08e0ce70 Chore: add pod management policy tweak function
77c7d6efcf6 Chore: add basic make function for stateful set
4a667a1026c fix: remove case sensitive checking of probe headers
81a0ea3da3c return name when error occurred in csi-translation
a2cf4e73459 use describe node to print node events as well
e5674903178 fix: remove last ip when apiserver was shut down
f59ac6e6524 [WinProxy] Adding additional validations to queried endpoint list iteration.
db5590a194b Remove sig-network-driver-approvers alias
fc8892d26d7 Add more labels (esp. area/kube-proxy) to sig-network OWNERS
2f3800e1007 Make pkg/util/iptables and pkg/util/ipvs owned by sig-network
10b36075df6 Cleanup: use Set instead of map in endpointSlice utils
eb60dce33b0 deprecate ExperimentalHostUserNamespaceDefaulting
94f2d351644 Wire bootstrap token authn secret lister only when it is enabled
d71aea434e5 docs(readme): add go report and latest release badges
a780544f58c add log for kubemark start
d25572c3892 kubelet: HandlePodCleanups takes an extra sync to restart pods
41ed0e12341 Add an image for kubectl
1c7155e7ff6 Move hollow_proxy.go from pkg/kubemark to pkg/proxy/kubemark
8d3a498c879 don't ignore UID impersonation in webhook clients
364b66ddd65 admission ApplyTo: take in clients
630af564be3 Update cri-tools to v1.26.1
1aeec10efb7 DRA: get rid of unneeded loops over pod containers
017bb93887f certificate controller: use contextual logging
c94a9a14d8d update gofmt
8cbe9fe543e trigger update event when service ipFamilies changes.
b430464df06 gce: podresources: don't disable on windows
6b4ffdb9f75 node: re-implement Localendpoint on windows
195fc2f5162 kubelet: podresources: rename variable
d6d19a290de Simplify statefulset fuzzer
376bda41c74 undeprecate kubelet --provider-id flag
8bb328680c0 upgrade cluster-autoscaler v1.26.1 to fix ci warnings
c94bcabd7e2 [fix][typing] startResourceClaimController errrorf message has typos
31e1df9ae6c Bump Konnectivity to 0.1.2
aadb87bdcdb kubelet: Do not mutate pods in the pod manager
13192176002 Remove vestigal err check from CEL admission controller.
a6ffbb41f8e Squashed commit of the following:
bbf2b968c89 skip pod resource check when request is zero
64ecb161d47 Codegen: git grep returns non-zero if no match
241d46d1dd5 Codegen: deepcopy needs to run before swagger
3405853e6d0 Codegen: clean up stray ls-files use
3dd0c416639 support short name for flowschema and prioritylevelconfiguration
e2b10505162 add some buff for pod initial restart count that is not zero
efee9b4866d cleanup: promote ProbeTerminationGracePeriod to conformance tests
b0eeeacfc0c fix: the volume is not detached after the pod and PVC objects are deleted
4d3f92d5f75 Update toplogy keyset initialization
a890724f9ef cronjob: return immediately when failed to create job for the namespace is terminating
37aff025ff8 cleanup: remove Clear for fake job controller
b7cdbca2374 Add more tests that should exist but don't for some reason
67d7f09eb82 hack/OWNERS: add pohly as reviewer and approver
5dca1be0160 Add tests
bab2c18c246 Add jsonpath support for explain
77692f1b1c5 fix linting
fabf1cba947 Add warning about TLS 1.3 cipher suites
6ad156d80ee Cleanup: modify some sentences about statefulset
13354d3da4d Add note about TLS 1.3 cipher suites
c50c19d13af remove unused not api functions in the pkg/apis directory
b1e3326eaee Fix gorestful typos in the APIServerHandler.Director docstring
a3b44b574fb cluster/gce: Fetch image from image family
26f0325734c fix typo in volume util
0311a4e8e6d Fixed typo
9b9f22f06b5 Fix unknown field error in deployment lifecycle e2e
6f19e8656f5 Apply suggestions from code review
1134134e727 kubelet/cm/containermap: Improving test coverage
87f094c5e88 Replaces path.Operation with filepath.Operation (part 2)
5111bced373 fix test cases that may be incorrect
9a3c4aa2dc9 initial e2e tests for ValidatingAdmissionPolicy
bd778449f4d versioning of CRI API
34d980e7709 i18n: Fix bug where package-level variables are not translated.
ad2d23eb9ff Add test for cmd/kubeadm/app/phases/upgrade/compute.go
fd4adba9acd add sig/storage label for pkg/controller/volume package PR
2557b35202f controller: add non-exist node test case
95fe0a158c2 Fix strategic merge patch $deleteFromPrimitiveList bug
76c8765bda5 ensure etc-host file permission is 644 whatever umask is
73883c71574 Remove default annotations from copied storage class
f16f9100e57 cleanup: delete unused AuditDynamicOptions in apiserver
583ea17efd6 Add parameter to set SecurityContext for containers in tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2c49b125b5 |
docker-distribution: update to 2.8.3
Bumping distribution to version v2.8.3-2-gd607c6cc, which comprises the following commits:
6b9f48f3 docs: remove blank line
a4fa6992 Add v2.8.3 release notes
5e6b1b5c Do not close HTTP request body in HTTP handler
29b00e8b digestset: deprecate package in favor of go-digest/digestset
d1ab2430 [release/2.8] vendor: github.com/opencontainers/go-digest v1.0.0
3dda0677 deprecate reference package, migrate to github.com/distribution/reference
3c6f7788 update to go1.20.8
31f5cd48 Handle rand deprecations in go 1.20
29b8ba0b Update to go 1.20
3316b198 Update to golang 1.19.10
444d053e update golangci-lint to v1.52
b800af44 ignore SA1019: ac.(*accessController).rootCerts.Subjects has been deprecated
0a98a00d Ignore SA1019: SplitHostname is deprecated.
2ec0471b Dont parse errors as JSON unless Content-Type is set to JSON
cb121c3f Set Content-Type header in registry client ReadFrom
b57133cc referene: fix formatting of "deprecated" comment.
2c4bf1a6 replace deprecated function
110cb753 Enable build tags in 2.8
2d62a402 s3: add interface assertion
2548973b Enable Go build tags
ab7178cc Pass BUILDTAGS argument to go build
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
9e8a6af947 |
moby: update to v24.0.6-tip
Bumping moby to version v24.0.6-36-gf9b8a35ac4, which comprises the following commits:
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
f87492689e update to go1.20.10
3715eaf078 update to go1.20.9
31f49bd685 Make one-shot stats faster
37796c7029 Revert "daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw"
51dc5fb58f integration/internal/swarm: rename max/min as it collides with go1.21 builtin
4e11c149d1 pkg/tailfile: rename max/min as it collides with go1.21 builtin
0b97ecddb0 pkg/plugins: rename max/min as it collides with go1.21 builtin
710c748801 pkg/sysinfo: rename max/min as it collides with go1.21 builtin
b340a777c0 pkg/archive: rename max/min as it collides with go1.21 builtin
e996dffe56 daemon: rename max/min as it collides with go1.21 builtin
334719141c api/types/versions: rename max/min as it collides with go1.21 builtin
0702941de6 restartmanager: rename max/min as it collides with go1.21 builtin
bed0c789dd daemon/cluster: format code with gofumpt
30fe6540a5 libcontainerd/windows: Don't reap on failure
1320e79bd8 libcontainer/windows: Remove unneeded var declaration
a1ba69a82b libcontainer/windows: Fix process not being killed after stdio attach failure
1f3ea9841e update containerd binary to v1.7.6
58224457c3 ipam: Replace ChildSubnet with parent Subnet when its mask is bigger
df983b7990 daemon: fix under what conditions container's mac-address is applied
f014c349a0 update to go1.20.8
e2ab5f72eb 24.0: Update buildkit to fix source policy order
8216da20af more robust dockerd-rootless-setuptools.sh
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c431b46959 |
crun: update to v1.9.2
Bumping crun to version 1.9.2-12-g8af8ee2, which comprises the following commits:
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
122f8ae linux: open mounts before setgroups if in a userns
64105d9 Use overlay and single nix derivation
35274d3 NEWS: tag 1.9.2
8f6b76f tests, podman: enable more tests
255268d Reset the inherited cpu affinity after moving to cgroup
745b6d9 tests, podman: run tests on overlay
f42e279 tests, podman: get more information on the environment
379b17c tests, podman: avoid deprecated options
bd251c9 rpm: do not special case krun man
fe4e15d build: install krun.1 only if krun is enabled
0cabf0c rpm: fix manpage installation
67ee730 Packit: notify @containers/packit-build team on failed tasks
1f2769e linux: fix fallback mechanism in a userns
a0b7e18 NEWS: tag 1.9.1
bb4e975 utils: partially rewrite improve error message patch
14afa8a utils: fix ignore ENOTSUP when chmod a symlink
0acb237 oci-validation,test: lock tap to @16.3.8
bbb1c87 tests: install device-mapper-devel
75dd83c podman, test: disable more tests failing in the CI
98db1d2 utils: improve error message for ensure_dir
57262a2 utils: ignore ENOTSUP when chmod a symlink
523eed3 linux: add new fallback when mount fails with EBUSY
2239c50 linux: teach MS_MOVE to do_mount
c9a1a12 Add man page for krun
8645d1a Fix CentOS 7 Build by Checking if FSOPEN_CLOEXEC exists
a538ac4 NEWS: tag 1.9
1e2f0c4 fix: correctly handle unknow signal string
41fa779 crun delete: call systemd's reset-failed
76b80ae fix random errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
8933a2cf4c |
cri-tools: update to v1.28.0-tip
Bumping cri-tools to version v1.26.0-353-gf8733ddf, which comprises the following commits:
f570bc09 Bump golang.org/x/net from 0.16.0 to 0.17.0
75c136c8 Validate sandbox and container metadata
4f3475f5 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0
93bc1bf2 Bump golang.org/x/net from 0.15.0 to 0.16.0
57d7848c Switch to `github.com/distribution/reference`
f61309ae Bump github.com/docker/distribution
6a1c7883 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0
024268e7 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1
04fb3af1 Verify required checkpoint parameters are set
544d4792 Remove duplicated import "k8s.io/cri-api/pkg/apis"
dbd6c086 Enable staticcheck linter with SA1019 to find deprecated methods
06bb4c99 Use executor.StreamWithContext instead of deprecated executor.Stream
092eddc1 Address deprecation of Strings.Title
9059543c Remove unnecessary rand.Seed
52fcfd43 Address deprecated io/ioutils
833ab93c Address deprecated call cli.NewExitError of urfave/cli package
3e036cfa Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0
b84b1817 Bump actions/checkout from 3 to 4
4b5c3fe1 Update version compatibility between Kubernetes and cri-tools
7458ab35 Bump golang.org/x/net from 0.14.0 to 0.15.0
aa049113 Bump github.com/docker/docker
71beb1da Fix containerd tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
82d2ac74cb |
cri-o: update to 1.29.0
Bumping cri-o to version v1.27.0-662-gf8ccf314a, which comprises the following commits:
3b7ab35ff build(deps): bump crate-ci/typos from 1.16.17 to 1.16.18
f7d3228a7 Avoid an unnecessary c/storage lookup in ListImages
96e6aa9b5 Inline getImageCacheItem into ListImages
e4f2b888d Split imageIsBeingPulled from ListImages
c7188518d Simplify ListImages more
1cfe3c8bb Simplify appendCachedResult
ae597ba16 Remove the "filter" parameter to ListImages
e0750462f Turn ListImages(filter) into ImageStatus
50ce23e89 Simplify storageImageStatus a bit
2cb166512 Simplify ImageStatus a bit
1b0e82a22 Split storageImageStatus from ImageStatus
ad8be44cc Simplify error handling in ImageStatus
203612b23 Move the ImageResult -> ImageStatusResponse conversion out of the loop
97329e4fa build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
013a0998c Update release-notes to v0.16.1
dc44bac35 Fix quoting issue in usage help text
f22040da2 crio: add support for --imagestore
1d0e5d074 build(deps): bump crate-ci/typos from 1.16.15 to 1.16.17
bb4ab8110 Run GitHub actions in `update-nixpkgs-*` branches
45a6e70e7 Update nixpkgs
8ec74c5fa contrib/test: pin the latest release of runc
2505851e0 Update crun to 1.9.2
f3e53a058 test: Add test for image pinning behavior
12cabc651 internal/storage: compute Pinned field from recently loaded image
0fd641c6d build(deps): bump crate-ci/typos from 1.16.14 to 1.16.15
347194d3f build(deps): bump crate-ci/typos from 1.16.13 to 1.16.14
f532cbd89 Add nixpkgs update cron
8fa9260fc build(deps): bump crate-ci/typos from 1.16.12 to 1.16.13
72280f09c Update install.md removed spaces (markdown lint error)
fe9ed4e3a storage: add support to split filesystem using imagestore
544db3209 RFC: Use RuntimeContainerMetadata for passing container data
c9309ebb6 Add a layer name in one step
4f5a2e95c Microoptimize reference creation
3a77cc956 Eliminate the now unused imageAuthFile and isPauseImage parameters
61d86923c Simplify createContainerOrPodSandbox again
a936e6861 Simplify CreatePodSandbox
39095cbb4 CHANGE: Simplify CreateContainer image lookup
a09320639 Eliminate the clearly dead part of the just copy&pasted code
a7f841955 Blindly copy the image handling code from createContainerOrPodSandbox into callers
6cabaaee1 Remove an imageID parameter to CreatePodSandbox
2b4652c52 Fix/Add error handling
8e1e1e672 update containers storage to 1.50.2
5d8538318 build(deps): bump DavidAnson/markdownlint-cli2-action from 12 to 13
6c1574efc Fix nix `dirty` build
d951faa32 Make the release branch fast forward a cronjob
5dee42bcf build(deps): bump crate-ci/typos from 1.16.11 to 1.16.12
91b83b10c Fix release notes job
096f803a3 Bump golang dependencies
7d86c2e25 docs: fix CI failure
f182fb411 Bump version to 1.29.0
51bae7a96 Remove the IsFullIdentifier check from Server.pullImage again
7eb248b1a Don't silently modify the caller's SystemContext
2d72e13e6 Fix a VERY misleading comment.
472d2c5f9 Remove an unnecessary check
23d7c35d5 Remove an unnecessary parse call
6f9a7173f Remove an unnecessary check
8c3e301da Optimize handling of full image IDs
5f45d232a Remove the ErrCannotParseImageID special case
335d4b0f3 Fix a VERY misleading comment
b489507c9 Remove a completely unused ErrImageMultiplyTagged
98f171147 Make Server.pullImage responsible for rejecting image IDs
e292f17c0 docs: Update the containers/image branch name
6005b03f2 contrib/test/ci: remove the redundant golang setup file
059a7b5f8 Add conmon-rs binary to bundle
4ac3aeef2 internal/storage: address unpredictable behavior of image names
61a0b7c79 config/server: add functions to check IDMap support in runtime
9ce778351 Remove golang-go from debian installation
3d450274e Pause container during checkpointing
e069cc827 contrib/test: fix golang version extraction for CI
0774b644d build(deps): bump actions/checkout from 3 to 4
d6f4c7100 Adopters.md: fix linting issue
d805d28fd Add new adopter
940de5009 build(deps): bump crate-ci/typos from 1.16.10 to 1.16.11
ac9c6fbfe Don't vendor main Kubernetes repo any more
4a1e406b0 Mention Roadmap GitHub Project in README.md
bacc5e638 build(deps): bump crate-ci/typos from 1.16.9 to 1.16.10
9cbd8d555 build(deps): bump cachix/install-nix-action from 22 to 23
798a8d701 build(deps): bump actions/checkout from 3 to 4
758e3d8c3 cgmgr: reorder setting of sched_load_balance for pod cgroup
0e6b13e08 build(deps): bump crate-ci/typos from 1.16.8 to 1.16.9
ff434ba27 build(deps): bump github.com/containers/podman/v4 from 4.6.1 to 4.6.2
0002792fa build(deps): bump DavidAnson/markdownlint-cli2-action from 11 to 12
3aa18aff3 Switch to go 1.21
5b9f7f96d Add dependabot group for OTEL deps
d7ad3fcbf build(deps): bump github.com/containers/buildah from 1.31.2 to 1.31.3
85c3d9db1 Bump conmon and crun dependencies
5ab387fe5 build(deps): bump github.com/containers/common from 0.55.3 to 0.55.4
a4f2d8071 server: remove deprecated functionality
28ae1f81a Fix bundle e2e tests
a9afa0442 Add ppc64le binaries to release notes
c8f8ca498 Add Kubernetes package test for static binary bundle
734e1538c build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
873c0f420 Policy: Allow backport of independent features
bebd421b5 Configure systemd install path based on OS
ec4bbac12 feat(cmdrunner): add support for context
59f9b823d move shmSetup in server/sandbox to internal/factory/sandbox
d1946b30a blockio: add blockio_reload option
ce1cdfa54 main: create parent crio dir before creating clean.shutdown.supported
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
022ec69e9b |
containerd: update to 1.7.7
Bumping containerd to version v1.7.7-5-g5e21abb18, which comprises the following commits:
d0a1fedb5 *: add runc-fp as runc wrapper to inject failpoint
04491240a containerd-shim-runc-v2: avoid potential deadlock in create handler
6982a0df5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0e2320398 Uncopypaste parsing of OCI Bundle spec file
a34fa5681 Prepare release notes for v1.7.7
6ca0aebf0 Allow for images with artifacts to pull
7df492a95 remotes/docker: Fix MountedFrom prefixed with target repository
7779ce64e remotes: always try to establish tls connection when tls configured
b3db314a5 Bump x/net to 0.13
a83c66813 Require plugins to succeed after registering readiness
171d76849 cri: call RegisterReadiness after NewCRIService
6013b5e03 cri: stop recommending disable_cgroup
3d27bc738 Handle unexpected shim kill events
4ffa3ed29 Build binaries with 1.21.1
5756f6064 [release/1.7] vendor: github.com/Microsoft/hcsshim v0.11.1
09633b539 deprecate logs package, but disable linter (for transitioning)
cb201519f alias log package to github.com/containerd/log v0.1.0
a5024e6dd vendor: github.com/stretchr/testify v1.8.4
7bd976af3 vendor: github.com/sirupsen/logrus v1.9.3
3ca015e55 nri: update mock plugin handlers
4cd208c1f vendor: update github.com/containerd/nri@v0.4.0
8cd2d33c2 [release/1.7] remotes/docker: Add MountedFrom and Exists push status
3e09c65b2 Prepare release notes for v1.7.6
5ebf05d97 push: inherit distribution sources from parent
d206896dd content: add InfoProvider interface
423693d7b [release/1.7] update to go1.20.8
c7a35ccdc Fix transfer service dependencies:
38d4e506d Invoke Stable ABI compatibility function in windows platform matcher
ddffc7c9a Update hcsshim tag to v0.11.0
b449440a4 CRI: Support Linux usernames for !linux platforms
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Mingli Yu
|
5cec30aae4 |
umoci: Remove the buildpath issue
Pass -trimpath to the build to fix the below build path issue: WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths] Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
01da1f2a29 |
buildah: update to 1.32.0
The new version has an internally stripped binary, so we inhibit the
QA warning.
Bumping buildah to version v1.31.0-159-g4f3d7b0b6, which comprises the following commits:
5151ccff5 .cirrus.yml: run tests relative to the release-1.32 branch
2326d4929 Tag v1.32.0
e90b3502b GetTmpDir is not using ImageCopyTmpdir correctly
ccac7ca0b Run codespell on code
6be719454 Bump vendor containers/(common, storage, image)
9545744e8 Cirrus: Remove multi-arch buildah image builds
206cda149 fix(deps): update module github.com/containerd/containerd to v1.7.6
0191bc671 Split GetTempDir from internal/util
6e6827b27 Move most of internal/parse to internal/volumes
292b429f6 copier: remove libimage dependency via util package
4f3abf936 Add some docs for `build --cw`, `commit --cw`, and `mkcw`
e89fac6c9 Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`
cc619c28d Make sure that pathnames picked up from the environment are absolute
4ee5f020a fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
fd72bbee2 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
754568580 Don't try to look up names when committing images
d5b02e551 fix(deps): update module golang.org/x/crypto to v0.13.0
3fc5274d3 docs: use valid github repo
f94689199 fix(deps): update module golang.org/x/sys to v0.12.0
6ec6f046f vendor containers/common@12405381ff
df1bc3834 push: --force-compression should be true with --compression-format
9c5cde533 Update module github.com/containerd/containerd to v1.7.5
3ebeaa2dd [skip-ci] Update tim-actions/commit-message-checker-with-regex action to v0.3.2
cc9f15f09 docs: add reference to oci-hooks
3454d5b29 Support passing of ULimits as -1 to mean max
f330c77be GHA: Attempt to fix discussion_lock workflow
4942cc908 Fixing the owner of the storage.conf.
f4e43f0e8 pkg/chrootuser: Ignore comments when parsing /etc/group on FreeBSD
2b57cef2b Use buildah repo rather then podman repo
a8bbc9f5f GHA: Closed issue/PR comment-lock test
82069390f fix(deps): update module github.com/containers/storage to v1.49.0
4c4ff3128 chore(deps): update dependency containers/automation_images to v20230816
af3891258 Replace troff code with markdown in buildah-{copy,add}.1.md
e997a966f [CI:BUILD] rpm: spdx compatible license field
a3f2aa3c7 executor: build-arg warnings must honor global args
f6fb75d9d fix(deps): update module github.com/containers/ocicrypt to v1.1.8
5643a7fa8 chroot: `setSeccomp` add support for `ArchPARISC(64)` and `ArchRISCV64`
8428dee36 make,cross: restore loong64
e3cd4d790 Clear CommonBuildOpts when loading Builder status
d68d9a237 buildah/push/manifest-push: add support for --force-compression
3445a775a vendor: bump c/common to v0.55.1-0.20230811093040-524b4d5c12f9
2d6e43071 chore(deps): update dependency containers/automation_images to v20230809
065b95599 [CI:BUILD] RPM: fix buildtags
3964ca9d6 fix(deps): update module github.com/opencontainers/runc to v1.1.9
591b5390d chore(deps): update dependency ubuntu to v22
204c5a1ce chore(deps): update dependency containers/automation_images to v20230807
9ab3b526d [CI:BUILD] Packit: add fedora-eln targets
ed2a501c9 [CI:BUILD] RPM: build docs with vendored go-md2man
5bdb8c70d packit: Build PRs into default packit COPRs
fc7329d7c Update install.md
f6c4ead1b Update install.md changes current Debian stable version name
2254ca208 fix(deps): update module golang.org/x/term to v0.11.0
248f5a2b3 fix(deps): update module golang.org/x/crypto to v0.12.0
ae36f6542 tests: fix layer-label tests
f888b3d84 buildah: add --layer-label for setting labels on layers
239b2a877 Cirrus: container/rootless env. var. passthrough
65c1c9327 Cirrus: Remove duplicate env. var. definitions
978be7796 fix(deps): update github.com/containers/storage digest to c3da76f
62d405771 Add a missing .Close() call on an ImageSource
e588986fa Create only a reference when that's all we need
fe947ed9c Add a missing .Close() call on an ImageDestination
597d30880 CI:BUILD] RPM: define gobuild macro for rhel/centos stream
b9ac8d5e0 manifest/push: add support for --add-compression
d27a82356 manifest/inspect: add support for tls-verify and authfile
071f851da vendor: bump c/common to v0.55.1-0.20230727095721-647ed1d4d79a
512273587 vendor: bump c/image to v5.26.1-0.20230726142307-8c387a14f4ac
3d8616537 fix(deps): update module github.com/containerd/containerd to v1.7.3
c20d0164f fix(deps): update module github.com/onsi/gomega to v1.27.10
2e7dcc143 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
6a236937a fix(deps): update module github.com/containers/image/v5 to v5.26.1
d78f6c2a2 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0
dbc71b7cc Update vendor of containers/(storage,image,common)
331fac670 fix(deps): update module github.com/opencontainers/runc to v1.1.8
9cc5d5e8c [CI:BUILD] Packit: remove pre-sync action
09a1cd698 fix(deps): update module github.com/containers/common to v0.55.2
11cec8523 [CI:BUILD] Packit: downstream task script needs GOPATH
70cb4c7e0 Vendor in containers/(common, image, storage)
173ac7dc9 fix(deps): update module golang.org/x/term to v0.10.0
8b84d9b8a [CI:BUILD] Packit: fix pre-sync action for downstream tasks
97b84029a contrib/buildahimage: set config correctly for rootless build user
cba7b9fae fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
e00845797 Bump to v1.32.0-dev
f704a67a1 Update debian install instructions
4c72c25a2 pkg/overlay: add limited support for FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
7e17ee02a3 |
catatonit: update to version 0.2.0
Main change is the relicense from GPL-3 to GPL-2, which will allow
catatonit (and hence podman) to be used in deployments where the license
previously posed an issue.
Contains the following commits:
7f0c9bb version: release catatonit 0.2.0
fe191ef license: switch to GPLv2-or-later
Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
51a017123d |
k3s: update to v1.28.2
Bumping k3s to v1.28.2, which comprises the following commits:
6330a5b49c Update to v1.28.2 and go v1.20.8 (#8364)
550dd0578f Bump kine to v0.10.3
b3bb7e5a11 update channel for version v1.28 (#8305)
0d23cfe038 Add RWMutex to address controller
cba9f0d142 Add new CLI flag to disable TLS SAN CN filtering
2cb7023660 Use already imported semver, bump kine
f2d0c5409a Add check for support on cp nodes
51f1a5a0ab Review comments and fixes
42c2ac95e2 CLI + Backend for Secrets Encryption v3
e45a674457 Add new encryption test
b967f92785 Replace os.Write with AtomicWrite function
ced330c66a [v1.28] CLI Removal for v1.28.0 (#8203)
62db5fa27c Update to v1.28.1 (#8239)
af50e1b096 Update to v1.28.0-k3s1 (#8199)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
827092c2ec |
docker-compose: fix textrel QA issue
Fix textrel QA issue like below:
ERROR: QA Issue: docker-compose: ELF binary /usr/lib/docker/cli-plugins/
docker-compose has relocations in .text [textrel]
The problem could be fixed by adding -buildmode=pie, as this option has
already been in GOBUILDFLAGS except for mips and riscv32, let's make
use of GOBUILDFLAGS.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
77fc0a2613 |
podman: mark incompatible with mips
Some of the (current) rdepends for skopeo are not compatible with mips. To make this restriction more obvious, we also mark skopeo itself incompatible with mips. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4e602f8949 |
skopeo: mark incompatible with mips
When building skopeo for mips(64), we get the following errors: | go.go:(.text+0xdd07fc): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0830): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | go.go:(.text+0xdd0864): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC | collect2: error: ld returned 1 exit status Tag the recipe as incompatible with mips to avoid having it built at all. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
b65fe24b8c |
nerdctl: fix textrel QA issue
Fix the following QA issue: ERROR: QA Issue: nerdctl: ELF binary /usr/bin/nerdctl has relocations in .text [textrel] We want to use -buildmode=pie, in order to avoid duplicating codes with go.bbclass, make use of GOBUILDFLAGS. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
96598a7d71 |
nerdctl: upgrade to v1.5.0
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
0e2058840e |
docker-compose: upgrade to v2.20.3
Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
03085cfb54 |
docker-compose: fix installation location for multilib
In case of multilib, the location is /usr/lib64/docker/cli-plugins, which cannot be recognized by docker. We should use nonarch_libdir instead. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
86ec0fea15 |
k3s: update to v1.27.5
We refresh one patch, but otherwise, the build is unchanged. Generated via: scripts/oe-go-mod-autogen.py --repo https://github.com/rancher/k3s.git --rev v1.27.5+k3s1 Bumping k3s to version v1.27.5+k3s1, which comprises the following commits: 8d074ecb5a Add RWMutex to address controller f365a9cb98 Add new CLI flag to enable TLS SAN CN filtering 8d6483a59e Update to v1.27.5 (#8236) e31f00f863 Move flannel to 0.22.2 f8727f56d7 E2E test for token coverage (#8184) 84ded911e9 Bump helm-controller/klipper-helm versions 66bae3e326 Bump dynamiclistener for init deadlock fix e83b1ba4aa Fixed the etcd retention to delete orphaned snapshots based on the date (#8177) 561db17a31 chore: Bump Trivy version (#8178) 38a0b91c1a chore: Bump Trivy version (#8150) 7f58a1cb23 Run integration test CI in parallel (#8156) c97211866a Fix for cluster-reset backup from s3 when etcd snapshots are disabled (#8155) 9702f92345 Fix for Kubeflag Integration test (#8154) b2e71553ce Use VERSION_K8S in tests instead of grep go.mod bc332ac667 Use 'go list -m' instead of grep to look up versions 53fc3eef0a add --disable-cloud-controller and --disable-kube-proxy test (#8018) e551308db8 fix for etcd-snapshot delete with --etcd-s3 flag (#8110) 45bc26309f Remove terraform test package (#8136) fd531140e5 Bump kine to v0.10.2 ca7aeed090 Etcd snapshots retention when node name changes (#8099) 23d6842f9a Bump versions for etcd, containerd, runc, kine a0da8eded3 Bump docker/docker to master commit aa76942d0f Add FilterCN function to prevent SAN Stuffing 3515d712a7 Fix typo in terraform/README.md (#8090) a87b183f9c E2E: Support GOCOVER for more tests + fixes (#8080) 46cbbab263 Consolidate CopyFile functions (#8079) 59eec78c62 Fix tailscale bug with ip modes 468bddb59c update stable channel to v1.27.4+k3s1 (#8067) 767b64ba58 Fix coreos multiple installs (#8083) cc9dce5764 Security bump to docker/distribution (#8047) f21ae1d949 Make apiserver egress args conditional on egress-selector-mode 546dc247a0 Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl (#7991) 6d360e6473 Unit test for MustFindString (#8013) 946c8ea842 ADR on secrets encryption v3 (#7938) 780e638099 Update flannel to v0.22.1 e56839b329 Update cni plugins version to v1.3.0 36645e7311 fix update go version doc (#8028) d8ae6ef59b Update to v1.27.4 (#8014) be44243353 Adjust default kubeconfig file permissions (#7978) 0b18a65d4f Revert "Warn that v1.28 will deprecate reencrypt/prepare (#7848)" 58a8deb25d fix image_scan.sh script and download trivy version (#7950) 3eb4e12c3b Don't use zgrep in `check-config` if apparmor porfile is enforced (#7939) 34617390d0 Generation of certificates and keys for etcd gated if etcd is disabled. (#6998) 2eddfe6cf4 Add retry for clone step (#7862) 782a3a1cb4 Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform (#7879) 8405813c12 Fix rootless node password (#7887) 607320d670 Improve for K3s release Docs (#7864) b9a2bf11ee Support setting control server URL for Tailscale. 4ab01f3941 Warn that v1.28 will deprecate reencrypt/prepare (#7848) 9e334153cf add e2e s3 test (#7833) bca0adbca8 Fix code spell check 7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller 324f9ad4da fix e2e startup flaky test (#7839) 72d50b1f7c Add `--data-dir` to the `k3s certificate rotate-ca` cli (#7791) d593c83603 Remove file_windows.go f21a01474d Check if we are on ipv4, ipv6 or dualStack when doing tailscale 0809187cff Adding cli to custom klipper helm image (#7682) c7dec8ed24 Update stable channel to v1.27.3+k3s1 (#7827) 70691a95ee Faster K3s Binary Build Option (#7805) 2215870d5d chore: pkg imported more than once fe9604cac1 Update Kubernetes to v1.27.3 (#7790) d968e64de0 Add commands to logout from tailscale 43611bb5ad Fix the error report b66a118362 Bump helm-controller to v0.15.0 for create-namespace support a5874f855f Remove unused libvirt config c6a6e8ef57 Fix spelling check cc22c80e49 Add issue template for OS validation (#7695) efa86a63e8 Remove unnecessary daemonset addition/deletion (#7696) 7c151d468f add private registry e2e test (#7653) 869e030bdd VPN PoC 1e73bb8967 Run integration tests on E2E changes, ensures correct coverage values 8f9502233a E2E: Inject gocover ENV for k3s commands 4a68fbd8e9 E2E: Use sudo for all RunCmdOnNode 00f3e2413f chore: Bump Trivy version (#7672) dc6c569b98 Shortcircuit commands with version or help flags (#7683) 3a8e98a3b8 Bump docker go.mod (#7681) e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins 5170bc5a04 Improve error response logging 45d8c1a1a2 Soft-fail on node password verification if the secret cannot be created b0188f5a13 Test Coverage Reports for E2E tests (#7526) afc88cec88 check variant before version to decide rpm target and packager fa0dc5900a Use el8 rpm for fedora 38 and 39 (#7664) 7c0a7687c6 add format command on Makefile and remove vendor 9227e0bde2 Bump vagrant libvirt with fix for plugin installs (#7605) b64a226ebd Make LB image configurable when compiling k3s a5928ee137 chore: Bump golang:alpine version 612473755d Add ADR 7b61aacb56 Fix test file list 64a5f58f1e Create new kubeconfig for supervisor use 8748813a61 Use distinct clients for supervisor, deploy, and helm controllers e9958cf070 Bump metrics-server to v0.6.3 and update tls-cipher-suites 93279d2f59 Bump klipper-lb to v0.4.4 0485a56f33 allow coredns override extensions 85e10cf9d2 update channels (#7634) 9543470eb7 Add el9 selinux rpm (#7635) d1b0254b91 Update flannel version 213d7ad499 Revert "Add el9 selinux rpm (#7443)" (#7608) d55ec08675 Add el9 selinux rpm (#7443) fe554fe703 Pin emicklei/go-restful to v3.9.0 91c5e0d75a Fix iptables rules clean during upgrade d069a85fcc Update to v1.27.2-k3s1 (#7575) 290f67c939 Add '-all' flag to apply to inactive units 2b24c9917c Bump alpine from 3.17 to 3.18 in /conformance (#7551) 266926693a Bump alpine from 3.17 to 3.18 in /package (#7550) 9bcfac8b88 Add Rotation certification Check (#7097) 4aafff0219 Wrap error stating that it is coming from netpol cbe8d33c93 Bump containerd/runc to v1.7.1-k3s1/v1.1.7 8f450bafe1 Bump helm-controller version for repo auth/ca support 06296815e6 Adding PITS and Getdeck Beiboot as adopters thanks to Schille and Miworfi for the additions (#7524) 607cbf0ad6 Bump containerd to v1.7.0 and move back into multicall binary 239021e759 Consistently use constant-time comparison of password hashes 9ec1789c21 Bump kube-router version to fix a bug when a port name is used c6dc789e25 Add support for `-cover` + integration test code coverage (#7415) 3982213f06 add kube-* server flags integration tests (#7416) b32bf49541 Bump kine to v0.10.1 c98137ddca Fix token startup test cf9ebb3259 Fail to validate server tokens that use bootstrap id/secret format 7175ebe2be E2E: Startup test cleanup + RunCommand Enhancement (#7388) bbb8ee0b2d Add dependabot label and reviewer (#7423) cedefeff24 Bump cni plugins to v1.2.0-k3s1 a736b4b1b9 local-storage: Fix permission (#7217) 437ad128c7 Migrate netutil methods into /utils/net.go e1d4cff14c Enable FindString to search dotD config files (#7323) 132b41c3bf Add v1.27 channel (#7387) d5f560360e Handle multiple arguments with StringSlice flags (#7380) a3ddff2f29 chore: Bump Trivy version e61fde93c1 Fix MemberList error handling and incorrect etcd-arg passthrough 91afb38799 Retry cluster join on "too many learners" error f1b6a3549c Fix stack log on panic c44d33d29b Fix race condition in tunnel server startup 1ca035accc Add e2e test for --disable-agent 31a6386994 Improve egress selector handling on agentless servers 5348b5e696 Improve error message when CLI wrapper Exec fails bbda54b332 Add longhorn storage test (#6445) 0247794aa9 go generate 0bbc6ad3f0 Bump traefik to v2.9.10 1ac03aad43 Add integration tests for etc-snapshot server flags and refactor /tests/integration/integration.go/K3sStartServer (#7300) ef648b7a5d Bump Runc and Containerd (#7339) 9539147ee1 Bump k3s-root for aarch64 page size fix ad41fb8c96 Create CRDs with schema bc5b42c279 Cleanup help messages (#7369) f076080b2b Bump cri-dockerd (#7347) 87f0dc5dd3 update channel server for april 2023 (#7327) 66fcca66cb ensure that klog verbosity is set to the same level as logrus by repeatedly settting it every second during k3s startup 36699bbd60 Changed command -v redirection for iptables bin check 944f811dc5 v1.27.1 CLI Deprecation (#7311) f2bde63eea Kubernetes v1.27.1 (#7271) 8d0255af07 Bump Trivy version (#7257) 779d5f3aa2 chore: Updated the content of the file "/tmp/updatecli/github/k3s-io/... (#7256) 554ad87c8d chore: Bump golang:alpine version (#7292) 257fa2c54c Update to v1.26.4-k3s1 (#7282) d9f40d4f5b Update install script to clean iptables rules before start 0c683720ad Update kube-router to insert iptables rules right after kubernetes ones 6b51ed478d Fix call for k3s-selinux versions in airgapped environments (#7264) 027cc187ce Add coreos and sle micro to selinux support (#6945) 30638072c9 Update klipper lb to v0.4.2 (#7210) 6c394abb32 Add make commands to terraform automation and fix external dbs related issue (#7159) 3e3512bdae Updated kube-route version to move the iptables ACCEPT default rule at the end of the chain d95980bba3 Lock bootstrap data with empty key to prevent conflicts 12091fc724 Bump actions/setup-go from 3 to 4 2992477c4b Debounce kubernetes service endpoint updates ece4d8e45c Fix tests to not hide failure location in dummp assert functions e54ceaa497 Fix issue with stale connections to removed LB server 5dece799df Update remotedialer to silence errors when disconnecting 4182dcaac8 [UpdateCLI] Improve Klipper Helm and Helm controller bumps (#7146) 127cea1f3f Upgrade helm-controller to v0.13.3 (#7209) d2e04b826a Don't apply hardened args to agent (#7089) d388b82d25 go generate de80c07053 Ensure that loopback is used for the advertised address when resetting b010db0cff Ensure that loopback is used for the advertised address when resetting 877247a691 Bump runc to v1.1.5 eb982bbbde Bump etcd to v3.5.7 cee3ddbc4a Bump Local Path Provisioner version (#7167) ddd9665fed Improve Trivy configuration (#7154) fdf994dc35 [UpdateCLI] Improve workflow (#7142) 37b3f4d25c Run go generate in local-path-provisioner Updatecli pipeline (#7181) 8ec7d5e6b0 fix_get_sha_url (#7187) a99376663b Drone Pipelines enhancement (#7169) fb491f5ebf Update stable channel to v1.26.3+k3s1 (#7161) d13ee64403 Enhance `k3s check-config` (#7091) 01ea3ff27b Update flannel to fix NAT issue with old iptables version c97370be6f Clean E2E VMs before testing (#7109) 7c32f88fec Pin golangci-lint version to v1.51.2 (#7113) dc4a148725 Update to v1.26.3-k3s1 (#7108) 561ec056c1 Drone: Cleanup E2E VMs on test panic (#7104) 9980504196 Fix to Rotate CA e2e test (#7101) 85b261096c Add automation for Restart command for K3s (#7002) 19ac384929 Remove Nikolai from MAINTAINERS list (#7088) 7d2f997b3e Added multiClusterCIDR E2E test 262cd7de0a Added IPv6 check and agent restart on e2e test utils 15ee88964b Added multiClusterCidr feature 822ee79eb8 Remove deprecated nodeSelector label beta.kubernetes.io/os (#6970) a912902aa7 Add missing kernel config checks (#6946) 8503d0143c skip all pipelines based on what is in the PR (#6996) 977a85559e Add support for cross-signing new certs during ca rotation 68fcb48a35 Update/rename certs.sh; add default cert rotation script b7f90f389c Wait for kubelet port to be ready before setting (#7041) a45d081027 update stable version in channel server (#7066) d218068f34 Adds a warning about editing to the containerd config.toml file (#7057) c259403af1 Bump various dependencies for CVEs (#7044) e098b99bfa Update flannel and kube-router (#7039) c78dc4db71 Add flannel adr (#6973) 522ad1e697 Add E2E to Drone (#6890) ea094d1d49 Update to v1.26.2-k3s1 (#7011) ee28c20b62 Bump kine to v0.9.9 cbe4bcfeee Add test for filterByIPFamily cc333d8d0c Fix ServiceLB dual-stack ingress IP listing 2156015521 Improve default umask for certs.sh 23d98cec22 Fix CACertPath stripping trailing path components 0c302f4341 Fix etcd member deletion 9efa0797b7 Don't default to local K3s for startup test (#6950) 7739c8b97e Update flannel to v0.21.1 b8e69712a3 Updated flannel version to v0.21.0 3d146d2f1b Allow for multiple sets of leader-elected controllers 0d416d797d Wait for server to become ready before creating token 290d7e8fd1 Fix access to hostNetwork port on NodeIP when egress-selector-mode=agent ddcc4d4034 go generate c6d0afd0cb Check for existing resources before creating them 32d62c5786 Use default address family when adding kubernetes service address to SAN list a92f163c9d Add NATS to the list of supported data stores (#6876) b43dd7746d Add CI test c900089e88 Add ADR 87f9c4ab11 Ensure that node exists when using node auth 992e64993d Add support for kubeadm token and client certificate auth 373df1c8b0 Add support for `k3s token` command 7d49202721 Ignore value conflicts when reencrypting secrets (#6850) be7f751863 Add e2e tests for CA cert rotation 8a6404f97c Add basic test for custom CA certs 9b6b72941f Clarify ADR based on design review feedback f13768c247 Add ADR 215fb157ff Add `certificate rotate-ca` to write updated CA certs to datastore 3c324335b2 Add utility functions for getting kubernetes client 58d40327b4 Fix CA cert hash for root certs 0919ec6755 Ensure cluster-signing CA files contain only a single CA cert 1ec242d816 Add example certificate generation script 7e59376bb9 Fix check for (open)SUSE version (#6791) ee007bc7cf Bump deps: trivy, sonobuoy, dapper (#6807) bb353f5d2b Fix reference to documentation (#6860) 7cad3db251 E2E: Consoldiate docker and prefer bundled tests into new startup test (#6851) 32086717fc Ensure flag type consistency (#6852) 750cff561d Bump vagrant boxes to fedora37 (#6832) 9fcc7c0db8 Fix cronjob example (#6707) 0d4caf4e24 Wait for cri-dockerd socket (#6812) 1c6fde9a52 go generate 369b81b45e Honor Service ExternalTrafficPolicy 94d1a87509 Bump wrangler version for EndpointSlice support 86e36225f5 Consolidate E2E tests and GH Actions (#6772) 808c71a63e Add Ayedo (#6801) 75f77ab951 E2E Rancher and Hardened script improvements (#6778) f0655f153e update stable channel to v1.25.6+k3s1 (#6828) 3cb6fa5cc7 Set cri-dockerd version at build time f72649d1bd Bump cri-dockerd 89f7062431 Add build tag to disable cri-dockerd f10af367c3 Update to v1.26.1-k3s1 (#6774) f19892c2d2 drone correct plugins/docker tag supporting linux/arm (#6769) 291f8bfe00 Slow dependency CI to weekly (#6764) 2007cdd54f generate report and upload test results (#6737) 7bbcac92fd Bump download action to v3 (#6746) d71ab6317e Update stable to 1.25.5+k3s2 (#6753) f54b5e4fa0 Fix CI tests 23c1040adb Bugfix: do not break cert-manager when pprof is enabled (#6635) a4549cf989 chore: Bump golang:alpine version (#6683) 8340b54309 Pass through default tls-cipher-suites cc3583399a Add explicit permissions to workflows (#6700) d85952d6a0 Bump ubuntu from 20.04 to 22.04 in /tests/e2e/scripts (#6686) 674a05478f Containerd restart testlet (#6696) d78e490716 Bump containerd to v1.6.15-k3s1 e53500f37f Bump alpine from 3.16 to 3.17 in /conformance (#6687) c7151e8b61 Bump alpine from 3.16 to 3.17 in /package (#6688) 3cafc8e6dd RIP Codespell (#6701) fd8481a29d Adjust e2e test run script and fixes (#6718) a298bfdb18 Add jitter to scheduled snapshots and retry harder on conflicts f0ec6a4c12 Exclude December r1 releases from channel server bc6bebc998 Bump containerd to v1.6.14-k3s1 454440f9a3 Add Dependabot config for security ADR (#6560) 870d9c32b0 Fix OpenRC init script error 'openrc-run.sh: source: not found' (#6614) 97f162291a Change Updatecli GH action reference branch (#6682) beafd9eaff Update stable to v1.25.5 (#6618) 8f28de259c Add initial Updatecli ADR automation (#6583) 9e97a3b4aa Current status badges (#6653) fae8817655 Bump k3s-root version to v0.12.1 0c9b43746b Preload iptable_filter/ip6table_filter f8b661d590 Update to v1.26.0-k3s1 (#6370) b5d39df929 Deprecation of `etcd-snapshot` command in v1.26 (#6575) d723775792 Remove deprecated flags in v1.26 (#6574) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7ed351dbdc |
docker: drop docker-ce recipe
docker-ce is now the same as moby. We've had a warning for quite some time now, so it is time to remove the recipe. We don't RPROVIDE docker-ce in the docker-moby recipe as part of this removal, as all docker packages have been RPROVIDING "docker" regardless of the variant. images and packagelists should be using that provider, not docker-moby and docker-ce Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
103695c7b9 |
docker-moby: update to 24.0.6
Bumping moby to version v24.0.6, which comprises the following commits:
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
1d983e2e8a update golangci-lint to v1.54.2
d2e9a19358 CONTRIBUTING.md: update links to golang docs and blog
73f6053bb3 api: swagger: update link to Go documentation
de13951b9d docs/api: update links to Go documentation
377af4c9b4 Dockerfile: Windows: update Golang download domains to cut down redirects
088cec8f0f hack: update link to GOPATH documentation
ed2f5d1d85 c8d/builder: Don't drop fields from created image
1d10e8633d daemon: Handle NotFound when deleting container lease
63422515ba c8d/run: Allow running container without image
49671250f6 c8d/commit: Don't produce an empty layer
b83f5a89f4 Don't return an error if the lease is not found
4ac2355d62 hack: use long SHA for DOCKER_GITCOMMIT
ac2a80fcc3 ci(bin-image): clean up metadata
5eef5a7f59 ci(bin-image): clean up env var handling
aaf84dd4cf remove Dockerfile.e2e
a99e62fa3d distribution: show image schema deprecation on all registries
e239799583 distribution: update warning for deprecated image formats
bb22b8a418 ci(bin-image): check repo origin
fb6784bdf0 gha: set 10-minute timeout on "report" actions
74bf46aea6 c8d/diff: Reuse mount, mount parent as read-only
b76a0c7d00 c8d/export: Use ref counted mounter
54953f2f5a integration: Add test for not breaking overlayfs
3897724f4a volume/local: Fix debug log typo
0c131f58ba ci(bin-image): populate DOCKER_GITCOMMIT, take 2
448ae33f87 ci(bin-image): populate DOCKER_GITCOMMIT
3ce0dc7e35 bakefile: Remove default value of DOCKER_GITCOMMIT
600aa7b7a5 c8d/inspect: Ignore manifest with missing config
5d2c383d72 remove s390x and ppc64ls pipelines
15bd07b4fd update runc binary to v1.1.9
cc39fb9f6b Integration test for capabilities
bf2b8a05a0 Do not drop effective&permitted set
e67f9dadc6 hack/make/.binary: use with-go-mod.sh
314b84b023 hack: enable Go modules when building dockerd and docker-proxy
72947f5022 hack: use Git-free ROOTDIR convention
7e7bc0f1bc vendor: github.com/containerd/containerd v1.6.22
5f0df8c534 vendor github.com/containerd/ttrpc v1.1.2
25b709df48 windows: fix --register-service when executed from within binary directory
b7d1e98ae7 libnet/d/bridge: Allow IPv6 ICC from any IP address
749e687e1b integration/windows: Unskip some kill tests
128838227e hack/test: Don't fail-fast before integration-cli
b7c5385b81 update to go1.20.7
4cd50eb1ed TestDaemonProxy: use new scanners to check logs
a49bca97df Fix daemon proxy test for "reload sanitized"
d6536d44e9 TestDaemonProxy: check proxy settings early
a6f8e97342 Improve test daemon logging
Bumping docker-cli to version v24.0.6, which comprises the following commits:
fab55e13c cli/command/system: fix "docker events" not supporting --format=json
d3485b9e9 cli/registry: client.iterateEndpoints: remove check for APIVersion1
613380299 cli/registry: fix client.pullManifestList not de-referencing manifest
b83959e00 force TestNewHistoryCommandSuccess to use UTC timezone
28a08a22b un-skip history test and fix golden mismatches
8e0393932 update cli-docs-tool to v0.6.0
efd052eb8 docs/reference: run.md: remove stray whitespace
d9770a962 adding -c option for docker run/build in manpages
6efe73abe cli/command/manifest: update link to Go documentation
d97753101 man: update links to Go documentation
e9f843bf0 docs/reference: update links to Go documentation
cfbaee468 CONTRIBUTING.md: update links
daeee4697 update flag-description for --cgroup-parent
08ad72160 Update docs/command output for volume pruning
3c4fe7b3e docs: add missing docs for "DOCKER_TLS" env-var
dc45bcc99 Stop slowing bash init by caching plugins path slowly
710dd00e9 replace dockerfile/dockerignore with patternmatcher/ignorefile
bf632329d vendor: github.com/moby/patternmatcher v0.6.0
3c6c0bce1 cli/registry/client: set actions when authn with token
65655cc26 cmd/docker: areFlagsSupported: don't Ping if not needed
11606268f login: Add message about using PATs
a8987063b docs: document special host-gateway value for add-host
c0e376854 update to go1.20.7
We refresh one patch to adapt to the new build script structure.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
81fb357125 |
crun: update to v1.8.7
Bumping crun to version 1.8.7-32-gf8fa497, which comprises the following commits:
76b80ae fix random errors
d602fc0 build(deps): bump actions/checkout from 3 to 4
d348000 linux: fix check for oom_score_adj
382edc9 wasmer: inherit_stdout instead of capture
5057f98 wasmer: use latest wasix API
f60a903 linux: do not join already joined namespaces
46ef792 lua: fixed luarocks package directory structure
0e506e5 linux: add support for ridmap mount option
44e51fa linux: honor rbind
f6f92b8 utils: tighten check in check_fd_under_path()
58fa192 fix typos in comments
9e66109 linux + cgroup-systemd: fix error return values
668f5d5 features: Support mountExtensions
1836bed lua: rename variable to fix spelling
2779f02 linux: support arbitrary idmapped mounts
08def0a linux: move function definition forward
53a9996 NEWS: tag 1.8.7
a867e35 lua: fix missing dereference of pointer
c90c3ca cgroup-systemd: fix error return value
b6c8708 tests: Update expected features output
7c524e7 features: Fix annotations formatting
f0054ea src/libcrun: Mark we implement up to OCI 1.1.0
59e2b84 build(deps): bump uraimo/run-on-arch-action from 2.5.0 to 2.5.1
3a50988 use just enough arg_unused to silence -Wunused-parameter
9864f09 Packit: enable eln builds, enable wasmedge on all non-eln builds
cf72f8b container: fix error return value
88441d9 linux: simplify setns with pidfd
261a4fa mount_flags.c: regenerate
f9f4e06 mount_flags.perf: add get_mount_flags_from_wordlist
387d3ac packit: Build PRs into default packit COPRs
907d032 libcrun: handle SIGWINCH by resizing terminal_fd
57a252b nix: rename `default-nix` to `default-amd64.nix`
5224aa2 build-aux: simplify `release.sh`
a7102e8 github: simplify `release.yml`
8908248 Add support for riscv64 arch
31eeb19 cgroup: fix error return value
fec9b0f RPM: include criu dependencies
02ee7c4 linux: do not create error twice
c786d4c linux: simplify error handling
c972772 linux: do not write twice errors
74a3874 linux: use helper functions instead of custom read/write
35a0166 linux: define helper to ack on the sync socket
c3e518e libcrun: drop symbol for crun_make_error
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d79b200eda |
cri-tools: update to v1.28.0
Bumping cri-tools to version v1.26.0-318-gd5f3f2df, which comprises the following commits:
71beb1da Fix containerd tests
7d7fd9bb add --pinned flag for `crictl images`
f74240d3 Bump github.com/google/uuid from 1.3.0 to 1.3.1
25ae10aa `crictl images -v` prints Pinned when image is pinned
163da8b9 Move events streaming test to own suite with BeforeEach and AfterEach
5461a963 Validate template
aa7bd9a9 Fix tests
88b0bedc Update cmd/crictl/events.go
3a881ad2 Address review comments
459ff574 Remove the Kubernetes incubator reference from README.md
9d084877 Vendor Kubernetes v1.28.0
b703e6a9 Add crictl events command
7f5104d9 Bump latest version in README.md
552f7387 Use previous and latest tag from git in release script
db0bc1a3 Vendor Kubernetes v1.28.0-rc.1
2b86addd Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9
26d35da6 Fix seccomp value in test
a8a71d9f statsp: enhance description
e373e4a8 crictl: add metricsp command
5b337756 Dedup test code and activate linter
ba784045 Bump golang.org/x/net from 0.12.0 to 0.14.0
86ca3498 Bump golang.org/x/sys from 0.10.0 to 0.11.0
306ebdfa crictl: deduplicate display boilerplate
16975aba Make `haircommander` an approver
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5569d65881 |
cri-o: update to release 1.28.0
Bumping cri-o to version v1.28.0, which comprises the following commits:
23dec8c7d version: bump to v1.28.0
c104a0608 build(deps): bump github.com/containers/storage from 1.48.0 to 1.49.0
5524b65d3 add info about pulling image before doing the tutorial
922573ffe build(deps): bump crate-ci/typos from 1.16.6 to 1.16.8
67724cb6f build(deps): bump github.com/containers/podman/v4 from 4.6.0 to 4.6.1
a2d46ae01 build(deps): bump github.com/containers/ocicrypt from 1.1.7 to 1.1.8
7e3522a9c Added a flag internal-repair
39ea33e29 feat: Added a feature to check at reboot time shutdown was clean or not, If it was not clean then apply repair logic
c5def7f72 build(deps): bump crate-ci/typos from 1.16.5 to 1.16.6
b873985b8 Add `conmon` to ppc64le static bundle
3e3f70c22 Update install.md
9c3d622a6 Vendor Kubernetes v1.28.0
a7f160b49 build(deps): bump crate-ci/typos from 1.16.3 to 1.16.5
d2fa125a4 Update nixpkgs and use overlay
80fdf486e Add containers_events_dropped_total metric
e19002329 Fix indentation in installation instructions
94f5e75c8 Update cri-tools to v1.28.0
a8d7c29e1 Vendor Kubernetes v1.28.0-rc.1
23f51c3e1 Update OWNERS_ALIASES
f1bb83127 Update runc to v1.1.9
581a388ac build(deps): bump crate-ci/typos from 1.16.2 to 1.16.3
5022d956a test/image.bats: add test for checking crun-wasm workflow
05ef7a189 *: add platform_runtime_paths to RuntimeHandler
6a0c4b9ec build(deps): bump github.com/containers/image/v5 from 5.26.1 to 5.27.0
f18d122e8 Revert "devices: fill the FileMode field in spec"
8937245b0 build-static: misc fixes needed for 1.25.4 generation
abfc2d616 build(deps): bump crate-ci/typos from 1.16.1 to 1.16.2
3f06640cf contrib/test/ci: add crun-wasm
3a9232c62 build(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0
bb98e2b2a Set mount type HostToContainer for mounts that include container storage root
309d045ec add script bumping
927843ea4 test/metrics: simplify oom test, add debug
64fdfbcaa build(deps): bump github.com/opencontainers/image-spec
15a586215 build(deps): bump github.com/opencontainers/runtime-spec
f30ef84ad build(deps): bump github.com/onsi/gomega from 1.27.8 to 1.27.10
ecd7f9a3e cri: implement RuntimeConfig rpc
2463fdf78 vendor: update Kubernetes to v1.28.0-beta.0
edc5ece7b build(deps): bump github.com/containers/podman/v4
ef1653c8e internal/config/seccomp: Sync call signature of (*Config).Setup
67b43c4b5 internal/config/cgmgr: add non-linux stubs
1dffd7e71 internal/config/node: add non-linux stubs
ecb372986 internal/config/device: add non-linux stubs
10168b534 internal/config/nsmgr: add non-linux stubs
8edfbfd45 internal/config/capabilities: add non-linux stubs
2bd7fcbd8 internal/config/apparmor: add non-linux stubs
da69490d0 oci: update unit tests for new stop code
be5bac87b oci: simplify stopping code
7371b1e77 oci: don't return ErrContainerStopped from StopContainer
c0e34644c build(deps): bump github.com/containers/buildah from 1.31.0 to 1.31.1
41b13e28d Fix ImageRef field for containers to default to an image ID
930f49889 runc: 1.1.7 -> 1.1.8
b563cd728 Add Adobe to ADOPTERS.md
3bc609eb1 build(deps): bump sigs.k8s.io/release-sdk from 0.10.2 to 0.10.3
4e0f88970 build(deps): bump github.com/opencontainers/runc from 1.1.7 to 1.1.8
e6af91f6a oci: change IsAlive to Living
320671ed2 devices: fill the FileMode field in spec
126bd4ca9 build(deps): bump crate-ci/typos from 1.16.0 to 1.16.1
b79391fe1 Update bats to v1.10.0
5e86a5261 build(deps): bump github.com/go-chi/chi/v5 from 5.0.8 to 5.0.10
92e1d1910 Bump vendored Podman to v4.6-rc2
a3d229acf internal/factory/container: get CDI devices from CRI field.
21181672b Add Debian 12 as a supported OS to the install doc
b7c826d38 build(deps): bump github.com/containers/common from 0.55.1 to 0.55.2
151572a56 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
c0c7ce5ae Add OpenSSF best practices badge in favor of CII
0d92db47e build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0
70e5b76ca build(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2
79859a9d9 build(deps): bump crate-ci/typos from 1.15.10 to 1.16.0
7ebe2f614 Update vendored Kubernetes to v1.28.0-alpha.4
c28303fad container_test: fix "AddCapabilities ALL" test case
e176397c8 vendor: drop podman replace and update runc
eff07b834 Run irqbalance tests in serial within the actual suite
059dce220 build(deps): bump crate-ci/typos from 1.15.9 to 1.15.10
d43833d61 Bump bats in ci jobs to latest release
66ac754c7 build(deps): bump github.com/containers/buildah from 1.30.0 to 1.31.0
59952bf00 build(deps): bump github.com/containers/common from 0.54.0 to 0.55.1
ff3bb58db build(deps): bump crate-ci/typos from 1.15.7 to 1.15.9
4fe0b8164 build(deps): bump github.com/containers/image/v5 from 5.26.0 to 5.26.1
cb51739b1 server: use platform struct to set OS details
bac73aa42 Pre-check request values on container creation
5a85cfc95 Remove non existent Debian builds from install instructions
73cf5597a test: fix make mockgen test failure
dfdd2acde vendor: update release-sdk to v0.10.2
abcf50239 build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.1
9c78a1e23 vendor: update containers/storage to v1.48.0
87b126342 build(deps): bump github.com/intel/goresctrl from 0.3.0 to 0.4.0
8a9d4ef17 vendor: update containers/common to v0.54.0
cb247caf5 build(deps): bump github.com/containers/image/v5 from 5.25.0 to 5.26.0
ad3dd698b build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0
b8bb276a0 build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
0882a1dcb build(deps): bump crate-ci/typos from 1.15.6 to 1.15.7
6b9e49d3b Try to find `CONTAINER_CNI_PLUGIN_DIR` by binary lookup
40bbe8218 vendor: fix vendoring issue
f6317807c typos: add WRONLY to the list of extend-ignore-re
6a10113c7 build(deps): bump crate-ci/typos from 1.14.12 to 1.15.6
1062a4cd3 build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0
91d6bd38b vendor: bump github.com/onsi/ginkgo/v2 to 2.11.0
7f66c1428 build(deps): bump cachix/install-nix-action from 21 to 22
d0526337e vendor: bump github.com/urfave/cli/v2 to 2.25.7
7a2b9a220 vendor: bump golang.org/x/sync to 0.3.0
ba0751938 vendor: bump golang.org/x/net to 0.11.0
9f0680cde vendor: bump github.com/prometheus/client_golang to 1.16.0
67a132dc6 runtime handler hooks: run default hook when container stops gracefully
49d9efe8b vendor: bump github.com/stretchr/testify to 1.8.4
001733570 vendor: bump github.com/sigstore/rekor to 1.2.1
d274dd121 Use a variable to manage the version of kata used for testing.
4a7d0857b Update supported version and variable guide for adding repository
0534d7eff governance: tweak voting behavior
bfc7cf55a Use kata 3.0 for testing
db4b8eaab kata tests: Enabling more than one test file for kata tests.
0f08aeb6f kata tests: Update list of skipped tests for the ctr.bats file
4310e3342 Modify ansible files to re-enable kata tests
8224bd8a5 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
f84eb7874 Move reload watcher into `Server`
e3b7406b9 Update golangci-lint and config
159aaf6c6 utils: make this package build on non-linux platforms
c088d69aa fix function name in comment
c702bb78a build(deps): bump DavidAnson/markdownlint-cli2-action from 10 to 11
098fbebf7 Add a test for log linking
5620764ae linklogs: add support for symlinking container directory
5d7ecfe4b Add support for linking pods logs
a7d314bea build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
e614bc756 server: ensure pod labels are present
d84cc85c5 build(deps): bump github.com/BurntSushi/toml from 1.3.1 to 1.3.2
72b735603 OCPBUGS-14750: Pod termination must succeed when a hook fails
98c43d537 Add OSFF scorecard action
85c7e712e main: Added a call to GarbageCollect
ccb91bc8a docs: fix eol test
08f7c0776 build(deps): bump github.com/onsi/gomega from 1.27.7 to 1.27.8
f2feb7c6f Use staging k8s.io/kubelet/cri/streaming package
72011b3c4 Add support for namespaced signature policies
3939fba97 Apply markdown linting, cleanup docs and fix broken links #6890
96e6aed74 Apply markdown linting on the tutorials folder #6890
2ead2413a Apply markdown linting on the contrib folder #6890
5d7b64018 Add markdown linter action #6890
d58f408f5 test: fix timeout metric test
5f74e7994 build(deps): bump github.com/BurntSushi/toml from 1.3.0 to 1.3.1
c87b11115 server: do not take lock to populate pid in container status and inspect
28b34889a build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
b373909cf build(deps): bump github.com/containerd/containerd from 1.7.1 to 1.7.2
d456a11ef crio: deprecate config migration
259e7980c metrics: add metric for resource stalled at stage
85a4ba091 build(deps): bump crate-ci/typos from 1.14.11 to 1.14.12
75aacdb04 Drop support for path based seccomp profiles
e18e2e90a test/helpers: rm useless code
b7d1c2e61 test/helpers: use cli to set container dirs
459372c24 test: adapt for sched_load_balance disable after stop
6da8e46b1 runtime handler hooks: add DefaultCPULoadBalanceHooks
23b9179f9 server: call hooks and NRI in stopContainer
e1c68ea2a Update `README.md` version table
56ac8ac79 crio: remove DefaultsPath config feature
b2a20a418 server: call hooks on infra container creation
2efd04aa4 high perf hooks: workaround libcontainer quirk when disabling cpu quota
9ec701691 cgmgr: export CrioPrefix and use containerCgroupPath more
775690b1e build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7
cf7e0946e tests/timeout: skip for conmon-rs
c1c431836 ci/gha: add space-at-eol check, fix existing ones
0a35354c4 build(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0
65792546b ci: bump shellcheck to 0.9.0
6b2f35e2c test: fix a few cases of SC2086
d6b793c46 contrib/kube-local/kube-local: rm unreachable code
b6014826c test/copyimg: use log.Fatalf
587e3d595 test/*.bats: rm useless echo "$output"
bdb765635 test: rm explicit $status checks
933e33c1c test: simplify assigning IDs
22978429a test/status.bats: simplify exit code checks
ff7bc1b52 test: simplify non-zero exit status checks
0bf509d35 test/cdi.bats: rm run_cmd, use run
21e5dcebe test/nri.bats: fix checking exit code
2fab13028 test/README.md: fix wrong bats example
9c2fcb3bd test/*bats: drop fail()
84ee0c931 Fix using ! in bats tests
045c026da test/timeout: fix "dup ctr" test
1da9bf5f7 ci: require bats 1.9.0
c5a1c1b1e test: separate var setting and img preload
7b9e5201b ci: bump bats to 1.9.0
9ad33da53 build(deps): bump github.com/containers/podman/v4 from 4.5.0 to 4.5.1
2604665cc Update nix and nixpkgs
792a5d0ad test: limit number of parallel jobs
1cc1958de test/cgroup: fix for cgroupfs
aa86e94f0 ci/gha: fix double caching
47c13e037 [FEAT] Add new parameter disable_hostport_mapping in CRI-O
df7df847d build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
f7f085f6f Makefile: Remove GOPATH references
1eeaad851 build(deps): bump cachix/install-nix-action from 20 to 21
7cc3e206c build(deps): bump github.com/onsi/gomega from 1.27.6 to 1.27.7
3b5c9f115 build(deps): bump crate-ci/typos from 1.14.10 to 1.14.11
7003312b0 OCPNODE-1286: Add a CI job to run cri-o e2e tests by enabling the evented pleg feature
47958dc0b Update crun to v1.8.5
9b6a4cff7 Wrap CRI errors on image pull
defdf1c9e build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
6a3ee4e6b docs: update cri-o podman doc and remove stale information
7ed2cfc7f deps: bump runc to 1.1.7
f59c1f72a sandbox: Handle PodLinuxOverhead and PodLinuxResources CRI fields
f5e58c0ea build(deps): bump crate-ci/typos from 1.14.9 to 1.14.10
1009668bb build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
42e0f7fac go.{mod,sum}, vendor: update NRI.
d97ac8a10 contrib/test: reenable Statefulset Basic tests
3761965f8 contrib/test: re-enable block volmod tests
003edc26c high perf hooks: disable CPU quota with libcontainer as a pre start hook
a875ef486 test: add test for cpu-quota.crio.io
e1c3cf960 Check and fix typos in CI
fa57ffd3e *: switch to go-chi/chi mux
6330b1d5f build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3
786109a6e build(deps): bump github.com/containerd/containerd from 1.7.0 to 1.7.1
ecc712850 Support image policy verification error
ccaef6a7d build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
484870532 build(deps): bump sigs.k8s.io/release-utils from 0.7.3 to 0.7.4
3480e9efa Fix GitHub action `bundles` test
937ed8cf6 - Convert status cli as a subcommand of crio - Moved commands to the internal criocli package and used them in the crio and crio-status binaries - Adding the status subcommands directly to the binary
a247c52d9 pkg/config: update the description for templateStringCrioImagePinnedImages
4fadec5f1 internal/storge: fix CompileRegexpsForPinnedImages test case
5e751fda3 vendor: fix vendoring
5ecc82e6f contrib/metrics-explorer: fix nested modules
640624ec9 Update CNI plugins to v1.3.0
9fc177ed4 build(deps): bump golang.org/x/net in /contrib/metrics-exporter
8b230dec7 clients connected to container event stream now receive the same data
3fd71bdc9 vendor: fix CI due to incosistent vendoring
20fd7770e fix kubectl version in bug report template
21b47b11c *: update sandbox/pause image to 3.9
edbd4890f internal/storage: add sandbox/pause image to the list of pinned_images
b0531365f build(deps): bump github.com/containernetworking/plugins
22ad8957b Changes to build binaries for ppc64le architecture.
32ec246ba Update README.md and associated files
f10ea341d build(deps): bump golang.org/x/net from 0.9.0 to 0.10.0
c9bb988d1 *: fix warnings related to gosec
0e65290c4 .github/worflows: add go vulnerability management check for cri-o
f9abf50c9 pkg/config: reload pinned_images when the new config is provided
bbe9a7a2c *: add support for pinned_images in crio configuration
dfcf222c3 refactoring vars
386509caf Use native crierrors package for registry unavailable
a90d00103 build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
16ab25339 Vendor latest Kubernetes master
6a095aef7 build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0
5c064914f build(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0
639b6dddf OWNERS: add sohankunkerkar to cri-o-reviewers
4477a804b tests: add a fake pinns call to delay things and cause the timeout
6fa761497 tests: use crictl binary directly when checking its capabilities
1ff3303df cni: configure cgroupPath capability arg
e52e63a41 vendor: bump ocicni to tip
914763fb1 Remove vendor specific changes
08cd56fc9 Migrate image registry to registry.k8s.io
3311658af build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus
02fe074f2 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4
0b8a2c068 build(deps): bump github.com/sigstore/rekor from 1.1.0 to 1.1.1
660b63bd7 cgmgr: set sched_load_balance to disabled on sandbox cgroup
5a1707e4c test/pod.bats: update to current setup
f83a4faba cgmgr: create cgroups for systemd cgroup driver for dropped infra pods
f21e178f8 build(deps): bump github.com/prometheus/client_golang
bf23f5c01 Support `RegistryUnavailable` type
e80464e07 Update generated docs
ed9c419e7 OWNERS: allow cri-o reviewers to approve dependabot PRs
58c101634 build(deps): bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3
a4fc119af .github/workflows: remove auto-approve workflow
a0009cb25 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
541b6563d Extend cpu-c-states.crio.io annotation to add max latency
2417374a6 build(deps): bump k8s.io/klog/v2 from 2.90.1 to 2.100.1
249c340d3 contrib/test/ci: fix the bin folder location for cri-tools
cf30845e7 #6833 user ns: Fix segfault while constructing id mappings
38774e14a Use ImageRef instead of ImageName for restore
1f224d1e0 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
7c6676f02 contrib/test/ci/build: use `force:yes` while linking crictl/critest
c9cc1529f .github/workflows: fix the github_token field
a1c09ad99 .github/workflows: fix the token field
30ddd6d89 Fix events generated by Evented PLEG
b8d8ff14b Update c/common to v0.53.0
b34038f8f build(deps): bump actions/setup-go from 3 to 4
4c828dc48 build(deps): bump github.com/opencontainers/runtime-spec
928d5d49c build(deps): bump github.com/prometheus/client_golang
e806005d6 test/network: skip flaky test running on a node with cgroupv2
e914f0e15 test: combined oom test to avoid CI flake
d5048e7ff test/seccomp: fix the syscall
473ee6b73 contrib/test/ci: remove duplicate code
a1c6ae7e4 test/*: consolidate images used for integration tests
25fb4fa76 build(deps): bump github.com/Microsoft/go-winio from 0.6.0 to 0.6.1
a950c837d Download more dependencies instead of vendoring
839bd1203 build(deps): bump github.com/containers/conmon-rs from 0.5.0 to 0.5.1
edbe9c27e build(deps): bump github.com/go-logr/logr from 1.2.3 to 1.2.4
e53dcc003 Stop vendoring release notes tool
1c26776cb .github/workflows: auto approve dependabot PRs
e967a178c user ns: fix segfault when host id mapping is empty
19c0b4d7b server: fix failing tests
edf6a88a9 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1
7a612bc4b Allow restoring of containers with different names
86b36ee6e build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2
6da5b1272 build(deps): bump actions/stale from 7 to 8
1c1cfb92a Fix Flannel PodCIDR in kubeadm tutorial
bac3a79b6 adding support for configmap namespace
603f176a0 Add debug to identify when a relabel was not requested
f9fa10915 Update tutorials/debugging.md
75c8b181b Added documentation to force the Go garbage collector for CRI-O
11f5c4326 Remove remnants of CONTAINER_MANAGE_NS_LIFECYCLE
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13fe43d1e1 |
containerd: update to 1.7.5
Bumping containerd to version v1.7.5-8-g86dc86e62, which comprises the following commits:
ed4bac11e Blockfile: Enlighten blockfile copy on Darwin
4d1cfbbdd Revert "log: define G() as a function instead of a variable"
a34e93241 make repositories of install dependencies configurable
b449440a4 CRI: Support Linux usernames for !linux platforms
503ab21bf go.mod: github.com/containerd/continuity v0.4.2
93b23eb10 Prepare release notes for v1.7.5
fb1292c8d Bump version to v1.7.4
7a0cae3ca [release/1.7] Prepare release notes for v1.7.4
537d7526e integration: issue7496 case should work for runc.v2 only
0f4885c16 Add configurable mount options to overlay
8804a27d7 feat: make overlay sync removal configurable
5add172be Vagrantfile: add strace tool
207e28f36 integration: add ShouldRetryShutdown case based on #7496
b4f480fb3 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode
88ff575c5 pkg/cri/server: fix leaked shim issue
9f61dfb7c integration: add case to reproduce #7496
2a9ae3c51 log: swap logrus functions with their equivalent on default logger
01445bb73 log: add package documentation and summary of package's purpose
932795f45 log: make Fields type a generic map[string]any
707ca94d8 log: add log.Entry type
0a79e67e4 log: define OutputFormat type
dbbe28b7d log: define G() as a function instead of a variable
93b6cb784 log: add all log-levels that are accepted
e8e086e02 log: group "enum" consts and touch-up docs
7aa4f8fdc log: WithLogger: remove redundant intermediate var
bfdce4ce4 log: SetFormat: include returns in switch
6621e0888 log: remove testify dependency
df76aaede removes/docker: remove unnecessary conversion (unconvert)
1c2dd5198 Remove temporary replace
2bf6bd143 vendor: update github.com/containerd/continuity
30a163086 snapshots|pkg: umount without DETACH and nosync after umount
c9eebe3d1 mount: support direct-io for loopback device
1c2977db0 Modify loopback size
cf9c78d2d snapshots/blockfile: fix lint issue
b823b4f54 snapshots/blockfile: deflaky the testsuite
6daeceb11 snapshots/blockfile: use passed in dst in scratchGenerator
99b61aee3 snapshots/blockfile: use loop if options is empty
fd39769ac Add mount options to blockfile snapshotter
8d732c6c2 Add sync before unmount on snapshotter layer test
8472a407e Add blockfile snapshotter to snapshotters doc
6740d77ca Add blockfile as a builtin
07cc24b32 Add blockfile snapshotter
32e3b76ee Add diffservice to contrib
661e505c8 Add proxy differ
af79c07fd update runc binary to v1.1.9
c0b1c8f74 fix ci Linux Integration test fail
4e97a115f cri: Don't use rel path for image volumes
34a5d0330 fix: allow attaching to any combination of stdin/stdout/stderr
c5e7b84c0 update to go1.20.7, go1.19.12
2eaeb3205 Fix ro mount option being passed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dae8061c08 |
conmon: update to 2.1.8
Bumping conmon to version v2.1.3-87-g6d88cb3, which comprises the following commits:
6d88cb3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.12.0
00e08f4 bump to v2.1.8
57d5e7f fix(deps): update module github.com/containers/storage to v1.48.0
adc748c cli: log parsing errors to stderr
b0bdc23 Update nix and use an overlay
04cf7ba chore(deps): update dependency containers/automation_images to v20230809
ccdae54 gh actions: bump to go 1.21
4e61870 gh actions: drop perma-failing jobs
730d92c fix(deps): update module github.com/onsi/ginkgo/v2 to v2.11.0
73ab92e Changes to build conmon for `riscv64`
53b3691 stdio: ignore EIO for terminals
77ce312 refactor: handle a broken pipe with write_sync_fd
fa67ce6 ensure console socket buffers are properly sized
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
48b63ed575 |
buildah: update to 1.31.3
Bumping buildah to version v1.31.1-23-g0926e05c3, which comprises the following commits:
f449589dd [release-1.31] Bump to v1.31.4-dev
3ae75d4a4 [release-1.31] Bump to v1.31.3
68fa52ca5 [release-1.31] Bump c/common 0.55.4, c/image 5.26.2, c/storage 1.48.1
140f028d6 rpm: spdx compatible license field
20b479ec4 RPM: fix buildtags
d1e3a7bf3 [release-1.31] Bump to v1.31.3-dev
d4d1d7513 [release-1.31] Bump to v1.31.2
4d9260cc3 [release-1.31] Bump to v1.31.2-dev
800b1549b [release-1.31] Bump to v1.31.1
0a63bc63d [release-1.31] Remove zstd:chunked from man, bump c/common to v0.55.3
98f684ff3 [CI:BUILD] Packit: add fedora-eln targets
708c07761 [CI:BUILD] RPM: build docs with vendored go-md2man
68fa9389a packit: Build PRs into default packit COPRs
95e1dfb3d [CI:BUILD] Packit: remove pre-sync action
806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
22989818f3 |
runc-docker: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
606fe98a98 |
runc-opencontainers: update to 1.9.0
Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits:
11737f55 VERSION: back to development
ccaecfcb VERSION: release 1.1.9
f44190e0 libct/intelrdt: check if available iff configured
6cf9ac15 libct/intelrdt: skip remove unless configured
4796f49c libct/intelrdt: elide parsing mountinfo
6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo
7c83dbe6 libct/intelrdt: delete IsMBAScEnabled()
5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager
69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager
dfdc7d07 libct/intelrdt: explain why mountinfo is required
5ba1b8ec libct/intelrdt: faster init if rdt is unsupported
a5407b9a libct/intelrdt: remove findMountpointDir test
dc8d0cc1 libct/intelrdt: wrap Root in sync.Once
929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage
bdbfe042 ci: bump golangci-lint, remove fixed exception
d398ad2a gha: disable setup-go cache for golangci job
5888c55d ci/gha: rm actions/cache from validate/deps job
a47c15b4 build(deps): bump actions/setup-go from 3 to 4
44a53f08 ci: fix TestOpenat2 when no systemd is used
cff41a89 ci: fix TestNilResources when systemd not available
37405ca0 Fix running tests under Docker/Podman and cgroup v2
1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x
ac310917 ci/cirrus: improve host_info
ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19
bb2401ee [1.1] ci/cirrus: use Go 1.20
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Kai Kang
|
64c7c56236 |
k3s: not compatible with mips
k3s depends on 'virtual-containerd' provided by containerd-opencontainers which is not compatible with mips. So set COMPATIBLE_HOST for k3s that not compatible with mips to align with containerd-opencontainers. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
33a437dc42 |
docker-compose: not compatible with mips
docker-compose rdepends on docker which is not compatible with mips. So set COMPATIBLE_HOST for docker-compose accordingly. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
113af45b75 |
lxcfs: add systemd to REQUIRED_DISTRO_FEATURES
lxcfs requires systemd, so we add it to the feature check. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Changqing Li
|
8f25bfcbae |
oci-image-tools: don't build for riscv64
Currently oci-image-tools has a do_compile error for riscv64. The
problem could be reproduced by:
MACHINE=qemuriscv64 bitbake oci-image-tools
So explicitly set COMPATIBLE_HOST here to avoid it building for riscv64.
When someone interested in using this recipe for riscv64 fixes the
compile issue, this setting could be removed.
Also don't build packagegroup-container/packagegroup-kubernetes since
they depends on oci-image-tools
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Patrick Wicki
|
dbffe9f4c2 |
netavark: skip plugins in ptest
Skip the plugin tests that were introduced in 1.6.0 and lead to ptest failure. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Patrick Wicki
|
898d0e9c3b |
netavark: require iputils for ptest
Fixes ptest not working on systems using busybox ping. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
08435d20b1 |
recipes/classes/scripts: Drop SRCPV usage
bitbake has been enhanced such that SRCPV is no longer needed in PV to handle updating git hashes and task signatures. We can simplify our PV by dropping SRCPV Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a03c4f5845 |
podman: introduce README for testing/configuration
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7bd56074fe |
docker-compose: drop python variant
The python variant of docker-compose is no longer updated. We have the golang version, so we drop this recipe to avoid use of an obselete and potentially non-secure application. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
78f1c22f61 |
skopeo: update to 1.13.1
Bumping skopeo to version v1.13.1-4-g416218f5, which comprises the following commits:
882b087b Packit: remove pre-sync action
3162e17e [release-1.13] Bump to v1.13.2-dev
8ace37a4 [release-1.13] Bump to v1.13.1
cac20311 [release-1.13] Bump c/common to v0.55.2
d5b1f34e [release-1.13 backport] [CI:BUILD] Packit: install golist before updating downstream spec
85d99af2 [release-1.13] Bump to v1.13.1-dev
8b9999e1 Bump to v1.13.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dddc423fa3 |
runc-docker: update to 1.1.8
Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits:
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
7c36375a Update github actions packages in validate workflow
1fa89476 VERSION: back to development
82f18fe0 VERSION: release 1.1.8
ef6491ec tests/int/delete: make sure runc delete removes failed unit
ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN"
1188c5a1 runc delete: call systemd's reset-failed
71e76007 libct/cg/sd: remove logging from resetFailedUnit
3a4b3af6 tests/int/cgroups: remove useless/wrong setting
6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed.
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ea3b6a8398 |
runc-opencontainers: update to 1.1.8
Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits:
aaed58c8 add a test case about missing stricky bit
3d3a2b38 fix some file mode bits missing when doing mount syscall
7c36375a Update github actions packages in validate workflow
1fa89476 VERSION: back to development
82f18fe0 VERSION: release 1.1.8
ef6491ec tests/int/delete: make sure runc delete removes failed unit
ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN"
1188c5a1 runc delete: call systemd's reset-failed
71e76007 libct/cg/sd: remove logging from resetFailedUnit
3a4b3af6 tests/int/cgroups: remove useless/wrong setting
6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed.
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5d01102077 |
podman-tui: update to v0.9.1
Bumping podman-tui to version v0.9.1, which comprises the following commits:
d77db5fd bump to 0.9.1
ad29f4fa Container create error fix when selecting a volume
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ba6e5e9db1 |
podman: update to 4.6.0
Bumping libpod to version v4.6.0-14-g2215847e6, which comprises the following commits:
f05f00717 do not redefine gobuild for eln
45fd917fa [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
8ee1f1197 [v4.6] [CI:BUILD] RPM: separate out gvproxy for copr and fedora >= 38
5831bd68b System tests: add test tags
954177e7e API: kill: return 409 on invalid state
e4e983e7a Mention TimeoutStartSec in quadlet man page
d68ee576e If quadlets have same name, only use first
94431182b Bump to v4.6.1-dev
38e6fab96 Bump to v4.6.0
8aec5997e Update release notes for v4.6.0
09b1da382 Ensure that we appropriately warn that TCP is insecure
0115a4800 CI: remove build without cgo task
598ebe8a1 libpod: use io.Writer vs io.WriteCloser for attach streams
574b78291 top: do not depend on ps(1) in container
255111269 api: fix doc for default ps_args
34274ce15 Add more tests for liveness probes with default hostname & named ports
48deafc64 Fix TCP probes when the optional host field is not given
6817e0ae3 Add support for using port names in Kubernetes health probes
5445bd6f0 [CI:DOCS] fix command incorrect in windows
50195c244 [CI:DOCS] Reformat and reorder table with --userns options
924bc7055 [CI:DOCS] Better document the default value of --userns
e4c38e719 Add missing return after utils.InternalServerError()
7a4bd4c95 Fix markdown in docs for podman-network-create
7cbe41212 Fix multiple filter options logic for `podman volume ls `
5ea019419 Should be checking tmpfs versus type not source
b4859d283 Use constants for mount types
39b7ac99d Fix `podman container prune` docs for `--filter`
7ba306ec6 docs: podman-build --network add slirp and pasta
c810420c8 docs: podman run --network mention comma separted names
2c970dd01 network create: document --internal better
5106b7a38 pkg/specgen: fix support for --rootfs on FreeBSD
41f809e3e systests: quadlet: fixes for RHEL8
061841c0c Fix windows installer
8f05405db Podmansh: Better error, increase timeout to 30s
2b683a400 Emergency gating-test fixes for RHEL8
d0dee61e7 Packit: remove pre-sync action
70e30a2be [CI:DOCS] Update RELEASE_NOTES.md with Makefile change
b8ef289e3 Bump to v4.6.0-dev
bfe2e0fca Bump to v4.6.0-rc2
145748d1f Makefile: `package` -> `rpm`
be21bc082 Update release notes
8fffcf4d6 system tests: refactor registry code
624bb8350 machine start: qemu: wait for SSH readiness
732a02c57 machine start: qemu: adjust backoffs
afe48ba36 auto update: fix usage of --authfile
24439cdd2 [CI:BUILD] Packit: downstream task action fix
7b3d47c3b Fix container errors not being sent via pod removal API
9d0470f12 netavark: macvlan networks keep custom nameservers
5583358f6 add hostname to network alias
2aea98cab libpod: set cid network alias in setupContainer()
d0b0c6285 Fix: cgroup is not set: internal libpod error after os reboot
258135221 test/e2e: wait for socket
a3a62854f api: fix slow version endpoint
28e92b9de manifest inspect: support authentication
e354514dc libpod: don't make a broken symlink for /etc/mtab on FreeBSD
c81a00101 make --syslog errors non fatal
edc51d9ff Fixes typo in the path where quadlet looks for files
a673bb23e [CI:DOCS] uidmap man pages: fix corrupt italics
dd7dbb826 [CI:DOCS] podman-system-service.1.md: document systemd usage
a312553fc Use bytes size consistently instead of human size
2ef2a671e bugfix: do not try to parse empty ranges
662cca7cc pkg/specgen: properly identify image OS on FreeBSD
cf5c4c9ee [CI:DOCS] Document support of pod security context IDs
c8cfcc253 pkg/specgen: add support for 'podman run --init' on FreeBSD
fc8f229bd Remove 'inspecting object' from inspect errors
ee6329374 Fix readonly=false failure
a3598ff61 pkg/specgen: Add support for Linux emulation on FreeBSD
e30197e6f Fix up podmansh man page
47e6ce19c Pass in correct cwd value for hooks exe
f654f7cc7 specgen: honor --device-cgroup-rule with a new user namespace
fcf673d5d specgen, rootless: raise error with --device-cgroup-rule
f70189991 make image listing more resilient
62fc35c07 Trim whitespace from unit files while parsing
ed5618759 play.go: remove volumes on down -f
04897ee64 Vendor c/common v0.55.2
ff71df0e8 system service: unset listen fds on tcp
6960a8183 [CI:DOCS] [Release Notes]: add static routes
e4cf2afbc [CI:DOCS] tag podmansh as tech preview in RELEASE_NOTES.md
c422072b6 [CI:DOCS] uidmap man pages: fix corrupt tables
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5bc9a9fc2f |
netavark: update to 1.7.0
Bumping netavark to version v1.7.0-49-gab03eec, which comprises the following commits:
067bbde fix(deps): update rust crate serde to 1.0.180
0ae529b fix(deps): update rust crate serde_json to 1.0.104
e155cbf fix(deps): update rust crate serde to 1.0.179
e64a5a9 fix(deps): update rust crate serde to 1.0.176
6f5dc41 fix(deps): update rust crate clap to 4.3.19
074de60 fix(deps): update rust crate serde to 1.0.175
2a2d066 fix(deps): update rust crate clap to 4.3.17
cb49b4f fix(deps): update rust crate clap to 4.3.15
69c802a fix(deps): update rust crate clap to 4.3.12
c627b76 fix(deps): update rust crate serde_json to 1.0.103
747384d [CI:BUILD] Packit: remove pre-sync action
64d55ee fix(deps): update rust crate serde_json to 1.0.102
cc1d2aa fix(deps): update rust crate nispor to 1.2.12
c227eed macvlan: use netlink type for bclim
f92a065 bump netlink deps
ba31874 fix(deps): update rust crate serde to 1.0.171
355ad29 fix(deps): update rust crate serde to 1.0.167
91665d4 fix(deps): update rust crate clap to 4.3.11
dd3a221 fix(deps): update rust crate serde to 1.0.166
0eb2033 fix(deps): update rust crate serde_json to 1.0.100
1340988 iptables: improve error when ip6?tables commands are missing
6f56308 fix(deps): update rust crate clap to 4.3.10
e7518b2 fix(deps): update rust crate zbus to 3.14.1
3455012 [CI:BUILD] RPM: Fix ELN build and cleanup spec
1691f8c bump to v1.8.0-dev
158e11b release v1.7.0
6ba1f8a Update release notes for v1.7.0
15af075 fix(deps): update rust crate tokio to 1.29
6e06b7d netavark: make --config required for dns
816d73d fix(deps): update rust crate serde_json to 1.0.99
14d4c54 fix(deps): update rust crate clap to 4.3.8
c5784bc [CI:BUILD] Packit: add Fedora downstream tasks
d2d3092 run cargo update
da6ee1f fix(deps): update rust crate serde_json to 1.0.97
0d62a35 fix(deps): update rust crate sha2 to 0.10.7
77b09a7 fix(deps): update rust crate clap to 4.3.4
68080c7 chore(deps): update dependency containers/automation_images to v20230614
0e976f1 fix(deps): update rust crate clap to 4.3.3
175c095 fix(deps): update rust crate log to 0.4.19
23c48d8 aardvark: fix missleading dns disabled log
d31c157 firewall: add NETAVARK_ISOLATION_3 chain for strict isolation
bb690f9 docs: fix link to getting started
ca147fb fix(deps): update rust crate serde to 1.0.164
871096c netlink: fix incorrect info log for del_route
72aa0dd dhcp-proxy: apply new ip address/gateway
2a17957 test-dhcp: fix broekn has_ip() check
44b5a28 dhcp-proxy: actually implement renewing leases
1a5f674 dhcp-proxy: simplify code
f7e950b dhcp-proxy: drop macaddr dependency
827bdd9 dhcp-proxy: remove some unused traits
5b2662e fix(deps): update rust crate zbus to 3.13.1
8fd57c7 fix(deps): update rust crate clap to 4.3.2
7000903 chore(deps): update rust crate once_cell to 1.18.0
e495d0b fix(deps): update rust crate url to 2.4.0
3a2c8e5 fix(deps): update rust crate clap to 4.3.1
3fcbfab chore(deps): update dependency containers/automation_images to v20230601
be0e01e chore(deps): update rust crate chrono to 0.4.26
3bdb499 chore(deps): update rust crate chrono to 0.4.25
f9dce04 fix(deps): update rust crate log to 0.4.18
8db90d8 chore(deps): update rust crate once_cell to 1.17.2
e4e78f0 macvlan: add bclim option
3d3563b parse_option(): return option instead of default
e0ae9bc add no_default_gateway option
d39db0b fix(deps): update rust crate clap to 4.3.0
ba0cb46 chore(deps): update dependency containers/automation_images to v20230517
62b35fd fix(deps): update rust crate serde to 1.0.163
416853b Add ability to add static route
d2ef6cc fix(deps): update rust crate serde to 1.0.162
9e0e186 Cirrus: Update fedora name to match image
11626fc fix(deps): update rust crate clap to 4.2.7
e6ee988 chore(deps): update dependency containers/automation_images to v20230426
85dde17 correct typo in Makefile
8418f9b simplify path printing
65ff4f1 fix(deps): update rust crate tokio to 1.28
690fa8d aardvark-dns pid: return better errors
394789f fix comment in Subnet definition
2362e82 aardvark: no error when aardvark config is not there
5d41c71 fix(deps): update rust crate zbus to 3.12.0
bdf84b8 fix(deps): update rust crate clap to 4.2.4
fced2f1 fix(deps): update rust crate clap to 4.2.2
6aeabc0 fix(deps): update rust crate serde_json to 1.0.96
f0d5cc8 update clap to v4
be0e133 fix(deps): update rust crate serde to 1.0.160
173d7ac bump to v1.7.0-dev
2f01092 v1.6.0 release
1d2d150 Update release notes for v1.6.0
e1b0aa9 dhcp-proxy: fix typo for --activity-timeout
f125bf0 chore(deps): update dependency containers/automation_images to v20230405
8b4c678 dhcp-proxy: use better error when connection fails
c4a216d add documentation for netavark plugins
3ad293d add stderr example plugin to test stderr passthrough
cee4d9f add netavark plugin driver
b2ffb90 add example error plugin
bc35cdd add host-device example plugin
ab8156d plugin: add simple plugin interface
092b9a3 netlink: add dump_addresses
cc1730e netlink: add set_link_ns
14a5205 dhcp-proxy: correctly exit > 0 on errors
24698f1 fix(deps): update rust crate tonic to 0.9
50b0fbb fix(deps): update rust crate mozim to 0.2.2
a5eba62 fix(deps): update rust crate serde to 1.0.159
dd0034c fix(deps): update rust crate netlink-sys to 0.8.5
40695e6 dhcp-proxy: create socket directory only when used
fe9ca67 dhcp-proxy: do not remove socket when running under systemd
dca3d53 Makefile: netavark-dhcp-proxy.service use correct path
71d128a fix(deps): update rust crate http to 0.2.9
5d85d4e chore(deps): update rust crate once_cell to 1.17.1
08d163e fix(deps): update rust-futures monorepo to 0.3.28
0370986 fix(deps): update rust crate serde_json to 1.0.95
2d7cb2a chore(deps): update dependency containers/automation_images to v20230330
9fd64cf Disable Dependabot in favor of Renovate
5ed1430 chore(deps): update rust crate chrono to 0.4.24
3f3a73e build(deps): bump ipnet from 2.7.1 to 2.7.2
1b8d361 build(deps): bump serde from 1.0.158 to 1.0.159
a3d7d79 build(deps): bump serde_json from 1.0.94 to 1.0.95
4f0dcc0 update,main: dont write empty space when no network_dns_servers is given
9532644 fix(deps): update rust crate tokio to 1.27
5ea45b7 Quit Leasing when Client disconnects
b2aeb6c build(deps): bump mozim from 0.2.1 to 0.2.2
f36ff11 iptables: fix incorrect debug statement
cdf27dc build(deps): bump serde from 1.0.156 to 1.0.158
8a1975a iptables: port fw handle wildcard address correctly
ab6c621 chore(deps): update dependency containers/automation_images to v20230320
2f38b17 build(deps): bump zbus from 3.11.0 to 3.11.1
99142bf build(deps): bump anyhow from 1.0.69 to 1.0.70
e42393c [CI:BUILD] Packit: trigger builds on commit to main branch
c30f461 Cirrus: Invalidate v2 bin cache
28c63f2 Include Systemd Files in RPM Package
8ec9d4b Cirrus: Fix success failing on artifact extraction
95c6fc4 fix lint issue with new rust version 1.68
d84e415 Cirrus: Update to newer CI VM images
c637b1a build(deps): bump serde from 1.0.152 to 1.0.156
ca27aa6 combine dhcp-proxy and netavark into one binary
cecef1e update: should allow empty network_dns_servers
07dfcae build(deps): bump libc from 0.2.139 to 0.2.140
bf22c29 fix aarch64 ncat flake
98f18b8 update to mozim 0.2.1
64bb7f0 build(deps): bump zbus from 3.10.0 to 3.11.0
4199dc0 packit: Update build release tag correctly
de88f04 test: move proto option into run_nc_test()
91f3bfb test: add netns pid param to port checks
eea98ee test: import podman code to check for ports
9d070c8 cirrus.yaml: add new binaries in art_prep_script
bca5370 fix netavark-dhcp-proxy binary in system unit
31b4bb4 import netavark-proxy-dhcp tests
c599b2e add build_proxy_client target
c76e257 add netavark-dhcp-proxy to rpm
a8cff4d Fix dhcp-proxy build
8dc8c96 Merge nv-dhcp-proxy into nv
3a365ed fix default route metric test name
ad222b7 build(deps): bump tokio from 1.25.0 to 1.26.0
c505c58 Support none parameter on NETAVARK_FW
2272042 build(deps): bump anyhow from 1.0.68 to 1.0.69
2798f06 Fix typos
88a2a7a update netlink-packet-{route,core} to 0.15 and 0.5
216f6f6 build(deps): bump serde_json from 1.0.92 to 1.0.93
bbbec75 build(deps): bump zbus from 3.8.0 to 3.10.0
70d6f33 [CI:BUILD] Packit: initial enablement
065243d Allow custom cargo binary path
5ce550d build(deps): bump serde_json from 1.0.91 to 1.0.92
781b84e Cirrus: Reduce requested CPUs for compile-tasks
9deb91b bump to version 1.0.6-dev
dbdeb9a v1.0.5 release
43c9bf2 release notes updates for v1.0.5
97f91f0 build(deps): bump netlink-sys from 0.8.3 to 0.8.4
b8fae87 build(deps): bump tokio from 1.24.1 to 1.25.0
3919e0f build(deps): bump zbus from 3.7.0 to 3.8.0
f688710 Switch to explicit platform list for `cargo vendor-filterer`
67b7da4 Add renovate.json5
c02fb16 Convert a few words to more inclusive
102b81c build(deps): bump nix from 0.26.1 to 0.26.2
60c08e9 Minor: Add script remote re-use comment.
dae850f Cirrus: Fix two minor typos.
c361afa Cirrus: Improve caching effectiveness
f11a8fc Fix UDS path
823e69b build(deps): bump ipnet from 2.7.0 to 2.7.1
c55b1b3 build(deps): bump tokio from 1.23.0 to 1.24.1
e7c41c8 build(deps): bump zbus from 3.6.2 to 3.7.0
d690d35 build(deps): bump serde from 1.0.151 to 1.0.152
5a19903 build(deps): bump libc from 0.2.138 to 0.2.139
040f3d6 add ipvlan support
058be67 fix lint issues for rust 1.66
2524e56 update CI images
8055fb4 build(deps): bump serde_json from 1.0.89 to 1.0.91
f80f417 Add ability for MacVLAN dhcp
a810489 build(deps): bump serde from 1.0.150 to 1.0.151
53c6774 build(deps): bump anyhow from 1.0.66 to 1.0.68
bcb52af CI: install mandown for validate
97e90a3 fix make docs
3eee824 build(deps): bump serde from 1.0.149 to 1.0.150
820d538 build(deps): bump sysctl from 0.5.2 to 0.5.4
753c3de build(deps): bump ipnet from 2.6.0 to 2.7.0
bd1bf8b build(deps): bump zbus from 3.6.1 to 3.6.2
a3f90ec build(deps): bump ipnet from 2.5.1 to 2.6.0
3a1ff24 lock: stop using yanked 0.8.13 crossbeam-utils
75b440c Cirrus: Add backup to aardvark-binary artifact DL
a03b7b1 Bump to v1.4.1-dev
c2a4b9a Release v1.4.0
0e3268b Update release notes for v1.4.0
011f899 release,make: add rule crate-publish for publishing crates.io
302828f main: Pass config_dir as `&str`
bb4c73d [skip-ci] GHA/Cirrus-cron: Fix execution order
d957601 build(deps): bump serde from 1.0.148 to 1.0.149
cece3d6 build(deps): bump nix from 0.25.0 to 0.26.1
354450f build(deps): bump libc from 0.2.137 to 0.2.138
8c1a071 build(deps): bump zbus from 3.5.0 to 3.6.1
7563db2 remove verify_vendor CI task
15894f3 chrono: use from_timestamp_opt
0c61f05 update: add support for netavark update command
2f0b025 Add nspath to commands
64d762f build(deps): bump serde from 1.0.147 to 1.0.148
d27588c build(deps): bump env_logger from 0.9.3 to 0.10.0
46f9f59 aardvark, netavark: support network scoped dns via network_dns_servers
c9cbc6a build(deps): bump serde_json from 1.0.88 to 1.0.89
84b9078 Drop now unneeded futures dep
c858e2f Make use of zbus::blocking wrappers
84a0ddd Port to zbus 3.5
a3c8156 Drop direct zvariant dep
03cb6a5 remove number of .clone() calls
581352c build(deps): bump serde_json from 1.0.87 to 1.0.88
9dad47a fix iptables teardown
d7d88da fix rust doc comments
effd448 GHA: Add cirrus-cron rerun job
ada06b4 fix new lint issues reported with rust 1.65
2af0d9f update CI images
f5d114d Correct dev version
34f1488 Bump to v1.3.0-dev
6df8139 Release v1.3.0
53a7b00 v1.3.0 Release notes
832098f run cargo update
d36af04 build(deps): bump ipnet from 2.5.0 to 2.5.1
e383f8d build(deps): bump env_logger from 0.9.1 to 0.9.3
0cc2556 macvlan modes: use upstream consts
e6d09ff macvlan: remove tmp interface when name already used in netns
0789f44 Add support for route metrics
52b1b08 Drop indirect dependency on time 0.1
72c42b6 netlink: return better error if ipv6 is disabled
980d68a macvlan: fix name collision on hostns
3c03dce build(deps): bump libc from 0.2.136 to 0.2.137
99459c1 build(deps): bump clap from 3.2.22 to 3.2.23
8247f46 Ignore dns-enabled for macvlan
bd18cb1 build(deps): bump libc from 0.2.135 to 0.2.136
3f7e75e build(deps): bump serde_json from 1.0.86 to 1.0.87
b65a35b build(deps): bump serde from 1.0.145 to 1.0.147
885f657 netlink: check sequence_number
795fa47 build(deps): bump anyhow from 1.0.65 to 1.0.66
61181e5 tests: add test for verifying multiple custom dns severs
95c982b tests: unskip exisiting test for custom dns server
698627b build(deps): bump futures from 0.3.24 to 0.3.25
6e04f79 netlink: improve error message on invalid netlink result
3aac0a0 NetworkOptions::load(): do not open /dev/stdin
f07cc04 use cargo-vendor-filterer to create vendor tarball
d89f4bd teardown: handle errors better
c9de5d0 error: remove unused equal code
c11c5f8 fix broken build
f6e0258 netavark ,aardvark: accept and populate custom dns_servers for containers
59be422 netlink: add del_{addr,route} calls
6646be4 error: NetavarkError use Into<String> Trait
0417eb8 netlink: add basic unit tests
454ebb3 bridge: do not set gateway for internal network
c017bfe README.md: remove latest release section
652d233 build(deps): bump libc from 0.2.134 to 0.2.135
3166b7b build(deps): bump serde from 1.0.144 to 1.0.145
ca5f4f6 build(deps): bump serde_json from 1.0.85 to 1.0.86
7c93f79 Do not use ipv6 autoconf #2
36a20bf fix test issues in podman
0fb6ddc improve error messages
96993f4 netlink: use low level sync api
4881651 add simple script to measure the netavark perfomance
4294bf6 Do not use ipv6 autoconf
0805420 build(deps): bump tokio from 1.21.1 to 1.21.2
060c6a6 Make build date reproducible
08c3152 Cirrus: Use images w/ fixed-in-time rust + clippy
3d4fe6b build(deps): bump libc from 0.2.133 to 0.2.134
7ab86f6 build(deps): bump clap from 3.2.8 to 3.2.22
cbc0a31 Bumping to v1.2.0-dev
90cccc1 Release v1.2.0
We also refresh one patch, and add protobuf-c as a build depenency
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4ecc9488d1 |
lxcfs: update to 5.0.4 and convert to meson
This is a large update to lxcfs, that includes a move to meson as the build backend. We drop a couple of uneeded patches, and add a new meson specific one as the detection of pid_* functions is failing. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
6b10588476 |
lxc: update to 5.0.3
Bumping lxc to version lxc-5.0.3, which comprises the following commits:
cb8e38aca Release LXC 5.0.3
85d3f4b1d github: Update for main branch
d195603e3 CONTRIBUTING: add a note on AI generated code
54227bdb1 get_hierarchy: dont WARN about no usable controller
be7efff35 github: Add DCO/target tests
8751cd208 explicitly convert *mainloop_handler to __u64
c16bb5b71 tests: fix parse_config_file seccomp test
95ef57c73 src/tests: Fix container creation errors
30c79f8a7 rename functions which clash with libsystemd's
3801a6a3d mainloop: io_uring: disable IORING_POLL_ADD_MULTI
fba0ae071 terminal: make a terminal FDs non-blocking
1af412d2f file_utils: add fd_make_nonblocking helper
eaaf041f6 file_utils: rename fd_make_nonblocking to fd_make_blocking
d05fb8a45 setproctitle(): Handle potential NULL return from strrchr()
709d42691 make setproctitle()'s /proc/pid/stat parsing safe
b183d437b console-log test: make sure container is stopped before restarting
d638d5951 tree-wide: convert fcntl(FD_CLOEXEC) to SOCK_CLOEXEC
c12c0acb0 Allow fuse mounts in apparmor start-container.
