mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-12-13 21:55:23 +01:00
fcac36d912
2858 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
fcac36d912 |
skopeo: update to v1.20.0-tip
Bumping skopeo to version v1.20.0-87-gd2a1740f, which comprises the following commits:
144e9151 Add missing newline to the output of (skopeo generate-sigstore-key)
a45ceb03 fix(deps): update module golang.org/x/term to v0.36.0
d287ec07 Fold the test cases of TestSyncTLSPrecedence to a single line each
286c5990 Remove the explicit test name
5699f10b Construct the source context from CLI instead of manually
6d2144e6 Use a real YAML fragment instead of constructing inputs manually
1e6817a1 Merge the two TestTLSPrecedence tests
d80c776b Update dependency golangci/golangci-lint to v2.5.0
c7a3a907 Update github.com/opencontainers/image-spec digest to 6519a62
dbd18b97 sync: honor CLI/global tls-verify unless YAML explicitly sets tls-verify
a489ea39 test-integration-local: use SKOPEO_BINARY if set
f59e8938 Add --sign-by-sq-fingerprint and an integration test
9753a1a1 Also build+test with Sequoia
cba21646 Update CI images
b258da23 Update conditions for signing tests
86853ba4 Update module golang.org/x/term to v0.35.0
0114569b Use strings.SplitSeq
24c2a374 Use bytes.SplitSeq
afc0c0f0 Rely on Go-maintained commit value instead of handling that ourselves
509ed8e1 Update to Go 1.24
53bba51c RPM: build with sequoia for F43+
85e4414c RPM: Re-org distro conditionals
af27d1d8 Packit/RPM: Epoch and version fetching fixes
193b5136 Update CONTRIBUTING.md
cf5b488b [skip-ci] Update actions/stale action to v10
a3cb7bf3 Packit: re-enable CentOS Stream jobs on PRs
8675dece Packit/TMT: enable ELN testing on PRs
e5cf4ec7 Update to tagged container-libs releases
5489763c Update module github.com/spf13/pflag to v1.0.10
4e452f97 Add --dest-force-compress-format option on copy
31ca77ce Packit: enable ELN
9558c9c0 Packit: replace files_to_sync with prepare-files
cd978903 RPM: skopeo-tests only installs dependencies
d5881b94 TMT: additions to make local TMT runs similar to testing-farm
dea3a8f1 Update module github.com/spf13/cobra to v1.10.1
11dedf8b Update module github.com/spf13/pflag to v1.0.9
75eb26e6 Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY]
19f1202c TMT: run systemtest via `make test-system-local`
02055fb0 Makefile: inline logic for test-integration-local
7e235ea3 Makefile: test-system-local checks for SKOPEO_BINARY
bb1f0575 Makefile: validate-local depends on tools
885a4fba fix(deps): update module github.com/stretchr/testify to v1.11.1
d6463199 Migrate storage, image and common to monorepo and remote go.podman.io imports.