c93418d98 Add support for squashfs images in oci via atomfs
3754e803f apparmor: don't try to mmap empty files
706ee25cd initutils: use PRIu64 for uint64_t in setproctitle
3cdd5078c lxc-net.in: fix nftables syntax for IPv6 NAT
97bf62247 Fix strlcat's return value checks
7c81572af Fix typo: bev_type -> bdev_type
727adc052 drop broken lxc-test-fuzzers
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
06e6947fc9 |
docker-distribution: update to 2.8.2
Bumping docker-distribution to version v2.8.2-2-g8728c52e, which comprises the following commits:
ab7178cc Pass BUILDTAGS argument to go build
a173a9c6 Add v2.8.2 release notes
483ad69d registry/errors: Parse http forbidden as denied
2b0f84df Revert "registry/client: set Accept: identity header when getting layers"
5f3ca1b2 Add release notes for 2.8.2-beta.2 release
e884644f Dockerfile: fix filenames of artifacts
ac6c72b2 Add 2.8.2-beta.1 release notes
ae58bde9 Fix gofmt warnings
3f2a4e24 update to go1.19.9
9c04409f [release/2.8] ignore deprecation of io/ioutil
3d8f3cc4 Dockerfile: update xx to v1.2.1
70db3a46 bump up golang version
db1389e0 dockerfiles: formatting
018472de dockerfiles: set ALPINE_VERSION
19b3feb5 Update to xx 1.1.1
14bd72bc Dockerfile: switch to xx
2392893b bump up golang v1.17
092a2197 [release/2.8] fix package name in Dockerfile
22a80503 fix(ci): use go install instead of go get
1d52366d Merge pull request #2815 from bainsy88/issue_2814
521ea3d9 Fix runaway allocation on /v2/_catalog
ad5991de Fix panic in inmemory driver
38018aeb Fix CVE-2022-28391 by bumping alpine from 3.15 to 3.16
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3fe898899f |
crun: update to v1.8.6
Bumping crun to version 1.8.6-11-gd7ee549, which comprises the following commits:
c786d4c linux: simplify error handling
c972772 linux: do not write twice errors
74a3874 linux: use helper functions instead of custom read/write
35a0166 linux: define helper to ack on the sync socket
c3e518e libcrun: drop symbol for crun_make_error
080e560 features: use exported function libcrun_make_error
5c2dedc Make the spec file parseable without copr_username defined
73f759f NEWS: tag 1.8.6
26ef1e0 linux: add sync before sending mounts
71c53b0 RPM: Set Epoch only for Copr builds
ee0e405 tests: install procps-ng for podman tests
6a3d7a7 Packit: initial enablement
58bb52c tests: fix cpu-weight-systemd test under a user manager
ee111ae tests: skip test_uid_tty if no tty is attached
74dd5f9 tests: use get_crun_path() in oci_features
b160e2c cgroup-resources: allow setting swap to 0
19cd8aa ps: fix segfault with pids=NULL
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
08f58c3181 |
cri-tools: update to v1.27.1
Bumping cri-tools to version v1.26.0-279-gdd51f3b7, which comprises the following commits:
16975aba Make `haircommander` an approver
e3cc516b override path defaults for FreeBSD
f8f05611 Use `UserSpecifiedImage` for seccomp tests
a4110ef6 Bump github.com/onsi/gomega from 1.27.9 to 1.27.10
2cffae40 Bump github.com/docker/docker
2d4e6c27 Bump github.com/onsi/gomega from 1.27.8 to 1.27.9
4a84e5a3 Bump github.com/opencontainers/runc from 1.1.7 to 1.1.8
28bbd92a Switch to logrus in favor of glog
edf8fd39 Update version in README
dafc2b62 Add `crictl runtime-config` command
01952e78 Use google/uuid
183c8fa3 Fix release notes job
cf42ba9f Drop support for docker log format
c1e6f2eb Bump Kubernetes to v1.28.0-alpha.4
fc7c11ed Bump github.com/docker/docker
fcb21b99 Revert "fix listCoontainerStats not filter"
ffb1ef1e Bump github.com/docker/docker
505d5ce7 Bump Kubernetes to v1.27.3
49cf12cb Bump golang.org/x/net from 0.11.0 to 0.12.0
0aa3049e Bump golang.org/x/sys from 0.9.0 to 0.10.0
e6438103 fix listCoontainerStats not filter
2ee62a09 Typo fix in critest
5b6b7180 Format print output in imagefsinfo cmd
b432bc8d Bump github.com/onsi/ginkgo/v2 from 2.10.0 to 2.11.0
d901bb43 Bump github.com/urfave/cli/v2 from 2.25.6 to 2.25.7
acc3f298 Bump golang.org/x/net from 0.10.0 to 0.11.0
5feab035 Bump github.com/urfave/cli/v2 from 2.25.5 to 2.25.6
90b22c75 Bump golang.org/x/term from 0.8.0 to 0.9.0
0b7c24b5 Bump google-github-actions/setup-gcloud from 0 to 1
5c28a488 Bump actions/upload-artifact from 1 to 3
c3a28fe2 add dependabot config to update github actions
806c66f9 update actions using node12
5e9d1f5d Add image build test to GitHub actions
b80b9bde Bump github.com/onsi/gomega from 1.27.7 to 1.27.8
8e03fbd3 Bump github.com/onsi/ginkgo/v2 from 2.9.7 to 2.10.0
a8ca78a0 Pin `FROM` images to tags
bde07883 Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3
5fd98895 Migrate to field based seccomp tests
5d362aa6 Bump github.com/onsi/ginkgo/v2 from 2.9.6 to 2.9.7
32ba4251 added testing on 1.7
b7e85c71 Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.6
4714253b Update critest from 1.17 to 1.27
88a2b60b Bump github.com/urfave/cli/v2 from 2.25.3 to 2.25.5
63e39e26 Bump github.com/docker/docker
2c0f354e Bump github.com/docker/docker
aeea5099 Update the incorrect link to release page in crictl.md
ea559418 Bump github.com/onsi/gomega from 1.27.6 to 1.27.7
7ed308a3 Bump github.com/sirupsen/logrus from 1.9.1 to 1.9.2
f0bf767c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
791ffcd5df |
cri-o: update to 1.27.1
Bumping cri-o to version v1.27.1-7-gab7845e07, which comprises the following commits:
fbfca3a52 oci: update unit tests for new stop code
6dec88e7c oci: simplify stopping code
5b7b82f56 oci: don't return ErrContainerStopped from StopContainer
0e4df2e9c oci: change IsAlive to Living
92b455156 devices: fill the FileMode field in spec
e54504a00 version: bump to 1.27.1
a61082768 vendor: drop podman replace and actually update runc
9c86a1269 vendor: bump runc to 1.1.6
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c82deadd3b |
containerd: update to 1.7.2
Bumping containerd to version v1.7.3-2-g98e8e05b6, which comprises the following commits:
2eaeb3205 Fix ro mount option being passed
4cb2f1515 [release/1.7] Add release notes for v1.7.3
b461ecacf cri: memory.memsw.limit_in_bytes: no such file or directory
14328ae03 migrate to community owned bucket
b985f7ef1 update runc binary to v1.1.8
f7a20e17c Move logrus setup code to log package
7353c0286 ctr: update WritePidFile to use atomicfile
ae7021300 shim: WritePidFile & WriteAddress use atomicfile
186eb64b7 cri: write generated CNI config atomically on Unix
64c3dcd8e atomicfile: new package for atomic file writes
083f57160 capture desc variable in range variable just in case that it run in parallel mode
a9440ce6b Use t.TempDir instead of os.MkdirTemp
eea3440d8 use strings.Cut instead of strings.Split for parsing imageConfig.User
eace67180 fix userstr for dditionalGids on Linux
973778193 Update Go to 1.20.6,1.19.11
60a6db9c2 Cirrus CI: configure apt-get to wait for locks
6b6b0c828 bugfix(port-forward): Correctly handle known errors
898eca21e Change http.Header copy to builtin Clone
fa2efc406 Resolve docker.NewResolver race condition
241514815 pkg/cri/server: Test net.ipv4.ping_group_range works with userns
801e8c806 pkg/cri/server: Fix net.ipv4.ping_group_range with userns
d5639a5a8 vendor: github.com/containerd/zfs v1.1.0
403033e52 update go to go1.20.5, go1.19.10
15d65709e ci: remove libseccomp-dev installation for nightly
a08ae718c [release/1.7] go.mod: Update cgroups to 3.0.2
c2c54af9d Update ginkgo to match cri-tools' version
6281d46df seccomp: always allow name_to_handle_at
3bf3996d9 integration/client: add timeout to `TestShimOOMScore`
699d6701a Pinned image support
18c6503d9 runtime/v2/runc: handle early exits w/o big locks
dafbeb5b1 No more nondistributable layers in MS registry
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7867b58ca2 |
conmon: update to 2.1.7
Bumping conmon to version v2.1.3-74-g75f8ceb, which comprises the following commits:
fa67ce6 ensure console socket buffers are properly sized
2902909 Remove lgtm badge
2832e4f chore(deps): update dependency containers/automation_images to v20230614
7a7c893 log fds more permissive
c26648e Fix close_other_fds on FreeBSD
ebc6717 chore(deps): update dependency containers/automation_images to v20230601
8225789 chore(deps): update dependency containers/automation_images to v20230517
dcee6fb Update nixos image and dependencies' version.
e907fdc Changes to build conmon for ppc64le
5510eb0 fix compile regression on FreeBSD
be144a1 chore(deps): update dependency containers/automation_images to v20230426
3fcc1d2 Packit: update config
676e86d ctrl: fix a debug statement
b7aa7b1 [skip-ci] Update actions/setup-go action to v4
d8bf969 [skip-ci] Update actions/checkout action to v3
53debe6 [skip-ci] Update actions/cache action to v3
758ff5a vendor: bump to latest packages
44448e7 fix(deps): update module github.com/containers/libpod to v4
95ecbf5 chore(deps): update dependency containers/automation_images to v20230405
3b447bc conmon: drop return after pexit()
d637b73 ctrl: make accept4 failures fatal
cbc7c40 cmsg: recvfd returns an error on failures
0251765 cmsg: fix program name
5fcb8da ctrl: on EINTR retry accept4
08c34bd Add renovate configuration
9a3af8f logging: avoid opening /dev/null for each write
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
63dd08bf86 |
buildah: update to 1.31.1
Bumping buildah to version v1.31.1-3-g0cc7680cc, which comprises the following commits:
806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream
a3056cacd [release-1.31] Bump c/common
d0de60bbf Bump 1.31.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c08591fd7d |
aardvark-dns: update to v1.7.0
Bumping aardvark-dns to version v1.7.0, which comprises the following commits:
d27d3b3 release v1.7.0
b6a270b Update release notes for v1.7.0
099f5d4 fix(deps): update rust crate tokio to 1.29.0
47219ee fix(deps): update rust crate clap to 4.3.8
1648525 fix(deps): update rust crate clap to 4.3.5
5d9add2 run cargo update
03fc574 [CI:BUILD] Packit: add Fedora downstream tasks
ed141a4 fix(deps): update rust crate clap to 4.3.4
4facdac chore(deps): update dependency containers/automation_images to v20230614
ffdfd7b fix(deps): update rust crate clap to 4.3.3
7d9827a fix(deps): update rust crate log to 0.4.19
ebd84ca fix(deps): update rust crate clap to 4.3.2
bdf07b1 fix(deps): update rust crate clap to 4.3.1
93a0f4f cirrus: remove verify_vendor task
90038b0 chore(deps): update dependency containers/automation_images to v20230601
8709a43 fix(deps): update rust crate trust-dns-server to 0.22.1
f22fc51 chore(deps): update rust crate chrono to 0.4.26
2163d08 fix(deps): update rust crate tokio to 1.28.2
d7b61ec fix(deps): update rust crate log to 0.4.18
fde8e1a chore(deps): update rust crate chrono to 0.4.25
a0ac881 fix(deps): update rust crate clap to 4.3.0
d298585 chore(deps): update dependency containers/automation_images to v20230517
4c29222 fix(deps): update rust crate tokio to 1.28.1
3358de3 chore(deps): update dependency containers/automation_images to v20230426
c4deaf8 fix(deps): update rust crate clap to 4.2.7
4dd6a17 fix(deps): update rust crate anyhow to 1.0.71
140846f fix typo in makefile
8cd804a fix(deps): update rust crate tokio to 1.28.0
15db510 fix(deps): update rust crate clap to 4.2.5
e322d2c fix(deps): update rust crate syslog to ^6.1.0
f591500 fix(deps): update rust crate clap to 4.2.4
7961a9b fix(deps): update rust crate clap to 4.2.3
e6ce1a5 fix(deps): update rust crate clap to v4
40bcf9e chore(deps): update dependency containers/automation_images to v20230405
c09d67b bump to v1.7.0-dev
fb411dd v1.6.0 release
619c232 Update release notes for v1.6.0
63bdcac fix(deps): update rust crate tokio to 1.27.0
f587536 use lower TTL for contianer entries
234e75b fix(deps): update rust crate syslog to ^6.0.1
21d7555 fix(deps): update rust crate futures-util to 0.3.28
3067fd0 chore(deps): update dependency containers/automation_images to v20230330
4fb8f35 Disable Dependabot in favor of Renovate
bf19047 chore(deps): update dependency containers/automation_images to v20230320
302b099 build(deps): bump futures-util from 0.3.26 to 0.3.27
35c5bab [CI:BUILD] Packit: trigger builds on commit to main branch
075e095 build(deps): bump anyhow from 1.0.68 to 1.0.70
cc81866 fix lint issue with new rust version 1.68
3555692 Cirrus: Update to newer CI VM images
65d68c8 build(deps): bump chrono from 0.4.23 to 0.4.24
abb9cf7 build(deps): bump libc from 0.2.139 to 0.2.140
dec9b98 build(deps): bump async-broadcast from 0.5.0 to 0.5.1
de81a25 build(deps): bump signal-hook from 0.3.14 to 0.3.15
d41f573 build(deps): bump futures-util from 0.3.25 to 0.3.26
5438208 build(deps): bump tokio from 1.25.0 to 1.26.0
dfea9a8 [CI:DOCS] Clarify packit related comments
62737ec [CI:BUILD] Packit: initial enablement
ff56126 Allow custom cargo binary path
0049b88 Switch to explicit platform list for `cargo vendor-filterer`
c30a24d bump to v1.6.0-dev
65480f4 v1.5.0 release
24350c4 update release notes for v1.0.5
997ab9a build(deps): bump nix from 0.26.1 to 0.26.2
8ff094a build(deps): bump tokio from 1.24.2 to 1.25.0
4769592 Add renovate.json5
938e1bb build(deps): bump tokio from 1.24.1 to 1.24.2
8f72cb9 Cirrus: Groom rust cache before updating
0763020 add code of conduct
36224d6 cargo: bump trust-dns-client and trust-dns-proto to 0.22
81def17 Cirrus: Add backup to netavark-binary artifact DL
ce45624 build(deps): bump tokio from 1.23.0 to 1.24.1
ef56659 build(deps): bump async-broadcast from 0.4.1 to 0.5.0
7425f56 build(deps): bump libc from 0.2.138 to 0.2.139
6f294d7 fix lint issues with rust 1.66
af49056 update CI images
860bd4c build(deps): bump tokio from 1.21.2 to 1.23.0
0431acc build(deps): bump anyhow from 1.0.66 to 1.0.68
6d22d42 Bump to v1.4.1-dev
65b9804 Release v1.4.0
bc265b0 Update release notes for v1.4.0
e632528 release,make: add rule crate-publish for publishing crates.io
563c2d7 silly pr to fix ci
33ceb7e [skip-ci] GHA/Cirrus-cron: Fix execution order
89b85bf build(deps): bump libc from 0.2.137 to 0.2.138
614d9df build(deps): bump nix from 0.25.0 to 0.26.1
01a9f18 config,coredns: add support for network scoped dns servers
26a3ae8 fix new lint issues with rust 1.65
3eace77 update CI images
bb0b151 GHA: Add cirrus-cron auto-rerun job
1c3798f build: stop using deprecated from_timestamp
34b2e76 cargo: bump chrono to 0.4.23
142af2c Fix dev version
87e26bd Bump to v1.3.0-dev
9254bb9 v1.3.0 Release
046f3cb v1.3 Release notes
36208f3 use cargo-vendor-filterer to create vendor tarball
612da2f build(deps): bump anyhow from 1.0.65 to 1.0.66
a5e4104 build(deps): bump libc from 0.2.136 to 0.2.137
e6dc1b4 build(deps): bump clap from 3.2.22 to 3.2.23
619a398 build(deps): bump libc from 0.2.135 to 0.2.136
d3cc7e0 test,helpers: refactor create_config to accept named args
c541311 cirrus,setup: show netavark binary being used by commit
044f425 aardvark-dns: add support for container's custom dns_servers
836d0bd build(deps): bump futures-util from 0.3.24 to 0.3.25
7c2774c Reduce tokio and futures-util features
d3b49a1 build(deps): bump libc from 0.2.134 to 0.2.135
496825e Cirrus: Update CI VM Images
096b1b7 build(deps): bump libc from 0.2.133 to 0.2.134
54bbab7 build(deps): bump tokio from 1.21.1 to 1.21.2
b417fee Bump to v1.2.0-dev
cb1a462 Release v1.2.0
b6d0679 backend,clippy: remove needless borrow from lookup logic
ad541ca Make build date reproducible
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Martin Jansa
|
81bd76bd18 |
nerdctl: fix installed-vs-shipped with usrmerge
* fixes: ERROR: nerdctl-v1.3.0-r0 do_package: QA Issue: nerdctl: Files/directories were installed but not shipped in any package: /bin /bin/nerdctl Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. nerdctl: 2 installed and not shipped files. [installed-vs-shipped] Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
884c0bbbc0 |
kubernetes: fix installed-vs-shipped with usrmerge
* fixes: ERROR: kubernetes-1_v1.27.1+git2555e0f90e80a13628f47eca5cde34decc89babb-r0 do_package: QA Issue: kubernetes: Files/directories were installed but not shipped in any package: /bin /bin/k8s-init Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. kubernetes: 2 installed and not shipped files. [installed-vs-shipped] Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
23373571e7 |
moby: update to v24.0.5
Bumping moby to version v24.0.5-20-g00e46f85f6, which comprises the following commits:
b7c5385b81 update to go1.20.7
6be708aa7d vendor: gotest.tools/v3 v3.5.0
b6568d2dd5 api/types/filters: fix errors not being matched by errors.Is()
02241b05fc update containerd binary to v1.7.3
3a6899c6fd update containerd binary to v1.7.2
7927cae910 c8d/container: Follow snapshot parents for size calculation
45ba926c6d daemon/list: Drop unused arg from containerReducer
6c4121a943 daemon/list: Refactor refreshImage
fcb68e55fa daemon/list: Replace ErrImageDoesNotExist check
3029f554cc c8d/readConfig: Translate c8d NotFound to errdefs
35a8b00b18 hack/integration: Add TEST_INTEGRATION_FAIL_FAST
fed26d5b3c vendor: github.com/moby/buildkit v0.11.7-dev
eede7f09c7 Remove Upstart scripts
907f838603 Remove Upstart and cgroups bits from Debian sysvinit script
f022632503 Dockerfile: update runc binary to v1.1.8
98a6422cbc c8d/inspect: Include platform Variant
aab94fb340 Dockerfile: update buildx to v0.11.2
1be48ec553 c8d: Make sure the content isn't removed while we export
ff0144de3b ci(buildkit): remove early-return from buildkit-ref
a936ae7e98 ci(buildkit): remove misleading code from buildkit-ref
4c29864b02 hack/with-go-mod.sh: warn on stderr
3c5c192baf c8d/resolveImage: Fix Digested and Named reference
572de8764e c8d/inspect: Don't duplicate digested ref
5dded3340c ci: extract buildkit version correctly with replace-d modules
bd1ae65aab quota: remove gotest.tools from testhelpers
544032f7a4 hack/d/cli.sh: properly handle errors in curl
0df2e1bdd8 Dockerfile: improve CLI/rootlesskit caching
05f82fdd00 Dockerfile(.simple): align APT_MIRROR support
151686a5c8 Makefile: pass through APT_MIRROR
31567e0973 Dockerfile: use default apt mirrors
d94f2dcab2 client: Client.postHijacked: use Client.buildRequest
bff68bf2cc client: Client.setupHijackConn: explicitly ignore errors
8bdf6d1baf ci(bin-image): add SHA-based tags
26a457e7a3 ci(bin-image): fix meta step
b9904ba319 ci(bin-image): fix typo
e7c333cb6e ci(bin-image): don't set tags when pushing by digest
fcb87e8ae1 ci: push bin image to Docker Hub
68c0cec772 Disable tls when launching dockerd through hack/make.sh
738d8417e0 libnet: Return a 403 when overlay network isn't allowed
a5c0fda157 libnet: Return proper error when overlay network can't be created
deea880581 pkg/jsonmessage: use string-literals for easier grep'ing
962a4f434f pkg/ioutils: use string-literals for easier grep'ing
cea5829402 pkg/idtools: use string-literals for easier grep'ing
69d77bc150 opts: use string-literals for easier grep'ing
ff667ed932 integration: use string-literals for easier grep'ing
efe9e90ef5 libnetwork: use string-literals for easier grep'ing
2d2df4376b daemon/cluster: use string-literals for easier grep'ing
ae8e3294dd client: use string-literals for easier grep'ing
892857179a cli/debug: use string-literals for easier grep'ing
147b87a03e daemon: use string-literals for easier grep'ing
a3f1f4eeb0 integration-cli: use string-literals for easier grep'ing
5bba60b1bb builder/builder-next: use string-literals for easier grep'ing
632fc235d6 builder/dockerfile: use string-literals for easier grep'ing
75a90f85ad gha: add note about buildkit using older go version
fa909dfaf4 update go to go1.20.6
bdaadec788 testutil: use dummyhost for non-tcp connections
547ea18fbb pkg/plugins: use a dummy hostname for local connections
597a5f9794 client: define a "dummy" hostname to use for local connections
fee4db80a0 client: TestSetHostHeader: don't use un-keyed literals
959889efd9 integration: Don't env cleanup before parallel subtests
6c5144d3e5 Add t.Helper() to the cli test helper functions
9ff2c3918c ci(buildkit): match moby go version for buildkit tests
a4b1a5aef4 vendor: github.com/moby/buildkit@v0.11 0a0807e
6c7f6c2d47 daemon/containerd: fix assignment to entry in nil map during commit
0e88c57c47 integration: disable iptables in parallel tests
a3049653c1 pkg/plugins: make unit test less time sensitive
d3893b58ff daemon: daemon.prepareMountPoints(): fix panic if mount is not a volume
5892aae60f docs: api v1.28 - v1.40: add missing "force" query arg on plugin disable
7adb590e16 docs: api v1.41: add missing "force" query arg on plugin disable
b5aacf8161 docs: api v1.42: add missing "force" query arg on plugin disable
b732cfd392 docs: api v1.43: add missing "force" query arg on plugin disable
50fb65f0f5 docs: api: amend changelog for API 1.28 for "force" option
32bcbdfe65 api: swagger: add missing "force" query arg on plugin disable
f66ef31605 docs: api v1.41: remove outdated information from ServerVersion
acb95e4544 docs: api v1.42: remove outdated information from ServerVersion
335ed29345 docs: api v1.43: remove outdated information from ServerVersion
0ef846ce2e api: remove outdated information from ServerVersion
af25852baa docs: api v1.42: remove "ClusterStore" and "ClusterAdvertise" fields
7a9c831e6a docs: api v1.43: remove "ClusterStore" and "ClusterAdvertise" fields
649bb2b9b8 api: remove "ClusterStore" and "ClusterAdvertise" fields
457399013b vendor: github.com/containerd/cgroups/v3 v3.0.2
016ad9b3e8 c8d/prune: Handle containers started from image id
87778af711 c8d/prune: Exclude dangling tag of the images used by containers
8bf037b246 c8d/softDelete: Deep copy Labels
8afe75ffa9 c8d/softDelete: Extract ensureDanglingImage
e2bade43e7 testutil/environment: Add GetTestDanglingImageId
e0091d6616 c8d: ImageService.softImageDelete: rename var that collided with import
42f3f7ed86 c8d: ImageService.softImageDelete: use OCI and containerd constants
aace62f6d3 pkg/fileutils: GetTotalUsedFds(): use fast-path for Kernel 6.2 and up
bb50485dfd pkg/fileutils: GetTotalUsedFds: reduce allocations
5dcea89ce1 pkg/fileutils: add BenchmarkGetTotalUsedFds
01eb4835c9 pkg/fileutils: GetTotalUsedFds(): don't pretend to support FreeBSD
cd44aba8db [24.0] pkg/fileutils: switch to use containerd log pkg
ee29fd944b gha: don't fail if no daemon.json is present
b8ee9a7829 c8d/images: handle images without manifests for default platform
d9e097e328 vendor: github.com/opencontainers/image-spec v1.1.0-rc3
806849eb62 seccomp: add name_to_handle_at to allowlist
c24c37bd8a Restore active mount counts on live-restore
c306276ab1 remove name_to_handle_at(2) from filtered syscalls
d5e31e03b6 gha: Setup Runner: add missing sudo
85ad299668 Dockerfile: make cli stages more resilient against unclean termination
e84365f967 Skip cache lookup for "FROM scratch" in containerd
96534f015d integration-cli: don't use pkg/homedir in test
6424ae830b Dockerfile: update buildx to v0.11.0
6055b07292 Fix missing Topology in NodeCSIInfo
2f379ecfd6 daemon: fix restoring container with missing task
136893e33b daemon: fix double-unlock in health check probe
290fc0440c daemon: fix panic on failed exec start
0556ba23a4 daemon: handleContainerExit(): use logrus.WithFields
35a29c7328 builder: pass host-gateway IP as worker label
210c4d6f4b daemon: ensure OCI options play nicely together
f50cb0c7bd daemon: stop setting container resources to zero
0a6a5a9140 daemon: modernize oci_linux_test.go
c92fd5220a c8d: mark stargz as requiring reference-counted mounts
5e48bbd14c contrib/busybox: Update to FRP-5007-g82accfc19
6776279896 daemon: registerName(): don't reserve name twice
7db3243e34 don't cancel container stop when cancelling context
aec7a80c6f c8d: Use reference counting while mounting a snapshot
5652c59647 testing: temporarily pin docker-py tests to use "bullseye"
aa47b29dbc vendor: github.com/moby/swarmkit/v2 v2.0.0-20230531205928-01bb7a41396b
Bumping libnetwork to version v0.7.0-dev.3-1874-g67e0588f, which comprises the following commits:
11eaf1f0 sync MAINTAINERS file with new moby maintainers
dbbf124d Clean up inDelete network atomically
Bumping docker-cli to version v24.0.5-6-gb74562d91, which comprises the following commits:
c0e376854 update to go1.20.7
1481c8ce9 vendor: gotest.tools/v3 v3.5.0
e97c76557 vendor: github.com/docker/docker v24.0.5
1ee40e2c7 configfile: Initialize nil AuthConfigs
3bd6d6902 Dockerfile: update buildx to v0.11.2
05bf7fbcc vendor: github.com/docker/docker v24.0.5-0.20230718221249-d4a26c153000
8b5023dd2 vendor: github.com/docker/docker v24.0.5-0.20230717072055-8443a06149b5
2a6348d1b Dockerfile: update buildx to v0.11.1
f4782b325 update go to go1.20.6
7d06f6b2f vendor: github.com/docker/docker v24.0.5-0.20230714235725-36e9e796c6fc
1447974b8 docs: rephrase section on credential stores for docker login
46293e97f Dockerfile: update to xx 1.2.1
bfe2ff820 cli/container: Don't ignore error when parsing volume spec
b40742962 vendor: github.com/docker/docker v24.0.4
79c42c0b9 vendor: golang.org/x/net v0.10.0
a96d0a526 vendor: golang.org/x/text v0.9.0
5c5c50d71 vendor: golang.org/x/term v0.8.0
4bf11b756 vendor: golang.org/x/sys v0.8.0
224c7dbec vendor: github.com/sirupsen/logrus v1.9.3
e25d5c64c vendor: github.com/opencontainers/image-spec v1.1.0-rc3
419e94df4 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230531205928-01bb7a41396b
2d5f041bd commandconn: return original error while closing
520e3600e commandconn: don't return error if command closed successfully
cd68c8f00 docker info: fix condition for printing debug information
a78fd6ca6 docs: update link location for the overlay driver
9cd335d44 docs: fix static ip example, network needs a subnet
d61e4fe87 docs: fix broken link
8e3a2942a cli/command/context: don't use pkg/homedir in test
c3ef1cead docs: update the runtime configuration section
44eebb8bc Dockerfile: update buildx to v0.11.0
7ecfa2e7f Dockerfile: update gotestsum to v1.10.0
f11f30909 update go to go1.20.5
3a6c11773 Dockerfile: update ALPINE_VERSION to 3.17
11af1189d docs: add "--detach-keys" example to docker run reference
f118c05e8 docs: move "--detach-keys" example to examples section
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ade1182494 |
docker-compose: switch branch to main
The upstream repoistory transitioned from master to main, and also deleted the v2 branch this recipe was using. Switch everything to main until (if?) new versioned branches appear. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Leonard Anderweit
|
23ce17f66c |
podman-compose: Add missing runtime dependency python-dotenv
Signed-off-by: Leonard Anderweit <l.anderweit@phytec.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
58ef402d44 |
skopeo: update to 1.13.0
Bumping skopeo to version v1.13.0, which comprises the following commits:
8b9999e1 Bump to v1.13.0
4de3a90f proxy: Policy verification of OCI Image before pulling
e9303879 Update module github.com/opencontainers/image-spec to v1.1.0-rc4
3d8d2128 Update module github.com/containers/common to v0.55.1
bfa04ea2 Update module github.com/containers/common to v0.54.0
1d5458fa Update module github.com/containers/image/v5 to v5.26.0
290a7630 [CI:BUILD] RPM: fix ELN builds
d72d53cc Update module github.com/containers/storage to v1.47.0
0297033e Packit: easier to read distro conditionals
03a19132 Update dependency golangci/golangci-lint to v1.53.3
c04ee48b Help Renovate manage the golangci-lint version
37a81ea7 Minor: Cleanup renovate configuration
e2174f17 Update dependency containers/automation_images to v20230614
ceeeb67e Update module golang.org/x/term to v0.9.0
411e9838 [CI:BUILD] Packit: add jobs for downstream Fedora package builds
deee28a9 Update module github.com/sirupsen/logrus to v1.9.3
574b2cc4 Update dependency containers/automation_images to v20230601
73e7618d Update golang.org/x/exp digest to 2e198f4
1c738806 Update github.com/containers/image/v5 digest to e14c1c5
2e07073c Update module github.com/stretchr/testify to v1.8.4
c06aa5c6 Update module github.com/stretchr/testify to v1.8.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
feb1d78952 |
crun: update to v1.8.5-tip
Bumping crun to version 1.8.5-40-g56d9d9a, which comprises the following commits:
19cd8aa ps: fix segfault with pids=NULL
d006733 features: add wasm annotation
935f4fe tests: add test for oci_features
366af73 src/*: implement features
21b1733 Makefile.am: update clang-format command
9e5a749 libcrun: report when status file not found
84a6599 libcrun: crun_path_exists distinguish ENOENT
ef224f9 docs: remove module.wasm.image/variant=compat annotation
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
1fc1b1935f |
podman-compse: update to v1.0.6
Bumping podman-compose to version v1.0.6, which comprises the following commits:
f6dbce3 version 1.0.6
dfb64d8 fix pylint
990f774 fix pylint
5e518c7 #648: check if sed exists to color logs
9046f7e #634: follow up
ef55067 add support for network priorities
ed2a6c0 Support network_mode: none
b4c0792 Add --remove-orphans on down command
e84451f Allow environment parameters without value
456370b Support build secrets
efe3714 Add support for the `group_add` property of a service.
c55a2f4 Fixes #657: Support act and developer-friendly environment
b8a7593 #154: timeout
bd29ddb #154: no -t for start
38219eb FIXES #154: handle stop_grace_period
08ffcf6 updating test_podman_compose_extends_w_file_subdir to use the correct image name
801faea Bump actions/setup-python from 2 to 4
06da966 Bump actions/checkout from 2 to 3
de3f607 Check for github actions updates weekly
db1861d pull: accept service names as positional arguments
9d5b255 Use top-level name property as project name if user doesn't set one explicitly
2d05c5c FIXES #534: add systemd unit label
3c46016 FIXES #534: add systemd unit label
5b9cfe5 implement services.*.build.tags
8d1a4d7 Implemented basic Bash shell completion
859f03c Add healthcheck.disable support
ae6be27 reformat
ccdb98c implement podman kill command
909d05e reformat
0cf98c7 reimplement the of pause and unpause commands
843b876 fix typo
1188463 fix Typo podman-composer in version command
10580db Add pause,unpause commands support
f7d335d #516: allow empty network
4a73ae8 FIXES #511: ipv6
f674ab8 #512: only use --net when bridge
265e0ca #512: only use --net when bridge
92662f3 FIXES #511: ipv6
42c0078 mac_address with dash
da5ee72 reformat
06fc071 reformat
9eda56c FIXES #507: respecte mac_address
13c8981 Fix help message for systemd subcommand
ee7029f reformat
75033a4 add python demo example
c175fd1 reformat
d479001 reference awesome-compose
a2defdd example wordpress
c55cd67 #307: default to /etc/
eed38ce Fixed accidental deletion of project functionality.
86ffad8 Added port subcommand.
118d39b Fix linter errors
814bd2a Support driver_opts for networks
606b9d9 Simplify var assignment
0057a4b Fix default external name in dict case
8ecb749 Update external volume name management
d983056 Update external volume name management
ed302ca Fix external volume name when no name provided
0b5c844 Add runtime error if no external volume exists
9c29c89 FIXES #486: replace realpath with abspath
89d2062 Fixed some spelling and grammar issues
f42b568 Correct the help text for --pod-args
a1d3ba4 Lint fixes for --services flag handling in config
6be661f Support platform property
fc3598f Allow --services in config
fbff315 FIXES #464: accept -v in run
fc34703 format
c7ada82 format
5e286f6 format
3dd8b05 format
3ecb4b5 FIXES #462: fix extends merge
d05cad4 FIXES #462: fix extends merge
ebb3dfe #452: better missing network message
7b99b38 nethost test
4ef8afc hit counter with redis cluster example
a1aed09 GCR hello app
2cacf9c add echo example
4064c84 add azure vote example
0dde95a update gitignore
1be41b4 do not merge command array
105c27c example nodejs project
f820594 use exec for wait
8a72321 FIXES #409: detect changes and recreate
5293919 FIXES #409: detect changes and recreate
48a19f1 print more help with systemd
a9faabb print more help with systemd
3fb2b98 print more help with systemd
b35b7e4 add systemd -a list
1a72e1e add systemd -a list
b620311 FIXES #449: accept int port
bf8004b systemd unit file
cadf046 fix pylint
8d8149c fix pylint
3dd9817 fix pylint
0b469e0 format
9e3020a FIXES #307: systemd command
fc9ed19 wait command
2d6bb52 FIXES #442: allow --no-pod or custom --pod-args
7942a09 FIXES #442: allow --no-pod or custom --pod-args
701311a FIXES #447: support --env-file
d704915 FIXES #447: support --env-file
3b7bf81 remove unused test
a735aa5 Fix inverted condition in merging arguments
b785095 Fix linter issues
7623180 Force black formatting
af10345 FIXES #440: absolute secret
2d1bcdd update readme
4f02567 add unit tests
0645212 add badge
b7c5609 pylint
4450835 pylint
5c33e4e pylint
cbd6f6b pylint cleanups
de1e59d fix some pylint
2f0ca9e add pytest ci
59c9a69 add pylint
b7eac1e pylint
0d47e47 activate test
c2d7b26 #434: handle unknown service
1e895c0 calc proper hash
132a22b #130: handle nested extend and normalize build context
0bde01d remove unused imports
91a579b Adding Test that the changes can build Image from build context of extended compose-file
56b8863 Fixing subdirectory from extends where extended service will build a Service from Dockerfile in an own subdirectory
5c3ec5f FIXES #431: support dns
779198b #379: no infra container
40cb6a7 log version
4fd9d86 #379: nothing shared in the pod to allow hostname
2a2c3a0 Fix timeout value data type
80e8527 #379: create a pod
d6e21dc FIXES #425: pass --requires
b9b2f83 FIXES #415: allow network_mode=slirp4netns
9af65ea adjust comment
3e6e268 test for logs
af6a306 fix syntax error without a new line
68f745f referenced unmerged pr #192 to bring colors into container logging
90dcfdb FIXES #420: document -t
ed8635a FIXES #422: Remove debug print
1d972ef Propagate all bind-type mount options
536925c FIXES #413: parse network_mode: container:container_name correctly
09c6cbe FIXES #408: preserve exit code
154a512 FIXES #386: make sure volumes are present in top level
523d215 #407: allow network_mode=service:mysrv
25494b5 Update README.md
19662c0 Fix healthcheck test type on replicas
4943e52 #395: make podman respect PODMAN_* in .env
4aa08cd FIXES #399: pass specific ip
15e0ab9 FIXES #397: support host network mode
f66861f #249: read COMPOSE_PROJECT_NAME env
af53b65 Simplify volume identification
890c584 Update README.md
0bd493f Allow empty default/error value in substitution
481c6d0 #394: config: multiple yaml
31df70b updated per maintainer review
df40051 removes version from CONTRIBUTING
21a716c added log back in
f00ac92 added config command
0433410 added args for version
0f9fe2b FiXES #393: missing arg when build as part of run
a1be5ce add fallback to get
56a4988 Add support for volume driver and options
377b552 Fix substitution for empty variables
c50599c FIXES #388: do not force build in run
4557279 #88: multiple aliases
7ad3775 FIXES #380: output to stderr
30051c2 Update README.md. Add link to podman dns plugin source
9e8e25c #378: down -v
2c60516 fix hostname in test
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2a4b72b3a2 |
podman: update to 4.6
Bumping libpod to version v4.6.0-rc1-6-g932b8a997, which comprises the following commits:
c422072b6 [CI:DOCS] uidmap man pages: fix corrupt tables
7680e5013 libpod: use new libcontainer BlockIO constructors
829b3e9b3 Bump to v4.6.0-dev
4d59a0f5c Bump to v4.6.0-rc1
e4a7923ca Bump to v4.6.1-dev
c756b24f4 Bump to v4.6.0
2e53a5083 Release notes for v4.6.0
727362bde Update Release Notes for v4.5.1
8f2b73b03 rootless: use default_rootless_network_cmd config
3bd4c6a10 tests: fix "Storing signatures" check
d5e8cc1d1 Fixes for vendoring Buildah
2203f2aa9 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
a306eb5f6 Do not use deprecated hook functions from c/common
bf36f1139 Bump c/storage to v1.48.0, c/image to v5.26.1, c/common to v0.55.1, buildah to v1.31.0
a64016e17 pasta: Remove some leftover code from pasta bats tests
6feb179f4 pasta: Fix pasta tests to work on hosts with multiple interfaces
9cc19b055 fix(command): ignore `--format` in `podman search --list-tags`
714c3fe72 Use /proc/self/gid_map as intended, not uid_map
d29e33650 podman machine start: fix ready service
1a1602b72 Makefile: don't rely on the non-standard -r flag for ln
db91ce788 cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
82a4b0816 cmd/podman/system: add API server support on FreeBSD
2f25372de pasta: Create /etc/hosts entries for pods using pasta networking
9555446d3 RPM: Fix koji and ELN issues
0749d685a Cirrus: Update operating branch
dde6bcbca system tests: add and use _prefetch
0ee19f08c pkg/api: BufferedResponseWriter flush correctly
d0505d6ba pkg/api: top return error to client
1398cbce8 container wait: support health states
b680daa2d [CI:DOCS] Fix example on PublishPort
811867249 container wait API: use string slice instead of state slice
64153ace0 podman wait: update man page
a699ed0eb StopContainer(): ignore one more conmon warning
bd69b151f run,create: modify `--env-merge` behavior for non-existent vars
614c962c2 use libnetwork/slirp4netns from c/common
180cf0cf1 update c/common to latest
d0af5df89 e2e: use parallel-safe /dev subdirectories
aeff58e0b [CI:BUILD] Help Renovate manage the golangci-lint version
00292ae1c systests: test instrumentation
63dfe842b compat API create/pull: fix error handling
d54541894 compat API push: fix error handling
26721b0a0 GetSafeIPAddress(): discourage its use
810c97bd8 libpod: write /etc/{hosts,resolv.conf} once
13db83a00 e2e: fix one of the many log flakes
bb932cc84 cmd, push: expose --compression-level
459248337 vendor: bump containers/common
f4c514bff compat API container create: handle platform parameter
04a1cdfa9 refactor(machine): remove hard code
ae6e39076 vendor in latests containers/common
81e63227e fix(machine): throw `connect: connection refused` after set proxy
ec0924c6d [CI:BUILD] Packit: cleanups
65e5d2773 Add console mode to podman machine
ddcefc9b9 e2e: kube test: specify expected exit code
574e00d32 e2e --authfile test: fix test condition
f8f337501 chore(deps): update dependency setuptools to v68
84e42877a make lint: re-enable revive
aa453c4f1 make lint: re-enable ginkgolinter
2efa7c3fa make lint: enable rowserrcheck
f07aa1bfd make lint: enable wastedassign
60a5a5947 make lint: enable mirror
a35da3ad8 bump golangci-lint to v1.53.3
47e0557d5 auto update: restart instead of stop+start
acb5f97f9 cmd/podman/root.go: fix help document issue of the image store
e5399aaf3 vendor: bump c/storage to v1.46.2-0.20230616083707-cc0d208e5e1c
3829fbd35 podman: add support for splitting imagestore
e29274853 network create --ip-range allow for custom range
c2360800e fix(ssh): start machine failed to start with exit status 255
ed24f0b2c remote wait: fix "removed" condition
8d036906a [CI:DOCS] Fix service_destinations description in podman man page
bfe61af6d quadlet should exit non zero on failures
91fc435cb fix(deps): update module golang.org/x/tools to v0.10.0
ef42f54ac e2e: GetSafeIPAddress() replaces GetRandomIPAddress
5ffbfd937 pasta: use code from c/common
479677cb6 Add support for setting autoupdate in quadlet
3efaffae4 New command: podmansh
67674b3a6 vendor: update c/common to latest
bdc2e8165 Add quadlet container support for Mask,Umask options
13c2aca21 libpod: make conmon always log to syslog
0ecc0d9e1 Document how to get secret mounts working on RHEL8
c28a43efd Verify podman pull dup image only prints id once
d464e1d4f Vendor in latests containers/common
741ad0b4f Apply suggestions from code review
f31466e74 Revert "rootlessport: exclude storage drivers via build tags"
8a90765b9 filters: use new FilterID function from c/common
de494eb05 logformatter: ignore 'TOP-LEVEL' headings
63f5116ad test/e2e: fix network ID test
8c48f97c9 update c/{common,image,storage} to latest
354b8e20b [CI:DOCS] clarify supported transports in manifest push
aa7a4219e [CI:DOCS] podman-push: rm confusion on supported transports
c0ab29313 container wait: indicate timeout in error
af7555e0d network-create: document new bclim option
7d2f722ef fix(deps): update module golang.org/x/text to v0.10.0
6f821634a libpod: Podman info output more network information
d0e2428fb fix(deps): update module golang.org/x/term to v0.9.0
ac0ba2c2c quadlet: adjust container unit documentation
837b47244 e2e: GetRandomIPAddress(): parallelize
676c4d4e8 Makefile: add support for 'make help' on FreeBSD
ab502fc5c criu: return error when checking for min version
16092930c Update docs/source/markdown/podman-systemd.unit.5.md
faa2689dc 250-systemd.bats: remove outdated comment
0714321de github: add issue type as link to podman-desktop
a66bab340 Add WorkingDir support to quadlet
ebf747474 rootlessport: exclude storage drivers via build tags
8bf168cc1 Add ability to set static routes
68183b07d test/upgrade: correctly share mounts between host and container
444f19cb2 Update common, image, and storage deps
ec6b7dbd9 Fix system service manpage name in API Documentation
d734fcbff style(specgen): omit nil check
53834ef0d fix(specgen): index out of range when unmask=[]
71cae3159 Makefile to force a shell when running command
02432fc69 cirrus,ci: default to overlay for debian env
b37f74b73 Quadlet: Add support for --sysctl flag
44ec044c4 chore(deps): update dependency requests-mock to ~=1.11.0
2ebc9004f Ignore spurious warnings when killing containers
7832879bf Makefile: don't hard-code the path for bash
de4b383ef fix(deps): update module github.com/burntsushi/toml to v1.3.2
a7271f9dd GHA: Fix bad job-names & links in monitoring emails
6a696cb8f podman-registry: simpler, safer invocations
f1ecdca4b Ensure our mutexes handle recursive locking properly
310082444 Fix an expected error message from pod removal
a750cd987 Fix a race removing multiple containers in the same pod
0e47465e4 Discard errors when a pod is already removed
398e48a24 Change Inherit to use a pointer to a container
b65ba90df e2e: add ginkgo decorators to address flakes
992093ae9 filters: better handling of id=
7bdbbd0ce fix(deps): update module github.com/onsi/gomega to v1.27.8
c7a8d29f1 refactor: improve get ssh path duplicate code
137c8ef4d logformatter: better recognition of ginkgo test names
944673c88 Address review feedback and add manpage notes
3b79f241b Add support for SecurityLabelNested flag in quadlet
a1c1d8d0a fix(deps): update module github.com/burntsushi/toml to v1.3.1
4fda7936c `system locks` now reports held locks
92309d917 fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.17
0948c078c Add a new hidden command, podman system locks
1013696ad Add number of free locks to `podman info`
3b39eb133 Include lock number in pod/container/volume inspect
1ce53677a fix ignition config creation
4584350f6 Makefile binaries target adopted for Mac and Win
e93b1f997 fix(deps): update github.com/crc-org/vfkit digest to 3d57f09
c51c6675e logformatter: proper status color for failed tests
cf9bc25bb pasta: Test handling of unknown protocols
b2c000670 pasta: Correct handling of unknown protocols
6611735ae Quadlet - add support for Pull key in .container
5b629e9c4 fix(deps): update module github.com/sirupsen/logrus to v1.9.3
d68121a60 Add default ulimit test for gen kube
81d64547f feat: add insecure registry troubleshooting solution
1768bf150 fix(deps): update module golang.org/x/tools to v0.9.3
7e550f78e fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.2
28934897e e2e: GetPort(): safer allocation of random ports
2c9f18182 The removeContainer function now accepts a struct
4e6efbbbb Revert "test/e2e: fix "podman run ipcns ipcmk container test""
b75ff3a8f Add a test for removing dependencies with rm -fa
bafb3d6cc Revert "ginkgo-v2 cleanup workaround for #18180"
ef1a22cde Fix a deadlock when removing pods
8cb5d39d4 Pods now return what containers were removed with them
bc1a31ce6 Make RemoveContainer return containers and pods removed
e8d745627 Add an API for removing a container and dependencies
543b80949 systests: fixes for coping with extra systemd image
34c258b41 libpod: fix timezone handling
22424eb5d fix(deps): update github.com/godbus/dbus/v5 digest to 7623695
7987d2ee0 fix(deps): update module golang.org/x/tools to v0.9.2
4173f942f test/system: quadlet use correct systemd restart policy
0372bf4bd systests: minimize race-condition window
1a34e1f85 systests: fix improper backgrounding of run_podman
f09772889 set max ulimits for rootless on each start
5c7d50f08 Fix: display online_cpus in compat REST API
bd62119f3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.6
72d4cede2 systests: fix race in quadlet tests
f48fa1113 fix(deps): update module github.com/burntsushi/toml to v1.3.0
88e78456d e2e: make BuildImage parallel-safe
370e1132c completion: fix panic in simplePathJoinUnix()
46456f5f1 Update module github.com/stretchr/testify to v1.8.4
585d715bb authfile.md: add default path of file for Windows/macOS.
01012a080 Update module github.com/rootless-containers/rootlesskit to v1.1.1
e3240c2fb hack: fix typo in hack/podman-registry
de92db0c8 man pages and command help: clean up descriptions
e6bfc81a8 RPM: bump gvisor-tap-vsock subpackage and fix packit scripts
dfba6ddd4 Man pages: fix broken tables
5b2d963c4 test/e2e: add regression testing for comma-containing labels
047a4bc83 fix: volume create filters
0be9887af fix: move filter flags from StringSliceVar to StringArrayVar
6bc52c9c5 pkg/rootless: correctly handle proxy signals on reexec
85b4c896b [CI:BUILD] Packit: set propose-downstream action type to pre-sync
8f94a4775 [CI:DOCS] fix Quadlet man page rendering
29f7c494e Quadlet: kube: use ExecStopPost
6487d9c11 Quadlet: kube: add ExitCodePropagation field
08b0d93ea kube play: exit-code propagation
6dbc13833 prune exit codes only when container doesn't exist
977b3cdbf podman: Add pasta to podman info
373919ca0 Revert "test/system/255-auto-update.bats: add debug logs"
901900530 Quadlet - add support for PodmanArgs to all groups
6003dca9c [CI:BUILD] Packit: add jobs for downstream Fedora package builds
fb8a12490 In a concurrent removal test, don't remove concurrently with builds
032d4a95f Consolidate error handling in Runtime.removeContainer
f556e58bb Consolidate error handling in Container.cleanupStorage
4969c552e Fix reporting errors on container unmount
94c65a659 TEMPORARY(?) instrumentation for unlinkat-ebusy
d623670e1 pkginstaller: bump Qemu to version 8.0.0
4108b3711 Support podman --remote when Containerfile is not in context directory
9969374b6 chore(deps): update dependency requests to ~=2.31.0
5f29c7bf9 fix: podman event --filter volume=vol-name should compare the event name with volume name
6b48e9962 fix(deps): update module github.com/docker/docker to v24
1b9272a06 wait: look for exit code in stopped state
7d831d555 network create/update: allow dns servers comma separated
685c73618 source code comments and docs: fix typos, language, Markdown layout
fe41077d4 Increase download progress to 80ch
8fbcf8bce chore(deps): update dependency setuptools to ~=67.8.0
29749362a podman: Added find slirp4netns binary file from helper_binaries_dir [NO NEW TESTS NEEDED]
2253f709b fix(deps): update module github.com/sirupsen/logrus to v1.9.2
7c53a463b stats: get mem limit from the cgroup
8e2e7a440 quadlet tests: enable device.volume test
bb3f611ff quadlet tests: remove unused socketactivated.container
18c3de596 fix(deps): update module github.com/stretchr/testify to v1.8.3
5d522431c Correct markdown in docs
76595c7b9 fix(deps): update module github.com/onsi/gomega to v1.27.7
a99ad3b36 [CI:DOCS] Improve security in mysql examples
99cedae31 Cirrus: Record the buildah version for reference
a54d4d7e1 test/e2e: do not call setenforce
458f2e8ed Fix discombobulated kubernetes support table
192ad70e9 run: ignore PODMAN_USERNS with --pod
5ff6fc559 Add --configmap to podman-remote kube play
ad8d0e57d compat: accept tag in /images/create?fromSrc
bf0cea76c fix HTMLSpan warnings
a576fa3f1 generate systemd: error on init containers
32c2cea0f Remove future tense from man pages
5b148a0a6 compat,build: pull must accept string
d1dcb0846 Cirrus: Add support for `[CI:NEXT]`
eb4f0bc17 Cirrus: Remove support for `[CI:COPR]` magic
3360214a0 system tests: add precision timestamps
8b4987266 Makefile: add ginkgo FOCUS/FOCUS_FILE options
4bed2c285 e2e: refactor and document serialization
ce07860a1 machine: fix default connection URL to use 127.0.0.1
a485ba505 e2e: serialize gpg tests
b9aaafbe1 Document podman-machine-default behavior
7580b8ae4 e2e: fix more test races (missing "wait")
6d58f5bb0 fix(deps): update module github.com/openshift/imagebuilder to v1.2.5
520979ba2 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.5
ae5cbf37c Fix documentation of `--network-cmd-path` CLI option
71853319f Skip rhel-release branch unnecessary CI tasks
ab29ff2f6 test/e2e: dedup Before/AfterEach nodes
d01ae436e remote-save: fix permissions and dir formats
5a176f09c Set machine docker.sock according to rootful flag
13f787842 Fix handling of .containenv on tmpfs
2c0f40482 Do not include image annotations when building spec
dd5d22cb3 build(deps): bump github.com/docker/distribution
26f1e95ab Kube Play - Support multi-doc YAML files for configmap argument
c33ba70f9 system tests: instrument, to try to catch unlinkat-ebusy
74a5b92b3 test: check restart policy of init containers
3aa6a792e Update sigstore/rekor after https://github.com/sigstore/rekor/pull/1469
04707f62d issue template: mention `su`
14001ad48 e2e: logs test: fix flakes
6b329d8c9 fix(deps): update module github.com/containernetworking/plugins to v1.3.0
ff37615bf e2e: stop podman.service test: wait for server
cb8e19677 logformatter: handle podman-machine test logs
58fd87959 fix(deps): update module golang.org/x/tools to v0.9.1
2d8929d95 [CI:DOCS] Disable Dependabot in favor of Renovate
01e20818c Ensure the consistent setting of the HOME env variable on container start
8aaa13acc Quadlet system tests - fix socket notification
1fb3cdf8a sqlite: disable WAL mode
d24bec0d0 system tests: timeoutize quadlet, systemd
3d6894426 test: update README for integration tests
c400cc7ea libpod/Container.rootFsSize(): use recorded image sizes
b97be3406 quadlet: support `HostName`
9dc107e74 e2e: fix race in a play-kube test
bdb3ed795 Fix preference of user quadlets directories
40b21fa7d fix(deps): update module golang.org/x/tools to v0.9.0
661a238a9 fix(deps): update module golang.org/x/net to v0.10.0
332b47fef Check on client side for Containerfile, if none specified
18cd174c9 build(deps): bump github.com/docker/docker
9ec630f30 Buildah treadmill: several fixes
11d92ea37 fix(deps): update github.com/containers/common digest to 3e93a76
1bf057e8c chore(deps): update dependency docker to ~=6.1.0
27891a664 Update docs/source/markdown/podman-systemd.unit.5.md
505e02e04 fix(deps): update github.com/containers/common digest to bc15b04
53220717e fix: initContainer restart policy overridden by pod
c27cda7c9 fix(deps): update module golang.org/x/sync to v0.2.0
773b45704 chore(deps): update dependency requests to ~=2.30.0
0c070ebfb ginkgo json output: only in CI, not on laptop runs
73d3487cc Allow user quadlets to be stored under /etc
334adac74 fix(deps): update github.com/containers/common digest to ea87b34
95557a532 libpod: do not Cleanup() more than once
df9344ac4 compat container create: match duplicate mounts correctly
42c822720 Update podman-completion.1.md
3d56e4f3a fix(deps): update github.com/containers/buildah digest to e925b58
75d92f41d Run generate.CompleteSpec() for initContainers as well
d25356c30 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.4
df8cc7af3 remote: return better connect error
61985a610 Add missing man page links for Docker man pages
f877d7dcd Replace egrep/fgrep with grep -E/-F
19aabf440 remote: exec inspect update exec session status
305bad184 fix(deps): update github.com/digitalocean/go-qemu digest to f035778
999c620d5 fix(deps): update github.com/godbus/dbus/v5 digest to 6cc540d
38f993543 fix(deps): update github.com/containers/buildah digest to f353690
1b2b0d031 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.3
dc7515dc3 MVP for Podman Machine with AppleHV
54fd0d752 e2e tests: try writing & preserving ginkgo json artifacts
1c5ab9e7b vendor: bump buildah to v1.30.1-0.20230501124043-3908816d5310
e1e03a0e3 bindings, build: don't pass invalid platform in case of none
ae5305134 Revert "logformatter: anchors: link to test summary, not name"
fbe62f329 More cleanup: volumes: do not export to stdout
3050a6437 e2e test cleanup
fa1ba17bc Update kube gen & play to use pod restart policy
db4ad54f9 Add {{.Restarts}} to podman pod ps
0fef113a4 Add {{.Restarts}} to podman ps
edbeee523 Add --restart flag to pod create
9e9bcec9e history: correctly set tags
073cd4bb4 fix(deps): update module github.com/moby/term to v0.5.0
3858a833b Makefile: do not run machine test in parallel
5af433923 pkg/machine/e2e: switch to GinkgoWriter
1720042d0 api: fix parsing filters
c4b9f4b34 ginkgo-v2 cleanup workaround for #18180
5eb99a0ac test/e2e: fix custom timing reporting
1bff0108f logformatter: anchors: link to test summary, not name
914ff01f9 WIP: logformatter: handle ginkgo v2 logs
b3424f370 test/e2e: unshare --rootless-netns cleanup slirp4netns
054154c77 test/e2e: run system reset test serial
c5922cc6f test/e2e: fix CleanupVolume/Secrets()
bc1ed07b5 ginkgo v2: fix new Skip() behavior
cd46e7279 test/e2e: fix pause tests to unpause before cleanup()
2ce4e935b ginkgo v2: drop localbenchmarks
fb7a96638 test/e2e: switch to GinkgoWriter
cc19091e9 test/e2e: unset CONTAINERS_CONF before Cleanup()
8cc7a3618 ginkgo: run on all cores
9c1f713c7 test/e2e: fix Cleanup()
9bd833bcf test/e2e: fix "podman run ipcns ipcmk container test"
629a6a6e4 test/e2e: actually check for cleanup errors
b9ba85044 Lower e2e timeout to not waste time when it hangs
fbb7c980a test/e2e: containers.conf tests add missing Wait()
c564d9d7a ginkgo v2: remove CurrentGinkgoTestDescription()
666e31447 ginkgo v2: remove deprecated flags
445815036 update to ginkgo v2
502654580 test/e2e: do not remove CNI directory
7b25f362e e2e: login_logout: use unique authfile for each test
d06480d99 Fix clashing subuid
24be46a51 [CI:DOCS] troubleshooting: fix subuid example
bab4217cd manifest, push: use source as destination if not specified
202701e65 Update github.com/moby/term digest to 0564e01
e8f34e457 Add name-generation test
b5ef9555a Implement machine provider selection
70870895b libpod: improve errors management in cleanupStorage
5592dc12f libpod: report unmount idmapped rootfs errors
2932208c2 test: do not wait 10 seconds before killing myyaml
891bc117e podman: simplify code with a switch
bac57409f test: fix typo
5fefb54d2 build(deps): bump github.com/docker/docker
0a92b399d swagger: fix Info name conflict
20c42489e Nightly dependency treadmill: remove
33fa54580 Update short description for disconnect cmd
aca993632 windows: podman save allow the use of stdout
512b39475 Update c/common and avoid setting umask
7ff2eaf96 Cirrus: Update CI VM Image to F38/37
0e1ddd3df Cirrus: Run code validation on rawhide
221e3023f Fix rand.Seed() deprecation in golang 1.20
edaf3b4d5 Add sha256: to images history id for docker compatibility
d51911f7b Support systemd optional prefix '-' for devices.
a0c7bb26a Fix a copy/paste error in an error message
ba4586375 chore(deps): update dependency requests to ~=2.29.0
d905e412e Fix simple typo in podman-network-create.md
a027bf102 e2e cleanup: push with auth: add error checks
eeb210bc5 e2e: remove "-it" from podman run & exec
64959b744 pkg/machine: rework RemoveConnection()
2296e71e3 machine: qemu only remove connection after confirmation
c8e423b55 Add file swith for pre-exec
6aaf6a284 system reset: show graphRoot/runRoot before removal
e95e9be76 fix manifest annotate help
bdf367958 Netavark userns test: give aardvark time to come up
bbe9d61c4 sqlite: move first read into a transaction
f3c3ef72d Recover from failed podman machine start
d222a392c rootless: support joining contianers that use host ns
0e955bec7 auto-update: return errors when checking for updates
fc8bd4521 [skip-ci] Update dawidd6/action-send-mail action to v3.7.2
ed6b19fef fix(deps): update github.com/containers/common digest to 46c4463
230ddbe0c Add user mode networking feature to Windows
3216110de system/reset.go: help: fix typo
ae5ed6d85 e2e create same-IP: try to fix flake
faeed14f6 system tests: safer container-stop signaling
6014f26c4 Revert "Resolve symlink path for qemu directory if possible"
c5a928c5b ps: --format {{.State}} match docker output
b4eecd908 test/system/260-sdnotify.bats: fix test flake
1361c6a33 [CI:DOCS] Quadlet: clarify overriding user/system services
fb3b92b96 Eliminate transient container deps from wslkerninst
dd217d8e0 Wording
d16c880fb fix(deps): update github.com/containers/common digest to 5547996
70bd096e4 cmd/podman/pods: omit superfluous runtime.NumCPU call
1f1525f2e support `--digestfile` for remote push
d640461ce e2e: skip journald test if journald is unavailable
5156ab996 Cirrus: Enable testing on Fedora rawhide
8a3265f65 [CI:BUILD] Cirrus: remove copr rpm build task
77f86f48e chore(deps): update dependency setuptools to ~=67.7.0
03a7c6a91 Cirrus: Drop benchmarks artifacts
15664b4b0 test/e2e: correctly reap service process
c9d861023 test/e2e: add missing options to remote service
1f45c715d test/e2e: fix incorrect usage of CreateTempDirInTempDir()
601d228ca test/e2e: "podman-remote send correct path to copier" do not leak file
08c651016 test/e2e: fix network create flake due same subnet
525c27fe1 test/e2e: fix SkipIfNotActive()
01d518a97 test/e2e: do not try to use docker as rootless
6e97976ad test/e2e: do not leak "hello" file
750442d09 podman-remote logs: handle server error correctly
3aaa2793d test/e2e: use custom network config v2
00fdfa063 rename ImagePushReport to ImagePushStream
81621ce8a Specify format to buildah before commit
7382494ca Add eBPF snooper that traces the entire fork/exec graph of podman
edb64f8a7 libpod: stop containers with --restart=always
0364aef1e test: fix race when listing cgroups
b65ab52d8 compat: Translate `noprune` into ImageRemoveOptions.NoPrune
346483717 [CI:DOCS] Update RELEASE_PROCESS.md
8019dc9e6 hyperv: add podman socket mapping
a089f1b5c e2e networking test: better way to get host IP
bce38c1af Updated system test to be easier to read
5f5bea0d1 bindings tests: bail out early on image errors
f2cec7348 libpod: fix TestPostDeleteHooks do not depend on version
8125bab9b chore(deps): update dependency setuptools to v67
a00ed20e0 fix(deps): update module github.com/containers/libhvee to v0.0.5
da83364eb e2e: quadlet uses PODMAN env for podman binary path
6e0cf9344 Fixes format inconsistencies with docker for certain history fields
acb24f164 Makefile: do not prefix /etc
7e4cd22ac libpod: configureNetNS() tear down on errors
4f93a6eee libpod: rootlessNetNs.Cleanup() fix error message
4b8230119 HyperV: wait on stop
3cdaf85d6 build(deps): bump github.com/docker/docker
459f751ae Makefile: include `release-artifacts` target
3222545ad Enabled network over vsock
aec7ce4a1 fix(deps): update module github.com/microsoft/go-winio to v0.6.1
64b26df60 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.2
41d516412 fix remote start --filter
1cac53506 Update API reference to include v4.5
a0204f1dd Add missing security options to /info response
de5fa9ce9 Add mention of redir to doc `rootless.md`
08f137aec fix(deps): update module github.com/vbauerster/mpb/v8 to v8.4.0
8e7f98ae6 docs(readme): add status badges and remove hardcoded release info
e9356ba20 Don't use bytes.NewBuffer to read data
f488d9890 Add support for HVSOCK on hyperv
e7a323635 docs: update network tutorial with netavark DHCP support
32344952a bump main to v4.6.0-dev
54ba17f69 Remove disused test/install
1fa4e45a9 Return title fields as a list
be148665c [CI:BUILD] Packit: Initial Enablement
4aced7e3e Quadlet - do not set log-driver by default
51b582d0e system tests: address COPY-hardlink flake
25d4ecf47 chore(deps): update registry.centos.org/centos/centos docker tag to v8
31420112c system tests: fix race in kube-play read-only
f544971b7 chore(deps): update dependency docker to v6
f95276bfa CI: enable sqlite system tests
d28656403 test: enable test_wait_next_exit
f312c8533 Update dependency PyYAML to v6
f67d640b8 test/e2e/systemd_activate_test.go: simplify test
5315c0cc7 Update docker.io/library/golang Docker tag to v1.20
b4cfc727b api: auth: fix nil deref
176c329f9 Update dependency requests-mock to ~=1.10.0
b75ee05d3 Update dependency requests to ~=2.28.2
d38b22d50 fix: Document removing anonymous volumes at create
fe22299f9 Use a sane polling interval in WaitContainerDocker
bb2deef8e podman: added the --out option for capturing formatted output emitted by various commands
785c63c0f Renovate: Ensure release-note-none label is added
4bc4609d8 Renovate: Update ignore paths
64ea5971a *: migrate image registry to registry.k8s.io
4f5f89cf8 Do not display the resource limits warning message
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b37f53350d |
buildah: update to 1.31
Bumping buildah to version v1.31.0, which comprises the following commits:
d0de60bbf Bump 1.31.0
723ed8e18 Bump c/common to 0.55.1 and c/image to 5.26.1
b835631bf Update vendor of containers/common
c4d2a8520 Run unit tests for copier and chroot without -cover
135b5a8f0 Fix transition test to work with latest selinux policy
d8b06097d Bump c/image to 5.26.0 and c/common to 0.54.0
7a5a18334 chore: replace `github.com/ghodss/yaml` with `sigs.k8s.io/yaml`
a8f350fc5 rootless: use default_rootless_network_cmd config
b3edcaa06 vendor: update c/{common,image,storage} to latest
d22a5293b chore: pkg imported more than once
74b885b9e buildah: add pasta(1) support
11ba328e2 use slirp4netns package from c/common
a5c0c8acf update c/common to latest
14cd28c26 add hostname to /etc/hosts when running with host network
eb135b8d5 vendor: update c/common to latest
237ac533e [CI:BUILD] Packit: add jobs for downstream Fedora package builds
eeaf80f95 fix(deps): update module golang.org/x/sync to v0.3.0
b064ad7f6 fix(deps): update module golang.org/x/crypto to v0.10.0
bdd27d393 Add smoke tests for encryption CLI helpers
b090ae238 fix(deps): update module golang.org/x/term to v0.9.0
fefbd04e5 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.3
bd32a04c3 Remove device mapper support
92582a75c Remove use of deprecated tar.TypeRegA
261a524b9 Update tooling to support newer golangci-lint
6714a79eb Make cli.EncryptConfig,DecryptConfig, GetFormat public
b3e39dfd9 Don't decrypt images by default
14b74e7f8 fix(deps): update module github.com/onsi/gomega to v1.27.8
1d08bd9de fix(deps): update github.com/containers/storage digest to 3f3fb2f
0dac0dfa5 Renovate: Don't touch fragile test stuffs
d9ecd7c59 [CI:DOCS] Update comment to remove ambiguity
232230cae fix(deps): update github.com/containers/image/v5 digest to abe5133
4247a3e47 fix(deps): update module github.com/sirupsen/logrus to v1.9.3
925ff0e62 fix(deps): update module github.com/containerd/containerd to v1.7.2
5a83012c9 Explicitly ref. quay images for CI
9b65b12ae At startup, log the effective capabilities for debugging
3a351f603 parse: use GetTempDir from internal utils
6adbfeeb4 GetTmpDir: honor image_copy_tmp_dir from containers.conf
5eb356bb8 docs/Makefile: don't show sed invocations
a630e3513 CI: Support testing w/ podman-next COPR packages
90f7436ac intermediate-images inherit-label test: make it debuggable
08b9a5407 fix(deps): update github.com/containers/common digest to 462ccdd
7e327cf18 Add a warning to `--secret` docs
9cd28db91 vendor: bump c/storage to v1.46.2-0.20230526114421-55ee2d19292f
0766b004b executor: apply label to only final stage
beae5647c remove registry.centos.org
68337bf9c Go back to setting SysProcAttr.Pdeathsig for child processes
371bc34fe Fix auth.json path (validated on Fedora 38) wq Signed-off-by: Andreas Mack <andreas.mack@gmail.com>
c6e73322b fix(deps): update module github.com/stretchr/testify to v1.8.3
0b69f7029 CI: fix test broken by renovatebot
a5ad7b047 chore(deps): update quay.io/libpod/testimage docker tag to v20221018
86470bfd9 fix(deps): update module github.com/onsi/gomega to v1.27.7
91ce0571d test: use debian instead of docker.io/library/debian:testing-slim
7d9447b2f vendor: bump logrus to 1.9.2
e2b751a0b [skip-ci] Update tim-actions/get-pr-commits action to v1.3.0
d58d3a14b Revert "Proof of concept: nightly dependency treadmill"
911c3b5e8 fix(deps): update module github.com/sirupsen/logrus to v1.9.1
797f03430 vendor in containers/(common,storage,image)
ba8a1bd0e fix(deps): update module github.com/docker/distribution to v2.8.2+incompatible
0eb266a95 run: drop Pdeathsig
e8d11201a chroot: lock thread before setPdeathsig
51c03212e tests: add a case for required=false
00581b806 fix(deps): update module github.com/openshift/imagebuilder to v1.2.5
be682de68 build: validate volumes on backend
dcc7feb6f secret: accept required flag w/o value
ba06158ab fix(deps): update module github.com/containerd/containerd to v1.7.1
cad25dd6b fix(deps): update module golang.org/x/crypto to v0.9.0
dffb148b3 Update the demos README file to fix minor typos
efa0d69a2 fix(deps): update module golang.org/x/sync to v0.2.0
e0fe30e61 fix(deps): update module golang.org/x/term to v0.8.0
d5b32b0f0 manifest, push: use source as destination if not specified
2fed5fc91 run,mount: remove path only if they didnt pre-exist
4b1c5e3a9 Cirrus: Fix meta task failing to find commit
a913dc56a parse: filter edge-case for podman-remote
9252470c4 fix(deps): update module github.com/opencontainers/runc to v1.1.7
0019256f2 fix(deps): update module github.com/docker/docker to v23.0.5+incompatible
b37c4ee43 build: --platform must accept only arch
5e43f8c9d fix(deps): update module github.com/containers/common to v0.53.0
562172751 makefile: increase conformance timeout
4775b247b Cap suffixDigitsModulo to a 9-digits suffix.
07fda81df Rename conflict to suffixDigitsModulo
4bb28899e fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0-rc.2
411bdc968 fix(deps): update module github.com/opencontainers/runc to v1.1.6
d27c59f85 chore(deps): update centos docker tag to v8
43440ec6e Clarify the need for qemu-user-static package
c34fbea7c chore(deps): update quay.io/centos/centos docker tag to v8
449fd3d2e Renovate: Ensure test/tools/go.mod is managed
6d877d89d Revert "buildah image should not enable fuse-overlayfs for rootful mode"
e9884fc41 Bump to v1.31.0-dev
04965f119 Bump to v1.30.0
b5867198c fix(deps): update module github.com/containers/common to v0.52.0
41b760f97 fix(deps): update module golang.org/x/crypto to v0.8.0
9bd6ccf92 chore(deps): update dependency containers/automation_images to v20230405
d57638879 vendor c/common ff62cdebdd0e
f847463ed vendor in latest containers/(storage, image)
45940016c fix(deps): update module github.com/opencontainers/runc to v1.1.5
0ff4746c4 fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.7
2e25b156f buildah image should not enable fuse-overlayfs for rootful mode
dcd7b789a stage_executor: inline network add default string
c8c37c78f parse: add support for relabel bind mount option
c95370cd3 build: pass process environment variables by reference
2ad68d816 run: pass process environment variables by reference
d45916350 fix(deps): update module github.com/containers/common to v0.51.2
a92fe130e chore(deps): update dependency containers/automation_images to v20230330
e67bddded fix(deps): update module github.com/docker/docker to v23.0.2+incompatible
20861cd21 chore(deps): update dependency containers/automation_images to v20230320
73dc43c1d fix(deps): update module github.com/onsi/gomega to v1.27.6
e3a30b54a fix(deps): update github.com/opencontainers/runtime-tools digest to e931285
374133c95 [skip-ci] Update actions/stale action to v8
ce8c56780 test: don't allow to override io.buildah.version
dfc9bb20e executor: only apply label on the final stage
946395494 Update docs/buildah-build.1.md
58a22053b update build instruction for Ubuntu
aad1e994a code review
3afa5ca74 build: accept arguments from file with --build-arg-file
8e84bb709 run_linux: Update heuristic for mounting /sys
78416393f [CI:BUILD] Packit: Enable Copr builds on PR and commit to main
e8dee4083 fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.6
c0f0efada Update to Go 1.18
db0bafef3 Disable dependabot in favor of renovate
4055cc880 chore(deps): update dependency containers/automation_images to v20230314
2088f6bd7 Fix requiring tests on Makefile changes
b85a38946 Vendor in latest containers/(storage, common, image)
b6f32e576 imagebuildah: set len(short_image_id) to 12
499f1301f Re-enable conformance tests
fa145b092 Skip conformance test failures with Docker 23.0.1
bc2423ebc Cirrus: Replace Ubuntu -> Debian SID
37afb5dbc run: add support for inline --network in RUN stmt
e2210c3b7 vendor: bump imagebuilder to a3c3f8358ca31b1e4daa6
db509859d stage_executor: attempt to push cache only when cacheKey is valid
a35dbb284 Add "ifnewer" as option in help message for pull command
c1b82d195 build: document behaviour of buildah's distributed cache
f444d6589 fix(deps): update module golang.org/x/term to v0.6.0
376eb73ab Add default list of capabilities required to run buildah in a container
46ffaf935 executor,copy: honor default ARG value while eval stage
fd5db96c0 sshagent: use ExtendedAgent instead of Agent
9e6e15c31 tests/bud: remove unwated test
8a8f99e09 executor: do not warn on builtin default args
b9e4e29e9 executor: don't warn about unused TARGETARCH,TARGETOS,TARGETPLATFORM
0ed9b4c8c Fix tutorial for rootless mode
cf408f758 Vendor in latest containers/(common, storage, image)
0e707faa7 Ignore the base image's base image annotations
30f84c8ee fix(deps): update module github.com/fsouza/go-dockerclient to v1.9.5
05785ee57 build(deps): bump github.com/containers/storage from 1.45.3 to 1.45.4
21e6e91e4 Vendor in latest containers/common
0b7a7f80b docs/tutorials/04: add defaults for Run()
7baf73b2a imagebuildah.StageExecutor: suppress bogus "Pushing cache []:..."
be10b8d20 executor: also add stage with no children to cleanupStages
f9e51e744 [CI:BUILD] copr: fix el8 builds
8125e45a5 Fix documentation on which Capabilities are allowed by default
a8ed3bb58 Skip subject-length validation for renovate PRs
956c5155d Temporarily hard-skip bud-multiple-platform-values test
3afa7e360 fix(deps): update github.com/openshift/imagebuilder digest to 86828bf
4875f1bc9 build(deps): bump github.com/containerd/containerd from 1.6.16 to 1.6.17
36cade0c3 build(deps): bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
e0e43a419 build(deps): bump github.com/containers/image/v5 from 5.24.0 to 5.24.1
24b85d217 [skip-ci] Update tim-actions/get-pr-commits digest to 55b867b
f96e1ad4d build(deps): bump github.com/opencontainers/selinux
2ef59fc2c build(deps): bump golang.org/x/crypto from 0.5.0 to 0.6.0
482bf4df4 Add renovate configuration
4dfb82890 Run codespell on codebase
ae697555c login: support interspersed args for password
123ef1693 conformance: use scratch for minimal test
6a0367ff2 pkg/parse: expose public CleanCacheMount API
5d50a7320 build(deps): bump go.etcd.io/bbolt from 1.3.6 to 1.3.7
6d53ec7a3 build(deps): bump github.com/containerd/containerd from 1.6.15 to 1.6.16
dbf1d43b3 docs: specify order preference for FROM
2008a5302 Bump to v1.30.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Peter Marko
|
489fa21681 |
skopeo: convert CVE_CHECK_IGNORE to new CVE_STATUS format
See https://git.openembedded.org/openembedded-core/commit/?id=34f682a24b7075b12ec308154b937ad118d69fe5 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Marko
|
07a578d49c |
podman: ignore CVE-2022-2989 and CVE-2023-0778
NVD shows only redhat links and does not mention fixed-in release se these CVEs will show-up in reports indefinitely. They are already fixed in current version, so ignore them. CVE-2022-2989 * https://github.com/advisories/GHSA-4wjj-jwc9-2x96 * https://github.com/containers/podman/pull/15618 * commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups CVE-2023-0778 * https://github.com/advisories/GHSA-qwqv-rqgf-8qh8 * https://github.com/containers/podman/pull/17528 * commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content Signed-off-by: Peter Marko <peter.marko@siemens.com> |
||
|
Martin Jansa
|
5bb2ad0d25 |
runc-opencontainers: use bfd linker even when gold is selected by ls-is-gold
* fixes:
ld: --no-dynamic-linker: unknown option
* you might need to clean the build for updated LDFLAGS to be corectly re-configured
* lld and bfd are fine:
$ ld.gold --help | grep dynamic-linker
-I PROGRAM, --dynamic-linker PROGRAM
$ ld.bfd --help | grep dynamic-linker
-I PROGRAM, --dynamic-linker PROGRAM
--no-dynamic-linker Produce an executable with no program interpreter header
$ ld.lld --help | grep dynamic-linker
--dynamic-linker=<value>
--no-dynamic-linker Inhibit output of .interp section
* not sure where this came from only place where I see --no-dynamic-linker
in runc-opencontainers WORKDIR is:
aarch64-oe-linux/13.1.1/plugin/include/config/aarch64/aarch64-linux.h: %{static-pie:-Bstatic -pie --no-dynamic-linker -z text} \
aarch64-oe-linux/13.1.1/plugin/include/aarch64-linux.h: %{static-pie:-Bstatic -pie --no-dynamic-linker -z text} \
so my guess is:
923ae4da Makefile: add support for static PIE
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
fcf7968f1d |
kubernetes: set CVE_VERSION explicitly
The CVE_VERSION defaults to PV, but in NVD database, there's no prefixing 'v' in database. So set CVE_VERSION explicitly for better CVE scanning. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
5dda7078ba |
runc-opencontainers: update to 1.1.7-tip
Bumping runc to version v1.1.7-37-gca73c9fd, which comprises the following commits:
0d93d7d1 release: add riscv64 binary
9164fe17 libct/seccomp: add riscv64
ed47e31a Makefile: set CGO_ENABLED=1 when needed
923ae4da Makefile: add support for static PIE
2abca872 Makefile: fix GO_BUILDMODE setting
120ec5bd Makefile: add LDFLAGS_COMMON and LDFLAGS_STATIC
b9940113 Dockerfile: don't use crossbuild-essential-*
028fc57a Dockerfile: rm dpkg --add-architecture lines
4449ce84 Dockerfile: nit
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
02e065ef docs/systemd: fix a broken link
9af462e4 Fix tmpfs mode opts when dir already exists
7d1bdc7d .codespellrc: update for 2.2.5
8397943e man/runc: fixes
f9da684d tests/int: increase num retries for oom tests
7fa912ed ci/cirrus: limit numcpu
e9c1ca08 Fix Vagrant caching
e2265a92 ci: bump bats 1.8.2 -> 1.9.0
bbddb6bd Vagrantfile.fedora: bump to 38
27b86b4c ci/cirrus: use vagrant from hashicorp repo
98a1b76c tests/int: fix some checks
1eadcede ci: bump bats 1.3.0 -> 1.8.2
63af8b00 init: do not print environment variable value
404ea7ab libct: fix a race with systemd removal
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
We refresh one patch for context changes.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
248be027d6 |
runc-docker: update to 1.1.7-tip
Bumping runc to version v1.1.7-37-gca73c9fd, which comprises the following commits:
0d93d7d1 release: add riscv64 binary
9164fe17 libct/seccomp: add riscv64
ed47e31a Makefile: set CGO_ENABLED=1 when needed
923ae4da Makefile: add support for static PIE
2abca872 Makefile: fix GO_BUILDMODE setting
120ec5bd Makefile: add LDFLAGS_COMMON and LDFLAGS_STATIC
b9940113 Dockerfile: don't use crossbuild-essential-*
028fc57a Dockerfile: rm dpkg --add-architecture lines
4449ce84 Dockerfile: nit
d375351b ci/cirrus: enable rootless tests on cs9
e1a8b52f tests/int/cgroups: filter out rdma
02e065ef docs/systemd: fix a broken link
9af462e4 Fix tmpfs mode opts when dir already exists
7d1bdc7d .codespellrc: update for 2.2.5
8397943e man/runc: fixes
f9da684d tests/int: increase num retries for oom tests
7fa912ed ci/cirrus: limit numcpu
e9c1ca08 Fix Vagrant caching
e2265a92 ci: bump bats 1.8.2 -> 1.9.0
bbddb6bd Vagrantfile.fedora: bump to 38
27b86b4c ci/cirrus: use vagrant from hashicorp repo
98a1b76c tests/int: fix some checks
1eadcede ci: bump bats 1.3.0 -> 1.8.2
63af8b00 init: do not print environment variable value
404ea7ab libct: fix a race with systemd removal
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5d41297f4b |
cri-o: update to 1.27-tip
Bumping cri-o to version v1.27.0-48-g3abbef701, which comprises the following commits:
a61082768 vendor: drop podman replace and actually update runc
9c86a1269 vendor: bump runc to 1.1.6
1d6f5a00c [1.27] Add support for namespaced signature policies
35afa9859 runtime handler hooks: run default hook when container stops gracefully
3907696a4 main: Added a call to GarbageCollect
ee6868938 Add a test for log linking
5319875b4 linklogs: add support for symlinking container directory
13f8ae560 Add support for linking pods logs
605e4d935 server: ensure pod labels are present
15d6d5977 OCPBUGS-14750: Pod termination must succeed when a hook fails
ccd7e23af server: do not take lock to populate pid in container status and inspect
57662c6f8 go.{mod,sum}, vendor: update NRI.
ef90744ae test: adapt for sched_load_balance disable after stop
169220817 runtime handler hooks: add DefaultCPULoadBalanceHooks
a74999eb6 server: call hooks and NRI in stopContainer
ea3297939 server: call hooks on infra container creation
37518c031 high perf hooks: workaround libcontainer quirk when disabling cpu quota
eca28447d cgmgr: export CrioPrefix and use containerCgroupPath more
49cfa2060 *: update sandbox/pause image to 3.9
bf9eec8cb Add debug to identify when a relabel was not requested
2ee3398cb high perf hooks: disable CPU quota with libcontainer as a pre start hook
11141ac32 test: add test for cpu-quota.crio.io
69a6d6fc2 Fix events generated by Evented PLEG
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f634a540c4 |
podman: update to 4.5.1
Bumping libpod to version v4.5.1-6-gdae7df5a1, which comprises the following commits:
3d7aba056 completion: fix panic in simplePathJoinUnix()
9de891616 RPM: bump gvisor-tap-vsock subpackage and fix packit scripts
5933be9ba Bump to v4.5.2-dev
9eef30051 Release v4.5.1
777ddfc42 [CI:DOCS] Final release notes for v4.5.1
2b045de48 [CI:BUILD] Packit: set propose-downstream action type to pre-sync
b1281ae46 Revert "Resolve symlink path for qemu directory if possible"
8b35bbab9 no need for podman-next rpm test on maint branch
6652633ce [CI:BUILD] Packit: add jobs for downstream Fedora package builds
97ec57da5 libpod: configureNetNS() tear down on errors
d812087d1 libpod: rootlessNetNs.Cleanup() fix error message
083894a22 network create/update: allow dns servers comma separated
1575b3a7f machine: fix default connection URL to use 127.0.0.1
1e86d0a75 compat: accept tag in /images/create?fromSrc
7d0e4a644 compat container create: match duplicate mounts correctly
dc21698d6 machine: qemu only remove connection after confirmation
02b9f4f5d windows: podman save allow the use of stdout
66fb7c9bb remote: exec inspect update exec session status
5b21c38c8 podman-remote logs: handle server error correctly
9558af2c4 libpod: stop containers with --restart=always
0f18a0144 Do not include image annotations when building spec
bc2f0115d [v4.5] system tests: fix race in kube-play read-only
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ee055b339d |
containerd: update to 1.7.2
Bumping containerd to version v1.7.2-13-ga766dc550, which comprises the following commits:
dafbeb5b1 No more nondistributable layers in MS registry
e5b2a0131 task: don't `close()` io before `cancel()`
a6a15afe3 move to CRI-TOOLS v1.27.0
58b6b99cd Add a check to skip stats for containers that are not running
0b2b96479 RELEASES.md: de-deprecation of CNI conf_template will be v1.7.3
a24267b28 Remove cni conf_template deprecation
89415fe36 Fix issue for HPC pod metrics
e134b6393 Fix panic when remote differ returns empty result
0e41daaea [release/1.7] Prepare release notes for v1.7.2
99582fb1a fix: cio.Cancel() should close the pipes
eeda70fb0 remotes/docker: ResolverOptions: fix deprecation comments
313c226b8 Update continuity to a tagged version
e21c8beee Post cherry-pick fixes
246240f71 Move PLEG event back to CRI
16f3726dd Generate sandbox exit events from CRI
0c8cfb1a7 Move pod sandbox recovery to podsandbox/ package
91d9f5c64 Publish sandbox events
4b77683b4 Add sandbox events protos
8dd16285a UnmountAll is a no-op for missing mount points
acff3eefa Improve error messages and remove check
b4dd3bf4e Make ReadOnly() available on all platforms
08d8baf3f Increase integration test tmieout to 20m
1f0dbd011 Remove bind code path in mount()
8f37b1c63 Remove "bind" code path from diff
9139208b3 Properly mount base layers
e61e7b312 Skip parent layer options on bind mounts
e4307926f Add ReadOnly() function
0277b9b01 Remove escalated privileges
d5c18dfb7 Use DefaultSnapshotter
853179366 use t.Fatal if we cannot enable process privileges
5b3ee413f Update continuity
375172604 Fix go.mod, simplify boolean logic, add logging
600abd137 Ignore ERROR_NOT_FOUND error when removing mount
df7295dcd Update continuity, go-winio and hcsshim
0db78c482 Remove unused function
219058766 Grant needed privileges for snapshotter tests
96fbe5bc8 Fix layer comparison and enable read-only checks
279e0d3c9 Use bind filer for mounts
93e94da40 Enable TestSnapshotterClient on Windows
3a3da693a Run Windows snapshotter through the test suite
e7b62322f Fix misspelling of 'Native' as 'Naive'
e1f999a18 Add paired 'mount' log for 'unmount'
5788d6e52 Don't use all-upper-case filenames in snapshot tests
3cdcb2f10 Skip tests that do not apply to WCOW on Windows
b0968b8bb Ensure mounts are unmounted before leaving the test
b57424851 Unify testutil.Unmount on Windows and Unix
b9a8aad45 Implement Windows mounting for bind and windows-layer mounts
1a64ee183 Implement WCOW parentless active snapshots and view snapshots
7851b0a9f CRI: Make stats respect sandbox's platform
8d7c340ca [sbserver] handle missing cpu stats
d08b2a088 [sbserver] Refactor usageNanoCores be to used for all OSes
2c38cad77 notify readiness when registered plugins are ready
08de6e7b8 Update volume-ownership image with latest hashes
6a5e54c15 Get CDI devices from CRI Config.CDIDevices field
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Renato Caldas
|
680f56d9e4 |
cri-o: drop unneeded dependency on virtual-containerd
Signed-off-by: Renato Caldas <renato@calgera.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Renato Caldas
|
7e6f503083 |
crun: fix compilation with musl
Requires either libargp or argp-standalone. Signed-off-by: Renato Caldas <renato@calgera.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
3ce3ef9486 |
kubernetes: do not strip binaries at build
Yocto/OE has its own way to control binary stripping. So don't do it in the go build process. Otherwise, we'll get empty dbg packages. Setting DBG=1 solves this problem, as stated in comments in the Makefile. """ # Note: Specify DBG=1 for building unstripped binaries, which allows you to use code debugging # tools like delve. When DBG is unspecified, it defaults to "-s -w" which strips debug # information. """ Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
4bc2f6e550 |
containerd: fix HOMEPAGE
The previous HOMEPAGE has been archived. Use the active one. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
c2e8199d87 |
netavark, xen: *.patch: add Upstream-Status to all patches
There is new patch-status QA check in oe-core: https://git.openembedded.org/openembedded-core/commit/?id=76a685bfcf927593eac67157762a53259089ea8a This is temporary work around just to hide _many_ warnings from optional patch-status (if you add it to WARN_QA). This just added Upstream-Status: Pending everywhere without actually investigating what's the proper status. This is just to hide current QA warnings and to catch new .patch files being added without Upstream-Status, but the number of Pending patches is now: Patches in Pending state: 15 (11%) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
49fdcebf5b |
moby: update to v24.0.2
Bumping moby to version v24.0.2-56-gd7aa1e14e5, which comprises the following commits:
5652c59647 testing: temporarily pin docker-py tests to use "bullseye"
789a8755b8 run `getent` with a noop stdin
f7298b326e vendor: github.com/sirupsen/logrus v1.9.3
1c18ad6ca6 vendor: github.com/rootless-containers/rootlesskit v1.1.1
ae4a10df67 update RootlessKit to v1.1.1
24c882c3e0 update go to go1.20.5
b3133d7471 contrib/check-config: move xt_bpf check to overlay section
8c552012ae contrib/check-config: check for xt_bpf
61d547fd06 Dockerfile: Move dockercli to base-dev
e5fbc3f75a hack/cli.sh: Quiet origin cleanup
1a078977e1 Dockerfile/shell: Install buildx cli plugin
c4198e6053 Dockerfile: Use separate cli for shell and integration-cli
647ba03224 builder-next: Set moby exporter as default
961fe27408 c8d/handlers: Handle error in walkPresentChildren
087cf6f238 c8d/load: Don't unpack pseudo images
0b9d68f59d c8d/load: Use walkImageManifests
cbf0779bfc c8d/list: Use walkImageManifests
0139309fef c8d: Add walkImageManifests and ImageManifest wrapper
e1c7956764 Dockerfile: use COPY --link for source code as well
75afe3201b containerd: add c8d version and storage-driver to User-Agent
8018ee4689 dockerversion: DockerUserAgent(): allow custom versions to be passed
ed376a603f dockerversion: remove insertUpstreamUserAgent()
1d45ea52f4 dockerversion: simplify escapeStr()
a27b0381a6 dockerversion: add a basic unit-test
1fc19772e0 Make sure the image is unpacked for the current snapshotter
4217d9ea0a Dockerfile: use COPY --link to copy artifacts from build-stages
4c6b8e737f added alias validation
e370f224ae fixing consistent aliases for OCI spec imports
ac1a867282 vendor: github.com/mistifyio/go-zfs/v3 v3.0.1
2949fee1d3 containerd: set user-agent when pushing/pulling images
f9c68e5fbc libn: fix resolver restore w/ chatty 'iptables -C'
3452a76589 libnetwork: fix sandbox restore
fec801a103 libnetwork: log why osl sandbox restore failed
d9e39914a7 Fix npe in exec resize when exec errored
042f0799db libn/d/overlay: support encryption on any port
ec8ec9056c builder/remotecontext: deprecate CachableSource, NewCachableSource
7a4ea19803 libcontainerd: work around exec start bug in c8d
ae6e9333c0 vendor: github.com/moby/buildkit v0.11.7-0.20230525183624-798ad6b0ce9f
0d9acd24fe c8d/inspect: Fill `Created` time if available
04eccf8165 vendor: github.com/containerd/go-runc v1.1.0
d64bab35ee daemon: lock in snapshotter setting at daemon init
329d671aef Dockerfile: temporarily skip CRIU stage
4cc2081119 integration: Add TestImageInspectEmptyTagsAndDigests
27df42255c hack: Rename .ensure-emptyfs to .build-empty-images
9ee7d30aef hack/ensure-emptyfs: Create dangling image
8a4b7c5af8 Add testenv.UsingSnapshotter utility
a753ca64e2 hack/make/.binary: don't use "netgo" when building Windows binaries
5276c2b6e0 c8d/pull: Use same progress action as distribution
baf1fd1c3f libnetwork: check for netns leaks from prior tests
992dc33fc5 libnetwork/osl: restore the right thread's netns
ef1545ed4a libnetwork: leave global logger alone in tests
876f5eda51 libnetwork: make resolver tests less confusing
47a3dad256 c8d/list: Show layerless images
0869b089e4 libnetwork: just forward the external DNS response
3467ba6451 reorder load funcs to match newServiceConfig()'s order
f9b886c01b add mirror to daemon reload test for insecure registries
07140c0eca build: use daemon id as worker id for the graph driver controller
d5ad186d49 ci(bin-image): distribute build across runners
4d924c35f7 api/server: allow empty body for POST /commit again
68b7ba0d03 api/inspect: Fix nil RepoTags and RepoDigests
5ea7b8d091 fix: `docker pull` with platform checks wrong image tag
Bumping docker-cli to version v24.0.2-9-g0823df7da, which comprises the following commits:
11af1189d docs: add "--detach-keys" example to docker run reference
f118c05e8 docs: move "--detach-keys" example to examples section
f66f7ed7f cli/command: fix GoDoc referencing wrong const
2814c01b0 Dockerfile.vendor: update GOPROXY to use default with fallback
32f66cbe5 vendor: github.com/docker/docker v24.0.2
dc4707edb [24.0] vendor: github.com/docker/docker v24.0.1
298e67926 docs: fix example for proxies in daemon.json
9175ffa9b man: remove devicemapper from examples
beb0330a7 Correct "ps --no-trunc" example output
405be9063 docs: remove AuFS from glossary
7a269817b docs: remove Docker Toolbox from glossary
41ef7c45c docs: remove boot2docker and docker-machine from glossary
c184a61da docs/deprecated: remove "disabled by default" for AuFS, overlay
e7a60449f docs: remove aufs and legacy overlay
77541afea contrib/completion: remove aufs, legacy overlay
e67a7acd0 docs/deprecated: remove .patch release from deprecation status
fb6ae356c vendor: github.com/docker/docker v24.0.0-rc.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6385f57723 |
oci-image-spec: update to 1.1.0-rc3
Bumping image-spec to version v1.1.0-rc3-14-g9615142, which comprises the following commits:
32036d8 Apply version change from #1050
f3f0906 Specify the content of the scratch blob
29a1380 Remove special guidance around wasm
2720969 Update descriptor.go
a68ca3e Remove artifact media type reference
428b1e5 releases: use +dev as in-development suffix
2f691e8 version: bump HEAD back to -dev
085b884 version: bump for release of v1.1.0-rc.3
fd45b6b Add scratch descriptor and scope layer limits
63b8bd0 Remove artifact manifest
23c4647 Define image manifest artifactType and guidance
5751791 Add Tianon as maintainer
f4fc83a Fix unused variable linting error
d09d13d Update Jon Johnson's email
4136bec descriptor schema: add missing data and artifactType definitions
729a03e manifest, specs-go/: provide guidance on SCRATCH config descriptor
31de013 manifest schema: add tests for the subject field
7a9efbd manifest schema: add the missing `subject` field
f2f1956 descriptor: clarify artifactType field must have compliant values
98f35df Update image spec and conversion to clarify groups
336b02c Require IANA mediaType for image config.mediaType and layers.mediaType
1f60184 Add Go 1.20 support
f99b121 Remove filtersApplied from image-spec
b5998ba specs-go/v1/*.go: align the deprecation style
6687119 Chore: fix go.mod - split direct/indirect dependencies
867ce74 ArtifactType is optional, omit when empty
ccb86b9 mention deprecation in media-types.md
9b4e6c0 even fewer words
2cdbef2 Deprecate non-distributable layers
265874e Note an exception to the platform.os recommendation for wasi
59780aa Add ArgsEscaped field to image config
3625ee3 doc: fix example in artifact.md
94f2431 version: bump main back to -dev
19a74bc version: release v1.1.0-rc2
0a97fe7 docs: Added artifact.md to docs and spec.md
c91663b Update RELEASES.md
0e7e0dd docs: Update release process docs with checklist
5d055a4 version: switch back to -dev
4728b6e version: bump for 1.1.0-rc1 release
a7ac485 Rename refers field to subject (#950)
4c15674 Use go install and full path to commands
ce50f1f Bump from Go 1.16 to 1.17
ca2e500 Embed Platform in Image
a865bc0 Fix whitespace consistency in config.md
da33ef0 Remove io/ioutil references
ed7e07b Add artifact to spec.md
bc9c4bd Update schema for mediaType validation (#933)
b04b320 Working Group Proposal for Reference Types
ba36edd Add regclient to implementations
293f064 Reverting json schema to well known value
ba3f174 Add maintainer nomination template
08825b8 Pinning version of golangci-lint to support 1.16
9747134 Move inactive maintainers to emeritus
0bd8a03 Add Brandon as maintainer
c7ca3ac Update URLs to https
874a191 Add Sajay as maintainer
6ffdc78 Move inactive maintainers to emeritus
d6ce48a Add mediaType fields into example manifest & image index JSON references
0895292 implementations: point to krustlet/oci-distribution
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c8d2b7f738 |
oci-runtime-spec: update to 1.1.0-rc.2
Bumping runtime-spec to version v1.1.0-rc.2-22-g720792f, which comprises the following commits:
1beaf68 CODEOWNER: Add Toru Komatsu(@utam0) to sync with MAINTAINERS
d46c8b2 schema: fix definition for ioPriority
504f70e Add I/O Priority Configuration for Process Group in Linux Containers
05563ea features: update Example
d89ef1e glossary: s/features document/Features structure/g
39bd2ef MAINTAINERS: add Toru Komatsu (utam0k)
f66aad4 Update ociVersion in config-linux.md example
206251f releases: use +dev as in-development suffix
8947849 spec: add scheduler entity
4ee185a version: v1.1.0-rc.2-dev
a5b4da4 version: release v1.1.0-rc.2
54f948c ChangeLog: Document changes since v1.1.0-rc.1
6152be4 schema: remove duplicate keys
9d7c878 Clarify I/O throttling differences between cgroup v1 and v2
b6980b0 schema: fix schema for timeOffsets
689874f Add `features.md` to formalize the `runc features` JSON
167ffb4 Add Go 1.20 support to CI
15d2a5a Switch Go linting to use golangci-lint
c9b5d0e Remove references to deprecated io/ioutil package
77c37f1 Update config-linux.md fix time_namespaces url error.
6c638b1 config: clarify Linux mount options
72efacb runtime: remove `When serialized in JSON, the format MUST adhere to the following pattern`
c42f9ae version: v1.1.0-rc.1-dev
3e013c2 version: release v1.1.0-rc.1
f790b68 ChangeLog: Document changes since v1.0.2
36bb632 Add support for time namespace
f225699 config: change prestart hook spec to match reality
4bcd065 seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
d931d4b config-linux: add CFS bandwidth burst
6be797c CODEOWNERS: sync with MAINTAINERS
9e658bc config-linux: add memory.checkBeforeUpdate
3565df5 config-linux: Clarify where device nodes can be created
1924f6b GOVERNANCE: correct the Charter URL
744912b add domainname spec entity
0da1600 fix rfc link
b57ada5 maintainer updates as per #1101
9d1130d IDMapping field for mount point
fc985aa config-linux: update type of LinuxCPU.Idle to *int64
bc545ec schema: add cpu idle
1fef707 Update Windows CPU comments
e78a3c3 Add available `LinuxSeccompFlag`s
600a8bd cgroup ownership: clarify that some files may not exist
b8dbce9 update idle type of LinuxCPU from *int64 to int64
9d363b3 config-linux: add idle option for container cgroup
b05eb53 typo: seccompFD -> seccompFd
a650533 config-linux: add support for rsvd hugetlb cgroup
84251a4 specs-go: export LinuxBlockIODevice
3f30167 schema: make with golang 1.16
34a7544 schema: update README.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
de3a655dc0 |
crun: update to v1.8.5
Bumping crun to version 1.8.5-30-g7da99fb, which comprises the following commits:
ef224f9 docs: remove module.wasm.image/variant=compat annotation
38f29c2 ci, wasmedge: use --platform wasi/wasm
62e68e2 ci,wasmedge: use latest instead of rawhide
5c9dbca libcrun: return with no-op when io_priority is NULL
755b47a lua: added luarocks packing
1d5748e src: define symbol for /proc/self/timens_offsets
c56e556 src: replace /proc/sys/kernel/cap_last_cap with symbol
db9274f src: define PROC_SELF_CGROUP and use it
1eeba46 src: quote more strings
8ca1f68 build: add check for atomic_bool
e542666 build: add explicit check for atomic_int
43fc74c src: uniform the quoting style
3839e6e src: add missing quotes
0ca1f0b container: do proper cleanup on errors
ee3e6f6 tests: add tests for ioprio
63a4f97 src: fix macro check
e6306b8 tests: reorder includes
edfd0c9 container: support io_priority from the OCI specs
478f047 libocispec: sync
b6f80f7 NEWS: tag 1.8.5
a1f9b7d tests: update ubuntu to lunar
026f249 tests: update containerd
6494b69 cgroup: set the memory limit on the system scope
4d2d5b3 cgroup: move code to an utility function
c56c3c4 cgroups: fix creating cgroup under "domain threaded"
bbee4bc More informative error message for the case where dlopen fails
1ad17f8 Refactor: Restore serial settings for incorrect serial
087db89 scheduler: use definition from OCI
0135eb1 libocispec: update
76ed8df criu: fix memory leak
7a45ba8 ci: temporarily disable cri-o tests
a717db7 criu: fix segfault if CRIU_JOIN_NS_SUPPORT is defined
3f972e1 github: try not loading kernel modules
bca0b3b linux: check the PID is valid before kill(2)
62b149b tests: skip slow cri-o tests
7bbacf9 fix clang-format
c0eb006 src: make clang-format
6639649 lua: fix typo
906142d linux: do not precreate devs with euid > 0
f40d974 Improve whitespace in generated `crun spec`
ed25b47 tests/test_exec: don't fail on PIDs < 10000
909ae4d tests: abstract tests/init to get_init_path()
df8ee48 criu: check if the criu_join_ns_add function exists
5a8fa99 NEWS: tag 1.8.4
898ffb5 tests: fix idmap mount test
a2ac2b9 tests: install irqbalance
6b33ec5 tests: drop cri-o tests instead of deleting file
6824924 cgroup: workaround cpu quota/period issue with v1
fc276e6 cgroup: fix set quota to -1
58b394a build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2
bf79b09 src: wire the runtime spec time namespace
bfa4f48 linux: create PID namespace as part of the last step
4320b5d libocispec: sync
39bf623 criu: drop loading unused functions
59f2beb NEWS: tag 1.8.3
ae18930 update: initialize the rt_scheduler only on cgroupv1
crun/rspec: update to 1.1.0-rc.2
1beaf68 CODEOWNER: Add Toru Komatsu(@utam0) to sync with MAINTAINERS
d46c8b2 schema: fix definition for ioPriority
504f70e Add I/O Priority Configuration for Process Group in Linux Containers
05563ea features: update Example
d89ef1e glossary: s/features document/Features structure/g
39bd2ef MAINTAINERS: add Toru Komatsu (utam0k)
f66aad4 Update ociVersion in config-linux.md example
206251f releases: use +dev as in-development suffix
8947849 spec: add scheduler entity
4ee185a version: v1.1.0-rc.2-dev
a5b4da4 version: release v1.1.0-rc.2
54f948c ChangeLog: Document changes since v1.1.0-rc.1
6152be4 schema: remove duplicate keys
9d7c878 Clarify I/O throttling differences between cgroup v1 and v2
b6980b0 schema: fix schema for timeOffsets
689874f Add `features.md` to formalize the `runc features` JSON
167ffb4 Add Go 1.20 support to CI
15d2a5a Switch Go linting to use golangci-lint
c9b5d0e Remove references to deprecated io/ioutil package
77c37f1 Update config-linux.md fix time_namespaces url error.
6c638b1 config: clarify Linux mount options
72efacb runtime: remove `When serialized in JSON, the format MUST adhere to the following pattern`
c42f9ae version: v1.1.0-rc.1-dev
3e013c2 version: release v1.1.0-rc.1
f790b68 ChangeLog: Document changes since v1.0.2
36bb632 Add support for time namespace
f225699 config: change prestart hook spec to match reality
d931d4b config-linux: add CFS bandwidth burst
9e658bc config-linux: add memory.checkBeforeUpdate
3565df5 config-linux: Clarify where device nodes can be created
a650533 config-linux: add support for rsvd hugetlb cgroup
crun/ispec: update to 1.1.0-rc.3
32036d8 Apply version change from #1050
f3f0906 Specify the content of the scratch blob
29a1380 Remove special guidance around wasm
2720969 Update descriptor.go
a68ca3e Remove artifact media type reference
428b1e5 releases: use +dev as in-development suffix
2f691e8 version: bump HEAD back to -dev
085b884 version: bump for release of v1.1.0-rc.3
fd45b6b Add scratch descriptor and scope layer limits
63b8bd0 Remove artifact manifest
23c4647 Define image manifest artifactType and guidance
5751791 Add Tianon as maintainer
f4fc83a Fix unused variable linting error
d09d13d Update Jon Johnson's email
4136bec descriptor schema: add missing data and artifactType definitions
729a03e manifest, specs-go/: provide guidance on SCRATCH config descriptor
31de013 manifest schema: add tests for the subject field
7a9efbd manifest schema: add the missing `subject` field
f2f1956 descriptor: clarify artifactType field must have compliant values
98f35df Update image spec and conversion to clarify groups
336b02c Require IANA mediaType for image config.mediaType and layers.mediaType
1f60184 Add Go 1.20 support
f99b121 Remove filtersApplied from image-spec
b5998ba specs-go/v1/*.go: align the deprecation style
6687119 Chore: fix go.mod - split direct/indirect dependencies
ccb86b9 mention deprecation in media-types.md
9b4e6c0 even fewer words
2cdbef2 Deprecate non-distributable layers
265874e Note an exception to the platform.os recommendation for wasi
0a97fe7 docs: Added artifact.md to docs and spec.md
293f064 Reverting json schema to well known value
crun/libocispec: update to -tip
b085839 runtime-spec: update
553cfb4 image-spec: update
384a230 runtime-spec: update
2c9fb39 libocispec: write _present tags together
dc7412b image-spec: update
2e11380 runtime-spec: update
e7b7344 rust: sync runtime-spec and image-spec
df3036c runtime-spec: sync
8a0ee41 image-spec: sync
70826dc clean: remove unwanted diff file
4d1d608 add redefine for stdin stdout stderr when using musl
02f231b Move header files under ocispec/
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
703feb3116 |
umoci: update to 0.4.7-tip
Bumping umoci to version v0.4.7-150-g33ec006, which comprises the following commits:
150b9e0 build(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4
1c365a2 build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
6e6027c build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
b267d7b test: move 'go test' output to stderr for coverage binary
947f407 build(deps): bump github.com/opencontainers/runc from 1.1.6 to 1.1.7
e9394e8 CHANGELOG: update to include changes from v0.4.7
08672f5 vendor: bump several deps
b4f2258 go.mod: update Go version to go1.18
b285980 build(deps): bump github.com/vbatts/go-mtree from 0.5.2 to 0.5.3
61c566b build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.30.0
a0bb45f build(deps): bump actions/setup-go from 3 to 4
bdfd50b build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
37c828e gha: ci: make ci-image cache expire weekly
3e7ddbd dockerfile: update to leap 15.4
44a127b Makefile: pull image details from Dockerfile
c99bc38 dockerfile: fetch oci-*-tools with go install
701c194 test: update to gomtree 0.5.2
ac5e249 test: (raw-)config: only use export in sub-shell
c8183de oci: config: strip "-dev" from runtime-spec version
b1c2cdf oci: config: correctly handle runtime-spec versions
de9ad94 make: add -buildvcs=false to builds
6d52935 gha: bump Go version for validate to Go 1.20.x
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
e215f05c27 |
skopeo: restructure recipe to fix buildpaths warnings
Like many of the other go recipes, the method of symlinking vendor packages ends up recording the path in the binary. -trimpath can't fix those embedded paths, so we switch skopeo to be link the other recipes and position our source in a way that doesn't require the symlinking, and hence no QA warning. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
05e51d92d5 |
skopeo: update to 1.12.0
Note: this has trimpath issues, and needs to be re-worked to not use
symlinked vendor directories.