2451f10d Allow running CI from rawhide images
8602d2e5 Stop using fgrep
0a70844b Update tests to work with the Sequoia c/image backend
01252ab8 chore(deps): update dependency golangci/golangci-lint to v2.4.0
056d83e6 Adding mohanboddu as community manager to MAINTAINERS.md
2d34849c fix(deps): update module golang.org/x/term to v0.34.0
5538ce8c fix(deps): update module github.com/containers/common to v0.64.1
12340b3e fix(deps): update module github.com/containers/image/v5 to v5.36.1
94ef22e9 fix(deps): update module github.com/containers/storage to v1.59.1
f9d10b3c chore(deps): update dependency golangci/golangci-lint to v2.3.1
af9f6d73 Bump to v1.21.0-dev
e2c1eecd Bump to v1.20.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3fdf80a484 |
runc: update to v1.4.0-rc.2
Bumping runc to version v1.4.0-rc.2-13-g13a5c4ed, which comprises the following commits:
ae199719 ci: only run lint-extra job on PRs to main
8bb53e42 ci: bump golangci-lint to v2.5
52ee0fed all: format sources with gofumpt v0.9.1
61070cc0 CI: remove deprecated lima-vm/lima-actions/ssh
42b405d5 libct: refactor setnsProcess.start
e8e22ae1 libct: close child fds on prepareCgroupFD error
5aa229f7 [1.4] libct: switch to (*CPUSet).Fill
18fbdbe9 [1.4] deps: update to golang.org/x/sys@v0.37.0
46331735 VERSION: back to development
8aeb2a4b VERSION: release v1.4.0-rc.2
a2f2cf31 CHANGELOG: add note about cpu shares changes
0b8a41e3 fix(seccompagent): close received FDs, not loop index
1f9157d6 libcontainer/intelrdt: add support for EnableMonitoring field
d792f9fd [1.4] runc exec: use CLONE_INTO_CGROUP when available
33382519 [1.4] libct: use manager.AddPid to add exec to cgroup
7db9930f [1.4] libct: move exec sub-cgroup handling down the line
f19a4c71 [1.4] libct: split addIntoCgroup into V1 and V2
207a497c [1.4] libct: factor out addIntoCgroup from setnsProcess.start
c443aee7 [1.4] script/setup_rootless.sh: chown nit
910f1345 [1.4] Add memory policy support
12ed7f73 [1.4] events/intelrdt: report full schemata
517e7996 [1.4] libcontainer/intelrdt: add support for Schemata field
3009f9d7 [1.4] libcontainer/intelrdt: refactor tests
a0858eaf [1.4] Update runtime-spec
fb0268a0 libcontainer: remove deprecated package "userns"
edef954c test: runc run with personality syscall blocked by seccomp
a6efa62d libct: setup personality before initializing seccomp
b72f4a8d tests/int/cgroups: Use 64K aligned limits for memory.max
bce56e00 libcontainer/validator: allow setting user.* sysctls inside userns
6297cb16 [1.4] VERSION: back to development
b2ec7f92 VERSION: release v1.4.0-rc.1
081b8c25 CHANGELOG: forward-port v1.3.1 changelog
1931ebf7 CHANGELOG: forward-port v1.2.7 changelog
edc2eb60 build(deps): bump actions/setup-go from 5 to 6
779c9e1d libct: user: remove deprecated module
c04d9c44 ci/validate: add modernize run
76281949 libcontainer/configs/validate: add doc.go
ba68a17a libcontainer/configs: add validator unit tests for intelRdt
b8a83ac2 libcontainer/intelrdt: support explicit assignment to root CLOS
89e59902 Modernize code for Go 1.24
b042b6d4 types/events: use omitzero where appropriate
26602650 Add go 1.25, require go 1.24
237cc980 libct/sys/rlimit_linux: drop go:build tag
a38f42ab tests/int/help: simplify and fix
c5e7bc87 tests/int/selinux: fix for non-standard binary name
121192ad libct: reset CPU affinity by default
d1f6acfa tests: add RUNC_CMDLINE for tests incompatible with functions
ea385de4 tests: add sane_run helper
a8faf925 CHANGELOG: document breaking change of runc update
a876347d build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
eedec9c5 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
96f4a90a Switch to packaged criu on arm
9e0f9890 ci: bump golangci-lint to v2.4.x
cfb22c9a build(deps): bump actions/checkout from 4 to 5
10567484 ci: use criu built from source on gha arm
1cf09680 CI: switch to GHA for arm
db26a717 build(deps): bump golang.org/x/net from 0.42.0 to 0.43.0