Bumping skopeo to version v1.12.0-25-gcf502780, which comprises the following commits:
c06aa5c6 Update module github.com/stretchr/testify to v1.8.3
ac75f71f Update dependency containers/automation_images to v20230517
21b1dfee Update module github.com/sirupsen/logrus to v1.9.2
ead979a9 Update module github.com/docker/distribution to v2.8.2+incompatible
12b24fce Trigger an update of the ostree_ext container image
44ed4cea Update c/image with https://github.com/containers/image/pull/1944
9213943e Update module github.com/containers/common to v0.53.0
2825ffd9 Update module golang.org/x/term to v0.8.0
86eea6ce Update dependency containers/automation_images to v20230426
03e18aa9 Update golang.org/x/exp digest to 47ecfdc
7b587697 Emphasize the semantics of --preserve-digests a tiny bit
1e6b333f Improve the static build documentation a tiny bit
95e8cce2 Bump to v1.12.1-dev
a5529097 Release 1.12.0
5f0314f3 Update module github.com/containers/common to v0.52.0
66157589 Update module github.com/containers/storage to v1.46.1
7c66b740 Add (make tools) to install (for now only) golangci-lint, use it in Cirrus
d4bd787e Use golangci-lint instead of golint
c538340e Finally, eliminate hack/make.sh
f8f5a25f Actually fail if (go vet) fails
aebab492 Speed up validate-git-marks by about a factor of three
4298692d Don't use hack/make.sh for validate-git-marks
7e35ad54 Test all files by validate-git-marks
789257f7 Simplify the package list of (go vet)
bee51e5e Don't use hack/make.sh for validate-gofmt
85fef036 Run gofmt on all files, not just the changed ones
82268ea8 Don't use hack/make.sh for validate-lint
694b1565 Lint many more files in validate-lint
43090b29 Don't use hack/make.sh for validate-vet
225f239a Remove no-longer-necessary module options
98b01af0 Fix Makefile dependencies
835d71a3 Remove some outright unused code from hack/make*
30ecd8f0 Cross-link the top-level and subcommand option lists
4be583c8 Fix error handling of signature.NewEphemeralGPGSigningMechanism
e8414097 chore(deps): update dependency containers/automation_images to v20230405
4f5e8214 Avoid use of a deprecated capability.NewPid
ca0f8418 fix(deps): update module github.com/spf13/cobra to v1.7.0
b0d339f0 fix(deps): update module github.com/containers/image/v5 to v5.25.0
03ca2871 fix(deps): update module golang.org/x/term to v0.7.0
4ca2058d Use multiple fingerprint function Allow comma separated fingerprint list
c54f2025 Review comments (to be squashed later
9b1f1fa1 Rename argument. Only use any with public key file. Double check fingerprint is in public key file.
3097b7a4 Verify signatures from a trust store
bfe82593 Update c/image from the main branch
468ac655 Update module github.com/containers/common to v0.51.2
7481aae6 Update dependency containers/automation_images to v20230330
454f8559 systemtests: Fix 040-local-registry-auth about XDG_RUNTIME_DIR
bbdcb79c [CI:BUILD] Packit: trigger builds on commit to main branch
cd4f2ee5 [skip-ci] Update actions/stale action to v8
b2ede999 Make the installation instructions more prominent in README.md
8ea5fd44 Update dependency containers/automation_images to v20230320
aa9862a7 Update module github.com/containers/common to v0.51.1
0ad54d6d Cirrus: Update CI VM images
20447df1 bump golang.org/x/net to v0.8.0
3481a5b9 Update module golang.org/x/term to v0.6.0
bcc0d54e Simplify inspectOptions.writeOutput a bit more
c345785d Factor out the output of data in (skopeo inspect)
2a6a944c Use io.WriteString
9a02c1eb Update module github.com/stretchr/testify to v1.8.2
f1c03ef1 Update module github.com/containers/storage to v1.45.4
64daedca Update golang.org/x/exp digest to 5e25df0
c07f2098 Fix formatting of inspect examples
313f142c Use common library reporter
4beb3f0a Fix some warnings
1c3d49f0 Fix tabelating output in (skopeo inspect --format)
fb0be613 Corrected typo in skopeo-sync and updated description
2ef9cf69 Replace gopkg.in/check.v1 by github.com/stretchr/testify/suite/
0ba164f0 Update c/image after https://github.com/containers/image/pull/1842
012e1144 [CI:BUILD] Packit: initial enablement
5435c808 Renovate: c/common rule moved to defaults
643a2359 Update c/image after https://github.com/containers/image/pull/1816
2c6e15b5 Run codespell on codebase
df708d16 [CI:DOCS] Disable dependabot
2acac8a6 Update module golang.org/x/term to v0.5.0
f9e2c676 Update golang.org/x/exp digest to 46f607a
47c7902e Remove unnecessary blank lines
c1a57ca1 Pre-allocate an array
2a7b1327 Simplify a condition
e7ab33e6 Rename a variable to avoid an underscore
e90c381a Add missing comment punctuation
70c06b4a Fix, or remove, comments using lint syntax
9137ac56 Simplify an increment
efc6e837 Reformat import statements
a8b9e4e3 Use %w when wrapping errors
99215e40 Remove a duplicate word
afa031e8 Use net/netip.Addr instead of net.IP
891ba3d4 s/interface{}/any/g
f2b3a9c0 Use golang.org/x/exp
f1a6d427 Use strings.Cut
22955d05 go mod tidy -go=1.18
007f01c6 [CI:BUILD] enable debuginfo for el8 copr builds
036bf598 [CI:BUILD] copr: fix el8 build and enable debuginfo
f9406bb0 Cirrus: Use human-readable CI VM Images
b41b85ab Update module gopkg.in/yaml.v2 to v3
d2fbec35 Add unit tests for tlsVerifyConfig's yaml.Unmarshaler
9e24a195 [CI:DOCS] Fix up language in README
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
28eda60a52 |
moby: update to v24.0.0
Bumping moby to version v24.0.0-2-g821e4ec4c7, which comprises the following commits:
5ea7b8d091 fix: `docker pull` with platform checks wrong image tag
907f037141 update containerd binary to v1.7.1
8bbfa32741 c8d: The authorizer needs to be set even if AuthConfig is empty
8587a1c617 c8d/builder: implement cache
9717369913 c8d: implement classic builder
233c49438b c8d: Don't create authorizer for empty AuthConfig
2b7424512a c8d/authorizer: Default to docker.io
f77a3274b4 [chore] clean up reexec.Init() calls
c76bb6a3a3 ci: bin-image workflow
71846e82c1 bin-image bake target
ecbc27aa22 vendor: github.com/docker/distribution v2.8.2
1235338836 c8d: implement missing image delete logic
763d2b7996 c8d: fix image history for dangling images
86770904be c8d: fix missing image history
bfffb0974e pkg/aaparser: deprecate GetVersion, as it's no longer used
e28bc0d271 profiles/apparmor: remove use of aaparser.GetVersion()
d169a57306 contrib/apparmor: remove remaining version-conditionals (< 2.9) from template
63640838ba daemon: handleContainerExit(): add execDuration in attributes
012dd239ce docs/api: version-history: also mention /system/df for VirtualSize
a87313497b vendor: github.com/containerd/containerd v1.6.21
5f36d4af15 api: synchronize api/swagger.yaml with docs/api/v1.43.yaml
2b6761fd3e d/graphdriver/copy: support src fs w/o xattr support
3e6092f5b2 pkg/jsonmessage: touch-up GoDoc
05cb0e5a7d pkg/jsonmessage: JSONProgress.String(), JSONProgress.now(): simplify
4cadee65b3 pkg/jsonmessage: JSONMessage.Display(): remove special case for 401 errors
66cf0e3f55 client: slightly improve ContainerDiff tests
dbb48e4b29 api/types/container: create type for changes endpoint
b7e8868235 update go to go1.20.4
bf3c156654 vendor: github.com/moby/term v0.5.0
c1d420ec60 vendor: github.com/moby/term v0.0.0-20221205130635-1aeaba878587
0df38c3e2b vendor: github.com/opencontainers/runtime-spec v1.1.0-rc.2
167fa429f0 daemon: Daemon.CreateImageFromContainer(): remove intermediate vars
bf5ae17c16 api/server/router/container: containerRouter.postCommit: inline struct
9613da63dc c8d: commit: generateCommitImageConfig: don't merge image config
e510abbc8c daemon/containerd: containerConfigToOciImageConfig: add ArgsEscaped
3eebf4d162 container: split security options to a SecurityOptions struct
8142051a3b libnetwork/osl: unify stubs for NeighOption
0ea41eaa51 libnetwork/osl: unify stubs for IfaceOption
021e89d702 libnetwork/osl: rename var that collided with import
3a4158e4fa libnetwork: add missing stub for getInitializers()
939a4eb5c9 libnetwork: fix stubs
17feabcba0 libnetwork: overlayutils: remove redundant init()
44a6587608 c8d: delete dangling image on pull
1e9ebfb00c libnetwork: inline sendKey() into SetExternalKey()
9d8fcb3296 libnetwork: setKey(): remove intermediate buffer
a813d7e961 libnetwork: don't register "libnetwork-setkey" re-exec on non-unix
881fff1a2f libnetwork: processSetKeyReexec: don't use logrus.Fatal()
e974599593 libnetwork: processSetKeyReexec() remove defer()
1845a915b0 c8d/import: Don't gc unnamed images
0ffd3225d2 vendor: github.com/opencontainers/runc v1.1.7
2d0e899819 update runc binary to v1.1.7
56fbbde2ed libnetwork/resolvconf: fix some minor (linting) issues
820975595c libnetwork/resolvconf: improve tests for Build
93c7b25ccd libnetwork/resolvconf: refactor tests for readability
43378636d0 libnetwork/resolvconf: allow tests to be run on unix
73c637ad60 libnetwork/resolvconf: use t.TempDir(), change t.Fatal to t.Error
fc1e698914 libnetwork/resolvconf: fix TestGet() testing wrong path
55d18b7db9 libnetwork/resolvconf: use []byte for hash instead of string
630fc3839e libnetwork/resolvconf: simplify hashData() and improve performance
12bf850c84 cmd/dockerd: gracefully shut down the API server
520aa08d42 c8d/prune: Logging fixes
52af6d957e c8d/prune: Remove gc.ref labels from configs of deleted images
993ca8c6de cmd/dockerd/trap: log to logrus directly
0f3c5d3893 cmd/dockerd/trap: don't force exit after cleanup
a1e1038736 Use the image service instead of the reference store for tagging
9fe5ac6614 c8d: Handle nil container.ImageManifest
16d5d4b6e1 cmd/dockerd: ignore SIGPIPE using signal.Ignore
2d31697d82 daemon: set docker0 subpool as the IPAM pool
d8b784a15e daemon/cluster: inline filters
da8e07edb5 volume/service: inline filters in tests
c0c4a16053 testutil: inline filters in tests
b6154189e8 integration: inline filters in tests
1bc0d7080a integration-cli: inline filters in tests
5bc0832766 daemon: inline filters in tests
081b5e3d4e client: inline filters in tests
aca8dde362 integration/TestKillContainer: Bigger timeout on Windows
391f9635cc c8d/list: Initialize capacity instead of length
4ec063fade pkg/sysinfo: omit Getpid call in numCPU
f66684fdeb fix some comments
c399963243 libn/d/overlay: make VNI matcher IPv6-compatible
7d9bb170b7 libn/d/overlay: test the VNI BPF matcher on IPv4
4876c09b2a build(deps): bump github.com/creack/pty from v1.1.11 to v1.1.18
8df3db4b97 c8d: add support for removing images by shortID
117ceac82b daemon/prune: Use errdefs for invalid "until" value
e502c69140 builder: use typed error for invalid "until" value
9791756284 overlay2: remove deprecated overlay2.override_kernel_check option
54a125f677 builder-next/prune: Handle "until" filter timestamps
38e791fb2f vendor: update buildkit to v0.11.6
005150ed69 check-config.sh: do not check for RT_GROUP_SCHED
f72548956f remove deprecated legacy "overlay" storage-driver
4ecb587eff daemon: skip TestGetInspectData when using containerd snapshotters
a82c434447 daemon: setupFakeDaemon(): add fakeImageService
1261fe69a3 API: deprecate VirtualSize field for /images/json and /images/{id}/json
eb7738221c Add no-new-privileges to SecurityOptions returned by /info
e7980275c0 c8d: align "Size" and "VirtualSize" for images
1e1efe1f61 libnet/d/overlay: clean up iptables rules on network delete
9a9dfb1d0d api/server: getImagesJSON(): don't check version in a loop
3903f16cd6 daemon: remove deprecated AuFS storage driver
890959eea8 builder-next: fix buildkit version
bc37e3f830 Fix returning errors from snapshotter.Prepare
f846349824 c8d/list: Implement `until` filter
d89590eab9 c8d: Implement prune
e6ac640d2e vendor: github.com/opencontainers/runc v1.1.6
f531e3cf69 vendor: golang.org/x/net v0.8.0
3886faced8 vendor: golang.org/x/text v0.8.0
d0efca893b update runc binary to v1.1.6
7fe0f73838 Fix argument quoting bugs in dockerd-rootless.sh
9cb5da400c images/Children: Return error
edf802956e c8d/list: Implement `label` and `label!` filter
03fc3aad12 daemon: touch-up flag description for --seccomp-profile
5a922dc162 daemon: deprecate --oom-score-adjust for the daemon
f696a1b3b3 Fix error checking when pulling from an insecure registry
c957ad0067 libnetwork: clean up inDelete network atomically
e5dbd28afd Added timeout to validate job in github actions
106c694993 Dockerfile: update xx to 1.2.1
a5d46a15f5 split GetRepository from ImageService
893d28469f vendor: github.com/ishidawataru/sctp v0.0.0-20230406120618-7ff4192f6ff2
f66374f6a8 golangci-lint: enable importas linter to force consistent aliases
81e62af94a use consistent alias for containerd's errdefs package
f691b13450 daemon: move code related to stats together
5c78cbd3be pkg/platform: deprecate OSType in favor or runtime.GOOS
cf9a76fe8f pkg/platform: un-export consts that are only for internal use
790dd8cc92 pkg/platform: use const for OSType, improve GoDoc
87019144f6 pkg/platform: replace use of deprecated syscall.Syscall
7ca38d64d2 pkg/platform: move package doc to platform-agnostic file
9434919f76 pkg/platform: rename files for consistency
be4abf9d6e Vendor containerd 1.6.x with the readonly mount fix
41a230758c c8d: Set the process user on exec
70229b55ec vendor: github.com/moby/swarmkit/v2 v2.0.0-20230406225228-75e92ce14ff7
3f09316e3b vendor: re-vendor to add missing file
8ed900263e libnetwork/overlay: remove host mode
1d46597c8b libnetwork/overlay: remove KVObject implementation
f32f09e78f libnetwork/overlay: don't lock network when accessing subnet vni
b67446a8fa libnetwork: remove local store from overlay driver
8aa1060c34 libnetwork/overlay: remove live-restore support
e3708a89cc libnetwork/overlay: remove vni allocation
e251837445 libnetwork/overlay: remove Serf-based clustering
644e3d4cdb libnetwork/netlabel: remove dead code
f8b5fe5724 libnetwork/netutils: remove dead code
c8d2c6ea77 libnetwork: remove unused props from windows overlay driver
0fa873c0fe libnetwork: remove global store from overlay driver
00037cd44b libnetwork: remove ovrouter cmd
e0f36f9d8b ImageService: Pass ctx to Children
bea751beb7 c8d: Implement Children by comparing diff ids
ba47cdcc0b c8d/list: Implement `reference` filter
4aa2876c75 docker-rootless-setuptools.sh: improve readability of messages
4d04068184 libn/d/overlay: only program xt_bpf rules
f6cc8e3512 update go to go1.20.3
465cbccdaf c8d: use the container's configured snapshotter where possible
c8f8d11ac4 awslogs: fix non-blocking log drop bug
1b178dffa3 Send an event when an image is deleted
36d28b73fc Send an event when an image is tagged
750218c5e5 d/config: fix default-network-opts in daemon.json
36935bd869 libcontainerd: close stdin sync if possible
3beda17773 integration-cli: rename vars that collided with imports
92e38b6e27 c8d/list: Ignore attestation manifests
773a9d85a1 c8d: Send event when an image is exported
00545ef4d6 c8d: Send event when an image is imported
e59f7fba6a pkg/fileutils: remove aliases for deprecated functions and types
6b9968e8b1 client: deprecate NewClient properly
027f70562e c8d/push: Rename jobs to avoid shadowing type
e1dd9c0396 c8d/push: Ignore :port when comparing source repository
4a34c501c1 c8d/push: Parse source labels with multiple sources
cb788bea9c c8d/push: Add distribution source labels only on success
013e44ec5d c8d/push: Log error if releasing the lease failed
c9012c798e c8d/push: Sync mountableBlobs access
f6b50d52d4 libnetwork/netutils: drop ElectInterfaceAddresses
61a0e79ad6 vendor: github.com/containerd/containerd v1.6.20
b8e963595e libnetwork: sbState: rename ExtDNS2 back to ExtDNS
0233029d5a vendor: opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
c733cf223d vendor: github.com/containerd/ttrpc v1.1.1
a0ef2ac59c c8d: push: addressing some nits
a75354c045 c8d: Implement push
e7393d0fc5 images/push: Accept reference
15b9176d53 Add the events services to the containerd image service
77be7b777c update runc binary to v1.1.5
a17029ba49 vendor: github.com/opencontainers/runc v1.1.5
24804e67f5 c8d/commit: Use manifest digest for dangling image
845b328734 Skip Buildkit digest tests
4c459ddabd c8d: add support for `docker diff`
e85c69e1b7 Update `github.com/containerd/containerd` to the HEAD of `release/1.6` and vendor
f09b1022aa c8d/inspect: Handle dangling images
9e3a6ccf69 libn/i/setmatrix: make generic and constructorless
713c9280ca Move buildkit client opts to new package
4f511bd06e Add akerouanton as curator
bb2c5617d6 Add laurazard as curator
988d26afe4 vendor: github.com/moby/buildkit v0.11.5
6caaa8cadc Prefer loading `docker-init` from an appropriate "libexec" directory
bae49ff278 libnet/d/windows: log EnableInternalDNS val after setting it
4f48a4ea2a Update delve version
0fa7a4e3b4 client: Add buildkit ClientOpts
965eda3b9a libnet/d/overlay: insert the input-drop rule
66dfc0169f dockerversion: DockerUserAgent(): use sync.Once to construct User-Agent
72dc7a0f7b vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
c7ccc68b15 Silence GRPC logs unless our log level is debug
be34e93f20 integration-cli: Enable TestExecStartFails on Windows
cb76638699 registry/search: pass User-Agent through headers
88992de283 StartWithLogFile: Fix d.cmd race
fed1c96e10 TestDaemonRestartKillContainers: Fix loop capture
f5050d4ef2 ci: disable testing mergeop and diffop with the dockerd worker
0ac3bf837b builder-next: disable mergeop and diffop
c14463d1e4 ci: enable BuildKit tests with containerd integration worker
105b9834fb libnet/d/overlay: add BPF-powered VNI matcher
44cf27b5fc libnet/d/overlay: extract VNI match rule builder
142f46cac1 libn/d/overlay: enforce encryption on sandbox init
0ac02ba342 vendor: github.com/opencontainers/runtime-spec v1.1.0-rc.1
ab131642a1 vendor: github.com/opencontainers/runc v1.1.4
b98c05dc50 vendor: github.com/klauspost/compress v1.16.3
664c0d3201 vendor: github.com/godbus/dbus/v5 v5.1.0
3e4ce10342 vendor: github.com/coreos/go-systemd/v22 v22.5.0
0a2e3f14e7 vendor: github.com/opencontainers/selinux v1.11.0
bc1dec71c5 vendor: github.com/imdario/mergo v0.3.13
9752e43644 vendor: golang.org/x/sys v0.6.0
d4fd582fb2 libnet/d/overlay: document some encryption code
58504620c5 api/types/container: IpcMode: use common function for container-mode
6f0e28d024 api/types/container: PidMode: fix validation for empty container name/ID
53c813961e api/types/container: fix .Container() returning a name, when it shouldn't
c76331e13f api/types/container: put "valid" field as first check in tests
2d49080056 pkg/sysinfo: move MemInfo and ReadMemInfo to a separate package
a050db4a6f libnetwork/d/overlay: handle peer ops directly
09d39c023c libnetwork/i/setmatrix: devirtualize
3b569cc686 daemon/graphdriver/windows: cleanup errors
bbeaeee3c7 daemon/graphdriver/windows: remove some intermediate variables
9db5dc9a46 daemon/graphdriver/windows: use strings.EqualFold()
d742188e3b daemon/graphdriver/windows: remove fileFlagSequentialScan const
3a8c97be45 daemon/graphdriver/windows: rename vars that collided with imports
605e8f53b1 daemon/graphdriver/windows: InitFilter() don't use idtools.MkdirAllAndChown()
34303ccd55 libnetwork/i/setmatrix: un-embed the mutex
127cd9def1 integration/plugin: fix duplicate import
2987393768 integration/volume: fix duplicate import
146df5fbd3 Fix pruning anon volume created from image config
058a31e479 volumes: fix error-handling when removing volumes with swarm enabled
a2c29e9128 update containerd binary to v1.7.0
7531f05c7c integration/volumes: TestVolumesRemove: add coverage for force/no-force
7b3acdff5d registry: return concrete service type
3991faf464 Move filtered registry search out of image service
06619763a2 remove GetLayerByID from ImageService interface
02dec48bab update to go1.20.2
37a9d6aabe Fix listener parsering regression when no addr set
3bbffe96e1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
af677245fb c8d/builder: Store untagged images as dangling
8f716ca06a builder/overrides: Add consts for attribute key names
e807ae4f2e vendor: github.com/containerd/cgroups/v3 v3.0.1
44d0522848 c8d/inspect: Add digested reference to details
a8f5c524a0 libcontainerd: Upgrade to typeurl/v2
45ee4d7c78 c8d: Compute container's layer size
4026148ef1 Dockerfile: Update shfmt to 3.6.0
a0741cacef contrib/dockerize-disk.sh: Fix indentation
088aff1620 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230302163403-80a528a86877
f8b468fda2 builder-next: enable more cache backends
bba77163ff c8d: Make build and buildx work
b0b3c62a84 vendor: github.com/moby/buildkit v0.11.4
117cdb28ce regenerate AUTHORS
608a122aef integration: Extract StopContainerWindowsPollTimeout const
74dbb721aa TestLogs: Increase stop check poll timeout on Windows
a34060cdb4 Resolve and store manifest when creating container
168ca2dcc8 Introduce support for docker commit
22f303e422 layer: NewStoreFromOptions(): include driver-name in error message
f52e935f36 reference: add test-coverage for digested references
f71439d527 reference: don't string-match errors in tests, and fix error format
669940065f reference: use t.TempDir() for tests
520dc12c0e reference: rename variables that collided with type / import
c477cda59f c8d/list: Support dangling filter
3e4c4df664 builder/exporter: Remove commented unused const
324290a5eb vendor: buildkit v0.11.4-0.20230228113103-218e934edfba
6588b3eef0 builder: Remove buildkit's build information
4ea1c9f8e5 `docker image ls`: handle multi-platform images
a9e7360775 daemon/config: remove AuthzMiddleware field
47e9caede7 libcontainerd/client: Rename `cp` to `checkpoint`
0c751f904f libcontainerd/client: Fix checkpoint not being set
be39be87f6 api/server: delete Wait method
91c2b12205 Make default options for newly created networks configurable
19ad4ac03d registry: acquire mutex in IsInsecureRegistry
ef6f5367dc vendor: github.com/containerd/containerd v1.6.19
5997ad8512 vendor: github.com/Microsoft/hcsshim v0.9.7
0a6a726d26 api/server: drop unused Config struct
248745004a api: Remove <none> in Repo(Tags|Digests) for >= 1.43
0ffaa6c785 daemon: add annotations to container HostConfig
3c59ef247f libnet/ipam: use netip types internally
01dbe23b6f libnet/ipam: simplify the data model
8273db28f3 libnet/ipam: inline parsePoolRequest function
9a8b45c133 libnet/ipam: drop vestiges of custom addrSpaces
18ac200efe libnet/ipam: get rid of superfluous closure
88f6b637a0 libnet/networkdb: fix nil-dereference panic in test
f8791db4be c8d/list: Fix Repo(Digests|Tags) for untagged images
cd779dae46 Upgrade to Go 1.20.1
d4e7a87b96 Upgrade to Go 1.20
3606d6a7cd Upgrade to golangci-lint v1.51.2
2f9e3cca3d api: Move Repo(Digests|Tags) <none> fallback from daemon
8657c87c8c c8d/tag: Don't create a separate error variable
9f6649b248 AUTHORS: regenerate
50d7164978 docs/api: add v1.43 OpenAPI definitions
bb21e0f191 Close DecompressStream after layer is downloaded
d6c4e17411 Upgrade containerd/fifo to v1.1.0
782a369f92 c8d/pull: Add CRI-compatible annotation of pulled content
a770153af0 chore: use http constants to replace numbers
9104cd5441 vendor: github.com/moby/buildkit v0.11.3
b0eed5ade6 daemon: allow shimv2 runtimes to be configured
4a886a3e8f dependency: bump go.etcd.io/bbolt to v1.3.7
e40c4c997e update containerd binary to v1.7.0-beta.4
f8cfd3a61f libnetwork: devirtualize Resolver type
faaa4fdf18 libnetwork: forward unknown PTR queries externally
8f5a9a741b libnetwork: fail loudly on resolver iptables setup
25b51cad3d libnetwork: replace ad-hoc semaphore implementation
a1f7c644be libnetwork: use dns.Client for forwarded requests
e6258e6590 libnetwork: reply SERVFAIL if DNS forwarding fails
9cf8c4f689 libnetwork: extract DNS client exchange to method
854ec3ffb3 libnetwork: extract dialExtDNS to method
51cdd7ceac libnetwork: truncate DNS msgs using library method
860e83e52f libnetwork: get rid of truncation red herring
8a35fb0d1c libnetwork: refactor ServeDNS for readability
0bd30e90bb libnetwork: reply SERVFAIL on resolve error
92aa6e6282 libnetwork: extract fn for external DNS forwarding
78792eae68 libnetwork: add regression test for issue 44575
94feb31516 update to go1.19.6
b62445871e libnet/ipam: fix racy, flaky unit test
81f9f90e47 Do not log connection info before the connection exists
c4c54683a9 Revert "apparmor: Check if apparmor_parser is available"
174802e15f vendor: github.com/containerd/containerd v1.6.18
a4e3c67e44 api/s/r/swarm: log backend errors at Debug level
e66995d840 d/l/awslogs: fix ineffective Add in test
713e02e03e daemon: handle EISDIR error from runtime
97921915a8 distribution/xfer: fix download fencepost bug
0c68b655f6 Fix loop-closure bugs in tests
dea3f2b417 Migrate away from things deprecated in Go 1.20
a36286cf89 vendor: golang.org/x/net v0.7.0
c7de76569e vendor: golang.org/x/text v0.7.0
a53b44a266 vendor: golang.org/x/sys v0.5.0
c53e22af19 add new maintainers!
046cc9e776 libnetwork: check DNS loopback with user DNS opts
d31fa84c7c libnet/networkdb: use atomics for stats counters
3539452ef0 libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
5287b2ddbf libnet/ipam: stop eagerly stringifying debug logs
2e19a4d56b contrib/apparmor: remove version-conditionals (< 2.9) from template
7008a51449 profiles/apparmor: remove version-conditional constraints (< 2.8.96)
eaeaa7b7fd vendor: update buildkit to latest v0.11
335907d187 builder: define GetRemotes for the worker
80f8432b52 ci: fix branch filter pattern in buildkit workflow
62be425bcc api: Extract parsing reference from repo and tag
afc6e3fa46 c8d/import: Use danglingImageName instead of hardcoded
b3a8b6b198 api/tag: Reject digested target references
eaa56afda9 daemon/c8d: Implement TagImageWithReference
1ca85e835c daemon/imageService: Remove TagImageWithReference
7b6f71dced daemon: Pass ctx to image tagging operations
22776f8fdb ci: enhance tests distribution
e304e82b66 ci: update gotestlist to 0.3.1
ab3fa46502 apparmor: Check if apparmor_parser is available
0137446248 Implement run using the containerd snapshotter
e564932792 gha: switch buildkit back to upstream for testing
91725ddc92 libnet/d/ipvlan: gracefully migrate from older dbs
21677816a0 Dockerfile: configure code dir as "safe" directory
3bcb350711 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
521c2b25c2 docs: fix JSON format error
af32603ae3 daemon/c8d: Implement save and load
043dbc05df github: apply patch for CNI test that was incorrectly skipped
666334bd48 vendor: update buildkit to v0.11.2
85169a04cf vendor: github.com/tonistiigi/fsutil v0.0.0-20221114235510-0127568185cf
cf83842304 Dockerfile: Make it easier to use ctr in shell container
0e4d3feb94 daemon: identify container exits by ProcessID
843fcc96f7 libc8d/remote: name task fifos after task ID
719b08313f libc8d/local: set task id to container id
d634ae9b60 Wait longer for exit events on Windows
7950abcc46 libnetwork: delete CHANGELOG.md
31f4ec92f6 update containerd binary to v1.7.0-beta.3
c41c8c2f86 vendor: github.com/containerd/containerd v1.6.16
22098745e7 vendor: github.com/pelletier/go-toml v1.9.5
a264f2dc55 libnetwork/ipam: skip Destroy()ing bitseq.Handle values
6f08fe20e9 libnetwork/bit{seq,map}: delete CheckConsistency()
a08a254df3 libnetwork: drop DatastoreConfig discovery type
28edc8e2d6 libnet: convert to new-style driver registration
5595311209 libnetwork/drvregistry: split up the registries
d478e13639 libnet: un-plumb datastores from IPAM inits
27cca19c9a libnetwork/drvregistry: drop unused args
befff0e13f libnetwork: remove more datastore scope plumbing
142b522946 libnetwork/config: remove vestiges of global scope
52d9883812 libnetwork: drop (*Controller).ReloadConfiguration
9900c7a348 client: improve error messaging on crash
e8011d7872 libnw/ipamutils: make local defaults immutable
540d1e0561 libnw: untangle IPAM allocator from global state
48ad9e19e4 libnetwork/netutils: drop ElectInterfaceAddresses
cc19eba579 daemon: let libnetwork assign default bridge IPAM
a654cbfd2f Use GetBoolOrDefault to remove duplicated invalidFilter usages
0d68591c8e api/types/filters: Add GetBoolOrDefault
390532cbc6 libnetwork/windows/overlay: drop unused variables
b3e6aa9316 libnetwork/netutils: clean up GenerateIfaceName
3775939303 libnetwork/netutils: refactor GenerateRandomName
1776f72c96 c8d/progress: Update progress when finished
54f0b0ec4b c8d: Implement image history
c0eb207b76 libnetwork/bitseq: refactor JSON marshaling
89ae725d23 libnetwork/bitseq: make mutex an unexported field
94ef26428b libnetwork/bitseq: refactor in terms of bitmap
143c092187 libnetwork/bitmap: optimize binary serialization
c4d7294b5c libnetwork/bitmap: remove datastore concerns
ad03a09451 libnetwork/bitmap: dup from package bitseq
cd2e7fafd4 libnetwork/bitseq: add marshal/unmarshal tests
b3c5352386 rootless: support `--ipc=host`
67aa86f1e0 hack: check if cross-compiling before setting ARM target name
25f95b0000 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
170a1c4709 hack: display build cmd when DOCKER_DEBUG set
877baae03e hack: remove unnecessary vars in make.sh script
b80f16157e hack: remove ORIG_BUILDFLAGS var
0c008cc4f8 hack: remove -installsuffix build flag
d2d6ef431f Dockerfile: prefer ld for building against arm64
518be73a5c Dockerfile: smoke tests for static builds
f676dab8dc Dockerfile: use clang to build dockerd/docker-proxy
f49c88f1c4 Disable chrootarchive.init() on Windows
9b5c21309b images: Pass context to commit related operations
596c8960b2 c8d: Fix resolving truncated id to a descriptor
65c6ba1fc4 vendor: golang.org/x/net v0.5.0
ff14f8ef16 Add GetLibHome stub for non-linux OS
824dc51341 vendor: golang.org/x/text v0.6.0
e66e6bb28a vendor: golang.org/x/sys v0.4.0
dcfe23a038 fix blockThreshold full bug
0b83fd3217 ioutils: add regression test for bytespipe deadlock
71fa3b1337 Dockerfile: fix PKG_CONFIG for xx
945704208a hack: name for target ARM architecture not specified
94639eb66f hack: typo in displayed platform name
ffd75c2e0c libnetwork: Support IPv6 in arrangeUserFilterRule() (redux)
17723691e5 Revert "libnetwork: Support IPv6 in arrangeUserFilterRule()"
833096ce42 homedir: fallback to user.Current().homeDir if XDG_DATA_HOME/XDG_CONFIG_HOME and HOME are unset
af6b5d55db vendor: github.com/moby/ipvs v1.1.0
f53feeea8b vendor: github.com/vishvananda/netns v0.0.2
8be470eea8 libnetwork: don't embed mutex in network
c71555f030 libnetwork: return concrete-typed *Endpoint
581f005aad libnetwork: don't embed mutex in endpoint
0e91d2e0e9 libnetwork: return concrete-typed *Sandbox
0425baf883 libnetwork: don't embed mutex in sandbox
f96b9bf761 libnetwork: return concrete-typed *Controller
ae09fe3da7 libnetwork: don't embed mutex in controller
bb5cae2c94 vendor: github.com/vishvananda/netns v0.0.1
102090916e libnetwork: addRedirectRules without reexec
582dd705c1 libnetwork: fwmarker without reexec
d6cc02d301 libnetwork: drop (resolver).resolverKey field
50a4951ddc libnetwork: setup DNS resolver without reexec
4733127a04 libnetwork: set default VLAN without reexec
7037c48e58 libnetwork: set IPv6 without reexec
0246332954 libnetwork: create netns without reexec
ef161d4aeb libnetwork: Clean up sysfs-based operations
9032e6779d c8d/resolver: Fallback to http for insecure registries
c83fce86d4 c8d/resolver: Use hosts from daemon configuration
3a3f98b32b c8d/pull: Don't unpack manually
4a8c4110e3 produce progress events polling ctrd's content.Store
566a2e4c79 libnetwork: Remove iptables nat rule when hairpin is disabled
d7deec1993 daemon/c8d: Implement import
a254dad2e5 api/import: Guard from Digested instead of Canonical reference
28327f10a2 daemon/import: Extract common logic to api
8dbc5df952 daemon/config: inform the user when the input JSON contains invalid UTF-8
155e8d7d78 update to go1.19.5
d42495033e daemon/config: support alternate (common) unicode encodings using a BOM
8d1e56e210 CONTRIBUTING.md: drop reference to the Derek GitHub bot
0867d3173c cmd/dockerd: use default SIGQUIT behaviour
1dcf7d5b03 daemon/config: clean up tests to use common helper
1e1d326b50 plugins: Move GlobalSpecPaths into LocalRegistry
805aea501a docs: api: synchronise versioned API docs (v1.39 - v1.41)
92cbd1c69e docs: api: synchronise versioned API docs (v1.42)
4f81f9d5ea builder/dockerfile: use example.com for tests
65aa43bf66 libnetwork: use example.com for tests and examples
dc30785947 ci: update buildkit to fix integration tests
cba3edbc37 daemon/config: group JSON preprocessing steps
bb19265ba8 daemon/config: ignore UTF-8 BOM in config JSON
2d397beb00 libnetwork: Support IPv6 in arrangeUserFilterRule()
6ab12ec8f4 rootless: move ./rootless to ./pkg/rootless
c1bd5e9144 Use user paths for plugin discovery in rootless mode
bffe6d5670 vendor: github.com/containerd/containerd v1.6.15
89fb8b32f6 graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
c12d7b6d21 upgrade to aws sdk go v2
aa80c33360 Dockerfile.*: drop libbtrfs
c9d632e485 PACKAGERS: update Btrfs graphdriver dependencies
d3778d65fa graphdriver/btrfs: use free wrapper consistently
3208dcabdc graphdriver/btrfs: use kernel UAPI headers
1449c82484 graphdriver/btrfs: drop version information
fdcab58ccf Remove reference to "requireRegistryMatch"
deb4910c5b integration-cli: Fix hanging TestLogsFollowGoroutines*
1616a09b61 add support for image inspect with containerd-integration
bbe6e9e8d1 hack/make: Don't add -buildmode=pie with -race
7e7b0622a6 hack: restore copy_binaries func
b37d34307d Clear conntrack entries for published UDP ports
1fdfd45995 Updated outdated docker contributing guidelines link
01fd23b625 Fix volume CreatedAt being altered on initialization
d131147a5c use errors.Is() to handle image store errors
83280d44d0 docs: contributing docs update for cross comp
e8a82ed24d Dockerfile: add "all" stage to build binaries and extra tools
113e95ec02 ci: add extra steps to check artifacts
b565b496ba Dockerfile: rename dev stages
27ba1766e7 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
0b3af098e1 bake: define additional vars
9bcf5bed05 bake: define DESTDIR
491467b0b9 hack: update buildmode pie condition
347a5f68da hack: do not set buildmode pie for statically linked binary
e37985f590 hack: use PKG_CONFIG var when checking libdevmapper
84ea9ee0f9 IAmStatic not used anymore
04c90b8cf5 hack: remove containerutility script
8086f40123 Dockerfile: use TARGETPLATFORM to build Docker
722d477bc6 client: defaultHTTPClient(): don't ignore transport errors
31ee158394 client: defaultHTTPClient() accept URL
1de3966b84 image: store: rename vars that collided with types or shadowed vars
2910163df1 daemon/images: imageKey() accept string
040b5bbc52 image: store.restore(): use more structured logs
456ea1bb1d image: deprecate IDFromDigest()
a5ebd28797 daemon/graphdriver/devicemapper: simplify Udev log, and update link
155e39187c daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5fed968b1d api: can marshal and unmarshal when args.fields is empty
ad8804885c Update delve version
e7d75c8db7 api/types/container: fix validation for UTSMode, UsernsMode, PidMode
018347f802 integration-cli: remove waitInspectWithArgs()
61c434c030 integration-cli: remove inspectMountPointJSON()
ffbbe3d103 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
0eb7b49a17 daemon: remove some intermediate vars, use struct-literals
288cf20f98 daemon: rename some vars that collided with imports
c5d4b6b311 restartmanager: remove RestartManager interface
efb97da0da restartmanager: add SetPolicy() to the RestartManager interface
d68b68fc43 restartmanager: RestartManager.Cancel(): remove unused error return
42f1be8030 daemon: translateContainerdStartErr(): rename to setExitCodeFromError()
83dd99177f daemon: translateContainerdStartErr(): use exit code 128 as default
46dae0b8bb daemon: translateContainerdStartErr(): use early return for errors
4e750caf96 daemon: translateContainerdStartErr(): extract detecting wrong cmd
a756fa60ef daemon: translateContainerdStartErr(): use const/enum for exit-statuses
2cf09c5446 daemon: translateContainerdStartErr(): remove unused cmd argument
087369aeeb daemon: containerStart(): rename return variable
940730093b integration-cli: remove cli.Build(), cli.Inspect()
bc0885f364 integration-cli: remove WaitRestart(), un-export WaitForInspectResult()
1bd486666b api/types/container: use strings.Cut() and DRY
ab5e69c442 api/types/container: rewrite tests to use subtests and asserts
e155cb4fee hostconfig: move unit tests to api/types/container
12df6024db cmd/docker-proxy: add "-v / --version" flag
c42b304f62 gha: update buildkit to fix integration tests
799cc143c9 Always use iptables -C to look for rules
205e5278c6 Merge iptables.probe() into iptables.detectIptables()
0787ea8b26 libnetwork: improve logs for DNS failures
a959487597 libnetwork/netlabel: remove Key(), Value(), and KeyValue() utils
9015cb7111 libnetwork: controller: rename vars that collided or shadowed
96cfb076ce libnetwork/netlabel: make consts actual consts
36151bd1d7 libnetwork/drivers/bridge: remove "ioctl" fallback code for legacy kernels
6a91e09218 pkg/parsers: use strings.Cut(), and cleanup error-messages
3f935d0e2c daemon/graphdriver/zfs: use strings.Cut, and refactor
f95e9b68d6 daemon: use strings.Cut() and cleanup error messages
46f7c92c9a libnetwork: use strings.Cut() and minor refactor
87ca9490b0 libnetwork/datastore: rename var that collided with import
ff447f4fd5 runconfig/opts: use strings.Cut()
bffb35612c plugin: use strings.Cut()
01365cbd74 libcontainerd/local: use strings.Cut()
6059d38f21 pkg/parsers/operatingsystem: don't use strings.SplitN()
451b8579ef pkg/parsers/kernel: use strings.Cut() and minor refactor
774cd9a26c opts: use strings.Cut() and refactor parseDaemonHost()
d3cd746067 integration-cli: use strings.Cut()
38b0c47f37 integration-cli: links: use gotest.tools compare and assert.Check
ebda2fa2b5 integration/internal: use strings.Cut() and minor refactor
39f59c3289 daemon/links: use strings.Cut()
ad7f1a8dcc daemon/logger: use strings.Cut()
32c4c15f15 daemon/events: use strings.Cut()
5008409b5c cmd/dockerd: use strings.Cut()
19cd5ff164 client: use strings.Cut()
64adea1ce1 volume: use strings.Cut() and minor refactor
19db33afc9 pkg/tarsum: use strings.Cut() and minor refactor
59880cb855 builder/dockerfile: use strings.Cut()
604a2d67b5 builder/remotecontext/git: use strings.Cut()
380a2dfc3a api/types: use strings.Cut()
7841ce781c api/types/time: use strings.Cut()
ba9bcf92f6 api/types/filters: use strings.Cut()
6db4af7bd5 graphdriver: windows: use strings.Cut()
c545473920 daemon/cluster: use strings.Cut()
ec878a3d89 pkg/sysinfo: unify ReadMemInfo implementation
09ea6744fe pkg/sysinfo: remove github.com/docker/go-units dependency
6a516acb2e pkg/system: move memory-info types to pkg/systeminfo
6919b9879b pkg/sysinfo: unify NumCPU implementation
c63ea32a17 pkg/ioutils: TempDir: move to pkg/longpath
3314f4ef09 pkg/ioutils: unify TempDir implementation
2e67c85c13 pkg/longpath: fix package GoDoc
c4c53659f1 integration-cli: remove uses of ioutils.TempDir
2e67c827bb errdefs: FromStatusCode() don't log "FIXME" debug message
83d7ae76e8 vendor: github.com/containerd/containerd v1.6.14
72ea8cfb43 registry: use http.NewServeMux for tests instead of gorilla/mux
54512f2184 pkg/stringid: optimize performance
d20ddb6807 update containerd binary to v1.7.0-beta.1
35cbdc9661 vendor: github.com/containerd/containerd v1.6.13
9300aca2a6 vendor: github.com/Microsoft/hcsshim v0.9.6
19f3448c21 Dockerfile: delve cross build with TARGETPLATFORM
ed95e1a9ff Dockerfile: swagger cross build with TARGETPLATFORM
879b023706 Dockerfile: containerutility cross build with TARGETPLATFORM
8d9a357a67 Dockerfile: registry cross build with TARGETPLATFORM
a4bc2922c2 Dockerfile: dockercli cross build with TARGETPLATFORM
420591c4a2 Dockerfile: rootlesskit cross build with TARGETPLATFORM
f0307892ea Dockerfile: tini cross build with TARGETPLATFORM
5e19d7ec54 Dockerfile: runc cross build with TARGETPLATFORM
81d704d15d Dockerfile: containerd cross build with TARGETPLATFORM
b19c11621a Dockerfile: DOCKER_STATIC arg
69c9dfd6d5 Dockerfile: add dummy stage
6cba7d22e9 Dockerfile: add cross compilation helper
0007490b21 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
e19dff9285 daemon/config: remove deprecated RootDeprecated field
32b299f63e daemon/config: rename CommonTLSOptions to TLSOptions
ef7ab7bde8 cli: remove cli/config package, integrate into cmd/dockerd
6a90113e68 cli: move cobra customizations into cmd/dockerd
3d58b43efe cli: remove unused Errors type
25c3421802 hack: introduce validate/no-module
a449f77774 hack: replace go-mod-prepare.sh with wrapper script
388fe4aea8 daemon: drop side effect from registerLinks()
0141c6db81 daemon: don't checkpoint container until registered
00157a42d3 daemon: fix GetContainer() returning (nil, nil)
7b13076f56 daemon: CreateNetwork: remove redundant error check
389dacd6e2 vendor: github.com/tinylib/msgp v1.1.6
24496fe097 vendor: github.com/philhofer/fwd v1.1.2
8fb71ce208 manage image inspect data in backend
a8eb15eafb ImageService.ImageHistory(): pass context
0426c76142 List images with multiple since/before filters
e214503789 image/store: Use errdefs for errors
28382c58ec container: ViewDB: use logrus.WithError()
6549a270e9 container: ViewDB: return typed system errors
94dea2018e container: ViewDB: GetByPrefix() return typed errors
da4d627e79 container: ViewDB: use errdefs for non-existing containers
ddaba6d576 daemon: filterByNameIDMatches() fix error handling
8c9a240597 container: use const for null-terminator
200edf8030 libcontainerd/remote: remove stray import comment
12c76d4a15 vendor: github.com/containerd/containerd v1.6.12
4bbc37687e vendor: golang.org/x/net v0.4.0
18f85467e7 docs: add 401 to possible status codes of /auth
d331bc3b03 vendor: github.com/containerd/containerd v1.6.11
52bc1ad744 update to go1.19.4
f577f31f50 Add Bjorn Neergaard to maintainers
9da935629e Better not pretend to be an active currator
383e23fd61 Add Kevin Alvarez ("crazy-max") to curators
521b8c02cc builder: handle host-gateway with extra hosts
381fa4afca ci(buildkit): update buildkit ref to fix issue with alpine image
a6a539497a distribution: checkSupportedMediaType: allow additional media-types
57b229012a seccomp: block socket calls to AF_VSOCK in default profile
eaa74497b8 libnetwork: use go-immutable-radix instead of radix
93fa093122 testing: move fuzzers over from OSS-Fuzz
3d97f1e22d client/list: Handle SharedSize
e1c3305015 AUTHORS: regenerate
672383bc56 .mailmap: cleanup and additions
b94d1604a9 hack/generate-authors.sh: refactor and simplify
6326ad1729 vendor.mod: remove outdated comment about replaced module
0f0fce5dcc libnetwork/netutils: FindAvailableNetwork(): simplify reading of resolv.conf
0cbe6524db libnetwork/drivers/overlay: getBridgeNamePrefix() simplify reading of resolv.conf
0ef0dab2f7 libnetwork: sandbox.rebuildDNS() make updating sandbox more atomic
806b4fbcad libnetwork: sandbox.rebuildDNS() move variables closer to where they're used
d178a71b7c libnetwork: sandbox.rebuildDNS() simplify reading of resolv.conf
05b3356631 libnetwork: sandbox.setupDNS() don't parse host resolv.conf if not needed
08d5e3d0fa libnetwork: sandbox.setupDNS() simplify reading of resolv.conf
a44f547343 registry: session: remove unused id
fb77973201 pkg/system: move CheckSystemDriveAndRemoveDriveLetter to pkg/archive
c4872b4519 pkg/system: CheckSystemDriveAndRemoveDriveLetter: fix error format
ad371893f2 pkg/system: move GetLongPathName to integration-cli
9f3e5eead5 pkg/system: deprecate DefaultPathEnv, move to oci
dec81e489f daemon/disk_usage: Use context aware singleflight
f7e59cbccc Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
85fddc0081 distribution: remove unused RequireSchema2
8feeaecb84 use ad-hoc libtrust key
e854b2a459 distribution: use ad-hoc trustkey for tests
5cdd6ab7cd daemon/config: remove TrustKeyPath, and local utilities
1981706196 daemon: remove migrateTrustKeyID()
c1756e1b63 update containerd binary to v1.7.0-beta.0
c1a9e82d3e vendor: google.golang.org/grpc v1.50.1
bade242ddd Makefile: always use buildx
426e3926ef ci: define timeout for jobs
dc52e08bb5 vendor: github.com/prometheus/client_golang v1.14.0
b2fe29ba79 vendor: github.com/go-logr/logr v1.2.3
7c1b7842c6 vendor: golang.org/x/crypto v0.2.0
efe17dbdb4 vendor: golang.org/x/net v0.2.0
0588a83380 vendor: github.com/opencontainers/runc v1.1.3
38adf7a694 vendor: github.com/klauspost/compress v1.15.12
e1058e6bc3 go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
62344f515c layer: layerStore.registerWithDescriptor: rename var to prevent shadowing
e5e6480694 Add Sam Thibault (sam-thibault) as curator
4769809555 api/server/backend/build: sanitizeRepoAndTags() check for digest
64f9ea1cf5 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
a5898e3a2d vendor: github.com/prometheus/client_golang v1.13.0
2cc6a86fd3 vendor: github.com/aws/aws-sdk-go v1.37.0
8f1bc3a3b7 vendor: google.golang.org/grpc v1.48.0
b0e20e1b3c vendor: go.uber.org/zap v1.21.0
066fb6c69e vendor: go.uber.org/multierr v1.8.0
b41580d66e vendor: go.uber.org/atomic v1.9.0
341c9e77a8 vendor: github.com/jmespath/go-jmespath v0.4.0
9a8b46518b vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
1e48b64538 vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
4113a88523 vendor: google.golang.org/protobuf v1.28.1
26c4429f7e vendor: github.com/spf13/cobra v1.6.1
8a46a2a364 Dockerfile: remove hardcoded platforms for vpnkit stage
4f17d17009 ignorefiles: cleanup
61f266f660 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
af8e955e8f hack/go-mod-prepare.sh: find root robustly; make steps transparent
30b0cb0cd4 vendor.mod: add comment about replaced dependency
62a4a45a72 vendor.mod: remove replace for github.com/rexray/gocsi
a2d758acc9 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
9f004830a5 hack/validate/vendor: clean up license validation step
dbd76848ca hack/validate/vendor: split tidy from vendor
72568286ab hack/vendor.sh: allow running tidy & vendor separately
40069797ef hack: remove obsolete sources for go-autogen
07ba3e35d3 Add additional loggig in case of error of renaming runtimes-old and removing it
d591710f82 Handle docker start inside overlayfs
ca807edac0 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
25dc760162 Dockerfile: variant support in frozen-images stage
882ddf4b16 update gotestsum to v1.8.2
b529870558 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
7ca03c1a79 rootlesskit.installer: s/vendor.conf/vendor.mod/
a2cea992c2 libnetwork/iptables: Fix test panic when execute only one test
a6cb8efd81 vendor: golang.org/x/oauth2 v0.1.0
9d7bd47cb6 vendor: golang.org/x/crypto v0.1.0
d9fb730148 update RootlessKit to v1.1.0
08516af897 vendor: github.com/rootless-containers/rootlesskit v1.1.0
be18f92bf4 hack/validate: drop changelog-related steps
ec1bb21649 cleanup: drop historical CHANGELOG.md
e8ad01594a cleanup: drop .DEREK.yml
4e5c3b82cb vendor: github.com/containerd/containerd v1.6.10
a5979a2106 update containerd binary to v1.6.10
06e4b7d1f8 vendor: github.com/moby/buildkit v0.10.6
40908fca45 fix vendor.mod: add hashicorp/go-multierror as direct dependency
81ccfd44e4 Fix grammar in README.md
6a02afa56f ci(actions): bump outdated actions on Linux
0557569947 ci(actions): migrate to file-based commands
79f9ffd401 vendor: golang.org/x/net v0.1.0
71fa64a272 vendor: golang.org/x/time v0.1.0
4965f19626 vendor: golang.org/x/sync v0.1.0
4bb95eef6f vendor: golang.org/x/sys v0.1.0
67b9f120d5 pkg/archive: switch back to os/exec
b7d242f094 builder/remotecontext/gitutils: switch back to os/exec
6a15f40803 libnetwork_test: improve OptionBoltdbWithRandomDBFile
a0f9caec99 libnetwork_test: stop controllers at end of test
010077ba0f libnet/d/bridge: fix race condition in test case
7b2308980c libnet/d/bridge: fix bridgeInterface.addresses()
c2a087a9f7 libnet/d/bridge: use fresh PortAllocator in tests
1b64f2e28b libnetwork: stop caching global netlink handle
d0096bba21 libnetwork_test: overhaul TestParallel
32ace57479 libnetwork_test: isolate tests from each other
0411336b49 libnetwork_test: pass controller into createTestNetwork
9a0953a0a0 libnet/testutils: spawn goroutines in test OS ctxs
07be7b087d libnetwork_test: remove in-container special case
e2a89b7ad1 libnet/d/bridge: configure store when opts missing
8a20564847 libnet/datastore: stop sharing defaultScopes singleton
8404507b9b libnet/osl: stop assuming caller thread is clean
0f7c9cd27e Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6174d00c03 replace distribution/digestset with opencontainers/go-digest/digestset
bbb1b82232 go.mod: github.com/miekg/dns v1.1.43
d43bc26717 vendor: gotest.tools/v3 v3.4.0
57ba2df970 vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
f39b83e232 libnetwork: fix TestParallel "bad file descriptor"
fe6706a2ce libnetwork: make tests less dependent on others
cea8e9b583 libcontainerd/supervisor: use pkg/pidfile for reading and writing pidfile
14da1bfe40 cmd/dockerd: adjust error message for pidfile changes
7493debe26 pkg/pidfile: implement Read()
7d3e1ad943 pkg/pidfile: Write(): don't automatically create parent directories
81945da0ac pkg/pidfile: Write(): take pid as argument
735e250326 pkg/process: Alive(): fix PID 0, -1, negative values
55d15e9d05 pkg/pidfile, pkg/process: use single implementation for process alive
9d5e754caa move pkg/system: process to a separate package
0040fb93d6 pkg/system: IsProcessZombie() skip conversion to string, use bytes instead
970ad4e3c7 pkg/system: IsProcessZombie() ignore "os.ErrNotExist" errors
8d6da1e100 pkg/system: IsProcessAlive() remove redundant type-cast
2006d9f7d1 cmd/dockerd: Rewrite shutdownDaemon to use context timeout
66a0289081 builder: Don't store context in struct
a181a825c8 daemon/start: Revert passing ctx to ctr.Start
def549c8f6 imageservice: Add context to various methods
57c2545cd5 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1bef9e3fbf Fix containerd task deletion after failed start
be1829f63d daemon/logger: fix godoc
407e3a4552 distribution: Error when pulling OCI artifacts
4386e3f7c0 pkg/parsers/kernel: un-export Utsname
775dcab7a2 pkg/parsers/kernel: remove duplicate Package godoc
8d0dc69027 implement docker system df
952e1e62c5 Sort entries in pkg/namesgenerator
5bc17c3e54 Remove long-deprecated "arm" fallback
3d71555a47 Remove errant "runtime.GOARCH" from debug message
f9d4589976 Update to Go 1.19.3 to address CVE-2022-41716
1e88fe578e pkg/idtools: remove execCmd() utility
3d73d32499 api/types/filters: add output to example
c207947508 integration-cli: DockerPluginSuite: use gotest.tools compare utilities
346a438da8 opts: TestParseLink(): add test-case for legacy format
ad4073edc1 daemon: fix docs for config-default constants
dcd6c1d2e2 container: make path resolution fns Windows-only
2bdc7fb0a1 daemon: archive in a dedicated mount namespace
7d23c50599 integration: test more copy edge-cases
6750d1bac8 daemon: drop Windows-only code from archive_unix.go
4fd91c3f37 daemon: refactor isOnlineFSOperationPermitted
84cbe29d5b daemon: dupe the archive implementation
60ee6f739f Add reusable chroot and unshare utilities
317d3d10b8 Revert "Use real chroot if daemon is running in a user namespace"
5de229644f pkg/chrootarchive: stop reexec'ing before chroot
f2f884a92f pkg/archive: create whiteout temp dir under dest
1f32e3c95d Add integration test for #38995, #43390
6c0aa5b00a Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
22529b81f8 libnetwork: drop InitOSContext()
7fc29c1435 libnetwork/osl: clean up Linux InvokeFunc()
d1e3705c1a libnet/d/overlay: restore thread netns
3e2f0c7a39 libnetwork: fixup thread locking in Linux tests
afa41b16ea libnetwork/testutils: restore netns on teardown
04dc007c76 vendor: github.com/containerd/containerd v1.6.9
ac79a02ace update containerd binary to v1.6.9
4f1d1422de integration: download busybox-w32 from GitHub Release
4fdc1bb1fb builder/remotecontext/git: allow building on go1.18
4f43cb660a skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
27530efedb Validate digest in repo for pull by digest
92eca900b0 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
201fdf67ac gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
0760c6f4e1 gha: buildkit: make checks more readable
cfa2f9a2f2 gha: buildkit: remove "skip-integration-tests" from matrix
67d010bd2c builder: add missing doc comment
94672c89cc builder: fix running git commands on Windows
61acc9939f builder: make git config isolation opt-in
72119f5d9b builder: isolate git from local system
0f7b0897cc builder: explicitly set CWD for all git commands
8deb92d653 builder: modernize TestCheckoutGit
0fc17c42af vendor: github.com/moby/buildkit v0.10.5
51fe170224 daemon: NewDaemon() fix import colliding with local variable
27bd49f4bf daemon: NewDaemon(): replace system.MkdirAll for os.Mkdir where possible
19c5d21e6f daemon: getPluginExecRoot(): pass config
17fb29c9e8 daemon: NewDaemon(): check system requirements early
7ff0f654fb daemon: add TEST_INTEGRATION_USE_SNAPSHOTTER for CI
0a004fd361 daemon: NewDaemon(): log message if containerd snapshotter is enabled
4fa853f5de pkg/fileutils: ReadSymlinkedDirectory: preserve underlying error
24e371c812 pkg/fileutils: improve tests
d4d242ba76 pkg/chrootarchive: gofumpt test files
dee3f716b3 pkg/chrootarchive: replace system.MkdirAll for os.Mkdir
8a8202fcdc pkg/chrootarchive: TestChrootTarUntar fix copy/paste mistake
0955c88c2e pkg/chrootarchive: use t.TempDir()
30e5333ce3 registry: allow "allow-nondistributable-artifacts" for Docker Hub
69f72417f4 pkg/idtools: remove CanAccess(), and move to daemon
ee34a8ac29 pkg/idtools: setPermissions() accept Identity as argument
bca90530fa pkg/idtools: simplify if-statement
d68fa0382d pkg/idtools: don't use system.Stat() on unix
43d6eb7173 pkg/pidfile: remove PIDFile type, rename New() to Write()
dd8983f96c pkg/pidfile: reduce cyclomatic complexity, and small optimisation
4917bcc039 pkg/pidfile: don't ignore all errors when reading file
3ce2a7d026 pkg/pidfile: pkg/pidfile: use strconv instead of fmt.Sprintf(), and unconvert
a9fa147a92 daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw
f058afc861 pkg/system: synchronize mkdirall() with latest os.MkDirAll()
2e66c0b6f0 pkg/system: create SecurityAttribute only once (Windows)
55ceb5047c pkg/system: update volumePath regex to allow returning earlier
cfef1b11e5 pkg/system: compile volume-path regex once, and update GoDoc
264706f804 hack: allow pkg/ to import internal/ packages
3246db3755 fix force remove for cluster volumes
624daf8d9e Change restart delay for Windows service to 15s
3c585e6567 cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
34f459423a Replace overlay2 mount reexec with in-proc impl
6176ab5901 cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
ffcddc908e cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
75bdbf02a6 daemon/graphdriver/windows: Remove() don't use defer() in a loop
90431d1857 daemon/graphdriver/windows: use go-winio.GetFileSystemType()
e35700eb50 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
b43a7ac530 integration/plugin: remove deprecated overlay2.override_kernel_check
de705907a5 client: remove solaris build-tag, simplify and gofumpt
6fd2d4e772 integration: remove uses of pkg/system.Stat()
0242fef89c integration-cli: remove uses of pkg/system.Stat()
402e0b58ca testutil: use filepath.WalkDir instead of filepath.Walk
3db11af44b libnetwork/drivers/overlay: use filepath.WalkDir instead of filepath.Walk
0ee5518e76 oci: use filepath.WalkDir instead of filepath.Walk
ec000ce555 pkg/archive: use filepath.WalkDir instead of filepath.Walk
f595434abc daemon/graphdriver/devmapper: use filepath.WalkDir instead of filepath.Walk
8f1bc0bccc daemon/graphdriver/btrfs: use filepath.WalkDir instead of filepath.Walk
1870d5f4aa builder: use filepath.WalkDir instead of filepath.Walk
d33428f0bf pkg/system: remove solaris left-over
a35bcd01c5 pkg/pidfile: replace uses of windows.Close() with windows.CloseHandle()
89de943401 pkg/pidfile: windows: replace magic consts for golang.org/x/sys consts
11cceea58a pkg/idtools: cleanup errors
8d5b17e939 pkg/idtools: don't use system.MkdirAll() where not needed
2e74e307d0 pkg/idtools: format code with gofumpt
0fc13104e7 pkg/idtools: CanAccess(): reorder checks to allow early return
c7c02eea81 pkg/loopback: use ioctl helpers from x/sys/unix
6742f74e0e vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
1ffdac4502 layer: gofumpt
c3a5641132 layer: use strconv instead of fmt.Sprintf()
1fccb39316 pkg/idtools: remove unused CanAccess() stub for Windows
3b9b5842b3 pkg/idtools: mkdirAs(): move var and comment to where it's used
838fc976c8 integration(-cli): remove some redundant formatting
07b2e4cb79 client: use strconv instead of fmt.Sprintf()
145817a9cf libnetwork: use strconv instead of fmt.Sprintf()
56e64270f3 daemon: use strconv instead of fmt.Sprintf()
533ecb44b1 daemon/logger: use strconv instead of fmt.Sprintf()
7fbf321c2a daemon/graphdriver: use strconv instead of fmt.Sprintf
27aea4956c pkg/idtools: mkdirAs() be more explicit about ignored args on Windows
a19ee75bd1 pkg/system: fix missing assertions and use sub-tests for ChTimes
a9c5a40087 pkg/system: rename some tests to be more descriptive
ab7bc6b7d2 pkg/system: use t.TempDir(), remove some test-utils
7bd051eeec pkg/system: windows: setCTime(): remove redundant conversion
0b8444aa0c pkg/system: rename maxTime and re-use, define unixEpochTime, update GoDoc
2c9684e35c pkg/system: add note about maxTime
247f90c82e pkg/system: move maxTime init() back to Chtimes code
4347080b46 pkg/system: remove Umask() utility
76ce3fd9c9 remove aliases for deprecated pkg/pubsub
89a9d7d650 fix typo
c1729f876c remove aliases for deprecated pkg/fsutils
ce2abb82c0 remove aliases for deprecated pkg/urlutil
a5e1baf3ab vendor: github.com/opencontainers/selinux v1.10.2
1f22b15030 Lock OS threads when exec'ing with Pdeathsig
ab677c41ea pkg/system: unconvert
07b1aa822c pkg/system: move GetExitCode() to pkg/idtools, and un-export
5b6b42162b pkg/fsutils: deprecate in favor of containerd/continuity/fs
26659d5eb8 pkg/directory: remove unused MoveToSubdir() utility
bd6217bb74 pkg/directory: minor refactor of Size()
0a861e68df pkg/directory: Size(): add back type-casts to account for platform differences
618f26ccbc Volume prune: only prune anonymous volumes by default
7b4e4c08b5 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
271243d382 docs: swagger: update description for default builder version
c523d6d25c libnetwork: remove some outdated comments
6f435e0bb9 Update awslogs driver batching documentation.
60ace31be0 libnetwork: sandbox.updateDNS(): use const for file permissions
f0be4d126d libnetwork: use object-literal for some structs
50a7c67363 libnetwork: fix some whitespace formatting
481185fb8a libnetwork/osl: fix GoDoc formatting
4c0e0979b4 Fix live-restore w/ restart policies + volume refs
3c69b9f2c5 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
0249afc523 migrate pkg/pubsub to github.com/moby/pubsub
0440ca07ba pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
f73d72bfdc pkg: replace some README's with GoDoc package descriptions
b44b3193d0 oci.DevicesFromPath() switch to use containerd implementation
c3a6de9ec8 logger/journald: unlock OS threads
e2114731e7 contrib: make dockerd-rootless-setuptool.sh more robust
8a2e1245d4 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
f63dea4337 cmd/dockerd: fix empty-lines (revive)
cd51c9fafb client: fix empty-lines (revive)
f71fe8476a api/server: fix empty-lines (revive)
b04f1416f6 opts: fix empty-lines (revive)
ddb42f3ad2 daemon: fix empty-lines (revive)
05042ce472 daemon/images: fix empty-lines (revive)
0695a910c6 daemon/logger: fix empty-lines (revive)
9d9cca49b4 daemon/graphdriver: fix empty-lines (revive)
0c7b930952 daemon/cluster: fix empty-lines (revive)
4eb9b5f20e plugin: fix empty-lines (revive)
188724a597 volume: fix empty-lines (revive)
e9f1b83a4a testutil: fix empty-lines (revive)
786e6d80ba integration: fix empty-lines (revive)
ecb4ed172b builder: fix empty-lines (revive)
dc0c2340b8 integration-cli: fix empty-lines (revive)
31441778fa api/types: fix empty-lines (revive)
412c650e05 pkg/*: fix "empty-lines" (revive)
8cd244a318 daemon: replace ErrExtractPointNotDirectory with errdefs
c78af57e21 daemon: replace ErrVolumeReadonly with errdefs
0f1eeed5c2 daemon: replace ErrRootFSReadOnly with errdefs
e31e9180cd integration-cli: remove isCpCannotCopyReadOnly utility
3564d03b0f daemon: remove getPortMapInfo alias
ee5d8f43e1 pkg/signal: remove stubs for deprecated package
4a8b3b8bc5 api/types: remove aliases for deprecated Volume and VolumeUsageData
18ca7546f6 pkg/system: remove stubs for deprecated sequential functions
1e13247d6d pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
7f3602f1c9 swagger: update links to logo
5dff494b87 test(pkg/archive): add TestImpliedDirectoryPermissions
cd381aea56 libnetwork: fix empty-lines (revive)
267108e113 libnetwork/config: rename ParseConfigOptions() to New()
4831ff9f27 refactor(pkg/archive): factor out createImpliedDirectories helper
09cc2f9d0e libnetwork/config: inline LoadDefaultScopes()
528428919e libnetwork/config: merge DaemonCfg into Config
571baffd59 libnetwork: remove old integration tests
46f4a45769 libnetwork/config: remove ParseConfig()
7d574f5ac6 libnetwork/config: inline ProcessOptions
a8a8bd1e42 libnetwork/config: remove "Experimental" and "Debug" options
2f1c382a6d golangci-lint: update to v1.49.0
a5be811269 chore(integration): delete outdated TODO comment
6ca4eda960 daemon: clean up vestiges of ContainerFS
9ce2b30b81 pkg/containerfs: drop ContainerFS type alias
e332c41e9d pkg/containerfs: alias ContainerFS to string
95824f2b5f pkg/containerfs: simplify ContainerFS type
be4f4644a8 pkg/containerfs: drop Driver abstraction
7014c0d65d pkg/containerfs: drop PathDriver abstraction
e37a2d1879 pkg/containerfs: delete Archiver, Driver
a7c8fdc55b pkg/containerfs: make ResolveScopedPath a free fn
fd16e003fb pkg/containerfs: Remove NewLocalDriver()
4d48c00f94 pkg/containerfs: Trim away Driver interface part 1
489e7b61bf vendor: github.com/moby/sys/sequential v0.5.0
323ab8ef97 vendor: github.com/github.com/coreos/go-systemd v22.4.0
0af7b4961a client: TestNewClientWithOpsFromEnv(): use sub-tests
1a3d8019d1 Remove the OS check when creating a container
3e1601a980 vendor: gotest.tools v3.3.0
49de15cdcc libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
55fd77f724 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
6d59619d6e ci: reduce cache throttling limits
511a909ae6 container: remove ViewDB and View interfaces, use concrete types
419c47a80a Jenkinsfile: use Ubuntu 20.04 for DCO stage
5e50d002f1 ci: fix branch filter pattern
8596486743 Jenkinsfile: remove unit-validate stage
cd54f31984 Jenkinsfile: remove report bundles creation in unit-validate
a354970eaa Jenkinsfile: remove validation steps moved to GHA
85fa72c599 chore: update supported go version to 1.18+
c0fa14e8af vendor: github.com/armon/go-metrics v0.4.1
1d7ceb2fee vendor: github.com/google/btree v1.1.2
2597a71623 client: ignore kernel-memory on API >= 1.42
9b428a3d33 integration-cli: remove TestDockerSuite func
7b9877bd8a ci(test): report summary output
8ad8c6d887 fix debian sysvinit script fails to restart docker daemon when stopped
7602edfd06 ci: reusable dco workflow
5a98363a92 ci(test): dynamic validate matrix
9b71a46899 Revert "validation: temporarily allows changes in integration-cli"
3cb933db9d Update uses of Image platform fields in OCI image-spec
a73d78f8d5 ci(test): validate job matrix
c7e77dba7f Update some tests for supplementary group permissions
f6b695d2fb use consistent alias for gotest.tools/v3/assert/cmp
9f8bd80487 Jenkinsfile: remove steps moved to GitHub Actions
36688496ca ci: fix .windows workflow name
807c849431 ci(test): send coverage to codecov
4c8af0e2f9 ci(test): upload reports
60864229b8 integration-cli: TestPluginInstallImage broken on GitHub Runner
b8bf60c590 integration-cli: TestEventsOOM* broken on GitHub Runner
df731c745a integration: TestNetworkLoopbackNat is broken on GitHub Runner
2e04be3fb9 ci: gha test workflow for integration and unit test
4dd86a0b33 containerd-integration: prefer error over panic where possible
ff81dc3544 api/server/backend/build: remove Tagger and NewTagger
779a5b3029 ImageService.GetImage(): pass context
1eadbdd9fa Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
58413c15cb update to golang 1.19
9dab00a76e daemon/images: manifestMatchesPlatform() punch through context
518179f63e vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
cba36a064d Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
878906630b Wrap local calls to the content and lease service
0f052eb4f5 namesgenerator: remove Valentina Tereshkova
609d87003a pkg/archive: strip "write" bits again on Windows
cddaa84777 pkg/archive: remove backward compat hack for go < 1.9
306b8c89e8 linting: host:port in url should be constructed with net.JoinHostPort
31fb92c609 linting: gosec: fix or suppress G112, G114 in test code
561a010161 linting: suppress false positive for G404 (gosec)
a33d1f9a7c libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
de4af86e98 daemon: set containerd default snapshotter if none is configured
13f99eb65f vendor: github.com/docker/go-units v0.5.0
1557892c37 api: swagger: add errorDetail to CreateImageInfo
d983fa0ebe api: docs: add errorDetail to CreateImageInfo (v1.42)
8b36298d7f pkg/archive: remove tests for CanonicalTarNameForPath
d59758450b pkg/archive: make CanonicalTarNameForPath and alias for filepath.ToSlash
509f19f611 replace pkg/system Sequential funcs with moby/sys/sequential
a4d081cc17 ci: move buildkit tests to a dedicated workflow
5cfc9c374c validate: address SC2155 (shellcheck)
b9fd2cf605 validate: format vendor script with shfmt
6cef06b940 validate: add yamllint validation
91bb776bb8 validate: yamllint: ignore "truthy value should be one of" warnings
cc2134ea83 validate: yamllint: set locale in config file
f679d8c821 validate: yamllint: use "parsable" output
5f114b65b4 validate: yamllint rename config-file
1d7cd76ee9 Dockerfile: update yamllint to v1.27.1
5e0599cb6e pkg/jsonmessage: export "Stream" interface
2640aec0d7 pkg/system: make IsAbs() platform-agnostic
65fdd10d4e ci(windows): move windows-2019 to another workflow
8e8d9a3650 ci: fix broken workflow
8b748bd326 daemon: stop health checks before deleting task
d0731af939 Unskip TestHealthCheckProcessKilled on Windows
f7277806c8 vendor: github.com/klauspost/compress v1.15.9
d52ffce38f update containerd binary to v1.6.8
bd98bf38e9 update runc to v1.1.4
5dcaad0dd3 Upgrades buildx to 0.9.1
c500d8824d vendor: github.com/moby/buildkit v0.10.4
6217f8001e gha: temporarily pin BuildKit integration test version
a09f8dbe6e daemon: Maintain container exec-inspect invariant
15b8e4a490 integration: synchronize TestWaitConditions
18e322bc7c Lock container when deleting its root directory
6a2f385aea Share logic to create-or-replace a container
4bafaa00aa Refactor libcontainerd to minimize c8d RPCs
57d2d6ef62 Update container OOMKilled flag immediately
b75246202a Stop locking container exec store while starting
92d2e12a4d daemon: getInspectData(): reduce cyclomatic complexity
313a7d716d daemon: getInspectData(): skip graphdriver data for snapshotters
74b84d00b3 integration-cli: add utility to check if snapshotters are enabled
0cbb92bcc5 daemon: capture output of killed health checks
549d24b437 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
ba138d6201 daemon: don't set ignoreImagesArgsEscaped, managed where not needed
e14924570c client: remove deprecated WithDialer() option
7f0cf432e9 client: remove redundant pluginPermissionDenied
c3f0cd7457 client: remove deprecated IsErrUnauthorized, IsErrNotImplemented
23b8fcc74d ci: print Windows daemon event log timestamps
4b84a33217 daemon: kill exec process on ctx cancel
774e25de13 info: add driver-type
d8d990f2e3 daemon: make the snapshotter configurable
e6ee27a541 Allow containerd shim refs in default-runtime
7b7d1132e8 seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
360238e9e1 vendor: github.com/hasicorp/memberlist v0.4.0
b58de39ca7 daemon: complete the "--graph" / "-g" deprecation
d2276ff3f2 daemon: remove daemon.graphdriver
c6eab4077a daemon: info: fillDriverInfo() get driver-name from ImageService
8dd14509d7 ImageService: rename GraphDriverName to StorageDriver
ca52e0a244 vendor: github.com/containerd/containerd v1.6.8
f27b74f0f7 Makefile: update buildx to v0.9.0
327c8fc52f daemon/config: use initialized config in more tests
2d7d81bc46 cmd/dockerd: use initialized config in tests
b28e66cf4f daemon/config: New(): initialize config with platform-specific defaults
9d74c7ab99 daemon: Mount(): use container's driver information for error-message
239d9c5eda daemon: restore(): remove fallback for legacy containers
6ccda5a041 daemon: restore(): remove platform-check (was used for LCOW)
9a849cc83a introduce GetImageOpts to manage image inspect data in backend
a4b28e23cf integration-cli: Correct emptyfs id under c8d
502d3a1fcb containerd/load: Load all platforms
8925f735a1 daemon/config: fix GoDoc for StockRuntimeName
226e07144e cmd/dockerd: initContainerd() use early return
6560e0b136 cmd/dockerd: initContainerD(): clean-up some logs
b6b0b0a05f libcontainerd/supervisor: don't write log-level to config file
bff3e85625 libcontainerd/supervisor: store location of config-file
7a9791f096 libcontainerd/supervisor: store location of pidFile
89ab14a115 libcontainerd/supervisor: make supervisor adjust OOM score for containerd
1d2a669445 libcontainerd/supervisor: use correct logger
2d511f28f2 libcontainerd/supervisor: platformCleanup(): use canonical socket address
7b0bd43a27 libcontainerd/supervisor: remove unused remote.rootDir
6b7e19ff42 libcontainerd/supervisor: remove unused RWMutex
37a241768d cmd/dockerd: fix some minor issues in Windows implementation
df965f51bf pkg/idtools: remove deprecated NewIdentityMapping, UIDS() and GIDS()
9861dd069b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
7797480eb0 daemon, builder: rename variables that collided with imports
acd0aa7d38 api/server/router/image: address some linter warnings
e05f614267 vendor buildkit 8e2d9b9 (v0.10 branch)
4e46d9f963 update containerd binary to v1.6.7
7376bf948b vendor: github.com/containerd/containerd v1.6.7
30295c1750 api: swagger: fix invalid example value (API v1.39-v1.41)
9031de6a9b fix minor code unreachability error
5c96365c94 containerd: Unpack loaded images
50fb999bb1 add image load/save support
43956c1bfc api: swagger: document BuildCache fields (API v1.39-v1.41)
5371c889a8 api: swagger: document BuildCache fields (API v1.42)
e0db8207f3 api: add BuildCache.Parents for API >= v1.42
ebf339628a api: deprecate BuildCache.Parent in API >= v1.42
e0286d7f4e api/types: add missing GoDoc for BuildCache fields.
dc2b34af6a api: swagger: document BuildCache fields.
d4579a983e containerd/pull: Use authorization
340711db3d api: add types/volume.ListOptions for a more consistent API
f1d71f7cc3 Update golang to 1.18.5
051e604adc libcontainerd/supervisor: simplify logic for disabling CRI plugin
d4d5e0ae0c libcontainerd/supervisor: remove unused options
0f5ac7761d api: api/server/router/build: fix API errors
69f077f1aa vendor: github.com/Microsoft/hcsshim v0.9.4
982f09f837 docs: api: add missing "platform" query-arg on create (v1.42)
1000e4ee7d docs: api: add missing "platform" query-arg on create (v1.41)
3dae8e9fc2 api: swagger: add missing "platform" query-arg on create
7ca66e3cfc api: add registry.EncodeAuthConfig
7819811835 api: add registry.DecodeAuthConfig, registry.DecodeAuthConfigBody
e3a7a1c6ae client: linting: fix "invalid auth header" error
360d38adb1 daemon/containerd: use types/registry.AuthConfig
2b7416ef34 testutil, integration: use types/registry.AuthConfig
d817f4dcee registry: use types/registry.AuthConfig
55d1a56826 plugin: use types/registry.AuthConfig
04c339a12b distribution: use types/registry.AuthConfig
a02abca49a daemon: use types/registry.AuthConfig
39f3adc079 daemon/images: use types/registry.AuthConfig
05eacf92fe daemon/cluster: use types/registry.AuthConfig
eaf1a604f2 client: use types/registry.AuthConfig
d8a43399a8 api/server/router: use types/registry.AuthConfig
818ee96219 api/types: move AuthConfig to registry types
857cb260c7 api: add const for 'X-Registry-Auth'
26c65447df Implement ImageDelete for containerd
f4c0ec8ffc integration-cli: Make service process live forever
547da0d575 daemon: support other containerd runtimes (MVP)
31f654a704 Fix file capabilities droping in Dockerfile
ba2ff69894 libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
ef5b279887 logger/journald: implement --follow correctly
e278d3f185 logger/*: fix reading w/ non-monotonic timestamps
342b44bf20 logger/journald: rewrite reader w/o cursors
3e8405aa82 logger/journald: refactor cgo out of business logic
7ff4b64319 logger/journald: simplify control flow
f7fe2c2290 logger/journald: follow the thread-safety rules
12744335c0 logger/journald: simplify build constraints
0e0b300a1c Fix `make BIND_DIR=. DOCKER_SYSTEMD=1 shell`
a61f7abf5a integration-cli: Enable TestGetContainersAttachWebsocket for Windows
1213881712 libnetwork: refactor networkdb test implementation
6cc644abef integration-cli: Remove unnecessary Windows-only code
7bdc0a6291 compute image's shared size
a1bc0a6d79 daemon/containerd: add more TODO's for image list, and reformat
f499c6b9ec Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
669fbed1ac daemon/containerd: validate image filters
4d3b32bf3d add support for since, before, labels images filters
0e9a66d35a logger/journald: remove journald_compat (for systemd < 209)
75577fe7a8 logger/journald: fix SA4011: ineffective break statement
a290f5d04c state/Wait: Fix race when reading exit status
5571d5139b integration: TestWaitRestartedContainer
498803bec9 daemon/restart: Don't mutate AutoRemove when restarting
c492105b8f integration: Add TestContainerWithAutoRemoveCanBeRestarted
67c36d5d6e Windows: Re-create custom NAT networks after restart if missing from HNS
a46ce37d25 compute image VirtualSize
9c8b0b6050 daemon/containerd: split methods to separate files
e4cd1933c6 daemon/containerd: ImageService: rename receiver
91bd9a6642 daemon/containerd: change alias for oci-specs to match existing code
b529fe0995 daemon/images: fix some linting issues
b94f7157ca daemon/images: rename images.go to image_list.go for consistency
046b3fc5dd daemon/images: move SquashImage to its own file
6e0e5d7a31 daemon/images: rename variables that collided with imports
2527e6dd09 daemon/containerd: ImageService: remove unused LookupImage()
7b510fda0c daemon: ImageService: remove unused Map() method
ff3d2eb589 Add Cory Snider (corhere) as maintainer
9464898b47 libnetwork: skip firewalld management for rootless
7d74269c0d Create the containerd image service
4f08346686 fix formatting of "nolint" tags for go1.19
34b8670b1a update golang to 1.18.4
68bf777ece daemon: remove deprecated fields and flags for cluster-advertise
494dadb8a3 api/types: remove deprecated fields for cluster-advertise
f02cdb50be api/types/volume: remove deprecated types
efb1f141a4 api/types/container: remove deprecated types
10829dd222 daemon: NewDaemon(): fail early on non-supported platforms
1de20b2012 API: bump version to 1.43
264b41fb9e docs: add API v1.42
e258d66f17 profiles: seccomp: add syscalls related to PKU in default policy
9cd67df5b2 timestamp: clarify doc for ParseTimestamp
ee230d8fdd client: errors: remove dead code
52c1a2fae8 gofmt GoDoc comments with go1.19
e4e819b49c pkg/parsers/operatingsystem: fix stray import
6668801d40 gofmt files
5b0eb69635 Extract ImageService interface from the image service
98ce26624b maintainers: Add Paweł Gronowski as curator
4336271b57 maintainers: Add Bruno Sousa as curator
ab6b40e5a9 Add github issue forms
b1a6d5388d libnetwork: macvlan: reduce use of const for driver name
aca80d1cda libnetwork: ipvlan: reduce use of const for driver name
dddb4d25d2 libnetwork: macvlan: cleanup parseNetworkGenericOptions
1992190162 libnetwork: macvlan: make configuration.fromOptions a constructor
99bde59229 libnetwork: ipvlan: cleanup parseNetworkGenericOptions
1a1a885423 libnetwork: ipvlan: make configuration.fromOptions a constructor
4e39cdd9bb libnetwork: ipvlan: move validation into parseNetworkOptions()
9f0cb20d9f libnetwork: macvlan: move validation into parseNetworkOptions()
b768d69c04 libnetwork: macvlan: processIPAM(): simplify
5d13b38479 libnetwork: macvlan: processIPAM(): remove unused arg and error return
798021af9f libnetwork: macvlan: set network ID as part of parseNetworkOptions
35cba9b1c9 libnetwork: ipvlan: processIPAM(): simplify
8d067bbdb4 libnetwork: ipvlan: processIPAM(): remove unused arg and error return
a893540b66 libnetwork: ipvlan: set network ID as part of parseNetworkOptions
afeb4c7a6e libnetwork: macvlan: use single ipSubnet type
d3e3d43482 libnetwork: ipvlan: use single ipSubnet type
9fba1514d2 libnetwork: macvlan: clean up some consts
aec4853498 libnetwork: ipvlan: clean up some consts
33121d3d45 introduce Containerd-snapshotter feature flag
2293de1c82 update runc binary to v1.1.3
af7236f85a Check ipt options before looking for ip6t
25345f2c04 AdditionalGids must include effective group ID
7b153b9e28 api: set default "Builder-Version" to "2" (BuildKit) on Linux
70dc392bfa Use hashicorp/go-memdb instead of truncindex
8d5eebcc6e vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
Bumping docker-cli to version v24.0.0, which comprises the following commits:
fb6ae356c vendor: github.com/docker/docker v24.0.0-rc.3
de93c9b26 vendor: github.com/docker/distribution v2.8.2
cafdcf283 cli-plugins/manager: fix deprecation comment of Metadata.Experimental
3768143c2 Update tag docs to clarify name
52ac1a974 docs: update description for docker -H flag
58f37f630 vendor: github.com/docker/docker v24.0.0-rc.2
4f97f5599 vendor: github.com/docker/docker v24.0.0-rc.1.0.20230505222407-8d9a40a82034
0428418d6 vendor: github.com/containerd/containerd v1.6.21
05bf6fff2 vendor: github.com/opencontainers/runc v1.1.7
44fce0706 vendor: github.com/mattn/go-runewidth v0.0.14
fd0621d0f update go to go1.20.4
155f7d9e2 cli/command/system: add utilities for printing
1e89037d7 cli/command/system: prettyInfo: accept Streams
8cfefc6ea cli/command/system: prettyPrintServerInfo: accept Streams
ba7a200f0 cli/command/system: prettyPrintClientInfo: accept Streams
73938cd61 cli/command/system: printSwarmInfo(): accept io.Writer
2d0ea86b0 cli/command/system: use io.Writer for printing warnings
be6f4cd56 cli/command/system: prettyPrintServerInfo: refactor printing "runtimes"
1d70f7cdb cli/command/system: prettyPrintServerInfo: rename var that collided with import
416e55bed github.com/docker/cli/cli/command/system: add BenchmarkPrettyPrintInfo
f233becf9 vendor: github.com/moby/term v0.5.0
bd2c26328 vendor: github.com/docker/docker v24.0.0-rc.1
f02301ab5 remove uses of deprecated VirtualSize field
eeaaf5d01 e2e: Update alpine to 3.17.2
4569378ca e2e: Match notary server version with the main Dockerfile
ec5504a83 test/e2e: Use "frozen" tag to reference test images
41b6ec07c e2e: Skip tests with platform-specific digests on other platforms
962e22c31 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230406225228-75e92ce14ff7
72192c75c vendor: github.com/moby/buildkit v0.11.6
c177e2060 vendor: github.com/creack/pty v1.1.18
e693e7f3b Docs freshness updates
1c1fca4eb docs: update deprecation status of "overlay" and "AuFS"
c180202ce cli/command: remove deprecated Stream types
4e19b8128 docs: update deprecation status for overlay2.override_kernel_check
0dec5d20a volumes: prune: add --all / -a option
ff7f76af7 Handle empty DOCKER_BUILDKIT like unset
271b9667e Swarm: allow additional properties in `build`
e2bfd2199 cli/compose: add schema 3.11 (no changes with 3.10 yet)
6c4c3c23c build(deps): bump docker/bake-action from 2 to 3
8ef8f4131 man/dockerd.8: assorted formatting fixes
e3cb324ed man/dockerd.8: escape asterisks and underscores
a4bcabc7d vendor: github.com/docker/docker v24.0.0-beta.2
0286e36bb vendor: github.com/opencontainers/runc v1.1.6
1f1a6c5a8 vendor: golang.org/x/net v0.8.0
6e2163a71 vendor: golang.org/x/text v0.8.0
551d519b5 vendor: golang.org/x/term v0.6.0
c97c3211b docs: deprecation: OOM-score adjust for the daemon
88be16cb5 cli/command/container: implement `docker run --annotation`
6f415d240 docs: update deprecation status of BuildKit "buildInfo" for v24.0.0
da3871fd8 cli/command/system: printServerWarnings: use client API version from info
be307c579 cli/command/system: prettyPrintServerInfo: move out collecting username
71fde20e1 cli/command/system: prettyPrintServerInfo: simplify username
375b17a31 docker info: don't print "registry" (IndexServerAddress)
b87ed3435 cli/command: deprecate EncodeAuthToBase64
5d856a5d9 cli/command/container: pullImage: use DisplayJSONMessagesToStream utility
b9b98aee5 cli/command/container/create: pullImage(): use RetrieveAuthTokenFromImage
a27acd62b cli/command/container/create: pullImage() remove intermediate vars
e0b47cc2c cli/command/image: imagePullPrivileged: remove intermediate variables
372bb56ad cli/command: replace EncodeAuthToBase64 for registry.EncodeAuthConfig
534bfc230 cli/command/registry: remove intermediate var that collided
5e76d41bf cli/command: ConfigureAuth: fix links to related tickets
68d791e56 cli/command: ConfigureAuth: trim whitespace both for username and password
d0ec8fa5c cli/command: ConfigureAuth: fix terminal state not being restored on error
c846428cb docs: update dockerd usage output for new proxy-options
c730a8eb9 docs/reference: dockerd: remove default oom-score-adjust
c20974361 docs/reference: dockerd: update seccomp flag description
32bc91200 docs/reference: dockerd: use table for env-vars
370174800 docs/reference: use table for proxy env-vars
879e0804a docs/reference: reformat env-vars table, and simplify
4a863df57 docs/reference: remove mention of DOCKER_NOWARN_KERNEL_VERSION
c388fe4de cli: make cobra templates a const
341c843ac ci: remove fetch depth 0 for validate jobs
25ed7847e ci: add validation for generated markdown
04df70025 docs: deprecated: fix version (23.1.0 -> 24.0.0)
5bd359132 cli/command: fix documentation for ResolveAuthConfig
8ee771114 docker info: include Client Version and "platform name"
3347d7b5a cli/command/system: add newClientVersion() utility
3124e779c cli/command/system: clientVersion: make all fields "omitempty"
9202bef4a cli/command/system: add platformInfo type, and fix "omitempty"
5d37acdde cli/command/system:remove versionInfo.ServerOK() utility
5d33b7276 docs: update engine versions in some examples
23bd746c4 fix docker version --format=json not outputting json format
80640bca7 cli/command/system: make default version template a const
46234b82e fix docker info --format=json not outputting json format
1aaa179d9 cli/command/formatter: export JSONFormat const
37e02ff21 docker ps: print warning if both --format and --quiet are set
f52290559 docker ps: always use --quiet, also combined with --format
f36e4b094 cli/command/container: rename vars that collided
c25b8f803 vendor: github.com/spf13/cobra v1.7.0
ca1d0eb90 Update version to v24.0.0-dev
08a794dc0 docs: regenerate markdown docs
37f234fbe scripts/docs/generate-md.sh: fix location of generate code
591bead14 update go to go1.20.3
683e4bf0c Fix plugin completion parsing for plugins using `ShellCompDirectiveFilterFileExt`
808032652 cli/streams: minor refactoring and docs touch-ups
66a1c3bab cli/config/configfile: remove deprecated StackOrchestrator field
328fac3a6 cli/context/docker: remove deprecated Endpoint.TLSPassword
aace828bb cli/flags: remove deprecated CommonOptions, NewCommonOptions
8b418be6d cli/context/store: remove deprecated error-utilities
3405eb1f4 cli/command/formatter: remove deprecated KubernetesEndpoint
817897f89 cli/command: fix deprecation comments for Stream types
89583b92b improve plugins listing performance
fc560038e vendor: github.com/docker/docker v24.0.0-beta.1
e14f5fc1a revert "improve plugins discovery performance"
05cffcbed vendor: github.com/docker/docker 7c93e4a09be1 (v24.0.0-dev)
a36a54d3c vendor: github.com/containerd/containerd v1.6.20
f4b22fb6c vendor: github.com/opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
eb392ff4c cp: Do not block transfer on writing to terminal
7189716d5 replace uses of deprecated api/types.AuthConfig
bfa79fd75 vendor: github.com/docker/docker master (v24.0.0-dev)
e86d2f411 vendor: github.com/moby/buildkit v0.11.5
cd9c6a4c0 vendor: github.com/klauspost/compress v1.16.3
5843fbd5f vendor: github.com/imdario/mergo v0.3.13
149d28963 vendor: golang.org/x/sys v0.6.0
6dca335d0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
4389c966f vendor: github.com/opencontainers/runc v1.1.5
a79828287 update to go1.20.2
b8747b0f9 update golangci-lint to v1.52.2
399ded9b9 internal/test: FakeCli: remove name for unused arg (revive)
20a70cb53 internal/test/notary: remove name for unused arg (revive)
90380d957 cli/connhelper/commandconn: remove name for unused arg (revive)
dd6ede210 cli/config/configfile: mockNativeStore: remove name for unused arg (revive)
7c8680c69 cli/compose/schema: remove name for unused arg (revive)
6355bcee6 cli/compose/convert: fakeClient: remove name for unused arg (revive)
607f290f6 cli/command/volume: remove name for unused arg (revive)
546cf6d98 cli/command/trust: fakeClient: remove name for unused arg (revive)
b32b28041 cli/command/task: fakeClient: remove name for unused arg (revive)
40a51d554 cli/command/swarm: fakeClient: remove name for unused arg (revive)
b0d0b0efc cli/command/stack: fakeClient: remove name for unused arg (revive)
c69640d8c cli/command/service: fakeClient: remove name for unused arg (revive)
5254081fd cli/command/registry: fakeClient: remove name for unused arg (revive)
da3416c02 cli/command/plugin: fakeClient: remove name for unused arg (revive)
625988c3a cli/command/node: fakeClient: remove name for unused arg (revive)
92d9e3bf6 cli/command/network: fakeClient: remove name for unused arg (revive)
316c4992c cli/command/image: fakeClient: remove name for unused arg (revive)
ae5a86bb8 cli/command/image/build: remove name for unused arg (revive)
38ef40ee7 cli/command/idresolver: fakeClient: remove name for unused arg (revive)
45b5676ac cli/command/container: fakeClient: remove name for unused arg (revive)
5563c5a91 cli/command/checkpoint: fakeClient: remove name for unused arg (revive)
9dd012aa5 cli/command/secret: fakeClient: include context in fake client (revive)
66c66bdce cli/command/config: fakeClient: include context in fake client (revive)
ac024a4d8 internal/test/network: FakeClient: embed interface to remove boilerplating
a2d532819 cli/trust: remove name for unused args (revive)
f5fad186c opts: NormalizeCapability(): fix redefinition of the built-in function (revive)
9252fae83 cli/registry/client: AuthorizeRequest(): remove name for unused arg (revive)
92506afd4 cli/command/service/progress: remove name for unused parameter (revive)
c3d7f167b cli/command: RunPrune(): remove name for unused "all" parameter (revive)
b4aff3a14 cli/command/completion: NoComplete(): remove unused argument (revive)
f08252c10 cli/command/stack: deprecate now obsolete wrappers
78c474539 cli/command/context: remove redundant if ...; err != nil check (revive)
be97731f1 cli/command/container: fix redefinition of the built-in function close (revive)
b9a1b0928 cp: Make gocyclo happy
90b7bc36d cp: Reduce number of progress updates
efd011b79 cp: reduce branching in progress printer
e4436853e gha: align stray go 1.19.4 version
9335690a6 Fix grammar in docs by adding omitted word
ccae6e929 cp: Improve tty flashing on progress updates
f27927d93 cp: do not emit progress if stderr is not a term
a39958846 vendor: github.com/docker/docker v23.0.2
c39c711a1 load plugin command stubs when required
62f2358b9 improve plugins discovery performance
bebdb6fa2 ci: enhanced build workflow
bec5d37e9 don't use null values in the bake definition
b201ce5ef e2e: update notary certificates
c6c33380d e2e: increase tests certificates duration (10 years)
d234a81de bake target to generate certs for e2e tets
3ce95c7af Dockerfile: build binary if no target specified
b854eff30 Dockerfile: align go version
0ba820ed0 cli/trust: remove special handling for "plugin" Class
a3d56e7d0 cli/command: remove deprecated ElectAuthServer()
742881fc5 cli/command: fix imports formatting
e3fa7280a cli/command: ElectAuthServer: fix deprecation comment
db827d583 cli/command/volume: suppress err output in tests
aa0aa4a6d Add bash completion for available plugins
8805f8ea2 build(deps): bump actions/setup-go from 3 to 4
e60c748c1 vendor: github.com/moby/buildkit v0.11.4
6c8cc226f vendor: google.golang.org/grpc v1.50.1
d213548bd vendor: golang.org/x/net v0.7.0
3a0d492d1 vendor: golang.org/x/term v0.5.0
f40bbf4f7 vendor: golang.org/x/time v0.3.0
a85537d34 vendor: golang.org/x/text v0.7.0
3e9c6e84c vendor: golang.org/x/sys v0.5.0
ca8783ef4 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
33806760a vendor: github.com/containerd/containerd v1.6.19
71e495aa5 vendor: github.com/docker/docker v23.0.1
74c4ed417 Dockerfile: update buildx to v0.10.4
23da1cec6 update to go1.19.7
012b77952 stack: Change unexpected environment variable error
a47058bbd stack/loader: Ignore cmd.exe special env variables
25ebf0ec9 connhelper: Allow socket path when using SSH
973333448 Don't automatically request size if `--size` was explicitly set to `false`
8bc1aacea docs: Deprecate buildkit's build information
89687d5b3 formatter: Consider empty RepoTags and RepoDigests as dangling
a1953e19b test/cli: Use empty array as empty output of images/json
e636747a1 docs: drop dated comments about graphdrivers
dac79b19a Dockerfile: update buildx to v0.10.3 release notes: https://github.com/docker/buildx/releases/tag/v0.10.3
c2487c299 context: avoid corrupt file writes
e921e103a update to go1.19.6
d2f726d5a changed the container name in docker stats page
de9b47ae6 Fix styling of arguments
0f3959868 ci: fix branch filter pattern
4254cd19b MAINTAINERS: add myself as curator
bbebebaed vendor: github.com/docker/docker v23.0.0
5195db1ff vendor: github.com/containerd/containerd v1.6.16
9b5ceb52b cli/command/container: exit 126 on EISDIR error
56051b84b Fix bad ThrottleDevice path
74973adaa cli/command: embed "Streams" interface in "Cli"
2753057c4 contrib/completion: bash `nounset` mode fixes
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d38fffa859 |
moby: update to v23.0.6
Bumping moby to version v23.0.6-2-gcb3fd005d4, which comprises the following commits:
e94c22cc39 vendor: github.com/docker/distribution v2.8.2
e73310d8c9 update runc binary to v1.1.7
3f0402cb68 update runc binary to v1.1.6
edadebe177 update containerd binary to v1.6.21
14661fc010 vendor: github.com/containerd/containerd v1.6.21
e00f6efb20 Vendor containerd 1.6.x with the readonly mount fix
bd4620f6ee vendor: github.com/containerd/containerd v1.6.20
d06cf03729 vendor: re-vendor to add missing file
cf7742ea7c vendor: opencontainers/image-spec v1.1.0-rc2.0.20221005185240-3a7f492d3f1b
382e9ebbf6 vendor: github.com/containerd/ttrpc v1.1.1
e0843f264d Update `github.com/containerd/containerd` to the HEAD of `release/1.6` and vendor
94fcd2d2ef d/graphdriver/copy: support src fs w/o xattr support
70dbd2c870 [23.0] update go to go1.19.9
fe0a414613 Use the image service instead of the reference store for tagging
40ec0eb9fe vendor: github.com/opencontainers/runc v1.1.5
227d3f39a3 daemon: set docker0 subpool as the IPAM pool
c82be35412 libnetwork: clean up inDelete network atomically
ccccb7a170 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
8a6bec6e16 Silence GRPC logs unless our log level is debug
844fd50c67 Added timeout to validate job in github actions
8cec683574 Dockerfile: update xx to 1.2.1
7ff53c3c78 Update delve version
4d57ee692d TestLogs: Increase stop check poll timeout on Windows
838d5ea058 chore: use http constants to replace numbers
61d084593c client: deprecate NewClient properly
28b694d32d awslogs: fix non-blocking log drop bug
3731ce10d4 Fix argument quoting bugs in dockerd-rootless.sh
23774ada04 vendor: github.com/moby/buildkit v0.10.7-0.20230412161310-d52b2d584242
9277e64444 vendor: github.com/ishidawataru/sctp v0.0.0-20230406120618-7ff4192f6ff2
09fbbd5677 docker-rootless-setuptools.sh: improve readability of messages
d3e52936c3 [23.0] update go to go1.19.8
a0a597cbbe [23.0] fix vendor.mod: add hashicorp/go-multierror as direct dependency
063d3a6f1a daemon: let libnetwork assign default bridge IPAM
389e18081d update containerd binary to v1.6.20
348544e6e8 libnet/d/windows: log EnableInternalDNS val after setting it
3923e302a4 update runc binary to v1.1.5
f3946c14fe integration-cli: Enable TestExecStartFails on Windows
b87f7f18b8 libnet/d/overlay: insert the input-drop rule
c6bf3071fe StartWithLogFile: Fix d.cmd race
7f49ca259b TestDaemonRestartKillContainers: Fix loop capture
98cbcb8003 libnet/d/overlay: add BPF-powered VNI matcher
5c5fac2374 libnet/d/overlay: extract VNI match rule builder
c492a22287 libn/d/overlay: enforce encryption on sandbox init
018edb0284 libnet/d/overlay: document some encryption code
Bumping libnetwork to version v0.7.0-dev.3-1872-g3f004841, which comprises the following commits:
dbbf124d Clean up inDelete network atomically
d4d07f4a d/windows: log EnableInternalDNS val after setting it
91f0d508 update maintainers
c5aa85f9 drivers/overlay: insert the input-drop rule
bef66946 drivers/overlay: appease the old deprecated linter
a94fe95b drivers/overlay: add BPF-powered VNI matcher
e0376b6c drivers/overlay: extract VNI match rule builder
f1945d37 drivers/overlay: enforce encryption on sandbox init
97442407 drivers/overlay: document some encryption code
Bumping docker-cli to version v23.0.6-8-g44a7d9537, which comprises the following commits:
a98af2b39 vendor: github.com/docker/distribution v2.8.2
6f353c800 cli-plugins/manager: fix deprecation comment of Metadata.Experimental
63b205048 Update tag docs to clarify name
c76773b19 docs: update description for docker -H flag
c769f2079 [23.0] update go to go1.19.9
802f17488 [23.0] vendor: github.com/docker/docker v23.0.5
498743aed [23.0] vendor: github.com/moby/swarmkit/v2 v2.0.0-20230315203717-e28e8ba9bc83
fde09d1d8 [23.0] vendor: github.com/opencontainers/runc v1.1.5
3cda7c30c [23.0] vendor: github.com/docker/docker v23.0.4
6c0f9022c Docs freshness updates
17357a778 build(deps): bump docker/bake-action from 2 to 3
2cf68537d ci: remove fetch depth 0 for validate jobs
4a4291708 ci: add validation for generated markdown
f914316a9 fix docker version --format=json not outputting json format
9dfe5a29e cli/command/system: make default version template a const
2c1fde223 fix docker info --format=json not outputting json format
99124087e cli/command/formatter: export JSONFormat const
86e79b55e volumes: prune: add --all / -a option
ada43812d cli/command/volume: suppress err output in tests
c648e0b06 Handle empty DOCKER_BUILDKIT like unset
b6cd3c85b docs: update dockerd usage output for new proxy-options
aa85421ff docs/reference: dockerd: remove default oom-score-adjust
6bc4bf4f0 docs/reference: dockerd: update seccomp flag description
8a35f92ff docs/reference: dockerd: use table for env-vars
2cb152c41 docs/reference: use table for proxy env-vars
623da1997 docs/reference: reformat env-vars table, and simplify
e76242fff docs/reference: remove mention of DOCKER_NOWARN_KERNEL_VERSION
4b4d7e2b4 cli/command: fix documentation for ResolveAuthConfig
e67e5559d docs: deprecated: fix version (23.1.0 -> 24.0.0)
a8e3b4b85 docs: update engine versions in some examples
f88c159c7 [23.0] vendor: github.com/docker/docker v23.0.3
6c052fcda vendor: github.com/docker/docker v23.0.2
079e80889 vendor: golang.org/x/net v0.7.0
ff448ff45 vendor: golang.org/x/term v0.5.0
476933b68 vendor: golang.org/x/time v0.3.0
6131fe9e4 vendor: golang.org/x/text v0.7.0
bbc791ed7 vendor: golang.org/x/sys v0.5.0
dd6f77bba vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
cb338ec97 vendor: github.com/containerd/containerd v1.6.19
ffafb38e3 vendor: github.com/docker/docker v23.0.1
a763e5114 Fix plugin completion parsing for plugins using `ShellCompDirectiveFilterFileExt`
3c7de6454 Fix grammar in docs by adding omitted word
3d0d576af ci: enhanced build workflow
2609bd23f docs: regenerate markdown docs
5fd2c0850 scripts/docs/generate-md.sh: fix location of generate code
5cd7710a0 update go to go1.19.8
209e9c0c1 cp: Do not block transfer on writing to terminal
ce68ce7ae cp: Make gocyclo happy
c28cb35c4 cp: Reduce number of progress updates
948dfa91c cp: reduce branching in progress printer
f813c9639 cp: Improve tty flashing on progress updates
97d91f13a cp: do not emit progress if stderr is not a term
6efc4eacc cli/command: fix deprecation comments for Stream types
c7cdab58d improve plugins listing performance
d93d78588 load plugin command stubs when required
8e38271f2 gha: align stray go 1.19.4 version
f6643207a don't use null values in the bake definition
f381e0842 Dockerfile: align go version
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
55de27c51a |
containerd: update to 1.7.1
Bumping containerd to version v1.7.1-4-g835383b17, which comprises the following commits:
6a5e54c15 Get CDI devices from CRI Config.CDIDevices field
9e60300ea snapshots/testsuite: Rename: fix fuse-overlayfs incompatibility
7b288e2d7 Update ttrpc to v1.2.2
27a0d957b Prepare release notes for v1.7.1
0e0532eb2 bump typeurl to v2.1.1
35e86f96c [transfer] avoid setting limiters when max is 0
f7233811f Update transfer configuration
4510eac00 Fix image pulling with Transfer service
aaa65e8c1 Update hcsshim tag to v0.10.0-rc.8
95ef67e19 Fix umarshal metrics for CRI server
3ef5b689a runtime/shim: fix the nil checkpoint options
021bba28b update go to go1.20.4, go1.19.9
6b3ae0129 Remove entry for container from container store on error
c0e128624 skip TestContainerStartWithAbsRuntimePath if the runtime is v1
aa3c63c15 integration: add container start test using abs runtime path
d2d9eedb1 WithRuntimePath uses the TaskInfo.RuntimePath field
fae4b6223 update runc binary to v1.1.7
571715a9d cri: Vendor v0.27.1
a6d336c1f Fix argsEscaped tests
1bbf98e53 oci: partially restore comment on read-only mounts for uid/gid uses
8f6e86fec go.mod: add comment explaining go-fuzz-headers replace rule
1ece0cb50 go.mod: remove replace for github.com/opencontainers/runtime-tools
e9f962187 go.mod: integration: use non-pre-release of containerd
84393b005 go.mod: integration: move indirect dependencies to the right group
dec2595af update runc binary to v1.1.6
7de8629be cri: Throw an error if idmap mounts is requested
75ac7e0d8 cri: Vendor v0.27.0-beta.0 for mounts uid/gid mappings
54d12b872 oci: Use WithReadonlyTempMount when adding users/groups
624327651 update go to go1.20.3, go1.19.8
1d6641b7c export: add test for WithSkipDockerManifest
0e0d84f6b archive: consistently respect value of WithSkipDockerManifest
9b4935d86 Update sbserver to add noexec nodev and nosuid to /etc/resolv.conf mount bind.
5e953cfa6 Test to ensure nosuid,nodev,noexec are set on /etc/reolv.conf mount.
0aad93f08 Add noexec nodev and nosuid to sandbox /etc/resolv.conf mount bind.
1a64f1b43 ctr/tasks: fix unmarshal the task metrics for cgroups v1
17c52a26d Keep linux mounts for linux sandboxes on Windows/Darwin
d81fc15af update runc binary to v1.1.5
755efbe64 go.mod: github.com/opencontainers/runc v1.1.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c772a5c230 |
cri-tools: update to v1.27.0
We refresh one patch for context, but otherwise no changes.
Bumping cri-tools to version v1.26.0-186-ge73a7139, which comprises the following commits:
00212a72 Bump github.com/docker/docker
f0bf767c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.1
c6ca9164 Bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
8c87ebfb Bump github.com/docker/distribution
b4fdcd33 Add validation when container OOMKilled
43675ad1 Bump github.com/docker/docker
3a32265d Bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4
dd924127 Bump golang.org/x/net from 0.9.0 to 0.10.0
557024a5 Fix build flakiness
b2bee82a Bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3
801d6985 Bump golang.org/x/term from 0.7.0 to 0.8.0
f2e40682 Bump github.com/moby/term
dadffe3e test rm{,i,p} subcommands help message
13dbe21f Add CrictlExpect() to test framework
c714ecd6 Display help when running 'crictl rmi'
4eb6a64b Do not display help when deleting all pods/containers
ce6ad257 Bump github.com/opencontainers/runc from 1.1.6 to 1.1.7
c2c53b77 Bump github.com/docker/docker
deb3bf67 Download release notes tool binary directly
ae7a5eb7 Allow setting CGO_ENABLED
464d6452 Allow overriding GOFLAGS
e64d6e37 Allow providing (additional) custom GO_LDFLAGS
664ef74f Allow setting custom version but use git by default
a2ab0b20 Bump github.com/docker/docker
80bff8b3 Disable dependency gathering for release notes
74092cb9 Vendor Kubernetes v1.27.0
5c6a90bc Update CI badges
5c9d2ee0 Bump github.com/opencontainers/runc from 1.1.5 to 1.1.6
c953d28b golangci-lint: bump to 1.52.2 and fix errors
8d781b8f bump to go 1.20
554b1637 vendor: bump to kube 1.27.0
0497653a Improve text formatting
87cd4d48 Bump golang.org/x/net from 0.8.0 to 0.9.0
e2dc71a2 Bump golang.org/x/term from 0.6.0 to 0.7.0
b8009174 Bump github.com/docker/docker
1f393c4e Bump github.com/onsi/gomega from 1.27.5 to 1.27.6
1dbda3f7 Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ea6911aea4 |
cri-o: update to 1.27.0
Bumping cri-o to version v1.27.0-14-g81ac4cea5, which comprises the following commits:
69a6d6fc2 Fix events generated by Evented PLEG
86cae21ec cgmgr: set sched_load_balance to disabled on sandbox cgroup
47d6d6c82 test/pod.bats: update to current setup
2b7f614e0 cgmgr: create cgroups for systemd cgroup driver for dropped infra pods
b415e72d6 Fix vendoring
6df1f0711 Update c/common to v0.53.0
cd9636049 Download more dependencies instead of vendoring
230e28acb Stop vendoring release notes tool
a2b280af4 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1
cc00b5a62 version: bump to 1.27.0
f5ce04e04 bump cri-tools to 1.27.0
bc45b9021 Fix restore tests
8d6b49db2 build(deps): bump github.com/containers/podman/v4 from 4.4.2 to 4.5.0
a28b1e760 Add unit test for crictl info with verbose
875c3a2b1 Add basic crictl info config with sandboxImage
070668a35 Bump crun to v1.8.4
48bc2bd8d contrib/test/ci: cache runc and crun setup unconditionally
48cf728dd config: mark seccomp-use-default-when-empty as deprecated
a2961f8c3 Bump runc to v1.1.6
efaea1060 high perf hooks: move cpu-quota disable handling to container creation
566aa128a high perf hooks: remove test for cpu load balancing
65d25545e high perf hooks: update cpu load balancing to be cgroup based
cc50b438b test: add cpu load balancing test
cf77d5383 build(deps): bump github.com/onsi/gomega from 1.27.2 to 1.27.6
acd4d30ba Bump Kubernetes to v1.27.0
0087d0ee7 Don't use KUBE-MARK-MASQ in hostport rules
c1c52191d Update template.go
4bc36eabd contrib/test: don't cache the cri-o content
6fcbca13f Don't print `Dependencies` if `crio version` it not verbose
4073764a8 Update nixpkgs
9aa7afcec Update golangci-lint and config
cb70d29b9 internal: fix the release version for release notes
3890a7222 internal/storage.runtimeService.createContainerOrPodSandbox(): read ID maps
b325ad692 Set umask for crio container
28f910952 build(deps): bump github.com/docker/docker
53431c68a runtimeVM: fix Exec(sync) overwriting the initial spec args
400793fab vendor: use go-github to fetch the latest tag from github
e9a932f04 Update bom and use binary directly
4edb9e8ea Fixed signature check for commit-based downloads
a86fbb63e Fixed issues found by shellcheck
0c029c62e Fixed signature check
9e5b533a3 Fixed version substitution
bbe4b04a5 Generate proper signature check
683e4f858 test: run irqbalance tests serially to avoid race condition
e07246fc1 Update crun to v1.8.3 and runc to v1.5.1
fd35a25b1 OCPBUGS-10970: Fix the interrupt mask width when encoding
934765cf6 Update zeitgeist to v0.4.1
5e512d6ef create the metrics endpoint with correct shutdown logic
2b7efa752 build(deps): bump github.com/urfave/cli/v2 from 2.24.4 to 2.25.1
604e7bb6b Remove `scripts/node_e2e_installer`
f1e9c0e8c server: wire support for userns volumes
973c51a7b vendor: bump cri-api
a8bd24c60 test: add irqbalance dependency to CI
ed7bbaf28 contrib/test/ci: disable failing sig-network test for v1.27 release
2184981ea Remove SELinux policy download
e57047253 Add spdx signature and cert to release notes
d7cf40b7e oci: Enable checkpointing of file locks
d719028aa build(deps): bump golang.org/x/sys from 0.5.0 to 0.6.0
c4c583014 go.mod: update CDI dependency to 0.5.4.
11cbc5fd7 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
44d878e93 test: add irqbalance dependency
f74da33a7 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
4bb2e930e Fix get script
f556f5a58 build(deps): bump sigstore/cosign-installer from 2 to 3
244982179 Bump crun to v1.8.1
246c59139 go.mod: update github.com/containerd/nri to 0.3.0.
be2cc0eb5 build(deps): bump cachix/install-nix-action from 19 to 20
11c9401a8 build(deps): bump github.com/onsi/gomega from 1.27.1 to 1.27.2
cd8346082 Pin nix version to fix static builds
f112d497d Add new parameter hostnetwork-disable-selinux
96906a86c [CI] Fix validate-completion
ab8fc4f7d build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
dde09588c build(deps): bump github.com/containers/storage from 1.45.3 to 1.45.4
b769f0dbb build(deps): bump github.com/containers/podman/v4 from 4.4.1 to 4.4.2
9f9fc8a19 build(deps): bump github.com/containerd/containerd
1a488f516 test: Avoid parallel execution
b74d76c79 test: add integration test for irqbalance
e15854938 highperfhooks: add option to configure irqbalance restore
3f9d21c7e Fix cgroup leak for systemd cgroup driver
7af09fa0a unit-test: call UpdateContainerResources when nri enabled
828ad0200 nri: add protection against nil dereference
97b03c338 build(deps): bump github.com/containerd/fifo from 1.0.0 to 1.1.0
b267ed784 highperfhooks: add logs in the irqbalance restore
3774df887 highperfhooks: test: use ExpectWithOffset
e21dd08e9 highperfhook: use internal/.log, not logrus
9ee51c429 docs-validation: try String() for struct field values.
ab3b401b0 internal/oci: don't crash when getting unset Spec.
fa2abd239 test: update NRI BATS test.
1d0ca6fd1 completions, docs: update completions and man pages.
f5afa87ce config,criocli: update NRI deps, configuration.
7cfdaebb6 Update to c/image 5.24.2
a78a7d470 build(deps): bump github.com/onsi/gomega from 1.27.0 to 1.27.1
38455da55 build(deps): bump github.com/psampaz/go-mod-outdated from 0.8.0 to 0.9.0
221a7d0f9 build(deps): bump github.com/onsi/ginkgo/v2 from 2.8.1 to 2.8.3
95f5c57aa build(deps): bump cachix/install-nix-action from 18 to 19
1f909bc5e test/*: add test for checking the /etc folder permission
ef164da82 server: fix the permission issue for `/etc`
7b812d0ab build(deps): bump github.com/containers/buildah from 1.29.0 to 1.29.1
7c21bc7d7 build(deps): bump github.com/onsi/gomega from 1.26.0 to 1.27.0
a091d6c8f build(deps): bump github.com/urfave/cli/v2 from 2.24.3 to 2.24.4
25b06a987 Remove `zeitgeist` from golang dependencies
ba4d53c14 Bump golang dependencies
9216a817a Revert "main: shutdown server only once"
d573f0406 Drop `ENABLE_POD_EVENTS` var from e2e installer script
79a6d4fec Fix roadmap links
b59e59572 test: use container_sleep for idempotent test
169908b5a Update github.com/containers/image to v5.24.0
62173e974 main: shutdown server only once
2f2d152d8 Bump the CRIO commit to the latest main
10a6096f9 Add documentation about how to use tracing
66b6bb3bc Switch to go 1.20 for CI jobs
49cbab56a dependencies: bump conmon to v2.1.6
679bbbf20 Closes #5653 Return ContainerResources in ContainerStatusResponse Signed-off-by: T K Chandra Hasan <t.k.chandra.hasan@ibm.com>
0e7fdcaf0 Update opencontainers/runtime-tools to a6a073817ab0.
4cf3d3774 runtimeVM: ignore missing shim path for deleted containers
c80ae0acd runtimeVM: notify server that the container exited
5d23b6a02 contrib/test/ci/*: refactor CI to build a cache image
7600cb4e3 contrib/test/ci: adds time information to tasks
1fb1771bd go.mod: update github.com/containerd/nri.
905bd1b37 Take MaskedPaths and ReadonlyPaths from checkpointed container
cd406494f build(deps): bump google.golang.org/grpc from 1.52.0 to 1.52.3
9a2dae755 Fix unit tests
1edf19505 build(deps): bump k8s.io/klog/v2 from 2.80.1 to 2.90.0
193ae758c build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
a6a95fe96 Add container stats to the ListPodSandboxStats response
8b3fca69a contrib/cni: provide more context around file selection
f648ff47f build(deps): bump github.com/urfave/cli/v2 from 2.23.7 to 2.24.1
72e54a7de Add additional metadata to inspect and checkpoint
a9d845a6b Update to latest version of checkpointctl
7a8f62f1b Removed pod checkpointing support
f291de93a Make storage unmount less strict
f3ed08a35 build(deps): bump k8s.io/release from 0.14.0 to 0.15.0
1226a601c packit: install wget before build
8e42d5360 build(deps): bump github.com/containers/ocicrypt from 1.1.6 to 1.1.7
d85a8b3cf Update OTEL dependencies
42c00941b Update CNI plugins to v1.2.0
437d7bbf9 GOVERNANCE: add org member tier
8fc1e91d3 CoC: replace with CNCF one
0059f24a6 mention MAINTAINERS file in GOVERNANCE
dbf1ee997 Add MAINTAINERS.md document
700fe6590 README: add roadmap
35cce86f8 add a public roadmap
ae9712231 update GOVERNANCE.md file
5ef5271b3 build(deps): bump mvdan.cc/sh/v3 from 3.5.1 to 3.6.0
34a7052a8 build(deps): bump helm.sh/helm/v3 from 3.10.0 to 3.10.3
1cc037f57 build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.25.0
ff3aa8105 build(deps): bump sigs.k8s.io/release-sdk from 0.9.3 to 0.9.7
f57e36946 build(deps): bump github.com/sigstore/cosign from 1.11.1 to 1.12.0
ae60a2bb6 Update vendor of opencontainers/runtime-tools
47922035d Allow cross building from non-linux
dfc43f7ba Inject release-notes branch from GitHub actions
6d35f54d7 build(deps): bump google.golang.org/grpc from 1.51.0 to 1.52.0
faeaceddb ci-verify: Run get-scripts only on main branch
752bf4d69 Update critest parameters
89029ed43 hostport: use generic Set
dcc7437db server: update streaming interface to take context
1135dbad5 ci: bump cri-o.spec file to 1.26
5ae6ba51d static: bump go version
9e1b732a9 bump to cri-tools 1.26.0
2d0457814 server: add support for new CRI calls
9f1c91349 server/streaming: add context to methods
eb4719b55 vendor: bump kube to 1.26.0
815a426e8 Enable upstream CI to test node e2e with evented pleg feature
404afb004 Bump e2e-installer script with the latest commit
a410ce6e8 mocks: update with new c/storage mocks
43ed06ee4 vendor: bump storage to v1.44.1-0.20230101110555-a747b27fe4ca
fadc73bc7 job get script: fix conflist path
666a9e91c fix inconsistent documentation for default value of
b78350830 build(deps): bump actions/stale from 6 to 7
79b1b5937 Pass tracer to conmon-rs client
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4aa2aadb01 |
runc-docker: update to 1.1.7
Bumping runc to version v1.1.7-2-gb6109acd, which comprises the following commits:
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
c1063b1c runc.keyring: add Akihiro Suda
b0fae8c4 scripts: keyring validate: print some more information
79a52b43 libct/cg/sd: use systemd version when generating dev props
6a806d4d runc.keyring: add Kolyshkin
b6f686f2 keyring: add Aleksa's <cyphar@cyphar.com> signing key
63355bf8 keyring: add Aleksa's <asarai@suse.com> signing key
3bdb63bf keyring: verify runc.keyring has legitimate maintainer keys
853d5e38 scripts: release: add verification checks for signing keys
bd1d5370 release: add runc.keyring file and script
7cd72cc3 VERSION: go back to development
0f48801a VERSION: release 1.1.6
e4ce94e2 libct/cg: add misc controller to v1 drivers
10cfd816 libctr/cgroups: don't take init's cgroup into account
d30d240b tests/int: test for CAP_DAC_OVERRIDE
840b9539 Fix runc run "permission denied" when rootless
165d2323 tests/int: add a "update cpuset cpus range via v2 unified map" test
26a58fdb cgroups: cpuset: fix byte order while parsing cpuset range to bits
8d9d1d25 libct/int: make TestFdLeaks more robust
b66d6d56 libct/int: wording nits
ddbb6d41 libc/int: add/use runContainerOk wrapper
3531cc2d ci: add call to check-config.sh
ed9a0e1d ci/gha: bump actions/cache to v3
7683e508 ci/gha: switch to Go 1.19.x for validate
568d4407 ci/gha: bump golangci-lint to 1.48
1f9e36c0 libct: fixes for godoc 1.19
50f06554 ci: bump golangci-lint to 1.46
77472ef6 libct: fix staticcheck warning
9994fe3f libct: suppress strings.Title deprecation warning
403ea1f0 ci/gha: convert lint-extra from a job to a step
d2c83bdf ci/gha: switch to Go 1.18.x for validate
03a631df ci: switch to golangci-lint 1.45
e5a5522a Add supported Go releases (1.19, 1.20)
3ce12483 Dockerfile: fix build wrt new git
bac06cf6 ci/gha: remove stable: when installing Go
e74040e0 build(deps): bump actions/setup-go from 2 to 3
55462355 Require Go 1.17, bump x/sys and x/net
3ce9c1e2 tests: Fix weird error on centos-9
abd6adde ci: bump shfmt to 3.5.1, simplify CI setup
1a4bf049 man/*sh: fix shellcheck warnings, add to shellcheck
9201794a script/check-config.sh: fix remaining shellcheck warnings
8b976428 shfmt: add more files
b0fbd2f8 script/check-config.sh: fix SC2166 warnings
7f8cb3d6 script/check-config.sh: fix wrap_color usage
f6562f19 [1.1] libct/cg/dev: skip flaky test of CentOS 7
12f2f03f [1.1] runc run: refuse a non-empty cgroup for systemd driver
e618ec36 libct/cg/sd: reset-failed and retry startUnit on UnitExists
931b9bf3 libct/cg/sd: ignore UnitExists only for Apply(-1)
b46ac860 libct/cg/sd: refactor startUnit
822623b6 CHANGELOG.md: move 1.1.5 CVEs to Security section
54cfb25d Makefile: add verify-changelog as release dependency
7b3ac330 verify-changelog: allow non-ASCII
37e586ab CHANGELOG: fix a typo
de0c2277 [1.1] CHANGELOG: fix 1.1.5 git compare link
1fe2ec53 tests/int/mounts: only check non-shadowed mounts
9b8ebe4d tests/int/mount: fix issues with ro cgroup test
17a2d451 VERSION: back to development
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b3fd5097ab |
runc-opencontainers: update to 1.1.7
Bumping runc to version v1.1.7-2-gb6109acd, which comprises the following commits:
f0ecf30b VERSION: back to development
860f061b VERSION: release 1.1.7
c1063b1c runc.keyring: add Akihiro Suda
b0fae8c4 scripts: keyring validate: print some more information
79a52b43 libct/cg/sd: use systemd version when generating dev props
6a806d4d runc.keyring: add Kolyshkin
b6f686f2 keyring: add Aleksa's <cyphar@cyphar.com> signing key
63355bf8 keyring: add Aleksa's <asarai@suse.com> signing key
3bdb63bf keyring: verify runc.keyring has legitimate maintainer keys
853d5e38 scripts: release: add verification checks for signing keys
bd1d5370 release: add runc.keyring file and script
7cd72cc3 VERSION: go back to development
0f48801a VERSION: release 1.1.6
e4ce94e2 libct/cg: add misc controller to v1 drivers
10cfd816 libctr/cgroups: don't take init's cgroup into account
d30d240b tests/int: test for CAP_DAC_OVERRIDE
840b9539 Fix runc run "permission denied" when rootless
165d2323 tests/int: add a "update cpuset cpus range via v2 unified map" test
26a58fdb cgroups: cpuset: fix byte order while parsing cpuset range to bits
8d9d1d25 libct/int: make TestFdLeaks more robust
b66d6d56 libct/int: wording nits
ddbb6d41 libc/int: add/use runContainerOk wrapper
3531cc2d ci: add call to check-config.sh
ed9a0e1d ci/gha: bump actions/cache to v3
7683e508 ci/gha: switch to Go 1.19.x for validate
568d4407 ci/gha: bump golangci-lint to 1.48
1f9e36c0 libct: fixes for godoc 1.19
50f06554 ci: bump golangci-lint to 1.46
77472ef6 libct: fix staticcheck warning
9994fe3f libct: suppress strings.Title deprecation warning
403ea1f0 ci/gha: convert lint-extra from a job to a step
d2c83bdf ci/gha: switch to Go 1.18.x for validate
03a631df ci: switch to golangci-lint 1.45
e5a5522a Add supported Go releases (1.19, 1.20)
3ce12483 Dockerfile: fix build wrt new git
bac06cf6 ci/gha: remove stable: when installing Go
e74040e0 build(deps): bump actions/setup-go from 2 to 3
55462355 Require Go 1.17, bump x/sys and x/net
3ce9c1e2 tests: Fix weird error on centos-9
abd6adde ci: bump shfmt to 3.5.1, simplify CI setup
1a4bf049 man/*sh: fix shellcheck warnings, add to shellcheck
9201794a script/check-config.sh: fix remaining shellcheck warnings
8b976428 shfmt: add more files
b0fbd2f8 script/check-config.sh: fix SC2166 warnings
7f8cb3d6 script/check-config.sh: fix wrap_color usage
f6562f19 [1.1] libct/cg/dev: skip flaky test of CentOS 7
12f2f03f [1.1] runc run: refuse a non-empty cgroup for systemd driver
e618ec36 libct/cg/sd: reset-failed and retry startUnit on UnitExists
931b9bf3 libct/cg/sd: ignore UnitExists only for Apply(-1)
b46ac860 libct/cg/sd: refactor startUnit
822623b6 CHANGELOG.md: move 1.1.5 CVEs to Security section
54cfb25d Makefile: add verify-changelog as release dependency
7b3ac330 verify-changelog: allow non-ASCII
37e586ab CHANGELOG: fix a typo
de0c2277 [1.1] CHANGELOG: fix 1.1.5 git compare link
1fe2ec53 tests/int/mounts: only check non-shadowed mounts
9b8ebe4d tests/int/mount: fix issues with ro cgroup test
17a2d451 VERSION: back to development
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
86d7836cd4 |
podman: update to 4.5.0
This version introduces envsubt in the install stage, so we add
gettext-native to our build dependencies.
Bumping libpod to version v4.5.0-14-gc926b12c5, which comprises the following commits:
bc2f0115d [v4.5] system tests: fix race in kube-play read-only
696c2d40d api: fix parsing filters
1fa2eb53b Support systemd optional prefix '-' for devices.
74634a46c *: migrate image registry to registry.k8s.io
0fb11cccd Makefile: include `release-artifacts` target
4d2cf293e [CI:BUILD] Packit: Initial Enablement
da927a75c Bump to v4.5.1-dev
75e3c1257 Release v4.5.0
32a6892b6 [CI:DOCS] Final release notes for v4.5.0
5de2a13e0 Quadlet - do not set log-driver by default
c5e704c82 Return title fields as a list
bf6f58b02 Bump to v4.5.0-dev
f3c365887 Bump to v4.5.0-RC2
15c302533 Final release notes for v4.5.0-RC2
af7c25811 test/e2e: remove unnecessary SkipIfNetavark() calls
80652cacf test/e2e: deduplicated network test
b526839a4 docs: update podman-network-create.1
ed99a979c network create: add --interface-name
676486a85 test/system/252-quadlet.bats: fix flake
1bf5bdc68 Read kube_generate_type from containers.conf
11ac0d03e Debian setup: workaround for runc /dev/char/10:200 bug
38c217a0b pkg/rootless: use catatonit from /usr/libexec/podman
bab95de9a rootless: make sure we only use a single pause process
3b2b1441e Use atomic config writing strategy for podman machine config files
67307603b Add remaining release notes for v4.5.0-RC2
d53871cf1 GHA: Use version instead of SHA for actions
25bc7d161 chore(deps): update dependency containers/automation_images to v20230405
944accffa build: pass env by reference
7edf73dfd test: retrofit error message
b624ad757 test/system: expect 12 char for short id
260bc3ec4 vendor: bump containers/(storage, common, buildah, image)
c5a0d8646 [skip-ci] Update actions/upload-artifact action to v3
d3cf8ccf8 [skip-ci] Update actions/stale action to v8
21fbd5c1a [skip-ci] Update actions/setup-go action to v4
f3971e412 [skip-ci] Update github/issue-labeler action to v2.6
c4e79fc16 Fix up codespell errors
a5dd5c20e Capitalize all uid,gid and id words that are not options in docs
352a41e3a build(deps): bump golang.org/x/tools from 0.7.0 to 0.8.0 in /test/tools
13135f924 Properly remove the service container during kube down
f6a50311c quadlet: add `UserNS` option key
29aac4dfe [CI:DOCS] Release notes for 4.5.0 Part 1
358b46225 "podman pull by digest and list --all" test: untag instead of rmi
f417861e0 build(deps): bump golang.org/x/text from 0.8.0 to 0.9.0
43e6bc9d9 Add renovate.json configuration
cf6f13704 CI: postbuild step: skip under nightly treadmill
db9785ba5 The `--ulimit` option accepts the name with an `RLIMIT_` prefix both upper and lower case
dc9a65e34 test/e2e: use custom network config dir where needed
35165df37 chore: replace `github.com/ghodss/yaml` with `sigs.k8s.io/yaml`
b858c7e7f update completion scripts for cobra v1.7.0
e4aad8f0f libpod.storageService.CreateContainerStorage(): retrieve ID maps
d0ffb8792 Fix invalid pod name and hostname during kube generate
761eca9e7 e2e tests: fix racy flakes
56e7b511e Cirrus: Enable labeling of EC2 VMs
74f9fd8e6 Cirrus: Fix aarch64 clone_script 404 errors
ce8a3a0c1 e2e: GinkgoParallelNode() -> ...Process()
45b1099ef build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
34a5c7f15 build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0
10d2e9fde [CI:DOCS] --creds and registries
9b7fd3936 Copr: fix build deps for /usr/bin/envsubst
80f9f8077 Don't error when removing non-existant env vars
ecce01e61 e2e: healthcheck on stopped container: fix flake
cb7b8fb31 test/apiv2/80-kube.at
e1be7d141 test/apiv2/80-kube.at
1f3ae8a4f system service: do not close Body
bb70d60f1 rm `hack/release.sh`
704901d11 build(deps): bump github.com/onsi/gomega from 1.27.5 to 1.27.6
243ca7c28 add `quadlet -version` flag
7eb78f8a7 add version/rawversion package
53b16ccd2 quadlet: use `Flag` suffix for variables
443f8d89c quadlet: implement `Tmpfs` option
91ca15e96 Bump to v4.5.0-dev
3e48017d8 Bump to 4.5.0-rc1
b7175a366 Update release notes from 4.4 branch
2051e54e0 rootless netns: recover from invalid netns
99ace1908 System tests: unverbosify a flake log
68dbddd97 Add support for secret exists
78e7ade0d Fix Win install task failures with large PR bodies
21febcb5c docs: add `starting` to `HealthCheckResults.Status`
d7051d745 Add support for cgroup_config from containers.conf
4d56292e7 libpod: mount safely subpaths
4f9019406 Support Deployment generation with kube generate
8b6a7c182 Use secret.items to create volume mounts if present
359f40869 [CI:DOCS] fix typo in --systemd option
266cc7882 rootless: drop preexec hook error message
3c9ce3e52 Edit the docker wrapper to use the install prefix
5643058c8 Update podman-for-windows.md
d79519e70 Quadlet: RemapUsers documentation fixes
7f8d5e565 speed up image listing
f0cfbbe2c vendor containers/common@e27c30ee9b
70abb4ae5 fix volume-plugin-test flake
b3e8791f6 Document building Podman remote on Windows hosts
c40eaa242 test/e2e: gpg keep stdout/err attached
f131eaa74 auto-update: stop+start instead of restart sytemd units
b7a8e1285 [CI:DOCS] Improve basic tutorial
be7827c7e Update docs/source/markdown/podman-network.1.md
c335ff241 Add debug to --wait test
81e5bffc3 fix slirp4netns resolv.conf ip with a userns
11e5c2d0f Quadlet: add support for keep-id with mapping values
b5df38c23 Quadlet E2E test - run quadlet as user generator
cdb5b3e99 sqlite: do not `Ping()` after connecting
da96ff6cc Quadlet - treat paths starting with systemd specifiers as absolute
dd8ee49f6 Update docs/source/markdown/podman-kube-play.1.md.in
d85c8d7e8 system tests: use CONTAINERS_CONF_OVERRIDE
51d068ecc implement podman machine set for hyperv
46b826a90 [CI:DOCS] Add network subnets info to network man page
dd8574022 CI: retry the golangci install
92e0efc5d system tests: fix racey sdnotify test
518eafaa3 hyperv: lookup machine on local filesystem first
4c72fc26b fix os.IsNotExist() CI check
7daab31f1 Ensure that SQLite state handles name-ID collisions
64ba82601 macos pkginstaller: do not fail when podman-mac-helper fails
4f3cbf15c podman-mac-helper: install: do not error if already installed
ade46ae6a build(deps): bump github.com/onsi/gomega from 1.27.4 to 1.27.5
e061cb968 Fix a race around SQLite DB config validation
c5fc44582 add CONTAINERS_CONF_OVERRIDE
5f86fae71 vendor containers/common@main
6825740fc docs: minor grammar fix in `--volume` description
b31d9e15f sqlite: do not use shared cache
9be4a525f test: podman checkpoint/restore the latest container
5185e7e39 stats compat API: return "id" lowercase
5f274e45f Run make codespell
3925cd653 Drop SQLite max connections
0fbc32515 sqlite: set connection attributes on open
9f0e0e833 Fix database locked errors with SQLite
cf5df5b80 quadlet tests: skip on RHEL8 rootless
cb24d6c3d Kube Play Doc: Document the support for K8S Secret
6b2101bc7 New ulimit test: bump up minimum nfiles
5447e88b4 logformatter: hide --db-backend, and friendlyize quadlet
5382997e0 Quadlet - add support for relative path in Volume key in .container file
3e405a2fd Add service ctr cleanup to PlayKubeDown
956341543 fix --health-on-failure=restart in transient unit
26d5df77d Quadlet Doc: Suggest the kill operation for HealthOnFailure
5d1342fc5 Quadlet - Add support for health checks configuration in .container files
3ef707def Makefile: allow specifying /lib dir location
a5abbdf1f Fix option --opts -> --opt
0dac214f5 basic hypverv machine implementation
94f905a50 Fix SQLite DB schema migration code
46d165040 Add support for oom_score_adj value from containers.conf
6046832f3 Use default_ulimits field in containers.conf
e2d49fb65 CI: test and confirm DESIRED_DATABASE
1ea62f32f build(deps): bump github.com/openshift/imagebuilder
526dfb893 logformatter: futureproof output filename
e21cf2d8d Vendor in latest containers/(storage, common, image)
686bdcc29 build(deps): bump google.golang.org/protobuf from 1.29.0 to 1.30.0
ba141adce test/system/255-auto-update.bats: add debug logs
c2a24abc0 Revert "Revert "pasta: Use two connections instead of three in TCP range forward tests""
3a59af219 Add information for secret inspect
87e93a7b6 Add format to podman volume ls
b424f8fb0 Add format to podman volume inspect
2555c8034 Add format to podman secret ls
1c4bd4a73 Add format to podman system df
71bcd9891 Add format to podman machine info
581611844 Add format table to podman image inspect man page
e92955245 Cirrus: Store podman machine benchmark data
b3035b9d6 Update Cirrus display names, and fix get-ci-vm script
6142c16a9 Ensure SQLite places uses the runroot in transient mode
2ec11b16a Fix various integration test issues with SQLite state
0f8530b1e Remove test for pod/container name global uniqueness
6e0f11da5 Improve handling of existing container names in SQLite
39fd9aa08 Add SQLite job to CI
7ed1c7fd9 buildah treadmill: also run rootless tests
2b4a27719 build(deps): bump github.com/vbatts/git-validation in /test/tools
3c51b61d7 auto update: return restart error
ea2a0767a fix: Document removing anonymous volumes
408e764b9 events: no duplicates when streaming during a log rotation
82f2f8258 Add search --cert-dir, --creds
bae07b6ea podman-mac-helper: exit 1 on error
7d8d3e810 system service --log-level=trace: support hijack
eed389508 test/system: fix wait_for_port() to wait for bind
2d1f4a8bf cgroupns: private cgroupns on cgroupv1 breaks --systemd
01fd5bcc3 libpod: remove error stutter
4562e61d2 podman events: unhide --stream
7a7af735a test/system/255-auto-update.bats: multiple services
40d0d233e 255-auto-update.bats: turn off rollback where needed
a9d70e9fe Use append() to add elements to a slice
1c08f2eda Revert "pasta: Use two connections instead of three in TCP range forward tests"
ad8a96ab9 Support running nested SELinux container separation
159936a11 bud tests: rootless remote: use correct socket path
6f9f395b3 build(deps): bump github.com/vbauerster/mpb/v8 from 8.2.1 to 8.3.0
bad41f67e compat: /auth: parse server address correctly
6363fb08f docs: fix cmd `set DOCKER_HOST` suggestion
fb4f6f95c test: reenable idmap test
b5a99e081 Must use mountlabel when creating builtin volumes
8d952c01d podman.spec.rpkg: distro conditionals for modulesloaddir
9294b7350 build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.29.0
21651706e podman inspect list network when using --net=host or none
f928cf54a pasta: Re-enable "Local forwarder, IPv4" test, accept NXDOMAIN as response
829e910cd build(deps): bump golang.org/x/tools from 0.6.0 to 0.7.0 in /test/tools
cc7a1e614 CI: Switch to c20230307t192532z-f37f36d12 images
799c20177 Cirrus: Run system & integration tests in parallel
c03cb5718 Update checkpointctl v0.1.0
cb3cda55f Quadlet: add support for setting --ip and --ip6
af7a759e9 build(deps): bump golang.org/x/net from 0.7.0 to 0.8.0
5d039ce22 build(deps): bump golang.org/x/sys from 0.5.0 to 0.6.0
34ff27b81 libpod: avoid nil pointer dereference in (*Container).Cleanup
25dd4d653 [CI:DOCS] Add image not found info to troubleshooting
0498ce3a5 cmd: do not require userns for "version"
2860d55c9 cmd: drop special handling for "scp"
da04469f0 cmd: clarify meaning of ParentNSRequired
0ab4b2614 Fix package restore
0d219486f [CI:DOCS] Fix docs/version-check always requesting updates
e77f370f8 sqlite: add a hidden --db-backend flag
cca65db01 fix: update the default machine value when the previously set default machine is deleted
9ac0d4f1a podman machine: Adjust Chrony makestep config
2c67ff5d4 sqlite: add container short ID to network aliases
38acab832 sqlite: remove dead code
2342d1a31 sqlite: addContainer: add named volume only once
86d12520e sqlite: implement RewriteVolumeConfig
df88f546b sqlite: LookupVolume: fix partial name match
01359457c sqlite: LookupVolume: wrap error
69ff04f73 sqlite: fix type rewriting container config
e87014e44 sqlite: return correct error on pod-name conflict
84b5c6c71 sqlite: RewritePodConfig: update error message
51cf2dd36 test/system/255-auto-update.bats: wait 10 for update to finish
b727f30ac auto-update test: wait for service to be ready
76056c670 Vendor in latest containers/(common, storage, image)
20a42d0e4 play kube: Add --wait option
6babef598 Cirrus: Fix git config permission denied
ccc5aa59a Quadlet: Add support for the Mount key in .container files
6f09dbc2d build(deps): bump github.com/onsi/gomega from 1.27.1 to 1.27.2
77861d6af fix "podman logs --since --follow" flake
6d352dc0b Clarify that replicas are ignored in kubernetes deployment
42540a667 Revert "Skip all pasta tests"
e804ddc5a CI: Switch to c20230223t153813z-f37f36d12 images
070572245 Fix user socket path
1e516e657 pkginstaller: bump Qemu to version 7.2.0
0f92e19e8 Cirrus: Fix bud tests failing to apply patches
1ef8a860c build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
b00874c16 build(deps): bump github.com/coreos/stream-metadata-go
9d93486d2 Vendor in latest containers/storage
d838c08b3 buildah-bud tests: don't sudo when rootless is desired
1f6f81f5d Temporarily disable version-check
5a08ddaec CI: new rootless buildah-bud tests (cron only)
5d2d609be sqlite: fix volume lookups with partial names
495314a16 sqlite: fix container lookups with partial IDs
efe7aeb1d sqlite: fix LookupPod
19c2f37ba sqlite: fix pod create/rm
e32bea937 sqlite: LookupContainer: update error message
565bb5645 sqlite: AddContainerExitCode: allow to replace
4b3b94473 system: add warning when running rootless on cgroupv1
1b1cdfa35 sqlite: fix AllContainers with state
21fcc9070 sqlite: fix "UPDATE TABLE" typos
3f96b0ef2 sqlite: SaveVolume: fix syntax error updating the volumes table
7c11f7e17 sqlite: exit code: allow -1
e74f7bcaf sqlite: fix typo when removing exec sessions
560805ac4 sqlite: AllContainers: fix inner join
8c64c4370 sqlite: move migration after table creation
eeabe975e sqlite: implement pod methods
0d75854c5 Quadlet - use the default runtime
49d560e1b docs: context is not optional for build
03aaa8d35 Fix an incorrect comment on NewSqliteState
eb228f264 Add support for containers.conf database setting
59a54f32d Add support for volume operations to SQLite state
c0b92bdbc Implement exec session handling in SQL database
627a5b73b Various fixes from code review
c4fe0af2a Remove `--namespace` flag from Podman root
89d0ccd19 Get E2E tests to pass
97499a70a Implement network disconnect for SQLite state
939a4ccef Implement Network Connect/Modify for SQLite state
8ab18d848 Fix various lint issues
b4c4f9c93 Some further work on SQLite state
5c2a0670f Remove concept of Namespaces from BoltDB
1b968c607 Add initial SQLite-backed state implementation
93e7cc119 Cirrus: Support runc testing on debian VMs
81f116c59 Skip all pasta tests
642e9ddb8 Skip buildah-bud test
10382d0bc Skip buildx test with VFS podman storage driver
dd51b62b7 Skip 'podman kube --network' test for rootless CGv1
197529f08 Skip tests which fail with CGv1 & runc
5b4f248a8 Skip rootless CGv1 quadlet tests due to issue
e19922d09 Makefile: Define SHELL
43eb35a77 Machine refactor for QEMU/AppleHV
e838ad86b machine refactoring preparations for hyperv
b4471c6ed [CI:BUILD] spec.rpkg: trim dependency list
12153da83 Logs follow-until tests: loosen checks
7d17ec07f [CI:DOCS] Windows/Mac docs link update
7f5fc04b4 Doc update for docker network options via CLI
4b4b423b6 compat API: network create return 409 for duplicate
40f21da0c Apply suggestions to man page
adacd3b12 vendor c/common@852ca05a1f
6a3757b73 Quadlet: Add support for LogDriver key in container and kube units
ebb45b5bd machine refactoring preparations for hyperv
af8d649da libpod: always use direct mapping
9dc730d9f netavark: only use aardvark ip as nameserver
e9942c61d build(deps): bump github.com/container-orchestrated-devices/container-device-interface
79a05ca2b podman logs passthrough driver support --cgroups=split
d7e96536e journald logs: simplify entry parsing
1590c7bf4 podman logs: read journald with passthrough
5754df806 make docs: sanity check for broken man pages
5056bd45f build(deps): bump github.com/vbauerster/mpb/v8 from 8.1.6 to 8.2.0
5fcd2c3fa build(deps): bump github.com/onsi/gomega from 1.27.0 to 1.27.1
2659a3228 kube: rm secret on down, print secret on play
9ce589a4a Fix spacing typo that triggered OCD & indent units in podman-systemd.unit(5)
ad866fecb Update remote_client.md
e74f60dee [CI:DOCS] Add restriction to option README
975b096bc Revert "CI: Temporarily disable all AWS EC2-based tasks"
22a207d45 build(deps): bump github.com/onsi/gomega from 1.26.0 to 1.27.0
c95978f60 kube play: only enforce passthrough in Quadlet
21cddd723 journald: remove initializeJournal()
6dd797844 auto-update: support pods
9622d25be Emergency fix for man pages: check for broken includes
c81fbd5d0 System tests: assert(): friendlier failure messages
761da776a Cirrus: Fix version-check to only run on `main` job
7f8bc6f51 CI: Temporarily disable all AWS EC2-based tasks
6f5ca7318 build(deps): bump github.com/containerd/containerd from 1.6.16 to 1.6.18
6ca857feb volume,container: chroot to source before exporting content
94d4b5278 Support sysctl configs via podman kube play
510e44359 [CI:BUILD] copr: podman.spec.rpkg cleanups
a4677405c quadlet system tests: add useful defaults, logging
96af9e4e0 libpod: support relative positions for idmaps
c7ee65596 Experimental workaround for cdn03.quay.io flake
86e55d0ec system tests: prevent leading tabs
9abe8c785 Introduce podman machine os apply
828708bac create: add support for --group-entry
33a918711 fix != filter in volume prune
4c5b79120 Allow specification of podman --remote build -f -
3d8936642 Quadlet use crun specified in containers.conf
9f84b9b52 build(deps): bump golang.org/x/net from 0.6.0 to 0.7.0
86a4c6b65 Vendor c/image after https://github.com/containers/image/pull/1847
c0f983db8 Don't set hostPort when generating a service
3a9d14d4e man page --format xref: tighten the autocompletion check
0999991b2 add support for limiting tmpfs size for systemd-specific mnts
9a1f47887 build(deps): bump golang.org/x/text from 0.6.0 to 0.7.0
35d16ea02 Add ulimit annotation to kube gen & play
34d412e13 man page xref: validate displayed man page names
7c54d1423 quadlet: add ExecStop
d2ac85f7a install sigproxy before start/attach
191e4ce40 build(deps): bump golang.org/x/tools from 0.5.0 to 0.6.0 in /test/tools
a5ca73225 Fix typos
45fb353f4 Cirrus: Make benchmarks .env file easier to load
a7db3e8d2 Cirrus: Omit functions in env. file
1541ce56c kube play: set service container as main PID when possible
08e13867a Fix typos. Improve language.
9cba0474b events + container inspect test: RHEL fixes
5a9074dab Add ctrName to network alias during kube play
586515976 Run codespell on codebase
c7619c8ae podman image scp: added identity for ssh.Exec
fb54be2e1 [CI:DOCS] Clarify nomap constrains
433413549 [CI:DOCS] man-page checker: include --format (Go templates)
e308ba021 Vendor c/image after https://github.com/containers/image/pull/1816
ec4ab08c8 [CI:DOCS] Cleanup some man pages to display options with line breaks
5ed217409 [CI:DOCS] Add tables to podman-systemd.unit man page
3de409ad6 github: remove prefix from bugs/features
d6dd17fdf Quadlet: Add support for the Secret key in Container group
08d28bfc2 [CI:DOCS] OWNERS: add @ygalblum and @alexlarsson
47df0ca25 build(deps): bump golang.org/x/term from 0.4.0 to 0.5.0
ded44be16 build(deps): bump github.com/vbauerster/mpb/v8 from 8.1.4 to 8.1.6
42c7c59dd Sort quadlet keys to make it easier to read
43b357068 e2e: fix some tests on remote
83367a6b3 kube play: do not teardown unconditionally on error
ac71fa01c Fix typos in comments
6b6458916 Resolve symlink path for qemu directory if possible
90eb834e7 #17363 Fix contradicting documentation podman-commit
1916da596 Fix a potential UID/GID collision in unit tests
93c35a703 golangci-lint: show all errors at once
77e4b1939 update golangci-lint to version 1.51.1
1fd0ce71d [CI:DOCS] events: document journald identifiers
f1352521f Quadlet: exit 0 when there are no files to process
ced934284 network ls: handle removed container
315215020 e2e: adapt play kube test on remote rootless
4e8906c5e docs/podman-systemd.unit: Explicitely mention network & kube units
c4f338eec docs/podman-systemd.unit: Update example to work out of the box
50f72fe7b [CI:BUILD] Cirrus: Fix GraphQL ownerRepository:null error
83a0e97ab Add missing return after errors
84c674fee Revert "Cirrus: Emergency fix to un-stuck PRs"
af0f10a22 pasta: Fix ICMPv6 Echo test, skip it for the moment
859579b6b pasta: Fix ICMP Echo Request (IPv4) test
e33f4e0bc pasta: Use two connections instead of three in TCP range forward tests
acaab3fa7 Add SELinux label types support to quadlet
928d589b7 Add quadlet support for rootfs= containers
6b3073f53 Cirrus: Emergency fix to un-stuck PRs
8441f01be Move clean-binaries before podman-remote in podman-remote-docs target
aa0d4b266 oci: bind mount /sys with --userns=(auto|pod:)
e6904f6f8 Cleanup podman-systemd.unit file
3c3526e53 Install podman-systemd.unit man page, make quadlet discoverable
de63ad704 libpod: allow userns=keep-id for root
9e7f1bea4 system-reset: use CleanCacheMount to clear build cache
5ca35d6de vendor: bump buildah to v1.29.1-0.20230201192322-e56eb25575c7
3ce07b556 system tests: fix noexistent labels test in the remote
a909e2f2d Expose Podman named pipe in Inspect output
2bb4c7cdd libpod: support idmap for --rootfs
ed1f76917 test: adapt test to work on cgroupv1
ed18cdd6e Bump to v4.5.0-dev
b6d91ebfb Update main to reflect v4.4.0 release
be47eeb85 Update from /github.com/vbauerster/mpb/v7 to /v8
8aa377698 hack/perf: cleanup after benchmarks
cb5a9e9f4 hack/perf/bz-2162111.sh: use custom network
a1436d8fb Update bug_report.yaml
02bcf0bac Handle filetype field in kubernetes.yaml files
1a786ea53 hack/perf/bz-2162111.sh: measure stop
bd8937c50 make hack/markdown-preprocess parallel-safe
68371ff55 system tests: fix volume exec/noexec test
f69efb6ee system tests: minor fix for RHEL8 incompatibility
cf7afed05 Cirrus: Use versionable IMAGE_SUFFIX
cbb45a6d4 utils: new conversion method
0e949bfd3 libpod: use GraphRoot for overlay upper dir
427d69cc3 vendor: update containers/storage
d10860a32 Do not mount /dev/tty into rootless containers
5c059e3ed build(deps): bump go.etcd.io/bbolt from 1.3.6 to 1.3.7
9272cabd3 e2e: fix run_staticip_test about no_proxy
2e397120d docs: specify order preference for FROM
15594e92e Fixes port collision issue on use of --publish-all
952049fe5 Support for Windows paths in the source position of the volume mounts
0e3524b8b e2e tests: fix incorrect os.User.Name
7c60a784c Log data that we failed to unmarshal
61db1d5aa [CI:DOCS] hack/perf: add script for BZ 216111
29b346dea container rm: save once for exec removal and state change
8f2a40d81 [DOCS:CI] podman-events: document verbose create events
7e80edd3a e2e: Avoid hard-coding included in quadlet test
2682d3ad9 e2e: Avoid hard-coding ImageCacheDir
387f0ea2f Making gvproxy.exe optional for building Windows installer
74c090973 Add gvproxy to Windows packages
ab8e49d74 Add comment to clarify error handling intention
12d70446f fix #17244: use /etc/timezone where `timedatectl` is missing on Linux
063e273e9 Fix usage of absolute windows paths with --image-path
b0b166b5b Match VT device paths to be blocked from mounting exactly
553e53d44 Fix default handling of pids-limit
069edc3ad Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml)
e51991030 journald: podman logs only show logs for current user
2ab90f2ed journald: podman events only show events for current user
21b82bb68 e2e: Remove the cache with "podman unshare rm" when a rootless user
9db657f40 Clean up more language for inclusiveness
814f7c569 e2e: Remove some directories at SynchronizedAfterSuite
497be102a fix: don't output "ago" when container is currently up and running
b28519fd9 fix: running check error when podman is default in wsl
a745d99a8 fix CI: test fail due to merge
f3d8f6c49 Bump Bulidah to v1.29.0
38d5319f1 e2e: reduce dependency on /tmp for e2e tests
0ffce8181 Bump cirrus image with easier dependency management
e62e42bfa quadlet: Add device support for .volume files
70e8f6243 remote,build: error if containerignore is symlink
c74bdae35 DB: make loading container states optional
6132c4d54 ps: do not sync container
958c94094 Set runAsNonRoot=true in gen kube
7aef3301d WSL refactoring
08186d7dd kube-play: add support for HostIPC in pod.Spec
8850db961 Allow --device-cgroup-rule to be passed in by docker API
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
da0cfbb0b4 |
kubernetes: update to v1.27.1
Bumping kubernetes to version v1.27.1-89-g2555e0f90e8, which comprises the following commits:
2eccb77b2c5 OpenAPI V3 invalid document checks
642ea896178 update for feedback
0457fbc83b3 QueryParamVerifier falls back on invalid v3 document
4cd33af1419 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
ce458add6f1 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
3a56c1e954b Fix CHANGELOG-1.27 correct
fa86f2dce30 benchmark test to evaluate the overhead of podMatchesScopeFunc
4a2e6971f7d Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
c041924dd10 Update podFailurePolicy comments from alpha-level to beta
7f9b3cb8540 Disable NewVolumeManagerReconstruction feature gate
3324649c1c6 releng/go: Update images, dependencies and version to Go 1.20.4
ae2f576d0b7 Bump konnectivity-client to v0.1.2
8af1ce5863d Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
940b6892a1e node: device-plugin: e2e: Additional test cases
4cf566e32e9 node: device-plugin: add node reboot test scenario
d67481c4784 node: device-plugin: e2e: Capture pod admission failure
6f5e29e26c4 node: device-mgr: e2e: adapt to sample device plugin refactoring
367e3d7c471 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d241f58d8c8 node: device-mgr: e2e: Implement End to end test
aac4c15e624 node: device-mgr: Handle recovery by checking if healthy devices exist
b157e1741fb node: device-plugin: e2e: Add test case for kubelet restart
5278e9c02cd node: device-plugin: e2e: Provide sleep intervals via constants
b3c58acde98 node: device-plugin: e2e: Update test description to make it explicit
0cd0fe70aa1 node: device-plugin: e2e: Isolate test to pod restart scenario
ed8d4e1d6a5 node: device-plugin: e2e: Annotate device check with error message
4899dc75dde node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
c81ec1ae5b0 node: device-plugins: e2e: Refactor parse log to return string and error
86904a7c580 Update kube-openapi to fix race
ee1d7eb5d82 Use absolute path instead requestURI in openapiv3 discovery
bbca939c661 proxy/ipvs: don't bind nodeips to the dummy device
ca1e563141a proxy/ipvs: add a GetAllLocalAddressesExcept() function
3ce0c108fe9 Refactors discovery content-type and helper functions
574829867a9 Fix scheduler performance regression after adding plugin metrics
192e9dae316 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
8d0ac2f6f8f Fix bug where CEL listOfString.join() results in unexpected error
57e67a91e39 Fix directory mismatch for `volume.SetVolumeOwnership()`
d0514936f3a Fix stomping os env in kubectl e2e tests
7a6640798a7 KCCM: add providerID predicate to service controller
8221a54e1ee Re-work logic in shouldSyncUpdatedNode
a9d07f4e9ef add log includes pod preemption details
9ef90afb4fb verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
b598ea5c392 deflake: Add retry with timeout to wait for final conditions
2eb94fa835a kubelet: Mark new terminal pods as non-finished in pod worker
ae07535c855 test: Add node e2e to restart kubelet while pod is terminating
861e1935e2a kubelet: Ensure pods that have not started track a pendingUpdate
ae92fd28072 changelog: fix formatting issue with v1.27 change log
95feac5269b Update CHANGELOG/CHANGELOG-1.27.md for v1.27.1
4c9411232e1 Release commit for Kubernetes v1.27.1
2c81ecc2e29 use case-insensitive header keys for http probes
1601bb75401 fix: add the bug as a known issue o on the v1.26 release note
fddf859d6a5 kube-aggregator: correctly use client-go TLS cache with custom dialer
845ba3e3a23 Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
a1f97a35fcb Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
1da781e29b3 Revert "CR conversion: protect from converter input edits"
f564f7a3559 api: encode NamespacedName with lower case in JSON
e827a4b61f5 Do not look at VPC-related resources outside the cluster's network
d662e339aa5 kubelet: Do not mutate pods in the pod manager
d977e7e0dbf Fix azure disk e2e after migration
e599722bc59 vendor: bump runc to 1.1.6
25b061d8202 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
854c72766bb fix: the volume is not detached after the pod and PVC objects are deleted
398e38784e7 Update CHANGELOG/CHANGELOG-1.27.md for v1.27.0
1b4df30b3cd Release commit for Kubernetes v1.27.0
2b6072ba00c Update CHANGELOG/CHANGELOG-1.27.md for v1.27.0-rc.1
ad18954259e CHANGELOG: Update directory for v1.27.0-rc.1 release
80bc6ffd0df Release commit for Kubernetes v1.27.0-rc.1
951f8dcc965 Return error for localhost seccomp type with no localhost profile defined
4e0bc2397da Update publishing-bot rules for release branches to Go 1.19.8
1972dd10058 Do not log entire pod struct while attaching the volume
b19c362bf52 Update distroless-iptables to v0.2.3
2a69edb43de [go] Bump images, dependencies and versions to go 1.20.3
b5dd5f1f3a7 Investigate and fix the handling of Succeeded pods in DaemonSet
873127e3b04 Export WebhookHandler struct because some CCMs use Run directly
735bbc135c3 Clean up formatting
27ad623b3d1 Skip vendor directory when removing generated files
63b5ca69f1f .*: update vendor dir and cleanup
1ad7cacba59 publishing-bot rules for the new release-1.27 branch
b83600de01e fix nil pointer dereference panic for deprecated metrics
5469c198e5d kmsv2: validate encrypt response at DEK generation time
0e9dd5c51d8 Call function that validates in-place vpa resize policy
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
668871ce79 |
docker-moby: fix docker run on NFS
For now, a simple `docker run -it alpine' fails on NFS.
This regression was introduced by a commit[1] which makes
DirCopy error out if failing to copy xattr.
As the vfs storage driver is supposed to just work on
any filesystem[2], we need to allow its failure on copying
extended attributes as the support for xattr depends on
filesystem.
[1]
|
||
|
Peter Kjellerstedt
|
8c599baea9 |
netavark: Rewrite the recipe
The previous version of the recipe was generated by cargo-bitbake, which expects that future updates to the recipe will also be done by cargo-bitbake and therefore formats it to accomodate this. Since we have now switched to the more commonly used (and supported) cargo-update-recipe-crates bbclass for updating the crate URIs, the recipe can be rewritten to better conform to common recipe standards. This also folds netavark.inc into it as there is no longer any need to keep it separate. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Kjellerstedt
|
d903219b9e |
netavark: Add checksums for the crate URIs
Use the cargo-update-recipe-crates bbclass to update the crate URIs including adding checksums for them, as they are now required by the crate fetcher. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Kjellerstedt
|
498a53037e |
netavark: Move the crate URIs to a separate .inc file
As a preparation for switching to using the cargo-update-recipe-crates bbclass to update the crate URIs, move the existing crate URIs to the netavark-crates.inc file that it expects. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Kjellerstedt
|
508517af3e |
aardvark-dns: Rewrite the recipe
The previous version of the recipe was generated by cargo-bitbake, which expects that future updates to the recipe will also be done by cargo-bitbake and therefore formats it to accomodate this. Since we have now switched to the more commonly used (and supported) cargo-update-recipe-crates bbclass for updating the crate URIs, the recipe can be rewritten to better conform to common recipe standards. This also folds aardvark-dns.inc into it as there is no longer any need to keep it separate. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Kjellerstedt
|
57704b2216 |
aardvark-dns: Add checksums for the crate URIs
Use the cargo-update-recipe-crates bbclass to update the crate URIs including adding checksums for them, as they are now required by the crate fetcher. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Peter Kjellerstedt
|
cd6d4550a6 |
aardvark-dns: Move the crate URIs to a separate .inc file
As a preparation for switching to using the cargo-update-recipe-crates bbclass to update the crate URIs, move the existing crate URIs to the aardvark-dns-crates.inc file that it expects. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
cd816688c5 |
k3s, kubernetes, nagios-nrpe: fix Upstream-Status formatting
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
d1b6bf580e |
lxcfs: fix build with newer linux-libc-headers
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
3f692e3fe1 |
docker: start depreciation of docker-ce
docker-ce and docker-moby are now exactly the same. To allow layers which bbappend or otherwise consume docker-ce, we merge the two recipes and leave a warning in docker-ce that it will be removed in the future. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
fff79433b6 |
aardvark-dns, netavark: add seccomp to REQUIRED_DISTRO_FEATURES
* because of runtime dependency on slirp4netns * fixes: ERROR: Nothing RPROVIDES 'slirp4netns' (but meta-virtualization/recipes-containers/aardvark-dns/aardvark-dns_1.2.0.bb RDEPENDS on or otherwise requires it) slirp4netns was skipped: missing required distro feature 'seccomp' (not in DISTRO_FEATURES) NOTE: Runtime target 'slirp4netns' is unbuildable, removing... Missing or unbuildable dependency chain was: ['slirp4netns'] NOTE: Runtime target 'aardvark-dns' is unbuildable, removing... Missing or unbuildable dependency chain was: ['aardvark-dns', 'slirp4netns'] NOTE: Runtime target 'netavark-dev' is unbuildable, removing... Missing or unbuildable dependency chain was: ['netavark-dev', 'aardvark-dns', 'slirp4netns'] NOTE: Runtime target 'netavark' is unbuildable, removing... Missing or unbuildable dependency chain was: ['netavark', 'aardvark-dns', 'slirp4netns'] NOTE: Runtime target 'aardvark-dns-dev' is unbuildable, removing... Missing or unbuildable dependency chain was: ['aardvark-dns-dev', 'slirp4netns'] Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
31e8dc838b |
crun: fix REQUIRED_DISTRO_FEATURES
* features_check was inherit twice and REQUIRED_DISTRO_FEATURES was set twice as well but both with ?= so the 2nd one was ignored * seccomp was added in: commit |
||
|
Martin Jansa
|
f964138a21 |
buildah: add seccomp and ipv6 to REQUIRED_DISTRO_FEATURES
* because it rdepends on podman with the same restriction * BTW: .gitignore has: build*/ which gets triggered for buildah as well: meta-virtualization $ git add ./recipes-containers/buildah/buildah_git.bb The following paths are ignored by one of your .gitignore files: recipes-containers/buildah I've adjusted it to /build*/ only. Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d74219e96b |
skopeo: update to 1.11.2
Bumping skopeo to version v1.11.2-1-gd79588e6, which comprises the following commits:
d79588e6 Bump to v1.11.3-dev
dc1e14f7 Release 1.11.2
902506dd bump golang.org/x/net to v0.7.0
b2884205 [release-1.11] Bump to v1.11.2-dev
fb1ade6d [release-1.11] Bump to v1.11.1
40dd6507 Update to c/image 5.24.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d51e06f053 |
skopeo: update to 1.11.0-tip
Bumping skopeo to version v1.11.0-102-g1e70fee2, which comprises the following commits:
ca0f8418 fix(deps): update module github.com/spf13/cobra to v1.7.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
486c9bdb00 |
podman-tui: update to v0.9.0
We drop our btrfs patch, as it is now part of the upstream.
Bumping podman-tui to version v0.9.0-37-g24bdb2a, which comprises the following commits:
449d8f4 golangci-lint system package
b0d20b2 Bump actions/stale from 7 to 8
613d18f ui/styles - applying golint
7839523 ui/infobar - applying golint
745a331 ui/help - applying golint
4c27c3d ui/volumes code improvement and golint
02740c1 adding container attach command to container page/view
6b5beb4 fix container create error without health options
705bc34 Bump actions/setup-go from 3 to 4
cf4509e Add container health options to the container create dialog
d79883e Add packit configurtion to build RPM as part of PR tests
ba02fb5 Update unit tests and github workflow for running the tests
4e3889f fix container create error when volume is selected
0af3e47 update github workflow golang version to 1.18.8
f572f48 Golangci-lint update to v1.51.1
c2932fc fix vendor + codepsell
1e35d9a Bump golang.org/x/crypto from 0.6.0 to 0.7.0
bb17bbc unit tests fix
1328668 Bump to v0.10.0-dev
8ad97a1 Bump to v0.9.0
28f800c Bump github.com/onsi/ginkgo/v2 from 2.8.4 to 2.9.0
f18b55b Bump to podman v4.2.2
064a53b Bump github.com/onsi/gomega from 1.27.1 to 1.27.2
c3c1cb3 Bump github.com/containers/common
28ca42e Bump github.com/containers/podman/v4 from 4.4.0-rc1 to 4.4.2
88e898f Bump github.com/onsi/ginkgo/v2 from 2.8.3 to 2.8.4
df84886 Bump github.com/containers/storage from 1.45.3 to 1.45.4
370a785 New feature - container healthcheck
3d18e6a Bump to v0.9.0-dev
073a500 Bump to v0.8.0
fe2fafb Bump github.com/onsi/gomega from 1.24.1 to 1.27.1
4a78fc7 Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.8.3
6d03623 Bump podman/v4 to 4.4.2
fa3ea79 Bump github.com/gdamore/tcell/v2
a6d175a Bump golang.org/x/net from 0.6.0 to 0.7.0
0d6726c Bump github.com/containerd/containerd from 1.6.12 to 1.6.18
5cf21f8 Bump github.com/docker/docker
80431f0 Bump golang.org/x/crypto from 0.5.0 to 0.6.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6912464b10 |
nerdctl: update to v1.3.0
Bumping nerdctl to version v1.3.0-2-g1525035, which comprises the following commits:
0973d30 bump: buildkit to v0.11.3, fuse-overlayfs to v1.10, kubo to v0.18.1
813a575 build(deps): bump golang.org/x/term from 0.6.0 to 0.7.0
8a5e2fe build(deps): bump github.com/docker/cli
129a757 build(deps): bump github.com/docker/docker
6b866e0 build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0
a5f95e4 build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0
e2fabe3 build(deps): bump github.com/ipfs/go-cid from 0.4.0 to 0.4.1
bd6d908 pkg/mountutil: improve error messages
ffc1577 use digest instead of a tag while signing
29a9cc1 Add manugupt1's GPG key
28aa476 build(deps): bump github.com/opencontainers/runc from 1.1.4 to 1.1.5
ae18699 build(deps): bump github.com/docker/docker
7300210 build(deps): bump github.com/docker/cli
050016d build(deps): bump github.com/compose-spec/compose-go
815d91b Support quiet in push cmd
1fa35ba Refactor image sign and verify logic
5fc6f2e build(deps): bump github.com/compose-spec/compose-go
5482743 build(deps): bump actions/checkout from 3.4.0 to 3.5.0
b6f9cfa Fix nerdctl help show the hidden commands
512bc74 set container state error
3c23201 build(deps): bump github.com/mattn/go-isatty from 0.0.17 to 0.0.18
8bc1d42 rootlessutil: always claim non-rootless on non-Linux.
89a78b4 Refactor run command networking options for Windows support.
ade009b Fix the top command on Windows
cbead58 Add support for showing image size on inspect
75c7914 build(deps): bump github.com/ipfs/go-cid from 0.3.2 to 0.4.0
ab2beab Completely skip syslog-related tests on Windows.
dde73be test: rootless: main: use v2 config
0586121 Upgrade cosign to 2.0.0 in tests
3effa44 Add unit test for exposing devices to Windows containers
5501d46 Add MAINTAINERS_GUIDE.md
d12122a build(deps): bump actions/checkout from 3.3.0 to 3.4.0
2d0c580 build(deps): bump github.com/compose-spec/compose-go
f42f125 build(deps): bump actions/setup-go from 3 to 4
b455f38 build(deps): bump github.com/containerd/nydus-snapshotter
1780943 build(deps): bump github.com/klauspost/compress from 1.16.0 to 1.16.3
874894d build(deps): bump github.com/fatih/color from 1.14.1 to 1.15.0
9a6810b update containerd (1.7.0)
02c83a1 build(deps): bump github.com/containerd/nydus-snapshotter
6e58c63 build(deps): bump github.com/containerd/containerd
ff6ec3c build(deps): bump github.com/containerd/containerd
ee64917 Drop dependency on ctr/commands
52d5787 Drop dependency on ctr/commands/content
74fc0b1 Drop dependency on ctr/commands/tasks
23f9c6e remote snapshotters: migrate to containerd-based label management
d5f917f build(deps): bump github.com/containerd/containerd
2eb25f1 Port Windows device support from containerd
4d02668 build(deps): bump golang.org/x/crypto from 0.6.0 to 0.7.0
fcb42d6 Add notation signing and verification
361c987 build(deps): bump golang.org/x/net from 0.7.0 to 0.8.0
df08a17 handle container deps removal with postsop hooks
b2ac061 build(deps): bump github.com/containerd/containerd
00ea98e Update naming of filter containers function && `container list` handler
b50f0b6 build(deps): bump github.com/compose-spec/compose-go
5e6000d build(deps): bump github.com/containerd/nydus-snapshotter
ad6ed08 Fix `operation not permitted` with systemd-homed
c93f4c8 build(deps): bump github.com/containerd/go-cni
54cb1c4 build(deps): bump github.com/containerd/nydus-snapshotter
52532dc update containerd (1.6.19)
5108bb4 update Kubo (0.18.1)
dd87b58 update Nydus (2.1.4)
760d136 update BuildKit (0.11.3)
8c8630e build(deps): bump github.com/klauspost/compress from 1.15.15 to 1.16.0
2905b88 build(deps): bump github.com/containerd/containerd
f386373 add network in use check to `compose down`
a30e765 feat: resolve special ip host-gateway
ca5f02f cmd/compose: add support for profiles
73b8ebd build(deps): bump github.com/opencontainers/runtime-spec
11dc28d build(deps): bump github.com/vishvananda/netns
c03d691 update system prune flag `--all` confirm tooltip
cf18cc4 build(deps): bump github.com/containerd/nydus-snapshotter
dab24b5 Refactor system prune command flag process
84bec01 refactor(container-list): separate main logic out of printing logic
5b481ea Update command-reference system/image prune --all optional
ef06dcb refactor(container): refactor cp flag
795c75c func Save shouldn't create file from options.Output
a303ab1 fix: `options.Stdout` should be used instead of `os.Stdout`
01cdaf9 Make system prune all flag optional
754f134 Fix unsupported restart policy message
7c78c80 make confirm logic in `volume prune` be consistent with other Prune
0996732 Fix rmi err checking containers with deleted image
d688365 build(deps): bump github.com/compose-spec/compose-go
195da3d CI: test compilation with an old release of Go
57165af update Go (1.20)
e30503c Add TestRunAddGroup_CVE_2023_25173
6b9fc94 build(deps): bump github.com/containerd/containerd
fa9f627 Build containerd and runc for specific arch with xx
484c853 `types.KillOptions` > `types.ContainerKillOptions` to be consistent
abb1da2 Fix the rename command on Windows
12cdfe6 build(deps): bump github.com/compose-spec/compose-go
efed3ae Fix images output check bug
0e13baa make prune to remove dangling images only
5e60bfb build(deps): bump golang.org/x/net from 0.6.0 to 0.7.0
ba8545f Retag commonimage before loading to ensure it does not fail.
3ad3e1e build(deps): bump github.com/docker/docker
ec78af9 build(deps): bump github.com/docker/cli
8aed73e Refactor container prune and rename command flagging process
8fadc65 test for MergeEnvFileAndOSEnv
587e627 Split rootless driver tests by network driver and portdriver.
371ec29 build(deps): bump golang.org/x/crypto from 0.5.0 to 0.6.0
cd1e43e build(deps): bump github.com/containerd/go-cni from 1.1.7 to 1.1.8
2e05e06 build(deps): bump golang.org/x/net from 0.5.0 to 0.6.0
b584d31 Add more comments to imgutil pull
67df79e test for volume create command
50b4289 build(deps): bump golang.org/x/term from 0.4.0 to 0.5.0
402a1a8 accept Ctrl-C in cri log viewer
8db1886 Cache go artifacts that are not tested within docker
84e4cad Combine image filter logic to imgutil
6a5e423 Combine image options types
ff5f333 Optimize id walkers and muti error handling
faae24a build(deps): bump golang.org/x/sys from 0.4.0 to 0.5.0
d0e36b6 refactor image prune flag
3eedefa refactor: container list flagging process
1802fe3 build(deps): bump github.com/docker/cli
c078dea Refactor (un)pause in nerdctl and compose
1e5120b build(deps): bump github.com/docker/docker
d8d409b build(deps): bump github.com/containerd/nydus-snapshotter
f60251b build(deps): bump docker/build-push-action from 3.3.0 to 4.0.0
47c094a docs: fix internal links to other Markdown docs.
efa2c28 Mark `cri` log viewer as experimental
34e5711 typo: Encoode -> Encode
6240ed7 go.mod: github.com/containerd/accelerated-container-image v0.6.0
9dae8e5 compose: show detailed errors again
2220c08 update gotestsum (1.9.0)
6b48134 update Kubo (0.18.0)
3e649f0 update Nydus (2.1.3)
0767970 update BuildKit (0.11.2)
b9d9dfb Update CNI plugins (1.2.0)
bdb97a3 update containerd (1.6.16)
1ba5b93 go.mod: github.com/containerd/containerd v1.7.0-beta.3
2ab87da refactor: extract main logic of image.List
af317f0 refactor: move unpackedImageSize to imgutil
ab92b4f ipfs: move to `net/http`-based implementation instead of binary-based one
143a1a1 refactor: container wait flagging process
aee0d8a refactor image save flag
0f254af build: propagate SOURCE_DATE_EPOCH from the client env
65eeaec refactor: system events flagging process
72f447f [Refactor] Refactor the (container) pause command flagging process
5d35581 [Refactor] Refactor the new client outside pkg/cmd.
efe04d9 refactor restart flag
6db805f Update readme for dangling image support
c59b88b Bump github.com/klauspost/compress from 1.15.14 to 1.15.15
ca0af1b Bump github.com/docker/cli
0823d99 Deduplicate client and option creation in inspect
90baad8 Move client create out of pkg/cmd in inspect cmds
318ec06 refactor container top
ea9ac34 Fix: inspect multiple networks stops at first inspect fail
609c264 Bump github.com/docker/docker
9c61793 Bump github.com/fatih/color from 1.13.0 to 1.14.1
d50d490 Bump golangci/golangci-lint-action from 3.3.1 to 3.4.0
8d9d83d refactor exec flag
801320a [Refactor] Refactor the container start command flagging process
192ed67 cmd/nerdctl: use canonical filenames (e.g., run.go -> container_run.go)
b5c4ca7 mv pkg/cmd/info/info.go pkg/cmd/system/info.go
32d796f [Refactor] Refactor the IPFS command flagging process
105aacb refactor: container stop flagging process
fb20478 refactor: container logs flagging process
9470efa refactor: pass an io.Writer to image.List
00cc517 refactor commit flag
71d7b8b [Refactor] Move the function reconfig for container from cmd to pkg/containerutil.
85d2283 refactor image remove command flag
1316fd2 [Refactor] Reorder the method argument ordering in pkg/cmd
a09ce88 refactor: move stopContainer to containerutil
0dcf6ab add comment for api types
8cb887a [Refactor] Move generateSharingPIDOpts from cmd to pkg/containerutil
7eae969 Bump github.com/compose-spec/compose-go from 1.8.2 to 1.9.0
0088e84 cmd/nerdctl: withBindMountHostIPC: slight refactor
eab7e67 [Refactor] Move withBindMountHostProcfs from cmd to pkg/containerutil
eec294d refactor: move updateContainerStoppedLabel to containerutil
7ad50eb Add Windows HyperV container mode
a108460 Move command reference to a separate doc
0517682 refactor: consolidate main logic of volume.List into volume.Volumes
caf406f refactor image info flag
eada6de refactor image pull flag
b829764 refactor: image tag flagging process
1089061 Increase CI timeout
b726a3a Refactor the network command flagging process
572d790 Bump github.com/containernetworking/plugins from 1.1.1 to 1.2.0
76fb67f Refactor container inspect
287e0af [Refactor] Move getContainerNetNSPath from cmd to pkg/containerutil
9db3857 [Refactor] Refactor the namespace command flagging process
ad635da add support logs for namespace k8s.io
0c46a70 [refactor] Adjust code style for apparmor command
0b37d72 [refactor] Adjust the code style in `pkg/cmd/volume/*`
fad078a refactor: login flagging process
efb501c [Refactor] Move exit_coder from cmd to pkg/exit_coder
5de2d33 Bump docker/build-push-action from 3.2.0 to 3.3.0
393e207 Refactor nerdctl rm
2581da9 [Refactor] Refactor the image_* command flagging process
e49e9be [Refactor] Refactor the kill command flagging process.
1d7c743 Refactor network list
a91f502 Bump docker/metadata-action from 4.2.0 to 4.3.0
cd5892f go.mod: github.com/docker/docker v23.0.0-rc.2+incompatible
4f33d57 CI: ensure that ./pkg/... is decoupled from the CLI packages
23af1bb nerdctl system prune: drop Go dependency on BuildKit
b083a6e update BuildKit (0.11.0)
422e826 tests: rmiAll: prune content blobs
6f1c8eb pkg/cmd: Ls -> List
361099e mv pkg/cmd/load/load.go pkg/cmd/image/load.go
99ba431 mv pkg/cmd/build pkg/cmd/builder
ba01a64 Add nerdctl builder build command
907fb61 Fix rename command readme
391bb6a Add ability to run Hostprocess containers
3de4c8c Bump docker/metadata-action from 4.1.1 to 4.2.0
f54251c [Refactor] Refactor all the GlobalCommandOptions from pointer to value reference
4c1097b [Refactor] Refactor the images command flagging process
6dbeba5 Use current console when attaching a tty container
bf00c2a ipfs: allow configuring ipfs daemon address
b07417f [Refactor] Refactor the compose command flagging process
0c5328c Refactor the volume flagging process
efaf3d6 [Refactor] Refactor the load command flagging process
b9ce2af [Refactor] Refactor the build subcommand flagging process
c2024be Fix the container will be created when `nerdctl run -d --rm`
dc374a5 [refactor] Add global flag process helper function
c246de7 Bump github.com/compose-spec/compose-go from 1.8.1 to 1.8.2
cd82f2e Bump github.com/containerd/nydus-snapshotter from 0.4.1 to 0.5.0
1488291 Bump actions/checkout from 3.2.0 to 3.3.0
a18765b Bump golang.org/x/crypto from 0.4.0 to 0.5.0
a9d28ac Bump golang.org/x/text from 0.5.0 to 0.6.0
47eb362 Bump github.com/containerd/containerd from 1.7.0-beta.1 to 1.7.0-beta.2
88cabdd CI: Pass GITHUB_TOKEN to containerd/project-checks
156cf0e Bump github.com/klauspost/compress from 1.15.13 to 1.15.14
49d28f0 Add a prefix to apparmor command options to avoid conflict
30b09eb [Refactor] Move the Config Struct from cmd/main.go to pkg/config
c79d835 Refactor the volume ls command flagging process
e5b76f4 run: Add cgroup-parent flag
5a21b84 tests: Use AssertOk for deferred cleanup
6081141 [Refactor] Move containerd client helper from cmd to pkg/clientutil
606261d Refactor the apparmor flagging process
9d79e98 Filter dangling images using image filters.
52b2fa0 [Refactor]: Move fmtutil from cmd to pkg/formatter
3dc21df Bump github.com/mattn/go-isatty from 0.0.16 to 0.0.17
426208f feat: add `--remove-orphans` flag to `compose down`
0258743 Make nerdctl save work with image ids
17800d1 run: Consolidate namespace options
359521e run: Add --uts flag
c7487db fix can't save image by image id
8038d41 retain custom hosts outside markedRegion
0c495fc setPlatformOptions: Change signature
4e33afe Refactor restart flag process in update command
d210d08 add update restart policy
5d0d3cc remove processed TODO
b7c39f7 Bump github.com/containerd/nydus-snapshotter from 0.4.0 to 0.4.1
858b7be Bump github.com/klauspost/compress from 1.15.12 to 1.15.13
5726ecd Disable default hostname when network is set to container mode
5546d6d IPFS: use ipfs binary instead of library
ace02c1 Bump github.com/compose-spec/compose-go from 1.8.0 to 1.8.1
181e5a3 SetInterspersed(false) for compose run
38d03da Add compose create command
ae7796c Fix and make compose start work with compose create
a0a4006 Clean test duplication
9463f3a Fix a bug that goroutine refers loop variable
c67b102 Support NewTerminal & Detached mode
162602b Add RequireExecutable to testutil
07e3c37 Bump github.com/docker/cli
43a7150 Minor format change to pkg/composer/up.go
2d51277 Fix compose dependency order
06f9af8 Bump github.com/containerd/containerd from 1.7.0-beta.0 to 1.7.0-beta.1
44b6a6c Bump github.com/klauspost/compress from 1.15.12 to 1.15.13
385e1fd Add compose start command
73777ec tentative defalke testRunWithJsonFileLogDriver*
0575de8 feat: use buildkit API for clean up build cache
2e13172 MAINTAINERS: add Jin Dong(djdongjin) as a REVIEWER
894abcf feat: support for multi-arch image build support
53c7293 Bump actions/checkout from 3.1.0 to 3.2.0
e541997 Make titles Bold in nerdctl output
af06549 go.mod: github.com/ipfs/go-merkledag v0.8.1
dea3ad9 go.mod: accelerated-container-image v0.5.3-0.20221209054854-fbdabc5a08b6
f04c7c0 Fix timeout arg bug
e771508 Fix: Delete the used network in other namespace
e833819 Bump github.com/ipfs/interface-go-ipfs-core from 0.7.0 to 0.8.0
8fab27b Fix: Deleting multiple networks stops at first delete fail
276be12 build: improve error message
94116f6 CI: add gotestsum with --rerun-fails=2
e2dbab5 Upgrade indirect dependancy go-libp2p-core to v0.20.1
6d03d64 pkg/idutil/netwalker: fix nil pointer dereference
9271dcd Add compose port
f0a5c61 Add compose top
e772c36 update fuse-overlayfs (1.10)
b44116e update containerd (1.6.12)
3442558 Add compose pause and unpause
b669481 docs: minimum oom-score-adj for rootless containerd
3bdb39f Bump golang.org/x/crypto from 0.3.0 to 0.4.0
e213a7a Bump golang.org/x/net from 0.3.0 to 0.4.0
09fa4f5 Bump golang.org/x/net from 0.2.0 to 0.3.0
a48a342 Improve compose exec test
40c44ca Fix env flag in compose exec
677c433 fix: multi-image files load output
4404583 Add unit tests for default network creation.
f530136 Add usage output to commands without arguments
368ca30 deflake TestNetworkRemoveById
84ed0d6 Add compose exec command
69cdf19 Bump golang.org/x/text from 0.4.0 to 0.5.0
70a864d Bump golang.org/x/sys from 0.2.0 to 0.3.0
41cdacf Make `netutil.CNIEnv` stateless.
6baa5f6 Prevent double-creation of nerdctl default network.
fab8702 Add filter by image support by reference
16dc40f Change run to AssertOK in network test
4525c82 deflake network tests
01ca115 Moved NetworkWalker to another package
9165474 Export NetworkConfig struct
98054c2 Add the option to remove a network by id
2b6b614 Remove unnecessary lock
aa82640 Improve compose test
2600e0f Bump github.com/compose-spec/compose-go from 1.7.1 to 1.8.0
1ca5e90 doctoc docs/faq.md
51c570b docs: explain how to get rootless containerd socket address
6da1acb allow container network_mode in compose
a5ce077 Add json format support in compose ps
12e4f61 fix network rm: no running tasks
9013bdc Deflake TestCompletion
9a184ed Bump github.com/containerd/nydus-snapshotter from 0.3.3 to 0.4.0
b2735d1 Refactor the logging driver process function
74aff28 go.mod: add a comment about indirect dependency on btcsuite/btcd/btcec
150547f Add an extra validation when remove the network
ff9775b update Kubo (0.17.0)
a388cf0 update containerd-fuse-overlayfs (1.0.5)
f13819e update Nydus (2.1.1)
f9df0c8 update containerd (1.6.10)
b6f90fc update RootlessKit (1.1.0)
977336b MAINTAINERS: add Manu Gupta (manugupt1) as a REVIEWER
f1f33d8 MAINTAINERS: promote Ye Sijun (junnplus) from a REVIEWER to a COMMITTER
1767349 MAINTAINERS: add Hanchin Hsieh (yuchanns) as a REVIEWER
e830a44 Bump github.com/Masterminds/semver/v3 from 3.1.1 to 3.2.0
a4099c7 Bump github.com/compose-spec/compose-go from 1.7.0 to 1.7.1
8523663 default network creation behavior
daa99c3 Refactor remove containers in compose
3c5b069 Add support for filtering images by labels.
f07b3f5 Add compose images command
5fea9dc Add yaml linter
72f74f5 Fix block issue for `stats -a` command when there is dead container
b318c01 Add compose rm command
579a0e3 binfmt: support /proc/sys/fs/binfmt_misc/rosetta
0c7f619 Resolve flaky TestRunWithLogBinary
671be9a Add project name log in some tests
fa8caf9 Add compose restart command
6251c46 Add support to overlaybd convert
5b69fad Bump github.com/tidwall/gjson from 1.14.3 to 1.14.4
cdb5320 MAINTAINERS: promote Zheao Li from a REVIEWER to a COMMITTER
5fb66b8 Ensure compose down is called in tests
1ea5ab8 Reorder internalLabels
4779fa7 Delete setPlatformContainerOptions()
6596486 Simplify internalLabels
4f87ff0 fix stats collect bool var
e367097 Use service label to check orphan container
e65ac4d relax "containerIP assignment is not supported in rootless mode" error
38f4bcb Copy host env to container for env/envfile option
e7674c8 Deny rm image action when this image is used by running container
bf0aacf Update command use
bef23b9 go.mod: unfork hashicorp/golang-lru
dd0ff4b restrict the oom_score_adj value when running in a userNS
b532478 Support for ephemeral ports
2d91967 add-golint-revive
292d849 Bump golang.org/x/crypto from 0.2.0 to 0.3.0
cfa27df Fix keyless mode in compose up|run
9a0621f Add cosign in compose run, up, pull, push
229dad2 fix-blkio-weight-panic
47e26a7 golangci lint add unconvert check
7e8a1cf update-golangci-lint 1.50.1
c2523f0 Add more flags for image conversion
89243da Bump github.com/multiformats/go-multiaddr from 0.7.0 to 0.8.0
9148a60 Bump golangci/golangci-lint-action from 3.3.0 to 3.3.1
b0434b5 Enable image convert to customize zstd compression level
65981f1 Let calculate the number of unique images
f23d8c9 Refactor stop containers
63ff756 Fix `--time` argument for `nerdctl restart` command
a03f8ae update BuildKit (0.10.6)
af44dbb update stargz-snapshotter (0.13.0)
48e9c0f Refactor `nerdctl logs` functionality to pkg/logging.
005ad3c Enable 'nerdctl/log-uri' label passing on Windows.
287d7a2 Bump containerd dependency in go.mod.
f9a7eb4 Bump github.com/containerd/nydus-snapshotter from 0.3.2 to 0.3.3
805e63c Remove compose stop from unimplemented
e6c5c90 Add more specific description about restart and kill command
cf3430f Bump github.com/ipfs/go-ipfs-files from 0.1.1 to 0.2.0
086e4eb Small fix on bridge ipam
8cb1679 Bump github.com/compose-spec/compose-go from 1.6.0 to 1.7.0
9593367 Improve the documenation of 'compose build --progress'
41d5019 Bump github.com/containerd/nydus-snapshotter from 0.3.1 to 0.3.2
d43b1f1 Bump github.com/coreos/go-systemd/v22 from 22.4.0 to 22.5.0
cbae86b Update getRestart doc in compose
09f9ed6 Remove DockerIncompatible
85cf730 switch master to main
5836776 removes the obsolete //+build lines with go1.18
a92afb0 CI: support main branch
e688de7 Add a dangling image prefix when tag name is not specified.
bc69897 containerd-rootless-setuptool.sh: fix CONTAINERD_SNAPSHOTTER isn't recognized
a9936f3 Bump github.com/docker/cli
55b8629 Bump github.com/spf13/cobra from 1.6.0 to 1.6.1
0d14fbe Bump github.com/containerd/nydus-snapshotter from 0.3.0 to 0.3.1
91517ae Bump github.com/docker/docker
e46eb50 Add support for converting nydus images to `nerdctl image convert`
3df677d Bump golangci/golangci-lint-action from 3.2.0 to 3.3.0
ec8e352 Support `nerdctl build` custom outputs alias of type local
a13e1f0 Add '--mode' to 'network inspect' in README
8c59b2b Bump github.com/containerd/nydus-snapshotter from 0.3.0-rc.3 to 0.3.0
b004a8e Dockerfile: demo: enable bash completions
d2e5dc8 Dockerfile: demo: configure BuildKit to use containerd worker
132dc09 release note: clarify the compatible containerd versions
6fb9de5 update Kubo (0.16.0)
29f718d update stargz-snapshotter (0.12.1)
6c80673 update BuildKit (0.10.5)
3e367ab update imgcrypt (1.1.7)
98eac1e Bump github.com/docker/cli
666fece Add more examples of Kubernetes (Kind) + IPFS
1f839b2 Bump github.com/docker/docker
f83a913 Support --pid=container:xxx for `nerdctl run` cmd
6d5e5a2 Bump golang.org/x/text from 0.3.8 to 0.4.0
490ca8c Bump docker/metadata-action from 4.1.0 to 4.1.1
6c3a519 Bump github.com/containerd/stargz-snapshotter/ipfs from 0.12.0 to 0.12.1
ef50c08 Bump github.com/containerd/stargz-snapshotter from 0.12.0 to 0.12.1
0a8e2c7 Bump github.com/containerd/imgcrypt from 1.1.6 to 1.1.7
174119d Bump containerd/project-checks from 1.0.2 to 1.1.0
5fce296 Bump github.com/docker/docker
a446c9a Bump github.com/docker/cli
a9dda52 Support build args without explicit value
b4036f6 Support `log-path` opt for json-file logging driver
ac6c767 Bump docker/login-action from 2.0.0 to 2.1.0
32f541e Bump docker/metadata-action from 4.0.1 to 4.1.0
b963a6e Bump docker/build-push-action from 3.1.1 to 3.2.0
82f806a Use sys/windows to lock file
1708238 Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
0ede9c8 Bump golang.org/x/text from 0.3.7 to 0.3.8
bfc44ae Bump gotest.tools/v3 from 3.3.0 to 3.4.0
adca3e4 Support argument `--mac-address` for nerdctl run command
02ad394 Bump actions/checkout from 3.0.2 to 3.1.0
ea90e56 follow-up TestLoadStdinFromPipe
0bcedac Fix nerdctl load stdin for pipes.
a83d5b7 Drop dependency on github.com/docker/docker/registry
184a45e Makefile: Set VERSION & REVISION only if unset
ca696e5 Bump github.com/Microsoft/go-winio from 0.5.2 to 0.6.0
5ec1a8f Bump github.com/compose-spec/compose-go from 1.5.1 to 1.6.0
0a5016d Support `syslog` driver for nerdctl
21c6c89 fix flag conflicts
3e1b10d Add `nerdctl compose version` command
2308828 Create an anonymous volume when --mount is specified.
82b9f41 Fix typo: builctl -> buildctl
80bb6cb Bump github.com/coreos/go-systemd/v22 from 22.3.2 to 22.4.0
3603055 Update images usage to contain positional arguments
971d9cb Bump github.com/compose-spec/compose-go from 1.5.0 to 1.5.1
5e93fa5 Change login and logout msg from Docker registry to container registry
0273c00 Implements logURI to support 3rd party ctrd shim logger
6de0662 Bump github.com/docker/cli
e953d09 Bump github.com/docker/docker
17a58aa Bump github.com/multiformats/go-multiaddr from 0.6.0 to 0.7.0
70bea8c Bump up buildg to v0.4.1
0b21ba7 Bump github.com/containerd/nydus-snapshotter
42f8a10 ServerAddress: Refactor logic and preserve debug logging
e53cde0 Fix crun incompatibility `cannot set swap limit without the memory limit`
ba373e5 cmd/nerdctl: simplify --help
37c045d update bypass4netns (0.3.0)
3d6e51a typo
1bbae54 Randomize container names in compose run
7418f35 Bump github.com/docker/go-units from 0.4.0 to 0.5.0
e28ca33 update bypass4netns (0.2.3)
c8ab6c3 update Kubo (0.15.0)
6b7a2d6 update BuildKit (0.10.4)
aeb3342 update runc (1.1.4)
7828a38 README.md: `nerdctl compose run` is now implemented
b5c027b Add tests and docs for compose run command
3296c14 Implement StdinOpen and Tty options in `compose`
fbd8ba0 Add compose run command template
0691b36 Support filter argument for `nerdctl ps` command
fdaaf34 replace use of deprecated sys.RunningInUserNS
3616607 remove dep between detach and cid in compose run
8c3cf4a golangci-lint: remove deprecated linters
fb57539 feat: add an experimental config in toml
ed70c23 Support filter argument for nerdctl volume ls command
4929d19 Support filter argument for `nerdctl images` command
e62f44c Bump github.com/containerd/nydus-snapshotter
488921c Bump github.com/compose-spec/compose-go from 1.4.0 to 1.5.0
5bff48b run: add a new privileged-without-host-devices option
0d3beee Bump github.com/tidwall/gjson from 1.14.2 to 1.14.3
5dc9863 pkg/testutil: remove unused GolangImage
df84d82 update Go (1.19)
2d477e3 go fmt (1.19)
44063b9 go mod tidy (1.19)
b36c69f update containerd (1.6.8)
24c851c Bump github.com/mattn/go-isatty from 0.0.14 to 0.0.16
e70f7d7 exclude default bridge network in `network prune`
b3d3958 Make the ServerAddress optional for the main docker registry.
3245439 Bump github.com/containerd/nydus-snapshotter
d347673 nit: remove unused variable and unreqd variable
b71febc fix stats output
4c2140d upgrade containerd to main
b1893b2 Bump github.com/tidwall/gjson from 1.14.1 to 1.14.2
20e319e Bump docker/build-push-action from 3.1.0 to 3.1.1
2a7a712 Add ability to show sizes in volume ls as well
013ebdc Bump github.com/containerd/nydus-snapshotter
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
379c743852 |
lxc: update to 5.0.2-tip
Bumping lxc to version lxc-5.0.2-1-g727adc052, which comprises the following commits:
727adc052 drop broken lxc-test-fuzzers
d57173681 Release LXC 5.0.2
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
46fb24baad |
k3s: update to v1.25.8
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
71f56e0486 |
cobra: update to 1.6.0
Bumping cobra to version v1.6.0-32-g4dd4b25, which comprises the following commits:
4dd4b25 Update main image to better handle dark background (#1883)
45360a5 Allow sourcing zsh completion script (#1917)
c8a20a1 Document suggested layout for subcommands (#1930)
b197a24 Update projects_using_cobra.md (#1932)
9e6b58a update copyright year (#1927)
fb36524 ci: test Golang 1.20 (#1925)
c7300f0 ci: deprecate go 1.16 (#1926)
567ea8e Add support for PowerShell 7.2+ (#1916)
3daa4b9 Add keeporder to shell completion (#1903)
a516d41 Removes stale bot from GitHub action (#1908)
e839bb3 build(deps): bump golangci/golangci-lint-action from 3.3.1 to 3.4.0 (#1902)
87ebcd8 Update shell_completions.md (#1907)
8b8ee87 Improve MarkFlagsMutuallyExclusive example in User Guide (#1904)
d022c0f Add documentation about disabling completion descriptions (#1901)
4fa4fdf build(deps): bump github.com/inconshreveable/mousetrap (#1872)
b4f979a completions: do not detect arguments with dash as 2nd char as flag (#1817)
bf11ab6 fix: func name in doc strings (#1885)
fdffa5a Update badge route (#1884)
f25a3c6 fix: conflict import name with variable (#1879)
9235920 ci: deprecate go 1.15 (#1866)
a6f198b Update kubescape org (#1874)
7bb1440 build(deps): bump golangci/golangci-lint-action from 3.2.0 to 3.3.1 (#1851)
6200c8e Makefile: add target richtest (#1865)
c6b9971 fix: force ForEach-Object to return array in pwsh completion (#1850)
4305498 Update stale.yml (#1863)
ad6db7f Create unit test illustrating unknown flag bug (#1854)
6b0bd30 fix: don't remove flag value that matches subcommand name (#1781)
cc7e235 Add Sia to projects using Cobra (#1844)
10cf7be Check for group presence after full initialization (#1839)
4b9d00d Replace deprecated ExactValidArgs with MatchAll in user_guide and shell_completions example (#1836)
badcce1 style(bash-v2): various cleanups (#1702)
1424b7b Add Constellation to projects using cobra. (#1829)
8607918 feat: make InitDefaultCompletionCmd public (#1467)
2169adb Add groups for commands in help (#1003)
212ea40 Include --help and --version flag in completion (#1813)
d4040ad Allow user to add completion for powershell alias (#1621)
23fc5e0 ci: add minimum GitHub token permissions for workflows (#1792)
93d1913 Add OnFinalize method (#1788)
07034fe build(deps): bump actions/stale from 5 to 6 (#1815)
3dc9761 Add allero to list of projects using cobra (#1819)
7039e1f Add '--version' flag to Help output (#1707)
fce8d8a Expose ValidateRequiredFlags and ValidateFlagGroups (#1760)
a281c8b Document option to hide the default completion cmd (#1779)
459fc5f ci: add workflow_dispatch (#1387)
6d978a9 add missing license headers (#1809)
4065a33 ci: use action/setup-go's cache (#1783)
7e289f4 Adjustments to documentation (#1656)
fe08012 Rename Powershell completion tests (#1803)
d689184 Support for case-insensitive command names (#1802)
70e53f6 Deprecate ExactValidArgs() and test combinations of args validators (#1643)
2e8ba6f Use correct stale action `exempt-` yaml keys (#1800)
0580724 With go 1.18, we must use go install for a binary (#1726)
2a7647f Clarify SetContext documentation (#1748)
7045405 ci: test on Golang 1.19 (#1782)
22b6179 fix: show flags that shadow parent persistent flag in child help (#1776)
dbf85f6 Update gopkg.in/yaml.v2 to gopkg.in/yaml.v3 (#1766)
f911c0b fix(bash-v2): activeHelp length check syntax (#1762)
7790bf9 fix: correct command path in see_also for YAML doc (#1771)
6bf8cd8 build(deps): bump github.com/inconshreveable/mousetrap (#1774)
965924a docs: add zitadel to the list (#1772)
162534f doc: Add Okteto for projects using Cobra (#1759)
a0aadc6 Spelling for GitHub CLI (#1744)
69083f8 Add Cilium to projects using Cobra (#1745)
bba9331 doc: Add CloudQuery for projects using Cobra (#1742)
3d38d18 Add KubeVirt as a project using cobra (#1741)
06b06a9 Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 (#1697)
5f2ec3c Update shell completion to respect flag groups (#1659)
b9ca594 use errors.Is() to check for errors (#1730)
ea94a3d undefined or nil Args default to ArbitraryArgs (#1612)
7c9831d Fix handling of descriptions for bash v3 (#1735)
ed7bb9d Add unit test for fish completion (#1515)
f464d6c Add Active Help support (#1482)
7dc8b00 Bump actions/setup-go from 2 to 3 (#1660)
87ea180 Modify brew prefix path in macOS system (#1719)
ca8e3c2 Add Pulumi as a project using cobra (#1720)
37d481d fix: Don't complete _command on zsh (#1690)
5b11656 perf(bash-v2): read directly to COMPREPLY on descriptionless short circuit (#1700)
ffa8860 Change links from http:// to https:// (#1695)
e1ded5c fix(bash-v2): skip empty completions when filtering descriptions (#1691)
8afe9d1 Bump github.com/cpuguy83/go-md2man/v2 from 2.0.1 to 2.0.2 (#1688)
25f5bb5 Prefer ReplaceAll instead of Replace(..., -1) (#1530)
9e88759 perf(bash-v2): speed up filtering menu-complete descriptions (#1692)
fb80311 perf(bash-v2): speed up filtering entries with descriptions (#1689)
95d7df1 perf(bash-v2): short-circuit descriptionless candidate lists (#1686)
f17e5a2 style(bash): out is not an array variable, do not refer to it as such (#1684)
09d6ba6 perf(bash-v2): standard completion optimizations (#1683)
4f0facb style(bash-v2): out is not an array variable, do not refer to it as such (#1681)
2722a75 perf(bash-v2): use backslash escape string expansion for tab (#1682)
d8184d3 Fix typo sh completion docs (#1678)
b9460cc Bump codelytv/pr-size-labeler from 1.8.0 to 1.8.1 (#1661)
89d7b83 Add Polygon Edge as a project using Cobra (#1672)
68b6b24 Add ability to mark flags as required or exclusive as a group (#1654)
bf6cb58 Wrap printf tab with quotes (#1665)
9d15fe6 Update stale-bot (#1609)
5271cf4 ci/test: RICHGO_FORCE_COLOR (#1647)
ab42c93 Adds size labeler GitHub action (#1610)
52e6099 Bump actions/checkout from 2 to 3 (#1619)
5414d3d Bump golangci/golangci-lint-action from 2 to 3.1.0 (#1615)
cf0df73 Bump actions/labeler from 3 to 4 (#1620)
3723151 Bump actions/cache from 2 to 3 (#1640)
1568491 Bump actions/stale from 1 to 5 (#1618)
d622355 Changed branch name in the cobra generator link to 'main' (#1645)
03c3eb7 Add Kubescape to projects (#1642)
3a1795b Fix Command.Context comment (#1639)
f848943 Add Command.SetContext (#1551)
5d066b7 Introduce FixedCompletions (#1574)
94e552d Add backwards-compatibility tests for legacyArgs() (#1547)
8cc7be2 feat: Add how to load completions in your current zsh session (#1608)
65b1195 ci: test on Golang 1.18 (#1635)
37463cf Remove CHANGELOG.md as it isn't updated (#1634)
81d27c8 fix some typos (#1625)
5b2b9e9 Removes viper dependency by removing cobra/ CLI tool (#1604)
9369465 labeler: fix syntax
e1b831e Updates labeler for new labels (#1613)
8267283 Add MAINTAINERS file (alphabetical order) (#1545)
6d2dc43 Add Pixie to projects. (#1581)
a599632 Fix install command (#1576)
7cabfeb Update Go Doc link and badge (#1593)
e04ec72 Bump license year to 2022 in golden files (#1575)
cb9d7b1 Bump github.com/spf13/viper from 1.10.0 to 1.10.1 (#1567)
178edbb Bump github.com/spf13/viper from 1.9.0 to 1.10.0 (#1561)
9054739 Remove __complete cmd for program without subcmds (#1563)
19c9c74 Always include the os package import when generating the root command (#1557)
01e05b8 Bump github.com/spf13/viper from 1.8.1 to 1.9.0 (#1554)
36bff0a fix root.go.golden (#1552)
1854bb5 Fix some typos (mostly found by codespell) (#1514)
ff2c55e chore(ci): use golangci-lint-action (#1477)
1beb476 fix: Duplicate error message from cobra init boilerplates (#1463)
6f84ef4 Provide option to hide default 'completion' cmd (#1541)
ee75a2b Remove trailing spaces from bash completion command description (#1520)
25bab5a Fix invalid shell completion when used with ~/.cobra.yaml (#1510)
3fed3ef Support different bash completion options (#1509)
507caf5 completions: fix mixed tab/spaces indentation (#1473)
c7a4421 fix: typo in {bash,zsh}_completions.go (#1459)
c3573e2 Completion: Capitalize short desc, and remove extra space from long (#1455)
dd40ab0 feat: improve completions help formatting (#1444)
d298d79 Update shell_completions.md to have automatically rootcmd (#1372)
6f19fa9 fix: unbound variables in bash completion (#1321)
d65ba12 github: add dependabot configuration file (#1427)
45e521e enable composing PositionalArgs (#896)
9e1d6f1 args_test: add helper functions (#1426)
62a72cd fix(diff): use arg '--strip-trailing-cr' (#949)
442031e Allow specifying licenses using their SPDX identifier (#1159)
78969f9 Remove "Lesser" from header for GPL-2.0 template (#880)
3c84bf8 Small correction in User Guide (#1009)
3ba5f15 Projects using cobra update (#1454)
bfacc59 Addressing typos identified by @marckhouzam
2682562 Simplifying goGet function
cf87fc4 Updating generator documentation and links
c97b7ec Update documentation to reflect the module aware generator
9388e79 Cobra generator now works within Go modules
c9edb78 Change generator default license to none
dcf42b2 Change generator to require opting in to viper.
c0dd5cd Removing unused imports when not using Viper
f09e947 readme: remove ToC, since it's now shown by GitHub (#1429)
d2c0cb3 DisableFlagParsing must disable flag completion (#1161)
c1973d3 Update projects-using markdown with Tanzu (#1501)
4fd30b6 ci: test golang 1.16.x and 1.17.x too (#1425)
2a52778 go.mod: cpuguy83/go-md2man/v2 v2.0.1 (#1460)
56060d1 Add Meroxa CLI (#1377)
de187e8 Fix flag completion (#1438)
07861c8 Fix documentation (#1434)
5738d6b Add install instructions for zsh on Mac OS (#1417)
5d46ac9 custom comp: do not complete flags after args when interspersed is false (#1308)
3c8a19e fix RegisterFlagCompletionFunc concurrent map writes error (#1423)
2dea4f2 Bump to viper 1.8.1 (#1433)
b361960 Bash completion V2 with completion descriptions (#1146)
d0f318d ci: deprecate Travis CI
8eaca5f drop mitchellh/go-homedir (#853)
ace6b14 readme: split 'Getting Started' into 'user_guide.md'
701fa6c chore(deps): update viper
9a43267 fix home directory config not loading (#1282)
4590150 Correcting misspelled words (#1349)
c2e21bd Fix multiple fish completion issues (#1249)
95d23d2 Fix zsh for DirectiveNoSpace and DirectiveNoFileComp (#1213)
2d94892 Custom completion handle multiple shorhand flags together (#1258)
6d00909 Pass context to completion (#1265)
7223a99 powershell completion fix no file comp directive (#1363)
06e4b59 Allow fish comp to support trailing empty lines (#1284)
3ed6a39 ci/MSYS2: go install @latest (#1366)
eb3b639 Bash completion variable leak fixes (#1352)
b55fa79 Add PR labeler with pull_request_target (#1338)
b312f0a Create 'completion' command automatically (#1192)
ded486a Fix trailing whitespace in the powershell completion script (#1342)
893ebf6 Fix typo
be1efc8 Update CHANGELOG.md for v1.1.3
7f95502 Update CHANGELOG.md for v1.1.2
07445ea Copyedit shell-completion related documentation
b73b344 ci: add GitHub Actions workflow 'Test' (#1339)
652c755 Use golangci-lint (#1044)
1d71ff0 Deprecate Go < 1.14 (#1323)
1135bde Update gopkg.in/yaml.v2 to v2.4.0
9df156e Cobra User Contract (#1292)
ff416ad Revert "Add the ability to specify a filePostpender in GenMarkdownTreeCustom (#1270)" (#1317)
23a6174 Add the ability to specify a filePostpender in GenMarkdownTreeCustom (#1270)
4384b91 Bump license year to 2021 in golden files (#1309)
a4ab3fa powershell completion with custom comp (#1208)
471c9ac Add the new Twitch CLI to to projects_using_cobra.md (#1301)
7df62f7 fix typos (#1274)
39b5a91 README.md Readability Improvements (#1228)
08c51e5 Add ORY Hydra & Kratos to projects_using_cobra.md (#1273)
86f8bfd fix manpage building with new go-md2man (#1255)
f32f4ef Don't use yaml.v2 2.3.0 which has a breaking change (#1259)
142dfb1 Add example for making persistent flags required (#1135)
723d0c3 Add tendermint and cosmos-sdk to the list of projects using cobra (#855)
b97b5ea fix: fish output redirection (#1247)
f64bfa1 Fix zsh completion not working on the first time in a shell session (#1237)
40d34bc Fix stderr printing functions (#894)
0bc8bfb Remove secondary go mod to prevent broken `go get` (#1233)
7f8e83d Modifying "snake-case" to "kebab-case" for clarity. (#1196)
8a39cb2 Bug fix in README (#1199)
2a8d0f3 Adding Kool to list of projects using cobra (#1224)
6c06523 add arduino-cli to projects using cobra (#1117)
8a63648 Handle linebreaks in custom completions. (#1162)
50258f1 Complete subcommands when TraverseChildren is set (#1171)
02a0d2f doc: GenMarkdown skip Synopsis on empty long cmd (#1207)
9ed1d71 bugfix/cli: Temporary fix for go get on cobra cli (#1200)
8cfa4b4 Add documentation for Use (#1188)
81e0311 modules: add a secondary go.mod to segregate CLI dependencies (#1139)
5cdf8e2 Fix typo (#1187)
a0b86e5 Correct a typo in doc/util.go (#1184)
a738b60 Add CONTRIBUTING.md (#1183)
96dc555 Update projects_using_cobra.md (#1147)
0e27f22 Add slack badge to point to cobra slack channel (#1181)
c6fe2d4 Improve zsh completion documentation (#1169)
19e41cf Adding werf to projects using cobra (#1163)
b95db64 Add golangci-lint in project using cobra (#1150)
884edc5 update viper and pflag (#1012)
675ae5f Fish does not accept - or : in vars (#1122)
5d52907 Update README.md (#1154)
207dc47 Close #1152 by upgrading yaml.v2 to v2.3.0 (#1153)
2c5a0d3 Extend Go completions and revamp zsh comp (#1070) (#1070)
0431872 Add completion for help command (#1136)
ed7b60e YAML documentation contains "Usage" (#1037)
1d3ac91 Update projects_using_cobra.md (#1113)
94a87a7 disable periodic labeler (#1112)
5155946 Ignore required flags when DisableFlagParsing (#1095)
aa5badd Metal Stack CLI is using cobra as well (#1094)
a7aaa7c replace labeler action with periodic-labeler (#1097)
f8fdd17 Complete command names even if ValidArgs present (#1088)
e392f32 Man pages won't have auto gen tag when option is disabled (#1104)
41fd44e Fix cobra init cmd help documentation (#1108)
44d55fb Fix cobra command README (#1106)
11ba63f Add Helm as project using Cobra (#1103)
090d94f Move projects using Cobra (#1090)
8c638d3 Fixed typo. (#1087)
a684a6d Fish completion using Go completion (#1048)
7fead4b Remove/replace SetOutput on Command - deprecated (#1078)
4741428 Add Github CLI to list of projects using Cobra (#1034)
b84ef40 Rename BashCompDirectives to ShellCompDirectives (#1082)
b80aeb1 Add support for custom completions in Go (#1035)
138b98f add support for autolabel stale PR (#1075)
d88d9a0 Add Labeler Actions (#1074)
bbffa3a rm circle ci badge (#1073)
f628835 Replace deprecated SetOutput func with SetOut and SetErr in test (#1053)
6607e6b Partial Revert of #922 (#1068)
95f2f73 Add short version flag -v when not otherwise set (#996)
39cf99f leverage makefile to run build tasks (#976)
3c26245 Correct documentation for InOrStdin (#929)
0da0687 Add support for context.Context
21cab29 fix: undefined er (#1039)
89c7ffb Bump year on golden files (#1010)
bf26895 Fix regression when calling *_custom_func (#1001)
447f182 format tpl/main.go templates (#980)
0d9d2d4 Revert change so help is printed on stdout again (#1004)
b04b5bf substitute wrong word in md_docs (#998)
77e4d5a Update md2man to v2.0.0 (#977)
8a4b46f update viper to v1.4.0 (#953)
c022f6f Update README.md (#944)
48e6ac4 update doc w/ newer cmd/root.go example (#973)
3745fcd add goreportcard to readme (#971)
19cf35e fix: ensure that testproject is removed even after a failure (#948)
606aa57 Used goimports to fix import order (#912)
4f2877d clean(travis): remove shellcheck from before_install (#947)
b80588d fix undefined cfgFile in documentation (#924)
993cc53 Adjustments per PR review feedback from @bogem
d851963 Correct all complaints from goimports
51f06c7 Correct all complaints from golint
9334a46 Return an error in the case of unrunnable subcommand
9552679 Add idiomatic handling of go error in distinct main func
af29f95 Add ignore of cobra posix binary and all of intellij generated files
1c9c46d Update Generator Docs to reflect changes brought in #817 (#904)
2d7544e fix missing newline in cmd/add (#905)
9a31ddf Add Linkerd to list of projects using Cobra (#892)
21f39ca bash: fix shellcheck errors (#889)
f2b07da fixing linter issues
b635726 considering stderr in UsageString
e35034f Add tests
cb27ce1 Deprecate and maintain backwards compatibility
618bc00 Allow for explicit output to err/stderr
0ea93dd Fixed linter issues
4a716d1 Extending redirection to stdout, stderr, stdin
5f23f55 Update README.md
9eb9f5c Add gardenctl to projects build using Cobra
2411ac5 remove unused struct fields
984374f clean up testproject files after test executes
11aa612 test add
303a3e5 vgo - strip out unused methods
0bb1506 remove commented field in struct
2fea75b vgo - add command working
3c42f84 fix duplicated dir
221bae3 depricate package name flag
b8ad19a reorder some operations
732e4db vgo - trim some uneeded data from struct
c7ac101 vgo - fixing up the add op to work with vgo
3741457 add CommandTemplate
50665e9 vgo - update golden templates
642c3c7 vgo - compare generated files against golden files
e993d53 vgo - take named directory or current wd
04af6ae vgo - add todo
c3b51f3 simplify test
4c22a20 vgo - remove unused methods
73b5215 vgo - fix format
44c2d48 fix calling to createLicenseFile
91dbcb7 remove commented code
5b1685f vgo - generate license
abab9aa vgo - add Create method to Project struct
69420a9 vgo - create directory
17dc9f8 fixing up templates more
26d210e vgo - fixing up the root template
c356c64 add .idea/* to gitignore
80ea290 vgo-support - re-working code generator
d658160 Add markdown file explaining support for PowerShell
21ccc7b Add basic PowerShell completions
e2c45ac Started working on Unified API for the various shell completions:
601d830 typo in zsh-completions.md
edbb671 zsh-completions: implemented argument completion.
d262154 zsh-completion: tidy up function and variable names
8822449 zsh-completion: added escapinng of single quotes in flag description.
66a9880 zsh-completion: test to verify that we're always running on root cmd.
7b62c7d zsh-completion: --version and --help still doesn't work correctly
7ce08e2 zsh-completion: completion should always parse the root command!
91e80cc zsh-completion: remove bad test
0d9a33d zsh-completion: remove temporary file
50f3859 zsh-completion: added support for filename globbing.
bda855a zsh-completions: fixed zsh completion markdown file name.
dd577bd zsh-completion: added zsh-completion documentation.
461a39d zsh-completion: removed forgotten function.
df12a0a zsh-completion: two fixes for identifying flag usage:
e9ee8f0 zsh-completion: removed the _dep_ files.
ec4b8c9 zsh-completions: revised flags completion rendering + new features:
e8018e8 zsh-completion template refactoring:
2662787 zsh-completion: added support for subcommand description.
f0508c8 zsh-completion ignores hidden commands and flags :)
a15d099 zsh-completion fixed reference to cmd name
7e2436b First try at better zsh completions:
67fc483 added variable to allow configuration of mousetrap message duration (#809)
5755ecf [TrivialPatches] Typos in README.md, fix and update CI, update projects list... (#840)
ba1052d Fix two word flags (#807)
7547e83 Run tests against go 1.11 and drop 1.9 (#737)
d2d81d9 Fix too many underscore for __custom_func (#794)
fe5e611 doc: obey SOURCE_DATE_EPOCH with manpage generation (#735)
f619abc Added ExactValidArgs (#765)
40172f1 Remove unneeded imports from README.md example (#767)
8d114be README: Remove Unneeded Newline (#746)
99dc123 Replace Giant Swarm 'swarm' with 'gsctl' (#738)
6fd8e29 Qualify custom bash func name (#730)
ff0d02e fix typo in doc/man_docs.go (#732)
7c4570c #716 - Removed useless libraries in readme (#717)
a114f31 fix test build breakage with go1.11 (#712)
1e58aa3 Include a basic example #465 (#631)
ef82de7 Fixed code sample for bash completion (#687)
0ab5b6b doc: hide hidden parent flags (#686)
7ee208b support completions for command aliases (#669)
6154259 remove dot after the abs path (#672)
cd30c2a typo: fix incorrect (#668)
4dab30c Add support for ignoring parse errors (#662)
a1f051b Update the Travis and CircleCI Go versions (#651)
c439c4f Terminate the stripping of flags when -- is found (#649)
c6c44e6 Update the bash completion example for kubectl (#645)
6644d46 Prefix bash functions with root command name (#643)
a1e4933 Bash completion aliases (#638)
1a618fb Do not add a space after a single flag completion (#625)
be77323 Try out CircleCI. (#630)
fd32f09 Fix generated bash completion for Bash 3 (OSX) (#520)
9395926 Add Execute func example in README.md (#629)
c2bbfaa Add usage example for required flags (#627)
eb58983 Add `CalledAs` method to cobra.Command (w/ tests) (#567)
9979838 Fix attemptd assignment to non-variable in bash 3 (#628)
3a7eb14 fix grammatical error in command.go (#626)
f91529f Fix a couple typos (#621)
0c34d16 cmd: Fix #612 (#614)
b95ab73 Remove trailing whitespace in rootcmd (#606)
ccaecb1 Ensure that '--version' flag works properly for root command (#595)
c156af3 Explain OnInitialize better in the GoDoc (#594)
de2d9c4 Add alibaba/pouch in README.md (#593)
3a5f27b doc: Add a necessary blank line after SEE ALSO (#592)
45a52e2 doc: Remove one additional blank line after Synopsis (#591)
8678368 Add documentation for '--version' flag to README (#590)
b1ec2ce Add support for --version flag (#584)
1be1d28 Make rootCmd private
fb02817 Fix README example to be consistent with others (#585)
19e54c4 Update error message for missing required flags (#580)
34ceca5 Disable flags in UseLine (#552)
d6948b7 Fix minor typo (#579)
2da4a54 Improve tests in doc/
d6a4305 Edit ResetFlags and ResetCommands descriptions
65c8acb Improve tests
099c5ae Add dots in comments of args.go
18eefcd Add tests for args.go
f634327 Fix typo (#573)
b3426bb Remove confusing duplicate Execute from README (#554)
7b2c5ac Create new buffer if not present yet (#549)
7cd9cc6 add test for c.Name() if c.Use gets changed (#548)
40f1880 Delete name field from Command (#547)
845c905 Fix typo
4d6af28 enforce required flags (#502)
5020481 Grammar addition (#543)
83b1f03 Add a TraverseChildren option to allow for flags on each command in the hierarchy (#299)
419e0f8 doc: add ReST doc generation (#537)
bc69223 Fix dead link in README for cobra generator
e8e7fe0 Shorten README
d5bde60 cmd: Fix text of custom license
0dacccf Improve consistency of flags when using SetGlobalNormalizationFunc (#522)
e5f66de Support default value of $GOPATH (#532)
b787445 Use func (c *Command) consistently (#530)
4de692c adding a GenZshCompletionFile function to mirror bash_completion (#529)
3c0b56b correct spelling mistake (#524)
2df9a53 Fix MinimumArgs
cb74738 Retab README.md
1723331 Update documentation
8bcacfe Add more examples of Args field
4a7b7e6 *following
cb731b8 Specify that parent's name is a variable for clarity. #514
b26b538 Fix remaining reproducibility in TestGoldenAddCmd
3da102d cmd: Fix golden tests if user has config at $HOME
99838a5 cmd: Small fixes
d7ba195 Add basic zsh completion (command hierarchy only)
9e024b6 cmd: Refine formatting of included licenses
a1b7d3c cmd: Add a blank line between copyright and license
75c6acf cmd: Add "-u" to output unified diff in golden tests
cb9cf94 Restore the use of cobra.OnInitialize in cobra executable
d4c40bb travis: Update Go versions
750ba8a Fix reproducibility in TestGolden{Add,Init}Cmd
161584f Fix minor typos: "Know" → "Known"
34594c7 Fix TestGlobalNormFuncPropagation() on gccgo
90fc11b Update README.md
f20b4e9 Refactor TakesArgs to use an interface for arg validation.
d89c499 Allow commands to explicitly state if they do, or do not take arbitrary arguments
715f41b cmd: Ignore hidden files in isEmpty
d994347 Delete tab in the long description of help
c46add8 Add ability to disable mousetrap
8c6fa02 Fix InitDefaultHelpCmd when custom help command is set
4d647c8 Print err instead of home
6471e3d Rename main func to initConfig
f9d3497 Fix RootCmd var name
d638dcb Improve readability of README
e458bb7 Reword `become unexpected errors` to `encounter errors`
31694f1 Add missing 'and' in comment
99b5d83 Show messages if deprecated flags are used
b4dbd37 cmd: Fix tests
defa97f cmd: Fix output root.go of init with --viper=false
d7cfb13 Update README.md
99ff933 cmd: Add possibility to specify the target package
84f4716 Make BenchmarkBashCompletion more honest
66da711 __ltrim_colon_completions is not always available on macOS (#459)
8d4ce35 Update README.md
e606913 Fix typos
4a1a7b0 cmd: Don't print errors from execute to prevent duplication of errors
c446db2 cmd: Delete projectBase flag
7918bf6 Add explanation for viper.BindPflag in README.md
ca57f0f doc: Ad help flag and cmd when generating docs
52ae6a1 Make initHelpCmd public (#436)
ca5710c Fix link to cobra lib in README.md
4ba54a0 Edit installation command in README.md (#451)
fb1f399 Add benchmark for GenBashCompletion
de6b168 Simplify bash_completions.go
4cdb38c cmd: Use correct HasPrefix function for paths
e9078fc cmd: Make more accurate error when there is no $GOPATH
fa9ac85 cmd: Make detailed error when project not in $GOPATH
51b7cf5 Fix tests so they give correct args (#445)
b536627 cmd: Fix some gometalinter complaints
d941496 cmd: Fix error message from go-homedir
a28055b cmd: Fix minor bugs in init command (#446)
90687e7 Update pflag link in README (#444)
7d22e77 Fix incorrect merge of pflag.CommandLine to cmd.Flags()
3454e0e cmd: Fix package name when adding command
4673102 Updating bash_completions to clarify markdown (#442)
1362f95 Clean README.md (#441)
347767f Partial revert of 4d2c4af 'Improve template mechanism' (#439)
eceb483 Divide fields of Command for readability
90d2fd8 Group fields of Command
1251aef Rename Docker to Moby in README.md
e97db2b cmd: Fix tests
4db577d Fix docs for Command
6bfe2ba doc: Add docs
3dc7f13 cmd: Fix docs
d236d29 cmd: Make tmpl local variable
c0bd07d Use cobra create instead of cobra init in README.md (#396)
4d2c4af Improve template mechanisms
d83a1d7 Add comment for InitDefaultHelpFlag
fe69f2e Make initHelpFlag public
db6b9a8 cmd: Fix incorrect initialzation by `cobra init .`
7bd35d3 cmd: Fix incorrect cmd dir
7bb5276 cmd: Fix panic if cmd ends on dash or underscore
efbe9b0 cmd: Use Fatalf instead of Fatal
76a9a66 cmd: Add tests
d20925b cmd: Small correctives
84cba62 cmd: Make detection of $HOME work on all systems
6bcf163 cmd: Validate cmd names
903e5b7 cmd: Fix trimSrcPath doc
66cfd1f cmd: Reuse template in helpers
0dd1c42 cmd: Add more docs
32756eb cmd: Rewrite
4061f41 Use pflag.ShorthandLookup
8f0203b Update README.md
69f86e6 Update README.md
6f647b1 Update .travis.yml
bc8a58f docs: Update README.md
7b1b6e8 cmd: Edit license texts
e2f2121 cmd: Use 'this program' instead of appName in licenses
3d7bff8 Revert "Get rid of flagErrorBuf (#417)"
6dd9084 doc: Use w.Write instead of fmt in yaml_docs
97af803 doc: Cleanup md_docs
de484ee doc: Refactor man docs
ea3c5be Add TestHelpFlagInHelp
867d414 Initialize help flag in initHelpCmd
6ed17b5 cmd: Add more possible matches for bsd licenses
c68a90d Add built-in licenses info to README
164be37 cmd: Add AGPL license
1efd892 cmd: Add LGPL license
6d4267f cmd: Delete redundant symbols from helpers_test.go and licenses.go
78a8032 cmd: Move some license functions from helpers.go to licenses.go
28fe9aa cmd: Fix GPL 3 License header
47029cc cmd: Delete extra whitespace from GPL 3 License header
f4f10f6 Simplify stripFlags
63121c8 Delete Parse from Go projects that uses cobra
9890b7b Simplify stripFlags function
aea9481 Fix typo at docstring for HasHelpSubCommands (#309)
a4f017e Add rclone to list of users (#334)
c4f4d75 Use go get so missing dependencies are fetched (#406)
681a777 Delete checkHelpFunc
10f6b9d Make `go path bin` clearer in README
0a4540b Refactor licenses to many files (#323)
f58a8d6 Add TestSortedFlags
e135867 Make parentsPflags more flexible
3e61377 Use AddFlagSet instead of self-written function
458d797 Add merging of CommandLine flags to Root command
37a4355 Fix tests
3d89ed4 Add only missing persistent flags of parents in mergePersistentFlags
6202b59 Refactor flags mechanisms
a3cd8ab Use os.Getenv("HOME") instead of "$HOME" for windows compatibility (#337)
b655df6 Get rid of flagErrorBuf (#417)
f95d58b Fix #401 (#402)
b6cb395 Fix typo in docstring (#360)
0a0df1e Use valid exit code value in `os.Exit` call (#405)
9350054 Keep only one newline between Aliases and Flags in help (#410)
5deb57b Fixed completion of dash parameters arguments (#415)
7aeaa2c Avoid storing pointer to nil (#411)
6421115 doc: Fix govet complaints (#408)
7be4bed remove help command before adding it (#399)
16c014f Add "docker" to readme
0960ff7 Rename IsHelpCommand to IsAdditionalHelpTopicCommand (#398)
24bb44a Fix SilenceUsage and SilenceErrors in readme (#397)
fcd0c5a Some fixes related to help command (#394)
92ea23a Fix subcommand locations with NoOptDefValue flags (#391)
ee40558 Update the Travis Go versions
b5d8e8f cache command name (#390)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
9094997ac9 |
go-digest: update to 1.0.0-tip
Update the LICENSE file to adjust to:
commit b22736afcd4ef34cfbdb8f0009a03566e620d1e4
Author: Ian Campbell <ijc@docker.com>
Date: Mon Apr 30 18:26:12 2018 +0100
Rename LICENSE.code → LICENSE
This allows automated tooling (such as license compatibilty checkers) to find
it.
Fixes #37.
Signed-off-by: Ian Campbell <ijc@docker.com>
Bumping go-digest to version v1.0.0-25-g65fac7b, which comprises the following commits:
c014774 Bump actions/setup-go from 3 to 4
c68b67b Bump actions/setup-go from 2 to 3
58786ae Bump actions/checkout from 2 to 3
ad52b00 Add CODEOWNERS, remove .pullapprove.yml
e0313d7 build: add latest versions of go to test matrix
084376b make sure the standard algorithms are registered
f0839fe chore(ci): setup dependabot for github-actions
bf89259 Add blake3 to github actions tests
a63e545 Add BLAKE3 support
b9e02e0 Implement dynamic hash registration
41930e4 Remove travis.yml
ab23730 Add GH Actions
fd8c156 TestParseDigest: add tests for some potential corner-cases
43cccb7 Add release notes for v1.0.0
17eb78b Add copyright to digestset files
132fb47 Enable static checks
ecd7b3c digestset: refine some words on unit test
5dd3cbe digest: migrate to opencontainers/go-digest
e0bfa0f digest: remove stuttering ParseDigest function
1cbb645 Typo fixes in comments
6ac142d Validate digest length on parsing
45599b9 Add remove and list functions to digest set
96bf78c Refactor specification of supported digests
77570c9 Add digest set implementation
45398c0 MAINTAINERS: add 2, remove 5
f65ba7f MAINTAINERS: remove Brandon Philips @philips
264d27f *: add OCI copyright
9d15c98 README: spit paragraphs to new lines
51d31fa Update pull approve configuration
ac2cd61 Update Aaron's e-mail address
232efbd travis: update list of go versions
ed218d0 add go.mod
f35593a MAINTAINERS: fix jonboulle's email
be46cde updating CoC link and security link
21d40dc Bump Go versions and use '.x' to always get latest patch versions
b22736a Rename LICENSE.code → LICENSE
4ca1301 disallow upper characters (/A-F/) in hex-encoded portion
678a95e digest: allow validation of urlsafe base64 encoding
55f6758 digest: update package methods to reflect changes
5ab10f5 digest: allow separators in algorithm field
d1caf20 doc: tweak wording around algorithms
b74b840 *: clarify we only deal with hex-encoded digests
b6234c3 *: add LICENSE headers to Go files
0c91155 README: update security email
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
712a36da05 |
docker-compose: update to v2.17.2
Bumping compose to version v2.17.2-8-g02ad467f, which comprises the following commits:
a4c324b8 build(deps): bump github.com/docker/cli
087fae98 build(deps): bump github.com/docker/docker
c5317496 workaround race condition in ContainerList
72a61c06 add dry-run support to run command
b24af42b ci: bump compose-go to v1.13.2
3b85cd2f test: fix e2e commands on Windows
45a852f4 test: generate valid Compose project names from Cucumber specs
cd17c8a9 test: update error message
36625ed2 test: fix race in e2e build test
a6ffdf61 ci: upgrade to Go 1.20.2 & bump deps
9ab5d8c4 build(deps): bump github.com/moby/buildkit from 0.11.4 to 0.11.5
d637cc3a watch involves up --build after change has been detected
16d5354d watch: add note about goroutine-safety & test
7aaea283 watch: data race / segfault fixes
6bedc196 update -p project name flag documentation
a11515e0 introduce `ignore` attribute for watch triggers
6c1f06e4 Run classic builder with BuildConfig, not buildx.Options
88b0d17f use `build` as common API for build scenarios
9e19bc84 use progress to show copy status
105a7c5b watch: add file delete/rename handling
f7a13aee build(deps): bump github.com/docker/buildx from 0.10.3 to 0.10.4
bfeb1dc2 Fix concurrent map read/write when recreating containers
0b41df98 build(deps): bump github.com/moby/buildkit from 0.11.3 to 0.11.4
643557d5 build and push binaries images when a PR is merged or a tag pushed
200f47e5 Add support for `additional_contexts` in `build` service config
e0aaccf4 introduce dockerfile_inline
754c0688 one off container name use configured Separator for naming
e492330d collect built image IDs
bbe1b77a progress writer uses dockercli.Err stream
fc4d2dfd Remove "-s" from LDFLAGS
85ddfde5 use go 1.20 -cover support
6a0398d7 pad can be negative on small terminal
4434cea5 add dry-run support for push command
3f7d3c26 add dry-run support for pull command
9cc1613b adopt http://no-color.org/
167c6a89 add dry-run support to restart command
3cfbac66 restart only needed services by checking depends_on relations
a3bed265 update compose-go
ae26426c Report error if project name is empty after normalization
4ea44797 only consider containers with config_hash labels (i.e, created by compose)
89633748 build(deps): bump github.com/containerd/containerd from 1.6.18 to 1.6.19
33aa6ace build(deps): bump go.opentelemetry.io/otel from 1.13.0 to 1.14.0
e31b95c1 test: tweak pause test to try and prevent failures in Windows CI
7bb60d09 build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
da1ca578 watch: ignore ephemeral files & minor output tweaks
18af72af bump golang/x/net to v0.7.0 (CVE-2022-41723)
e831ea82 add support for `restart` for `depends_on`
1edc64ef build(deps): bump github.com/containerd/containerd from 1.6.17 to 1.6.18
f3e543fd apply config options for pseudo-subcommands
9732608e build(deps): bump github.com/docker/buildx from 0.10.2 to 0.10.3
24ff0982 compact TUI to monitor layers download progress
593c4263 ci: bump to Go 1.20.1 and latest deps
313b82e9 ignore services without a build section
5e3e2171 sort service --hash output by service name
9ac0392b introduce --timeout on `up`
0612b34c introduce --no-deps on restart
92e0cd40 also restart dependent services after a service has been restarted
282a29e6 build(deps): bump go.uber.org/goleak from 1.1.12 to 1.2.1
256ec499 exclude unstable labels from config hash
9765f171 store exec details to offer better dry-run status on ExecStart
b19df5c9 add support for `excludes` and `rebuild`
7a42ba7e use CGO to enable fsevent on OSX
5b043c4d ci: don't use `-race` on Windows
15f7104c ci: use CGO for tests to enable race detector
eb1c7989 support dry-run for rm command
78b94047 support dry-run for stop command
25be264e support dry-run for exec command
7532f769 build(deps): bump go.opentelemetry.io/otel from 1.12.0 to 1.13.0
70ab9f8f bump docker engine and cli version to 23.0.0 with buildkit(v0.11.2) and buildx (v0.10.2)
93bffd9a prevent assignment to entry in nil map
52478f0c wait on service containers as dependencies to be deterministic
b5f0a4ee use containers we expect to start for wait condition
0f5b5ccb detect replacement container is created and inform printer so it attach and don't stop
a2d36b6c bump golang to 1.20
30772342 ci: Replace deprecated command with environment file
fdc17381 add log when copying files/directories between host and containers (both way)
2336d9fe support dry-run for cp command
1640f155 initial support for `sync`
e63cbfba use tilt watcher to track filesystem changes
25576289 adjust code and dependencies
7d6ee74e cleanup deprecated ioutil functions (#5919)
c08e0771 watch: optimization to help avoid inotify nodes for large file trees (#5769)
cf314623 tests: make test fixtures responsible for tearing themselves down (#5512)
1b71e3ef lint: fix local-prefixes for goimports (#5453)
4d822676 ci: add exportloopref linter and upgrade to golangci-lint v1.43.0 (#5281)
6fc0b6ff build: ensure file handles properly closed (#5298)
ab84b6ac Fix local go_lintfix errors (#5191)
7161778c watch: use WalkDir to speed up file listing (#4684)
1f5bfe88 test: clean up test loggers a bit (#4580)
f79c75ab test: fix lint errors on Darwin (macOS) (#4247)
e62993a8 test: enable unused check, remove dead code (#4208)
28251e8b watch: improve error messages when you run out of inotify instances (#3960)
c7ba7d9d dockerignore: convert ignore patterns to absolute paths [ch9237] (#3743)
8b393223 watch: fix a dumb errcheck (#3622)
b3615d64 watch: increase the windows watch i/o buffer (#3620)
1a1d1707 change org name from windmilleng to tilt-dev (#3346)
fd3e0bbe watch: use the recursive watcher on windows (#3306)
d2d4d052 Revert "watch: fix inotify tests on windows" (#3147)
dda0362b watch: fix inotify tests on windows (#3140)
ddc88ec4 circleci: run make shorttest on windows. flag off a large swath of broken tests (#3132)
92c6a65a tilt: enable errcheck on tests (#2877)
00b3caec ci: enable staticcheck, fix problems that were surfaced (#2809)
17087447 logger: move to pkg (#2031)
ec781687 watch: add retry counts to fsync (#2023)
b22dde9f dockerignore: improve MatchesEntireDir (#1865)
a31350ed watch: move more of the directory-skipping logic into the interface (#1864)
d744c97f watch: add a simple check when there are no exclusions (#1863)
37647bc6 watch: skip setup if nothing is being watched (#1861)
21e5d564 watch: FileEvents must always be absolute (#1841)
390d5cf1 watch: add tests for ignores and number of watches (#1838)
7f6e189d watch: change the watcher interface to better match how we actually use it (#1835)
b5ccea7b watch: record num watches in expvars (#1795)
47551895 makefile: fix goimports -local (#1763)
5e0f1eec watch: fix spurious errors while watching (#1726)
f82e2de5 watch: don't watch each individual file (#1613)
9c7f7bc0 live_update: error if syncing from outside of docker context (#1396)
6defe7ca watch: tfw you have a test that asserts broken file-watch behavior 😢 (#1354)
0482f927 watch: add watch function that traverses up directory structure recursively (#1013)
e8a34c8d watch: remove inotify-specific bits of watcher_linux (#890)
9e261c18 watch: fix a bug when a file and its ancestor both have direct watches (#863)
1fd7ca54 testing: update internal/watch to use the tempdir fixture (#862)
139edc40 cleanup: wrap errors properly (#772)
38b3f3b6 watch: use `sinceWhen` and `HistoryDone` to avoid spurious events (#557)
c5bce8bd watch: fix a spurious error (#344)
c8a358a4 watch: try a slightly different ignore strategy (#174)
a6701652 watch: fix more data races on darwin (#166)
4562b0bf watch: a new strategy for handling spurious events, hoping to fix race conditions (#163)
4801d2b1 watch: fix a flaky test by ignoring spurious events correctly (#162)
3850a341 watch: fix a segfault on linux (#148)
664e6f6f watch: stop skipping tests (#145)
d4f074b3 watch: simplify the fileEvent interface to only contain paths (#144)
a3b012d8 add errcheck (#93)
a755c84e tilt: copy watch code from tesseract
ef34a38a Add remote buildx driver
41e05634 rename `convert` to `config` to align with compose v1 UX
c0b4dd86 build(deps): bump go.opentelemetry.io/otel from 1.11.2 to 1.12.0
6754c6b6 add dry-run support of pause and unpause commands
982a8ccb support dry-run for kill command
790712fa update tty and plain text writers to support dry run mode
6fae6a41 Update emacs ignore patterns (#5903)
dd5ea044 ignore: add Go umask files to ephemeral set (#5740)
12de97b8 filewatch: use apiserver FileWatch model in EngineState (#4277)
62b5f78f Add .kate-swp files to ignore pattern (#3380)
3f526c5c change org name from windmilleng to tilt-dev (#3346)
12916b75 tilt: ignore a few more vim swap files (#2190)
e3948f6b ignore: auto-ignore jetbrains .idea file (#2065)
91a2bdd6 model: move to pkg (#2024)
ce61e7bf ignore: improve the ephemeral temp file patterns [ch2663] (#1925)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
a77ed260c4 |
docker-ce: update to v23.0.2
Bumping docker to version v23.0.2, which comprises the following commits:
c6bf3071fe StartWithLogFile: Fix d.cmd race
7f49ca259b TestDaemonRestartKillContainers: Fix loop capture
1363b3e372 ci: disable testing mergeop and diffop with the dockerd worker
d43958b50b builder-next: disable mergeop and diffop
fd80ca60da Fix pruning anon volume created from image config
ae0cc08cab Dockerfile: Update shfmt to 3.6.0
42751cc892 contrib/dockerize-disk.sh: Fix indentation
6c65a9a07f volumes: fix error-handling when removing volumes with swarm enabled
e3c642d1ea integration/volumes: TestVolumesRemove: add coverage for force/no-force
c48f7fd12c [23.0] update to go1.19.7
f3416271a3 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
3bd2fc8d62 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230302163403-80a528a86877
a79be4cf31 vendor: github.com/moby/buildkit v0.10.7-0.20230306143919-70f2ad56d3e5
6ac39568ee libnet/ipam: fix racy, flaky unit test
7158f76b8b vendor: github.com/containerd/containerd v1.6.19
67990f983b vendor: github.com/Microsoft/hcsshim v0.9.7
3125aa0aef [23.0] update containerd binary to v1.6.19
b1d9012969 Wait longer for exit events on Windows
2337258d28 libnet/networkdb: fix nil-dereference panic in test
Bumping libnetwork to version v0.7.0-dev.3-1861-g25ec449c, which comprises the following commits:
91f0d508 update maintainers
615c9801 libnetwork/overlay:fix join sandbox deadlock
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
Bumping docker-cli to version v23.0.2, which comprises the following commits:
f6643207a don't use null values in the bake definition
f381e0842 Dockerfile: align go version
d3a36fc38 e2e: update notary certificates
59bb07f2e e2e: increase tests certificates duration (10 years)
80f27987f bake target to generate certs for e2e tets
a43c9f344 Don't automatically request size if `--size` was explicitly set to `false`
114e17ac4 cli/command: fix imports formatting
e2c402118 cli/command: ElectAuthServer: fix deprecation comment
d07453890 Add bash completion for available plugins
90a72a589 Dockerfile: update buildx to v0.10.4
4c63110a9 update to go1.19.7
b61b5a987 stack: Change unexpected environment variable error
84fe451ec stack/loader: Ignore cmd.exe special env variables
95066ff3a Dockerfile: update buildx to v0.10.3 release notes: https://github.com/docker/buildx/releases/tag/v0.10.3
0dbf70fad docs: Deprecate buildkit's build information
5af8077ee formatter: Consider empty RepoTags and RepoDigests as dangling
57a502772 context: avoid corrupt file writes
14ac8db96 test/cli: Use empty array as empty output of images/json
1810e922a docs: drop dated comments about graphdrivers
5051d82a1 update to go1.19.6
7f4e3ead7 changed the container name in docker stats page
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3516cca605 |
moby: update to v23.0.2
Bumping moby to version v23.0.2, which comprises the following commits:
c6bf3071fe StartWithLogFile: Fix d.cmd race
7f49ca259b TestDaemonRestartKillContainers: Fix loop capture
1363b3e372 ci: disable testing mergeop and diffop with the dockerd worker
d43958b50b builder-next: disable mergeop and diffop
fd80ca60da Fix pruning anon volume created from image config
ae0cc08cab Dockerfile: Update shfmt to 3.6.0
42751cc892 contrib/dockerize-disk.sh: Fix indentation
6c65a9a07f volumes: fix error-handling when removing volumes with swarm enabled
e3c642d1ea integration/volumes: TestVolumesRemove: add coverage for force/no-force
c48f7fd12c [23.0] update to go1.19.7
f3416271a3 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230309194213-a745a8755ce3
3bd2fc8d62 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230302163403-80a528a86877
a79be4cf31 vendor: github.com/moby/buildkit v0.10.7-0.20230306143919-70f2ad56d3e5
6ac39568ee libnet/ipam: fix racy, flaky unit test
7158f76b8b vendor: github.com/containerd/containerd v1.6.19
67990f983b vendor: github.com/Microsoft/hcsshim v0.9.7
3125aa0aef [23.0] update containerd binary to v1.6.19
b1d9012969 Wait longer for exit events on Windows
2337258d28 libnet/networkdb: fix nil-dereference panic in test
Bumping libnetwork to version v0.7.0-dev.3-1861-g25ec449c, which comprises the following commits:
91f0d508 update maintainers
615c9801 libnetwork/overlay:fix join sandbox deadlock
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
docker-moby/cli: update to -tip
f6643207a don't use null values in the bake definition
f381e0842 Dockerfile: align go version
d3a36fc38 e2e: update notary certificates
59bb07f2e e2e: increase tests certificates duration (10 years)
80f27987f bake target to generate certs for e2e tets
a43c9f344 Don't automatically request size if `--size` was explicitly set to `false`
114e17ac4 cli/command: fix imports formatting
e2c402118 cli/command: ElectAuthServer: fix deprecation comment
d07453890 Add bash completion for available plugins
90a72a589 Dockerfile: update buildx to v0.10.4
4c63110a9 update to go1.19.7
b61b5a987 stack: Change unexpected environment variable error
84fe451ec stack/loader: Ignore cmd.exe special env variables
95066ff3a Dockerfile: update buildx to v0.10.3 release notes: https://github.com/docker/buildx/releases/tag/v0.10.3
0dbf70fad docs: Deprecate buildkit's build information
5af8077ee formatter: Consider empty RepoTags and RepoDigests as dangling
57a502772 context: avoid corrupt file writes
14ac8db96 test/cli: Use empty array as empty output of images/json
1810e922a docs: drop dated comments about graphdrivers
5051d82a1 update to go1.19.6
7f4e3ead7 changed the container name in docker stats page
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
874647c061 |
crun: update to v1.8.3
Bumping crun to version 1.8.3-5-gd2ff390, which comprises the following commits:
59f2beb NEWS: tag 1.8.3
ae18930 update: initialize the rt_scheduler only on cgroupv1
5855e70 [1.8.2][CentOS 7] Missing `#include <linux/sched.h>`
a4393f2 docs: add a tryout example with podman
bf70c97 NEWS: tag 1.8.2
ba6c957 cgroup: cgroupfs attempt new sibling cgroup
74dc9b4 cgroup: libcrun_get_current_unified_cgroup can return relative path
b7b5265 cgroup: drop duplicated variable
11bdc13 linux: set label for pre-created devices
4b04b01 linux: refactor code in a new function
770ad48 linux: extend fsopen_mount to specify label
7578a1a wasm, wasmedge: add current directory to preopen paths
90dd7b7 test_mount: fix incorrect comment
51aba04 linux: readonlyPaths should inherit flags from parent mount
5ad1507 lua: add Lua bindings
5d54a85 scheduler: use sched_setattr
6a132c3 libcrun_container_create(): fix memory leak
6ba6a00 container: add custom annotation to specify the scheduler
5bdd930 cgroup: systemd initialize rt limits
8b18fc7 cgroup: add new function openat_with_alias
e914059 libcrun: add alias argument to function
a4aebb9 libcrun: new function write_cgroup_file_or_alias
d36c1a2 test: remove irqbalance tests
56a2550 cgroup: fallback to blkio.bfq files
34950dc crio: skip test
710d8dd libcrun: chown tty to the exec user
e067714 python: fix create() referencing container_run()
11d1baf build(deps): bump actions/upload-artifact from 2 to 3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ef43344fb3 |
cri-tools: update to v1.26.1
We adjust our install routine to find the binaries in architecture
and OS target specific directories, but otherwise the build is
unchanged.
Bumping cri-tools to version v1.26.0-122-g4daea449, which comprises the following commits:
1dbda3f7 Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5
6f1de233 Bump github.com/docker/docker
d55f85f2 update release support details in the README
3e40ab7e Bump github.com/onsi/gomega from 1.27.4 to 1.27.5
13c94c7a Update Ubuntu 18.04 to 20.04
8de6b6d7 Bump github.com/urfave/cli/v2 from 2.25.0 to 2.25.1
8db31a76 Bump github.com/onsi/ginkgo/v2 from 2.9.1 to 2.9.2
3c0741e5 Bump github.com/golang/glog from 1.1.0 to 1.1.1
4d45340a feat: add riscv64
53e4c3ba Bump github.com/onsi/gomega from 1.27.3 to 1.27.4
e13ad25e Bump github.com/onsi/ginkgo/v2 from 2.9.0 to 2.9.1
21e62dde Bump github.com/onsi/gomega from 1.27.2 to 1.27.3
02317f82 Bump github.com/golang/protobuf from 1.5.2 to 1.5.3
9d847e2c Bump golang.org/x/net from 0.7.0 to 0.8.0
bfdb44b5 Bump github.com/urfave/cli/v2 from 2.24.4 to 2.25.0
060929a6 Bump github.com/golang/glog from 1.0.0 to 1.1.0
c020f31f Bump golang.org/x/term from 0.5.0 to 0.6.0
47b33362 Bump github.com/onsi/ginkgo/v2 from 2.8.4 to 2.9.0
f8cb6925 Bump github.com/onsi/gomega from 1.27.1 to 1.27.2
578b38a1 Bump github.com/onsi/ginkgo/v2 from 2.8.3 to 2.8.4
ce2c55c0 Bump github.com/onsi/gomega from 1.26.0 to 1.27.1
f7333f20 Run GitHub actions by `push` only on `master` and tags
64f3f275 Bump github.com/onsi/ginkgo/v2 from 2.8.1 to 2.8.3
8f27b574 Bump github.com/urfave/cli/v2 from 2.24.3 to 2.24.4
b27232f2 Bump golang.org/x/net from 0.6.0 to 0.7.0
61a85a93 Bump github.com/onsi/ginkgo/v2 from 2.8.0 to 2.8.1
c61a79e9 fix crictl config list display error
595572a6 crictl code and args optimization.
85c6f21d Bump github.com/docker/docker
63a1d5a6 crictl config add list flag
b4ffa89f Bump golang.org/x/net from 0.5.0 to 0.6.0
3c35861c Bump github.com/opencontainers/selinux from 1.10.2 to 1.11.0
753c9a88 Makefile support cross compilation, build_bin_path optimization
fda6d7f8 crictl stats add name row
be5f634b Bump golang.org/x/term from 0.4.0 to 0.5.0
82c3e8ae Bump golang.org/x/sys from 0.4.0 to 0.5.0
6fc9e4af Bump github.com/urfave/cli/v2 from 2.24.2 to 2.24.3
01796ae5 Bump github.com/docker/docker
dd20ea16 Bump github.com/onsi/ginkgo/v2 from 2.7.1 to 2.8.0
ef8a0d68 Bump github.com/urfave/cli/v2 from 2.24.1 to 2.24.2
0b81ff2a Bump github.com/onsi/ginkgo/v2 from 2.7.0 to 2.7.1
a4c976aa Makefile: pass in a custom variable GOARCH
f6ec8fec Bump github.com/onsi/gomega from 1.25.0 to 1.26.0
5923662b Bump github.com/urfave/cli/v2 from 2.23.7 to 2.24.1
a8ddf64a Bump github.com/docker/docker
1e27c2c4 Bump github.com/onsi/gomega from 1.24.2 to 1.25.0
edf14e37 Update docs version to match latest release
850c8469 Bump other OTEL deps
6d46b592 Bump go.opentelemetry.io/otel/trace from 1.10.0 to 1.11.2
5364af0f fix: formatting
6f078ed6 fix(docs): add a note about other supported platforms
c2573905 Pass `nil` as tracer provider
8ac43a45 fix: add tip on latest version
8dee7ff5 Update ginkgo and gomega
92edf29e Switch to `registry.k8s.io`
aa036b5a Increase defualt timeout on Windows
5886c7df Add support for calling Windows pod stats
64e8f6b8 Bump golang.org/x/net from 0.4.0 to 0.5.0
3a981a98 Switch away from Docker Hub to avoid rate limits
b3262be7 Bump github.com/docker/docker
5046b65b Add haircommander to reviewers
4e387743 set LTS v1.6.12 into matrix to replace old v1.5 entry
baefda37 gh actions: remove dockershim tests
24cc748b plumb context through CRI
86befea9 bump to go 1.19
a7154756 vendor: bump kube to 1.26
f9764647 Bump github.com/urfave/cli/v2 from 2.23.5 to 2.23.7
6220423b Bump golang.org/x/net from 0.3.0 to 0.4.0
d6d8005f Bump golang.org/x/net from 0.2.0 to 0.3.0
f4cf7b6e Bump golang.org/x/term from 0.2.0 to 0.3.0
c37655ee Bump golang.org/x/sys from 0.2.0 to 0.3.0
9962fb03 add missing CPU count
7493f666 Add detach key sequence support
ca1571e6 critest: ensure server is running before portforward
b6fb4b1d Bump github.com/urfave/cli/v2 from 2.23.4 to 2.23.5
fa370cc5 Bump golang.org/x/net from 0.1.0 to 0.2.0
f1998865 Bump golang.org/x/term from 0.1.0 to 0.2.0
5c48eb26 Bump github.com/urfave/cli/v2 from 2.23.0 to 2.23.4
6b420011 Bump golang.org/x/sys from 0.1.0 to 0.2.0
6f8965f4 Bump github.com/onsi/gomega from 1.23.0 to 1.24.0
913089a4 Bump github.com/urfave/cli/v2 from 2.20.3 to 2.23.0
622b04f1 Bump github.com/onsi/gomega from 1.22.1 to 1.23.0
5acd3285 Bump github.com/docker/docker
c4b3e806 Bump github.com/urfave/cli/v2 from 2.20.2 to 2.20.3
0b1abed2 Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0
91521036 specify one supplementalGroup instead of two to make test code simpler
2649f53e added a validation test case For SupplementalGroups with the predefined groups in the container image
d965134b fix copyright section in image-predefined-group's Dockerfile
59137ff5 images/image-predefined-groups: don't specify group in USER
f1cb7aff Bump github.com/docker/docker
72d1ed12 add test image for testing SupplementalGroups with predefined groups in the container image
0fd7a1b4 Bump github.com/urfave/cli/v2 from 2.19.2 to 2.20.2
ac1c0c5b Bump github.com/docker/docker
44965774 Bump github.com/onsi/gomega from 1.21.1 to 1.22.1
78d5c955 Bump github.com/onsi/ginkgo/v2 from 2.3.0 to 2.3.1
11c282fd Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.0
6e9a4670 Bump github.com/urfave/cli/v2 from 2.17.1 to 2.19.2
93332157 Bump github.com/onsi/gomega from 1.20.2 to 1.21.1
4b984ddc Implement password input on the command line
4507e46c Add recurring working areas to CONTRIBUTING
fd4bb370 Bump github.com/urfave/cli/v2 from 2.16.3 to 2.17.1
49249cbc Bump github.com/opencontainers/selinux from 1.10.1 to 1.10.2
adac6827 Cleanup owners
eb69454a Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0
373e7090 Bump github.com/urfave/cli/v2 from 2.16.2 to 2.16.3
6f5588ba Bump github.com/docker/docker
30d32dab Bump github.com/urfave/cli/v2 from 2.14.1 to 2.16.2
fd1c34d3 Bump github.com/urfave/cli/v2 from 2.14.0 to 2.14.1
46197a85 Bump github.com/urfave/cli/v2 from 2.11.2 to 2.14.0
a07c04ee Print deleted digest when repo tags empty
d3e8a304 Bump github.com/docker/go-units from 0.4.0 to 0.5.0
5bf099af Bump github.com/onsi/gomega from 1.20.1 to 1.20.2
74915650 Bump github.com/onsi/ginkgo/v2 from 2.1.5 to 2.1.6
9bad5cb3 Ensure benchmarks are skipped during validation tests.
fd16071d Bump github.com/onsi/ginkgo/v2 from 2.1.4 to 2.1.5
c148f5b2 Bump github.com/onsi/gomega from 1.20.0 to 1.20.1
778b8ed9 vendor: github.com/moby/term v0.0.0-20220808134915-39b0c02b01ae
5168c419 cmd/crictl: replace deprecated pkg/term
0e31acb9 Update version references in docs and go.mod
3efdd0f4 Bump github.com/opencontainers/runc from 1.1.3 to 1.1.4
7abda56b Bump Kubernetes to v1.25.0
1151eb16 Bump github.com/urfave/cli/v2 from 2.11.1 to 2.11.2
a685ed61 No truncate PodID in ps command if --no-trunc exists
7cf65e12 Migrate to native ginkgo v2
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6ae8646348 |
cri-o: update to 1.26.2
Bumping cri-o to version v1.26.2-10-gc0557b868, which comprises the following commits:
6ee82e547 Update crun to v1.8.3 and runc to v1.5.1
4bea0d45b create the metrics endpoint with correct shutdown logic
778169257 Update CNI plugins to v1.2.0
8f943a9cc Add spdx signature and cert to release notes
ab5daed67 Fix release notes build for release-1.26 branch
fc032744b version: bump to v1.26.2
141c69ac6 build(deps): bump sigstore/cosign-installer from 2 to 3
46e4d5286 Bump crun to v1.8.1
12cc52830 Pin nix version to fix static builds
2c3c8c7d8 unit-test: call UpdateContainerResources when nri enabled
d3504291c nri: add protection against nil dereference
8438fdf40 docs-validation: try String() for struct field values.
b997d9a61 internal/oci: don't crash when getting unset Spec.
96c12e147 test: update NRI BATS test.
d19c65049 completions, docs: update completions and man pages.
3c1bb518c config,criocli: update NRI deps, configuration.
9831dddef Fix cgroup leak for systemd cgroup driver
0c32aa50d Update to c/image 5.24.2
0015d0477 test/*: add test for checking the /etc folder permission
b1113fa78 server: fix the permission issue for `/etc`
7f60e0419 Update github.com/containers/image to v5.24.0
1f0b14da9 Update opencontainers/runtime-tools to a6a073817ab0.
0841fe69a Add container stats to the ListPodSandboxStats response
3facc028e Make storage unmount less strict
b93180c99 Inject release-notes branch from GitHub actions
5ce93c60e ci-verify: Run get-scripts only on main branch
d8c6707bd version: bump to 1.26.1
741be35fa vendor: bump storage to v1.44.1-0.20230101110555-a747b27fe4ca
f49c3b608 Update critest parameters
1b1b95af8 hostport: use generic Set
1e66eb86e server: update streaming interface to take context
2adc326f6 ci: bump cri-o.spec file to 1.26
ae0a0d5f9 static: bump go version
8f8228b77 bump to cri-tools 1.26.0
fff07d82f server: add support for new CRI calls
cac6a729e server/streaming: add context to methods
ec5beb231 vendor: bump kube to 1.26.0
8ffb14733 mocks: update with new c/storage mocks
48d0bf4ca job get script: fix conflist path
7705f9942 bump to v1.26.0
d06cae7c9 contrib/cni: use cniVersion 0.3.1 for ipv4 only bridge config
5526fae33 bundle: use ipv4 only config because of gh action limitation
1b8b28433 Support evented PLEG in CRI-O
5783c3254 Bump cri-api to support evented pleg
29ce5a7b2 get script: fix conflist path
f317b267d Fix-6080: Update the CNI version to 1.0.0
54b7b5fc0 test, Makefile: hook NRI tests into localintegration.
ab73c1dcd test/nri: add a test client with basic NRI tests.
36305e7bd server: hook NRI into request processing.
773e6e005 nri: add experimental NRI adaptation interface.
907f4edf5 config,cli: add support for NRI configuration.
a6430c8c8 Add test for conmonrs cgroup with no infra container
b6f92b04f Add test for default conmon cgroup type
f323d022c Fix applying cgroup for conmonrs when pinned
6c62954e8 Remove cri wrapper package
093d680dd server/metrics: Update seccomp notifier metrics to reduce cardinality
fe2458341 ci: make golangci-lint happy
da96d6be4 Support checkpointing infra less containers
4a541607e build(deps): bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.6.1
ebe73f411 build(deps): bump google.golang.org/grpc from 1.50.1 to 1.51.0
7d8f2328f Merge log and metrics interceptor
cb8aa99d7 ResourceStore: delete entries after they're used
1b42a3d4c Use containerd v1.7.0-beta.0
41dca27cb server: fail if HOME variable has a newline
c1d7c54fa systemd: use on-failure as restart policy
88782d59c contrib/test/ci: fix SELinux permission issue on RHEL9
8132ef511 ci: update system-packages.yml to install gpgme-devel on fedora
ac319a568 OWNERS: move vrothberg to emeritus approvers
c095c4781 build(deps): bump github.com/urfave/cli/v2 from 2.23.5 to 2.23.7
7150ba10b contrib/test/ci: fix the when condition for CentOS Stream 9
0ffec79a4 contrib/test/ci: enable crb repo for CentOS Stream 9
905e8485a Update security process
3232ffe2a Downgrade cgroupfs test to Ubuntu 20.04
7d848b3c1 Fix GitHub actions CI
b6b4f8235 Add Reddit to ADOPTERS.md
189e9f7eb Disable typecheck linter
b9d94374b Bump golang dependencies
5e71e4f9c contrib/test: set env variables for integration tests
22249fcf9 build(deps): bump sigs.k8s.io/bom from 0.3.0 to 0.4.1
a67e7776c Port remaining logrus with internal/log
14547d489 Pass ctx so that more tracing spans could be created
19bc7330f internal/log: add a function to start new tracing span
834b60336 Setup logrus hook to attach logs to traces
ef3bed00b Remove CRI v1alpha2 support
c9316ec2a Update golangci-lint and config
3b631242b Add seccomp notifier feature
e3416bda9 build(deps): bump cachix/cachix-action from 11 to 12
71252c17b Disable checkpoint image check as early as possible
658a11552 Correctly extend $PATH before calling conmon during restore
a93201a8e Use correct key for tracing hostname field
923f665ca Add docs that `tracing-sampling-rate-per-million` set to 1000000 refers to always sample
999ba7f59 Fix CI
1e8229d45 build(deps): bump github.com/urfave/cli/v2 from 2.19.2 to 2.20.2
3327991b0 build(deps): bump cachix/cachix-action from 10 to 11
0ce9fb039 build(deps): bump google.golang.org/grpc from 1.50.0 to 1.50.1
1f8221f07 build(deps): bump cachix/install-nix-action from 17 to 18
376f7e9df Update dependencies
316830590 Add logs to OpenTelemetry traces
e56855dc7 docs: updated kubernetes tutorial
53e631663 Update conmon-rs to latest `main`
8bf89f341 Minor Checkpoint/Restore improvements
62d77513b Track type of all bind mounts during checkpointing
331f30bfb build(deps): bump google.golang.org/grpc from 1.49.0 to 1.50.0
997032dec .github/CODEOWNERS: drop runcom
a7a279c84 build(deps): bump sigs.k8s.io/zeitgeist from 0.3.2 to 0.3.5
fb66985f1 config: avoid segfault when workloads.resources is nil
0244fee08 support checkpointing to oci image
ae5d39c74 Fix lint CI on `main`
eabfdb404 [#5240] update supported OS versions
26614cad9 build(deps): bump github.com/urfave/cli/v2 from 2.15.0 to 2.17.1
f7c9c2754 build(deps): bump github.com/Microsoft/go-winio from 0.5.2 to 0.6.0
42bb61393 fix: give loopback a name
9ee3457ff test/README: Update url for kata containers
f1be99faa images/os/Dockerfile: Delete this, it's dead code
570a4c1b9 config: translate monitor fields when printing config
32e6520ff Update config readme
5d20c76fb Allow complete Runtimes config to change
88cc2f9b9 build(deps): bump k8s.io/klog/v2 from 2.70.1 to 2.80.1
28861ed60 build(deps): bump actions/stale from 5 to 6
88c1f772f build(deps): bump github.com/opencontainers/image-spec
b6755fc94 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
c9ba93e08 build(deps): bump github.com/containers/podman/v4 from 4.2.0 to 4.2.1
2a876f1a7 build(deps): bump github.com/containers/buildah from 1.27.0 to 1.28.0
db20b31e1 Do not use deprecated SetNames
4ea5eeddf build(deps): bump github.com/container-orchestrated-devices/container-device-interface
481683497 config: do not remove runc if different default runtime
f24ea6702 workloads: fix whitespace
b3f877a64 template: fix whitespace and comments in runtimes table
b7b56c202 contrib/test: set LOG_DIR to debug kubernetes issues
0b0e16b1c Update conmon-rs
8e1a561e8 Bump conmon-rs code to latest `main`
506e0cbef contrib/test: drop userns integration tests
9db3e8e64 Add basic integration tests for runtime reload
877b5fbdc Add notes on runtime reload support to documentation
a3fb007fb Reload runtime configs on reload
29bff1526 Invert conditional check in ValidateDefaultRuntime
2ba6ee2ed Move default runtime validation to its own function
018657b37 use cri-tools version from dependencies.yaml
406f367cb use AddInheritableCapabilities
9070d982d config: add field AddInheritableCapabilities
9d5fbfd90 resourcestore: add test for stages
40d41e3fb server: update stages according to progress with resource creation
bce2bc388 resource store: return stage when a watcher is requested
a8e2fc166 resource store: introduce stages
1955be644 Add conmon-rs e2e to ansible playbook
24304da5e server: return already created ID for duplicated requests
6b627cbc0 cli: fix some inconsistencies in the help text
0cdd90155 Update vendored files
14926effc go.mod: update goresctrl to v0.3.0
53182dd9b build(deps): bump github.com/urfave/cli/v2 from 2.11.2 to 2.15.0
3b6b98872 Add scripts to run node e2e tests using custom cri-o builds
6d66ea7e6 Fix integration CI runs
7a0b131f5 build(deps): bump sigs.k8s.io/zeitgeist from 0.3.1 to 0.3.2
388032759 metrics: close listener on shutdown
ee5d97254 cgmgr: use NewSystemd from createSandboxCgroup
aede1956a contrib/test/ci: add rhel9 variant-specific changes
8ec499266 removes async
b2a72cbd8 migrates tests to run on GCP
76ec212ea Update build instructions for RHEL 8 distribution
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
27460610d6 |
containerd: update to 1.7.0
Bumping containerd to version v1.7.0-11-g6ea9bc57f, which comprises the following commits:
d81fc15af update runc binary to v1.1.5
755efbe64 go.mod: github.com/opencontainers/runc v1.1.5
90591db47 Defer uid lookups on Darwin
b7d87b190 Add `WithReadonlyTempMount` to create readonly temporary mounts
1c1b6bcb2 CRI: Don't always close netConfMonitor channel
cf2e454bf Sandbox: Correct/add some fields to Status()
ce68e8e0d Sandbox: Cleanup shim on Start failure
e13a9165e Prepare release notes for v1.7.0
625217d5f RELEASES.md: describe the deprecated config properties
703e2ba4b docs: link docs/managed-opt.md to client.Install
f2bb9c9b0 Go 1.20.2
56354c7de Update ttrpc to v1.2.1
5144ba9c4 sandbox: create sandbox with network namespace path
dd3eedf3c labels: Add LabelDistributionSource
5c9c630c3 use uppercase letters for flag usage
0efc498d3 Prepare release notes for v1.7.0-rc.3
ff4acdc42 metadata: add comments about Image.CreatedAt
6d46bb410 go.mod: go.opentelemetry.io/otel/* v1.14.0
d26587c72 archive: disable looking up usernames and groupnames on the host
535ef5054 go.mod: github.com/stretchr/testify v1.8.2
2b4f830ed go.mod: github.com/opencontainers/selinux v1.11.0
6bfc82daf go.mod: github.com/opencontainers/runtime-spec v1.1.0-rc.1
7c70185ae go.mod: github.com/klauspost/compress v1.16.0
8e67b2731 go.mod: github.com/imdario/mergo v0.3.13
6afec5558 go.mod: github.com/emicklei/go-restful/v3 v3.10.1
c4f928f88 go.mod: github.com/containerd/ttrpc v1.2.0
5630d6a84 go.mod: github.com/containerd/fifo v1.1.0
6d9513231 go.mod: github.com/containerd/cgroups/v3 v3.0.1
da1ffdd75 go.mod: github.com/Microsoft/hcsshim v0.10.0-rc.7
60738e31d Update imgcrypt to v1.1.7
8a4d409b9 Add release notes for v1.7.0-rc.2
d602c9aec docs: fix typo of shim.RunManager's function comment
f70657650 feat: tag image using Transfer api
f7eb86ef3 Sandbox: Delete shim+shutdown sandbox on create failure
6b4b6956e Sandbox: Fix/enhance error messages for Create
8ce3e4e15 epoch: fix unit test when SOURCE_DATE_EPOCH is set
32ed559c8 Add Windows Sandbox Stats (sbserver)
08aa576a9 Add Windows Sandbox Stats
8137e41c4 Add ArgsEscaped support for CRI
5946c1051 *: fix code style issue
98cb6d7eb cri/sbserver: ignore the NOT_FOUND error in exec cleanup
01671e9fc cri: add config ut for invalid drain io timeout value
55e25f164 integration: add testcase to drain exec IO in time
ffebcb122 cri: disable drain-exec-IO if it is empty timeout
791f137a5 *: update drainExecSyncIO docs and validate the timeout
13bf5565e [transfer] update export to use image store references
e2283edef [transfer] update export API types
f6491b004 feat: export images using Transfer api
b9d7eae1a feat(api): add fields to ImageExportStream
3c18decea *: add DrainExecSyncIOTimeout config and disable as by default
a9cbddd65 *: fix typo and skip exec-io-drain-testcase in win
b91f42a14 ctr/tasks: support remapped UID/GID
2e96ba95e Create config struct to take user input
f25ec98d0 Fix linting error `sets.String is deprecated`
8145b15f0 Bump k8s.io deps
04dfd6275 pkg/cri/sbserver: add timeout to drain exec io
82c0f4ff8 pkg/cri/server: add timeout to drain exec io
43d36a254 Add experimental section to RELEASES.md
cd84f752c Prepare release notes for v1.7.0-rc.1
ae42f836f Update mailmap
4522ad886 Update CRI guide link
57fb2d30f Add max shim version environment variable
5c6e9f83d Fix streaming manager deadlock on collection
acf6e9411 Update README with location of security audits
30883d831 Increase CI workflow timeout on Windows.
af7477e43 docs: fix typos in historical/design/data-flow.md
6b589a89f releases: mark 1.5 as EOL
dba6f9db1 Add version to shim protocol
36ae2f6b9 bump go-cni to v1.1.9
cf46d3c6f Treat sandboxes as root gc resources and scan referenced objects
35d42b47f Add Linux arm64 arch to install-protobuf script
727f8530c Prepare release notes for v1.7.0-rc.0
2e9aaf094 docs: update instructions for enabling NRI.
310be5ce6 pkg/nri: update NRI configuration.
8a47c6910 Add a leading space after the comment sign
f53417921 Add unit test to getSupportedPlatform
a6ad9e04e Rewrite install-protobuf script
3769b4840 Rewrite install-protobuf script
47305392c Add configuration options to local transfer service
bd0a2a927 CRI: remove duplicated snapshotters code
49abbe4f2 fix failing TestCDIInjections
30e4a1409 update CDI version to v0.5.4
4728800ab runtime/v2: Get rid of last logrus.Fields usage
4278fbbc7 runtime/v2: Call onCloseWithShimLog for grpc shims
06e085c8b Add Fields type alias to log package
0ecdd341d docs: add more comment to logging.LoggerFunc
ea83632a8 docs: Show how to select GRPC for shims
369339897 Migrate from k8s.gcr.io to registry.k8s.io
a48dbefc1 Fix concurrent writes for UpdateContainerStats
dc27cc0a2 Add macOS build notes
56274749c sandbox: start sandbox with options
2716fd041 dependency: bump go.etcd.io/bbolt to v1.3.7
979a74412 runtime/v2: Log BootstrapParams
4baa1876b contrib/apparmor: remove code related to apparmor_parser version
0ced6ac64 Prepare release notes for v1.7.0-beta.4
90d004ae8 Go 1.20.1
281f89a9d go.mod: go 1.19
d8b68e3cc Stop using math/rand.Read and rand.Seed (deprecated in Go 1.20)
a9ac5f9cb lint: remove `//nolint:dupword` that are no longer needed
9b510e9a8 lint: silence "SA1019: tar.TypeRegA has been deprecated... (staticheck)"
8bf975b4f lint: silence "type `HostFileConfig` is unused (unused)"
4b9fd6ba5 golangci-lint v1.51.1
ac31c9a53 Clean up repeated package import
39bac0dbe error strings should not be capitalized
9a9cfe85e Go 1.19.6
0166783c7 cni: pass in the cgroupPath capability argument
d14758b60 go.mod: bump to go-cni main
e855a5998 cmd/ctr/commands/images: support usage subcommand
9c82e929f release: xx v1.2.1
844252164 Add fallback for windows platforms without osversion
081601f52 Update imagestore interface to support multiple references
646bc3a94 CRI: Create DefaultCRIAnnotations helper
5aab634e1 CRI: Pass sandbox annotations to _other platforms
2b24af8d1 Use options to pass PodSandboxConfig to shims
ebbcb57a4 pkg/cri/sbserver: experimental NRI integration for CRI.
8a1dca0f4 pkg/cri: split out NRI API from pkg/cri/server.
a8bb1ad2a loadConfig pre-inspection in advance
36e7dbdcb ctr version: add args check, prohibit incoming args
750d18ace Extract CRI instrument package
60d04b0b0 pkg: rename {blockio,rdt}_default.go -> nonlinux.go
b61988670 go.mod: github.com/containerd/typeurl/v2 v2.1.0
74b371b98 CRI: Mirror generic toml runtime config under server
8ef298d86 Add transport credentials GRPC opt
77fc0948c Use switch when creating TTRPC/GRPC client
a82e37a5a Add shim bootstrap params
fc2e761e2 Initial GRPC client support
9e5c207e4 Wire up client bridges
4b1ebef3c Add Sandbox service GRPC bridge
47cb5f64b Add Task Service GRPC bridge
51a8db233 Send container events with nil PodSandboxStatus
27c8f4085 Move PLEG event generation back to sbserver to avoid missing pod sandbox status
7cf556075 test: add hostNetwork tests for both windows and linux
d33a43cc2 pkg/apparmor: clarify Godoc
a3265102d Revert "Don't check for apparmor_parser to be present"
c990e3f2e contrib/apparmor: remove version-dependent rules
fe0116ec2 CI: skip some jobs when `repo != containerd/containerd`
3eda46af1 oci: fix additional GIDs
ef2560d16 oci: fix loop iterator aliasing
52f82acb7 btrfs: depend on kernel UAPI instead of libbtrfs
62df35df6 *: introduce wrapper pkgs for blockio and rdt
6cdc221f5 'go routine' should be 'goroutine'
b0e97c0f9 Use multierror for cleanup error
34314717b Remove sandox store and controller service type
a788f6c79 Move local sandbox controller under plugins package
2717685da Refactor sandbox controller interface
0b33a45fa cri: fix Mirrors deprecation comment
5bc3fea62 update fuzz function names in docs with golang naming convention
904a87d26 docs: fix function names in fuzzing test documentation
9e4acc028 importer: stream oci-layout and manifest.json
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ee212a38bc |
conmon: update to 2.1.3-tip
Bumping conmon to version v2.1.3-43-g9a3af8f, which comprises the following commits:
9a3af8f logging: avoid opening /dev/null for each write
813c8d7 oom: restore old OOM score
9d3a955 Update CI VM images
b1d7297 Use default umask `0022`
54a0c9c exit: Free allocated string
dbade0d version: bump to v2.1.7
1841000 Fix leaking symbolic links in the opt_socket_path directory
5cff0ce cgroup: Stumble on if we can't set up oom handling
5f669ba bump to v2.1.6
3dc09f6 packit: build in dedicated projects
fffef27 hack: build ginkgo in GOPATH
ef8a9f2 vendor bump ginkgo to v2
b042229 gh actions: bump to go 1.20
c002534 Use --detach instead of -d
df277e2 Fix OOM watcher for cgroupv2 `oom_kill` events
4cb1e4d Lint/format fixes for golang 1.19
a10fe91 Update CI VM Images to F36/F37
2d03ad0 ctrl: drop fifo perms to 0660
8c72109 Fix tools/Makefile with GNU make 4.4
6b600ac bump to v2.1.5
28b3bc7 don't leak syslog_identifier
f903e20 logging: do not read more that the buf size
f4d3beb logging: fix error handling
21f648b cli: Fix conmon-pidfile/container-pidfile description
1df3e90 Makefile: Fix install for FreeBSD
cb0c68b signal: Track changes to get_signal_descriptor in the FreeBSD version
1fbfa33 Packit: initial enablement
5e82bb4 bump to 2.1.4
1420874 signal: handle SIGUSR1 with signalfd
636e239 Use /usr/bin/env to locate bash
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
195db7f7c5 |
runc-docker: update to 1.1.5
Bumping runc to version v1.1.5-1-g17a2d451, which comprises the following commits:
17a2d451 VERSION: back to development
f19387a6 VERSION: release v1.1.5
8ec02ea1 nsexec: retry unshare on EINVAL
0abab45c Prohibit /proc and /sys to be symlinks
0e6b818a rootless: fix /sys/fs/cgroup mounts
f6e2cd3b nsexec: Check for errors in write_log()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ae91a8666a |
runc-opencontainers: update to 1.1.5
Bumping runc to version v1.1.5-1-g17a2d451, which comprises the following commits:
17a2d451 VERSION: back to development
f19387a6 VERSION: release v1.1.5
8ec02ea1 nsexec: retry unshare on EINVAL
0abab45c Prohibit /proc and /sys to be symlinks
0e6b818a rootless: fix /sys/fs/cgroup mounts
f6e2cd3b nsexec: Check for errors in write_log()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
a969fd9041 |
kubernetes: make CC for amd64 match other architectures
Change 0001-hack-lib-golang.sh-use-CC-from-environment.patch to also remove the 'export CC=xxx' for amd64. The original patch is a little strange, it removes such statements for other archs but leaves amd64 untouched. If we're using CC from our environment, we use it for all targets. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
8fcd817417 |
kubernetes: update to v1.27.x-rc
Bumping kubernetes to the next release candidate (april 2023). We refresh our $GO patch, drop the need to do release artifacts preparation and add a new INSANE_SKIP for kubelet. But otherwise, the build and content the same or similar. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c5f7a698bc |
podman: update to 4.4.3
Bumping libpod to version v4.4.3-2-g6172f29f9, which comprises the following commits:
2c01aa7e3 Bump to v4.4.4-dev
d2f93d621 Bump to v4.4.3
2ae3c4fe9 Release notes for v4.4.3
d6ea3983d compat: /auth: parse server address correctly
0a897f03f vendor github.com/containers/common@v0.51.1
f7fccc87c pkginstaller: bump Qemu to version 7.2.0
53212ea0e podman machine: Adjust Chrony makestep config
06925d554 [v4.4] fix --health-on-failure=restart in transient unit
9c0d2dc2f podman logs passthrough driver support --cgroups=split
a0fad9f8c journald logs: simplify entry parsing
54b070ee6 podman logs: read journald with passthrough
c5fa9c50f journald: remove initializeJournal()
6b19e1437 netavark: only use aardvark ip as nameserver
d737a815a compat API: network create return 409 for duplicate
1a3a5594a fix "podman logs --since --follow" flake
bd65bf2ed system service --log-level=trace: support hijack
8ab00424b podman-mac-helper: exit 1 on error
badbd8a34 bump golang.org/x/net to v0.8.0
36ab43f77 Fix package restore
df0fe4fcc Quadlet - use the default runtime
594d488b8 Bump to v4.4.3-dev
74afe2688 Bump to v4.4.2
87a1c2701 Release notes for v4.4.2
3abff420a Revert "CI: Temporarily disable all AWS EC2-based tasks"
8322cab91 kube play: only enforce passthrough in Quadlet
d69512b98 Emergency fix for man pages: check for broken includes
9606d7f99 CI: Temporarily disable all AWS EC2-based tasks
ab7a47840 quadlet system tests: add useful defaults, logging
805e94b03 volume,container: chroot to source before exporting content
321d05aa9 install sigproxy before start/attach
84521f52d Update to c/image 5.24.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Xiangyu Chen
|
25bbebeba0 |
lxc: templates/lxc-busybox.in: if busybox contains init then use it
Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Xiangyu Chen
|
4d248c7383 |
lxc: add -L option for curl in templates-use-curl-instead-of-wget.patch
Add support of redirect option for curl, the linuxcontainers.org sometimes redirect to other mirror site such like us.lxd.images.canonical.com, this would cause the lxc-download script report download failed. Reproduce and verified on following command: lxc-create -t download -n test -- --dist archlinux --release current --arch arm64 Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
fd0958ed9e |
containers: use VIRTUAL-RUNTIME variable to allow container runtime flexibility
Rather than using virtual-runc (which choses between the old docker and opencontainer variants), use the newly added VIRTUAL-RUNTIME_container-runtime variable, which allows switching betwen runc and crun. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
b3346bfb26 |
podman: use VIRTUAL-RUNTIME variable for flexible RDEPENDS
To make it simpler to vary the container runtime and the networking infrastructure to be used with podman, we use the recently introduced VIRTUAL-RUNTIME variables that control these values. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
aaebd97ca8 |
docker-ce: update to v23.0.1-tip
Bumping docker to version v23.0.1-34-gbfc8e1ae36, which comprises the following commits:
2337258d28 libnet/networkdb: fix nil-dereference panic in test
d6d48dd95d Upgrade to golangci-lint v1.51.2
c4b655830d Migrate away from things deprecated in Go 1.20
c6bf777eae d/l/awslogs: fix ineffective Add in test
da10937926 daemon: handle EISDIR error from runtime
938ed9a1ed distribution/xfer: make off-by-one error a feature
ca712d6947 Fix loop-closure bugs in tests
2c55b264f7 Upgrade containerd/fifo to v1.1.0
8fd038fb71 dependency: bump go.etcd.io/bbolt to v1.3.7
87a1517f8f vendor: golang.org/x/net v0.7.0
d15010643c vendor: golang.org/x/text v0.7.0
0727310950 vendor: golang.org/x/sys v0.5.0
b8c448ef24 Revert "apparmor: Check if apparmor_parser is available"
a3f5319563 vendor: github.com/containerd/containerd v1.6.18
52d667794f [23.0] update containerd binary to v1.6.18
11715a05ca update to go1.19.6
962c238c17 libnet/networkdb: use atomics for stats counters
20d05e235e libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
c2d69d06b0 api/s/r/swarm: log backend errors at Debug level
7c09feb58c libnetwork: check DNS loopback with user DNS opts
6c2637be11 Do not log connection info before the connection exists
4002fa877b vendor: update buildkit to latest v0.10
Bumping docker-cli to version v23.0.1-2-g1ab7665be, which comprises the following commits:
1810e922a docs: drop dated comments about graphdrivers
27b19a6ac ci: fix branch filter pattern
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
43b4f4ea95 |
moby: update to v23.01-tip
Bumping moby to version v23.0.1-34-gbfc8e1ae36, which comprises the following commits:
2337258d28 libnet/networkdb: fix nil-dereference panic in test
d6d48dd95d Upgrade to golangci-lint v1.51.2
c4b655830d Migrate away from things deprecated in Go 1.20
c6bf777eae d/l/awslogs: fix ineffective Add in test
da10937926 daemon: handle EISDIR error from runtime
938ed9a1ed distribution/xfer: make off-by-one error a feature
ca712d6947 Fix loop-closure bugs in tests
2c55b264f7 Upgrade containerd/fifo to v1.1.0
8fd038fb71 dependency: bump go.etcd.io/bbolt to v1.3.7
87a1517f8f vendor: golang.org/x/net v0.7.0
d15010643c vendor: golang.org/x/text v0.7.0
0727310950 vendor: golang.org/x/sys v0.5.0
b8c448ef24 Revert "apparmor: Check if apparmor_parser is available"
a3f5319563 vendor: github.com/containerd/containerd v1.6.18
52d667794f [23.0] update containerd binary to v1.6.18
11715a05ca update to go1.19.6
962c238c17 libnet/networkdb: use atomics for stats counters
20d05e235e libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
c2d69d06b0 api/s/r/swarm: log backend errors at Debug level
7c09feb58c libnetwork: check DNS loopback with user DNS opts
6c2637be11 Do not log connection info before the connection exists
4002fa877b vendor: update buildkit to latest v0.10
Bumping docker-cli to version v23.0.1-2-g1ab7665be, which comprises the following commits:
1810e922a docs: drop dated comments about graphdrivers
27b19a6ac ci: fix branch filter pattern
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
28491d29ed |
crun: update to v1.8.1
Bumping crun to version 1.8.1-3-ga09ab72, which comprises the following commits:
11d1baf build(deps): bump actions/upload-artifact from 2 to 3
f8a096b NEWS: tag 1.8.1
4748543 utils: drop magic number 4096
b022227 utils: use mempage size buffer to read /proc/mounts
2da0773 linux: always use direct mapping
6cdf51c container: delete cgroup on errors
fba646e cgroup: rmdir the entire systemd scope
3221684 crun.1.md: fix typo
31bcf8f crun.1.md: fix markup
5007784 build: delete .version file on make clean
46fbeee cgroup: reset systemd unit if start fails
7e7a4db cgroup: do not add default dependencies
4bd4c4e test: run codespell on the correct directory
8b46c45 src: run codespell
b841b71 Support passing an attribute to change the mount_context_type
2ca4233 test: fix path for crictl
ce66b2e Revert "Support passing an attribute to change the mount_context_type"
87b69c3 Support passing an attribute to change the mount_context_type
d23a94a krun: create /dev/sev as part of the OCI configuration
84092f6 handlers: add hook for exec
83f3ab2 handlers: rename exec_func to run_func
93a8e2f krun: always allow /dev/kvm
675e87c handlers: update uses modify_oci_configuration
1efd61a update: move json parsing to container
c9b230a handlers: provide cleanup function
bd22751 handlers: move cookie data under the same struct
71bf884 handlers: add new hook to modify the OCI configuration
b3e167d crun: set handler for all commands
f0f7b8c handlers: initialize handler in the parent process
cfec5ce NEWS: tag 1.8
957796e libcrun: remove unused intprops.h
8363deb linux: move PR_SET_DUMPABLE after userns creation
83de960 dist: do not include binary tests
188e0ce nix: add gcrypt dependency
f7c715d nix: remove protobuf dependency
765161c nix: refactor same command line
98898d2 nix: update image to nixos/nix:2.12.0
bcae634 Add support for ppc64le
9b287dd README.md: add CodeQL badge
ed7598d README.md: drop lgtm badges
1a61b4d utils: shrink read buffer if necessary
2a5cc1d nix: update packages
7d9fa03 tests, centos8-build: add safe.directory /crun
822ca4a utils: add utils to access /proc/$PID/fd/$FD paths
0554b0a utils: change initial size for buffer
742e8fc utils: reallocate only if needed
4e379c6 cgroup: support cpuset mounted with noprefix
58166e6 linux: set PR_SET_DUMPABLE
908bfc4 linux: mount cgroup ro on /sys bind mount fallback
cd1cf0b linux: add two new arguments to get_bind_mount
b84bde9 linux: mount the source cgroup if cgroupns=host
03d2969 linux: refactor out helper function
75f5c1a linux: fix error message
234d77c linux: precreate devices on the host
f23cd15 utils: add functions to read overflow IDs
85767be linux: remove duplicate slash
1e29136 linux: generalize fsopen_mount
a186e8a linux: add dirfd argument to get_bind_mount
7e42a18 linux: add infra to send devices mounts
a6c9453 linux: generalize receive_mounts
b0fe2e4 linux: refactor code in a separate function
05f1298 contrib, seccomp-notify-plugin: free args on error to prevent leak
a34dd94 cri-o,test: skip failing test unrelated to crun
78cf10f crun: fix clang format
278b9b4 src/crun.c: fix build without dlfcn.h
0ebf4e7 build(deps): bump uraimo/run-on-arch-action from 2.3.0 to 2.5.0
4832ca4 Don't clone self from read-only mount
9df7442 tests, wasmedge: copy libraries under /usr/lib64
2044720 tests, wasmedge-build: install which
6f0d03c tests, crio: skip checkpoint/restore tests
d406a97 tests, centos9-build: add safe.directory /crun
81b4ba0 tests, cri-o: add criu-libs rpm
ca41c80 cloned_binary: use cleanup_close
e1c3906 tests, cri-o: update go to 1.19
a83001b cgroups v1: fix legacy mode mount.
26fe138 utils: fix applying AppArmor profile
1cfaf54 tests: disable some CRI-O failing tests
5e3ef32 crun: write setgroups=deny when mapping a single uid/gid
da84be0 github: fix cri-o CI on cgroupv2
cdf7864 tests: disable test that requires io.bfq.weight
c54fc6f github: fix running on cgroupv2
0356bf4 NEWS: tag 1.7.2
d389308 criu: hardcode to libcriu version 2
3880f04 cgroup: always enable controller
258c237 crun: fix compile time check for CRIU
6ce11e8 copr: enable wasmedge on all active envs
ada59b2 tests: fix podman tests
d068462 NEWS: tag 1.7.1
9893e99 utils: Improve debug message
db08071 linux: include terminal \0 when copying mapping
67f58c6 utils: fix creating default userns
5689bd1 krun: disable libkrun's collection of env vars
6b8da56 krun: copy the OCI configuration file
92db973 configure.ac: do not link libcriu dynamically
f6a5109 criu: add check at runtime for the version
8c3fc12 criu: load libcriu dynamically
b3189ef src: run make clang-format
be6c22c fix timestamp format, tv_usec is microsecond not nanosecond
ff95309 copr: enable wasmedge on epel9
40f66c0 seccomp: initialize libgcrypt
9bff00a Add setlinebuf() when --debug and --log=file: are used.
cb6ae27 handlers: set selinux/apparmor profile
0efbe56 utils: change AppArmor profile for the current proc
f1f286a utils: change SELinux label for the current proc
a1cd1a6 handlers: use only the handler name if needed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Vasileios Anagnostopoulos
|
451f296f9a |
aardvark-dns: Add ptest support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Vasileios Anagnostopoulos
|
e14985f0e3 |
netavark: Add ptest support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Vasileios Anagnostopoulos
|
3e4863e579 |
aardvark-dns: add the recipe
The aardvark-dns is an optional runtime dependency of the netavark. This recipe introduces the aardvark-dns, so it can be integrated to netavark. Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Vasileios Anagnostopoulos
|
a04a42da99 |
netavark: update the netavark version
Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Pascal Bach
|
311b1e218b |
netavark: add the netavark recipe
The recipe is generated via cargo-bitbake. Modifications are done in netavark.inc to allow re-genrating the recipe for future updates. Signed-off-by: Pascal Bach <pascal.bach@siemens.com> Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Xiangyu Chen
|
c3bd301d31 |
lxc: skip lxc-test-apparmor-mount and lxc-test-get_item in ptest
lxc-test-apparmor-mount and lxc-test-get_item related to apparmor, since the lxc-test-apparmor has been already skipped, so also skip those two cases. Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
ba2158e3e5 |
buildah: update to 1.29.x
We drop our backported patch, since it is now part of the upstream
project.
We also drop {LINKSHARED} from the build, as with the updated buildah
and golang version bumps in oe-core, we get the following build error:
| # github.com/containers/buildah/cmd/buildah
| type:*crypto/elliptic.nistCurve[*crypto/internal/nistec.P384Point]: unreachable sym in relocation: crypto/elliptic.(*nistCurve[*crypto/internal/nistec.P384Point]).Add
| type:*crypto/elliptic.nistCurve[*crypto/internal/nistec.P384Point]: unreachable sym in relocation: crypto/elliptic.(*nistCurve[*crypto/internal/nistec.P384Point]).Add
It is unclear what the linked shared flag was providing in our build,
and we are generally ok with statically linked go applications. So we
drop the flag until a compelling reason exists to debug the linking
failure.
Bumping buildah to version v1.29.1-1-g7fa17a842, which comprises the following commits:
faf0d4fcb [release-1.29] Bump to Buildah v1.29.1
7d5ff3012 Update to c/image 5.24.1
94b723cb5 Bump to v1.29.0
c9cbc6d7d tests: improve build-with-network-test
5e3f26de2 Bump c/storagev1.45.3, c/imagev5.24.0, c/commonv0.51.0
b70fb1765 build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
fe0256d38 Flake 3710 has been closed. Reenable the test.
f9ef51cbb [CI:DOCS] Fix two diversity issues in a tutorial
3ef898e41 build(deps): bump github.com/fsouza/go-dockerclient from 1.9.2 to 1.9.3
0d87e38b6 vendor in latests containers/(storage, common, image)
15bdd2aad fix bud-multiple-platform-with-base-as-default-arg flake
ac7458e70 stage_executor: while mounting stages use freshly built stage
e1cfcb240 build(deps): bump github.com/fsouza/go-dockerclient from 1.9.0 to 1.9.2
d1c82c29a build(deps): bump github.com/onsi/gomega from 1.24.2 to 1.25.0
4dec25346 vendor in latests containers/(storage, common, image, ocicyrpt)
c0f6c6b7a [Itests: change the runtime-flag test for crun
186b30168 [CI:DOCS] README: drop sudo
1950ab687 Fix multi-arch manifest-list build timeouts
d106e425a Cirrus: Update VM Images
67ab55bbb bud: Consolidate multiple synthetic LABEL instructions
9fced965e build, secret: allow realtive mountpoints wrt to work dir
938c03556 fixed squash documentation
59da1a7f7 build(deps): bump github.com/containerd/containerd from 1.6.14 to 1.6.15
4952862a2 Correct minor comment
820fafc88 Vendor in latest containers/(common, image, storage)
a75b263f7 system tests: remove unhelpful assertions
356668389 buildah: add prune command and expose CleanCacheMount API
a5e177586 vendor: bump c/storage to a747b27
60be7f250 Add support for --group-add to buildah from
00d8d94cb build(deps): bump actions/stale from 6 to 7
e33bb8678 Add documentation for buildah build --pull=missing
5828918bc build(deps): bump github.com/containerd/containerd from 1.6.12 to 1.6.14
4aa28f6a7 build(deps): bump github.com/docker/docker
7a4702ae2 parse: default ignorefile must not point to symlink outside context
67c2e4de5 buildah: wrap network setup errors
d9578d32c build, mount: allow realtive mountpoints wrt to work dir
57a77073a Update to F37 CI VM Images, re-enable prior-fedora
798a250d4 Update vendor or containers/(image, storage, common)
ca96c3678 build(deps): bump golang.org/x/crypto from 0.3.0 to 0.4.0
e0054a03d Update contact information
e5cc78c43 build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
46eea3158 Replace io/ioutil calls with os calls
0183471b9 [skip-ci] GHA/Cirrus-cron: Fix execution order
8428bc87b Vendor in containers/common
e60c4d7e5 build(deps): bump golang.org/x/sys from 0.2.0 to 0.3.0
ffed85036 remote-cache: support multiple sources and destinations
a1698cde6 Update c/storage after https://github.com/containers/storage/pull/1436
025a8df51 util.SortMounts(): make the returned order more stable
5e792e97b version: Bump to 1.29.0-dev
498b45770 [CI:BUILD] Cirrus: Migrate OSX task to M1
94560581d Update vendor of containers/(common, storage, image)
e6eb05f75 mount=type=cache: seperate cache parent on host for each user
20dd347b9 Fix installation instructions for Gentoo Linux
e162302df build(deps): bump github.com/containerd/containerd from 1.6.9 to 1.6.10
1cfb5eafb GHA: Reuse both cirrus rerun and check workflows
5bd5a4f9d Vendor in latest containers/(common,image,storage)
8e4979e81 build(deps): bump github.com/onsi/gomega from 1.24.0 to 1.24.1
3d755b5eb copier.Put(): clear up os/syscall mode bit confusion
1a18ab341 build(deps): bump golang.org/x/sys from 0.1.0 to 0.2.0
646c28290 Use TypeBind consistently to name bind/nullfs mounts
d4c661a77 Add no-new-privileges flag
1f372c08a Update vendor of containers/(common, image, storage)
b2054360a imagebuildah:build with --all-platforms must honor args for base images
a17238891 codespell code
217b2d524 Expand args and env when using --all-platforms
c554e5330 build(deps): bump github.com/onsi/gomega from 1.23.0 to 1.24.0
ed3707765 GHA: Simplify Cirrus-Cron check slightly
1091222b2 Stop using ubi8
cec864147 remove unnecessary (hence misleading) rmi
ffb00243f chroot: fix mounting of ro bind mounts
a237085fe executor: honor default ARG value while eval base name
481b3cc95 userns: add arbitrary steps/stage to --userns=auto test
dc733f1d2 Don't set allow.mount in the vnet jail on Freebsd
e867db39b copier: Preserve file flags when copying archives on FreeBSD
bf4420f25 Remove quiet flag, so that it works in podman-remote
8b1a490bd test: fix preserve rootfs with --mount for podman-remote
b24449990 test: fix prune logic for cache-from after adding content summary
4290ab5af vendor in latest containers/(storage, common, image)
1d0dd78c3 Fix RUN --mount=type=bind,from=<stage> not preserving rootfs of stage
7aa34b86f Define and use a safe, reliable test image
87e379d5b Fix word missing in Container Tools Guide
57f370d9d Makefile: Use $(MAKE) to start sub-makes in install.tools
3223610ff imagebuildah: pull cache from remote repo after adding content summary
f9693d0a5 Makefile: Fix install on FreeBSD
835668715 Ensure the cache volume locks are unlocked on all paths
0d7414703 Vendor in latest containers/(common,storage)
60382209e Simplify the interface of GetCacheMount and getCacheMount
8f955f801 Fix cache locks with multiple mounts
bdd62ef87 Remove calls to Lockfile.Locked()
cfa10d16c Maintain cache mount locks as lock objects instead of paths
ffb2f27a8 test: cleaning cache must not clean lockfiles
6838cbc81 run: honor lockfiles for multiple --mount instruction
f2e0af5c4 mount,cache: lockfiles must not be part of users cache content
6fa774ddc Update vendor containers/(common,image,storage)
bdb549478 [CI:BUILD] copr: buildah rpm should depend on containers-common-extra
eb9f3648b pr-should-include-tests: allow specfile, golangci
da214d6d4 build(deps): bump dawidd6/action-send-mail from 3.7.0 to 3.7.1
5baed90cd build(deps): bump github.com/docker/docker
82431441a build(deps): bump github.com/fsouza/go-dockerclient from 1.8.3 to 1.9.0
9226bd312 Update vendor containers/(common,image,storage)
26a29674a build(deps): bump actions/upload-artifact from 2 to 3
cadd801fc build(deps): bump actions/checkout from 2 to 3
8ec69a9ad build(deps): bump actions/stale from 1 to 6
356ab96d7 build(deps): bump dawidd6/action-send-mail from 2.2.2 to 3.7.0
27032ea0f build(deps): bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
5038a0dae sshagent: LockOSThread before setting SocketLabel
4f272ee49 Update tests for error message changes
788fddb1d Update c/image after https://github.com/containers/image/pull/1299
f232da006 Fix ident for dependabot gha block
acc230dc3 build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
dc81652ff Fix man pages to match latest cobra settings
7260a4b0d build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
fba8daf13 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
df8f0fa88 test: retrofit 'bud with undefined build arg directory'
9d43eb95e imagebuildah: warnOnUnsetBuildArgs while processing stages from executor
1a2af6864 Update contrib/buildahimage/Containerfile
e1c7a5df1 Cirrus CI add flavor parameter
b5c86a8e0 Correction - `FLAVOR` not `FLAVOUR`
f5fc96e79 Changed build argument from `RELEASE` to `FLAVOUR`
36afa3530 Combine buildahimage Containerfiles
472c46f98 bud.bats refactoring: $TEST_SCRATCH_DIR, part 2 of 2
ca65736da bud.bats refactoring: $TEST_SCRATCH_DIR, part 1 of 2
2adbe2a58 System test cleanup: document, clarify, fix
bf0a6e073 test: removing unneeded/expensive COPY
94ea37767 test: warning behaviour for unset/set TARGETOS,TARGETARCH,TARGETPLATFORM
eae3415b1 Bump to v1.28.1-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
2b845f961d |
container-host-config: extend to native and nativesdk
skopeo rdepends on it, and skopeo has been extended to native and nativesdk, so container-host-config needs also be extended. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
a1bb5d0ab0 |
container-host-config: provide /etc/containers/policy.json
The /etc/containers/policy.json[1] file is used to specify verification policy. For now, we can see it's used by both cri-o and skopeo. To avoid conflict, we use container-host-config to provide this file and make both skopeo and cri-o depend on it. [1] https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
9a78db8a91 |
docker-*: prevent -march being exported in arm builds
* don't export CGO_CFLAGS/CGO_CXXFLAGS like the previous version didn't before: https://git.yoctoproject.org/meta-virtualization/commit/?id=aceed7bf95cc8a42c8f470d8edf3c6f03d49da00 * both docker-moby and docker-ce have the same issue as shown with qemuarm build: docker-moby: http://errors.yoctoproject.org/Errors/Details/690021/ docker-ce: http://errors.yoctoproject.org/Errors/Details/690020/ Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
e43d530e99 |
cri-o: update crio.conf to match the current version
The old crio.conf file can cause cri-o start failure. The error message is as below. validating runtime config: runtime validation: failed to \ translate monitor fields for runtime runc: cgroupfs manager \ conmon cgroup should be 'pod' or empty Use new crio.conf file to solve this issue. The file is generated by 'crio --config="" config --default' command, as indicated in the old crio.conf file. With this config file update, the crio.service can now start correctly. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
3a8e830db2 |
cri-o: create /var/lib/crio
crio.service now reports the following error messages:
level=error msg="Writing clean shutdown supported file: \
open /var/lib/crio/clean.shutdown.supported: no such file or directory"
level=error msg="Failed to sync parent directory of clean \
shutdown file: open /var/lib/crio: no such file or directory"
Create /var/lib/crio to avoid such error message.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
253cf1d572 |
cri-o: use PACKAGECONFIG to handle selinux
For cri-o, libselinux is optional, this can be seen from its Makefile. So let's make selinux optional by using PACKAGECONFIG, whose default value is determined by the DISTRO_FEATURES. In this way, meta-selinux dependency is not necessary. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
08fb12bbcc |
cri-o: remove meta-security check
libseccomp is not in oe-core. There's no need to check meta-security any more. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
82698d9234 |
skopeo: use container-host bbclass to provide configuration
Instead of providing storage and registries configuration files in this package, we inherit container-host which will provide a common definition of these configs. This allows multiple packages to ensure that the configuration files are present, and not conflict in their installation. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a0baf4ed45 |
containers: add container-host-config recipe
This is a configuration only recipe that produces a package which installs some common configuration files. In this introduction we have both registries.conf and storage.conf. Packages that require these files should RDEPEND on this package (or inherit container-host.bbclass) and the files will be installed. If conflicting requirements for these global configuration files arise, they can be resolved through additions to this recipe, or by providing a higher priority version of the .conf files. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
10b92dc1a5 |
cri-o: update to 1.25.2
Bumping cri-o to version v1.25.2-11-g1a6bb9c9b, which comprises the following commits:
32d1cb665 mocks: update with new c/storage mocks
fb2753ee2 bump c/storage to fix map leak
3a9449924 Make storage unmount less strict
63f413530 Inject release-notes branch from GitHub actions
7037d1568 ResourceStore: delete entries after they're used
dfff7e6b4 ci-verify: Run get-scripts only on main branch
51d3621c2 Fix GitHub actions CI
aba30569c version: bump to 1.25.2
2845bb5f5 Update c/storage to v1.44.0
c431b53ca Use containerd v1.7.0-beta.0
36c4d1bc2 Bump conmon-rs to v0.4.0
dc9a6b1a8 version: bump to 1.25.1
2863b7d6e Fix lint CI on `main`
e7e849359 config: translate monitor fields when printing config
9edf0c5c7 workloads: fix whitespace
bea0f973d template: fix whitespace and comments in runtimes table
aa329a1e3 Update config README
556d85231 Allow complete Runtimes config to change
9dc1a70b4 Add basic integration tests for runtime reload
7fcef1dbd Add notes on runtime reload support to documentation
d51a01ad3 Reload runtime configs on reload
f06c01231 Invert conditional check in ValidateDefaultRuntime
7ef8fac1a Move default runtime validation to its own function
23081649b config: do not remove runc if different default runtime
b6b835512 use AddInheritableCapabilities
4e4749a27 config: add field AddInheritableCapabilities
24feb7778 server: return already created ID for duplicated requests
e2cce29fc resourcestore: add test for stages
7e7a8d923 server: update stages according to progress with resource creation
b15581620 resource store: return stage when a watcher is requested
398964d9e resource store: introduce stages
706f920f9 cli: fix some inconsistencies in the help text
ebc644a68 Update runc to v1.1.4
a05ddfb4a Fix lint CI
f253c4b7c test: add checkpoint/restore tests
b033570b3 test: do not hard code CNI location
15ec8f36c Provide support for checkpoint and restore
f06e5c8d5 vendor: bump conmon-rs to latest main
7076f72ab oci: add --systemd-cgroup to all runtime commands
f09c1d31b oci: refactor runtime command handling
08ce6edce oci: take ExecCmd
4f5ca801b Update golangci-lint, config and timeout
db3b399a8 server: add container GID to additional groups
b3f970d0f build(deps): bump google.golang.org/grpc from 1.48.0 to 1.49.0
f68121a5b build(deps): bump github.com/containers/kubensmnt from 1.1.3 to 1.2.0
cd90ce156 Bump Kubernetes to v1.25.0
3ba908fdd build(deps): bump github.com/containers/kubensmnt from 1.1.2 to 1.1.3
b241c32d8 Adding annotations for image and sandbox name.
9ef68e8e7 Fix bundle e2e tests
45966c89c build(deps): bump github.com/container-orchestrated-devices/container-device-interface
4b6936f8f bump cri-api to k8s 1.25 rc0
e27f28868 build(deps): bump github.com/urfave/cli/v2 from 2.11.1 to 2.11.2
1ecd63643 build(deps): bump github.com/containers/podman/v4
10069a178 build(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.8
4b10ed79f build(deps): bump github.com/prometheus/client_golang
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
20fde9bbee |
skopeo: update to 1.11.0
We drop a patch that is now part of the release.
Bumping skopeo to version v1.11.0-39-g95680f3c, which comprises the following commits:
643a2359 Update c/image after https://github.com/containers/image/pull/1816
2c6e15b5 Run codespell on codebase
df708d16 [CI:DOCS] Disable dependabot
2acac8a6 Update module golang.org/x/term to v0.5.0
f9e2c676 Update golang.org/x/exp digest to 46f607a
47c7902e Remove unnecessary blank lines
c1a57ca1 Pre-allocate an array
2a7b1327 Simplify a condition
e7ab33e6 Rename a variable to avoid an underscore
e90c381a Add missing comment punctuation
70c06b4a Fix, or remove, comments using lint syntax
9137ac56 Simplify an increment
efc6e837 Reformat import statements
a8b9e4e3 Use %w when wrapping errors
99215e40 Remove a duplicate word
afa031e8 Use net/netip.Addr instead of net.IP
891ba3d4 s/interface{}/any/g
f2b3a9c0 Use golang.org/x/exp
f1a6d427 Use strings.Cut
22955d05 go mod tidy -go=1.18
007f01c6 [CI:BUILD] enable debuginfo for el8 copr builds
036bf598 [CI:BUILD] copr: fix el8 build and enable debuginfo
f9406bb0 Cirrus: Use human-readable CI VM Images
b41b85ab Update module gopkg.in/yaml.v2 to v3
d2fbec35 Add unit tests for tlsVerifyConfig's yaml.Unmarshaler
9e24a195 [CI:DOCS] Fix up language in README
cc958d3e Move to v1.11.1-dev
9d036f30 Bump to v1.11.0
83bcd136 [CI:DOCS] Format manual page documents
afbdaf8e Update module github.com/containers/common to v0.51.0
c9114248 Update module github.com/containers/image/v5 to v5.24.0
0fad1193 Add (skopeo generate-sigstore-key)
48b9d94c Update c/image after https://github.com/containers/image/pull/1810
80e3fd10 Touch up conscious language issues
9f04dfde Partially fix removal of temporary data in (make test-system)
36c480f6 Don't affect $XDG_RUNTIME_DIR of Podman starting the registry
850bc49d Update module github.com/containers/storage to v1.45.3
a98c1372 Fix storage.conf setup in test-system
19815502 Fix (test-integration), in a container without CI
67a8bef6 Cirrus: Fix c/image CI testing
63da8390 Bump github.com/containers/ocicrypt from 1.1.6 to 1.1.7
1fac61ef Cirrus: Add a common intra-test reset function
292962d3 Fix unnecessary use of podman in CI test
e239f32a Cirrus: Update to F37 CI VM Images
ee804858 Cirrus: Remove redundant package install attempt
0698e82b fix(deps): update module github.com/containers/storage to v1.45.1
bb1ac893 Add support for Fulcio and Rekor, and --sign-by-sigstore=param-file
03b5bdec Update c/image after https://github.com/containers/image/pull/1787
1133a2a3 fix(deps): update module github.com/containers/storage to v1.45.0
d0cf39d8 Cirrus: Skip OSX CI on release-branches
f17eafe8 Correctly use the stdout parameter in some places
58bccf38 fix(deps): update module golang.org/x/term to v0.4.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13ad8548de |
runc-docker: update to 1.1.0-tip
Bumping runc to version v1.1.4-20-gc6781d10, which comprises the following commits:
f6e2cd3b nsexec: Check for errors in write_log()
9233b3d0 tests/int: test for /dev/null owner regression
fa722c1d libcontainer: skip chown of /dev/null caused by fd redirection
53ceeeab Explicitly pin busybox and debian downloads
3b6625c6 tests/integration/get-images.sh: fix busybox.tar.xz URL
b8ebeece tests: replace local hello world bundle with busybox bundle
e9f8fd32 [1.1] Vagrantfile.fedora: upgrade Fedora to 37
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
969daee49f |
runc-opencontainers: update to 1.1.0-tip
Bumping runc to version v1.1.4-20-gc6781d10, which comprises the following commits:
f6e2cd3b nsexec: Check for errors in write_log()
9233b3d0 tests/int: test for /dev/null owner regression
fa722c1d libcontainer: skip chown of /dev/null caused by fd redirection
53ceeeab Explicitly pin busybox and debian downloads
3b6625c6 tests/integration/get-images.sh: fix busybox.tar.xz URL
b8ebeece tests: replace local hello world bundle with busybox bundle
e9f8fd32 [1.1] Vagrantfile.fedora: upgrade Fedora to 37
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
fe564b3221 |
podman-tui: update to v0.7.0-tip
Bumping podman-tui to version v0.7.0-68-g907b4d6, which comprises the following commits:
80431f0 Bump golang.org/x/crypto from 0.5.0 to 0.6.0
dc402ba Bump github.com/docker/docker
1fb79aa Bump github.com/rs/zerolog from 1.28.0 to 1.29.0
b1fe3c4 Bump github.com/containerd/containerd from 1.6.8 to 1.6.12
197f356 Bump github.com/sylabs/sif/v2 from 2.8.0 to 2.8.1
7f43ecc Bump github.com/docker/docker
1fdbb8d Bump golang.org/x/crypto from 0.4.0 to 0.5.0
6941d4b Bump github.com/navidys/tvxwidgets from 0.2.0 to 0.3.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ca33915151 |
podman: update to 4.4
We adjust FILES to pickup new systemd utilities, but otherwise the
recipe is unchanged.
Bumping libpod to version v4.4.1-6-g73f52c051, which comprises the following commits:
84521f52d Update to c/image 5.24.1
8e5eb9a79 events + container inspect test: RHEL fixes
65c412383 Bump to v4.4.2-dev
34e8f3933 Bump to v4.4.1
7431f3d00 Update release notes for Podman 4.4.1
68a58c9a1 kube play: do not teardown unconditionally on error
a1cc3733b Resolve symlink path for qemu directory if possible
c3d781de0 events: document journald identifiers
52ae4a2c4 Quadlet: exit 0 when there are no files to process
1ee04fcc7 Cleanup podman-systemd.unit file
f3ea36100 Install podman-systemd.unit man page, make quadlet discoverable
2b7ea6442 Add missing return after errors
1d76a166c oci: bind mount /sys with --userns=(auto|pod:)
20d31a0a6 docs: specify order preference for FROM
590186e0d Cirrus: Fix & remove GraphQL API tests
7407ccdc3 test: adapt test to work on cgroupv1
c2971a66a make hack/markdown-preprocess parallel-safe
322802e40 Fix default handling of pids-limit
6ce1a11b7 system tests: fix volume exec/noexec test
e2a40dfa2 Bump to v4.4.1-dev
3443f453e Bump to v4.4.0
f42972714 Final release notes for v4.4.0
c927ad03b Emergency fix for RHEL8 gating tests
ef4e7b8c7 Do not mount /dev/tty into rootless containers
bbaa54258 Fixes port collision issue on use of --publish-all
c3566cda4 Fix usage of absolute windows paths with --image-path
9eb960707 fix #17244: use /etc/timezone where `timedatectl` is missing on Linux
5c94568e9 podman-events: document verbose create events
45b00b648 Making gvproxy.exe optional for building Windows installer
63f964c08 Add gvproxy to Windows packages
579c5dc80 Match VT device paths to be blocked from mounting exactly
605079dc8 Clean up more language for inclusiveness
f4bf448d8 Set runAsNonRoot=true in gen kube
45b9e17d7 quadlet: Add device support for .volume files
92bae973c fix: running check error when podman is default in wsl
edb7779cd fix: don't output "ago" when container is currently up and running
6870dae23 journald: podman logs only show logs for current user
cd4590908 journald: podman events only show events for current user
097ca6056 Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml)
916ea3e5d DB: make loading container states optional
de84be54e ps: do not sync container
3a65466ba Allow --device-cgroup-rule to be passed in by docker API
36875c265 [v4.4] Bump to Buildah v1.29.0
8ff381f45 Bump to v4.4.0-dev
dc3dfce94 Bump to v4.4.0-RC3
425da01d4 Create release notes for v4.4.0
300904a84 Cirrus: Update operating branch
9904fbed3 fix APIv2 python attach test flake
9d1c153cf ps: query health check in batch mode
fda62b2d8 make example volume import, not import volume
623ad2a63 Correct output when inspecting containers created with --ipc
2db468204 Vendor containers/(storage, image, common, buildah)
c4aae9b47 Get correct username in pod when using --userns=keep-id
6f519c9bd ps: get network data in batch mode
795708f8b build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
4ed46c984 add hack/perf for comparing two container engines
b7ab889a7 systems: retrofit dns options test to honor other search domains
5925fe1a5 ps: do not create copy of container config
e2c44c3d4 libpod: set search domain independently of nameservers
06241077c libpod,netavark: correctly populate /etc/resolv.conf with custom dns server
366e1686a podman: relay custom DNS servers to network stack
2b650e37c (fix) mount_program is in storage.options.overlay
b29313811 Change example target to default in doc
86699954b network create: do not allow `default` as name
3ae84fe0a kube-play: add support for HostPID in podSpec
d0794ab9e build(deps): bump github.com/docker/docker
ca91cf416 Let's see if #14653 is fixed or not
8f7886515 Add support for podman build --group-add
f65d79f4c vendor in latests containers/(storage, common, build, image)
7be8ff564 unskip network update test
b5bfc2654 do not install swagger by default
2ad938ec6 pasta: skip "Local forwarder, IPv4" test
3db8ef37d add testbindings Makefile target
5ad72a234 update CI images to include pasta
f07aa2add [CI:DOCS] Add CNI deprecation notices to documentation
07d297ca3 Cirrus: preserve podman-server logs
4faa139b7 waitPidStop: reduce sleep time to 10ms
fd42c1dcb StopContainer: return if cleanup process changed state
e0f671007 StopSignal: add a comment
ac47d0719 StopContainer: small refactor
e8b35a8c2 waitPidStop: simplify code
51836aa47 e2e tests: reenable long-skipped build test
36510f60d Add openssh-clients to podmanimage
0bd51f6c8 Reworks Windows smoke test to tunnel through interactive session.
b5a6f3f91 fix bud-multiple-platform-with-base-as-default-arg flake
ef3f09879 Remove ReservedAnnotations from kube generate specification
6d3858b21 e2e: update test/README.md
17b5bd758 e2e: use isRootless() instead of rootless.IsRootless()
bfc5f07d9 Cleanup documentation on --userns=auto
120d16b61 Bump to v4.4.0-dev
24cc02a64 Bump to v4.4.0-rc2
ddf8e4989 Vendor in latest c/common
dc2bd0857 sig-proxy system test: bump timeout
193b2a836 build(deps): bump github.com/containernetworking/plugins
a581d2a04 rootless: rename auth-scripts to preexec-hooks
bdf100179 Docs: version-check updates
79865c290 commit: use libimage code to parse changes
bdc323cbf [CI:DOCS] Remove experimental mac tutorial
8db2b4b73 man: Document the interaction between --systemd and --privileged
70057c8b4 Make rootless privileged containers share the same tty devices as rootfull ones
067442b57 container kill: handle stopped/exited container
a218960bc Vendor in latest containers/(image,ocicrypt)
6f919af78 add a comment to container removal
5ac5aaa72 Vendor in latest containers/storage
daf747f16 Cirrus: Run machine tests on PR merge
4bb69abd5 fix flake in kube system test
9a206fdc9 kube play: complete container spec
a02a10f3f E2E Tests: Use inspect instead of actual data to avoid UDP flake
c2b36beb4 Use containers/storage/pkg/regexp in place of regexp
c433982d1 Vendor in latest containers/storage
11835d5d0 Cirrus: Support using updated/latest NV/AV in PRs
d9bf3f129 Limit replica count to 1 when deploying from kubernetes YAML
1ab833fb7 Set StoppedByUser earlier in the process of stopping
6ab883448 podman-play system test: refactor
470b68077 Bump to v4.4.0-dev
d8774a93c Bump to v4.4.0-RC1
882cd17f8 network: add support for podman network update and --network-dns-server
d2fb6cf05 service container: less verbose error logs
b10a906b5 Quadlet Kube - add support for PublishPort key
ad12d61c6 e2e: fix systemd_activate_test
758f20e20 Compile regex on demand not in init
3e2b9a28d [docker compat] Don't overwrite the NetworkMode if containers.conf overrides netns.
5b1bdf949 E2E Test: Play Kube set deadline to connection to avoid hangs
f4c81b0aa Only prevent VTs to be mounted inside privileged systemd containers
a5ce3b3cd e2e: fix play_kube_test
81a3f7cb8 Updated error message for supported VolumeSource types
2bf94b764 Introduce pkg retry logic in win installer task
db0323639 logformatter: include base SHA, with history link
37ade6be1 Network tests: ping redhat.com, not podman.io
2d8225cd4 cobra: move engine shutdown to Execute
35d2f61ec Updated options for QEMU on Windows hosts
28f13a74b Update Mac installer to use gvproxy v0.5.0
4cf06fe7e podman: podman rm -f doesn't leave processes
494db3e16 oci: check for valid PID before kill(pid, 0)
cf364703f linux: add /sys/fs/cgroup if /sys is a bind mount
1bd3d32c5 Quadlet: Add support for ConfigMap key in Kube section
4a7a45f97 remove service container _after_ pods
07cc49efd Kube Play - allow setting and overriding published host ports
9fe86ec7f oci: terminate all container processes on cleanup
6dd1d48fd Update win-sshproxy to 0.5.0 gvisor tag
e332b6246 Vendor in latest containers/common
92cdad031 Fix a potential defer logic error around locking
a7f53932a logformatter: nicer formatting for bats failures
ee3380e6b logformatter: refactor verbose line-print
e82045f73 e2e tests: stop using UBI images
6038200fe k8s-file: podman logs --until --follow exit after time
767947ab8 journald: podman logs --until --follow exit after time
c674b3dd8 journald: seek to time when --since is used
5f032256d podman logs: journald fix --since and --follow
7826e1ced Preprocess files in UTF-8 mode
4587e7fdb Bump golang.org/x/tools from 0.4.0 to 0.5.0 in /test/tools
eea78ec7b Vendor in latest containers/(common, image, storage)
54afda22b Switch to C based msi hooks for win installer
710eeb340 hack/bats: improve usage message
d7ac11005 hack/bats: add --remote option
1a2e54ce6 hack/bats: fix root/rootless logic
d0c89e90b Describe copy volume options
bfdffb5b6 Support sig-proxy for podman-remote attach and start
6886e80b4 libpod: fix race condition rm'ing stopping containers
fb73121c4 e2e: fix run_volume_test
86965f758 Add support for Windows ARM64
f9e8e8cfd Add shared --compress to man pages
df02cb51e Add container error message to ContainerState
d92bfd244 Man page checker: require canonical name in SEE ALSO
2a16e0484 system df: improve json output code
03c7f47aa kube play: fix the error logic with --quiet
9f0a37cd4 System tests: quadlet network test
e47964417 Fix: List container with volume filter
cd3492304 adding -dryrun flag
347d5372e Quadlet Container: Add support for EnvironmentFile and EnvironmentHost
68fbebfac Kube Play: use passthrough as the default log-driver if service-container is set
635c00840 System tests: add missing cleanup
8e77f4c99 System tests: fix unquoted question marks
16b595c32 Build and use a newer systemd image
a061d793d Quadlet Network - Fix the name of the required network service
3ebb822e2 System Test Quadlet - Volume dependency test did not test the dependency
a741299ef fix `podman system connection - tcp` flake
1d3fd5383 vendor: bump c/storage to a747b27
598b93722 Fix instructions about setting storage driver on command-line
18b21b89c Test README - point users to hack/bats
2000c4c80 System test: quadlet kube basic test
479052afa Fixed `podman update --pids-limit`
553df8748 podman-remote,bindings: trim context path correctly when its emptydir
9f5f092f1 Quadlet Doc: Add section for .kube files
200f86ede e2e: fix containers_conf_test
0c94f6185 Allow '/' to prefix container names to match Docker
0c6805880 Remove references to qcow2
1635db474 Fix typos in man page regarding transient storage mode.
85ceb7fb5 make: Use PYTHON var for .install.pre-commit
338b28393 Add containers.conf read-only flag support
d27ebf2ee Explain that relabeling/chowning of volumes can take along time
45b180c1f events: support "die" filter
1e84e1a8d infra/abi: refactor ContainerRm
3808067ff When in transient store mode, use rundir for bundlepath
0179aa245 quadlet: Support Type=oneshot container files
236f0cc50 hacks/bats: keep QUADLET env var in test env
97f9d625a New system tests for conflicting options
bfec23c36 Vendor in latest containers/(buildah, image, common)
24b1e81c5 Output Size and Reclaimable in human form for json output
4724fa307 podman service: close duplicated /dev/null fd
8e05caef6 ginkgo tests: apply ginkgolinter fixes
3e48d74c8 Add support for hostPath and configMap subpath usage
3ac5d1009 export: use io.Writer instead of file
1bac16096 rootless: always create userns with euid != 0
90719d38f rootless: inhibit copy mapping for euid != 0
02555d166 pkg/domain/infra/abi: introduce `type containerWrapper`
987c8e3a7 vendor: bump to buildah ca578b290144 and use new cache API
0cf36684c quadlet: Handle booleans that have defaults better
dd428af89 quadlet: Rename parser.LookupBoolean to LookupBooleanWithDefault
ddeb9592c Add podman-clean-transient.service service
80de85081 Stop recording annotations set to false
9187df5b2 Unify --noheading and -n to be consistent on all commands
2bbeba70b pkg/domain/infra/abi: add `getContainers`
ae706e61b Update vendor of containters/(common, image)
24ab178fb specfile: Drop user-add depedency from quadlet subpackage.
e9243f904 quadlet: Default BINDIR to /usr/bin if tag not specified
d974a79e2 Quadlet: add network support
070b69205 Add comment for jsonMarshal command
d1496afb5 Always allow pushing from containers-storage
0bc3d3579 libpod: move NetNS into state db instead of extra bucket
80878f20b Add initial system tests for quadlets
20b10574d quadlet: Add --user option
4fa65ad0d libpod: remove CNI word were no longer applicable
1424f0958 libpod: fix header length in http attach with logs
12d058400 podman-kube@ template: use `podman kube`
3868d2d82 build(deps): bump github.com/docker/docker
f4d0496b5 wait: add --ignore option
461726a3f qudlet: Respect $PODMAN env var for podman binary
a4a647c0b e2e: Add assert-key-is-regex check to quadlet e2e testsuite
84f3ad356 e2e: Add some assert to quadlet test to make sure testcases are sane
97f63da67 remove unmapped ports from inspect port bindings
fa4b34618 update podman-network-create for clarity
3718ac8e9 Vendor in latest containers/common with default capabilities
f0a8c0bd9 pkg/rootless: Change error text ...
290019c48 rootless: add cli validator
71f96c2e6 rootless: define LIBEXECPODMAN
14ee8faff doc: fix documentation for idmapped mounts
dcbf7b448 bump golangci-lint to v1.50.1
b1bb84637 build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.24.2
89939dea9 [CI:DOCS] podman-mount: s/umount/unmount/
46b7d8d1e create/pull --help: list pull policies
bddd3f5b5 Network Create: Add --ignore flag to support idempotent script
866426a93 Make qemu security model none
fdcc2257d libpod: use OCI idmappings for mounts
4a5581ce0 stop reporting errors removing containers that don't exist
80405a2a5 test: added test from wait endpoint with to long label
fd92a6807 quadlet: Default VolatileTmp to off
b4d90b2eb build(deps): bump github.com/ulikunitz/xz from 0.5.10 to 0.5.11
f155a4e78 docs/options/ipc: fix list syntax
b3c7c1872 Docs: Add dedicated DOWNLOAD doc w/ links to bins
f825481a4 Make a consistently-named windows installer
45a40bf58 checkpoint restore: fix --ignore-static-ip/mac
95cc7e052 add support for subpath in play kube for named volumes
364ed81b4 build(deps): bump golang.org/x/net from 0.2.0 to 0.4.0
59118b42b golangci-lint: remove three deprecated linters
08741496d parse-localbenchmarks: separate standard deviation
bf66b6ac7 build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
7bd1dbb75 podman play kube support container startup probe
43e307b84 Add podman buildx version support
7c6873b23 Cirrus: Collect benchmarks on machine instances
b361a42e6 Cirrus: Remove escape codes from log files
59ce7cf1c [CI:DOCS] Clarify secret target behavior
fe3d3256e Fix typo on network docs
9f6cf50d5 podman-remote build add --volume support
2dde30b93 remote: allow --http-proxy for remote clients
2f29639bd Cleanup kube play workloads if error happens
1ed982753 health check: ignore dependencies of transient systemd units/timers
04ea8eade fix: event read from syslog
db4d01871 Fixes secret (un)marshaling for kube play.
7665bbc12 Remove 'you' from man pages
1bfaf5194 build(deps): bump golang.org/x/tools from 0.3.0 to 0.4.0 in /test/tools
97c56eef6 [CI:DOCS] test/README.md: run tests with podman-remote
8b87665f2 e2e: keeps the http_proxy value
9b702460e Makefile: Add podman-mac-helper to darwin client zip
c7b936a41 test/e2e: enable "podman run with ipam none driver" for nv
45f8b1ca9 [skip-ci] GHA/Cirrus-cron: Fix execution order
4fa307f14 kube sdnotify: run proxies for the lifespan of the service
7d16c2b69 Update containers common package
75f421571 podman manpage: Use man-page links instead of file names
86f4bd4f5 e2e: fix e2e tests in proxy environment
4134a3723 Fix test
28774f18c disable healthchecks automatically on non systemd systems
1ea00ebda Quadlet Kube: Add support for userns flag
07a386835 [CI:DOCS] Add warning about --opts,o with mount's -o
93d2ec148 Add podman system prune --external
f1dbfda80 Add some tests for transient store
e74b3f24e runtime: In transient_store mode, move bolt_state.db to rundir
25d9af8f4 runtime: Handle the transient store options
56115d5e5 libpod: Move the creation of TmpDir to an earlier time
c9961e18c network create: support "-o parent=XXX" for ipvlan
2f5025a2d compat API: allow MacAddress on container config
a55413c80 Quadlet Kube: Add support for relative path for YAML file
8c3af7186 notify k8s system test: move sending message into exec
a651cdfbc runtime: do not chown idmapped volumes
f3c5b0f9d quadlet: Drop ExecStartPre=rm %t/%N.cid
d61618ad4 Quadlet Kube: Set SyslogIdentifier if was not set
eaab4b99a Add a FreeBSD cross build to the cirrus alt build task
39b6ccb38 Add completion for --init-ctr
af86b4f62 Fix handling of readonly containers when defined in kube.yaml
98a1b551f Build cross-compilation fixes
6ed8dc17c libpod: Track healthcheck API changes in healthcheck_unsupported.go
16cf34dc3 quadlet: Use same default capability set as podman run
b34ab8b5f quadlet: Drop --pull=never
098ad52ec quadlet: Change default of ReadOnly to no
1c3fddfaf quadlet: Change RunInit default to no
d19ea6a60 quadlet: Change NoNewPrivileges default to false
a93a390b8 test: podman run with checkpoint image
f4401567c Enable 'podman run' for checkpoint images
3a362462c test: Add tests for checkpoint images
bdd5f8245 CI setup: simplify environment passthrough code
10e020c65 Init containers should not be restarted
c83efd0f0 Update c/storage after https://github.com/containers/storage/pull/1436
486790f61 Set the latest release explicitly
d19e1526d add friendly comment
1d84f0adb fix an overriding logic and load config problem
2b6cf1d07 Update the issue templates
2862ecf28 Update vendor of containers/(image, buildah)
1c1a8d33f [CI:DOCS] Skip windows-smoke when not useful
190bab553 [CI:DOCS] Remove broken gate-container docs
bb10095ec OWNERS: add Jason T. Greene
68d41c68d hack/podmansnoop: print arguments
009f5ec67 Improve atomicity of VM state persistence on Windows
052174891 [CI:BUILD] copr: enable podman-restart.service on rpm installation
54ef7f98d macos: pkg: Use -arm64 suffix instead of -aarch64
fe548dd0b linux: Add -linux suffix to podman-remote-static binaries
d22395007 linux: Build amd64 and arm64 podman-remote-static binaries
71f92d263 container create: add inspect data to event
d2ac99d65 Allow manual override of install location
f17479c71 Run codespell on code
cb96eac45 Add missing parameters for checkpoint/restore endpoint
d16129330 Add support for startup healthchecks
2df0d9da9 Add information on metrics to the `network create` docs
96c208efb Introduce podman machine os commands
32d80378e Document that ignoreRootFS depends on export/import
1d031bf3b Document ignoreVolumes in checkpoint/restore endpoint
279a4ac77 Remove leaveRunning from swagger restore endpoint
07940764c libpod: Add checks to avoid nil pointer dereference if network setup fails
dce7b3a5b Address golangci-lint issues
3eeb50d48 Bump golang version to 1.18
fbbef79c8 Documenting Hyper-V QEMU acceleration settings
9a6b70155 Kube Play: fix the handling of the optional field of SecretVolumeSource
35b46a420 Update Vendor of containers/(common, image, buildah)
75f6a1d59 Fix swapped NetInput/-Output stats
f06869168 libpod: Use O_CLOEXEC for descriptors returned by (*Container).openDirectory
fad50a9f2 chore: Fix MD for Troubleshooting Guide link in GitHub Issue Template
64a450c51 test/tools: rebuild when files are changed
2ddf1c5cb ginkgo tests: apply ginkgolinter fixes
c7827957a ginkgo: restructure install work flow
ce7d4bbc7 Fix manpage emphasis
5d26628df specgen: support CDI devices from containers.conf
7eb11e7bb vendor: update containers/common
6502b1faa pkg/trust: Take the default policy path from c/common/pkg/config
ba522e8f3 Add validate-in-container target
3bb9ed4f0 Adding encryption decryption feature
e2fa94e8a container restart: clean up healthcheck state
a4ba5f449 Add support for podman-remote manifest annotate
3084ed468 Quadlet: Add support for .kube files
fb429dbe3 Update vendor of containers/(buildah, common, storage, image)
a891199b9 specgen: honor user namespace value
a575111ad [CI:DOCS] Migrate OSX Cross to M1
285d6c9ba quadlet: Rework uid/gid remapping
f5a43eea2 GHA: Fix cirrus re-run workflow for other repos.
50d72bc63 ssh system test: skip until it becomes a test
e7eed5aa9 shell completion: fix hard coded network drivers
504fcbbf9 libpod: Report network setup errors properly on FreeBSD
dd4d212b0 E2E Tests: change the registry for the search test to avoid authentication
1498f924b pkginstaller: install podman-mac-helper by default
a1b32866c Fix language. Mostly spelling a -> an
caa2dfe01 podman machine: Propagate SSL_CERT_FILE and SSL_CERT_DIR to systemd environment.
72966a32c [CI:DOCS] Fix spelling and typos
ae8a5a892 Modify man page of "--pids-limit" option to correct a default value.
f950b1511 Update docs/source/markdown/podman-remote.1.md
a9094a78a Update pkg/bindings/connection.go
b6850e772 Add more documentation on UID/GID Mappings with --userns=keep-id
0d270ae38 support podman-remote to connect tcpURL with proxy
607cd39e1 Removing the RawInput from the API output
14ef6a91b fix port issues for CONTAINER_HOST
34020b353 CI: Package versions: run in the 'main' step
db34c913b build(deps): bump github.com/rootless-containers/rootlesskit
4c1294ccb pkg/domain: Make checkExecPreserveFDs platform-specific
58869dcc3 e2e tests: fix restart race
7c1ad8a58 Fix podman --noout to suppress all output
9610d4c7b remove pod if creation has failed
f36b3bc81 pkg/rootless: Implement rootless.IsFdInherited on FreeBSD
21f6902ec Fix more podman-logs flakes
1a839a96d healthcheck system tests: try to fix flake
36f8dfaa0 libpod: treat ESRCH from /proc/PID/cgroup as ENOENT
021a23b34 GHA: Configure workflows for reuse
c7073b5fc compat,build: handle docker's preconfigured cacheTo,cacheFrom
dceaa7603 docs: deprecate pasta network name
a9852aa8f utils: Enable cgroup utils for FreeBSD
e5f7fbcbe pkg/specgen: Disable kube play tests on FreeBSD
978c52850 libpod/lock: Fix build and tests for SHM locks on FreeBSD
3371c9d25 podman cp: fix copying with "." suffix
f0dba82bb pkginstaller: bump Qemu to version 7.1.0
f6da2b060 specgen,wasm: switch to crun-wasm wherever applicable
2b4068a03 vendor: bump c/common to v0.50.2-0.20221111184705-791b83e1cdf1
1c79b01f6 libpod: Make unit test for statToPercent Linux only
95bb6efff Update vendor of containers/storage
69d737ef1 fix connection usage with containers.conf
dd98e3cc6 Add --quiet and --no-info flags to podman machine start
00b2bc9b6 Add hidden podman manifest inspect -v option
05c48402b Bump github.com/onsi/gomega from 1.24.0 to 1.24.1
836ca6c00 Add podman volume create -d short option for driver
5df00c6f7 Vendor in latest containers/(common,image,storage)
bc77c034f Add podman system events alias to podman events
ae9a2d26d Fix search_test to return correct version of alpine
75fdbea63 Bump golang.org/x/tools from 0.1.12 to 0.3.0 in /test/tools
329b053cf GHA: Fix undefined secret env. var.
d60c27c9d Release notes for 4.3.1
a13a59a70 GHA: Fix make_email-body script reference
f049fef85 Add release keys to README
dca407d46 GHA: Fix typo setting output parameter
fcfb7d292 GHA: Fix typo.
db439dd23 New tool, docs/version-check
c0a9c6ebc Formalize our compare-against-docker mechanism
a2c43d434 Add restart-sec for container service files
4513fde80 test/tools: bump module to go 1.17
440807210 contrib/cirrus/check_go_changes.sh: ignore test/tools/vendor
9f9bf6fb4 Bump github.com/coreos/go-systemd/v22 from 22.4.0 to 22.5.0
a1323d31d Bump golang.org/x/term from 0.1.0 to 0.2.0
8b8ce8d53 Bump golang.org/x/sys from 0.1.0 to 0.2.0
fa2b4aeef Bump github.com/container-orchestrated-devices/container-device-interface
69ed903b2 build(deps): bump golang.org/x/tools from 0.1.12 to 0.2.0 in /test/tools
d95684676 libpod: Add FreeBSD support in packageVersion
d9aceadea Allow podman manigest push --purge|-p as alias for --rm
b5ee4de8c [CI:DOCS] Add performance tutorial
cfa651f80 [CI:DOCS] Fix build targets in build_osx.md.
3e08f8535 fix --format {{json .}} output to match docker
f807b6784 remote: fix manifest add --annotation
314cba259 Skip test if `--events-backend` is necessary with podman-remote
1c8196a9a kube play: update the handling of PersistentVolumeClaim
616fca9ff system tests: fix a system test in proxy environment
85ae935af Use single unqualified search registry on Windows
cb8c9af5d test/system: Add, use tcp_port_probe() to check for listeners rather than binds
348c3f283 test/system: Add tests for pasta(1) connectivity
b3cf83684 test/system: Move network-related helpers to helpers.network.bash
ea4f168b3 test/system: Use procfs to find bound ports, with optional address and protocol
7e3d04fbc test/system: Use port_is_free() from wait_for_port()
aa47e05ae libpod: Add pasta networking mode
6dd508b8e More log-flake work
3ebcfdbbc Fix test flakes caused by improper podman-logs
919678d2f fix incorrect systemd booted check
0334d8d61 Cirrus: Add tests for GHA scripts
66d857cdd GHA: Update scripts to pass shellcheck
d17b7d852 Cirrus: Shellcheck github-action scripts
2ee40287e Cirrus: shellcheck support for github-action scripts
462ce32e6 GHA: Fix cirrus-cron scripts
d5031946a Makefile: don't install to tmpfiles.d on FreeBSD
85f4d3717 Make sure we can build and read each line of docker py's api client
cdb00332d Docker compat build api - make sure only one line appears per flush
efbad590d Run codespell on code
571833d56 Update vendor of containers/(image, storage, common)
049a5d82f Allow namespace path network option for pods.
f3195c930 Cirrus: Never skip running Windows Cross task
35523d560 GHA: Auto. re-run failed cirrus-cron builds once
3a85d537b GHA: Migrate inline script to file
980d5b362 GHA: Simplify script reference
417490128 test/e2e: do not use apk in builds
3fee351c3 remove container/pod id file along with container/pod
442df2967 Cirrus: Synchronize windows image
274d0f495 Add --insecure,--tls-verify,--verbose flags to podman manifest inspect
cac4919bf runtime: add check for valid pod systemd cgroup
d7e70c748 CI: set and verify DESIRED_NETWORK (netavark, cni)
6ec2bcb68 [CI:DOCS] troubleshooting: document keep-id options
f95ff4f46 Man pages: refactor common options: --security-opt
853072455 Cirrus: Guarantee CNI testing w/o nv/av present
fd9de876f Cirrus: temp. disable all Ubuntu testing
ecd1927b4 Cirrus: Update to F37beta
56fae7dd0 buildah bud tests: better handling of remote
7ec743fe7 quadlet: Warn in generator if using short names
884350d99 Add Windows Smoke Testing
f6c74324b Add podman kube apply command
d1f3dd9e5 docs: offer advice on installing test dependencies
8e55abafd Fix documentation on read-only-tmpfs
b8acdb34c version bump to 4.4.0-dev
b8e03ab44 deps: bump go-criu to v6
fc65d72c3 Makefile: Add cross build targets for freebsd
e23444fbc pkg/machine: Make this build on FreeBSD/arm64
3279342ff pkg/rctl: Remove unused cgo dependency
d76bf4cb5 man pages: assorted underscore fixes
bb78ba19e Upgrade GitHub actions packages from v2 to v3
0d505f20f vendor github.com/godbus/dbus/v5@4b691ce
b20ef9c34 [CI:DOCS] fix --tmpdir typos
9003cdbf6 Do not report that /usr/share/containers/storage.conf has been edited.
71f0c9f33 Eval symlinks on XDG_RUNTIME_DIR
3ad5827b2 hack/podmansnoop
83313c547 rootless: support keep-id with one mapping
5dad34212 rootless: add argument to GetConfiguredMappings
6fe64591d Update vendor containers/(common,storage,buildah,image)
f355900d3 Fix deadlock between 'podman ps' and 'container inspect' commands
59299b519 Add information about where the libpod/boltdb database lives
320ce8c9f Consolidate the dependencies for the IsTerminal() API
871172e6f Ensure that StartAndAttach locks while sending signals
d50a55233 ginkgo testing: fix podman usernamespace join
f0f12658d Test runners: nuke podman from $PATH before tests
3e6637a3b volumes: Fix idmap not working for volumes
237d41f3f FIXME: Temporary workaround for ubi8 CI breakage
11e4c0403 System tests: teardown: clean up volumes
a141c9ac2 update api versions on docs.podman.io
fdc9ca076 system tests: runlabel: use podman-under-test
05bdc7294 system tests: podman network create: use random port
f0ba2d89e sig-proxy test: bump timeout
0ce234425 play kube: Allow the user to import the contents of a tar file into a volume
bac907abf Clarify the docs on DropCapability
33eb45c47 quadlet tests: Disable kmsg logging while testing
b07ba2441 quadlet: Support multiple Network=
8716de2ac quadlet: Add support for Network=...
721922fa7 Fix manpage for podman run --network option
6042ca7fd quadlet: Add support for AddDevice=
f6f65f49d quadlet: Add support for setting seccomp profile
a9f0957c2 quadlet: Allow multiple elements on each Add/DropCaps line
af67f15bc quadlet: Embed the correct binary name in the generated comment
2b0d9cd94 quadlet: Drop the SocketActivated key
d7e248dcf quadlet: Switch log-driver to passthrough
998f834b0 quadlet: Change ReadOnly to default to enabled
0de98b1b6 quadlet tests: Run the tests even for (exected) failed tests
8d41c7d2e quadlet tests: Fix handling of stderr checks
5c3a22e8c Remove unused script file
c4ebe9e2a notifyproxy: fix container watcher
221cfc687 container/pod id file: truncate instead of throwing an error
b7f05cef0 quadlet: Use the new podman create volume --ignore
734c435e0 Add podman volume create --ignore
4966f509b logcollector: include aardvark-dns
6a9c7a580 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
e081d22b0 build(deps): bump github.com/BurntSushi/toml from 1.2.0 to 1.2.1
622638b72 docs: generate systemd: point to kube template
c1de4d3ce docs: kube play: mention restart policy
0572e5972 Fixes: 15858 (podman system reset --force destroy machine)
7a9c14d62 fix search flake
4e29ce2ba use cached containers.conf
6c7ae378c adding regex support to the ancestor ps filter function
e5032a8de Fix `system df` issues with `-f` and `-v`
c9c2f644d markdown-preprocess: cross-reference where opts are used
77f8eaa73 Default qemu flags for Windows amd64
e16800e8b build(deps): bump golang.org/x/text from 0.3.8 to 0.4.0
d70ffdaeb Update main to reflect v4.3.0 release
b8c24bbb4 build(deps): bump github.com/docker/docker
b4374f2bd move quadlet packages into pkg/systemd
34235b272 system df: fix image-size calculations
34ee37b91 Add man page for quadlet
84ed9bd5e Fix small typo
120a77e39 testimage: add iproute2 & socat, for pasta networking
30e66d600 Set up minikube for k8s testing
0a6d8b94c Makefile: don't install systemd generator binaries on FreeBSD
cadb64d32 [CI:BUILD] copr: podman rpm should depend on containers-common-extra
02bb7c2cf Podman image: Set default_sysctls to empty for rootless containers
234b2230e Don't use github.com/docker/distribution
9e6b37ec1 libpod: Add support for 'podman top' on FreeBSD
21081355a libpod: Factor out jail name construction from stats_freebsd.go
b82b27cc4 pkg/util: Add pid information descriptors for FreeBSD
62bb59d3b Initial quadlet version integrated in golang
44bac51fc bump golangci-lint to v1.49.0
01a3245d7 Update vendor containers/(common,image,storage)
75222add5 Allow volume mount dups, iff source and dest dirs
cb2631bf3 rootless: fix return value handling
783b4e914 Change to correct break statements
04c126a3b vendor containers/psgo@v1.8.0
c39b71776 Clarify that MacOSX docs are client specific
51c376c8a libpod: Factor out the call to PidFdOpen from (*Container).WaitForExit
bb2b47dc7 Add swagger install + allow version updates in CI
2a622c8af Cirrus: Fix windows clone race
973710c8b build(deps): bump github.com/docker/docker
b35fab6f1 kill: wait for the container
ba276e117 generate systemd: set --stop-timeout for stopping containers
5113343a5 hack/tree_status.sh: print diff at the end
bab816953 Fix markdown header typo
bd4ee2d57 markdown-preprocess: add generic include mechanism
9cdea7fb3 markdown-preprocess: almost complete OO rewrite
33858c1cf Update tests for changed error messages
05119a917 Update c/image after https://github.com/containers/image/pull/1299
8c7673857 Man pages: refactor common options (misc)
617a2de3a Man pages: Refactor common options: --detach-keys
69815a7f1 vendor containers/storage@main
a584bb4e7 Man pages: refactor common options: --attach
0510dd2f1 build(deps): bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0
1d18dc267 KillContainer: improve error message
5da54e183 docs: add missing options
57ddeffd0 Man pages: refactor common options: --annotation (manifest)
b256f5f58 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
f16e9acc6 system tests: health-on-failure: fix broken logic
7ff8c8f79 build(deps): bump golang.org/x/text from 0.3.7 to 0.3.8
00adeda80 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
d08b4c133 ContainerEngine.SetupRootless(): Avoid calling container.Config()
03c5f9d02 Container filters: Avoid use of ctr.Config()
af38c79e3 Avoid unnecessary calls to Container.Spec()
55191ecc2 Add and use Container.LinuxResource() helper
7b84a3a43 play kube: notifyproxy: listen before starting the pod
2bee2216c play kube: add support for configmap binaryData
1038f063e Add and use libpod/Container.Terminal() helper
b47b48fd0 Revert "Add checkpoint image tests"
f437078d2 Revert "cmd/podman: add support for checkpoint images"
4dd67272e healthcheck: fix --on-failure=stop
d4052c1aa Man pages: Add mention of behavior due to XDG_CONFIG_HOME
b5950a918 build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
c34b5be99 Avoid unnecessary timeout of 250msec when waiting on container shutdown
02040089a health checks: make on-failure action retry aware
5b71070e4 libpod: Remove 100msec delay during shutdown
b4b701139 libpod: Add support for 'podman pod' on FreeBSD
7f8964a78 libpod: Factor out cgroup validation from (*Runtime).NewPod
d71160539 libpod: Move runtime_pod_linux.go to runtime_pod_common.go
c35a70d21 specgen/generate: Avoid a nil dereference in MakePod
e187b9711 libpod: Factor out cgroups handling from (*Pod).refresh
713428df0 Adds a link to OSX docs in CONTRIBUTING.md
f8b659d09 Man pages: refactor common options: --os-version
8b189c0a0 Create full path to a directory when DirectoryOrCreate is used with play kube
d4f622da7 Return error in podman system service if URI scheme is not unix/tcp
51c357841 Man pages: refactor common options: --time
0e4eeb52e man pages: document some --format options: images
e136376d1 Clean up when stopping pods
11e83a095 Update vendor of containers/buildah v1.28.0
1e71d124e Proof of concept: nightly dependency treadmill
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
369749ad29 |
spf13-cobra: switch from master -> main
The upstream repository has switched to a main branch, we update our recipe to match. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
96870b9712 |
meta-virt: sync SRC_URIs between k8s and k3s
k3s is using a lot of SRC_URIs and some of them have corrsponding recipe in meta-virt, which are used by k8s. These components' SRC_URIs are better to be kept in sync, because this avoids two local git repos (Yocto supports fetching locally) which are totally the same. Remove the '.git' suffix from these recipes to sync the SRC_URIs. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0fc6be16c6 |
containerd: update to v1.7.0-beta3
Bumping containerd to version v1.7.0-beta.3-71-gfdfdc9bfc, which comprises the following commits:
fe0116ec2 CI: skip some jobs when `repo != containerd/containerd`
b944b108d Clean up repeated package import
76a62e52a Use http constants instead of string
13652e081 fetch: Use data from descriptor when available.
6ae3e5df6 Fix retry logic within devmapper device deactivation
6adb6a727 Rename release CI job
aed3b0a70 Clean CI file
617c66dcc Add critest.exe in $PATH
757b8f702 keep the uppercase letter for flag info
e5c57f242 update hcsshim tag to v0.10.0-rc.5 and revendor
1f35b0336 Fix sandbox exit monitor
d1cd9757e Generate GRPC for runtime task service
86c238c87 Generate GRPC for runtime sandbox API
99580e0aa Update TTRPC and Protobuild dependencies
b9b44ed5c Removing end of line for last line
dbf384a5a Export remote snapshotter label handler
d6070f8a7 go.mod: github.com/urfave/cli v1.22.12
2f1aad03a cleanup useless IntToInt32Array func
e551d734f pkg/epoch: drop timezone
eeab05242 Make `mount.UnmountRecursive` compatible to `mount.UnmountAll`
58bd5a094 go.mod: update github.com/containerd/nri.
c46aaa8df Add integration test for tracing on image pull
7ec75b120 Update CNI to 1.2.0
306db3e70 go.mod: github.com/containerd/cgroups/v3 v3.0.0
5082fb395 go.mod: go.opentelemetry.io/otel v1.12.0
8886b05dc integration: use sleep inf with busybox:1.36
005d30e84 deflake: TestContainerPids
6de94a4cc log/logtest: add `testcase` as debug field
97ddac539 RELEASES.md: update release status
b36b41552 cri: mkdir /etc/cni with 0755, not 0700
7eb652830 release: Ubuntu 18.04 -> 20.04 (glibc 2.27 -> 2.31)
b473c2922 release: Add "cri-containerd.DEPRECATED.txt" in the deprecated cri-containerd-* bundles
d00655092 Update the EOL date for 1.5 release
336c0cd2c Prepare release notes for v1.7.0-beta.3
77e51e9b0 Adding support to run hcsshim from local clone
27cf7f87d fix(docs): minor fix on the windows installation steps
d21578674 runtime docs: Clarify delete cwd behavior
34d587818 Use mount.Target to specify subdirectory of rootfs mount
21fe0ceaa Move PLEG events for pause container to podsandbox
12359559d reused package errdefs for not supported err
4f39b164f pkg/cri: optimize slice initialization
9f6058d02 pushWriter: correctly propagate errors
361291559 Update vendored files
d845b2a9c go.mod: update goresctrl to v0.3.0
ac72483e8 Fix syntax errors in the document
f9f845533 Backport #7393 to sbserver
0cbfb3375 Backport #7661 to sbserver
41eabf134 Backport #7685 to sbserver
b0d7a9697 Backport unit test from #7882 to sbserver
b1c5c57be Fix Memory Limit test
d1e1a1646 release/Dockerfile: set DEBIAN_FRONTEND=noninteractive
7ddd8add4 CI: remove redundant archs from ci.yml
ffabc8a29 CI: test release.yml on every PR
b9bd10c14 use local variable for rt when iterating collectors
1ade777c2 Add basic spec and mounts for Darwin
66eeee043 Update hcsshim tag to v0.10.0-rc.4
3c8469a78 Use Platform instead of generated API
802c6c5c0 fuzzing: improve archive fuzzer
40be96efa Have separate spec builder for each platform
fdfa3519a Remove unused params from platformSpec
1c1d8fb05 Update OCI spec tests for generic platform
f43d8924e Move most of OCI spec options to common builder
21338d277 Add stub to build common OCI spec
f318e5630 Update sandbox API to return target platform
dd22a3a80 Move WithMounts to specs
0ae0399b1 Make OCI spec opts available on all platforms
5f1a42543 shim: move reap log line to debug
515d68099 shim: enable debug logging for delete
c8f4ab3b0 update to go1.19.5, go1.18.10
9c8c4508e cri: Fix TestUpdateOCILinuxResource for host w/o swap controller
82d6c2f93 Revert container_stats_test.go change which caused Windows CRI integration test failure
0b9313c42 ctr/run: flags --detach and --rm cannot be specified together
6f9936e30 mod: update github.com/pelletier/go-toml@v1.9.5
f0917fb6e archive: improve TestSourceDateEpoch
9df5a1714 snapshots: refactor metastore transaction
f9a702105 docs/content-flow: update the description of the content labels
fc905324a docs/content-flow: update the digests of the redis:5.0.9
0de12cf7e Add tracing plugin test
b550526cc Use cleanup.Background instead of context.Background for cleanup
38159694f Prepare release notes for v1.7.0-beta.2
88c8d2e39 docs: fix a typo in tracing documentation
79d09c69b CI: Pass GITHUB_TOKEN to containerd/project-checks
06bfcd658 Enable dupword linter
0abc2f160 ctr: Add platform flag to 'oci spec' command
f606c4eba Add cleanup package for context management during cleanup
419b5ab04 Cirrus CI (Fedora 37, Rocky 8): enable cri-integration
7b1f08bf5 nri_test.go: skip if SELinux is enabled
dcbb32d6f cri-integration: set SelinuxRelabel
0f163d696 TestVolumeOwnership: compare GID, not group name
76d68b080 container_stats_test.go: avoid checking snapshot size
12955d291 Vagrantfile: fix comments about SELinux
bb86c6e57 contrib/Dockerfile.test: add "integration", "cri-integration", "critest" stages
5e84f08c4 Vagrantfile: fix disk resize error with VirtualBox
778e8f2af Use the const labels.LabelUncompressed
a5b979623 Add lease to transfer to preserve streams during transfer
3f0edb249 CRI: Comment cleanup/misc fixes
1753e5af7 Reused errdefs for error
5a00d28a6 Fix TestUpdateContainerResources_Memory* on cgroup v2 hosts
a5ea5935b integration/images: switch away from Docker Hub to avoid rate limit
119bbec9e Vagrantfile: install-rootless-podman: remove `setenforce 0`
d7ef6cbfa [streaming] move response packet after registration
72ef98622 cri: Simplify parseUsernsIDs()
4eed20fc3 cri: Verify userns container config is consisten with sandbox
a44b35627 cri: Fix assert vs require in tests
6b333fd21 `ctr contents ls` sorts the labels of the content
3b48fb5b5 cri: Shadow variables to avoid t.Parallel() issues
6b7e237fc chore: use `go fix` to cleanup old +build buildtag
1d0619bc0 Refactor metastore transaction
ca69ae265 Add integration tests for CRI userns
09243e43f make runc 1.1 for oss_fuzz_build.sh
94c68aa00 oci: appendOSMounts(): remove unused error, and move
d66afd211 add kube v1.26: remove v1alpha2 cri support
e94d92571 CRI sbserver: Prevent server reuse after Shutdown.
b10536d64 Reused errdefs define error
229779a4e oci: Add WithDomainname
ba0a7185f add network plugin metrics
a2df12d1a fix `ctr tasks kill` does not remove cni network under windows
0bc9f7b54 Avoid using canceled context in unpacker cleanup
b6df6708b Check containerd's readiness before calling critest
a27e09548 Fix grammar and spelling mistakes in README
a7adeb697 cri: Support pods with user namespaces
31a644973 Add capability for snapshotters to declare support for UID remapping
36f520dc0 Let OCI runtime create netns when userns is used
47fee791f Add sandbox store plugin type
6e55234c3 Add unit test to function GetCPUVariantFromArch
8d5c04543 Use uname machine field to get CPU variant if fails at /proc/cpuinfo
3ee6dd5c1 CRI: Fix no CNI info for pod sandbox on restart
aa8a389c5 overlay snapshotter: Make use of WithTransaction
2c573de6d Move snapshot event publishing into metadata store
d5dd11dcd Enable checkRename test
415750388 cri: fix `memory.memsw.limit_in_bytes: no such file or directory`
791428005 Prevent a race condition in testHook
54f1bdee3 "make proto-fmt" doesn't like spaces
52a748039 Remove github.com/gogo/protobuf again
ce4ea2695 go.mod: update fuzz-headers and fuzz-build
a4d5c3e5c Support sandboxed shims shutdown
fb7a04234 move up to CRI-TOOLS v1.26.0
84529072d CRI: Add host networking helper
0e33a8fa4 [sb] Fix status
ce3a73270 nil check to avoid panic on upgrade
5a3a9baec fatal error: concurrent map iteration and map write
c5fff10fe Bump golangci-lint to v1.50.1
d7507c3c1 Bump grpc to v1.51.0
b94c1018a disable tracing while handling token
f219f7d1e fix sdNotify func when debug level
75b09ac4a images: support specifying SourceDateEpoch via ctx
dc4834924 epoch: propagate SOURCE_DATE_EPOCH via ctx
66f71ea4d Enable GitHub Actions local Linux CI runs
14a38e12b Upgrade GitHub actions packages in release workflow
33e706aec Prepare release notes for v1.7.0-beta.1
d65269fda Add sandbox shutdown API
423f4388b integration: increase timeout in container_event_test.go
80839f11e allow client to remove created tasks with PID 0
a6929f9f6 Add Evented PLEG support to sandbox server
a338abc90 Add container event support to containerd
69975b92b cri: make swapping disabled with memory limit
cde949077 digest: use github.com/minio/sha256-simd
3b71cfd40 metastore: Add WithTransaction convenience method
9df96dc46 support fetching containerd from non public GCS buckets
c59f1635f add metrics for image pulling: success/failure count; in progress count; thoughput
74813786c fuzzing: improve archive fuzzer
176e8d35c image/label: print more characters of label keys
7afe6d92d Fix incorrect defer usage and refactor judgement
20e7b399f prevent Server reuse after a Shutdown
ccd1d22ad fix incorrect namespace of event when create/update namespace
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
90ea5b7f28 |
docker-ce: update to v23.0.1
Bumping docker to version v23.0.1, which comprises the following commits:
4002fa877b vendor: update buildkit to latest v0.10
e697c9365f builder: define GetRemotes for the worker
4c544c3d5f ci: fix branch filter pattern in buildkit workflow
06aca27cc1 ci: enhance tests distribution
001b2e778a ci: update gotestlist to 0.3.1
38b70ebc3b apparmor: Check if apparmor_parser is available
8a5d341d94 [23.0] vendor: github.com/moby/buildkit v0.10.7-0.20230206124303-b8fdb4b78da0
427101f656 libnet/d/ipvlan: gracefully migrate from older dbs
5b7142073f Dockerfile: configure code dir as "safe" directory
7e03250780 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
975bdb2c96 daemon: identify container exits by ProcessID
610250f06e vendor: github.com/containerd/containerd v1.6.16
63a0f1fe09 vendor: github.com/pelletier/go-toml v1.9.5
699e853be3 hack: display build cmd when DOCKER_DEBUG set
b7e0725e98 hack: remove unnecessary vars in make.sh script
96746238b2 hack: remove ORIG_BUILDFLAGS var
df2fe70049 hack: remove -installsuffix build flag
8b83e09b9c client: improve error messaging on crash
26e9face5a [23.0] update containerd binary to v1.6.16
6641852d51 rootless: support `--ipc=host`
8fc49af4ab hack: check if cross-compiling before setting ARM target name
30134ab177 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
3da45c0fe7 fix blockThreshold full bug
941a07b339 ioutils: add regression test for bytespipe deadlock
a21381a55a Dockerfile: prefer ld for building against arm64
2616ebc5ac libnetwork: Support IPv6 in arrangeUserFilterRule()
7a5f3f8053 libnetwork: fix empty-lines (revive)
7cfd4b3471 libnetwork/config: rename ParseConfigOptions() to New()
1090c5fd4c libnetwork/config: inline LoadDefaultScopes()
c93e1e9e66 libnetwork/config: merge DaemonCfg into Config
031fb72313 libnetwork: remove old integration tests
a96a97bf47 libnetwork/config: remove ParseConfig()
9b383dbd51 libnetwork/config: inline ProcessOptions
bed115e664 libnetwork/config: remove "Experimental" and "Debug" options
64cbbaa883 Dockerfile: smoke tests for static builds
4100226e27 Dockerfile: use clang to build dockerd/docker-proxy
dadeec4205 Disable chrootarchive.init() on Windows
f328486cb3 Add GetLibHome stub for non-linux OS
8e83d28f31 vendor: golang.org/x/net v0.5.0
06eb6ab794 vendor: golang.org/x/text v0.6.0
31cf0bf181 vendor: golang.org/x/sys v0.4.0
0e4548bbe1 Dockerfile: fix PKG_CONFIG for xx
8c12a6648b hack: name for target ARM architecture not specified
10c4ada049 hack: typo in displayed platform name
322149038a Add additional loggig in case of error of renaming runtimes-old and removing it
a8926de2a1 Handle docker start inside overlayfs
524de97334 daemon/config: inform the user when the input JSON contains invalid UTF-8
0b2eecdc8a daemon/config: support alternate (common) unicode encodings using a BOM
abff66b283 daemon/config: clean up tests to use common helper
d9bdb61992 cmd/dockerd: use default SIGQUIT behaviour
c627132dc8 vendor: github.com/moby/ipvs v1.1.0
13a31b67de vendor: github.com/vishvananda/netns v0.0.2
bd5d9f3190 vendor: github.com/vishvananda/netns v0.0.1
c8262e912f libnetwork: Remove iptables nat rule when hairpin is disabled
12e3398f64 update to go1.19.5
076d57104a docs: api: synchronise versioned API docs (v1.39 - v1.41)
8ce4ae1345 docs: api: synchronise versioned API docs (v1.42)
f0fe353ca6 api: swagger: add errorDetail to CreateImageInfo
04371160f8 api: docs: add errorDetail to CreateImageInfo (v1.42)
e753cce70f docs: add 401 to possible status codes of /auth
4d7792417e ci: update buildkit to fix integration tests
5802ca9e08 rootless: move ./rootless to ./pkg/rootless
33572e98c1 Use user paths for plugin discovery in rootless mode
52c7a5d96b daemon/config: New(): initialize config with platform-specific defaults
101bd10d0e daemon/config: group JSON preprocessing steps
def679d0e0 daemon/config: ignore UTF-8 BOM in config JSON
cf8c728f3c graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
e40c2410ca Dockerfile.*: drop libbtrfs
51a65e01ac PACKAGERS: update Btrfs graphdriver dependencies
0cf2b14994 graphdriver/btrfs: use free wrapper consistently
21e6c282e6 graphdriver/btrfs: use kernel UAPI headers
42e7a15a63 graphdriver/btrfs: drop version information
01883e1177 daemon/graphdriver: use strconv instead of fmt.Sprintf
25939ee45e libnetwork: improve logs for DNS failures
691b44b4c3 vendor: github.com/containerd/containerd v1.6.15
5aa0c2cae2 [23.0] update containerd binary to v1.6.15
6acc1701ea integration-cli: Fix hanging TestLogsFollowGoroutines*
8dfd907478 hack: restore copy_binaries func
0d1aba547e hack/make: Don't add -buildmode=pie with -race
4da19e2dca Clear conntrack entries for published UDP ports
fe097e018c Fix volume CreatedAt being altered on initialization
d778bbab84 docs: contributing docs update for cross comp
2dd577955c Dockerfile: add "all" stage to build binaries and extra tools
3ef71f9085 ci: add extra steps to check artifacts
8fbfc2676f Dockerfile: rename dev stages
7e286efcd3 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
f29fe2daec bake: define additional vars
3b90bb6ad3 bake: define DESTDIR
171471b613 hack: update buildmode pie condition
7d8c689923 hack: do not set buildmode pie for statically linked binary
75596bee28 hack: use PKG_CONFIG var when checking libdevmapper
29758a067f IAmStatic not used anymore
5d4ddce5ed hack: remove containerutility script
a85bdbe1ca Dockerfile: use TARGETPLATFORM to build Docker
6a0a2c4f79 Always use iptables -C to look for rules
91f2d963c6 Merge iptables.probe() into iptables.detectIptables()
2bf66f725c Check ipt options before looking for ip6t
1b27ab4c73 libnetwork/iptables: Fix test panic when execute only one test
316231cced daemon/graphdriver/devicemapper: simplify Udev log, and update link
770ace39d8 daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5e4464798f api: can marshal and unmarshal when args.fields is empty
515219b716 Update delve version
0393897695 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
7199300239 cmd/docker-proxy: add "-v / --version" flag
e9075f70c7 gha: update buildkit to fix integration tests
b2d2f012b4 errdefs: FromStatusCode() don't log "FIXME" debug message
9980e64341 vendor: github.com/containerd/containerd v1.6.14
5ebd78d5f8 update containerd binary to v1.6.14
f6c2f20cee Dockerfile: delve cross build with TARGETPLATFORM
3d6908c79b Dockerfile: swagger cross build with TARGETPLATFORM
1dc34e889c Dockerfile: containerutility cross build with TARGETPLATFORM
effd7661df Dockerfile: registry cross build with TARGETPLATFORM
f3e3266373 Dockerfile: dockercli cross build with TARGETPLATFORM
fd6316e631 Dockerfile: rootlesskit cross build with TARGETPLATFORM
fbe4db5be0 Dockerfile: tini cross build with TARGETPLATFORM
f9a356c7e9 Dockerfile: runc cross build with TARGETPLATFORM
6e7cc3b7e3 Dockerfile: containerd cross build with TARGETPLATFORM
582b29f587 Dockerfile: DOCKER_STATIC arg
daa28fcf2d Dockerfile: add dummy stage
4cab584a9c Dockerfile: add cross compilation helper
0b12468116 vendor: github.com/containerd/containerd v1.6.13
6570b654f4 vendor: github.com/Microsoft/hcsshim v0.9.6
d8d11bca37 update containerd binary to v1.6.13
a72fb70eb0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
dca58c654a daemon: drop side effect from registerLinks()
6149c333ff daemon: don't checkpoint container until registered
42bffae5ff daemon: fix GetContainer() returning (nil, nil)
a6818fd4cb hack: introduce validate/no-module
45fe08c93c hack: replace go-mod-prepare.sh with wrapper script
c508d13372 hack/go-mod-prepare.sh: find root robustly; make steps transparent
036398f512 hack/validate/vendor: clean up license validation step
a4957d2585 hack/validate/vendor: split tidy from vendor
394eaa8495 hack/vendor.sh: allow running tidy & vendor separately
d80f235c47 vendor: github.com/tinylib/msgp v1.1.6
5ca9231b44 vendor: github.com/philhofer/fwd v1.1.2
ffa2c0b517 image/store: Use errdefs for errors
c0c146fc82 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6295320d91 use consistent alias for gotest.tools/v3/assert/cmp
1cc1395fae vendor: golang.org/x/net v0.4.0
0163808dbe vendor: github.com/prometheus/client_golang v1.14.0
9b62b83429 vendor: github.com/go-logr/logr v1.2.3
d5ffdeb76c vendor: golang.org/x/crypto v0.2.0
4da8dedaab vendor: golang.org/x/net v0.2.0
b14ffffffd vendor: github.com/opencontainers/runc v1.1.3
173df30ac5 vendor: github.com/klauspost/compress v1.15.12
fe62290eed go.mod: github.com/miekg/dns v1.1.43
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
docker-ce/libnetwork: update to -tip
f7cdd0e7 Always use iptables -C to look for rules
a6106f66 Merge iptables.probe() into iptables.detectIptables()
49bb4902 Check ipt options before looking for ip6t
51413ef1 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
e460ffec skip TestPortMappingV6Config
64b196bd circleci: update to "next-gen" convenience image
50f192e9 circleci: update to docker 20.10
88744155 update to go1.18.9, gofmt, and regenerate proto
9ed130d8 fix linting issues
5e08bdb1 Revert: Added API to set ephemeral port allocator range
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
Bumping docker-cli to version v23.0.1, which comprises the following commits:
27b19a6ac ci: fix branch filter pattern
14aac2c23 vendor: github.com/docker/docker v23.0.0
0cd15abfd vendor: github.com/containerd/containerd v1.6.16
168f1b55e cli/command/container: exit 126 on EISDIR error
53ed25d9b Fix bad ThrottleDevice path
9e3d5d152 Fix issue where one bad credential helper causes none to be returned
1e3622c50 docs: move doc generation scripts to subdir
9b54d860c rm: allow `docker container remove` as an alias
00070e6e2 docs: add note about MKE CA rotation, which is potentially dangerous
67b961789 manifest: save raw manifest content on download
285e137aa manifest: explicitly error if whitespace reconstruction has failed
070825bc7 manifest: add support for oci image types
551c4e9ab Fix typo in reference doc for docker Signed-off-by: Craig Osterhou <craig.osterhout@docker.com>
8672540f8 vendor: github.com/docker/docker v23.0.0-rc.3
c4fff9da1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
526e5e7c9 vendor: golang.org/x/net v0.5.0
d7f21ea9c vendor: golang.org/x/term v0.4.0
ae43eb0e0 vendor: golang.org/x/text v0.6.0
caf8b152c vendor: golang.org/x/sys v0.4.0
be30cb370 Fix section docker ps --size
5d04b1c49 note `--user` args usage restriction
9bb70217f Add extra newline after additionalHelp output
59e74b44a cli: additionalHelp() don't decorate output if it's piped
fc6be6ad3 cli: pass dockerCLI's in/out/err to cobra cmds
d347678cd README: fix badges
e04f3dd0d docs: fix duplicated format anchor in plugin_ls
c453cc687 vendor: github.com/docker/docker v23.0.0-rc.2
0d16330dd vendor: github.com/containerd/containerd v1.6.15
b9e1ad3d1 update to go1.19.5
d1f02a273 deprecated: update deprecation for btrfs on CentOS/RHEL 7
bdc7e37b3 deprecation: mark btrfs driver as deprecated for CentOS 7 and RHEL7
35d7fbc81 docs: inspect: remove trailing whitespace from example
79c9e527a docs: generate markdown
186dcf30b docs: fix anchors
c49f1ccb4 update cli-docs-tool to v0.5.1
5a5b7a61d contrib: fix engine logging docs link
4595ce588 cmd: set double quotes as code delimiter
81b051298 docs: fix some more anchors
71e561780 docs: fix anchor links
3613fcc86 docs: deprecated: fix link to Docker Desktop 3.2.0 release notes
b81105718 cli/rm_test: Fix TestRemoveForce race condition
42de5cc7f service/logs: use strings.Cut
3fa18636e internal/test: use strings.Cut
c8bd8932a cli/config: use strings.Cut
3bed830a2 cli/compose: use strings.Cut
cb19bf9f7 cli/command: use strings.Cut
acc45f549 cli/command/volume: use strings.Cut
806f9eab6 cli/command/swarm: use strings.Cut
b3557b284 cli/command/stack: use strings.Cut
2b06c0c42 cli/command/service: use strings.Cut
f29992c0f cli/command/network: use strings.Cut
424401233 cli/command/container: use strings.Cut
6c39bc1f6 opts: use strings.Cut for handling key/value pairs
a473c5b38 opts: rename logOptsValidator, fix unhandled errors in tests
d84256132 remove redundant conversions and braces
720a6a823 docs/run: Fix url to blog "Docker can now run within Docker"
946bb9471 Missing exec_die event
784f66014 cli/command/container: remove unused NetworkDisabled field
6fe14e61f vendor: github.com/docker/docker v23.0.0-rc.1 (use tag)
c5982f373 vendor: github.com/inconshreveable/mousetrap v1.1.0
cc859412c vendor: github.com/docker/docker v23.0.0-beta.1.0.20221221173850-cba986b34090
70d24e854 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
bab905a44 vendor: golang.org/x/crypto v0.2.0
929f23fcf vendor: golang.org/x/net v0.4.0
2df9ff91e vendor: golang.org/x/term v0.3.0
1b75c7c52 vendor: golang.org/x/text v0.5.0
e3e0b7a6c vendor: golang.org/x/sys v0.3.0
6f2f021b6 vendor: github.com/prometheus/client_golang v1.14.0
dedbcec46 vendor: github.com/opencontainers/runc v1.1.3
cd2098c46 vendor: github.com/klauspost/compress v1.15.12
d7869bead vendor: github.com/containerd/containerd v1.6.14
06eba426d cmd/docker: fix typo in deprecation warning
895e7a3df Added missing backslash to documentation sites cli snippet
2f733b87f cli/flags: remove outdated TODO
60d62fb72 cmd/docker: improve error message if BUILDKIT_ENABLED=0
e547881e2 Fix ssh process killed when context is done
35b42efad [completion/zsh] add volume completion
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
a04b3f6c9d |
moby: update to v23.0.1
Refresh two patches for context in the udpated docker-moby.
Bumping moby to version v23.0.1, which comprises the following commits:
4002fa877b vendor: update buildkit to latest v0.10
e697c9365f builder: define GetRemotes for the worker
4c544c3d5f ci: fix branch filter pattern in buildkit workflow
06aca27cc1 ci: enhance tests distribution
001b2e778a ci: update gotestlist to 0.3.1
38b70ebc3b apparmor: Check if apparmor_parser is available
8a5d341d94 [23.0] vendor: github.com/moby/buildkit v0.10.7-0.20230206124303-b8fdb4b78da0
427101f656 libnet/d/ipvlan: gracefully migrate from older dbs
5b7142073f Dockerfile: configure code dir as "safe" directory
7e03250780 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
975bdb2c96 daemon: identify container exits by ProcessID
610250f06e vendor: github.com/containerd/containerd v1.6.16
63a0f1fe09 vendor: github.com/pelletier/go-toml v1.9.5
699e853be3 hack: display build cmd when DOCKER_DEBUG set
b7e0725e98 hack: remove unnecessary vars in make.sh script
96746238b2 hack: remove ORIG_BUILDFLAGS var
df2fe70049 hack: remove -installsuffix build flag
8b83e09b9c client: improve error messaging on crash
26e9face5a [23.0] update containerd binary to v1.6.16
6641852d51 rootless: support `--ipc=host`
8fc49af4ab hack: check if cross-compiling before setting ARM target name
30134ab177 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
3da45c0fe7 fix blockThreshold full bug
941a07b339 ioutils: add regression test for bytespipe deadlock
a21381a55a Dockerfile: prefer ld for building against arm64
2616ebc5ac libnetwork: Support IPv6 in arrangeUserFilterRule()
7a5f3f8053 libnetwork: fix empty-lines (revive)
7cfd4b3471 libnetwork/config: rename ParseConfigOptions() to New()
1090c5fd4c libnetwork/config: inline LoadDefaultScopes()
c93e1e9e66 libnetwork/config: merge DaemonCfg into Config
031fb72313 libnetwork: remove old integration tests
a96a97bf47 libnetwork/config: remove ParseConfig()
9b383dbd51 libnetwork/config: inline ProcessOptions
bed115e664 libnetwork/config: remove "Experimental" and "Debug" options
64cbbaa883 Dockerfile: smoke tests for static builds
4100226e27 Dockerfile: use clang to build dockerd/docker-proxy
dadeec4205 Disable chrootarchive.init() on Windows
f328486cb3 Add GetLibHome stub for non-linux OS
8e83d28f31 vendor: golang.org/x/net v0.5.0
06eb6ab794 vendor: golang.org/x/text v0.6.0
31cf0bf181 vendor: golang.org/x/sys v0.4.0
0e4548bbe1 Dockerfile: fix PKG_CONFIG for xx
8c12a6648b hack: name for target ARM architecture not specified
10c4ada049 hack: typo in displayed platform name
322149038a Add additional loggig in case of error of renaming runtimes-old and removing it
a8926de2a1 Handle docker start inside overlayfs
524de97334 daemon/config: inform the user when the input JSON contains invalid UTF-8
0b2eecdc8a daemon/config: support alternate (common) unicode encodings using a BOM
abff66b283 daemon/config: clean up tests to use common helper
d9bdb61992 cmd/dockerd: use default SIGQUIT behaviour
c627132dc8 vendor: github.com/moby/ipvs v1.1.0
13a31b67de vendor: github.com/vishvananda/netns v0.0.2
bd5d9f3190 vendor: github.com/vishvananda/netns v0.0.1
c8262e912f libnetwork: Remove iptables nat rule when hairpin is disabled
12e3398f64 update to go1.19.5
076d57104a docs: api: synchronise versioned API docs (v1.39 - v1.41)
8ce4ae1345 docs: api: synchronise versioned API docs (v1.42)
f0fe353ca6 api: swagger: add errorDetail to CreateImageInfo
04371160f8 api: docs: add errorDetail to CreateImageInfo (v1.42)
e753cce70f docs: add 401 to possible status codes of /auth
4d7792417e ci: update buildkit to fix integration tests
5802ca9e08 rootless: move ./rootless to ./pkg/rootless
33572e98c1 Use user paths for plugin discovery in rootless mode
52c7a5d96b daemon/config: New(): initialize config with platform-specific defaults
101bd10d0e daemon/config: group JSON preprocessing steps
def679d0e0 daemon/config: ignore UTF-8 BOM in config JSON
cf8c728f3c graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
e40c2410ca Dockerfile.*: drop libbtrfs
51a65e01ac PACKAGERS: update Btrfs graphdriver dependencies
0cf2b14994 graphdriver/btrfs: use free wrapper consistently
21e6c282e6 graphdriver/btrfs: use kernel UAPI headers
42e7a15a63 graphdriver/btrfs: drop version information
01883e1177 daemon/graphdriver: use strconv instead of fmt.Sprintf
25939ee45e libnetwork: improve logs for DNS failures
691b44b4c3 vendor: github.com/containerd/containerd v1.6.15
5aa0c2cae2 [23.0] update containerd binary to v1.6.15
6acc1701ea integration-cli: Fix hanging TestLogsFollowGoroutines*
8dfd907478 hack: restore copy_binaries func
0d1aba547e hack/make: Don't add -buildmode=pie with -race
4da19e2dca Clear conntrack entries for published UDP ports
fe097e018c Fix volume CreatedAt being altered on initialization
d778bbab84 docs: contributing docs update for cross comp
2dd577955c Dockerfile: add "all" stage to build binaries and extra tools
3ef71f9085 ci: add extra steps to check artifacts
8fbfc2676f Dockerfile: rename dev stages
7e286efcd3 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
f29fe2daec bake: define additional vars
3b90bb6ad3 bake: define DESTDIR
171471b613 hack: update buildmode pie condition
7d8c689923 hack: do not set buildmode pie for statically linked binary
75596bee28 hack: use PKG_CONFIG var when checking libdevmapper
29758a067f IAmStatic not used anymore
5d4ddce5ed hack: remove containerutility script
a85bdbe1ca Dockerfile: use TARGETPLATFORM to build Docker
6a0a2c4f79 Always use iptables -C to look for rules
91f2d963c6 Merge iptables.probe() into iptables.detectIptables()
2bf66f725c Check ipt options before looking for ip6t
1b27ab4c73 libnetwork/iptables: Fix test panic when execute only one test
316231cced daemon/graphdriver/devicemapper: simplify Udev log, and update link
770ace39d8 daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5e4464798f api: can marshal and unmarshal when args.fields is empty
515219b716 Update delve version
0393897695 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
7199300239 cmd/docker-proxy: add "-v / --version" flag
e9075f70c7 gha: update buildkit to fix integration tests
b2d2f012b4 errdefs: FromStatusCode() don't log "FIXME" debug message
9980e64341 vendor: github.com/containerd/containerd v1.6.14
5ebd78d5f8 update containerd binary to v1.6.14
f6c2f20cee Dockerfile: delve cross build with TARGETPLATFORM
3d6908c79b Dockerfile: swagger cross build with TARGETPLATFORM
1dc34e889c Dockerfile: containerutility cross build with TARGETPLATFORM
effd7661df Dockerfile: registry cross build with TARGETPLATFORM
f3e3266373 Dockerfile: dockercli cross build with TARGETPLATFORM
fd6316e631 Dockerfile: rootlesskit cross build with TARGETPLATFORM
fbe4db5be0 Dockerfile: tini cross build with TARGETPLATFORM
f9a356c7e9 Dockerfile: runc cross build with TARGETPLATFORM
6e7cc3b7e3 Dockerfile: containerd cross build with TARGETPLATFORM
582b29f587 Dockerfile: DOCKER_STATIC arg
daa28fcf2d Dockerfile: add dummy stage
4cab584a9c Dockerfile: add cross compilation helper
0b12468116 vendor: github.com/containerd/containerd v1.6.13
6570b654f4 vendor: github.com/Microsoft/hcsshim v0.9.6
d8d11bca37 update containerd binary to v1.6.13
a72fb70eb0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
dca58c654a daemon: drop side effect from registerLinks()
6149c333ff daemon: don't checkpoint container until registered
42bffae5ff daemon: fix GetContainer() returning (nil, nil)
a6818fd4cb hack: introduce validate/no-module
45fe08c93c hack: replace go-mod-prepare.sh with wrapper script
c508d13372 hack/go-mod-prepare.sh: find root robustly; make steps transparent
036398f512 hack/validate/vendor: clean up license validation step
a4957d2585 hack/validate/vendor: split tidy from vendor
394eaa8495 hack/vendor.sh: allow running tidy & vendor separately
d80f235c47 vendor: github.com/tinylib/msgp v1.1.6
5ca9231b44 vendor: github.com/philhofer/fwd v1.1.2
ffa2c0b517 image/store: Use errdefs for errors
c0c146fc82 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6295320d91 use consistent alias for gotest.tools/v3/assert/cmp
1cc1395fae vendor: golang.org/x/net v0.4.0
0163808dbe vendor: github.com/prometheus/client_golang v1.14.0
9b62b83429 vendor: github.com/go-logr/logr v1.2.3
d5ffdeb76c vendor: golang.org/x/crypto v0.2.0
4da8dedaab vendor: golang.org/x/net v0.2.0
b14ffffffd vendor: github.com/opencontainers/runc v1.1.3
173df30ac5 vendor: github.com/klauspost/compress v1.15.12
fe62290eed go.mod: github.com/miekg/dns v1.1.43
4ee3cc2531 vendor: github.com/containerd/containerd v1.6.12
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
Bumping libnetwork to version v0.7.0-dev.3-1857-g05b93e0d, which comprises the following commits:
f7cdd0e7 Always use iptables -C to look for rules
a6106f66 Merge iptables.probe() into iptables.detectIptables()
49bb4902 Check ipt options before looking for ip6t
51413ef1 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
e460ffec skip TestPortMappingV6Config
64b196bd circleci: update to "next-gen" convenience image
50f192e9 circleci: update to docker 20.10
88744155 update to go1.18.9, gofmt, and regenerate proto
9ed130d8 fix linting issues
5e08bdb1 Revert: Added API to set ephemeral port allocator range
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
docker-moby/cli: update to 23.0.x
27b19a6ac ci: fix branch filter pattern
14aac2c23 vendor: github.com/docker/docker v23.0.0
0cd15abfd vendor: github.com/containerd/containerd v1.6.16
168f1b55e cli/command/container: exit 126 on EISDIR error
53ed25d9b Fix bad ThrottleDevice path
9e3d5d152 Fix issue where one bad credential helper causes none to be returned
1e3622c50 docs: move doc generation scripts to subdir
9b54d860c rm: allow `docker container remove` as an alias
00070e6e2 docs: add note about MKE CA rotation, which is potentially dangerous
67b961789 manifest: save raw manifest content on download
285e137aa manifest: explicitly error if whitespace reconstruction has failed
070825bc7 manifest: add support for oci image types
551c4e9ab Fix typo in reference doc for docker Signed-off-by: Craig Osterhou <craig.osterhout@docker.com>
8672540f8 vendor: github.com/docker/docker v23.0.0-rc.3
c4fff9da1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
526e5e7c9 vendor: golang.org/x/net v0.5.0
d7f21ea9c vendor: golang.org/x/term v0.4.0
ae43eb0e0 vendor: golang.org/x/text v0.6.0
caf8b152c vendor: golang.org/x/sys v0.4.0
be30cb370 Fix section docker ps --size
5d04b1c49 note `--user` args usage restriction
9bb70217f Add extra newline after additionalHelp output
59e74b44a cli: additionalHelp() don't decorate output if it's piped
fc6be6ad3 cli: pass dockerCLI's in/out/err to cobra cmds
d347678cd README: fix badges
e04f3dd0d docs: fix duplicated format anchor in plugin_ls
c453cc687 vendor: github.com/docker/docker v23.0.0-rc.2
0d16330dd vendor: github.com/containerd/containerd v1.6.15
b9e1ad3d1 update to go1.19.5
d1f02a273 deprecated: update deprecation for btrfs on CentOS/RHEL 7
bdc7e37b3 deprecation: mark btrfs driver as deprecated for CentOS 7 and RHEL7
35d7fbc81 docs: inspect: remove trailing whitespace from example
79c9e527a docs: generate markdown
186dcf30b docs: fix anchors
c49f1ccb4 update cli-docs-tool to v0.5.1
5a5b7a61d contrib: fix engine logging docs link
4595ce588 cmd: set double quotes as code delimiter
81b051298 docs: fix some more anchors
71e561780 docs: fix anchor links
3613fcc86 docs: deprecated: fix link to Docker Desktop 3.2.0 release notes
b81105718 cli/rm_test: Fix TestRemoveForce race condition
42de5cc7f service/logs: use strings.Cut
3fa18636e internal/test: use strings.Cut
c8bd8932a cli/config: use strings.Cut
3bed830a2 cli/compose: use strings.Cut
cb19bf9f7 cli/command: use strings.Cut
acc45f549 cli/command/volume: use strings.Cut
806f9eab6 cli/command/swarm: use strings.Cut
b3557b284 cli/command/stack: use strings.Cut
2b06c0c42 cli/command/service: use strings.Cut
f29992c0f cli/command/network: use strings.Cut
424401233 cli/command/container: use strings.Cut
6c39bc1f6 opts: use strings.Cut for handling key/value pairs
a473c5b38 opts: rename logOptsValidator, fix unhandled errors in tests
d84256132 remove redundant conversions and braces
720a6a823 docs/run: Fix url to blog "Docker can now run within Docker"
946bb9471 Missing exec_die event
784f66014 cli/command/container: remove unused NetworkDisabled field
6fe14e61f vendor: github.com/docker/docker v23.0.0-rc.1 (use tag)
c5982f373 vendor: github.com/inconshreveable/mousetrap v1.1.0
cc859412c vendor: github.com/docker/docker v23.0.0-beta.1.0.20221221173850-cba986b34090
70d24e854 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
bab905a44 vendor: golang.org/x/crypto v0.2.0
929f23fcf vendor: golang.org/x/net v0.4.0
2df9ff91e vendor: golang.org/x/term v0.3.0
1b75c7c52 vendor: golang.org/x/text v0.5.0
e3e0b7a6c vendor: golang.org/x/sys v0.3.0
6f2f021b6 vendor: github.com/prometheus/client_golang v1.14.0
dedbcec46 vendor: github.com/opencontainers/runc v1.1.3
cd2098c46 vendor: github.com/klauspost/compress v1.15.12
d7869bead vendor: github.com/containerd/containerd v1.6.14
06eba426d cmd/docker: fix typo in deprecation warning
895e7a3df Added missing backslash to documentation sites cli snippet
2f733b87f cli/flags: remove outdated TODO
60d62fb72 cmd/docker: improve error message if BUILDKIT_ENABLED=0
e547881e2 Fix ssh process killed when context is done
35b42efad [completion/zsh] add volume completion
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cfa6717d3a |
docker-compose: update to v2.15.1
Bumping compose to version v2.14.0-155-ga93f09ef, which comprises the following commits:
51bcfa37 build(deps): bump github.com/containerd/containerd from 1.6.15 to 1.6.16
982a8ccb support dry-run for kill command
790712fa update tty and plain text writers to support dry run mode
97752b23 refresh Maintainers list
634a7d2a Support for docker compose build --push when using multiple platforms
a288332f Update docs to add `--scale` argument to `compose create`
9d53ed8f Add `--scale` to `compose create`, refactor scale option
df707352 Fix: Handle concurrent threads using mutex on the rainbowColor function
d8bf175c Remove unecessary files
4816f40b Fix: remove the infinite goroutine
ed5a2e83 Remove unecessary files
fa8d075d Fix: remove the infinite goroutine
33c3f4df alias -n for --tail to align with docker CLI
aa313873 cleanup TUI lines after switching to "compact" mode
d47f0f31 Update docs to mention `COMPOSE_PARALLEL_LIMITS` and ways to configure parallelism
4721c017 fix docs to reflect docker compose ps being aligned with docker ps
5919fcb4 Revert "Fix Goroutine leak in v2/command/formatter"
3a21e1e3 Fix Linting Issues
b670aefb Feat: Clean inifinite Goroutine
220626ec Only account running containers for logs
291e1bd6 bump compose-go to version v1.9.0
e94eb056 allow a TTY to be allocated with -t
c15bf195 debounce refresh requests with quietperiod
0b1c8672 Add tests for filtering containers not created by Compose
82ef9985 Ignore containers created outside compose
fb36f7ff directly embed the orignal APIClient in the DryRunClient
3fac506a identify functions which need to be ovorridden for dry run feature
eb59b0e2 add alpha command to test dry-run
5081ab05 create custom CLI when dry-run mode active update documentation
13ef440d add DryRun API Client with delagation pattern
fbf845c5 add dry-run flag
5a2b7b83 use compose service methods when exist instead of directly service.dockerCli
8c07fa4d mark alpha command as experimental
9daf4189 Adjust terminal height calc
bb9cf322 introduce experimental watch command (skeletton)
69a09624 Skip child events when printer events > terminal height
f2088bb9 fix typo
dadad01e Update docs programatically like you're supposed to
1adc9f54 fix docs yaml
4cebce3a This option lives in the create options, not the run options
bd8e5744 Add remove-orphans functionality to run, because it recommends that in error messages
4ad87463 Add 🥒 GHA workflow
cc912c62 introduce --remove-orphans in compose create command
3e12a7cb pass proxy config as build args - same as docker/buildx#959
0c197997 Remove unused kube tag
73ebbffb Don't share the options map
b326a9da don't filter by services if no filter was set
f1313f3a use a simpler prompt implementation when we lack a terminal
a226d014 fix CVE-2022-27664 and CVE-2022-32149 high-risk vulnerability
7e2af3aa build(deps): bump github.com/containerd/containerd from 1.6.14 to 1.6.15
96bbda98 add support for uts namespace
aa5cdf2b add support for COMPOSE_PARALLEL_LIMIT (parity with Compose v1)
d5e4f006 introduce --no-attach to ignore some service output
8b4ac37f introduce `--ignore-buildable` to ignore buildable images on pull
b96e27e0 limit build concurrency according to --parallel
37d15d7e Ignore not only auto-removed containers but also "removal in progress" for orphan containers
dde7eea2 Update expected Cucumber `compose ps` output to match changes
a2247807 Set `pullChanged` when setting `--pull` on `compose up`
ffce33ec Fix empty file when using compose config in case of smaller source files
8a3248d0 Update documentation
52e7f0fb build(deps): bump github.com/docker/cli-docs-tool from 0.5.0 to 0.5.1
fd353ffa add support of privileged attribut in service.build section
adf8e753 cleanup framework.go from uncessary debug logs
9f7ad18d reduce cyclomatic complexity
40ebcd62 fix security opts support (seccomp and unconfined)
9bd9f176 check service names based on project, not running containers
5dcadc05 debut output for CI
c72f161a change the way finding the just built compose binary
86a648bd e2e tests display Compose version used to run the test currently the version displayed is the one installed and not the one use for the tests
27a32419 rely on CI timeout
935968fe add buildx plugin to e2e configuration directory
91371fef remove flaky TestLocalComposeLogsFollow
986bc445 service hash MUST exclude replicas
24f83271 don't assume os.Stdout and rely on dockerCLI.streams
dacf2437 dump stdout to help diagnose flaky test
22d2e838 don't fail `logs` when driver:none is set
b4b73199 introduce support for cgroup namespace
aae5ddca build(deps): bump github.com/containerd/containerd from 1.6.12 to 1.6.14
0ab5079c fix race condition on compose logs
89ef8198 update projectOptions to be public by renaming it to ProjectOptions
b8bbdcd8 detect dependency failed to start
d0e95cca set CPU quota
7bc27d44 Use `DOCKER_DEFAULT_PLATFORM` to determine platform when creating container
c1ce53c9 fix regression running pull --ignore-pull-failures
e42673da only list running containers when --all=false
ffb95449 volume: fix WCOW volume mounts
5c1484ec apply uid/gid when creating secret from environment
84984864 load project from explicit --files when set
8566daa9 use recently introduced `withSelectedServicesOnly` to reduce code duplication
84ea395d introduce --timestamp option on compose up
1cb5536a Address review comments
e4850d9c Add --include-deps to push command
8c39b5b7 align `--format` flag and UX with docker cli
bc568eeb align `compose ps` output with `docker ps`
a501ab3a use StatusError from docker/cli, not "dockerd"
d4a4dcf4 resolve --env-file as absolute path
05e987dd fix parsing of repository:tag
0368f190 distinguish stdout and stderr in `up` logs
3ee2ab87 ContainerStart must run sequentially for engine to assing distinct ports within configured range
8f991a20 Fix corner case when there's no container to attach to
0234e134 Don't stop pull for images that can be built
c342891f Squashed commit of the following:
8ef34947 build(deps): bump github.com/containerd/containerd from 1.6.10 to 1.6.12
cc247fdb remove go.* from e2e tests directory
a4ac6ab6 added table of contents inside readme
a73dce44 fix race condition collecting pulled images IDs
804d7163 detect required service are gone to stop watching explicit API to stop the log printer
cc60026c update to go1.19.4
87a0a57f Cleanup tips from output
95bc6c58 check only running containers in after down tests of profiles e2e tests
57a1e1e0 Update `e2e` mod deps
02305756 build(deps): bump go.opentelemetry.io/otel from 1.11.1 to 1.11.2
a0acc20d introduce --parallel to limit concurrent engine calls
053f20ed port: improve error-handling if port not found (#10039)
9b8d520b ci: upgrade to Go 1.19.3 & bump deps
113fb673 schema: add support for tmpfs.mode in mount definition (#10031)
b9e5f9e9 test: speed up Cucumber stop test (#10032)
c74a77e8 Make use of Containers.filter() and isService()
7f975fa4 Fix replacing "service:x" with "container:y"
73691276 use StringToBool to detect COMPOSE_IGNORE_ORPHANS
2e7644ff use api.Separator to print right image names
8f2b7471 use DistributionInspect to resolve image digest
9ac4f699 move image digests resolution to backend
2bef9769 Broken Link fixed in compose docs
707d55c7 add file header and cleanup profiles e2e tests
5edd7830 add e2e tests to check profile activation via targeted service
6fbef296 add e2e tests to check no profile usages
7fe43a8b add e2e tests using explicitly profiles
24ec0b2d pass services list to projectOrName function to add profiles for targeted services
ed38fe0d only stop services started by `up` on interruption
06e71371 docs: fix grammatical issues (#9997)
fb5b90ed implement support for oom_score_adj
10a5d998 useDockerDefaultOrServicePlatform fct should return service.platform if defined and present in the build.platforms list (or if the list is empty)
c3e5e499 configure buildx for plain output if --ansi=never has been set
4bf98c70 change the default branch of the doc repository
d7a24e9c Update `e2e` module deps
19d6ca9c ignore error parsing container number label, just warn
6fe03e93 Update docs
35d31cc5 Add `--build` option to `compose run`
7c5675c3 use platform defined by DOCKER_DEFAULT_PLATFORM when pulling and no service platform defined
a077e8a2 display creation warnings from the engine
8c1e2af3 add e2e tests to check build dependency between services
a9e07020 check if a missing image won't be build via a service declared in depends_on section
32f29b83 add --no-consistency flag to convert command
533fc616 use COMPOSE_PROFILES value only if no command line arg profiles used
bfb9e11f build(deps): bump github.com/containerd/containerd from 1.6.9 to 1.6.10
09e742b3 exclude issues with the kind/feature label from stale bot process
306ae161 ci: upgrade to compose-go v1.7.0
fd4aecef ci: update dependencies to latest
34e945a5 ci: remove uses of deprecated gotest.tools v2 (#9935)
e1899421 Update `e2e` module dependencies
369e9125 build(deps): bump github.com/containerd/containerd from 1.6.8 to 1.6.9
7ba9aac5 add support of deploy.reservation.memory
6d64242f Update deps for `e2e` module
eaf27d9d map deploy.restart_policy.condition to engine values
36a91839 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
533abc3b go.mod: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
197c1690 update docker engine API to apply fix of CVE-2022-39253
c630c8d2 go.mod: update docker-credential-helpers v0.7.0
41cf5ee3 go.mod: remove replace for runc
b7053cad go mod: tidy and group "require" blocks, update comments
717ace99 Update `e2e` module deps
8bdfc627 build(deps): bump go.opentelemetry.io/otel from 1.11.0 to 1.11.1
dd13299e Skip flaky test in CI
3f0550f8 log the error object instead of the string message only
18ce1f41 replace deprecated functions
3bf29d40 bump docker dependencies version
7424a3d3 Fix Makefile target `validate-go-mod` to only run correct bakefile target
6b7e9466 Update `e2e` module deps
91eae4f0 Add Codecov
8b897214 port: fix container name in error message (#9909)
f43a1e3e github: add feature request template
fa1ae635 github: switch to issue template form
afc0263f build(deps): bump go.opentelemetry.io/otel from 1.10.0 to 1.11.0
bb002a76 Update e2e mod dependencies
2ccd57e0 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
975f0a1d40 |
umoci: update to 0.4.7
Bumping umoci to version v0.4.7-117-gfb2db51, which comprises the following commits:
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
5978bb9 build(deps): bump github.com/vbatts/go-mtree from 0.5.1 to 0.5.2
7c782c4 README: add dummy comment to start to make Hugo happy
777164a build(deps): bump github.com/opencontainers/runc from 1.1.2 to 1.1.4
1714399 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
ed6b0f4 build(deps): bump google.golang.org/protobuf from 1.28.0 to 1.28.1
14756db build(deps): bump github.com/stretchr/testify from 1.7.1 to 1.8.0
2034a22 test: handle /etc/pki/ca-trust with Fedora images
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
We also switch BUILD_FLAGS to STATIC_BUILD_FLAGS, as the Makefile
variable has changed.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
202f388855 |
containerd: update to 1.7.0-beta
Bumping containerd to version v1.7.0-beta.0-284-gf2cf411b7, which comprises the following commits:
d5010a12d docs: Authorizer.Authorize could return ErrUnexpectedStatus
2eabcf702 fix: check for tmpfs when evaluating if userxattr should be used
a6929f9f6 Add Evented PLEG support to sandbox server
a338abc90 Add container event support to containerd
e14753fc5 Respect no_cri constraint
3bc8fc4d3 Cleanup build constraints
c040f8382 Fix default config for Darwin
0b349428e CI: Vagrant: pin rockylinux/8 to v5.0.0
662d8a085 vendor: golang.org/x/net v0.4.0
f9295aa49 Fix context when waiting sandbox
8ab1d4496 Pass runtime configuration as TOML blob
3e92dedc2 Update runtime options to include bytes blob
a113737cc sbserver bug fixing
85776d2c6 update to go1.19.4, go1.18.9
840a657eb Change PushContent to require only Provider
847294679 Adding unit tests to opentelemetry tracing
8a25fa584 Unwrap proto errors in streaming client
b0dd50655 fix panic when containerd-stress density --count 0
39cc684c6 docs: Add extra security instructions
afa19a0a7 Fix process_vm_* syscall names in seccomp
740e90177 go.mod: re-vendor NRI from the official repo.
345332175 upgrade the ops.md output for current 1.7 version .
f88162587 Rename transferer to transferrer
fc2754204 Cleanup code comments and lint fixes
f1598cf5e Update transfer docs
01bd314b1 Rename local transfer plugin
c387a5205 Add variables names to transfer interface
8304a61b5 Combine stream fuzz tests
0762a3a75 Add media type to export stream
52341a234 Update export API types
42eedc0bc Update ctr to make local the default for distribution
ef61e13a6 Update import cli to use transfer service
11c1c8e6f Update import logic
66dc4d106 Update API for import types
b991c71e9 Update pull command to use filter arguments
40d3fa3af Add filter fields to image store types
9ae92f16e Improve push handler ordering
737257bb4 Add push progress
e88baa087 Fixup pull authorization and labeling
478f1c934 Lint fixes
28ea75456 Regenerated protobuf files with updated version
b0f519703 Add transfer docs
cd67a98ec Add transfer integration test
0aca4bb1f Update ctr commands to use transfer interface
6b5df1ee1 Update transfer packages
2a8d7a744 Update transfer API
7318a2def Add transfer plugin registration
d1627e3c7 Add basic import and export handlers
adfaeeff0 Add binary stream functionality and helpers
e506cd103 Implement client interface for transfer service
81afd9c36 Add progress
0e4e96544 Add transfer proxy client
6f64cb859 Transfer interface and plugin work in progress
f61ed7e94 Transfer API types
a24ea31c2 Add transfer API
dcf5687ca Add streaming service
08d5879f3 Added nullptr checks to pkg/cri/server and sbserver
8e0a3c51a Add ctr image prune
ceab73007 use MaxConcurrentDownloads instead of MaxConcurrentUploadedLayers
f012617ed CRI stream server: Fix goroutine leak in Exec
9f4ba4883 [sandbox] Fix panic when waiting for sandbox controller
dbc6d33ac [sandbox] Specify sandbox ID when using sandboxed shims
9a53a6c34 [sandbox] Don't access pause container when creating pod container
cc111eef6 [sandbox] Move sandbox info to podsandbox controller
a0daf1c28 docs: add NRI-related documentation.
02f0a8b50 pkg/cri/server: nuke old v0.1.0 NRI hooks.
ca84aba6c integration: add first NRI integration tests.
b27ef6f16 pkg/cri/server: experimental NRI integration for CRI.
43704ca88 nri: add experimental NRI plugin.
a6d1d53cc [sandbox] Update Controller.Status protos
2136736f5 go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
63c6c55ab go.mod: roll back github.com/containerd/cgroups to v1.0.4 release
3c1c0878e integration/client: update containerd version to v1.7.0-beta.0
ebd63adac integration/client: fix go.mod grouping
8d868dadb Add ptrace readby and tracedby to default AppArmor profile
8c035d387 Resolve warnings in Windows GitHub Actions periodic workflows
ae0da7dc5 Use sandbox store to retrieve runtime info for sandboxed containers
3ddaa3444 Retrieve sandbox creation time from store.
4b3281982 Remove duplicated helpers
3f331e7d1 Specify runtime configuration for sandbox shims
c4dee237f Fix order of operations when setting lease labels
a22f0a4c3 archive: set WithModTimeUpperBound when WithSourceDateEpoch is set
ed3a49c0e fix for OSS-Fuzz infra changes
ac4af4df8 integration: enable CNI slow test for sbserver
a74f7e902 sbserver: save netns in sandbox metadata on create
085d8e633 integration: enable tests for sbserver
1deaedd38 sbserver: persist sandbox during partial teardown
5a7c108ba Resolve Scorecards GitHub Actions workflow warnings
b7b185c92 update github.com/cpuguy83/go-md2man/v2 to v2.0.2
6142a2a24 sys: remove unused GetOpenFds()
f0ce2f6d3 remotes/docker: remove deprecated NewAuthorizer alias
c71a31156 sys: remove aliases for deprecated EpollCreate1, EpollCtl, EpollWait
3e5b444ac pkg/cri/util/: remove deprecated NormalizeImageRef alias
3a7cfaebb sys: remove alias for deprecated sys.RunningInUserNS()
bd912bbee go.mod: github.com/matttproud/golang_protobuf_extensions v1.0.2
5f23daeb2 go.mod: github.com/moby/sys/sequential v0.5.0
763ec7c86 go.mod: github.com/cpuguy83/go-md2man/v2 v2.0.2
0f616e354 go.mod: github.com/AdaLogics/go-fuzz-headers v0.0.0-20221118232415-3345c89a7c72
df4d07352 go.mod: golang.org/x/sys v0.2.0
4e68634ef go.mod: github.com/sirupsen/logrus v1.9.0
579c7f43d Change fsnotify event status condition.
2cea525ee Bump fsnotify to v1.6.0
73c6db881 Bump urfave-cli to v1.22.10
bf777a70b remove duplicated tx rollback
70b65062c Missed out `platform interface` when reused the conn for Client.
0c4d32c13 cri: add pod uid annotation
438db09b0 Fix building.md for btrfs
792294ce0 Update to cri-api v0.26.0-beta.0
234bf990d Copy cri-api v1alpha2 from v0.25.4 to containerd internal directory
e224f77eb Add process_vm read and write calls to default seccomp profile
e4130b2a0 overlay: Remove unused method param
661aaae3b introspection: expose the daemon's PID and PIDNS
f6232793b can set up the network serially by CNI plugins
2f5dd7c66 CI: update Fedora to 37
3fc5802d1 gotestsum match go version 1.19
aaf59efd2 Expose Done and Err in Shutdown service
5d0457df9 Refactored ctr to allow for tty allocation when container has {terminal:true} within Spec
c245347e9 tx rollback when GetInfo return error
14a08721c Remove OpenTelementry imports from remotes/docker package
405024db0 complement sub-command note for containerd-main
e38e2c8a4 make status more readable and update easy.
3abcfb5c0 keep the lower case letter for flag info
69af001b3 Replace broken and redirection link for CRI and kubelet in docs
b0133882f bump critools into ca1571e6edd116b2c95f52e3dfa0b4779b74223a
8bb599973 Remove the outdated comment
dd86128e0 Convert hcsshim's stats to cgroups' stats
6596a7086 Use github.com/containerd/cgroups/v3 to remove gogo
38ad785ce Bump k8s.io deps to v0.25.4
bd66f588b Bump OpenTelemetry contrib to v0.36.4
3fca677c1 Release: add static binaries
0c63c42f8 Fix slice append error
b829e6f2d Bump OpenTelemetry to v1.11.1
7def13dde Add a thin wrapper around otel Span object
ab194e65f Bump grpc to v1.50.1
b742aa2e7 fuzzing: bump go-fuzz-headers
91e295d76 Add `--debug` args
0f54c4740 feat add sandbox api status func
c953eecb7 Sandbox API: Add a new mode config for sandbox controller impls
99ac7a771 add oci.WithCPURT
717aa5929 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
3a9044f24 Rename darwin-kubelet to containerd
5f48e00af Extra documentation for content interfaces.
202abf8fc Bump k8s.io deps to v0.25.3
eaedadbed replace strings.Split(N) for strings.Cut() or alternatives
f90219d47 services/server/config: TestMergeConfigs(): use correctly formatted values
4866d8ba4 registry: support ipv6 addresses
8bec2b652 Replace references to `re` with `regexp.MustCompile`
5c510e47a Improve how reference regexps are built
98ff27265 Clarify repo name regex intention
2a8a53178 go.mod: change imports to github.com/distribution/distribution/v3
a97eb6955 Update repo normalize error message to include the name of the repo.
b979f0069 Fix bug in parsing domain from repository reference
f96660286 reference/docker: add unit-tests from upstream distribution/distribution
7de88c5ba reference/docker: align files with original code
f32595a0c Fix "getCPUInfo for OS freebsd: not implemented" on FreeBSD/arm64
11a06c1a3 ctr: add `ctr content fetch-blob`
dfd6a3aa6 remotes: add FetcherByDigest for fetching blobs without foreknown descriptors
c607f83c3 Fix missing closed fifo
a24ef0993 Replace mount fork hack with CLONE_FS
8b1b81eef Update hosts doc
f0bf9e7f8 Support default hosts.toml configuration
81bbd9dac add option to resolve symlinks to linux device
ee64926a7 add SpanAttribute
2d9f0f2fb add additional info in backport process
3b87d46ce Add tracing spans in CRI image service and pull.go
902b96cf2 fix comments
30c3078ae go.mod: golang.org/x/*: use tagged versions
422a24066 Bump go version to 1.19.3
9c2a63440 Fix ctr crash when pulling with http-trace and http-dump
78ac0046a ctr export strictly match default platform
a270d6e8a Harden GITHUB_TOKEN permissions
98269c061 s390x: initial enabler
4b2a23e7e overlayutils: Add fastpath for userxattr check
2da782468 Add sequence diagram for shim runtime v2
0be981595 Sandbox API: Move remote impls to /sandbox/proxy
2e83d885d fuzzing: improve archive fuzzer
7c77b3540 Add Workflow for running critest with Hyper-V Containers on Windows.
9494f0b80 Add HyperV config in tests
53f67705c Add release notes for v1.7.0-beta.0
c776a3631 Update mailmap
b7d0d1271 Cleanup sandbox interfaces
be3987a92 Migrate away from GitHub actions set-output
9a0331c47 maintenance: Remove WithWindowsNetworkNamespace from pkg/cri
3f3e2b3cc Fix LogURI generation-related tests on Windows.
ddb8a65be update codeql-action to v2
727b33c71 Retry client connection in waitForStart
3e4449862 Add logging volume metrics to Containerd CRI plugin
3ddcbf5f1 Update 1.5 release support timeframe
9a8611d63 bump go-fuzz-headers
fc86be501 not init a tracing processor when not loaded
47fa603e1 Update required Go version in BUILDING.md
8e7ef890a Use logtest if possible to clean up logs
a76d68ee4 Separate containerd logs in GitHub Actions' console
e47bdbd16 Upgrade critools from 1.24.1 to 1.25.0
878dbc7af Upgrade actions/upload-artifact from v2 to v3
198277202 Use `go env` to determine GOPATH in Makefile.
6a07a1c07 go.mod: matttproud/golang_protobuf_extensions v1.0.2 (use tag)
972399538 sys: synchronize mkdirall() with latest os.MkDirAll()
063c5f980 sys: create SecurityAttribute only once (Windows)
a983599e2 sys: update volumePath regex to allow returning earlier
d422c87e4 sys: compile volume-path regex once, and update GoDoc
f8f052482 Vagrantfile: explicitly specify rsync as the shared folder driver
4839f1bdf Add timeouts to all CI jobs
890398677 cri: PodSandboxStatus should tolerate missing task
fb6a40dc9 Don't unmount on Darwin when deleting bundle
c7e6a889b sys: remove unused IsAbs() (windows)
48daccb4d fix the --no-pivot flag being ignored by `ctr tasks start`
ea53e52fc CI: update GHA instances from Ubuntu 18.04 to 20.04
49a54e23c Stats() shouldn't assume s.container is non-nil
e7c8a5ab0 Move up actions versions to prep for deprecation
752bff981 cmd/containerd: use golang.org/x/sys/windows.SetStdHandle()
8b5df7d34 update golangci-lint to v1.49.0
f9c80be1b remove unneeded nolint-comments (nolintlint), disable deprecated linters
29c7fc952 clean-up "nolint" comments, remove unused ones
d21572513 pkg/cri/(server|sbserver): criService.getTLSConfig() add TODO to verify nolint
0eaace306 golangci-lint: sort linters in config file
3ebeb6d79 linting: address gosec G112/G114
347397cf2 update go.mod and go.sum
643dc1656 improve CDI logging
8ed910c46 CDI: configure registry on start
eec7a76ec move WithCDI to pkg/cri/opts
634bf0dd3 cmd/containerd: use golang.org/x/sys Service.SetRecoveryActions()
17a932403 Update the default seccomp to block socket calls to AF_VSOCK
d4b9dade1 Updates oci image config to support upstream ArgsEscaped
047e684bb fix install cni script
b7f6a6804 runtime/v2/shim: clean up the use of containerdBinary
b41d6f40b Update container with sandbox metadata after NetNS is created
8fc68db0c cmd/containerd: replace deprecated windows.IsAnInteractiveSession()
63a7d8a7f fix pusher concurrent close channel
260af5e1d TestTaskResize must use a terminal
39158629f diff/apply.readCounter: check negative size
70fbedc21 archive: add WithSourceDateEpoch() for whiteouts
0aefb5280 archive: windows: chtimes(): remove redundant conversion
f9c9121e5 archive: validate digests before use
8162e044b Add long term stable release branches
e2d8f3859 vendor: github.com/opencontainers/selinux v1.10.2
011fca6ed fuzzing: create structured tar bytes in archive fuzzer
54f2b5121 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
f330ffd83 cri doc: Update kata containers reference
0119d43a4 use raw link to containerd.servic config
a59ecc50e CRI: implement Controller.Delete for SandboxAPI
9d18b5746 Modify WithDiscardUnpackedLayers
4333e6a6d Swap to net.ErrClosed checks for services
acb2964d6 go.mod: Bump go-winio to v0.6.0
4196fad02 Add integration tests with failpoint
4f4aad057 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
396b6d670 fix missing close
7a66f70b5 cri-integration: pass ENABLE_CRI_SANDBOXES to test
2432b54a5 Add new ctr option for discarding unpacked layers
b4558bedc Add test flag for skipping shim cgroup test
c6f571fc7 Set grpc code for unimplemented cri-api methods
82890dd29 CRI: implement Controller.Stop for SandboxAPI
927906992 CRI: implement Controller.Wait for SandboxAPI
dcb0d8f9e remove stray .zuul.yaml
e22a7a383 reference CDI configuration details
bc01f8fc0 Add reader option to local content reader at
c8010b9cb sbserver: return resources in ContainerStatus
b92f3160a cri-integration: propagate ENABLE_CRI_SANDBOXES
b79dcabd6 chore: enable Scorecard Github Action
8f4c23b69 retry request on writer reset
a37c64b20 Refactor CRI fuzzers
bf26140d9 Fix LogURIGenerator on Windows
adfbda464 Add ext2 fs support to devmapper snapshotter
f0fbc8dfd Upgrade fuzzing-related packages to reduce dependencies
e7c593edd Fuzzing: Instrument with new sanitizers
9cdf9f6c6 Use jq and only show failed tests on summary
34ad96bab CI: Output a summary using GITHUB_SUMMARY
524d3aca8 github.com/emicklei/go-restful CWE-285: Improper Authorization
3cfde732e remotes/docker/config: Skipping TLS verification for localhost
0f51aa874 Add NoSameOwner option when unpacking tars
b2a7183a8 matching the casing of other flags for ctr's pull command.
829dd2145 update cdi version to v0.5.1
0f743ce4f vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
8f2bbd5e8 Update to go 1.19.1, 1.18.6 to address CVE-2022-27664, CVE-2022-32190
6ce0f6a26 Fix missing close
8575a0d6f Remove unused variable from images action
5e57d463d feature: use client default namespace
3c0e6c40a feat: upgrade registry.k8s.io/pause version
f9166aa53 .zuul: remove the zuul because it is offline
e041d1a2c integration: TestUpdateContainerResources_MemoryLimit: remove TODO comment
3a2197f5f metrics/cgroups/v1: Remove unused event parameter
bfb280fb3 Update golangci-lint timeout to match config
407703f09 Make checkContainerTimestamps less strict on Windows
344b25995 delete redundent import alias and and type conversion
17e436c20 Pin github.com/AdamKorcz/go-118-fuzz-build
a3bfa58b0 Make oss-fuzz mandatory
2e677c932 sys: move ForceRemoveAll to integration/client
19db697a5 archive: replace tarName() with filepath.ToSlash()
3cc3d8a56 mount: use ioctl helpers from x/sys/unix
0c6553bfd go.mod, vendor: bump golang.org/x/sys to latest version
93342d637 replace sys Sequential funcs with moby/sys/sequential
9ae2cc3a8 mount: remove unused ErrNotImplementOnWindows
dcfaa30ba chore: remove duplicate word in comments
b170eb3ca Add Kubernetes v1.25 supported version as v1.24
fdff11def ctr: add privileged-without-host-devices for run command
d063597e8 Upgrade github.com/klauspost/compress from v1.11.13 to v1.15.9
eb664aed0 go.mod: github.com/opencontainers/runc v1.1.4
ad597015c update runc binary to v1.1.4
962841fc7 Clarify containerd 1.5.0+ for k8s 1.20,1.21
90f6bd21c script/setup: handle cnidir with SUDO
331066f87 update intergration
49e2fe2ab bump cri-api
b7b1200dd ContainerStatus to return container resources
9525b3148 migrate from k8s.gcr.io to registry.k8s.io
f0036cb9d windows: Add runhcs-wcow-hypervisor runtimeclass to the default config
f318947b0 Do not rename test files on-the-fly to share functions
912d43b2b Revert "Downgrade MinGW to version 10.2.0"
850f667f5 contrib/fuzz/daemon.go: reformat the fileheader
460b0533b pkg/cri/streaming: increase ReadHeaderTimeout
9d286baed crypto/sha256 must be imported
adc7d5b2e Don't patch github.com/cilium/ebpf
470d3ee05 Upgrade containerd/cgroups to remove github.com/cilium/ebpf's fuzzer
43907515b adding support of CAP_BPF and CAP_PERFMON
13b14736a Don't fail test when GOOGLE_APPLICATION_CREDENTIALS is unset
095044710 Remove Windows special case in TestContainerdRestart
1f8db2467 go.mod: Bump hcsshim to v0.10.0-rc.1
396d2a7e4 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
1d8b1bc75 Cleanup shim manager
ff65fc2d0 Make TaskList generic
6e4b6830f Update CRI-API
782fd3c8e Vagrantfile: dump containerd log after critest
74c09b756 Fix contrib/ header
8add7e5d3 Rework permission handling in scripts
6ba91de84 release workflow: remove Go setup action
f8add9263 release workflow: increase timeout to 30 minutes
2dbff1dbc oci: skip checking gid for WithAppendAdditionalGroups
481861020 release: rollback Ubuntu to 18.04 (except for riscv64)
68bae258a Update protobuf definitions
ca3b9b50f Run gofmt 1.19
4a11a4018 Update golangci-lint to 1.48 with Go 1.19 support
ea6613029 Switch to Go 1.19
7787168cc Use global env variable to specify Go version on CI
5cf77fc43 Add TODOs for the remaining work
e1c5d71c0 Update golang to 1.18.5, 1.17.13
ee0f2e906 Change os.Stderr reassign for Windows service
426fcfbc5 fix protobuf aarch64
aa3303b69 Update sandbox protobuf to match CRI
882322417 Update controller's start response to incldue pid and labels
3d028308e Cleanup CRI files
c085fac1e Move sandbox start behind controller
f51014f8d Add sandbox to in memory services
6c14ca25d Fix cleanup in critest
e47c433d5 Add sandbox store helpers
f5fb2c32d Regenerate protos with updated protoc-gen-go
b16c3e9ad Windows HostProcess container CRI stats test
106433b79 Use httputil.DumpRequestOut for dumping client req
2fa84b1b8 Add extra context to error when push unauthorized
f4d05f207 chore: bump macos runner version
276a6f133 test: error strings should not be capitalized
2b92c70fa Fix command line parsing for image list
14003683f go.mod: Bump hcsshim to v0.9.4
1e0698e8e Fix CRI image pull timeout test for ppc64le
c15d8e156 go.mod: Bump hcsshim to 0.9.3
a9514da75 Update image references for Windows tests
2ae5f405d Use image lists instead of hardcoded images
552d76344 Use image lists in client tests
d121efc6d replace with selinux label
e6a2c0790 integration: simplify CNI-fp and add README.md
344431cdd fix: support simultaneous create diff for same parent snapshot
050cd58ce Drop deprecated `ioutil`
500ff95f0 Make getServicesOpts a helper
ee6fc5c2e adds an env var commented out for sandboxed mode
cbebeb944 pkg/failpoint: add FreeBSD link and update pkg doc
3c5e80b63 integration: Add injected failpoint testing for RunPodSandbox
be91a219c integration: CNI bridge wrapper with failpoint
1ae6e8b07 pkg/failpoint: add DelegatedEval API
b297775ea runtime/v2/shim: return if error in load plugin
5f9b318e5 bin/ctr,integration: new runc-shim with failpoint
822cc51d8 runtime/v2: manager supports server interceptor
ffd59ba60 pkg/failpoint: init failpoint package
3125f7e1a cri_stats: handle missing cpu stats
7eeec8987 adds support for using env file for systemd boot
7dc66eee6 using ContextDialer instead
6639b2b02 test: Add ability to switch between cgroupv1 or cgroupv2
0d6881898 Refactor usageNanoCores be to used for all OSes
f6bc986dc go.mod: github.com/stretchr/testify v1.8.0
628f6ac68 code cleanup
cc30880e8 ci: workaround Cirrus CI's INVALID_ARGUMENT
d8d63a7aa docs: Fix sample config.toml syntax
88bcbb036 adds a comment explaining how to disable experimental sbserver
3a3f43f72 Fix linter warnings
60f51c1aa Update and align golangci-lint version
98a1b7ff1 Add log messages when choosing CRI server
bbb8d3470 seccomp: add get_mempolicy, mbind, set_mempolicy, with CAP_SYS_NICE
19e847983 seccomp: seccomp: add syscalls related to PKU in default policy
2ba635331 Change metrics namespace for sandboxed CRI to prevent panic
b8e93774c Enable integration tests against sandboxed CRI
cf5df7e4a Fork CRI server package
4ffef752d update golang to 1.18.4, 1.17.12
c733119db cri doc: fix formatting for CDI options
f77d45e3b ctr: support --user for run/create
22dfc68ad Fix protobuf script to install protobuf on darwin
bcdc8468f Fix out of date comments for CRI store packages
174b01344 update some devmapper docs
575095fcd seccomp: allow clock_settime64 when CAP_SYS_TIME is added
e9e33f847 Copy fuzzers from github.com/cncf/cncf-fuzzing
b31631859 Upgrade github.com/AdaLogics/go-fuzz-headers
6d4b61007 integration/client: fix typo in export_test.go
b8bb33b92 fix can't edit object by using ctr content edit command
548c9c317 Fix WWW-Authenticate parsing
b8403d2e1 Update k8s.io/cri-api to v0.25.0-alpha2
a44cabf51 Update go-restful/v3 to latest release
c2703c08c pkg/cri: use marshal wrapper for version convertor
d2588b3fa LCOW differ return ErrNotImplemented for wrong mount type
0a240ff81 Fix missing closed HTTP Body
f7de1c8f9 Do not hardcode fuzzers
2b60770c4 Move container_fuzzer.go under integration/client/
66cc0fc87 Copy FuzzCRI from cncf/cncf-fuzzing
ca5637104 Remove mainfuzz package and StartDaemonForFuzzing
17f9c3a0e Move builtins_*.go to cmd/containerd/builtins to make the files reusable
d97b754a5 Cleanup metadata tests
1ef4bda43 Downgrade MinGW to version 10.2.0
1ab42be15 refactor: reduce duplicate code
47ad5f70e Fix Doc:
fb5b6612a ctr: Fix `ctr c create` fails to parse arguments
68a55fe8b make xattr EPERM non-fatal in createTarFile
99e210c50 Move metadata plugin registration to seperate package
4f0ea7831 fix: missing sudo for devmapper doc
72b87ad00 add WithAdditionalGIDs test
5bf705255 add WithAppendAdditionalGroups helper
5cde04bc7 Forward ctr snapshotter flags on Windows
4ac1031e0 Add snapshotter key to snapshot events
b27a229df Move contrib/fuzz/docker_fuzzer.go to remotes/docker
f91616e45 Copy FuzzConvertManifest from cncf/cncf-fuzzing
c9c5fee37 Do not hardcode fuzzing targets
50f1a4e42 Don't log "ignored xattr ..." warnings
112497bc3 Make oss_fuzz_build.sh quiet
6e53ffb10 ctr: add --hostname flag to create, run
7002fc2c4 Ensure Windows Periodic workflow errors out while still uploading results.
2e288f5b1 improve content-flow
d4ab64988 Revert MinGW to oldest known working version in Windows setup script.
55dd56e52 Make CI Fuzz optional
82adbc849 Run fuzzing tests with go test -fuzz
a1eb2d8a6 Use testing.F on FuzzPlatformsParse
57200edf2 Use testing.F on FuzzParseProcPIDStatus
0b3c31dd7 Downgrade MinGW in Windows setup scripts.
42a386c81 CRI: change the /dev/shm mount options in Sandbox.
a62a95789 CRI: remove default /dev/shm mount in Sandbox.
8245e35eb Make test path a constant
ee14f9316 Run fuzzers in CI
52593cfc8 containerd-stress: add support for running through CRI
5560b622d archive: Explicitly specify stdio for tar(1)
95f1d7971 platforms: Run goimports for FreeBSD
42e019e63 cri/server: Disable tests on FreeBSD
ad8e59806 oci: Remove empty mount option slice for FreeBSD
c15f0cdaf oci: FreeBSD devices may have major number 0
2ab8c12fc archive: use Linkat on FreeBSD for hardlinks
61690d76d Improve naming consistencies in comments in snapshotter.go
c101f7999 Allow CRI on Darwin
0167e55ab update runc binary to v1.1.3
c3fb7dfa7 go.mod: github.com/moby/sys/mountinfo v0.6.2
fa4720fa1 fix add ro mount for userattr-unmount unexpected timeout
92d360b58 fix minor spelling mistake: lablel -> label
6190b0f04 Correct spelling mistake ("sanbdox" to "sandbox")
5a6e4144a go.mod: github.com/containerd/cgroups v1.0.4
088c8df3a go.mod: github.com/containerd/continuity v0.3.0
012d68ff9 add gc scheduler metrics: collection count
44e12dc5d Windows snapshotter touch ups and new functionality
40aa4f3f1 Implicitly discard the input to drain the reader
00eb74a4c Make building static binaries simpler
d25b4e6f3 Bump Golang and MinGW versions in Windows setup script.
7b9f1d405 Added support for runtime level snapshotter, issue 6657
8bc6ccc07 Bump k8s.io deps to v0.24.1
5fcde823d Bump grpc to v1.47.0
1b3c3860d update golang to 1.18.3, 1.17.11
e3b4d750d update go-cni/for cni update fixing plugins that don't respond with version
8ed54849a Move docker reference logic to reference/docker package
f7aa90d27 Fix containerd-stress duration flag
ae22854e2 Linux containers on FreeBSD
49ca87d72 Limit the response size of ExecSync
1cf6f2032 promote pause image to 3.7
b5e1b8f61 Use t.Run for /pkg/cri tests
b572a82ad CRI: Remove deprecated error types and update error msg
978ff393d Add validations for Windows HostProcess CRI configs
1a8024b46 Makefile: use urfave_cli_no_docs for binaries that don't need it
5bb47fb95 vendor: github.com/urfave/cli v1.22.9
a3a2d14ec fix verify-vendor if go.mod does not contain replace rules
688b30cf5 CRI: Move truncindex to pkg
e44335800 CRI: Move reference sorting to reference package
b5366f8d7 CRI: Retrieve image spec on client
4ba5415fb build: Fix references to check-protos target in Makefile
8a3114b37 Fix broken oss-fuzz build
d2f30150b archive: add human-readable hint to Lchown error
9f9ebbd99 Fix tx closed error when upperdirlabel specified
739cb4c99 config: improve config v1 deprecation message
b5107a898 Fix Windows install powershell script
b69182c71 add note that a namespace cannot be named "version"
8d95f2b59 fix comments on metadata schema
900019b30 ctr sandbox: handle sandbox config
8ec1fc70d adjust format
a42688639 Restore decompression benchmarks
8494f7f11 adjust format in comment
92b7bc9ed ctr: fix label args used in NewContainer
4da4a8879 update doc url
eaec6530d fix some confusing typos
65150600d Separate windows-2019 and windows-2022 test results
7300296cb reverts removal of parallel run from critest
523d069a2 sandbox: replace github.com/pkg/errors with native errors
c4ce13a28 vendor: github.com/opencontainers/runc v1.1.2
25858d621 update runc binary to v1.1.2
c1140aef6 Bump OpenTelemetry dependencies
f710505f4 shim: fix debug flag not working
72cd3b476 update golang to 1.18.2, 1.17.10
f5b7a4b3d CI: update Fedora to 36
a3ac15600 oci: WithDefaultUnixDevices(): remove tun/tap from the default devices
ad8b87ba2 Add `Wait` to `binaryProcessor`
d9fc5f4b0 Enable git commands due to git CVE fix
09c2c2a75 Pass explicit JUnit outfile to critest.exe in Windows workflow.
2c98a7b09 ctr import: strictly match platform
d1c49781e go.mod: Bump k8s deps to v0.24.0
c721c8e27 devmapper docs: small fixes
bb11c9d24 update critools to v1.24
8a2e8cd8d move report dir option to eol
af24e3871 Update Kubernetes version matrix in release docs
7a834516f Share images between TestRestartMonitor and TestRestartMonitorWithOnFailurePolicy
cedb7d3bd containerd 1.6.4 k8s 1.24 readme announce
57d2bce74 docs: minor fixes in snapshots.Snapshotter comments
42584167b Officially deprecate Schema 1
55401ac9c Update k8 docurl in file
d4127a9f2 CI: add riscv64 builds
0e56e4f9f release/Dockerfile: update Ubuntu to 22.04 for supporting riscv64
4b412b800 seccomp: support riscv64
8160a3efc Reduce the number of the concurrent HTTP requests in TestUserNamespaces
7183fc81d Skip TestImagePullWithConcurrencyLimit on Cirrus CI
10576c298 cri: support blockio class in pod and container annotations
9b04d2fae docs: Adding windows installation steps to getting-started.md
227156dac Add ctr support for CPUMax and CPUShares
b5370b040 Fix comment for metadata/db.go
5d0730370 Update go-cni to v1.1.5
180c7535d Upgrade protoc, protoc-gen-go and protoc-gen-go-grpc
2c6760005 go mod tidy & go mod vendor
29b937956 make protos
fcba48636 Remove gogo from .proto files
ae29594d0 Bump opencontainers/selinux from 1.10.0 to 1.10.1
46773c341 Cleanup leaked shim process
7f23296b9 Upgrade google.golang.org/grpc and google.golang.org/protobuf
7353006f6 Remove kzys/typeurl
7215f85ac Don't use "uname -a" as Cirrus CI's cache key
45c0cbec5 Create ppc64le release
5f43118ce Move Vagrant-based tests from GitHub Actions to Cirrus CI
00d102da9 feature: support image pull progress timeout
fceab7f4c remove duplicate
0e6c7bf93 Fix undefined error in use of errors package
a9f5190fb images/image.go: typo
da3e2f985 fix incorrect syntax in comments
7a4f81d8b Fix tests
aefd1849b go mod tidy and go mod vendor
f616dd471 Upgrade containerd/typeurl
9dbe000a3 make protos
1a095e18b Rename Size_ to Size
e3db7de8f Remove gogo/protobuf and adjust types
fd37cc75b Use protoc-gen-go instead of protoc-gen-gogoctrd
e044759eb Upgrade containerd/ttrpc
8710d4d01 cri: close fifos when container is deleted
7331b2af4 Add Container-Optimized OS into Adopters
dfa6e8763 diff: hide types.Any from clients
01dfb110c Add go_package on all proto files
aa1526def Use proto.Marshal instead of calling Marshal() on objects
95dde4959 Embed "Unimplemented" structs as proto recommended
35994a475 fix monitor restart
237ef0de9 Remove all gogoproto extensions
22cd13b37 fix nil pointer panic for monitor
bd90ce043 Keep shim API backward compatible
39692e767 unpack: return error when no platforms defined
8017daa12 Add unpack interface to be used by client
e2fd25f3d Move runtime v2 proto Move runtime v2 protos to api/runtime package.
3742c756e Don't generate a Go file, if that would be empty
5f3b72432 Fix protoc-gen-go-fieldpath
3b82f9e33 metadata: use resource max and end on registration
88c0c7201 Consolidate gogo/protobuf dependencies under our own protobuf package
80b825ca2 Remove gogoproto.stdtime
dbdf50cc0 update golang to 1.18.1, 1.17.9
fd704d334 Build bin/gen-manpages instead of using "go run"
b497e6414 Fuzz filter package with Go 1.18's fuzzer
94faa70df allow ptrace(2) by default for kernel >= 4.8
fe8da6dca Move lease manager plugin to separate package
147f0a7e0 check for duplicate nspath possibilities
942af1203 fix pool_device_test.go
5f3ce9512 Do not append []string{""} to command to preserve Docker compatibility
8367f69fb Add collectible resources to metadata gc
c525aa5f8 Set timeout when collecting metrics from shim's Stat
49235ccba Change architecture path in README.md
8a1280b2b metrics/cgroups: fix deadlock issue in Add during Collect
a5dfbfcf5 cri: load sandboxes/containers/images in parallel
6d69aca56 make consistent for checkpoint path
6341e0696 ADOPTERS: Update AKS Info
b446c7647 [Sandbox] Remove outdated documentation
d0b32c053 [sandbox] Migrate from gogo to Any
85a49e4ee [sandbox] Cleanup interfaces
de4974572 [sandbox] Fix CI
b7a36950f [Sandbox] Add Wait and PID
0d165e654 Restore sandboxes on daemon restart
0c5e5c357 Fix protobuf after rebase
fa02477ca [sandbox] Add sandbox shim skeleton
35195737e [sandbox] Register shim plugin after #6301
17a2aaded [sandbox] Add ctr support
982de8a5d Launch sandboxed containers from task service
00f7a6bf2 [sandbox] Address PR review comments
6343fe3ea [sandbox] Implement sandbox controller
eaccbf1d0 [sandbox] Add clients
df234edeb [sandbox] Add controller service
a433beb79 [sandbox] Update vendor
0e77f758a [sandbox] Implement store service
13eb1a4bb [sandbox] Revendor API changes
d7ece8724 [sandbox] Save sandbox ID to container's store
cab7d5b3d [sandbox] Implement metadata store
87d4c8923 [sandbox] Add basic sandbox structures and interfaces
4445d0a8d [sandbox] Add protobuf definitions
3df767405 add restart policy for enhanced restart manager
7e70ad9fb Pin upload-cloud-storage action to 0.8.0 in Windows workflow.
927b34e41 tracing: fix panic on startup when configured
1a45c2c5f docs: add Deckhouse to the list of adopters
825c1c58a CDI: update go.mod and vendor deps
ff5c55847 move CDI calls to the linux-only code
c9b4ccf83 add configuration for CDI
aed0538da cri: implement CDI device injection
35383fb42 docs/cri: simplify
493baa6e7 Add docs/snapshots
811375856 CRI: improve image pulling performance
16fbbaeee Skip flaky test on Windows
44d7cd152 mv design docs/historical/design
195fc7424 docs: migrate config v1 to v2
84cebafe8 docs: remove deprecated `io.containerd.runtime.v1.linux`
83665bf8d docs/getting-started.md: typo
ccea927d9 Move historical docs to `docs/historical`
50921e71b Run go mod tidy in integration tests
99c194e03 go.mod: move indirects, and update integration go.mod to 1.18
6ccec53d3 Remove gotest.tools
871b6b6a9 Use testify
6da318310 Disable writing freelist to make the file robust against data corruptions
62c846b17 Update linters to use t.Setenv
2d59a3944 Use t.Setenv instead of os.Setenv
4bdac2b43 Adding multi-arch support for the configure.sh script
6f269ccb3 docs/getting-started.md: massive update
c7bdcdfbe Address some timeout issues in the Windows CI
a2d22ac05 BUILDING.md: update supported Go versions
d0bd65d3c Remove unmaintained contrib/linuxkit
f2d5f71a7 update runc binary to v1.1.1
11a31320b go.mod: github.com/opencontainers/runc v1.1.1
0b2a95e10 Add no_tracing tag
b42e936c5 CI: add Rocky Linux 8
b1030e7b6 CI: bump up crun to 1.4.4
b737cb10e Update README.md
cf571fa96 added make help for cri integration
44a8ac7b0 Turn paths from cmdline into absolute paths
2689432bf Fix error message in TestNewBinaryIO
96b16b447 Use typeurl.Any instead of github.com/gogo/protobuf/types.Any
fe426227d native: fix deadlock from leaving transactions open
a51da91c1 moving up to go-cni v1.1.4
36612d692 go.mod: remove replace and update github.com/gogo/googleapis v1.4.1
df93940fb fix: ctr images mount with snapshotter option can't get snapshotter
c091d48cb Use cgroups.AddProc() for cgroups v1
d2013d2c9 runtime: deprecate runc --criu / -criu-path option
388ee880d Upgrade containerd/imgcrypt and opencontainers/image-spec
70a06d0c8 Upgrade to Go 1.18
067611fde Remove enumvalue_customname, goproto_enum_prefix and enum_customname
bfde58e3c Bug fix for mount path handling
e9bb9c3bc Skip tty critest testcase on Windows Server 2022
3eeeb9429 Remove gogoproto.customtype
040babe00 Vendor dependencies with module graph pruning
a19ad9bb6 Use Go 1.18 to build and test containerd
56f95e3d8 Test turning off golang CI lint cache
ee49c4d55 Add nolint:staticcheck to platform-specific calls
c56875233 Update prometheus client vendor
9aadef1be vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
fdb746442 document log level and format
52d307ac1 test: remove redundant `mountPoint`
2a0b2ee9e fix: ctr run --cni get failed
18ec2761c test: use `T.TempDir` to create temporary test directory
b8bf504e9 Enable gosec linter for golangci-lint
2ddcb2019 Make OpenLab's CI jobs blocking
cc526a98a Make mkfs.xfs available on OpenLab's CI environment
ba1674389 typo fixes under cmd.
2e080bf49 Add shared content label to namespaces
2a425990c Implement `--device idType://id` for `ctr run` on Windows
39d52118f Plumb CRI Devices through to OCI WindowsDevices
6a25be94e CRI integration test for Windows Device mounts
622a35a4f Upgrade golangci-lint and its GitHub Action
59b1871b3 Fix link in getting-started.md
88de65112 Don't build a second copy of containerd-shim-runhcs-v1.exe
807ded41f Update TestNormalize to only test Windows
80bc32f06 Use temp file for export/import test
0d0b2bd4f Mount devmapper xfs file system with "nouuid" option.
14901335c Increase wait timeout for TestDaemonRestart
718adfe06 Use the latest image for Windows test workers
894e78001 Improve ErrUnexpectedStatus default string
48b478381 Skip most of script/setup/prepare_env_windows.ps1
768bf73dd Enable cri-tools critest on Windows
59b978847 Enable CRI Integration tests on Windows
5b78a9a8f Remove hardcoded /tmp in tempfile paths
03a5e648b Use version 2 config and mention containerd config command
e0a6f9c7d update to go 1.16.15, 1.17.8 to address CVE-2022-24921
b90c466c3 Add ErrUnexpectedStatus to resolver
fdaf859aa Update status of 1.4 release
7b045ea5f ctr: improve error relative shim path error msg
e5efc260d Update latest release versions
63dd929af Update release process to include Kubernetes test infrastructure
0c79257f5 Add --user support for ctr run Windows
de3d9993f Adds support for Windows ArgsEscaped images
775facd57 cri: fix integration test on cgroupsv2 system
f1f69d4ee integration: remove duplicated util pkg
352a8f49f cri: relax test for system without hugetlb
ec90efbe9 Make the temp mount as ready only in container WithVolumes
ea3d2e643 go.mod: update to github.com/tchap/go-patricia/v2 v2.3.1
2b68c03a6 Update Go version recommendation in getting started
77c0539e9 Use containerd/protobuild instead of stevvooe/protobuild
d28981d48 Fix build with gccgo
f4f41296c Replace golang.org/x/net/context with std library
296f75bd0 Do not use weak import
3febabffe Add protoc-gen-go-fieldpath
7901f4b33 containerd-shim-runc-v1: return init pid when clean dead shim
a3303e721 Update TestContainerSymlinkVolumes to use windows path
481fb923c go.mod: update to github.com/emicklei/go-restful/v3 v3.7.3
fb0b8d617 Use fs.RootPath when mounting volumes
1a31772a7 go.mod: github.com/moby/sys/signal v0.7.0
b1881bdc0 go.mod: github.com/moby/sys/mountinfo v0.6.0
b6a6757c1 go.mod: github.com/fsnotify/fsnotify v1.5.1
83c80388b Initialize platform matchers for current platform
b63000c65 [Windows][Integration] Enable TestRestartMonitor
7275411ec cgroup2: monitor OOMKill instead of OOM to prevent missing container OOM events
6906b57c7 Fix the Inheritable capability defaults.
fdbfde5d8 cmd/containerd-shim: add -v (version) flag
e79aba10d integration/images/volume-ownership: strip path information from usage output
b8cadf753 runtime/v2/shim: strip path information from version output
356ca7575 containerd-shim-runc-v2: return init pid when clean dead shim
86d52fc26 Fuzzing: refactor metadata fuzzers
894af07e3 integration: Adds Windows equivalent for TestSandboxRemoveWithoutIPLeakage
54e95e6b8 fix Implicit memory aliasing in for loop
5d4dc5780 remotes/docker: log registry URLs as info instead of debug
afe39bebf add oci.WithAllDevicesAllowed flag for privileged_without_host_devices
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
ceb483ad36 |
containerd: update to 1.6.12
Bumping containerd to version v1.6.12-2-gccfc27e30, which comprises the following commits:
3595dd04b fix: check for tmpfs when evaluating if userxattr should be used
1899ebcd8 Prepare release notes for v1.6.12
ec5acd4c1 CRI stream server: Fix goroutine leak in Exec
9743dbae8 [release/1.6] update to go1.18.9
3d24d97ba Prepare release notes for v1.6.11
bb96b21e5 fix: support simultaneous create diff for same parent snapshot
15b541238 Fix order of operations when setting lease labels
9fdf713e5 Added nullptr checks to pkg/cri/server and sbserver
56593cca5 cri: add pod uid annotation
8ec051a6b [release/1.6] go.mod: use golang_protobuf_extensions v1.0.4
e639ecd7c Prepare release notes for v1.6.10
5af8d89ce overlayutils: Add fastpath for userxattr check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c25d16577d |
runc-docker: update to 1.4.0-tip
Bumping runc to version v1.1.4-10-gbd4d05c0, which comprises the following commits:
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
3b958289 Fixes inability to use /dev/null when inside a container
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f281ad2d96 |
runc-opencontainers: update to 1.4.0-tip
Bumping runc to version v1.1.4-10-gbd4d05c0, which comprises the following commits:
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
3b958289 Fixes inability to use /dev/null when inside a container
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6adc065b5c |
docker-ce: update to 23.0-beta
Bumping docker to version v23.0.0-beta.1-16-g3083236871, which comprises the following commits:
4ee3cc2531 vendor: github.com/containerd/containerd v1.6.12
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
aceed7bf95 |
docker-moby: update to 23.0-beta
Bumping moby to version v23.0.0-beta.1-8-g3fd34324a8, which comprises the following commits:
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Martin Jansa
|
ca3d4571d6 |
tiny: fix typo in Upstream-Status
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
2119189361 |
treewide: bulk update patches with status field
While the insane.bbclass upstream-status check hasn't been made default, users of meta-virtualization may have it enabled in their distros .. so the effect is the same. We must have this tracking tag in out patches. This is a bulk update to add the tag and silence the QA message. As packages get updated, the normal/routine process of checking the patches will continue, and the status fields may (or may not) get more useful. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Martin Jansa
|
31970eba93 |
containerd-opencontainers: fix Upstream-Status format
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
51a891439b |
lxc: update to v5.0.2
We drop a patch that has been merged upsream, and also bump the
version to lxc-5.0.2, which comprises the following commits:
d57173681 Release LXC 5.0.2
17c85aac6 Fix build error on sparc64 caused by using the gold linker
b7dfb1312 lxc-default-cgns apparmor profile: allow overlay mounts
5cde898f4 lxc_user_nic: fix get_mtu() error handling
80553b5b4 Patching an incoming CVE (CVE-2022-47952)
1089f49c5 build: force linking against liblxc
0d2a03118 checkconfig: Fix filesystem capability check
e17429580 checkconfig: Tweak cgroup handling
4ab76611d checkconfig: Tweak layout
0bca9bb18 checkconfig: Hide version if no lxc-start
957e0a5d9 checkconfig: Fix mixed tabs/spaces
4916a16bd src/lxc/meson.build: fix build without apparmor
a330126b4 build: use cc.get_define to detect FS_CONFIG_* symbols
c89be8325 cgroups: fix cgroup layout detection in __initialize_cgroups
7802f3647 state: additional check in lxc_wait to prevent OOB
4b434bf52 cgroups: check snprintf retval in unpriv_systemd_create_scope
0eca8d2ea cgroups: fix buffer out-of-bounds access in enable_controllers_delegation
4ce8345d6 network: always initialize struct nl_handler
28a1591cd apparmor: properly check lxc_strmmap ret value
bd56c89ea github: fix coverity (add libpam-dev)
a1ead0dcc github: fix coverity build
9e35b3ecd conf: ensure mount tunnel is a dependent mount
2ff447445 apparmor: allow shared mounts in start-container.in
58e878209 conf: create separate peer group for container's root
06b4612ee cgroups: only allocate user namespace if we have to
2662959b8 cgroups: use userns_exec_full() during cgroup removal
4dcc84c6b README: remove lgtm
748720ceb tests: lxc-test-reboot: Fix build on ia64
5749e2e20 Unroll IN_SET since the max usage is 2 elements check
495b1bbf4 tests: lxc-test-checkpoint-restore: use trap to do cleanup
77e08b887 tools: lxc-destroy: update help message for --force
9165ff1ed lxc/attach: Detect EACCES from execvp and convert to 126 exit status
011faff36 lxc-attach: Fix lost return codes of spawned processes that are killed
931693945 Update README.md
a6287882e conf: allow cross-device links
8fa6d765a build(deps): bump actions/checkout from 2 to 3
e08c1b740 Update cifuzz.yml
0e9e64db8 fix error message when use tools with -? option
f1a61a5f0 use sd_bus_call_method_async to replace the asyncv one
ca863bd72 tree-wide: split open helpers into open_utils.h
02900160c build: prevent the inclusion of linux/mount.h with a hack
51b8763b0 mount_utils: remove conf.h include
460243f40 mount: move mount utilities from syscall_wrappers.h into mount_utils.h
d5d7e2036 tree-wide: minimize liburing.h inclusion
e2b8776bb meson: fix docbook2x detection
d1dfce9c5 tree-wide: use struct open_how directly
c9bca3326 tree-wide: use struct clone_args directly
497479ea3 tree-wide: wipe direct or indirect linux/mount.h inclusion
02f4bd00f build: check for FS_CONFIG_* header symbol in sys/mount.h
c222fb567 gitignore: Simplify
22e8a7941 meson.build: strip newline for variable assignments
d5600cf76 meson.build: strip newlines from git output
7d6b53438 src/lxc/meson.build: fix the static library path
1d5c7e771 build: drop build-time systemd dependency
59f69162c build: only build init.lxc.static if libcap is statically linkable
062c2d980 build: fix handling of dependancies to fix build on openSUSE
2a9743bba cgroups: fix -Waddress warning
e510d6bd8 build: detect sys/pidfd.h availability
b7b269680 build: detect where struct mount_attr is declared
5313e5048 meson.build: allow explicit distrosysconfdir
0539095ac Release LXC 5.0.1
a1329fefe README: update security mails
315d4cec6 meson.build: fix build without stack-protector
aba631cd4 meson.build: fix build with -Dcapabilities=false
c2ee9b440 src/lxc/log.h: fix STRERROR_R_CHAR_P
d441ee585 meson: add remaining still-in-use config checks
00a79876b Store mount options in correct variable
da0f35646 Fix off-by-one error constructing mount options
31bff905a add check for statvfs
242289b6b start: fix namespace sharing
41f602361 conf: fix append_ttyname()
ea4fd7f85 start: record inherited namespaces earlier to make it available for idmapped rootfs setup
e74fd55bc start: don't overwrite file descriptors during namespace preservation
dcfd75bb4 conf: log file descriptors on error during idmapped mount setup
c3e648700 fix for issue 4026: set broadcast to 0.0.0.0 for /31 and /32
cfcbdb75f use systemd dbus StartTransientUnit for unpriv cgroup2
28726f215 Fix uninitialized read in parse_cap when libcap is not used
d663495ee meson: Generate compile commands by iterating over an array
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5b1e03f314 |
podman-tui: fix build with btrfs-tools 6.1
We'd really prefer to bump the vendor SRCREV and allow the fetcher to bring in the pending change without needing a patch, but there are other API changes that trickle through the code. So we extract just the patch we need, and leave the SRCREV info in the recipe, to document the source. When the upstream updates its vendor/ directory, we can drop this (as the patch will no longer apply) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0b9260ade5 |
buildah: fix build with btrfs-tools 6.1
We'd really prefer to bump the vendor SRCREV and allow the fetcher to bring in the pending change without needing a patch, but there are other API changes that trickle through the code. So we extract just the patch we need, and leave the SRCREV info in the recipe, to document the source. When the upstream updates its vendor/ directory, we can drop this (as the patch will no longer apply) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
67e8b34d99 |
skopeo: fix build with btrfs-progs 6.1
| # github.com/containers/storage/drivers/btrfs | vendor/github.com/containers/storage/drivers/btrfs/btrfs.go:387:11: args.lim.max_referenced undefined (type _Ctype_struct_btrfs_qgroup_limit has no field or method max_referenced) | recipe skopeo-v1.8.0+gitAUTOINC+b95e081162-r0: task do_compile: Failed Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a49eaf45a4 |
buildah: update to 1.28.x
Bumping buildah to version v1.25.0-547-gcfefbb64, which comprises the following commits:
ea9b705a [release-1.28] Bump to c/storage v1.43.1 for s390x sigsegv fix
6eb52c6b [release-1.28] Bump c/image to v5.23.1
5fb010fe version: bump to 1.28.2
69d3fcd8 Stop using ubi8
9fa3c167 Define and use a safe, reliable test image
9136e86e version: bump to v1.28.1
ff08605b copier.Put(): clear up os/syscall mode bit confusion
6bc044dc retrofit, test: ubi8 changed architecture string
79f41e32 Bump to v1.28.0
1deec7ce No longer modify buildah.spec
a53f342f Update for https://github.com/klauspost/pgzip/pull/50
3c5f9886 Update vendor containers/(common,image)
88615e98 [CI:DOCS] Add quay-description update reminder
95bb0250 vendor: bump c/common to v0.49.2-0.20220929111928-2d1b45ae2423
aaba84ff build(deps): bump github.com/opencontainers/selinux
675a7332 Vendor in latest containers/storage
28195ac9 Changing shell list operators from `;` to `&&`
fc458032 Fix buildahimage container.conf permissions regression
9ae09bf7 Set sysctls from containers.conf
e67bb090 refactor: stop using Normalize directly from containerd package
3cd0fa2b config,builder: process variant while populating image spec
899ecaaf Proof of concept: nightly dependency treadmill
31dc089c Run codespell on code
07ab5a5c Check for unset build args after TARGET args
ea81614a pkg/cli: improve completion test
bb285e53 vendor in latest containers/(common,storage,image)
f3a73b70 copier: work around freebsd bug for "mkdir /"
16a4eee2 vendor: update c/image
02d4a6b5 test: run in the host cgroup namespace
5cde04cd vendor: update c/storage
e3d48600 vendor: update c/common
94ab98d6 cmd: check for user UID instead of privileges
4c9fc47f run,build: conflict --isolation=chroot and --network
de9c3841 Fix broken dns test (from merge collision)
8d5d7632 Fix stutters
b4135818 Fix broken command completion
fc3ae53b buildah bud --network=none should have no network
3c092e5e build: support --skip-unused-stages for multi-stage builds
87d4ae88 Prevent use of --dns* options with --net=none
fd14bfe5 buildah: make --cache-ttl=0s equivalent to --no-cache
ac30ed23 parse: make processing flags in --mount order agnostic
deb2d903 Minor test fix for podman-remote
a30b71db build: honor <Containerfile>.containerignore as ignore file
46db0211 Update install.md: Debian 11 (Bullseye) is stable
4e5be719 build(deps): bump github.com/docker/docker
4407875a Use constants from containers/common for finding seccomp.json
4808f3b7 Don't call os.Exit(1) from manifest exist
9f435de8 manifest: add support for buildah manifest exists
0bdbd1a8 Buildah should ignore /etc/crio/seccomp.json
9c147ab8 chroot: Fix cross build break
309f714b chroot: Move isDevNull to run_common.go
363bf9c5 chroot: Fix setRlimit build on FreeBSD
dc49c3cb chroot: Move parseRLimits and setRlimits to run_common.go
b64d8143 chroot: Fix runUsingChrootExecMain on FreeBSD
4d963eb5 chroot: Move runUsingChrootExecMain to run_common.go
0a61e4b2 chroot: Factor out Linux-specific unshare options from runUsingChroot
3b42b515 chroot: Move runUsingChroot to run_common.go
350c509e chroot: Move RunUsingChroot and runUsingChrootMain to run_common.go
188dcc36 chroot: Factor out /dev/ptmx pty implementation
f9814601 chroot: Add FreeBSD support for run with chroot isolation
b9db9574 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
64534a88 Replace k8s.gcr.io/pause in tests with registry.k8s.io/pause
168a39dd build(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1
514ff3dc Cirrus: use image with fewer downloaded dependencies
a96eb0b0 build(deps): bump github.com/opencontainers/runc from 1.1.3 to 1.1.4
9934b173 run: add container gid to additional groups
f46ef3b2 buildah: support for --retry and --retry-delay for push/pull failures
811741fe Makefile: always call $(GO) instead of `go`
010ac5e0 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.2 to 1.8.3
0c4b19ba test: use `T.TempDir` to create temporary test directory
90cf4fc0 mount,cache: enable SElinux shared content label option by default
354f96f6 commit: use race-free RemoveNames instead of SetNames
491ad027 Drop util/util.Cause()
9637a244 cmd/buildah: add "manifest create --amend"
7533aa56 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.1 to 1.8.2
17e6fe01 docs: specify git protocol is not supported for github hosted repo
da4647bd Scrub user and group names from layer diffs
2eb519fb build(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.8
3a6919b5 version: bump to 1.28.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
0510eb580c |
skopeo: update to v1.10.0
Bumping skopeo to version v1.10.0-77-g4517ea0b, which comprises the following commits:
58bccf38 fix(deps): update module golang.org/x/term to v0.4.0
f0c08985 [skip-ci] Update actions/stale action to v7
92e3146a proxy: Fix leak of blobs from containers-storage
960713da vendor: Bump golang.org/x/net to 4.0
b51f8ea2 proxy: Ensure images are closed when proxy is shutting down
9c6cbc94 Add an example for creating a docker-archive file
3eb9d71d proxy: Add GetLayerInfo API
46d48295 fix(deps): update module golang.org/x/term to v0.3.0
3212bbed [skip-ci] GHA/Cirrus-cron: Fix execution order
40ba7a27 Update skopeo-inspect man page example
278be5a5 README: Update example to show newly exposed LayerData
b5ac5349 [CI:BUILD] Cirrus: Migrate OSX task to M1
35532b24 Adds sync with tag suffix example
1af1d9c2 GHA: Add cirrus-cron auto-rerun job
bdf19302 Adds `--append-suffix` flag to sync
563c91a2 fix(deps): update module github.com/containers/storage to v1.44.0
e1fdb4da Cirrus: Add reverse-deps. test to verify proxy ext
d06bf27e [skip-ci] Update actions/stale action to v6
8410bfdd fix(deps): update module golang.org/x/term to v0.2.0
16d4a81b Renovate: Override global no-rebase option
2b55a723 chore(deps): update actions/stale to v3
f968b2a8 fix(deps): update module github.com/spf13/cobra to v1.6.1
fe5c4091 Close a HTTP response body
d5327bce fix(deps): update module golang.org/x/term to v0.1.0
6d3d9a3b fix(deps): update module github.com/stretchr/testify to v1.8.1
5c69302d Update to c/image main branch
6d564d4d bump to v1.11.0-dev
4c0e5650 chore(deps): add renovate.json
757ec5db proxy: Bump semver for OpenImageOptional
08b27fc5 proxy: Add `OpenImageOptional`
9b6f5b6e Add a workaround for public.ecr.aws not implementing tag list at all
632cebd7 Update AWS workaround to use Golang types
ea9aa68b Reorganize the "list tags failed" logic in inspect.go a bit
c476d626 Remove a (skopeo inspect) workaround for IBM Bluemix
fce2cf9c Fix an error message to refer to repo, not a single image
9724da1f Remove a special case for failing to list tags in (skopeo sync)
955a59c8 Update tests for changed error texts
ae50898b Include c/image after https://github.com/containers/image/pull/1299
f3aee25c Fold a long line.
1983173b Remove single-use "wanted" variables
4ccfb033 Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
a4951550 Bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
e021b675 Bump github.com/opencontainers/image-spec from 1.1.0-rc1 to 1.1.0-rc2
5eace407 Bump to v1.10.1-dev
ee60474d Release v1.10.0
7ebff0f5 Update for https://github.com/klauspost/pgzip/pull/50
787e1087 Revert addition of -compat=1.17 to (go mod tidy)
ee84302b Update vendor containers/(common,image)
89ae387d [CI:DOCS] Add quay-description update reminder
feabfac2 Bump github.com/containers/storage from 1.42.0 to 1.43.0
18a95f94 Fix documentation in the default registries.d content.
9b40f0be default.yaml should have all options commented
166b587a warn about ineffective destination opts in sync cmd
0a42c33a document imageDestOptions.warnAboutIneffectiveOptions()
90c50338 warn users about --dest-compress and --dest-decompress misuse
d3ff6e26 warn users about --dest-compress and --dest-decompress misuse
3a05dca9 Don't abort sync if the registry returns invalid tags
d9dfc448 add inspect layersData
ba23a916 Stop using docker/docker/pkg/homedir in tests
4b9ffac0 Update for c/image's update of github.com/gobuffalo/pop
f36752a2 Don't include git commit from a parent directory in the --version output
4e2dee43 Remove unused GIT_BRANCH definition
3450c11a Point at --all in the --preserve-digests option documentation
3a808c2e Talk about "registry repositories" in (skopeo sync) documentation
04169cac Fix looking for commands with GNU make 4.2.1
a99bd0c9 Fix a comment
fa2b15ff Reformat with Go 1.19's gofmt
9e79da5e Fix running tests on macOS
a863a0dc Optimize upstream skopeo container image build
67a4e044 GHA: Re-use identical workflow from buildah repo
e95123a2 Bump to v1.9.3-dev
ca1b0f34 Release v1.9.2
73a668e9 Bump github.com/containers/common from 0.49.0 to 0.49.1
eafd7e55 Cirrus: Update CI VM images to match podman CI
b9cf626e [CI:DOCS] Cirrus: Use the latest imgts container
63dabfcf Bump to v1.9.2-dev
2eac0f46 Release v1.9.1
b7e7374e Stop using deprecated names from c/common/pkg/retry
08846d18 Update to github.com/containers/common v0.49.0
049163fc Update to github.com/containers/image/v5 v5.22.0
b42e6648 Bump github.com/containers/storage from 1.41.0 to 1.42.0
ee477d88 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
f1485781 Bump to v1.9.1-dev
a03cba7c Release v1.9.0
b000ada3 Update for the renames of sigstore to lookaside
f2b4071b Add --sign-by-sigstore-private-key to (skopeo copy) and (skopeo sync)
06be7a15 Vendor in c/image with sigstore support
61593fcc Revert "Change a repo used for sync tests"
62158a58 Vendor unreleased c/image with OCI artifact support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6cb3aa39c4 |
podman-tui: update to v0.7.0
Bumping podman-tui to version v0.7.0-54-gab303cb, which comprises the following commits:
d048d49 Bump actions/stale from 6 to 7
6941d4b Bump github.com/navidys/tvxwidgets from 0.2.0 to 0.3.0
4dc84ff displaying progressbar before container logs command
2d6301a adding published port feature to pod create dialog
2542fc6 removing empty first row in container and network UI create dialogs
efab06c removing command dialog button to imporve usability
2bf1d94 Bump github.com/docker/docker
5c2e001 Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
38971ec UI style update
48a69ec Bump golang.org/x/crypto from 0.3.0 to 0.4.0
a625ea1 Bump actions/checkout from 2 to 3
a86fec2 Bump github.com/containers/buildah from 1.28.1 to 1.28.2
9ca60c7 podman-tui container image build/push to quay.io
d761fbb Bump github.com/containers/buildah from 1.28.0 to 1.28.1
ae29593 Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1
2e38146 Bump actions/setup-python from 3 to 4
e9f743f workflow update - fix unit test failure
a0559a6 github workflow update
06aa9f7 fix build issue (vendor)
d8f9836 Vagrant box update to fc37
f25d471 Bump golang.org/x/crypto from 0.1.0 to 0.3.0
32c3fdc Bump github.com/containers/podman/v4 from 4.3.0 to 4.3.1
310413d Bump github.com/onsi/gomega from 1.24.0 to 1.24.1
cbeb46a Bump github.com/containers/storage from 1.43.0 to 1.44.0
34908fa Bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.0
bad66a1 Bump github.com/navidys/tvxwidgets from 0.1.1 to 0.2.0
5604863 Bump to v0.8.0-dev
864efdb Bump to v0.7.0
8cb0529 cirrus + golangci update
b7b6461 fix vendoring failure
770524b cirrus config update
d7aecf7 config and pdcs update for podman v4.3.0
e03f327 Bump actions/checkout from 2 to 3
825e7ad Bump actions/stale from 1 to 6
4a01ff4 Bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
edd09ae Check for gha updates daily with dependabot
1a78fbf Bump github.com/docker/docker
7cae6c1 Bump github.com/onsi/gomega from 1.22.1 to 1.24.0
a29f3d6 Bump github.com/containers/podman/v4 from 4.2.1 to 4.3.0
95a0b04 static build support
7ef4a18 new feature - container restore
5726afc fix test failure for utils and network disconnect dialog
01a47e6 Bump github.com/spf13/cobra from 1.6.0 to 1.6.1
1a5d851 Bump github.com/BurntSushi/toml from 1.2.0 to 1.2.1
524425e Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0
eefa975 Bump github.com/docker/docker
fe94ca4 new feature - container checkpoint
7f48cad Bump github.com/docker/docker
323170f Bump github.com/onsi/ginkgo/v2 from 2.3.0 to 2.3.1
7132fa3 Bump github.com/onsi/gomega from 1.22.0 to 1.22.1
8d62658 Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.0
804d67c Bump github.com/onsi/gomega from 1.21.1 to 1.22.0
f716b4e Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
999474b Bump github.com/onsi/gomega from 1.20.2 to 1.21.1
7d9e702 Bump github.com/containers/buildah from 1.27.2 to 1.28.0
a2101f5 Bump github.com/containers/common from 0.49.1 to 0.50.1
a763ca1 Bump github.com/containers/buildah from 1.27.1 to 1.27.2
afb6a84 Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0
134fb0d Bump github.com/docker/docker
b304117 Bump github.com/containers/buildah from 1.27.0 to 1.27.1
8bf10e8 Bump to v0.7.0-dev
a823c9e Bump to v0.6.0
0e5f649 Bump github.com/containers/podman/v4 from 4.2.0 to 4.2.1
58c41ff Bump github.com/docker/go-units from 0.4.0 to 0.5.0
05165bf Bump github.com/onsi/gomega from 1.20.1 to 1.20.2
129c846 Bump github.com/onsi/ginkgo/v2 from 2.1.4 to 2.1.6
da069d1 Bump github.com/rs/zerolog from 1.27.0 to 1.28.0
fffd28a new feature - network disconnect
50e88b2 adding approvers to OWNERS file + running codespell
0db8f99 new feature - network connect
95abf3a Bump github.com/containers/podman/v4 from 4.1.1 to 4.2.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Xiangyu Chen
|
e48b934c83 |
criu: avoid textrel QA Issue warning
Fix some of arch such as arm/aarch64 would report QA warning as below: WARNING: criu-3.17.1+gitAUTOINC+d46f40f4ff-r0 do_package_qa: QA Issue: criu: ELF binary /usr/sbin/criu has relocations in .text [textrel] Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d3acb1a378 |
docker/moby: use generic DOCKER_COMMIT in do_compile
do_compile() is shared and shouldn't have been using SRCREV_moby as that is obviously only set in the moby recipe. Switch to using a generic DOCKER_COMMIT variable and set it in both docker_moby and docker-ce. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
3f45dc8e69 |
docker: add seccomp to default packageconfig settings
Much of meta-virt requires seccomp to function properly, so we update docker to match that common default. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9d84fcdc6d |
docker: add mobyproject:moby to CVE_PRODUCT
Add mobyproject:moby to CVE_PRODUCT to reflect where the source is coming from for both docker recipes. We keep the old 'docker' designation for compatibility. It is unclear whether or not we should also be adding the cli and libnetwork to the CVE_PRODUCT. But since they are on different SRCREVs and not vendored, we keep them out for now. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d48db9ba95 |
crun: update to v1.7
Bumping crun to version 1.7-6-gbebd67f, which comprises the following commits:
cb6ae27 handlers: set selinux/apparmor profile
0efbe56 utils: change AppArmor profile for the current proc
f1f286a utils: change SELinux label for the current proc
a1cd1a6 handlers: use only the handler name if needed
40d996e NEWS: tag 1.7
3239c52 container: do not leak container status
ab73033 utils: do not leak error
fe21bee cgroup: fix memory leak
10c1fcc handlers: add an alias field
92e67d7 wasm: check pointers before dereferencing
cc2ab3b copr: enable wasmedge support for f36 and higher
9c5ad48 container: rewrite argv when using a handler
a81b115 libcrun: propagate argc and argv
0a94c5b linux: create parent dir with 0755
5308c49 copr: crun-wasm subpackage
8743809 crun: automatically pick handler from argv0
ddb614b crio,test: skip unrelated seccomp notifier with *
6feeff4 wasmtime: add support for compiling .wat format
7b49b79 NEWS: fill data for old releases
baa98f4 container: use clone3 to join directly the target cgroup
37a438d cgroupfs: implement precreate cgroup
c4af47e cgroup: new interface to preload a cgroup
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6499f37793 |
containerd: update to v1.6.9
Bumping containerd to version v1.6.9-12-g6c41694da, which comprises the following commits:
5af8d89ce overlayutils: Add fastpath for userxattr check
303f608dd [release/1.6] update to Go 1.18.8 to address CVE-2022-41716
3f9f9508d ctr export strictly match default platform
df73acad5 [release/1.6] go.mod: Bump hcsshim to v0.9.5
658490b78 ctr import: strictly match platform
4907b4d72 Migrate away from GitHub actions set-output
f1493f665 Prepare release notes for v1.6.9
346412f5a adding support of CAP_BPF and CAP_PERFMON
99578d1fc Update mailmap
a956d8415 Add logging volume metrics to Containerd CRI plugin
29e2dea50 fix pusher concurrent close channel
8a9d69385 [release/1.6] Stats() shouldn't assume s.container is non-nil
a9adc7938 cri: PodSandboxStatus should tolerate missing task
b66eb726a migrate from k8s.gcr.io to registry.k8s.io
5b40993a5 [release/1.6] upgrade containerd/continuity from v0.2.2 to v0.3.0
f2376e659 Update container with sandbox metadata after NetNS is created
06f82efef archive: validate digests before use
28324c529 [release/1.6] Update go 1.18.7, addresses CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
0aeeb62cb [release/1.6] update golangci-lint to v1.19.0
7db9d1f76 Fix linter warnings
4dc932e62 [release/1.6] gofmt with go1.19
7b8d679ad [release/1.6] integration: remove use of deprecated io/ioutil
926b9c72f retry request on writer reset
b9a35c6af Add integration tests with failpoint
1f29fac48 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
a85709c6c integration: simplify CNI-fp and add README.md
d89a8d223 pkg/failpoint: add FreeBSD link and update pkg doc
b0ce2965a integration: Add injected failpoint testing for RunPodSandbox
a7f956d86 integration: CNI bridge wrapper with failpoint
07c479471 pkg/failpoint: add DelegatedEval API
4a5bc05aa runtime/v2/shim: return if error in load plugin
71ee7de24 bin/ctr,integration: new runc-shim with failpoint
3e2e77849 runtime/v2: manager supports server interceptor
cb935bf49 pkg/failpoint: init failpoint package
2fdfd564c make xattr EPERM non-fatal in createTarFile
89e49609d remotes/docker/config: Skipping TLS verification for localhost
b720be2ce remove stray .zuul.yaml
6b30bc4b4 .zuul: remove the zuul because it is offline
0f7e258ee Set grpc code for unimplemented cri-api methods
fb753e5cd update intergration
6ee5bb7ea bump cri-api
ae8598615 ContainerStatus to return container resources
d3c7e31c8 Update CRI-API
5b44c5271 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
3507d600b update runc binary to v1.1.4
1efd8b947 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
11caf690da |
moby: update to v20.10.21
Bumping moby to version v20.10.21-4-g4ed81ac0e2, which comprises the following commits:
f292bf0f4f distribution: Error when pulling OCI artifacts
0211f9e44d [20.10] update to Go 1.18.8 to address CVE-2022-41716
f99cb8297b integration: download busybox-w32 from GitHub Release
3f9dc25f5c update containerd binary to v1.6.9
87ccd38cea vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
e83e465ae2 [20.10] vendor: github.com/moby/buildkit eeb7b65ab7d651770a5ec52a06ea7c96eb97a249 (v0.8 branch)
9c84417c1b skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
5b5b5c6f13 builder: add missing doc comment
05e25f7892 builder: fix running git commands on Windows
2f3bf18014 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
6699afa549 registry: allow "allow-nondistributable-artifacts" for Docker Hub
4b9902bad4 Validate digest in repo for pull by digest
c0d1188c14 builder: make git config isolation opt-in
9f5f3abcee builder: isolate git from local system
10db4c2db7 builder: explicitly set CWD for all git commands
8816c3c2aa builder: modernize TestCheckoutGit
11bdbf40b9 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
66ddb7f91c Fix live-restore w/ restart policies + volume refs
c003392582 contrib: make dockerd-rootless-setuptool.sh more robust
53313be0f3 docker-rootless-setuptools.sh: use context after install
9c486bd267 swagger: update links to logo
fa17fab895 vendor: github.com/containerd/console v1.0.2
481bee51b5 vendor: github.com/armon/go-metrics v0.4.1
39ba2873e8 vendor: github.com/google/btree v1.1.2
c2755f40cd vendor: github.com/hasicorp/memberlist v0.4.0
5ba3208ec7 Dockerfile: Update Dockerfile syntax, switch to bullseye, add missing libseccomp-dev, remove build pack
6d6a236286 [20.10] Update uses of Image platform fields in OCI image-spec
2570784169 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
fcd4df906b Update some tests for supplementary group permissions
6a0186b357 Wrap local calls to the content and lease service
3d4616f943 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
23c7d84b84 docs: api: adjust ContainerWaitResponse error as optional
3e9e79d134 docs: api: document ImageSummary fields (api v1.39-v1.41)
fdd438ae03 api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
97014a8db5 namesgenerator: remove Valentina Tereshkova
e44d7f735e AdditionalGids must include effective group ID
9e7662e4a7 [20.10] vendor: update containerd to latest of docker-20.10 branch
7dac25a3a9 vendor: update tar-split to v0.11.2
8bd86a0699 update containerd binary to v1.6.8
6c8dd6a6f2 update runc to v1.1.4
418c141e64 [20.10 backport] daemon: kill exec process on ctx cancel
d127287d92 Allow different syscalls from kernels 5.12 -> 5.16
57db169641 seccomp: add support for Landlock syscalls in default policy
7ba8ca042c Update golang to 1.18.5
f2a3c3bcef update golang to 1.18.4
a99c9cd852 update golang to 1.18.3
82939f536b update golang to 1.18.2
ecd1aa081f update golang to 1.18.1
7ba67d05a8 [20.10] vendor: update archive/tar for go 1.18
0bc432241e update golang to 1.18.0
bb95d09f9a staticcheck: ignore "SA1019: strings.Title is deprecated"
a7299ae72c Dockerfile: update golangci-lint v1.44.0
d97fd533cf integration-cli: SA5011: possible nil pointer dereference (staticcheck)
e6aee04a88 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
0523323c28 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
adeb29c64c client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
50361d91a6 registry: trimV1Address(): simplify trimming trailing slash
ae3a9337dd golangci.yml: do not limit max reported issues
9820255a1c golangci.yml: skip some tests
d223f37300 golangci.yml: update regex for ignoring SA1019
ec3bfba89d graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
f2f387b131 daemon: var-declaration: should omit type bool (revive)
2fb7c9fea7 daemon/config: error strings should not be capitalized
fa6954cb98 reformat "nolint" comments
45fa675a35 if-return: redundant if ...; err != nil check (revive)
9e88f8435a daemon/splunk: ignore G402: TLS MinVersion too low for now
2de90ebbe4 pkg/archive: RebaseArchiveEntries(): ignore G110
14b475d091 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
db7b3f4737 unused: ignore false positives
b6de0ca7c5 G601: Implicit memory aliasing in for loop
e8b838e99f gosec: G601: Implicit memory aliasing in for loop
2ddf6e598a gosimple: S1039: unnecessary use of fmt.Sprintf
fadf8bbdff staticcheck: SA4001: &*x will be simplified to x. It will not copy x
7573e32577 client: S1031: unnecessary nil check around range (gosimple)
e738a57a6d daemon/logger/journald: fix linting errors
34f6b94255 gosec: G404: Use of weak random number generator
a6d7b61c8b update containerd binary to v1.6.7
b4ba1ee22f update runc binary to v1.1.3
da8828c4b3 api: swagger: fix invalid example value (API v1.39-v1.41)
9501d91e19 api: swagger: document BuildCache fields (API v1.39-v1.41)
61fdea902b api: swagger: document BuildCache fields.
c77432c889 [20.10] Update golang to 1.17.13
2833aa1e4b docs: api: add missing "platform" query-arg on create (v1.41)
a8c28260ad api: swagger: add missing "platform" query-arg on create
cfdc075b1c Fix file capabilities droping in Dockerfile
2daa6bb6b3 Windows: Re-create custom NAT networks after restart if missing from HNS
903cd53ce4 vendor: libnetwork 0dde5c895075df6e3630e76f750a447cf63f4789
eccaf6d368 [20.10] update golang to 1.17.12
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
Bumping libnetwork to version v0.7.0-dev.3-1841-gdcdf8f17, which comprises the following commits:
5e08bdb1 Revert: Added API to set ephemeral port allocator range
563fe8e2 README.md: repo was moved to https://github.com/moby/moby/tree/master/libnetwork
bea0bcf5 libnetwork: skip firewalld management for rootless
af0c46d8 Apply peformance tuning to new sandboxes also
Bumping docker-cli to version v20.10.21, which comprises the following commits:
3e3677e47d docs: fix links to BuildKit backend
20e3951aeb Remove "experimental" gates around "--platform" in bash completion
75d7ce92a2 fixed the plugin command docker-runc
a12c535f6e [20.10] vendor docker 03df974ae9e6c219862907efdd76ec2e77ec930b (v20.10.20)
d18a3e9004 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
932ca73874 [20.10] vendor: github.com/docker/docker v20.10.19
7d51e65e72 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
1ea8d69d6f feat(docker): add context argument completion
e82aa85741 [20.10] vendor: github.com/docker/docker v20.10.18
e9176b36cc [20.10] vendor: github.com/containerd/continuity v0.3.0
bc6ff39e42 docs/reference: run.md update confusing example name
3fa7a8654f docs: update deprecation status for "overlay2.override_kernel_check"
3e06ce8bfa [20.10] Update go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
93eead45ee Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
45075ea08c [20.10] vendor: github.com/docker/docker v20.10.17
c2dcaecf19 make compose plugin detection in bash completion work on Mac OS
613b9362d0 Detect compose plugin
b30d250320 Add completion for docker-compose plugin
6b25bc3003 fix race condition in TestRemoveForce
bdac0b38d9 Update golang to 1.18.5
c70b01ec1f update golang to 1.18.4
0389090aeb update golang to 1.18.3
c904936d69 update golang to 1.18.2
386d50c2e9 update golang to 1.18.1
990186f2f6 update go to 1.18.0
86bf1966e2 staticcheck: ignore SA1019: strings.Title is deprecated
b3022b91d1 [20.10] Dockerfile.lint: use go install
f14ba9f5d7 [20.10] Dockerfile: use syntax=docker/dockerfile:1
c189c4dbea [20.10] vendor: github.com/json-iterator/go v1.1.12 for Go 1.18 compatibility
0c46ffc1f9 [20.10] vendor: github.com/modern-go/reflect2 v1.0.2 for Go 1.18 compatibility
6be9ce798e [20.10] vendor: github.com/google/gofuzz v1.0.0
779ed309a8 lint: update golangci-lint to v1.45.2
2f7e84be65 linting: fix incorrectly formatted errors (revive)
e628209d9b linting: ignore some "G101: Potential hardcoded credentials" warnings
80a3add604 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
80fb0d575e [20.10] Update golang to 1.17.13
d72bef2088 [20.10] update golang to 1.17.12
7502d7e560 Fix dead external link
308624c3b1 fix: remove asterisk from docker command suggestions
de7d866b6a [20.10] update golang to 1.17.11
240e4b5501 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5d4776bd90 [20.10] update golang to 1.17.10
49e9c2ae3d vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
87a3ce2699 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
1d8abed17d vendor: update x/sys to 134d130e
31dad66f9a [20.10] update golang to 1.17.9
80f673bf9e gofmt with go1.17
3d4cc8e699 [20.10] update remaining files to go1.17.8
30277a8f80 update go to 1.17.8
cfef3a7dc1 docs: deprecated: add entry for "fluent-async-connect" log-opt
53426025c3 [20.10] docs: reformat table for compatibility
573a664639 Describe privileged mode in terms of capabilities
cf0ab7ac4c [20.10] vendor: github.com/docker/distribution v2.8.1
d05fd4ffc8 [20.10] vendor: github.com/opencontainers/image-spec v1.0.2
870f138250 [20.10] vendor: github.com/docker/docker v20.10.14
198d6b8724 [20.10] circleci: update buildx to v0.8.2
55a14ec851 [20.10] update remaining Dockerfiles to go 1.16.15
1f9a0df05a e2e: update docker-compose to 1.29.2
4ae338b33a docs: reference: remove trailing space to fix yaml formatting
6380142dd4 docs: fix (table) formatting, fix some broken links
82f422fcf3 docs: build: fix minor markdown and syntax issues
80fd77903b Update the list of log drivers
c3d4d623c8 Fix CMD --ignored-param1 example
2e82d11def docs: dockerd: fix broken link in blockquote area
738a6ee1cc improve cp documentation with some illustration examples
246d96bb6c docs: unify "docker create" and "docker run" reference
2fd0f17057 docs: add missing documentation for --pull flag
5fa500000a Fix incorrect pointer inputs to `json.Unmarshal`
1e6a8ce2b7 Dockerfile: update xx to 1.1
6f7a931a2d [20.10] use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
91bab605f7 [20.10] vendor.conf: don't use git:// protocol
a282e0c5d2 [20.10] update to go 1.16.15 to address CVE-2022-24921
700364e304 Fix mistake with env var example in docker run docs
62d27c32ff Update WORKDIR command information
c0e952cf04 Fix the (dead) link for docs for Dockerfile syntax reference
04104a04d3 Update dockerd.md
b721998b7b Fixing typo (his --> its)
4065e1246e format create.md table
f1002eb9fb Fix typo
e97c7b240e added missing closing parenthese
aa78937634 Update stats.md add example json output
40fe0573aa Update Ubuntu version number references in push.md
c9737e1c37 docs/daemon: replace deprecated '-g' option for '--data-root'
5c6723d080 Correct device syntax to --gpus
fd5fc61ecd [20.10] Update Go to 1.16.14
3624019d83 [20.10] update Go to 1.16.13
f3ff8e6ad6 [20.10] vendor: compose-on-kubernetes v0.5.0 to remove github.com/golang/glog
ee1ac1b319 fix innocuous data-race when config.Load called in parallel
38dd744a11 [20.10] Update Go to 1.16.12
4de40a825e Update Go to 1.16.11
03fa8f92c8 Update Go to 1.16.10
9989fdbc40 Update most links in docs to use https by default
0e20c1fd21 Update Go to 1.16.9
1c0927a041 Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
82f9d5921b info: skip client-side warning about seccomp profile on API >= 1.42
adb01ca79d docs: some minor touch-ups in checkpoint reference
8260476a06 docs: remove trailing space to fix generated YAML format
bce2e1f953 docs: create.md: typo fix
44064f51c8 Fix typo in documentation - build.md
292779add5 Add doc for BUILDKIT_PROGRESS env var
f2e79b826c docs: use "console" code-hint for shell examples
fa46b92361 docs: rewrite reference docs for --stop-signal and --stop-timeout
400f81089a experimental: fix broken link to "checkpoint and restore" page
c72057c8db docs: move checkpoint/restore doc from experimental into reference
77db97d595 Use private network address for default-address-pools setting in daemon.json example
cbf0d2b7b7 docs: fix some broken anchors
d0014a86bc docs: fix description of restart-delay to mention max (1 minute)
6c1c8b55aa docs: fix search results by filterd is-official
44fdac11f5 Update Go to 1.16.8
061051c24d docs: add missing redirect, and remove /go/experimental redirect
2012fbf111 Update Go to 1.16.7
42d1c02750 registry: ensure default auth config has address
0b924e51fc Update to go1.16.6
6288e8b1ac change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
1e9575e81a cli/config/configfile: various test cleanups
c98e9c47ca Use designated test domains (RFC2606) in tests
8437cfefae context: deprecate support for encrypted TLS private keys
68a5ca859f cli/context: ignore linting warnings about RFC 1423 encryption
8a64739631 Update Dockerfiles to latest syntax, remove "experimental"
1d37fb3027 Deprecate Kubernetes context support
0793f96394 Deprecate Kubernetes stack support
b639ea8b89 Deprecate Kubernetes stack support
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
docker-ce: update to v20.10.21
Bumping docker to version v20.10.21-4-g4ed81ac0e2, which comprises the following commits:
f292bf0f4f distribution: Error when pulling OCI artifacts
0211f9e44d [20.10] update to Go 1.18.8 to address CVE-2022-41716
f99cb8297b integration: download busybox-w32 from GitHub Release
3f9dc25f5c update containerd binary to v1.6.9
87ccd38cea vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
e83e465ae2 [20.10] vendor: github.com/moby/buildkit eeb7b65ab7d651770a5ec52a06ea7c96eb97a249 (v0.8 branch)
9c84417c1b skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
5b5b5c6f13 builder: add missing doc comment
05e25f7892 builder: fix running git commands on Windows
2f3bf18014 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
6699afa549 registry: allow "allow-nondistributable-artifacts" for Docker Hub
4b9902bad4 Validate digest in repo for pull by digest
c0d1188c14 builder: make git config isolation opt-in
9f5f3abcee builder: isolate git from local system
10db4c2db7 builder: explicitly set CWD for all git commands
8816c3c2aa builder: modernize TestCheckoutGit
11bdbf40b9 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
66ddb7f91c Fix live-restore w/ restart policies + volume refs
c003392582 contrib: make dockerd-rootless-setuptool.sh more robust
53313be0f3 docker-rootless-setuptools.sh: use context after install
9c486bd267 swagger: update links to logo
fa17fab895 vendor: github.com/containerd/console v1.0.2
481bee51b5 vendor: github.com/armon/go-metrics v0.4.1
39ba2873e8 vendor: github.com/google/btree v1.1.2
c2755f40cd vendor: github.com/hasicorp/memberlist v0.4.0
5ba3208ec7 Dockerfile: Update Dockerfile syntax, switch to bullseye, add missing libseccomp-dev, remove build pack
6d6a236286 [20.10] Update uses of Image platform fields in OCI image-spec
2570784169 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
fcd4df906b Update some tests for supplementary group permissions
6a0186b357 Wrap local calls to the content and lease service
3d4616f943 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
23c7d84b84 docs: api: adjust ContainerWaitResponse error as optional
3e9e79d134 docs: api: document ImageSummary fields (api v1.39-v1.41)
fdd438ae03 api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
97014a8db5 namesgenerator: remove Valentina Tereshkova
e44d7f735e AdditionalGids must include effective group ID
9e7662e4a7 [20.10] vendor: update containerd to latest of docker-20.10 branch
7dac25a3a9 vendor: update tar-split to v0.11.2
8bd86a0699 update containerd binary to v1.6.8
6c8dd6a6f2 update runc to v1.1.4
418c141e64 [20.10 backport] daemon: kill exec process on ctx cancel
d127287d92 Allow different syscalls from kernels 5.12 -> 5.16
57db169641 seccomp: add support for Landlock syscalls in default policy
7ba8ca042c Update golang to 1.18.5
f2a3c3bcef update golang to 1.18.4
a99c9cd852 update golang to 1.18.3
82939f536b update golang to 1.18.2
ecd1aa081f update golang to 1.18.1
7ba67d05a8 [20.10] vendor: update archive/tar for go 1.18
0bc432241e update golang to 1.18.0
bb95d09f9a staticcheck: ignore "SA1019: strings.Title is deprecated"
a7299ae72c Dockerfile: update golangci-lint v1.44.0
d97fd533cf integration-cli: SA5011: possible nil pointer dereference (staticcheck)
e6aee04a88 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
0523323c28 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
adeb29c64c client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
50361d91a6 registry: trimV1Address(): simplify trimming trailing slash
ae3a9337dd golangci.yml: do not limit max reported issues
9820255a1c golangci.yml: skip some tests
d223f37300 golangci.yml: update regex for ignoring SA1019
ec3bfba89d graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
f2f387b131 daemon: var-declaration: should omit type bool (revive)
2fb7c9fea7 daemon/config: error strings should not be capitalized
fa6954cb98 reformat "nolint" comments
45fa675a35 if-return: redundant if ...; err != nil check (revive)
9e88f8435a daemon/splunk: ignore G402: TLS MinVersion too low for now
2de90ebbe4 pkg/archive: RebaseArchiveEntries(): ignore G110
14b475d091 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
db7b3f4737 unused: ignore false positives
b6de0ca7c5 G601: Implicit memory aliasing in for loop
e8b838e99f gosec: G601: Implicit memory aliasing in for loop
2ddf6e598a gosimple: S1039: unnecessary use of fmt.Sprintf
fadf8bbdff staticcheck: SA4001: &*x will be simplified to x. It will not copy x
7573e32577 client: S1031: unnecessary nil check around range (gosimple)
e738a57a6d daemon/logger/journald: fix linting errors
34f6b94255 gosec: G404: Use of weak random number generator
a6d7b61c8b update containerd binary to v1.6.7
b4ba1ee22f update runc binary to v1.1.3
da8828c4b3 api: swagger: fix invalid example value (API v1.39-v1.41)
9501d91e19 api: swagger: document BuildCache fields (API v1.39-v1.41)
61fdea902b api: swagger: document BuildCache fields.
c77432c889 [20.10] Update golang to 1.17.13
2833aa1e4b docs: api: add missing "platform" query-arg on create (v1.41)
a8c28260ad api: swagger: add missing "platform" query-arg on create
cfdc075b1c Fix file capabilities droping in Dockerfile
2daa6bb6b3 Windows: Re-create custom NAT networks after restart if missing from HNS
903cd53ce4 vendor: libnetwork 0dde5c895075df6e3630e76f750a447cf63f4789
eccaf6d368 [20.10] update golang to 1.17.12
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
Bumping libnetwork to version v0.7.0-dev.3-1841-gdcdf8f17, which comprises the following commits:
5e08bdb1 Revert: Added API to set ephemeral port allocator range
563fe8e2 README.md: repo was moved to https://github.com/moby/moby/tree/master/libnetwork
bea0bcf5 libnetwork: skip firewalld management for rootless
af0c46d8 Apply peformance tuning to new sandboxes also
Bumping docker-cli to version v20.10.21, which comprises the following commits:
3e3677e47d docs: fix links to BuildKit backend
20e3951aeb Remove "experimental" gates around "--platform" in bash completion
75d7ce92a2 fixed the plugin command docker-runc
a12c535f6e [20.10] vendor docker 03df974ae9e6c219862907efdd76ec2e77ec930b (v20.10.20)
d18a3e9004 [20.10] vendor moby/buildkit v0.8.3-31-gc0149372
932ca73874 [20.10] vendor: github.com/docker/docker v20.10.19
7d51e65e72 [20.10] vendor: github.com/moby/buildkit 3a1eeca59a9263613d996ead67d53a4b7d45723d (v0.8 branch)
1ea8d69d6f feat(docker): add context argument completion
e82aa85741 [20.10] vendor: github.com/docker/docker v20.10.18
e9176b36cc [20.10] vendor: github.com/containerd/continuity v0.3.0
bc6ff39e42 docs/reference: run.md update confusing example name
3fa7a8654f docs: update deprecation status for "overlay2.override_kernel_check"
3e06ce8bfa [20.10] Update go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
93eead45ee Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
45075ea08c [20.10] vendor: github.com/docker/docker v20.10.17
c2dcaecf19 make compose plugin detection in bash completion work on Mac OS
613b9362d0 Detect compose plugin
b30d250320 Add completion for docker-compose plugin
6b25bc3003 fix race condition in TestRemoveForce
bdac0b38d9 Update golang to 1.18.5
c70b01ec1f update golang to 1.18.4
0389090aeb update golang to 1.18.3
c904936d69 update golang to 1.18.2
386d50c2e9 update golang to 1.18.1
990186f2f6 update go to 1.18.0
86bf1966e2 staticcheck: ignore SA1019: strings.Title is deprecated
b3022b91d1 [20.10] Dockerfile.lint: use go install
f14ba9f5d7 [20.10] Dockerfile: use syntax=docker/dockerfile:1
c189c4dbea [20.10] vendor: github.com/json-iterator/go v1.1.12 for Go 1.18 compatibility
0c46ffc1f9 [20.10] vendor: github.com/modern-go/reflect2 v1.0.2 for Go 1.18 compatibility
6be9ce798e [20.10] vendor: github.com/google/gofuzz v1.0.0
779ed309a8 lint: update golangci-lint to v1.45.2
2f7e84be65 linting: fix incorrectly formatted errors (revive)
e628209d9b linting: ignore some "G101: Potential hardcoded credentials" warnings
80a3add604 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
80fb0d575e [20.10] Update golang to 1.17.13
d72bef2088 [20.10] update golang to 1.17.12
7502d7e560 Fix dead external link
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
containerd: update to v1.6.9
Bumping containerd to version v1.6.9-12-g6c41694da, which comprises the following commits:
5af8d89ce overlayutils: Add fastpath for userxattr check
303f608dd [release/1.6] update to Go 1.18.8 to address CVE-2022-41716
3f9f9508d ctr export strictly match default platform
df73acad5 [release/1.6] go.mod: Bump hcsshim to v0.9.5
658490b78 ctr import: strictly match platform
4907b4d72 Migrate away from GitHub actions set-output
f1493f665 Prepare release notes for v1.6.9
346412f5a adding support of CAP_BPF and CAP_PERFMON
99578d1fc Update mailmap
a956d8415 Add logging volume metrics to Containerd CRI plugin
29e2dea50 fix pusher concurrent close channel
8a9d69385 [release/1.6] Stats() shouldn't assume s.container is non-nil
a9adc7938 cri: PodSandboxStatus should tolerate missing task
b66eb726a migrate from k8s.gcr.io to registry.k8s.io
5b40993a5 [release/1.6] upgrade containerd/continuity from v0.2.2 to v0.3.0
f2376e659 Update container with sandbox metadata after NetNS is created
06f82efef archive: validate digests before use
28324c529 [release/1.6] Update go 1.18.7, addresses CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
0aeeb62cb [release/1.6] update golangci-lint to v1.19.0
7db9d1f76 Fix linter warnings
4dc932e62 [release/1.6] gofmt with go1.19
7b8d679ad [release/1.6] integration: remove use of deprecated io/ioutil
926b9c72f retry request on writer reset
b9a35c6af Add integration tests with failpoint
1f29fac48 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
a85709c6c integration: simplify CNI-fp and add README.md
d89a8d223 pkg/failpoint: add FreeBSD link and update pkg doc
b0ce2965a integration: Add injected failpoint testing for RunPodSandbox
a7f956d86 integration: CNI bridge wrapper with failpoint
07c479471 pkg/failpoint: add DelegatedEval API
4a5bc05aa runtime/v2/shim: return if error in load plugin
71ee7de24 bin/ctr,integration: new runc-shim with failpoint
3e2e77849 runtime/v2: manager supports server interceptor
cb935bf49 pkg/failpoint: init failpoint package
2fdfd564c make xattr EPERM non-fatal in createTarFile
89e49609d remotes/docker/config: Skipping TLS verification for localhost
b720be2ce remove stray .zuul.yaml
6b30bc4b4 .zuul: remove the zuul because it is offline
0f7e258ee Set grpc code for unimplemented cri-api methods
fb753e5cd update intergration
6ee5bb7ea bump cri-api
ae8598615 ContainerStatus to return container resources
d3c7e31c8 Update CRI-API
5b44c5271 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
3507d600b update runc binary to v1.1.4
1efd8b947 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
99e93d3f88 |
runc: update to 1.1.4-tip
Bumping runc to version v1.1.4-8-g974efd2d, which comprises the following commits:
3b958289 Fixes inability to use /dev/null when inside a container
335ec376 cirrus-ci: install EPEL on CentOS 7 conditionally
fb145a2f cirrus-ci: enable EPEL for CentOS 7
276297b6 VERSION: back to development
5fd4c4d1 Release 1.1.4
204c673c [1.1] fix failed exec after systemctl daemon-reload
ec2efc2c ci: fix for codespell 2.2
c778598c [1.1] ci/gha: fix cross-386 job vs go 1.19
d83a861d Fix error from runc run on noexec fs
d614445d [1.1] libct/nsenter: switch to sane_kill()
3ca5673f CI: workaround CentOS Stream 9 criu issue
c3986e53 tests/int: don't use --criu
f46c0dad [1.1] ci: fix delete.bats for GHA
6b94849d tests/int: runc delete: fix flake, enable for rootless
fa3354dc libct: fix mounting via wrong proc fd
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6dba10357c |
runc-docker: update to 1.1.4-tip
Bumping runc to version v1.1.4-8-g974efd2d, which comprises the following commits:
3b958289 Fixes inability to use /dev/null when inside a container
335ec376 cirrus-ci: install EPEL on CentOS 7 conditionally
fb145a2f cirrus-ci: enable EPEL for CentOS 7
276297b6 VERSION: back to development
5fd4c4d1 Release 1.1.4
204c673c [1.1] fix failed exec after systemctl daemon-reload
ec2efc2c ci: fix for codespell 2.2
c778598c [1.1] ci/gha: fix cross-386 job vs go 1.19
d83a861d Fix error from runc run on noexec fs
d614445d [1.1] libct/nsenter: switch to sane_kill()
3ca5673f CI: workaround CentOS Stream 9 criu issue
c3986e53 tests/int: don't use --criu
f46c0dad [1.1] ci: fix delete.bats for GHA
6b94849d tests/int: runc delete: fix flake, enable for rootless
fa3354dc libct: fix mounting via wrong proc fd
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
40c9a3afca |
crun: update to 1.6+
Bumping crun to version 1.6-75-g4907f10, which comprises the following commits:
0e4cf20 container: pass the argv0 on errors with handlers
6da989c wasmtime: honor error message length
2f46f21 wasmtime: mark unused argument
baa98f4 container: use clone3 to join directly the target cgroup
2497b9b linux: add run.oci.pidfd_receiver=PATH annotation
37a438d cgroupfs: implement precreate cgroup
c4af47e cgroup: new interface to preload a cgroup
352d8ac criu: use a temporary error
3ebaba3 container: cache the bpf generated by seccomp
18abbfc Typos: a/an
e5d4c07 man: fix indentation for run.oci.handler=HANDLER
74d097b seccomp: use relative paths to open bpf
8cfcc8f seccomp: move copy bpf to seccomp
7a66ccc container: move open_seccomp_output to seccomp
a2de8fb seccomp: add functions to calculate checksum
6861b2a container: compute seccomp options earlier
dd310aa configure.ac: add check for libgcrypt
81d3b16 exec: set context
0cffffe crun: display rundir in --version output
882a054 wasm: inherit environment variables in the WasmEdge handler
1f71880 man: cleanup run.oci.handler and define krun and wasm
d474211 Refer to libocispec header files under ocispec/
5027629 build(deps): bump uraimo/run-on-arch-action from 2.2.1 to 2.3.0
fef6ce2 build(deps): bump github/codeql-action from 1 to 2
5837234 crun: open libcrun with dlopen
5f2464f build(deps): bump actions/cache from 2 to 3
ba0adeb build(deps): bump uraimo/run-on-arch-action from 2.2.0 to 2.2.1
5d2a536 build(deps): bump actions/upload-artifact from 2 to 3
a4ffe17 build(deps): bump actions/checkout from 2 to 3
108d9ec Check for github actions updates on weekly basis
9f2acfc cgroup: account for swap usage for checkBeforeUsage
6666dec list: remove yajl usage
6fdcb89 container: new API libcrun_write_json_containers_list
e1b32c7 update: remove yajl usage
270961f python: Fix argument type in container_delete
17f4e55 container: new API libcrun_container_update_from_values
1c681c1 python: Fix argument parsing in make_context
e666af1 crun: chown std streams before joining the user namespace
391df45 linux: reject sysctl kernel.domainname when OCI knob domainname is set
f94655c test: ack (none) as output of getdomainname
fdb26d0 cgroup: honor checkBeforeUpdate
8758f31 add support for setting the domainname
17ba516 libocispec update
7ea7617 systemd: create sub-cgroup on v1 as well
08bccc7 tests: update containerd to 1.6.8
978e719 Copr: Fix i386 builds
18cf2ef NEWS: tag 1.6
396ac88 seccomp: honor SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
074cd9a wasm: provide an integration test for crun with wasmedge support
399e5ea wasm: use wasmedge library soname in dlopen
3e34345 crun: reintroduce -V (uppercase) as an alias for --version
17337c4 seccomp: use helper process to send listener fd
f34ebf2 Copr: wasmtime support only for non-x86
df20997 crun: now -v prints the version
fdcf83a utils: wrap mmap and munmap
95744c8 utils: unify read process exit status
44c305f linux: move definition of syscall_clone to linux.h
d254d3e utils: run process with timeout restores sigmask
57df79b init mask
430dea1 container: drop intermediate userns feature
2e647e0 crio,CI: skip failing checkpoint and restore one container
8d0dfc3 podman,CI: skip top on priviledged container
ad9008b copr: depend on wasmtime-c-api for shared lib
Bumping runtime-spec to version v1.0.2-114-g494a5a6, which comprises the following commits:
4bcd065 seccomp: Add flag SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV
6be797c CODEOWNERS: sync with MAINTAINERS
9e658bc config-linux: add memory.checkBeforeUpdate
1924f6b GOVERNANCE: correct the Charter URL
744912b add domainname spec entity
0da1600 fix rfc link
b57ada5 maintainer updates as per #1101
e78a3c3 Add available `LinuxSeccompFlag`s
Bumping libocispec to latest, which comprises the following commits:
02f231b Move header files under ocispec/
39e1872 Make libocispec installable
6fd1d94 update runtime-spec to latest
1e37c8a rust, runtime: add domainname to spec
d59cc93 rust,runtime: add MountUidMapping and MountGidMapping
ac69f5a rust,runtime: add idle type to CPU
e9c21c1 rust,runtime: rename GidMapping,UidMapping to Linux{Uid/Gid}Mapping
8258e1d image-spec: update from upstream
b2e74e1 runtime-spec: update from upstream
ce973fd parser: allocate empty arrays
845aad5 runtime-spec: sync from upstream
1380666 image-spec: sync from upstream
9bb6aa9 src: fix regression
27763d8 runtime-spec: sync from upstream
8abb1b1 image-spec: update from upstream
2ea0d22 runtime-spec: update from upstream
cde73d8 yajl: update from upstream
fc57095 src: fix generated code indentation
e739a1c .github: set safe directory
f09f411 build: fix bashism in configure.ac
23ed5eb git: ignore newly added test binary to prevent untracked changes in crun
d15ed35 fix bug when contain null value in json
2a622ef image-spec: update from upstream
3dd60db runtime-spec: update from upstream
88241d7 sync: add CMT and MBM fields to Intel RDT
Bumping image-spec to version v1.1.0-rc2-12-g4df8887, which comprises the following commits:
867ce74 ArtifactType is optional, omit when empty
59780aa Add ArgsEscaped field to image config
3625ee3 doc: fix example in artifact.md
94f2431 version: bump main back to -dev
19a74bc version: release v1.1.0-rc2
0a97fe7 docs: Added artifact.md to docs and spec.md
c91663b Update RELEASES.md
0e7e0dd docs: Update release process docs with checklist
5d055a4 version: switch back to -dev
4728b6e version: bump for 1.1.0-rc1 release
a7ac485 Rename refers field to subject (#950)
4c15674 Use go install and full path to commands
ce50f1f Bump from Go 1.16 to 1.17
ca2e500 Embed Platform in Image
a865bc0 Fix whitespace consistency in config.md
da33ef0 Remove io/ioutil references
ed7e07b Add artifact to spec.md
bc9c4bd Update schema for mediaType validation (#933)
b04b320 Working Group Proposal for Reference Types
ba36edd Add regclient to implementations
ba3f174 Add maintainer nomination template
08825b8 Pinning version of golangci-lint to support 1.16
9747134 Move inactive maintainers to emeritus
0bd8a03 Add Brandon as maintainer
c7ca3ac Update URLs to https
874a191 Add Sajay as maintainer
6ffdc78 Move inactive maintainers to emeritus
d6ce48a Add mediaType fields into example manifest & image index JSON references
bc44f5b Fixing charter link
0895292 implementations: point to krustlet/oci-distribution
02c5c05 implementations: adding the C and Rust libraries
a36b0c8 Handle multiple matching index entries
a3eee7d README.md: Remove link to OCI scope table The OCI scope table no-longer exists.
4533d3e schema: use Go's embed package instead of esc
d147780 .tool: remove lint tool, call linter directly
0e094f3 schema, specs-go: fix lint errors
d3cd202 *: switch to golangci-lint
4d865bc go: have the go.mod at top-level
0f6c001 Remove unneeded docker pull of pandoc image
de28903 Makefile: stale installation of glide was failing
3a46ac8 github: bring forward the versions of golang tested/built with
6ced3bd media-types: `.mediaType` is available in both OCI and Docker
3be64d9 version: bump main back to -dev
beccafd version: release 1.0.2
5b82148 specs-go: adding `mediaType` to the index and manifest structures
2eb4046 *.md: bring mediaType out of reserved status
e3885ce version: bump main back to -dev
67d2d56 version: release 1.0.2
dcdcb7f specs-go: adding `mediaType` to the index and manifest structures
5f31485 *.md: bring mediaType out of reserved status
3fee04b Adding ACR to implementations
8087946 Reflect docker dontation of distribution to CNCF
bd2fa25 Minor spelling correction
fc4df0a Fix very minor oversight in config example
0d98a6c Scope data verification to content consumers
83479d4 Clean up portability considerations
fccc435 Implementations MUST NOT populate data arbitrarily
2596ec0 Expand godoc for Data
58c082d Add note about portability concerns
ce281ce Add Embedded Data section
aaf8045 Define the data field
4f080a7 Add go.mod and pin dependencies
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
43396cb671 |
podman: update to 4.3
We add ${datadir}/user-tmpfiles.d/* to package some newly added systemd
files, but otherwise, the recipe is unchanged.
Bumping libpod to version v4.3.0-7-g9ce592fcb, which comprises the following commits:
83b02f8fd Update c/image from release-5.23 branch
14563ef13 system tests: fix broken bashisms
34ebb9af2 Release notes fixes
d5a0dfc1e Bump to v4.3.1-dev
ad42af949 Bump to v4.3.0
9496a3836 Final release notes for v4.3.0
ac7fa8437 libpod: Add support for 'podman top' on FreeBSD
f8a79409c libpod: Factor out jail name construction from stats_freebsd.go
e33306683 pkg/util: Add pid information descriptors for FreeBSD
3810a9dac [CI:BUILD] copr: podman rpm should depend on containers-common-extra
94499aa47 Podman image: Set default_sysctls to empty for rootless containers
8a28b896b Allow volume mount dups, iff source and dest dirs
295d0d1d9 libpod: Factor out the call to PidFdOpen from (*Container).WaitForExit
c9c683a58 markdown-preprocess: add generic include mechanism
42a221874 markdown-preprocess: almost complete OO rewrite
ca9eaec5e bump golangci-lint to v1.49.0
6972d47ff rootless: fix return value handling
5a214f6e5 generate systemd: set --stop-timeout for stopping containers
c6ad786ca Change to correct break statements
1a5506459 Add swagger install + allow version updates in CI
78d4af894 Cirrus: Fix windows clone race
fc43751e7 kill: wait for the container
9c01425ad hack/tree_status.sh: print diff at the end
682dd8e45 Man pages: refactor common options (misc)
b98f6b52f Man pages: Refactor common options: --detach-keys
c7e946482 Man pages: refactor common options: --attach
83b5fcf38 build(deps): bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0
6d5d84a05 Man pages: refactor common options: --annotation (manifest)
7f88deff1 KillContainer: improve error message
b805a068c build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
42b642509 docs: add missing options
f2a2ab557 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
095aa5c3a play kube: notifyproxy: listen before starting the pod
b7514ee40 build(deps): bump golang.org/x/text from 0.3.7 to 0.3.8
f7732ae52 Man pages: refactor common options: --os-version
298a2432e play kube: add support for configmap binaryData
2efdff528 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
802118ad1 Revert "Add checkpoint image tests"
dfa55ff6a Revert "cmd/podman: add support for checkpoint images"
eb43d175c system tests: health-on-failure: fix broken logic
ee5bd1e0c Man pages: Add mention of behavior due to XDG_CONFIG_HOME
c88dfbb98 Add and use libpod/Container.Terminal() helper
cbde35e32 Avoid unnecessary timeout of 250msec when waiting on container shutdown
d15b4af92 healthcheck: fix --on-failure=stop
81c645f2f libpod: Add support for 'podman pod' on FreeBSD
546e9445e libpod: Factor out cgroup validation from (*Runtime).NewPod
26df7d97c libpod: Move runtime_pod_linux.go to runtime_pod_common.go
70e0cb509 specgen/generate: Avoid a nil dereference in MakePod
f92360283 libpod: Factor out cgroups handling from (*Pod).refresh
b9d479b72 health checks: make on-failure action retry aware
ead78d8ba libpod: Remove 100msec delay during shutdown
640eac465 Clean up when stopping pods
d31a06ce8 Create full path to a directory when DirectoryOrCreate is used with play kube
9ce61988d Return error in podman system service if URI scheme is not unix/tcp
8041df3b6 Update vendor of containers/buildah v1.28.0
d13509f27 Man pages: refactor common options: --time
c16078f2d Release notes for all content before cherry-picks
3451aac35 Man pages: refactor common options: --pod
aaa9f4ea9 Prevent nil pointer deref in GetImage
f250560a8 Add pods created by kube play to a default network
26468c227 Man pages: refactor common options: --features
2f6c911d6 build(deps): bump github.com/opencontainers/image-spec
62bc8e3a1 Cirrus: Fix tag & branch go checks failing
eaa389262 Man pages: refactor common options: --variant
9bafd9c46 Man pages: refactor common options: --compression-format
eb7f54ef6 cleanup: always delete netns mount
a2581abbf Adds brew info podman to issue template.
73c8416c3 Update for https://github.com/klauspost/pgzip/pull/50
02b0f9fc3 container inspect: include image digest
fe3c91d58 Update vendor containers/(common,image)
f304a1757 Fix typo about e2e tests name
66747351f [CI:DOCS] Add quay-description update reminder
0660f5b7a Cirrus: Combine build and code consistency tasks
6c8a11b74 Cirrus: Combine pre-test checks into build task
0e7d166ee Cirrus: Minor YAML comment/whitespace fix
e7328cb97 Man pages: refactor common options: --network
fe2b4df38 podman kube play allow --network host
e4c0c8994 Man pages: Refactor common options: --sign-passphrase-file
309f4fb54 Man pages: refactor common options: --log-opt
6f821f03d `podman pod logs -l` no longer panics
f00ceaabd vendor: bump c/common to v0.49.2-0.20220929111928-2d1b45ae2423
3b5171d0e fix "podman system prune networks" flake
ebff193f8 Add test for podman run with checkpoint image
9c3d8bb49 cmd/podman: add support for checkpoint images
b17d8ff46 restore: make IsCheckpointImage reusable
e2fe9eaba Revert "remote: fix manifest add --annotation"
32f54a81e remote: fix manifest add --annotation
496d4c753 System tests: stop deep-checking log-level
ba70dd5ec build(deps): bump github.com/container-orchestrated-devices/container-device-interface
66517d86a fix: kube play liveness probe http path
f5fc0960e Default missing hostPort to containerPort is defined in kube.yaml
359e39744 libpod: Add volume support for FreeBSD
abe8dad34 libpod: Factor out usage of unix.MNT_DETACH from (*Volume).unmount
9de2a5ff7 libpod: Move volume_internal_linux.go to volume_internal_common.go
065474755 libpod: Move runtime_volume_linux.go to runtime_volume_common.go
95cb14aff fix: liveness check with http probe
3e8093152 System tests: light cleanup
0fb95f95d CI: only make install.tools when needed
2e4e1bb97 podman machine ssh handling
53d604182 Cirrus: Build pkginstaller in CI
c1ae7f193 Add SELinux information about boolean for using random devices
f32b02c7b Bump to v4.3.0-dev
f818eb4a5 Bump to v4.3.0-RC1
527fc409e Cirrus: Add golang code consistency check script
f6724116a Man pages: refactor common options: --env-file
7bc36602f auto-update: validate container image
fa18d35e8 Man pages: refactor common options: --env
911ceb823 Man pages: Refactor common options: --sig-proxy
fde4d21be man page xref: verify page title
8c627dfb5 Contrib: Add containerfile to create podman-remote binary image
9261a5469 Remove redundant log message
52656887e compat API: network inspect do not show isolate option
337f1f586 [CI:DOCS] man pages: fix incorrect title
f5e83f684 Fixup Buildah merge
54653ceeb Update vendor or containers/buildah
3a5b5d04b Fix machine starting state
69ac1e36c Cirrus: Catch use of deprecated io/ioutil package
8ff54cbe8 Fix libsubid detection
326d386ee [CI:BUILD] Copr: also define _user_tmpfilesdir for f35
2478e32ca fix restore API endpoint
6ee582315 Events for containers in pods now include the pod's ID
dc05d1212 Add --pretty to podman secret inspect
fc6dcd12b Add support for 'image' volume driver
5a2405ae1 Don't mount /dev/tty* inside privileged containers running systemd
d5f044ee7 System tests: reenable some skipped aarch64 tests
33c31112f cli: Add signature-policy flag to podman save
ba6f84666 Fix a few missed io/ioutil -> os updates
fb3d55006 Improve generate systemd format
9bb51e8e9 Add labels to secrets
7cfe0328f Add support to sig-proxy for podman-remote
377773ab5 Fix podman-remote run --attach stdin to show container ID
d968f3fe0 Replace deprecated ioutil
bb160be12 libpod: Implement 'podman cp' for FreeBSD
88f82ceab libpod: Move jointMountAndExec to container_copy_linux.go
75d6e7bae libpod: Move part of (*Container).stat to container_stat_linux.go
0b02d4cee libpod: Move container_copy_linux.go to container_copy_common.go
24d129071 libpod: Move container_stat_linux.go to container_stat_common.go
6790deb1b man pages: document some --format options
23195646d pkginstaller: use path_helper to add podman and helpers to path
dc8fdb46c label.Relabel third option is shared not recurse
049b10884 podman container clone env patch
903f551ae build(deps): bump github.com/coreos/go-systemd/v22 from 22.3.2 to 22.4.0
4a053a821 notifyproxy: don't set a read deadline
1071098ee kube play: sdnotify proxy: use a wait group
21841dc38 Default to --dns-option to match Docker and Buildah
d63e49a26 remote: checkpoint --export prints a rawInput or an error on remote
cfbc4aaeb Cleanup: fix problems reported by shell lint
e2573b734 Fix broken titles on readthedocs
62d1c487d Man pages: Refactor common options: --dns
7d1f688ff [CI:DOCS] man pages: document some --format options
884fd4575 Revert "generate systemd: drop ExecStop"
3508bd22f Add support for podman context as alias to podman system connection
9ba034293 Man pages: refactor common options: 2 stats opts
c20abf12c generate systemd: drop ExecStop
45d09e65b libpod: Make getContainerInspectData work on FreeBSD
2e4db139a libpod: Factor out platform-specfic code from generateInspectContainerHostConfig
60ef4ad1c stats: cap memory limit to the available memory
cf2118eab stats: map MaxUsage to the correct value
3f8591c2f Man pages: refactor common options: --shm-size
f76390d5e Man pages: refactor common options: --user
e19e0de5f Introduce graph-based pod container removal
51a8635c7 Cirrus: Fix win_installer task clone failure
cb6ad7631 Cirrus: Only run unit-testing on Fedora.
815655b9d Cirrus: Move gitlab test to cirrus-cron "main"
88879d588 System tests: cleanup in --format test
d4a62ff93 System tests: fix three races
14e5d1c15 libpod: fix lookup for subpath in volumes
92dc61d5e libpod: rename function
42937cd9a Ensure that a broken OCI spec does not break inspect
b6c75a3cc Man pages: refactor common options: --preserve-fds, -it
dd53ee599 fix ci: update systemd generate unit test
4df460836 Man pages: refactor common options: --ip6
47fff4b00 improve slirp4netns allow_host_loopback docs
0aedddd3b [systemd] Ensure that podCreateArgs appear last in ExecStartPre=
b47ce9a6e libpod: Add support for 'podman stats' on FreeBSD
b3e978e43 libpod: Split out the common code from GetContainerStats
47bd9e811 libpod: Move stats.go to stats_linux.go for consistency
1e6da1115 pkg/rctl: Add a simple FreeBSD RCTL library
75740be39 all: stop using deprecated GenerateNonCryptoID
76eb06330 Man pages: refactor common options: --tls-verify
fe04c86a2 generate systemd: fix pod dependencies
d4a000312 Man pages: Refactor common options: --publish
9d41b95d7 rework --format system test
dacd59424 Man pages: refactor common options: --publish-all
885bc4742 Enable github labeler, use for api-change
74e0511c9 Man pages: refactor common options: --os (pull)
f30d4852e Man pages: refactor common options: --ip
0ea5080c9 generate systemd: warn on --restart without --new
c8c2aab50 health checks: restart timers
908458d06 enable podman pod inspect --format test
7f8e99ded podman version: use report.Formatter over Template
0c21dcf70 podman machine info: use report.Formatter over Template
e5389e98f podman info: use report.Formatter over Template
1acebdda3 tests for 15673
43f7bdf82 podman inspect return exit code > 0 on print error
00240a0e2 podman inspect: use report.Formatter over Template
377599f1f podman secret inspect: use report.Formatter over Template
f5e13ded9 podman secret ls: use report.Formatter over Template
1463898b0 podman network ls: use report.Formatter over Template
90634d5ee podman volume ls: use report.Formatter over Template
20eccfc9d podman machine inspect: use report.Formatter over Template
a687949db podman machine ls: use report.Formatter over Template
65e78d92c podman auto-update: use report.Formatter over Template
70e6b19d4 events: Fix spelling of newNullEventer
9457549ff build(deps): bump github.com/vbauerster/mpb/v7 from 7.5.2 to 7.5.3
09ba2e0b9 Man pages: refactor common options: --rootfs
07a8eb829 Ensure that the DF endpoint updated volume refcount
e24c2f009 system tests: periodic cleanup and fixes
a63a40c3e podman events --format: fix duplicated newline
2ae4ce799 fix race where podman events exits to early
b3212a680 set default EventsLogFilePath on first run
12a1483e7 Improve --tmpdir and --events-backend docs
72e715a11 Use new secret store API
cd32b929e libpod: runtime newEventer() cleanup
76980a222 event backend journald: fix problem with empty journal
138b09c7e event backend none: return an error when reading events
c5bdb6afe fix hang with podman events file logger
56c880a7e libpod: Move ocicniPortsToNetTypesPorts and compareOCICNIPorts to networking_common.go
221c4d5f0 libpod: Move NetworkDisconnect and NetworkConnect to networking_common.go
f939f3fdf libpod: Move resultToBasicNetworkConfig to networking_common.go
c9de84080 libpod: Add support for getContainerNetworkInfo on FreeBSD
51c70e588 libpod: Move getContainerNetworkInfo to networking_common.go
d014dca81 libpod: Move isBridgeNetMode and reloadContainerNetwork to networking_common.go
1dd0eb467 libpod: Move teardownNetwork and teardownCNI to networking_common.go
2bf050f1d libpod: Move setUpNetwork and getCNIPodName to networking_common.go
3d7f9f67a libpod: Move convertPortMappings and getNetworkOptions to networking_common.go
d1414adbb libpod: Add FreeBSD implementation of container networking
c5f64d9f5 libpod: Re-work the container's network state to help code sharing
36cfd05a7 libpod: Move platform-specific bind mounts to a per-platform method
369d86040 libpod: Avoid a nil dereference when generating resolv.conf on FreeBSD
a1fa9faa4 Buildah treadmill script: various fixes
43da39d31 Man pages: refactor common options: --volumes-from
050ae6181 [CI:DOCS] --volume: consistent wording
d935e9799 update c/storage to latest
6091ff42d Include more environment variables in conmon env.
118546c6a refactor: use `os.ReadDir` for lightweight directory reading
2c63b8439 Fix stutters
b8108d06b Fix CPU usage limitation in play kube for non integer values
8466c4a19 Cirrus: Don't run win_installer in multiarch cron
6210c6723 TEMPORARY: instrumenting for 15488
3a9a7dcdc Man pages: refactor common options: --volume
a82672047 build(deps): bump github.com/docker/docker
6bf8670b6 stop: fix error handling
aad29e759 health check: add on-failure actions
8e1aa7af3 Fixes for vendoring Buildah
eb28a1c08 update buildah and c/common to latest
c7411af9e Ignore cpu realtime options on cgroups V2 systems
27be5eaaf Fix swagger documentation
9a286f712 generate, kube: plug HostUsers
1994f3823 Add --config for Docker compatibility
ad63aa20d kube: plug HostUsers in the pod spec
626ee118c e2e: fix run_staticip_test in proxy environment
d10e77e1b fix podman pod inspect to support multiple pods
911e4a138 specgen/generate: Factor out setting resource limits from CompleteSpec
db33f06a9 fixes data race in system.Events and nil error logging
f75c3181b podman: skip /sys/fs/cgroup/systemd if not present
3f0b5cd40 Man pages: refactor common options: --userns (pod)
8d40bf3f1 proper --debug/-D flag support
4fbc4b8f7 Man pages: refactor common options: --privileged
f85fa9806 libpod: Filter out ENOTCONN errors when trying to close unix domain sockets
6668ac93b libpod: Factor out capabilites code from prepareProcessExec
f6e3cfa53 system tests: fix systemd tests in proxy environment
744878a71 Add win-installer build/verify workflows to CI
ecb9f99b8 Add new windows installer and build
d759576ab emit container labels also for container exited and exec died events
9585147e1 fix Pod removal after OS hard shutdown
e0d5b4e3f Change pipe wait to 20 seconds
63c779a85 Fix manpage headers
4675103c2 Man pages: refactor common options: --sysctl
eb39d56df Bump github.com/docker/go-units from 0.4.0 to 0.5.0
f4c39df25 Add win-sshproxy.exe to windows client zips
40cd1c0ff Man pages: refactor common options: --device
4462305fe Update the displayed warning in documentation regarding the system reset
092690297 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
77ab6125f remove SkipIfNotFedora() from events test
d22aeeec2 fix podman events with custom format
a9a411f8a Add generate systemd -e/--env option
274d34a25 kube play: support auto updates and rollbacks
04f0ac2aa system tests: fix some tests in proxy environment
6a3c28968 Drop stale config value resulting in asymmetric config
c2c910736 CI: Cirrus setup: retry failed curls
fb38838fe Man pages: refactor common options: --memory*
0df291d3b Update system reset warning message to warn against deletion of all volumes
bdfc4df1f pkg/autoupdate: allow updating multiple tasks per unit
cbaa78cd8 Fix list of default capabilities
a3aecf0f2 libpod: Factor out setting volume atime to container_internal_linux.go
7a1abd03c libpod: Move miscellaneous file handlling to container_internal_common.go
d162285f3 libpod: Don't mount /dev/shm in containers on FreeBSD
212b11c34 libpod: Factor out handling of slirp4netns and net=none
eab4291d9 libpod: Move functions related to /etc bind mounts to container_internal_common.go
b3989be76 libpod: Move getRootNetNsDepCtr to container_internal_common.go
a148c1622 libpod: Use (*Container).addNetworkNamespace to restore checkpoint network
7518a9136 libpod: Move functions related to checkpoints to container_internal_common.go
be5d1261b libpod: Move mountNotifySocket to container_internal_common.go
71e2074e8 libpod: Move getUserOverrides, lookupHostUser to container_internal_common.go
232eea5a0 libpod: Move isWorkDirSymlink, resolveWorkDir to container_internal_common.go
a5ee3cb79 pkg/util: Add no-op implementation of AddPrivilegedDevices on FreeBSD
0889215d8 libpod: Use platform-specific mount type for volume mounts
c1a86a8c4 libpod: Factor out platform-specific sections from generateSpec
e101f4350 libpod: Move getOverlayUpperAndWorkDir and generateSpec to container_internal_common.go
6e4b5b007 libpod: Add FreeBSD implementation of container internals
8ade76e79 libpod: Move networkDisable to container_linux.go
71978b0a0 Fix #15243 Set AutomountServiceAccountToken to false
b9df3a6a9 Man pages: refactor common options: --label
d82a41687 Add container GID to additional groups
3e1dde10b [CI:BUILD] Copr: Define _user_tmpfilesdir for rhel
875fd4858 Fix swagger documentation
070dfa3b3 Man pages: refactor common options: --digestfile
3e744e52b System tests for podman-update
c05b6e5d3 Update test per comment in #15555
3d09d47a2 Man pages: refactor common options: --device-X-Y
050f3291b implement podman update
c63830166 Man pages: refactor common options: --name
4a1acccf9 Fix bind-mount-option annotation in gen/play kube
64eb07941 CI: disable flaking test on ubuntu
b667d7340 libpod: Ensure that generated container names are random
5faf4eff1 Cirrus: pick UIDs/GIDs starting at 1500, not 1000
b25d62a4d [CI:BUILD] Packit: Disable until proved in other repos
84352a81c Set enableServiceLinks to false in generated yaml
fed4ce0ea Inhibit SIGTERM during Conmon startup
70a599b57 Man pages: refactor common options: --signal
da57065ab specgen: Use platform-specific mount type for volume mounts
0300271bf libpod/define: Make TypeBind a platform-specific constant
1ed9a4740 Man pages: refactor common options: --restart
98169c20d Add emptyDir volume support to kube play
8637548a3 docs: move userns options to separate file
e015c9e3f podman: add uid and gid options to keep-id
cd6260604 infra: remove dead code
62d87aa9b Man pages: refactor common options: --subXidname
08a2851ba Allow to override default username via command line
4781bc7fe specgen/generate: Add support for FreeBSD
68f4dcf00 specgen/generate: Move specConfigNamespaces to namespace_linux.go and add stubs
39880670c specgen/generate: Move SpecGenToOCI, WeightDevices to oci_linux.go and add stubs.
a240146a2 e2e tests: try to deflake 5000
08af95f63 updated apiv2 tests to reflect hash compat fix
c1480b39a Improved Windows compatibility for machine command
4e18c8100 Man pages: refactor common options: --http-proxy
0166feef2 specgen/generate: Move security.go to security_linux.go and add stubs
a7d791202 libpod: Make sure writeConmonPipeData is called on FreeBSD
d19438fa6 Man pages: refactor common options: --dns-*
dcb4d4357 [makefile] disable security labeling instead of using --privileged
78aec2130 Fix #15499 already connected network
b4f5a246a remove github.com/docker/libnetwork dependency
0ee9a3129 podman rmi: emit untag events
0b3184a5a pkg/domain: Add terminal support for FreeBSD
11de12097 Fix example sections to follow the same format
e4f816fdb [CI:DOCS] Cirrus: Update meta-task for EC2 image
e448122fe service: make move to sub-cgroup non fatal
167b026e7 [CI:BUILD] Packit: Re-introduce packit with fix-spec-file action
61d842a18 Fix template name inconsistency
39d809d3c Bump github.com/vbauerster/mpb/v7 from 7.4.2 to 7.5.2
e00272cd9 remote: fix implementation of build with --userns=auto for API
15aeccb83 libpod: UpdateContainerStatus: do not wait for container
61fc1870a cmd/podman: Enable --syslog on FreeBSD
cfdca8293 Mark some of the option fields as ignored in pkg/bindings
c7fda06f6 Compat API image remove events now have 'delete' status
9553f3baf Run codespell
b27bfbc71 [CI:DOCS] Automatically set podman version in pkginstaller
e634470fa APIv2 test cleanup, part 2 of 2
42fdc72aa Man pages: refactor common options: --systemd
a5a5c6b3f Temporarily Revert "Packit: Enable scratch build testing for Fedora 36, 37 and Rawhide"
10b460512 Remove duplicate annotations in generated service yaml
61fe95bb4 Preserve all unknown PolicyRequirement fields on (podman image trust set)
ad0c785f8 Reorganize the types in policy.go a bit
a7e88c8da Add support for showing keyPaths in (podman image trust show)
752eceaec Support (image trust show) for sigstoreSigned entries
b36a1d1b7 BREAKING CHANGE: Change how (podman image trust show) represents multiple requirements
bba306788 Reorganize descriptionsOfPolicyRequirements a bit
2f6c145e8 Use the full descriptionsOfPolicyRequirements for the default scope
b15afce55 Rename haveMatchRegistry to registriesDConfigurationForScope
1a97c4d9f Rename tempTrustShowOutput to entry
51064acc4 Split descriptionsOfPolicyRequirements out of getPolicyShowOutput
d4c521728 Recognize the new lookaside names for simple signing sigstore
4df1e2524 Add a unit test for trust.PolicyDescription
4b2bd1036 Make the output of (podman image trust show) deterministic
35fa8c16a Make most of pkg/trust package-private
7723a1ea6 Move most of ImageEngine.ShowTrust into pkg/trust.PolicyDescription
ff3f574fc Add support for sigstoreSigned in (podman image trust set)
9828bc445 Create new policy entries together with validating input
e2d1bdd1d Improve validation of data in ImageEngine.SetTrust
cbdbb025a Move most of imageEngine.SetTrust to pkg/trust.AddPolicyEntries
0ff0fde49 Man pages: refactor common options: log-related options
4f6807530 Add a variable for scope
4c5366ee0 Make trust.CreateTempFile private
5be00f227 Reorganize pkg/trust
1d2def8d0 Remove an unused trust.ShowOutput type
df1d8d0e9 Remove commented out code
010d495a3 APIv2 test cleanup
a933269ba System test cleanup
35b4f26c7 test: use private instead of slave for the mount
2fed2a282 Man pages: refactor common options: --pid
ea67d84f5 test: fix comment
19a617eaa Allow colons in windows file paths
1788b26c4 Fixes isRootfull check using qemu machine on Windows
88e4e4c82 vendor containers/psgo@v1.7.3
33ab7e846 Man pages: refactor common options: --ipc
ef6285a6f Man pages: refactor common options: --gidmap
c64a6ba07 Man pages: Refactor common options: --workdir
b0700aa48 libpod: Enable 'podman info' for FreeBSD
ff20c74e9 libpod: Move getCPUUtilization to info_linux.go
694cbaca3 libpod: Read kernel version and uptime using buildah/pkg/util
877e67399 libpod: Split out platform-specific code from hostInfo
e1c206d98 e2e: Add run --memory-swap test
c3dc92a50 Fix rpm packaging error
b4584ea85 run,create: add support for --env-merge for preprocessing vars
b47c54ab6 Install podman-docker.conf on user-tmpfiles.d too
0e6a421ca Use tmpfiles.d specifiers instead of fixed path
9dca68bdd Man pages: refactor common options: --ignore
d45a5d4aa Packit: Enable scratch build testing for Fedora 36, 37 and Rawhide
8b1e88bf8 Fix documentation of use of tcp connections
0f7393556 Add support for containers.conf volume timeouts
7d7aead51 Man pages: refactor common options: --device-cgroup-rule
65efcdf70 Allow podman to run in an environment with keys containing spaces
2c03681b2 Man pages: refactor common options: --disable-content-trust
8f797ab66 libpod: Add definition of containerPlatformState for FreeBSD
5c9bac141 Man pages: refactor common options: --cpus
5f719b533 podman kube play/down --read from URL
5b06b2e77 Document restrictions on transport in FROM
70e103c04 inspect, image: alias .Config.HealthCheck to .HealthCheck for compatibility
f87f6d2fc Improved Windows compatibility
64339d47c Warning messages are printed and ignored if we use an unsupported option
716ac1c86 Refactor: About the RawInput process
74388fe75 Man pages: refactor common options: --pod-id-file
0f768cef3 [CI:DOCS] Update Troubleshooting.md
c6488fe4a Man pages: fix sloppiness
53369aaa1 pass environment variables to container clone
46f31361f Man pages: refactor common options: --cidfile
bd90818b0 Man pages: refactor common options: --creds
fbe2bd87b [CI:DOCS] elaborate on image lookups of foreign platforms
eee0ec97e Add quiet/q flag to podman secret ls
d5f83135b version bump to 4.3.0-dev
be1455ead Update "CONTRIBUTING" file with Debian/Ubuntu dependencies"
f8e73eadd [CI:DOCS] Update how to enable resource limit delegation
a0560eefa Man pages: refactor common options: cert-dir
8ffeb626c events: Add freebsd support for libpod/event
8aa29fd54 cmd/podman: Enable ABI and Tunnel mode for freebsd
1f76ad40a fix CI: remove hardcodeded alpine version
3bf52aa33 Add ProgressWriter to PullOptions
ec9508ea1 Pass io.Writer when pushing images/manifests from command line
e48681e60 Use request Context() in API handlers
b9fb60c68 Simplify ImagesPull for when Quiet flag is on
09ef6fc66 podman generate kube - add actual tests
976ce76eb podman save: update --compress validation
054d64710 libpod: Build oci_conmon_common.go and oci_conmon_attach_common on FreeBSD
cb4158889 libpod: Move openUnixSocket to oci_conmon_attach_linux.go
d43fac20f libpod: Move moveConmonToCgroupAndSignal and GetLimits to oci_conmon_linux.go
93bad9048 libpod: Move socket label handling from oci_conmon_common.go to oci_conmon_linux.go
6791cdbdf libpod: Move rootless handling from oci_conmon_common.go to oci_conmon_linux.go
68b2450d3 libpod: Move oci_conmon_exec_linux.go to oci_conmon_exec_common.go
8d229c6cd libpod: Move oci_conmon_attach_linux.go to oci_conmon_attach_common.go
bebf55c0f libpod: Move oci_conmon_linux.go to oci_conmon_common.go
20ad12274 runtime: use FindCommon from c/common
86f665a1d vendor: update containers/common
0dd2fcf71 Add podman manifest create -a. Alias for --amend:Docker compatibility
aa197a65f sort hc.Binds returned from compat api
546bb3548 Add podman stats --no-trunc option
f6e7b0b59 Add podman secret inspect -f alias for --format: Docker compatibility
d50ff4f51 Add podman secret create -d as alias for --driver for Docker compatibility
6411f57e7 api: return imageID instead of imageName, for "Image" when Podman API is queried
2a6daa1e3 Cirrus: add podman_machine_aarch64
1572420c3 libpod: Move uses of unix.O_PATH to container_internal_linux.go
5d7778411 libpod: Move rootless network setup details to container_internal_linux.go
1b88927c2 libpod: Add stubs for non-linux builds
7e7a79b07 podman manifest create: accept --amend and --insecure flags
5f09d9b60 Fix podman kube generate --help to show correct help message
06b3a4c1c system tests: fix broken runc test
f0e864075 Man pages: refactor common options: authfile
a78b67a47 Man pages: refactor common options: --annotation
a68e6ddbb utils: Add missing symbols for FreeBSD
a6af67ca9 Cirrus: Update podman-machine comment
22f3dd4c2 Man pages: refactor common options: arch
f14bf91c4 podman images and friends can take one image as argument
7e490e195 [CI:DOCS] Add .DS_Store to gitignore
ab72a371b Don't warn on '/' not being shared while in a container
2d30b4dee Add compatibility support for --debug -D flag from docker
bfae6bca9 build(deps): bump github.com/mattn/go-isatty from 0.0.14 to 0.0.16
b9c094a5d Add Docker compatibility for --dns-option to --dns-opt
1393038c8 pkg/domain: Add stubs for non-linux builds
65641ba8d pkg/specgen: Add stubs for non-linux builds
056917c22 Reword --exit-policy option
d7f6d355b podman-kube@.service.in: Remove Restart=never option with typo
bd0a8c146 added docs for installing certficate authority
5ee3522f5 pkg: Build pkg/machine on FreeBSD
b806e9f36 pkg: Build pkg/util on FreeBSD
6df0ceb9a Add default value for $RM
bc56ee158 Update cmd/podman/containers/restart.go
f26a5246e Fix updated link to install instructions
0dbbb1cb3 Add restart --cidfile, --filter
d856fb43e Add "podman kube generate" command
e2a3f9592 docs: specify git protocol is not supported for github hosted repo
2935c38fd Update release notes for v4.2.0
a4efd401c remote manifest push: show copy progress
79e21b5b1 kube play: sd-notify integration
3fc126e15 libpod: allow the notify socket to be passed programatically
67a2e7351 add `pkg/systemd/notifyproxy`
245be9b39 Document behavior of --timestamp when only FROM is used
e3f029cb8 build(deps): bump github.com/container-orchestrated-devices/container-device-interface
658960c97 build(deps) bump CDI dependency from 0.4.0 to 0.5.0
2bcee9f62 Man pages: refactor common options
25f6fc9c6 I believe that these tests will now run with crun.
a561b7dac check memory test based on range
280f5d8cb podman ssh work, using new c/common interface
d2d7898b8 Cirrus: Improve CI VM image updates for EC2
d7f134d68 Refactor common man page options, phase 2
3738221c5 test: update apply-podman-deltas for new tests
59cb410fe build: implement --cache-to,--cache-from and --cache-ttl
7bd886480 Bump to Buildah v1.27.0
1045647a4 Add interface for apple hypervisor
62e889e2b fix LogConfig type for libpod API
2e3a192bb cmd: refuse --userns if a mapping is specified
696ea7905 specgen: use sandbox id instead of name for annotation
771a35e4b pkginstaller: use correct GOARCH value in case of arm build
b1d1248a1 pkg/bindings: Support writing image push progress to specified io.Writer
f4c53a41c docs: update the podman logo
7ebaabb93 [CI:COPR] podman.spec.rpkg: add python3 dependency for el8
d4c6e056d Fixes #15154 Change order when config and connections are written
83bd7a5c2 e2e: Add rootless mount cleanup test
cc8e4d5fe remove image podman no prune
842c6c7c6 podman generate spec
4cea8adb9 Cirrus: Run Cross builds in [CI:DOCS] mode
3102194f0 podman rmi: improve error message for build containers
5ea4ebb16 markdown-preprocess: force extra newline on comments
9964366f6 start filter flag changes
e67e60226 podman info: hide `--debug`
623b0c57f pkginstaller: use correct GOARCH while building podman binaries
bcfbee986 ISSUE TEMPLATE: remove `--debug` from `podman info`
81a1ea18c pkg/autoupdate: "image" policy: add deprecation comment
43cca5d97 pkg/autoupdate: decompose the update logic
0df51bb6b pkg/autoupdate: move status into `task`
af3ce7084 pkg/autoupdate: document fields of `updater`
3fdd3b1ae pkg/autoupdate: remove image map from updater
82d18a86f pkg/autoupdate: use policy consts were possible
1cc933c6b pkg/autoupdate: introduce status constants
42c4c17c0 pkg/autoupdate: move authfile into `tasks`
3f1928d76 pkg/autoupdate: move more logic under `task`
cfa089c36 pkg/autoupdate: s/updateImage/pullImage/
13a8ebd09 pkg/autoupdate: repull image if other containers failed
2c999f1ec pkg/autoupdate: update unit-by-unit
f8b6a81ae test/system/255-auto-update.bats: add an SELinux comment
87c0c760e pkg/autoupdate: introduce the notion of a `task`
033cc059f pkg/autoupdate: remove redundant branch
328c8ba7b pkg/autoupdate: move policy map into updater
d47609773 pkg/autoupdate: introduce `updater` for shared state
79b10a7c6 readthedocs(sphinx): run the markdown preprocessor
65fb90165 hack/markdown-preprocess: allow to be executed from any dir
031b7dec7 fix hack/markdown-preprocess to support older python versions
7df8d8050 add omitempty to Secret in k8s VolumeSource
328eb2b4c Cirrus: Remove disused env. var.
1e4a141d8 Cirrus: Support EC2 instances in hack/get_ci_vm.sh
44212b90b pkginstaller: makefile improvements to avoid redownloading
e6670cd29 pkginstaller: add makefile target to notarize the built pkg
c5029d2ee pkginstaller: sign qemu-system-* binary for the pkg
56039cffd Refactor common options in man pages
50981cb84 skip pod resource limits test on aarch64
1dbd61653 Cirrus: Fix e2e tests for "mount_rootless_test"
3a7a275c3 Cirrus: use dnf instead of rpm to install packages
1249cbb75 add "podman kube down" command
c5150a571 Add support, and default to rootless w/WSL prompt
bce16a58d Disable F36 service that is incompat with WSL kern
69d7407af switch from "kube/play" endpoint to "play/kube" endpoint.
2685c8dc4 Output messages display rawInput
4dfef202c podman generate systemd --new: allow -h hostname
5ab98f2c0 test: verify manifest inspect must contain OCI annotations
3a05ddfb7 fix e2e sign tests
6c69a2ea1 podman-volume-import: Reword "precendence"
c21306f06 man podman-volume-import: Clarify that merge happens
d462da676 Add support for creating sigstore signatures, and providing passphrases
7075e2e1d Hide podman manifest push --sign-by on remote
68cf11611 Use signByFlagName instead of copy&pasting the string
02f570e4b Remove libpod/common
63d77da5b Update c/common to an unreleased version
5a5624f81 Update the registry server we test against from 2.6 to 2.8
7599fde73 Use existing REGISTRY_IMAGE variables in more places
24a599fe1 Add flag "--compression-format" to "podman manifest push" both in local/remote mode.
53ec47968 Add rm --filter option
68463278e Use httpasswd from the surrouding OS instead of the registry image
49bcb7eaa Bump google.golang.org/protobuf from 1.28.0 to 1.28.1
7a909a3e2 Use 8k buffer to help clients w/ broken parsing
a53a0fca9 Cirrus: Minor YAML cleanup
a24cc463a Remove bats installation script and make target
6764fe03d CI: new check for leftover skips/fixmes
17e3680fb Bump golang.org/x/tools from 0.1.11 to 0.1.12 in /test/tools
379bf1080 Bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
de04d9d75 docs: resolve typo in create,run manpages
de13dea86 With --rm option remove container if podman run fails
da98c8877 Cirrus: enable Fedora 36 aarch64 tasks on EC2
389a4a6cc syncContainer: transition from `stopping` to `exited`
7fab449e3 [CI:DOCS] socket_activation.md: Add start/stop sections
8628c01f5 Fix: manifest push --rm removes a correct manifest list
e4992fb81 Fix: Restore a container which name is equal to a image name
75419c5d8 When removing objects specifying --force,podman should exit with 0
56578c413 Cirrus: Use the latest imgts container
c35ae7640 Add support for building macOS pkg installer
8e56a5605 machine: Fix check which is always true
1b099eec8 [CI:DOCS] podman-generate-systemd.1.md: document --sdnotify
52a4642ed Set TLSVerify=true by default for API endpoints
94e0a364a Semiperiodoc cleanup of obsolete FIXMEs
27679d80b pod create --share none should not create infra
4d18a98ec benchmarks: fix create test
4724a0000 prune filter handling
6a9338ad6 podman generate systemd: handle --sdnotify correctly
ad8940cec fix container create/run throttle devices
290116bf8 integration test: fix network backend option with remote
5a80770e8 API: libpod/create use correct default umask
35035d281 container wait: improve error message
cbdda4e56 docs: remove CNI word where it is not applicable
0a160fed7 Bump VMs, to Ubuntu 2204 with cgroups v1
c00ea686f resource limits for pods
bc6a48eeb [CI:DOCS] Cirrus: Add prominent gitlab warning
88b57dd9f fix broken machine test
19f4a463e pkg/machine/e2e: do not import from cmd/podman
604920dd1 fix some pkg/machine/e2e test to read stderr
ee35ce86d enable linter for pkg/machine/e2e
dd2b79406 libpod: create /etc/passwd if missing
b79ac0aca remote push: show copy progress
afbfbe18a compose test: remove cni config copy
56093a3b4 compat api: always turn on network isolation for networks
80ad0cfd0 compat api: allow default bridge name for networks
3a016c6e4 e2e: show command and output when a timeout happens
138d185cc Bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0
ab4c58bd3 Compat API: unify pull/push and add missing progress info
c1f04a024 podman-remote pull: fix duplicate progress outputs
af118f7c6 libpod: do not lock all containers on pod rm
139d65be8 Fix machine test
438fef1ca kube secret handling for podman play kube
8d190fc48 vendor: remove unused deps
013300a7c Makefile: remove building pages for man5
19495b9fc makefile: remove processing of pkg/docs
f64985135 rpkg: remove usage of pkg/hooks
ffe5da20a pkg,libpod: remove pkg/hooks and use hooks from c/common
da33f1005 Update init ctr default for play kube
4e72aa586 fix goroutine leaks in events and logs backend
9b152ef20 Add pause/unpause --latest, --cidfile, --filter
a65265942 Fix potential leak on mid-stream read error
10d6586cb Makefile: use order-only prereq for podman-remote
0a2ddc9bd [CI:DOCS] Fix typo in manifest manpage
26ae055a2 Remove return error from "containers.pause"
eef39b69e "pod pause/unpause/stop" append "report.Errs" to "reports"
aa1711e3d Cirrus: comment out f35 for podman4
1f0116817 system tests: new system-service bats file
fdba0d790 Vendor in latests containers/storage and opencontainers/runtime-tools
82b1d85eb Print rootfs download as a specific version on Win
576321729 document isolate option for network create
1aafb01a9 buildah vendor treadmill
f67ab1eb2 Vendor in containers/(storage,image, common, buildah)
5f848d89e Run codespell
18c0c19aa Add --host and -H as equivalent options to --url
c9722c0b1 [CI:DOCS] socket_activation.md: fix typo and layout
5f04f9961 Machine init: create .ssh dir if not exist
56cfdffe4 [CI:DOCS] Tutorials.rst: add socket activation
b513dc4c1 Clean up cached machine images
d95e79ebe GHA: Fix dumb error check
d385914cd Cirrus: Trigger podman-machine task by label
a2f6cc74e Podman stop --filter flag
90607a6d0 Podman pull --all-tags shorthand option
3b5034e91 fix tests for "podman kube play"
8e2add770 [CI:DOCS] Update docs/tutorials/socket_activation.md
2270bc5f9 [CI:DOCS] Add socket activation tutorial
ad7c54e13 man page checker: enforce stricter options format
66cb856f9 Switch to `github.com/blang/semver/v4`
0f53abd09 Fixes #14698 Use prepared image for WSL2 machine init
cc2cfe060 Add podman events -f to be alias for --filter
e08a77ce6 Add "podman kube play" cmd
1392922d4 [CI:DOCS] man pages: replace -c with --cpu-shares
e3419c032 abi: create new cgroup when running in a container
7b4afbf62 podman: always call into SetupRootless
16b8d77f9 utils: call MaybeMoveToSubCgroup once
4b547a72a podman: move MaybeMoveToSubCgroup to utils/
445089421 Fix last machine test
bb8ff86bf Use SafeChown rather then chown for volumes on NFS
c9a82d72a Docker uses "-c" to mean "--cpu-shares" in create and run
e83ff8e5e [CI:DOCS] podman-create.md: replace -c with --cpu-shares
da8c6a8ea CI: sanity check for desired runtime
b8a7e275d [CI:DOCS] rootless_tutorial: Remove incorrect advice regarding volumes and mount points
f6ed7a8c9 [CI:DOCS] man pages: remove non-existent option builtin-volume
27e12aa07 test,manifest-run: declare TARGETPLATFORM before using it
ffbc2adf7 fix wrong log message on Trace level
377057b40 [CI:DOCS] Improve language. Fix spelling and typos.
3ed323e1b logformatter: link by *task ID*, not build ID
3ce0709f3 podman machine: do not commit proxies into config file
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Guenther Meyer
|
cb5dfda6f6 |
nerdctl: renamed upstream branch master to main
Signed-off-by: Guenther Meyer <g.meyer@signum-media.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Changqing Li
|
b2ab6a11a4 |
conmon: avoid host contamination by GOCACHE
By default GOCACHE is set to $HOME/.cache. Fix: make[1]: Entering directory '/mnt/tmp-glibc/work/core2-64-wrs-linux/conmon/2.1.3+gitAUTOINC+19110c9746-r0/git/tools' | failed to initialize build cache at /home/build/.cache/go-build: mkdir /home/build: permission denied Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
3626f2c9cc |
docker-distribution: do not build for riscv64
Currently docker-distribution has a do_compile error for riscv64. The problem could be reproduced by: MACHINE=qemuriscv64 bitbake docker-distribution So explicitly set COMPATIBLE_HOST here to avoid it building for riscv64. When someone interested in using this recipe for riscv64 fixes the compile issue, this setting could be removed. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d36563caf1 |
k3s: update to v1.24.7
Bumping k3s to version v1.24.7-rc4+k3s1, which comprises the following commits:
e3c9d859e8 Return ProviderID in URI format
e44d22ca61 Add ServiceAccount for svclb pods
2ca51a3d59 Update to v1.24.7-k3s1 (#6270)
0751b6052e Fix dualStack test
519f13e34d [Release-1.24] Replace deprecated ioutil package (#6235)
c1c7b95dc0 Fix flakey etcd test
6ed1e1423f Fix helm job failure on multi-server tests
87bfc8883b Bump traefik to 2.9.1 / chart 12.0.0
06eb948c23 Fix the typo in the test
3a829ae860 Handle custom kubelet port in agent tunnel
3f5c88e4a3 Fix occasional "TLS handshake error" in apiserver network proxy.
cb0f4bd49c Use structured logging instead of logrus for event recorders
44ae7aa4db Dump info on coredns when deployment rollout fails
a75bbf5f4e Add ADR for ServiceLB move to CCM
69dd30433b Disable cloud-node and cloud-node-lifecycle if CCM is disabled
76f13d3558 Move servicelb into cloudprovider LoadBalancer interface
23c302dccc Move DisableServiceLB/Rootless/ServiceLBNamespace into config.Control
307e45e739 Implement InstancesV2 instead of Instances
7198eb2f74 Bump metrics-server to v0.6.1
0be4ef9213 Add flannel-external-ip when there is a k3s node-external-ip
a8e0c66d1a updating to v1.24.6-k3s1 (#6164)
fb823c8a5f Update to v1.24.5 (#6143)
ae7d6285b6 Fix gofmt warnings
1b806f5fee Bump golang to correct version
ee859f7f5a Add validation check to confirm correct golang version for Kubernetes
cf684c74a3 [Release-1.24] Bulk Backport of Testing Changes
b8f05e4904 Bump containerd to v1.6.8-k3s1
35e488c9c7 Bump runc to v1.1.4
e1884e4d60 Update Flannel to v0.19.2 to fix older iptables issue
79bb7bccd9 Fix e2e tests (#6018)
4c9ad2546c Fix dualStack test and change ipv6 network (#6023)
654d2b9567 CI: update Fedora 34 -> 35 (#5996)
2b35f89664 Convert install tests to run PR build of k3s (#6003)
f81138402e E2E: Add support for CentOS 7 and Rocky 8 (#6015)
ab2638a247 mark v1.24.4+k3s1 as stable (#6036)
7d6982d1fa Export agent.NetworkName for Windows
3e394f8ec5 The Windows kubelet does not accept cadvisor flags
c3f830e9b9 Update to v1.24.4 (#6014)
035c03cfaa Remove codespell from Drone, add to GH Actions (#6004)
b14cabc107 Add nightly install github action (#5998)
75f8cfb6ea E2E: Local cluster testing (#5977)
116c977fbf Convert vagrant tests to yaml based config (#5992)
30fc909581 Update run scripts (#5979)
a30971efaa Updated flannel to v0.19.1
6b7b9c5aa9 Add scripts to run e2e test using ansible (#5134)
18cb7ef650 fix checkError in terraform/testutils (#5893)
77fa7fb490 Removing checkbox indicating backports since the policy is to backport everything (#5947)
b7f7379157 Update MAINTAINERS with new folks and departures (#5948)
db3c569b7f Add docker e2e test
aadab55145 Add ADR for inclusion of cri-dockerd
4aca21a1f1 Add cri-dockerd support as backend for --docker flag
b1fa63dfb7 Revert "Remove --docker/dockershim support"
cf66559940 Print stack on panic
abdf0c7319 Fix comments and add check in case of IPv6 only node
d90ba30353 Added NodeIP autodect in case of dualstack connection
82e5da35a9 Upgrade macos-10.15 to macos-12 (#5953)
43508341c1 Bump minio to v7.0.33
1c17f05b8e Fix secrets reencryption for 8K+ secrets (#5936)
118a68c913 Updates to CLI flag grouping + deprecated flag warnings. (#5937)
13af0b1d88 Save agent token to /var/lib/rancher/k3s/server/agent-token
4c0bc8c046 Update etcd error to match correct url (#5909)
db2ba7b61d Don't enable unprivileged ports and icmp on old kernels
90016c208d ADR: Depreciating and Removing Old Flags (#5890)
24da6adfa9 Move v1.24.3+k3s1 to stable (#5889)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
75de565e3b |
docker-compose2: introduce go version of docker-compose
Introducing a recipe to build (and create a vendor directory) for the docker-compose2 command, which is a go implementation of he formely python3 docker-compose. This co-exists (for now) with the python version. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
8177e4a6b7 |
tini: fix function declaration without a prototype
This also fix building with clang 1.15 Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Kai Kang
|
f8c8b90244 |
criu: 3.17 -> 3.17.1
Update criu from 3.17 to 3.17.1: * update file path and remove __pycache__ directory in do_install * rebase 0002-criu-Change-libraries-install-directory.patch * backport patches to fix build errors with glibc 2.36. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
2542c4b3b0 |
buildah: update to 1.27.2
Bumping buildah to version v1.25.0-420-g13622b14, which comprises the following commits:
9c640b00 tag v1.27.2
264c825f Fix broken command completion
be919817 build: support --skip-unused-stages for multi-stage builds
40cd1053 release: bump to v1.27.1
4a8bf740 run: add container gid to additional groups
db8d5921 release: tag v1.27.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Guenther Meyer
|
bcc7d479bb |
kubernetes: fixed typos
After upgrading from honister to kirkstone the build always failed during the package_write_ipk step, because the package name has been overwritten because of the typo in FILES. While investigating, I discovered another typo in class-devupstream. Signed-off-by: Guenther Meyer <g.meyer@signum-media.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Jose Quaresma
|
2d0f7255a7 |
docker/proxy: don't use -linkshared unconditionally
The linkshared is not supported in some machines like riscv64 and when supported we can use the GO_LINKSHARED instaed. So export GO_LINKSHARED on the recipe to be available for Makefile. This is currently only used in libnetwork for the proxy build, but could be used in additional locations in the future. Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
758da82203 |
podman: Add ptest support for system tests
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
481b716f7c |
catatonit: Integrate version 0.1.7
This is useful for podman system tests. Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
d9af46db9a |
kubernetes: fix more TMPDIR references
Changing the clone location of kubernetes allows us to remove the vendor symlink "fix". This reduces the number of TMPDIR references in the binaries. kubernetes takes care of most of the rest via using asmflags and gcflags interally which specify -trimpath, but unfortunately these flags are being recorded into the binaries and leave us with 4 references to the TMDIR: -asmflags=all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -gcflags="all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -asmflags=all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes -gcflags="all=-trimpath=/opt/poky/build/tmp/work/core2-64-poky-linux/kubernetes/1_v1.24.0+git8b1b4db3834ddf7cf1b97137180f413cb9e2186f-r0/git/src/github.com/kubernetes/kubernetes/_output/local/go/src/k8s.io/kubernetes We leave these for now, as attempts to remove them have broken the build, and kubernetes uses 'go install' versus 'go build' to construct the binaries .. making our normal solutions non functional. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
a61f6ea090 |
containerd: fix final TMDIR references
restructure the containerd source layout to avoid symlinking vendor dependencies. This avoid go recording paths in the final binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c278a05948 |
riddler: remove TMPDIR references
convert the riddler recipe to a structure that doesn't need a symlinked vendor directory. go records these links in the binary, making our output non-reproducible. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
79ff2a5b00 |
oci-image-tools: fix TMPDIR references
The structure of the source code layout that was used by this recipe required symlinking subirectories of the source into a location that would be searched by go. While this fixes the build, and produces a working binary, go stores the location into the binary itself. Those stored paths reference the build directory, making the result not reproducible. With this change, we create an alternate structure that doesn't require symlinking and allows go to find the components during build. This results in a simpler recipe and binaries without TMPDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
1242b97f7f |
oci-runtime-tools: fix TMPDIR references
The structure of the source code layout that was used by this recipe required symlinking subirectories of the source into a location that would be searched by go. While this fixes the build, and produces a working binary, go stores the location into the binary itself. Those stored paths reference the build directory, making the result not reproducible. With this change, we create an alternate structure that doesn't require symlinking and allows go to find the components during build. This results in a simpler recipe and binaries without TMPDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
26f698cdb8 |
oci-image-tools: remove TMPDIR references
Pass -trimpath to the build to remove most (but not all) TMDIR references. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
0b0718efc1 |
oci-runtme-tools: fix TMPDIR references
pass -trimpath to remove most TMPDIR referneces. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f132afed23 |
umoci: fix reproducibility
pass -trimpath to the umoci build to remove TMPDIR references in the binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e465ef7dcd |
riddler: pass -trimpath to build
To fix most of the TMPDIR references, we pass -trimpath to the build via a new variagle GOBUILDFLAGS. There are still some debug references to TMDIR, that will be fixed at a later time. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e167860a87 |
podman-tui: reproducibility, pass -trimpath to fix QA warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
fce21463ff |
docker-distribution: pass -trimpath to fix reproducibility warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
f6f4f2c1c3 |
skopeo: reprodicibility enable trimpath and strip
Skopeo is throwing TMPDIR QA warnings due to paths being built into the binaries. We fix this by creating a new variable to pass -trimpath into the build, and also by defining the linker flags -w -s to strip source/path information from the binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
7cea149bb0 |
docker: reproducibility add -trimpath to go -> $GO patches
With this, we build and package docker without QA warnings due to references to TMPDIR. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
c991546a7f | k3s: pass -trimpath to improve reproducibility | ||
|
Bruce Ashfield
|
eb4a659acb |
podman-tui: add README with rendering tips
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
9ef3fa52d0 |
containerd: improve reproducibility
We get the following QA warning on build: WARNING: containerd-opencontainers-v1.6.8+gitAUTOINC+579a6380ec-r0 do_package_qa: QA Issue: File /usr/bin/containerd-shim-runc-v2 in package containerd-opencontainers contains reference to TMPDIR File /usr/bin/containerd-ctr in package containerd-opencontainers contains reference to TMPDIR File /usr/bin/containerd-shim-runc-v1 in package containerd-opencontainers contains reference to TMPDIR File /usr/bin/containerd in package containerd-opencontainers contains reference to TMPDIR File /usr/bin/containerd-shim in package containerd-opencontainers contains reference to TMPDIR [buildpaths] This is the first step in fixing the QA warning, by dropping our debug patch, passing -trimpath and not defining GO_DEBUG. This leaves a final reference similar to: path _/opt/poky/build/tmp/work/core2-64-poky-linux/containerd-opencontainers/v1.6.8+gitAUTOINC+579a6380ec-r0/git/src/import/cmd/ctr That is being stored in the .rodata of the binaries. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
08a59b4d93 |
nerdctl: reproducibility, path -trmpath to build
To avoid go embedding references to the build dir into binaries, we pass -trimpath to the build. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Vasileios Anagnostopoulos
|
7106007c14 |
k3s: fix the version of k3s
When executing `k3s --version` the mentioned version `k3s version dev (HEAD)`. The root cause is, that the BUILD_FLAGS were not the expected ones. After that patch, the k3s is reporting the correct version. Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
da285876dc |
lxc: fix compilation error for ARM/ARM64
There's compilation error when building lxc for ARM/ARM64 BSPs.
The error message is as below:
| ../git/src/lxc/cgroups/cgfsng.c🔢111: error: incompatible
type for argument 10 of 'sd_bus_call_method_asyncv'
The 10th argument is of type va_list but NULL is supplied, thus causing
compilation error.
So we use sd_bus_call_method_async to replace the asyncv one to
solve this issue.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Pascal Bach
|
c16d3a58ee |
podman: replace GOBUILDFLAGS patch
The GOBUILDFLAGS patch is replaced by explicitly setting BUILDFLAGS="${GOBUILDFLAGS}"
in the recipe.
Signed-off-by: Pascal Bach <pascal.bach@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3a2ac5b28a |
podman-tui: update to v0.5.0
Bumping podman-tui to version v0.5.0-40-g8f2b80f, which comprises the following commits:
95abf3a Bump github.com/containers/podman/v4 from 4.1.1 to 4.2.0
868a762 Bump github.com/containers/buildah from 1.26.4 to 1.27.0
7b02fb5 Bump github.com/containers/buildah from 1.26.2 to 1.26.4
0932c65 Bump github.com/containers/common from 0.48.0 to 0.49.0
7fff27e Fix flaky tests
87589d6 Fix typos
24a3fff Bump github.com/containers/storage from 1.41.0 to 1.42.0
6795a8f Bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0
e4f465b Bump github.com/onsi/gomega from 1.19.0 to 1.20.0
85a603b Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
8829267 Running golangci-lint on pdcs/pods, pcs/containers
d027158 running golangci-lint on pdcs/images
431dbd7 Makefile target to run codespell
2408394 running golangci-lint on pdcs/sysinfo
a4f7c62 running golangci-lint on pdcs/networks
7b35f80 running golangci-lint on pdcs/volumes
9f0fdd5 Bump github.com/containers/buildah from 1.26.1 to 1.26.2
08f96d0 Bump github.com/navidys/tvxwidgets from 0.1.0 to 0.1.1
9a4dfd5 running golangci-lint on pdcs/registry and pdcs/utils
a158603 Makefile - install golangci-lint and codespell tools
843dee3 Bump to v0.6.0-dev
e0db08b Bump to v0.5.0
117087b Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
3e4d6c3 code coverage for network and volume create dialogs
ac570c3 github workflow: adding templates for bug report and features
082cf8e docs: adding security policy
1339a05 Bump github.com/containers/podman/v4 from 4.1.0 to 4.1.1
9f92e1c new feature - image push
666026d Bump github.com/docker/docker
6e50e26 show confirmation dialog in the center of different views
a55466b disk usage dialog table headers color update
8f21399 docs update - Mac build
0d13526 Esc key shall not close dialogs if its dropdown widgets has focus
a957454 docs update - Mac build
d6d81f6 Bump github.com/rs/zerolog from 1.26.1 to 1.27.0
95187ec infobar + help color update for headers
c25c20e using images.GetImage function for image inspect
83b1ac5 new feature - container commit
509532b image history dialog update
a4488bf update button labels based on their function
c15c697 makefile update - darwin build
ce6a55f Bump to v0.5.0-dev
fafb1dc Bump to v0.4.0
bc9c56d running codespell
a23b601 code coverage for ui/utils
36230ca CI setup
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
28472ab0d6 |
crun: update to v1.5
Bumping crun to version 1.5-41-gce7533a, which comprises the following commits:
ad9008b copr: depend on wasmtime-c-api for shared lib
972d595 krun: add support for krun-sev
e539aae tests: fix fedora rawhide mockbuild
559902d autobuild copr rpms with wasmtime support
d39f45d wasmtime: always grant filesystem capability for wrkdir inside container
b937322 wasmtime: inherit argv from handler argument instead of process
477ecc8 crun: restore will work on realpath
1083f9d tests,podman: skip push to local registry with authorization
29599a5 tests: disable login/logout tests
8ff3eba rpm/Makefile: Fix copr build (follow-up on #979)
f5244c7 rpm/Makefile: install all dependencies on mock environments
a37b06a rpm/Makefile: install git-core in tarball-prep
ab18c71 cgroup: change delegate cgroup after cgroupns creation
4716692 cgroup: add new function libcrun_cgroup_enter_finalize
9139896 tests: disable broken test
a45faa2 rpm/Makefile: autobuild rpms on podman-next copr
7ea284f src: make some error messages lower case
43f420a syntax-check: enable prohibit atoi and atof
9920e7b wasmer: move definitions earlier
54e2519 wasmer: drop not needed indentation
54fe445 wasmer: fix errors return code
86f9a5c syntax-check: enable prohibit always true header tests
a07112c syntax-check: enable no period at end of message check
2656de5 maint.mk: update from upstream gnulib
3df1458 linux: fix build with glibc 2.36
14b2102 pidfd: fallback on ENOSYS
fd01ef4 nix: allow to pass extra args to the runtime
a91e905 NEWS: tag 1.5
2c94290 nix: update nix dependencies
76ead7b wasm: add support for running containers using wasmtime
88e8710 python: unset LIBCRUN_RUN_OPTIONS_PREFORK for run
9ceba95 crun: move config_file* to container
639c98f cgroup: add fallback to io.weight
c75b58d wasm,wasmedge: drop support for experimental WasmEdgeProcess
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d1aece6d43 |
cri-tools: update to v1.24.2
Bumping cri-tools to version v1.24.2-35-g77d02a03, which comprises the following commits:
a685ed61 No truncate PodID in ps command if --no-trunc exists
90214b0c Bump version in install section to 1.24.2 on README
acf387b3 Update crictl pods to show pod name
e7c20ee1 Switch to golang native error wrapping
cee70655 Bump github.com/urfave/cli/v2 from 2.11.0 to 2.11.1
e8133ffb Bump github.com/onsi/gomega from 1.19.0 to 1.20.0
b8543347 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
57da46e7 Add documentation about 'statsp' command
6182e3ce Implement checkpoint command
8152f295 Bump github.com/urfave/cli/v2 from 2.10.3 to 2.11.0
a0a19a36 Bump github.com/urfave/cli/v2 from 2.10.2 to 2.10.3
4bb67144 Validate container status in volume mount tests
4da8fc8d Switch to go 1.18 for GitHub actions
1f6b4299 Bump github.com/urfave/cli/v2 from 2.10.1 to 2.10.2
99b030fe Switch to go 1.18 as requirement
55020abc Bump github.com/urfave/cli/v2 from 2.8.1 to 2.10.1
1e69ea9c Bump github.com/opencontainers/runc from 1.1.2 to 1.1.3
b9de22b0 Bump github.com/docker/docker
d7fb1f5b Fix timeout for exec sync
ecb5c7f8 Fix cri-dockerd build
d2da6561 Bump github.com/urfave/cli/v2 from 2.8.0 to 2.8.1
ce68c70c skip tests for dockershim
4f533d58 add-list-stat-test: add tests for list stats
db554dad Bump github.com/urfave/cli/v2 from 2.6.0 to 2.8.0
d000ae7a docs: update the version to the latest
acf82056 Bump github.com/docker/docker
a7df3acb Bump github.com/onsi/ginkgo/v2 from 2.1.3 to 2.1.4
603495f3 Bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
8c659770 Remove selinux build tag
d4fe3e7a cmd/critest: fix empty ginkgo flag's value issue
4ee0c367 Add lifecycle index in benchmark update messages.
8ba9205d Skip benchmarks if associated resource number is not set.
2ba1d0e3 Standardize image lifecycle and listing benchmarks.
64263891 Parametrize benchmarking-related timeouts.
4355d842 Pass verbose flag when querying Container/Pod statuses.
b40d492e Formalize mechanism for recording/managing benchmark results.
2dd37ab8 Parametrize benchmark settings.
52e0c3dc Rewrite pod.go
f0f71212 Vendor onsi/gomega/gmeasure
21aebcad Bump github.com/docker/docker
81036863 Bump github.com/urfave/cli/v2 from 2.5.1 to 2.6.0
f9710f79 Vendor Kubernetes v1.24.0
3ceb4eee Fixes the incubator project reference
1a168cb6 update containerd socket in windows
54148d3d Bump github.com/opencontainers/runc from 1.1.0 to 1.1.1
ce9a5aec Switch to ginkgo/v2
9e9d83d6 Bump github.com/urfave/cli/v2 from 2.4.0 to 2.5.1
a156899c Bump github.com/opencontainers/selinux from 1.10.0 to 1.10.1
4291d65c Bump github.com/docker/docker
5fe1f012 Bump github.com/onsi/gomega from 1.18.1 to 1.19.0
dd6467a3 install CNI on linux
abeab06b Fix setup-gcloud action by referencing `v0`
69579189 Fix CRI-O tests
511767e5 Add CRICTL_AUTH env var option to crictl pull
1616f258 Make RPCs CRI v1 and v1alpha2 compatible
769acd39 Bump github.com/urfave/cli/v2 from 2.3.0 to 2.4.0
e5877df5 Bump github.com/docker/docker
6a2a5284 Bump google.golang.org/grpc from 1.44.0 to 1.45.0
e27bb02f Bump github.com/docker/distribution
3e01b9f2 fix seccomp test case for arm64
c6d3e52e Add `crictl statsp` command
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c1977562f6 |
cri-o: update to 1.25-tip
Bumping cri-o to version v1.24.0-292-gda7b5b1d9, which comprises the following commits:
4b6936f8f bump cri-api to k8s 1.25 rc0
1988e00f0 server: handle exit files asynchronously
45a55ed20 server: remove exit file in exit monitor
ced6fdaca server: cleanup exit monitor function
1e27ac3eb server: allow for kubelet to specify -1 for swap
3e7fd1de9 Add packit configuration
66b2ccc34 fix lint errors from 1.19 bump
9b49723de golangci: drop nolintlint
1e2f0055f bump golangci-lint to 1.48.0
7fe1f1b9e dependencies: update with new ci
c42d0d464 bump golang to 1.19
2426f669f fix documentation issue in contrib/cni/README.md: build-output changed
cc933c7a8 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
30bb89319 utils/RunUnderSystemdScope: fix
3e0aa19bd oci: take opLock for UpdateContainer
a560c8d8f node_e2e_installer: use runc/crun from PATH
1c4d63c41 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
3d0fc3630 fix documentation issues in contrib/cni/README.md
33fbbcde1 Fix possible panic in pod runtime attach
784245033 Pin containers/* dependencies
e82c16b16 migrate image_list to quay.io
f7d02e2c4 add critest-images mirror
dc5769f4f add GCP vagrant environment
76c96ce83 build(deps): bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
2e8612255 Add bundle e2e and integration tests using conmonrs
d4530cb40 Fix nginx based integration tests
45badb2a0 add vagrantfile to test CI and fixes
7f4ddeca6 build(deps): bump sigs.k8s.io/release-utils from 0.7.2 to 0.7.3
19ae364e0 Enter mount namespace if set in $KUBENSMNT environment
483fd0cf0 bats: Alter cleanup_testdir to handle nested mountpoints
65b52fb80 highperfhooks: avoid unbound growth of irqbalance
e09fe0efa Add support for max log size in runtime pod
d3cd7a07b unzips cri-o to the go dir
c60fd9473 Bump crun: 1.4.5 -> 1.5
c2984518d build(deps): bump github.com/urfave/cli/v2 from 2.11.0 to 2.11.1
c42240355 build(deps): bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0
9d5abc2ad Add Lyft to adopters
eff3a3191 build(deps): bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
74fa8341f Re-enable conmon-rs attach test
ad5f650bd Remove etcd dependency replacement
f6d6ba4c7 updates ansible for use with prow instead of jenkins
d8e76f15e copies test/integration to test/ci
35f4900ba Pin sigs.k8s.io/bom to v0.3.0
edb06fbf9 Switch to `github.com/blang/semver/v4`
6a1b6b581 Fallback to default seccomp profile if not found on disk
639843795 build(deps): bump google.golang.org/grpc from 1.47.0 to 1.48.0
7dc5333c6 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
222051ffb build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
45304727c build(deps): bump github.com/urfave/cli/v2 from 2.10.3 to 2.11.0
084dbcf4d build(deps): bump github.com/emicklei/go-restful
8c66b2aa3 remove succinct option to fix jenkins
4f75284ff build(deps): bump k8s.io/klog/v2 from 2.70.0 to 2.70.1
4ca27d0b0 Remove enable_custom_shm_size
f71d92ed8 Retry dependency report push if failed
410258613 Fix Unmasked ProcMountType
8e6895172 Add a unit test around configuring taskset on InfraCtrCPUSet
5a59d9f58 Add test for "Canonize selinux label"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
19045acf78 |
containerd: update to 1.6.8
Bumping containerd to version v1.6.8-8-g579a6380e, which comprises the following commits:
1efd8b947 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
0448673af Do not append []string{""} to command to preserve Docker compatibility
5c230ece0 Fix cleanup in critest
ed9d3dc37 oci: WithDefaultUnixDevices(): remove tun/tap from the default devices
3364f411e Prepare release notes for v1.6.8
390920429 release workflow: remove Go setup action
cf48ba6e8 release workflow: increase timeout to 30 minutes
57873e652 release: rollback Ubuntu to 18.04 (except for riscv64)
eccb82f6d Update release build timeout to 20 minutes
6a854d4b5 Update mailmap
61612e1a2 Prepare release notes for 1.6.7
d199ee462 Update golang to 1.17.13
0578d20c5 Change os.Stderr reassign for Windows service
12cae4961 Update Vagrant CI to macos-12
bc4091aae chore: bump macos runner version
cb73bd050 Windows HostProcess container CRI stats test
ac388525a Add validations for Windows HostProcess CRI configs
0007f40fe [release/1.6] go.mod: Bump hcsshim to v0.9.4
c9607e78c Update Fedora version to 36
2952b66c0 CI: add riscv64 builds
6b2dc9a37 release/Dockerfile: update Ubuntu to 22.04 for supporting riscv64
745dc07c4 seccomp: support riscv64
c2f841f21 Create ppc64le release
86b55bd8d seccomp: allow clock_settime64 when CAP_SYS_TIME is added
f3da3e51f allow ptrace(2) by default for kernel >= 4.8
aa1101068 [release/1.6] update golang to 1.17.12
37dfc5c9d [release/1.6] Fix WWW-Authenticate parsing
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
783e36d15e |
conmon: update to 2.1.3
Bumping conmon to version v2.1.3-5-g19110c9, which comprises the following commits:
636e239 Use /usr/bin/env to locate bash
d7625dc Cirrus: Add meta task to keep CI VM images alive
ab52a59 VERSION: bump to 2.1.3
a627951 meson: build with seccomp if available
1750b2d Fix build on FreeBSD-13.0
0a2e0db Reduce the amount of duplicated code between Linux and FreeBSD
32816bd Port conmon to FreeBSD
b1ca51f gh actions: bump versions
05163fd bump golang in gh action to 1.18
d91cc43 Stop using g_unix_signal_add() to avoid threads
2bc95ee [Fixup #342] `log-size-global-max` Should Be`log-global-size-max`
99eac3e bump to v2.1.2
143121b log_global_max: ignore if negative
98058b1 add log-global-size-max option to limit the total output conmon processes
65b6eaa bump to v2.1.1
81086b7 journald: print tag and name if both are specified
c61367c logging: add missing static keyword
0c3412a drop some logs to debug level
4c41ec2 meson: Handle journald
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13c1312c5b |
buildah: update to 1.27
Bumping buildah to version v1.25.0-411-gdb8d5921, which comprises the following commits:
db8d5921 release: tag v1.27.0
50a4acb0 make,cross: ignore loong64 from target list
15b0a250 Allow chflags operations inside the container
fb6da991 Don't try to call runLabelStdioPipes if spec.Linux is not set
e8c7e3fe build(deps): bump github.com/golangci/golangci-lint in /tests/tools
b7f51ea3 build: support filtering cache by duration using --cache-ttl
b218fdf3 build: support building from commit when using git repo as build context
99488b06 build: clean up git repos correctly when using subdirs
8bbeed70 integration tests: quote "?" in shell scripts
5f34c5e2 Fix a copy/paste error
f96bf7c5 build(deps): bump github.com/golangci/golangci-lint in /tests/tools
50183aa0 vendor c/common@v0.49.1
dfba70e9 test: manifest inspect should have OCIv1 annotation
873a9e1f vendor: bump to c/common@87fab4b701
81b4edfa Failure to determine a file or directory should print an error
5e3f7cea build(deps): bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
ad4976d0 refactor: remove unused CommitOptions from generateBuildOutput
dbd22863 stage_executor: generate output for cases with no commit
adbd7ef5 stage_executor, commit: output only if last stage in build
bb149ea6 Use errors.Is() instead of os.Is{Not,}Exist
ac5d37c0 Minor test tweak for podman-remote compatibility
a47dee2c Cirrus: Use the latest imgts container
239c06cf imagebuildah: complain about the right Dockerfile
bef61d79 tests: don't try to wrap `nil` errors
c9407334 cmd/buildah.commitCmd: don't shadow "err"
36006c9a cmd/buildah.pullCmd: complain about DecryptConfig/EncryptConfig
0ded0dca Fix a copy/paste error message
aed3fdc7 Fix a typo in an error message
6f660bde build,cache: support pulling/pushing cache layers to/from remote sources
6c96dd95 Update vendor of containers/(common, storage, image)
ac4b39a2 Rename chroot/run.go to chroot/run_linux.go
79bc4a38 Don't bother telling codespell to skip files that don't exist
62954c89 Set user namespace defaults correctly for the library
c79f7272 imagebuildah: optimize cache hits for COPY and ADD instructions
6841f92e Cirrus: Update VM images w/ updated bats
6243a938 build(deps): bump github.com/onsi/gomega from 1.19.0 to 1.20.0
eb4ec4a9 docs, run: show SELinux label flag for cache and bind mounts
a51011f4 build(deps): bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
05d48980 imagebuildah, build: remove undefined concurrent writes
d0a675ed bump github.com/opencontainers/runtime-tools
dc1bc10d Add FreeBSD support for 'buildah info'
80870d50 Vendor in latest containers/(storage, common, image)
4387e7e3 Add freebsd cross build targets
d0ef62ae Make the jail package build on 32bit platforms
36d95b05 Cirrus: Ensure the build-push VM image is labeled
e1f3468a GHA: Fix dynamic script filename
7c0f2253 Vendor in containers/(common, storage, image)
6fb7bb4b Run codespell
2c8436a7 Remove import of github.com/pkg/errors
34026835 Avoid using cgo in pkg/jail
ad389b19 Rename footypes to fooTypes for naming consistency
cdac8e1b Move cleanupTempVolumes and cleanupRunMounts to run_common.go
4b7c61d5 Make the various run mounts work for FreeBSD
57a73847 Move get{Bind,Tmpfs,Secret,SSH}Mount to run_common.go
0832ea2f Move runSetupRunMounts to run_common.go
9c808c76 Move cleanableDestinationListFromMounts to run_common.go
c21f4bd2 Make setupMounts and runSetupBuiltinVolumes work on FreeBSD
cf079d01 Move setupMounts and runSetupBuiltinVolumes to run_common.go
417c6018 Tidy up - runMakeStdioPipe can't be shared with linux
95a18737 Move runAcceptTerminal to run_common.go
1ab56715 Move stdio copying utilities to run_common.go
ba5ff64d Move runUsingRuntime and runCollectOutput to run_common.go
b290c861 Move fileCloser, waitForSync and contains to run_common.go
bff1c193 Move checkAndOverrideIsolationOptions to run_common.go
75ae8040 Move DefaultNamespaceOptions to run_common.go
acdf4777 Move getNetworkInterface to run_common.go
8e36f5fc Move configureEnvironment to run_common.go
f68f1092 Don't crash in configureUIDGID if Process.Capabilities is nil
7ea97716 Move configureUIDGID to run_common.go
a405d62c Move runLookupPath to run_common.go
4d9a035e Move setupTerminal to run_common.go
42010799 Move etc file generation utilities to run_common.go
1c0a08e3 Add run support for FreeBSD
3faa6984 Add a simple FreeBSD jail library
6bb4efdb Add FreeBSD support to pkg/chrootuser
76a0c821 Sync call signature for RunUsingChroot with chroot/run.go
8dca0a65 test: verify feature to resolve basename with args
f146c718 vendor: bump openshift/imagebuilder to master@4151e43
d300c614 GHA: Remove required reserved-name use
35bfc66a buildah: set XDG_RUNTIME_DIR before setting default runroot
9d7ac758 imagebuildah: honor build output even if build container is not commited
9445aa12 chroot: honor DefaultErrnoRet
48c888a6 [CI:DOCS] improve pull-policy documentation
0e745d15 tests: retrofit test since --file does not supports dir
ce384684 Switch to golang native error wrapping
825561b2 BuildDockerfiles: error out if path to containerfile is a directory
066b5448 define.downloadToDirectory: fail early if bad HTTP response
fc9255f5 GHA: Allow re-use of Cirrus-Cron fail-mail workflow
7a22c40e add: fail on bad http response instead of writing to container
dab6d12e build(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0
263f5adc [CI:DOCS] Update buildahimage comment
252bf17b lint: inspectable is never nil
869c705d vendor: c/common to common@7e1563b
5686018e build: support OCI hooks for ephemeral build containers
c0be04e6 [CI:BUILD] Install latest buildah instead of compiling
1fd5d73f Add subid support with BuildRequires and BUILDTAG [NO NEW TESTS NEEDED]
d6340b6c build(deps): bump github.com/stretchr/testify from 1.7.2 to 1.7.5
ffce8b36 Make sure cpp is installed in buildah images
404852be demo: use unshare for rootless invocations
198b4c36 buildah.spec.rpkg: initial addition
74f2c9bd build: fix test for subid 4
d3eeea37 build(deps): bump github.com/spf13/cobra from 1.4.0 to 1.5.0
20c5c5c6 build, userns: add support for --userns=auto
ecae0e2f Fix building upstream buildah image
e54c9efa Remove redundant buildahimages-are-sane validation
cf6b1bcf Docs: Update multi-arch buildah images readme
0a1d828d Cirrus: Migrate multiarch build off github actions
0d3246ff retrofit-tests: we skip unused stages so use stages
08bc5d91 stage_executor: dont rely on stage while looking for additional-context
25f9ff84 buildkit, multistage: skip computing unwanted stages
dc07d9ff More test cleanup
b23a20ee copier: work around freebsd bug for "mkdir /"
f577fc4f Replace $BUILDAH_BINARY with buildah() function
0b7c5002 Fix up buildah images
be3b9c36 Make util and copier build on FreeBSD
9042b86b Vendor in latest github.com/sirupsen/logrus
8bbe7a60 build(deps): bump github.com/opencontainers/runc from 1.1.2 to 1.1.3
8d9e9d6f Makefile: allow building without .git
2d4d2824 run_unix: don't return an error from getNetworkInterface
79bab77a run_unix: return a valid DefaultNamespaceOptions
39880517 Update vendor of containers/storage
c06c6dbb chroot: use ActKillThread instead of ActKill
ed4412b9 use resolvconf package from c/common/libnetwork
ee3d131d update c/common to latest main
7cc5f198 copier: add `NoOverwriteNonDirDir` option
3aea4093 Sort buildoptions and move cli/build functions to internal
d452494d build(deps): bump github.com/fsouza/go-dockerclient from 1.8.0 to 1.8.1
9c7ce03f build(deps): bump github.com/docker/docker
f2dae989 build(deps): bump github.com/stretchr/testify from 1.7.1 to 1.7.2
2182e0af build(deps): bump github.com/containerd/containerd from 1.6.5 to 1.6.6
236c0bab Fix TODO: de-spaghettify run mounts
6225b23d Move options parsing out of build.go and into pkg/cli
7cf6dbd4 [CI:DOCS] Tutorial 04 - Include Debian/Ubuntu deps
495add93 build, multiarch: support splitting build logs for --platform
1ac1f035 build(deps): bump github.com/containerd/containerd from 1.6.4 to 1.6.5
be9ef3b6 [CI:BUILD] WIP Cleanup Image Dockerfiles
0bcc7c5e build(deps): bump github.com/fsouza/go-dockerclient from 1.7.11 to 1.8.0
60b625ce cli remove stutter
e80fed06 docker-parity: ignore sanity check if baseImage history is null
c61ecc69 build, commit: allow disabling image history with --omit-history
4cf93e3e Fix use generic/ambiguous DEBUG name
73a5ec42 build(deps): bump github.com/containernetworking/cni from 1.1.0 to 1.1.1
1a79fbed Cirrus: use Ubuntu 22.04 LTS
0986de40 Fix codespell errors
00d46292 Remove util.StringInSlice because it is defined in containers/common
b3fbb598 buildah: add support for renaming a device in rootless setups
149880a1 squash: never use build cache when computing last step of last stage
7cc18838 Update vendor of containers/(common, storage, image)
f7ea2d84 build(deps): bump github.com/golangci/golangci-lint in /tests/tools
c2adbade buildkit: supports additionalBuildContext in builds via --build-context
f4ad4faa test cleanup
73e0ad71 buildah source pull/push: show progress bar
45bd47b4 run: allow resuing secret twice in different RUN steps
7dbc5ce8 test helpers: default to being rootless-aware
c80e6a31 Add --cpp-flag flag to buildah build
e4d25d53 build(deps): bump github.com/golangci/golangci-lint in /tests/tools
784a8c4c build: accept branch and subdirectory when context is git repo
177141d4 build(deps): bump github.com/docker/docker
82e9c841 Vendor in latest containers/common
714fbed4 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
8d57bff9 vendor: update c/storage and c/image
1c1ba51c build(deps): bump github.com/golangci/golangci-lint in /tests/tools
5e338aad Fix gentoo install docs
f45fbf77 build(deps): bump github.com/docker/docker
cf2bb5a1 copier: move NSS load to new process
063abf6f Add test for prevention of reusing encrypted layers
fccc7895 Make `buildah build --label foo` create an empty "foo" label again
6750810f Bump to v1.27.0-dev
0a9d6e6e Bump to v1.26.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3292170646 |
podman: update to 4.2
We refresh one patch, and drop another that is already part of the
4.2.x release series.
Bumping libpod to version v4.2.0-8-g754ec89a8, which comprises the following commits:
eb2496a77 Skip / update some tests under runc
eba1f7749 Bump to v4.2.1-dev
7fe5a419c Bump to v4.2.0
754e32056 Final release notes for v4.2.0
4900394c8 Document behavior of --timestamp when only FROM is used
b619c7a72 check memory test based on range
a3778b051 specgen: use sandbox id instead of name for annotation
fa1085ed0 cmd: refuse --userns if a mapping is specified
91a1f3022 e2e: Add rootless mount cleanup test
297c72238 [CI:COPR] podman.spec.rpkg: add python3 dependency for el8
a6ea3325a start filter flag changes
a19c5a252 Cirrus: Run Cross builds in [CI:DOCS] mode
e776425e5 podman info: hide `--debug`
53a631ca2 ISSUE TEMPLATE: remove `--debug` from `podman info`
a7d932422 Cirrus: use dnf instead of rpm to install packages
8c36b8c52 Cirrus: Fix e2e tests for "mount_rootless_test"
bd3e36040 podman generate systemd --new: allow -h hostname
5c17d1b14 test: verify manifest inspect must contain OCI annotations
6b2bbd2d1 podman-volume-import: Reword "precendence"
54ee42331 man podman-volume-import: Clarify that merge happens
c5c0efc95 podman generate systemd: handle --sdnotify correctly
7e7951145 Bump google.golang.org/protobuf from 1.28.0 to 1.28.1
8b9e5fb08 Use 8k buffer to help clients w/ broken parsing
7efd81cb8 With --rm option remove container if podman run fails
346b22f07 Bump golang.org/x/tools from 0.1.11 to 0.1.12 in /test/tools
5b5e53d70 syncContainer: transition from `stopping` to `exited`
b7feafcb0 Fix: manifest push --rm removes a correct manifest list
24f219efb Fix: Restore a container which name is equal to a image name
32848b95f When removing objects specifying --force,podman should exit with 0
312bef288 test: update apply-podman-deltas for new tests
9b0a1fa75 build: implement --cache-to,--cache-from and --cache-ttl
a382bd329 vendor: bump buildah to v1.27.0
916d51bd0 test: update apply-podman-deltas for new tests
3a239947a build: implement --cache-to,--cache-from and --cache-ttl
6b2512f67 vendor: bump buildah to v1.27.0
6beb3f208 Fixes #15154 Change order when config and connections are written
eab03100f Add support, and default to rootless w/WSL prompt
f826ed584 Disable F36 service that is incompat with WSL kern
d16b42f26 pkginstaller: use correct GOARCH value in case of arm build
0593ceb01 Cirrus: Update DEST_BRANCH to v4.2
fb8584332 Cirrus: Improve CI VM image updates for EC2
d5793db28 Bump back to v4.2.0-dev
7e1f3106f Bump to v4.2.0-rc3
1b7e16654 v4.2.0-rc3 release notes
bf2a53a2e pkginstaller: use correct GOARCH while building podman binaries
d4481a317 pkginstaller: makefile improvements to avoid redownloading
1b3844f65 pkginstaller: add makefile target to notarize the built pkg
64db955e0 pkginstaller: sign qemu-system-* binary for the pkg
9a820b480 Add support for building macOS pkg installer
5c95c0920 Add support for creating sigstore signatures, and providing passphrases
0aebdb687 Hide podman manifest push --sign-by on remote
b2b3edaca Use signByFlagName instead of copy&pasting the string
49d40293b Remove libpod/common
eacee60c8 Update c/common to an unreleased version
62cc871c6 Update the registry server we test against from 2.6 to 2.8
52db76373 Use existing REGISTRY_IMAGE variables in more places
230363225 Use httpasswd from the surrouding OS instead of the registry image
74155705e fix e2e sign tests
983cfb90e Final v4.2.0-RC2 release notes
bf6f79630 Skip one failing test on Ubuntu
25efc9b2e Fix incorrect release note about regexp
4acc14b4e Bump to v4.2.0-dev
81005b8d8 Bump to v4.2.0-RC2
6fafe120c Final release notes for v4.2.0-RC2
990ef3cf6 [CI:DOCS] podman-generate-systemd.1.md: document --sdnotify
c85722eb9 pod create --share none should not create infra
c3e0f8ebe machine: Fix check which is always true
e6ebfbd1e Set TLSVerify=true by default for API endpoints
64bc2ee97 Semiperiodoc cleanup of obsolete FIXMEs
b339045db benchmarks: fix create test
fd1f5f55a integration test: fix network backend option with remote
c7fef7316 docs: remove CNI word where it is not applicable
976f818f1 libpod: do not lock all containers on pod rm
772e883f8 container wait: improve error message
206f11d4f Makefile: use order-only prereq for podman-remote
c4616510a API: libpod/create use correct default umask
ce8b6cebd compose test: remove cni config copy
553a70096 compat api: always turn on network isolation for networks
aef8039d3 compat api: allow default bridge name for networks
fa7e9f0f8 Compat API: unify pull/push and add missing progress info
fde39edb9 remote push: show copy progress
1f48980af fix broken machine test
cbcbde587 pkg/machine/e2e: do not import from cmd/podman
69fcf04c6 fix some pkg/machine/e2e test to read stderr
ce790e61b enable linter for pkg/machine/e2e
ff7259567 [CI:DOCS] Cirrus: Add prominent gitlab warning
3edaa174e libpod: create /etc/passwd if missing
e41113dca e2e: show command and output when a timeout happens
f6d18ed41 fix goroutine leaks in events and logs backend
dc1dc4600 podman-remote pull: fix duplicate progress outputs
2350ef9dd Fix potential leak on mid-stream read error
7b28a1b7c vendor: remove unused deps
3aec669e9 Makefile: remove building pages for man5
ed49f9411 makefile: remove processing of pkg/docs
24bbd40ce rpkg: remove usage of pkg/hooks
73ecc5a4b pkg,libpod: remove pkg/hooks and use hooks from c/common
d151edeea Fix machine test
86159e39b document isolate option for network create
c3c07ed09 Update init ctr default for play kube
6057db75d Remove return error from "containers.pause"
de8d2cc94 "pod pause/unpause/stop" append "report.Errs" to "reports"
409fbeaab system tests: new system-service bats file
d2e2756a4 Print rootfs download as a specific version on Win
244055030 [CI:DOCS] Fix typo in manifest manpage
76fa80447 Vendor in latests containers/storage and opencontainers/runtime-tools
e89550bcd buildah vendor treadmill
9c1de040b Vendor in containers/(storage,image, common, buildah)
03eaea8bb Run codespell
e4b82c77f Add --host and -H as equivalent options to --url
183fdea5f Use SafeChown rather then chown for volumes on NFS
17dbce2fb Clean up cached machine images
e473c5e4b Machine init: create .ssh dir if not exist
53edd9b65 Podman pull --all-tags shorthand option
f07d2bac4 Cirrus: Trigger podman-machine task by label
3bd248ae7 GHA: Fix dumb error check
6d84a9952 Podman stop --filter flag
a78be890e Switch to `github.com/blang/semver/v4`
52850ce70 man page checker: enforce stricter options format
a5827e13c Fixes #14698 Use prepared image for WSL2 machine init
a4bae330a Add podman events -f to be alias for --filter
d560c7897 [CI:DOCS] man pages: replace -c with --cpu-shares
5f5379deb [CI:DOCS] podman-create.md: replace -c with --cpu-shares
f7707c81a Fix last machine test
35dc17bfe abi: create new cgroup when running in a container
7b4ebfa65 podman: always call into SetupRootless
3b37095b2 utils: call MaybeMoveToSubCgroup once
edfe80027 podman: move MaybeMoveToSubCgroup to utils/
b29a52a48 Docker uses "-c" to mean "--cpu-shares" in create and run
ffd2e6df9 test,manifest-run: declare TARGETPLATFORM before using it
ca4630ede CI: sanity check for desired runtime
bf269e634 podman machine: do not commit proxies into config file
b2f3b28c6 logformatter: link by *task ID*, not build ID
cfb768a36 fix wrong log message on Trace level
557b65e09 [CI:DOCS] Improve language. Fix spelling and typos.
a363b3a65 Initial release notes for v4.2.0-RC1
f22af2bf8 Bump to v4.2.0-dev
74aa681e5 Bump to v4.2.0-rc1
aa29bd6de Update CI base branch
87793b633 [CI:DOCS] Rewrite the --gidmap option docs
3bb4cf8ee libpod: read exit code when cleaning up the runtime
62cdc387d podman wait: return 0 if container never ran
25d74db45 [CI:DOCS] podman-info.1.md: Update examples
b41e42f42 test/system/130-kill.bats: use $IMAGE
81a19a568 Add ports and hostname correctly in kube yaml
6b9abe69d improve pull-policy documentation
76d887c77 Fix machine tests
1e7686df6 Manifest test cleanup: use defer()
96dd57ca5 podman wait can take multiple conditions
a46f79883 pkg: switch to golang native error wrapping
d1754bdd4 Refactored networkPrune function
1161e8bd5 manifest_test: safer registry setup and teardown
61a67a07b pkg/machine/qemu: start VM check if qemu is alive
a26cf638e machine: qemu fix chardev id starting with letter
4374038cc pkg/machine/e2e: do not import from cmd/podman
4cfa8ccb2 machine test: fix endless loop in test
3adda62d2 [minor] fix duplicate test name
e8d2d70ee port forward range test: fix many oopses
0424084b3 fix namespace reporting
03ee8204d podman machine: make 9p security model configurable; adjust docs
44bd166b3 test-apiv2: streamed response testing based on response duration
a5898129c Fix qemu machine startHostNetworking always failing
cc6faddfa use c/common code for resize and CopyDetachable
1267515e1 Update play kube docs
791dbf823 golangci install: explicitly set BINDIR
4fd5fb97a e2e tests: cleanup: capitalize CONSTANTS
72aa00aca Fix streaming for libpod/pods/stats endpoint
ee05bc031 Fix network inspect compat API discrepancy
9d6efb344 Podman machine info
65d511c6d Fix podman pod unpaue TODO
251d91699 libpod: switch to golang native error wrapping
8f2d9e7a7 podman pod create --uts support
5633ef1d1 Docker-compose disable healthcheck properly handled
488eb3b74 (rootful) docker-compose now updates network MTU
4fe7b8baf Podman system df JSON format outputs `Size` and `Reclaimable`
b9aa47555 Sync: handle exit file
49cb288df hack/test/utils: switch to golang native error wrapping
2da731a7e test: reduce sleep interval
c02f793ba test: return immediately on connect
efe1176dd specgen,run: support running container from valid manifest list
8601ab6b0 Silence setlocale warnings from `podman machine ssh`
33a474286 pkg/machine: add missing build tags to tests
5b1867923 TestEnvVarValue: fix assertion
3fbe93371 envVarValueResourceFieldRef: use int64 for value
4c5b058e8 fix flake in aardvark tests
597de7a08 libpod/runtime: switch to golang native error wrapping
8106568ca test: drop pod-create --device-read-bps test
5491123c2 [CI:DOCS] troubleshooting: document --tty and CR
fe559287c docs: Remove -s from systemctl enable --now sshd
24fcfb5d9 Fix spelling "read only" -> "read-only"
2f1075dfb Implement proxy support for Windows
b92149e2a podman pod create --memory
8cff1c2bf Cirrus: Add podman-machine integration test
f58d7dbda Cirrus: Fix elevator workaround multi-cloud support
7131c8472 fix build
d6678adc9 overlay,mount: convert lowerdir to absolute path for overlay mounts of path
891dfd3a8 specgen: fix parsing of cgroup devices rule
5262f7e01 Fix podman machine on Windows
9c658f490 docs: mention the podman-kube template
c6fb533ca podman-play-kube template: rename to podman-kube
bd51410b8 service: do not run under the root cgroup
5c3979762 utils: move the cgroup if root on cgroupv2
e8adec5f4 cmd/podman: switch to golang native error wrapping
7bbfb3eb0 api,images: add support for LookupManifest to Image remove API
64ec894c5 [CI:DOCS] Update podmanimage comment.
d9ff0fd15 Only allow Rootless runs of Podman Machine
6904b1a61 build(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0
5790caaef bindings: Add support for Delete in pkg/bingings/manifest
1affceb29 runtime: unpause the container before killing it
7f994a80d only create crgoup when not rootless if using cgroupfs
59a7ac210 Make `podman machine stop` wait for qemu to exit
2ee9fe4cb vendor containers/common
79a38a2c6 Add test for restore runtime verification using non-default runtime
8e3a46a87 Fix runtime check during restore
6c4c050d3 fix volume reporting in system df
cc4914633 Docker compat returning unknown "initialized" for `status.status`
6d3520e8b podman image scp remote support & podman image scp tagging
dc58a7306 Makefile: don't try to build rootlessport on FreeBSD
c55feb7bf Makefile: don't use '-t' to specify the directory to install manpages
af16edf49 Makefile: use GNU sed to convert manpages on FreeBSD
94a634fcf Makefile: use bash to evaluate tool paths
0e03a64f9 pod: ps does not race with rm
0cabd8006 pods: move code to a new function
3b10c1b78 Use Regexp in volume ls --filter name
aada13f24 volume: new options [no]copy
a4094530b volume: drop TODO comment
443a2afdb volumes: switch order of checks
28e2a604b vendor: update containers/common
99f68898c reveal machine error, ignore false state
9cb93c6f9 go.sum: run make vendor
0c1a3b70f Show Health Status events
386ea49cf Show starting state when machine is starting
66c62eb96 Implement CatchAll and StopCatch in signal_common.go
345778ece Fix "podman run port forward range" flake
4c5788bac Fix spelling of GetCriuVersion
590290597 Add missing criu symbols to criu_unsupported.go
2792e598c podman cgroup enhancement
09754d21d [CI:DOCS] Minor update to podmanimage upstream docs
041947b11 Bump github.com/stretchr/testify from 1.7.4 to 1.7.5
3619f0be9 Fix: Prevent OCI runtime directory remain
a4ae22df8 Workaround for bug 14653 (checkpoint flake)
491857a88 Use HaveLen instead of len in podman machine list e2e tests
f0b9e56e9 Fix machine list: --format implies --noheading
2fab7d169 add podman volume reload to sync volume plugins
6e8953abf test/testvol: rework testvol binary
fcc25afa5 test/testvol: update container image golang to 1.18
472f79f08 test/testvol: move Containerfile into testvol dir
0d3aa61be libpod: volume plugin sendRequest remove body bool
ad78d239d fix system connection and scp testing
3a810b8d2 Two fixes for DB exit code handling
30e7cbccc libpod: fix wait and exit-code logic
15188dce0 conmon: silence json-file error
2eda547dc podman run/create -v relative filepath support
ef563c5a1 logformatter: link to logs using Cirrus API
aa4279ae1 Fix spelling "setup" -> "set up" and similar
0320ce37d Fix system prune output message
7ef282d64 Remove lorgus.Infof on bindings start and attach
132393d15 Update basic_networking.md
4a981c490 allow filter networks by dangling status
050693b2e bump github.com/spf13/cobra from 1.4.0 to 1.5.0
ecf225019 rootless: attempt to join all specified paths
9afd5e31c rootless: improve error messages
99258703a rootless: do not ignore reexec_in_user_namespace_wait errors
cfba09f68 Bump github.com/stretchr/testify from 1.7.2 to 1.7.4
1f539a264 api: show the memory limit specified for the container
7f82c4323 Fix typos
f451b68df podman pod create --shm-size
46da7bc78 podman machine init --now: respect proxy envs
bb5bd09ea API: containers/json always set application/json content type
282714090 [CI:DOCS] "setup" -> "set up" in source code comments
dda68201a [CI:DOCS] Rewrite --env docs
948866e8a Update to use gopkg.in/yaml.v3
075c9ac45 .cirrus.yml: fix matrix expansion by properly merging YAML mappings
809044576 vendor in latests containers/image
ce3d0954a Open Windows tutorial after MSI installation
a3b3f1723 linter fix from #14299
065302bd5 Cirrus: Fix build. dep. missed in #14521
3af047b63 Vendor in latest containers/storage
09c462d73 fix "podman -h" help output
6c5e1420e Make it clear the REST API could be a security issue
28a38617e [CI:DOCS] fix typos in prerequisites for Fedora and make binaries sections
b3f094a61 test/system/410-selinux: fix for newer runc
e69691c27 Fix interrupting machine start leaves the machine unstartable
0a202a9f0 system test image: bump to 20220615
21819254d golangci-lint: update to v1.46.2
c6b9baa6c system tests: avoid rmi -a ... plus cleanup
693d439ac Update release notes and README on Main for v4.1.1
751ba07a7 libpod: improve check to create conmon cgroup
90a669594 fix CI: golangci-lint is broken on main
20b3fbe6d systemd socker activation: check listener to prevent panic
43e12c135 Fix #14416: Use absolute path to WSL binary to create ssh keys for `machine init`
bfc446eea buildah-bud tests: reenable skipped 'bud' tests
455f4c782 CI: APIv2 tests: add rootless
232b3e342 buildah-bud tests: add arg sanity check
41528739c golangci-lint: enable nolintlint
1b62e4543 golangci-lint: add systemd build tag
fcfcd4cdb container: do not create .containerenv with -v SRC:/run
4811cb110 podman system prune support prune unused networks
5e9d20448 Update vendor of containers/buildah
608ad7d11 Non-running containers now report statistics via the `podman stats` command
958759a71 podman pod clone
8d3e6577a Fix M1 QEMU flags
b7c283759 Bump golang.org/x/tools from 0.1.10 to 0.1.11 in /test/tools
48cf1d258 podman-remote push --remove-signatures support
d4272bed5 podman cp: do not overwrite non-dirs with dirs and vice versa
46c8da7d9 vendor buildah@main
7b3e43c1f podman volume create --opt=o=timeout...
80d5a00bb Fix Remote filtering embedded directory test
2b97795c1 APIv2 tests: (try to) fix flaky registry panic
81153ffa2 Introduce 'Starting' status for machines
b13fc1bf9 patch for pod host networking & other host namespace handling
5614c29ce compat api: fix regressions from "Swagger refactor/cleanup"
eed0e6671 Pass '--file-locks' to OCI runtime at restoring
c77691f06 Do not error on signalling a just-stopped container
7e9767502 Bump github.com/opencontainers/runc from 1.1.2 to 1.1.3
549bffe58 shell completion: fix problems with container path completion
bce97a3b5 apiv2 tests: clean up
700248bfe Update remote_client.md
254048e17 Cirrus: Fix artifact passing when dep. skipped
f0516a014 --userns=keep-id,nomap are not allowed in rootful mode
126686f3d Podman images generated with empty /etc/containers/storage.conf
20aaaa382 Minor: Fix podmanimage README links
dc4a01ec6 Add docs of changing default netavark networks
ed1e4f94f Infra Inheritance patch
5fc3d871a Cirrus: Simplify only_if/skip + optimize multiarch
a69a48b0d test/e2e: network dis-/connect test remove unhelpful assertions
90d80cf81 use resolvconf package from c/common/libnetwork
ddf1d2cb3 update c/common to latest
811cce5a8 libpod: store network status when userns is used
0f424e90d Bump github.com/docker/docker
e41d4a247 Add missing tests for manifests API
2a0d896b3 runtime: make error clearer
2c12f7bd1 Add some Readme updates around machine
8533ea000 Privileged containers can now restart if the host devices change
335925f47 Minor: Remove useless addition of storage.conf
aadae49ad overlay-volumes: add support for non-volatile upperdir,workdir for anonymous volumes
5c508cb4e Bump github.com/stretchr/testify from 1.7.1 to 1.7.2
67ea5fdad Cleanup the leftovers used with ginkgo focus option
1fc5a107a [CI:DOCS] PodmanImage Readme touchup
22e442ee2 tests: buildah-bud fix reason for skip
9de092ec0 Fix secret-verify-leak flake: set build context to subdir
259c79963 Improve robustness of `podman system reset`
87b05b6a6 Prevent simultaneous machine starts
3c9b75c21 Using logDriver instead of query.LogDriver for podman play kube
241458666 podman logs k8s-file: do not reassemble partial log lines
2b0cb3002 test/e2e/save_test.go: fix flake
b8de285a4 Stop machine before force removing files
1b6505d74 Update test output expectation
9a34b88c9 changed megabyte to mebibyte
831d6534f fix pod network handling with a host network
5023ce585 Align docker load and podman load output
f2bbbd20d shell completion for paths inside the image/container
69e44bbcc bindings: add manifest should follow es_model while marshalling OSVersion and OSFeatures
5b9729c47 Document protocol usage for --publish
6dffa453a Bump github.com/containernetworking/cni from 1.1.0 to 1.1.1
44f11ec2c podman-remote: enable support for additional build-context on macOS, remote
3fa09e9db Makefile: Handle unexpected empty var. values
fc95f832a Podman image: Mass cleanup + fix missing storage.conf
f728b7b5a podman pod create --uidmap patch
8291b51ce expose podman.sock in machine inspect
dbdc26a4c Removed `imageStream` hardcoded value
2805c7353 pkg/specgen: parse default network mode on server
78d1f5d7d fix "tail 800 lines: journald" flake
193397290 Add ExecStop and dependencies to fix shutdown
f91c852fa Makefile: force podman-remote-static to linux
cef044d85 Bump gopkg.in/yaml.v3 to v3.0.1
205c8c071 fix podman container restore without CreateNetNS
16e8b2f32 podman stats: work with network connect/disconnect
ec576a549 podman volume export/import: give better error
4a8346551 podman machine ssh: do not print warning everytime
7e69e2b53 Podman no-new-privileges format
0e58636c3 podman machine ssh: set correct exit code
a6f8cad54 fix bad import path for cmd/podman/utils
c0ad9a43e Mount propagation works with named volumes
f23ae4d66 healthcheck: wait for systemd operations
8efdbf5c4 Add API support for NoOverwriteDirNonDir
e13c5f3a9 Refactor populating uptime
3a32d60e5 [CI:DOCS] Quick typo for troubleshooting
ea1a8e243 Move Attach under the OCI Runtime interface
fb163976f Support setting image_volume_mode in containers.conf
d730f2b25 Add Authorixation field to Plugins for Info
ab0728421 docs: note regarding version compatablity between server and client for bug fixes
87ad46060 Remove TODO comment
66a56ce05 vendor: bump buildah to v1.26.1-0.20220524184833-5500333c2e06
6124b5199 build: allow using cache explicitly with --squash-all using --layers
8c1128db4 Cirrus: Fix several TODOs
426a07e70 Combine the CheckAllLatest CID and PodID functions
c9f6639ec Fix TODO in parse/net.go
32aa12a28 Remove TODO from pods/ps.go
8c781416b Fix swagger model of `InspectPodResponse`
de54d33d2 Fix test block bypass instructions
b730e7328 cmd, build: remove redundant squash processing logic
66c846616 Support remote deadlock errors in rm
badf76e17 Remove more FIXMEs
9fcfea764 First batch of resolutions to FIXMEs
02c437405 [CI:DOCS] Add play kube support docs
338f01237 Remove unused archive flag from diff commands
cb76d1523 fix f35 integration test network flake
c3677f515 test/system/250-systemd.bats: clean up outdated TODO
c9279d4d9 pkg/bindings/play/play.go: drop TODO message
462cb3370 pkg/bindings/containers/archive.go: drop TODO
60e31d87d pkg/auth: drop the TODO
09ae060a7 pkg/api/handlers/compat/images.go: drop TODO message
c04ec104d libpod/pod_top_linux.go: s/TODO/NOTE/
b19e2d6f8 events: drop TODO comment
429b1f768 Fix codespell errors
4a447a213 work queue: simplify and use a wait group
2ce475576 Allow podman pod create --share +pid
df394b521 Allow podman pod create to accept name argument
70f147d01 cmd/podman/common/completion.go: fix FIXMEs
2be4589b5 Remove TODO re: storage-driver
8de3e9102 help-message system test: catch more cases
33628003c Put current product first and historical product second
2400d1d52 go format previosly touched files
b3e2324f5 test/e2e/search_test.go: re-enable registry.redhat.io test
956e2e1b8 pkg/domain/infra/abi/images_test.go: remove commented code
fbeef1d70 image list: remove unused ConfigDigest
90a6f39d0 pkg/inspect: remove unused ImageResult type
5268314e5 podman image mount: print pretty table
d3d3a207d pkg/bindings/images/rm.go: remove redundant FIXME
6c6e97018 pkg/bindings/images: remove TODOs re: system context
d924c46da autocomplete `podman search --filter`
f98a7d140 build(deps): bump github.com/vbauerster/mpb/v7 from 7.4.1 to 7.4.2
8af98b342 contain_top_linux.go: s/TODO/NOTE/
f5450b1e8 system tests: fix flake waiting for container to run
2133edb2c compat, build: suppress step errors when quiet is set
8fbb933f5 look for firmware based on the path of qemu binary
5d37d80ff Use containers/common/pkg/util.StringToSlice
d29dec967 Cirrus: Fix building multiarch images
dde428642 Bump Compat API maximum version to v1.41
b7dbc505b Instead of erroring, clean up after dangling IDs in DB
e22611baf fix typo
ac154425d Update _play kube_ doc following PR #14266 merged
c984956f9 fix compat image resolution
d66288315 auto update: create an event
633d5f1f8 fix --init with /dev bind mount
4960a17a5 fix tests by randomize the device folder name
94e82121b Support running podman under a root v2 cgroup
a0d0207a2 fix podman-for-windows.md
5b79cf15a Swagger refactor/cleanup
fb219a809 Update c/image
9c9fc96d2 shell completion: use more constants instead of duplicating strings
337f8b9d9 shell completion: podman save --format use all valid values
74f70315b shell completion: update podman inspect --type options
318e95fd2 shell completion: fix podman event --filter values
b22143267 linter: enable unconvert linter
3b0844f99 shell completion --format: add help to function with args
3d8a1f917 shell completion --format: support maps and functions
ecd6edb19 shell completion --format: fix embedded struct handling
11ff5ffd3 shell completion --format: only show usable methods
eeeb88a66 shell completion --format: only show exported fields
f5c8c0911 add tests and fix bug when char device pass the test as block device
653117087 ci: pr-should-include-tests: add more exceptions
40a1cd4ef Remove GO111MODULES use
d49efde27 Makefile: rm gofmt target
9bf81814a Makefile: rm CHANGELOG_* and ISODATE vars
d2070a39e Makefile: rm -mod=vendor
2b54bf3e6 Move GOPROXY from Makefile to cirrus.yml
11d3cf269 Makefile, podman.spec.rpkg: rm GOBIN and GOPATH
c63bb6b9a Makefile,.gitignore: rm .install.goimports
e2d2b537a Makefile: rm .gopathok
d8c42de41 Makefile: rm .install.libseccomp.sudo target
c632a2efc dependabot: add release-note-none label
0c9b0e2aa expose block and char devices with play kube
8684d41e3 k8systemd: run k8s workloads in systemd
6f9155cbb api: make no-op remote functional in /libpod/build
21a5ef859 Don't complain about XDG_RUNTIME_DIR, Closes #1424
dc435ecb2 Make errors on removing exec sessions nonfatal
ee782fcb7 Deleting an n use image should return conflict not system error
977cd9bd1 Update WSL machine OS to enable user lingering
0961002d9 Update tutorial list to include Podman for Windows
5b2d5c365 Robust whitespace split of cpu utilization line from /proc/stat
de4f76e7e Fix strange buildtag edit
c45d51899 [BZ #2083997] pod: build pause image in custom user NS
c058b828c Changed permission to 755
25f80941a build(deps): bump github.com/docker/docker
2b03a1088 Vendor in latest containers/common
b8103640a Make sure tests are cleaned up when they complete
7804f4d29 Add support for machine events on Windows
a4aa07a07 [CI:DOCS] Treadmill script: add --reset option
b7ce98619 Fix broken pwd
1094d7553 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
9df390655 shell completion --format: work with pointer functions
03af8213c sdnotify: send MAINPID only once
840c120c2 play kube: service container
ecf0177a0 vendor c/common@main
16e22dbbe vendor: update c/storage and c/image
37e30bcb2 Fix hang in build-each-commit test
e76a07087 [CI:DOCS] man pages: fix inconsistencies
60258925a test: update fedora toolbox image
1834afd3e [CI:DOCS] Benchmarks: new tool for parsing results
813f6a68f [CI:DOCS] fix `make localbenchmarks`
876b05cdb Add initial Windows guide
c7c00ce55 Add more machine tests
d0ca90b3e test: simplify cleanup code
0774a4ce1 kube: add support for --userns=
2b5778d41 Cirrus: Update images + new automation library
9ffc2a6ac Cirrus: Fix Makefile including 'hack' in $PATH
abf4f77bc Cirrus: Simplify use of cache in automation
237f76126 Cirrus: Simplify rootless ssh setup
c1656e2ee Cirrus: Guarantee $DEST_BRANCH is passed through
82f2b3edb bloat check: make more robust
9e1ee081f kube: honor pod security context IDs
82a4b8f01 kube: refactor setupSecurityContext to accept directly the security ctx
be5abf03a fix: Container.cGroupPath() skip empty line to avoid false error logging
c48657671 test skipper: check for $DEST_BRANCH
8ecd0b5bc fix broken CI test
bb8f53a72 test: fix "podman search format json"
b58e7e7f1 play kube log tag handling
a1a299797 Update version to v4.2.0-dev
bce014e19 Update release notes for Podman v4.1.0
9cd74a13c update podman version in readme
0dbfd376f Add 4.1 branch to API documentation
2a401b3ff Bump github.com/docker/docker
ed8c1dfb4 libpod: add c.ConfigWithNetworks()
d7f43e677 test: fix failing TestPostDeleteHooks
cf35168f0 test: use `T.TempDir` to create temporary test directory
6ddccd94f e2e: pull_test: speed up --all-tags
c38e7e5f6 build: disable --output for podman-remote clients
140fb3ae1 e2e: pull_test: squash --quiet test
669401c31 e2e: pull_test: move tests around
2fa906cca e2e: pull_test: remove redundant tests
6eaa9ca26 e2e: manifest_test: use cached registry
ed159f864 Vendor in containers/buildah@v1.26.1
ebde52583 update rootless_tutorial.md
7c59f1d07 Fix usermod call in rootless_tutorial.md
5fa6f686d Report correct RemoteURI
386614367 exclude new tools vendor dir from validate
f6b397bf1 add dependabot config for test/tools go.mod
3b9177995 vendor test tools in submodule
80744c644 podman system reset removed machines incorrectly
9974c90cc libpod: treat ECONNRESET as EOF
245151e62 Add more unit tests
a5800c78f machine events: only open sockets when needed
36c5e6e0c Bump github.com/containers/storage from 1.40.0 to 1.40.2
ccd576504 play kube default log driver
8781a3635 benchmarks: push/pull
1585b175d pass networks to container clone
88015cf0d Implement --format for machine inspect
8da5f3f73 Add podman machine events
9166894c6 vendor test dependencies instead of installing via network
6e2e3a78e generate systemd: pods: set exit policy
5fac879ea vendor treadmill script: run 'git add vendor'
0bb484937 Additional stats for podman info
e247f02a4 Vendor in containers/(common, storage, image)
e74717f34 Treadmill script: revamp
e17b56e0c CI: emergency fix for broken go get
4e44e5b5d Bump github.com/rootless-containers/rootlesskit from 1.0.0 to 1.0.1
4eff0c8cf pod: add exit policies
cfca85356 libpod: unset networks before storing container conf
77d872ea3 vendor c/common@main
5b78f9576 Implement machine inspect for WSL
772ead253 Use simulated dual-stack binds when using WSL
23de3801d buildah-vendor-treadmill script: yet more checks
01acc2565 libpod: host netns keep same /etc/resolv.conf
519820926 fix incorrect permissions for /etc/resolv.conf in userns
e6557bf0a pkg/api: do not register decoder in endpoint handler
a48c37df3 fix broken hooks-dir test
69c479b16 enable errcheck linter
384c2359b libpod: unlock containers when removing pod
2902d32c4 Refactor machine inspect
64a368ba2 remove unused codepath for creating/running ctr in a pod
6b7fd318b image search --format: add completion for go template
0d9f19028 shell completion --format: use structs by reference
cac2b7800 image --format: fix add completion for go template
7f28fd938 Report properly whether pod shares host network
cb9a45630 shell completion --format: use anonymous struct field once
8be978158 network inspect --format: add completion for go template
f93ba587c shell completion --format: work with nil structs
589e42c99 Bump github.com/containernetworking/cni from 1.0.1 to 1.1.0
a5aea8e50 Three manual fixes
b3f38c31b Ginkgo: use HaveField() for better error checking
91ead1528 volume: add new option -o o=noquota
ea1fcd7bc podman search: truncate by default
c721acf08 podman machine starting test
3b8fa515f Emergency fix for new CI linter
83a75d2a3 Produce better test error messages
461b73f56 Github PR template: add release-note block
22b421dd7 Add CreatedSince & CreatedAt format fields to podman image history
e7390f30b Allow changing of CPUs, Memory, and Disk Size
9c0c29f08 Cirrus: Fix ownership of repos. to keep git happy
d4e30b33a Temporarily skip netavark/aardvark e2e test
cf449e81a Cirrus: Temporarily update netavark/aardvark-dns
cd7cff6bb Cirrus: Test w/ netavark/aardvark-dns in F36+
3a07fc446 Cirrus: Update to F36 CI VM Images
a73425a0b Revert "Cirrus: Disable F34 aka prior-fedora testing"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f6bf30aca6 |
docker: ensure that sysvinit and systemd are exclusive
The sysvinit functionality conflicts with the docker daemon settings required for the systemd docker.socket. Ensure that the sysvinit capabilities are only enabled if systemd is not present. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
05f316f70a |
lxc: update to 5.x and meson
This is a significant update to lxc as autotools has been replaced with meson. Not all existing autotools options have meson equivalents, so there may be differences in functionallity. As part of this update, and unused features have been dropped, mainly when the meson equivalent was not available. Basic / core functionality has been tested with systemd, sysvinit requires more work, and patches will be accepted to restore that capability. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
538e94e674 |
skopeo: Mark CVE-2019-10214 as fixed
This CVE was fixed[1] in the container image go library skopeo is using
(vendoring). The current version of the image go module is v5.20.0 while
the fix landed since v3.0.0[2].
See RedHat's resolution[3] for more details.
[1] https://github.com/containers/image/issues/654
[2]
|
||
|
Andrei Gherzan
|
d55da717eb |
podman: Rename podman-rootless.conf sysctl file to aid overrides
Files are sorted in lexicographic order. Moving podman-rootless.conf to something greater then '00' would help with systems providing default values in other configuration files that can be overridden by podman-rootless.conf. Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Andrei Gherzan
|
fc1df13027 |
singularity: Drop explicit runtime dep glibc
There is no need we can see for this dependency to be provided as such - especially forcing this to using glibc. Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
e43460f5ed |
nerdctl: update to 0.22.2
Bumping nerdctl to version v0.22.2-2-ge084a2d, which comprises the following commits:
013ebdc Bump github.com/containerd/nydus-snapshotter
37cb3fe Fix `can't get final child's PID from pipe` on rootless (v0.22.1 regression)
fbbf10e Bump github.com/compose-spec/compose-go from 1.3.0 to 1.4.0
7f94a17 fix(hosts): extra-host params should be 'domain:ip'
a4fd8fa go-ipfs (0.13.1) -> Kubo (0.14.0)
f3001be doc: readme and help msg about firewall plugin
0e81051 ps_linux_test.go: improve variable names
cae0f01 README.md: `nerdctl system prune` is now available
8f57e95 add label display support in ps subcommand
2dfa2a4 Bump github.com/compose-spec/compose-go from 1.2.9 to 1.3.0
d0fe7ab skip reconfig network when missing
83ce9a0 Add extra logging warning for log options
09bd981 Pass https://index.docker.io/v1/ to GetAuthConfig() for Docker Hub
17771d0 Refactor: Abstract the way to handle remote snapshotter
0ff788b Add the ability to inspect volume sizes
3676219 Bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
8b6417c fix stats values
bcedaae optimize tests of stop the sleep container
014525f support system prune
81a9a9b add labels in container inspect using dockercompat mode
81095fb fix yaml pkg vulnerability
1bb09dd support network prune
bc68696 Add oom-score-adj option while running
3507d0b remove useless args from load
d7ba334 rewrite test of run with init flag
1f7ec3f Bump github.com/compose-spec/compose-go from 1.2.8 to 1.2.9
5ecf242 Bump github.com/containerd/go-cni from 1.1.6 to 1.1.7
cccf19e test fluentd log driver without build image
1199ac5 small refactor for rmAction
a4b51e2 bridge network use free subnet
e027ce4 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
0818f7d Bump docker/build-push-action from 3.0.0 to 3.1.0
a78de9a support --network=container:<contaienr> for sharing network namespace
df376b8 Remove duplicate host record when update the DNS
685371e TestRunWithJsonFileLogDriver: make log message more specific
357fdfd Fallback to Containerfile when Dockerfile is not present.
de3d05a README.md: clean up
e06e3a6 ignore force remove container error
4a7f6eb support force remove image
f2cc696 fix stats for no-stream
a7dd254 fix flaky test TestRunWithJsonFileLogDriver
663541c README.md: clean up
ad0e42f infoutil: make runc version output consistent with Docker
e016c55 infoutil: relax buildctl version format
2087827 fix found multiple IDs when container walker
0e07104 update buildg (0.3.0)
bd78358 update IPFS (0.13.1)
ddf5b5a update stargz-snapshotter (0.12.0)
8f5ac28 refactor container restart command
70826c7 update imgcrypt (1.1.6)
08f9f6b Display buildkit and runc version in nerdctl
2c5bd7f Log matches of log paths to understand TestRunWithJsonFileLogDriver flakiness
15decf3 wait for detached container running before exec
fa392af Add document about overlaybd
41c63f3 fix json file logging filenames
9c63c61 container exit should terminate tail logs
ff6e75f update unimplemented flags for run
28de2e3 support volume prune
a74e852 add update flag blkio-weight
eb3715a fix dockerfile local dir
e20c145 support image prune
79ed9ca TestRunCgroupV1: fix cgroup version check
d746ab9 fix broken deps for dbus
5e91753 add flag kernel-memory
9b4287e typo and return error
67e2ded remove failed container state
efd3961 adjust ps header
b35ae67 cli: implement -s/--size option for nerdctl ps command
e8127e6 docs: add nydus snapshotter description
f20cb34 Validate formats before ticking
8b5a0ec Bump github.com/containerd/nydus-snapshotter
fb3eb33 fix error message
5f41b41 support container prune
4637c99 add TabReader for test
4f9c3ed fix some error
86056b8 Enable staticcheck in golangci-lint
34e3ad8 feat: makes nerdctl available to pull nydus images
76fbdbe Support multiple tags in nerdctl build.
e56ac42 Fixed gosimple errors in issue #1134
afb0c57 bind-mounts: add rbind option defaultly
6a382f7 support stop-signal and stop-timeout
f9522ae support dns-search and dns-option for compose
486100d volume: set fstype to bind if mount options contains bind or rbind
eaf3354 remove invalid debug
50a8eaa show name for images
0b67272 support dns-search and dns-opt
2f79653 fix: using default resolver
2b5a45b add group-add flag for run
a5b0d1d go mod tidy
b1930a7 1117: specify needsLoading when output flag is specified.
abaa167 Bump github.com/compose-spec/compose-go from 1.2.7 to 1.2.8
7954e19 Bump github.com/ipfs/go-ipfs-http-client from 0.3.1 to 0.4.0
12aae30 Bump github.com/multiformats/go-multiaddr from 0.5.0 to 0.6.0
8b34083 Fix typo in instructions on how to run docker compat tests.
daea277 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
b1b226f Bump gotest.tools/v3 from 3.2.0 to 3.3.0
0bcefdc Update golangci-lint version to 1.46.2
063c025 fix stylecheck errors
75ff587 CI: unparallelize TestRunAddHost
1c191a1 add umask
676c5c3 Validation for nerdctl load to fail when stdin is empty.
1192a04 Fixed gosimple errors in issue #1134
02582d0 go.mod: golang.org/x/* master
e86deda go.mod: github.com/containerd/containerd v1.6.6 (=> v1.6.1-0.20220616041926-9c6154bff158)
c078e20 pkg/logging: refactor
92e3cc2 Initialize the log file to fix `nerdctl compose up` error
5c3aec6 add memory-reservation memory-swappiness
7fbafcb fix swap memory
261da0c Add GitLab Container Registry documentation
4f6b914 MAINTAINERS: add Zheao Li as a REVIEWER
04a8450 update IPFS (0.13.0)
8ac66ef update fuse-overlayfs (1.9)
21edc9d update runc (1.1.3)
ffdc0aa fix log-driver name not check error
8717e4f Implement fluentd logging driver
a817a8b add flag memory-swap
44c80db Adding tests for start and handling AkihiroSuda feedback
db4a505 Adding --attach flag to start
0b9e9cb add flag oom-kill-disable
404c532 [#868] Update moby/sys to fix the FreeBSD build
3b1df0e Bump github.com/docker/cli
d50fec4 Bump github.com/docker/docker
cfe8ca0 Bump github.com/moby/sys/mount from 0.3.2 to 0.3.3
6386775 update buildg (0.2.0)
26639fd update containerd (1.6.6)
35f60d6 go.mod: github.com/containerd/containerd v1.6.1-0.20220606171923-c1bcabb45419
8a36c0d persist default network config
bb3f9ee Bump github.com/vishvananda/netlink from 1.2.0-beta to 1.2.1-beta.2
eae4b2d Bump github.com/containernetworking/cni from 1.1.0 to 1.1.1
3007fc8 Bump github.com/containerd/go-cni from 1.1.5 to 1.1.6
b00fa84 fix squashes --add-host with the same ip
dd8a0ff Implement journald logging driver
f087279 Bump github.com/compose-spec/compose-go from 1.2.6 to 1.2.7
60b77c1 Bump github.com/containerd/cgroups from 1.0.3 to 1.0.4
96a3276 CI: TestRunCgroupV2: add --memory-swap=-1 for Docker with cgroup v2
5a47349 CI: skip TestRunCgroupConf for Docker
e077b38 CI: use GHA ubuntu-22.04 for cgroup2 tests
08924b9 docs/compose.md: update the compatibility information
423600f Bump github.com/compose-spec/compose-go from 1.2.5 to 1.2.6
793a95d enbale entrypoint as stringArray
feb1316 Bump github.com/compose-spec/compose-go from 1.2.4 to 1.2.5
193e8d6 Bump up buildg to v0.1.0
04f9b47 update BuildKit (0.10.3)
0aeed30 update runc (1.1.2)
fc87586 go.mod: golang.org/x/* master
f66b943 refactor TestRunIpcHost
b7d9eee create/run: add ipc flag to create and run commands
998f457 Bump github.com/docker/cli
47e7eb7 Bump github.com/docker/docker
773a413 Support interactive debugging of Dockerfile
d81dcf3 logging: ensure that MagicArgv1 is always argv1
004f2ff README.md: typo
70c90f1 Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0
7c3fd8f add bind-nonrecursive for mount
47ff895 fix flaky test TestComposeConfigWithComposeFileEnv
c5841dd pkg/taskutil: let StdinCloser implement io.Closer
c9881fd supporting COMPOSE_FILE environment variable
b4f2e5f Support logging in compose file
0fc816a Support for networks in compose files
0b9d48e Bump github.com/docker/docker
e031d13 update containerd (1.6.4)
abaa4d0 Support riscv64
49f6d78 Bump github.com/docker/cli
7e3dc43 Bump docker/build-push-action from 2.10.0 to 3.0.0
450486a Bump docker/login-action from 1.14.1 to 2.0.0
e11fb20 Bump docker/metadata-action from 3.8.0 to 4.0.1
d3e449a implement log opt with containerd logging driver
97ece6a enhancement restart policy
81528d5 support rename container
56b0f10 update BuildKit (0.10.2)
e258cda update RootlessKit (1.0.1)
489a521 update slirp4netns (1.2.0)
d73ef7a fix default driver capability for gpus
ed10fec Bump docker/metadata-action from 3.7.0 to 3.8.0
f853dc4 Bump github.com/containerd/go-cni from 1.1.4 to 1.1.5
18ea81f Fix `flag -t needs -i to be specified together` restriction
b2fa405 Makefile: avoid flattening `nerdctl-X.Y.Z-go-mod-vendor.tar.gz`
ff1aec4 info: add --mode=native to show full plugin info
a629145 update containerd (1.6.3)
62979d7 Bump gotest.tools/v3 from 3.1.0 to 3.2.0
6d1bfc6 fixes #1004 : Build image only when changes merged to master
10990ad Bump github.com/pelletier/go-toml from 1.9.4 to 1.9.5
dbc0ec5 Bump github.com/ipfs/go-ipfs-http-client from 0.3.0 to 0.3.1
c63982b Bump actions/checkout from 3.0.1 to 3.0.2
85ca787 [Carry 643] cp cmd
90a3a2c Bump github.com/tidwall/gjson from 1.14.0 to 1.14.1
8385be4 add test case for nerdctl inspect to check mounts field
a766555 show mounts info for nerdctl inspect
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d90ad944d5 |
k3s: update to 1.24.3
We bumping to 1.24.x, along with the k3s changes, we update our
dependencies to allow a vendored build.
Dependencies were gathered via: go list -m all | sort | uniq > mod.all
And then processed to generate the SRC_URI fetches and relocations into
the build.
We also change our TAGS to avoid two different errors. btrfs
build restrictions:
package command-line-arguments
imports github.com/k3s-io/k3s/pkg/cli/agent
imports github.com/k3s-io/k3s/pkg/agent
imports github.com/k3s-io/k3s/pkg/agent/config
imports github.com/k3s-io/k3s/pkg/containerd
imports github.com/containerd/containerd/snapshots/btrfs/plugin:
build constraints exclude all Go files in github.com/k3s-io/containerd@v1.5.13-k3s1/snapshots/btrfs/plugin
And ctrd, which leads to the following (which is also
found on non Yocto / non-cross build k3s builds):
# github.com/containerd/containerd/pkg/cri/server
../../go/pkg/mod/github.com/k3s-io/containerd@v1.5.13-k3s1/pkg/cri/server/instrumented_service.go:36:9: cannot use &instrumentedService{?} (value of type *instrumentedService) as type grpcServices in return statement:
*instrumentedService does not implement grpcServices (missing ListPodSandboxStats method)
../../go/pkg/mod/github.com/k3s-io/containerd@v1.5.13-k3s1/pkg/cri/server/service.go:156:9: cannot use c (variable of type *criService) as type CRIService in return statement:
*criService does not implement CRIService (missing ListPodSandboxStats method)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
19375812f9 |
crun: update to 1.4.5
Bumping crun to version 1.4.5-74-gba3cb60, which comprises the following commits:
5af21e2 linux: fix idmap annotation
c75b58d wasm,wasmedge: drop support for experimental WasmEdgeProcess
22c6181 linux: fix creating devices in the rootfs
6f46ad5 chore(wasmedge): remove legacy option
0de6bb2 fix unknown type name 'uint64_t'
3a16555 linux: fallback to netlink to setup lo device
1a3f8f1 linux: use $PATH for newgidmap and newguidmap
74679c6 krun: use library soname in dlopen
0130f08 krun: limit the number of vCPUs to 8
2a4458d linux: fallback to tmpfs mount if umount fails
fd33331 artifacts, centos9-build: add libprotobuf-c-dev for protobuf headers
77f5c99 linux: devices mounts should have NOEXEC and NOSUID
c923cec tests: add wasmedge build test
33f900c fix(wasmedge): breaking changes in wasmedge c api
699757b test, podman: skip podman pod create --share-parent test
eb4ff94 handler: move notifer for phase HANDLER_CONFIGURE_AFTER_MOUNTS just after finalizing mounts
b02a68d linux: honor mount mappings
8d774c5 libocispec: sync from upstream
38f60b1 ci: re-enable and fix clang-format
d21594a *.c: clang-format
9ed3c1b mono: remove incorrect wasm headings from mono docs
c44937b tests: disable "podman kill paused container"
965129b test/check: fix wrong argument
17d1c16 cgroup: make target cgroup threaded if needed
77d2ac5 readme: show crun logo
2ebd7fc Adding crun logo SVG file
ec9ab49 container, exec: honor process user's uid while setting HOME env
d8a0c7f tests/podman/Dockerfile: build on fedora:35 and fedora:36
21de997 copy_recursive_fd_to_fd(): copy the whole file
3445f0f tests: add tests for covering '--pid-file' and '--no-new-privs' options
e48db34 mono: add documentation and tryout example
f8b85e8 windows/mono: bind mount windows dlls and runtime config from host
0df040d handler: add support for HANDLER_CONFIGURE_MOUNTS for handlers
6b3b4dc linux: add public api libcrun_container_do_bind_mount for adding ctr mounts
009430c windows: add mono based native dotnet handler
eb48a65 cri-o: bump golang to 1.18.1 for capnproto.org/go/capnp
6cc7b03 test: set /crun as safe directory on containers running the tests
2f13875 linux: create missing cwd
1e30424 cgroup: remove tun/tap from the default allow list
6904cf4 cgroup: add support for cpu.idle
2824e92 libocispec: sync from upstream
70deaf0 podman-tests: change default log-driver to k8s-file instead of journald
c381048 NEWS: tag 1.4.5
359e26d crun.1: regenerate
f0cd1a7 .github: fix CI
9998f00 linux: hooks inherit env if not specified
9e361c8 tests: specify the user in the form UID[:GID]
4a61eb1 github: fix CI
db77ef2 libcrun: fix typo
69289ce tests: add an environment variable
81ccd00 criu: add support for different manage cgroups modes
27b7fe5 tests: specify an additional capability to add to the process
cdbc357 tests: delete multiple containers
a39b07d podman: skip authenticated push
0ce2f2d exec: fix double free
5a528f4 docs: fix dependencies on RHEL/CentOS 8 section
cd93941 git-version-gen: fix version comparison
38256da tests: disable failing CRI-O tests
6521fcc NEWS: tag 1.4.4
1aeeed2 exec: --cap do not set inheritable capabilities
b847d14 spec: do not set inheritable capabilities
ca75d1f feat(terminal-receiver): make terminal interactive
ed6e424 remove duplicate "libtool" from install commands
d10fe74 linux: resolve symlinks in bind mounts
ba17004 tests, clang-check: install git
1a4fae9 rhcontainerbot/podman-next COPR autobuild
77df89b docs: update known issues with CRI and side-cars
164d753 wasm, kubernetes: support wasm for kubernetes infrastructure with side-cars
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
crun: update runtimespec
Bumping runtime-spec to version v1.0.2-100-g8d0d6d4, which comprises the following commits:
0da1600 fix rfc link
9d1130d IDMapping field for mount point
fc985aa config-linux: update type of LinuxCPU.Idle to *int64
bc545ec schema: add cpu idle
1fef707 Update Windows CPU comments
600a8bd cgroup ownership: clarify that some files may not exist
b8dbce9 update idle type of LinuxCPU from *int64 to int64
9d363b3 config-linux: add idle option for container cgroup
b05eb53 typo: seccompFD -> seccompFd
0608c1f Switch to GitHub Actions, CODEOWNERS, etc.
f4ef391 specify cgroup ownership semantics
104385d config-linux: MAY reject an unfit cgroup
411082c add youki to implementations.md
6641127 alphabetize the implementation list.
84251a4 specs-go: export LinuxBlockIODevice
3f30167 schema: make with golang 1.16
34a7544 schema: update README.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7dd1f5384b |
umoci: update to v0.4.7-latest
Bumping umoci to version v0.4.7-101-g4270d5b, which comprises the following commits:
d8f4f12 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|