8f0bb877 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
bf33fe5f build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
620956c2 libcontainer/intelrdt: use Mkdir/Remove instead of MkdirAll/RemoveAll
f6a52d7f build(deps): bump github.com/seccomp/libseccomp-golang
3b533b23 script/lib.sh: remove obsoleted comment
3a962655 libcontainer/intelrdt: use SecureJoin in NewManager
e6b4b5a1 tests: bfq: skip tests on misbehaving udev systems
ceef984f tests: clean up loopback devices properly
f73e2837 libcontainer/intelrdt: refactor path handling
85801e84 runc update: refuse to create new rdt group
e846add5 libcontainer/configs/validate: check that intelrdt is enabled
57b6a317 runc update: don't lose intelRdt state
314dd812 tests/cmd: simplify getting net.UnixConn
87b8f974 setupIO: close conn on error
7d2161f8 setupIO: simplify getting net.UnixConn
1a26cf3a ci: speed up criu-dev install
1c2810be ci: bump golangci-lint to v2.3.x
66a533eb tests/int/events.bats: don't require root
3620185d rootfs: remove /proc/net/dev from allowed overmount list
46dac589 tests/int/update: fix getting block major
6a0644df build(deps): bump golang.org/x/net from 0.41.0 to 0.42.0
859feb8e build(seccomp): Add audit support for loong64
fc8162e6 build(deps): bump github.com/opencontainers/cgroups from 0.0.3 to 0.0.4
b3432118 tests/int/cgroups.bats: exclude dmem controller
4a6ef6b9 build(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0
a09e7038 docs/systemd.md: amend
aa0e7989 libcontainer: close seccomp agent connection to prevent resource leaks
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
ce3cd423 criu: simplify isOnTmpfs check in prepareCriuRestoreMounts
f91fbd34 criu: inline makeCriuRestoreMountpoints
b8aa5481 criu: ignore cgroup early in prepareCriuRestoreMounts
0c93d41c criu: improve prepareCriuRestoreMounts
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
e0282287 bug:fix runc delete run before delete exec.fifo
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
bc96bc85 libct/seccomp: use maps and slices pkgs
370733b7 libct/cap: rm mapKeys, use maps.Keys, slices.Sorted
3a33b6a3 Make state.json 25% smaller
9c5e687b libct: Use chown(uid, -1) to not change the gid
d31e6b87 ci: bump bats to v0.11.0
8e653e40 script/setup_host_fedora.sh: use bash arrays
a76a1361 script/setup_host_fedora.sh: remove -p from mkdir
af386d1d tests/int: rm some "shellcheck disable" annotations
b48dd651 ci: bump shellcheck to v0.10.0
6e5ffb7c Makefile: bump shfmt to v3.11.0
53931553 libct: log a warning on join session keyring failure
9aeb7905 tests/int/selinux: fix skip message
5ac77ed6 libct/int: add/use needUserNS helper
1d9bea53 .cirrus.yml: install less dependencies
1afa1b86 signals: replace unix.Kill with process.Signal
346c80d7 libct: replace unix.Kill with os.Process.Signal
135552e5 CI: migrate Vagrant + Cirrus to Lima + GHA
d5fe5303 build(deps): bump golang.org/x/net from 0.36.0 to 0.37.0
000cdef7 build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
79e9cf53 doc: update spec-conformance.md
12c2e21f build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0
05e83fc6 deps: bump go-criu to v7
5d6e7e12 VERSION: back to development
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b867f8745c |
podman: update to v1.8.1
Bumping podman-tui to version v0.9.0-587-gcf755526, which comprises the following commits:
cf755526 Bump to v1.8.1
f4dd02c0 Windows style use default colors
6c7ddd29 Bump to v1.8.0
c95ae167 Bump github.com/containers/podman/v5 from 5.6.0 to 5.6.1
d4632385 Bump actions/setup-python from 5 to 6
7d786a06 Bump actions/stale from 9 to 10
e862e758 Bump actions/setup-go from 5 to 6
0929eb9f Bump github.com/spf13/cobra from 1.9.1 to 1.10.1
31a6ba04 Bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
3991403a ui adoption to tview v0.42.0
80c42437 Bump github.com/rivo/tview
ac941ce9 Bugfix ui views - update selected row after last row removal
97377e57 Bump github.com/gdamore/tcell/v2 from 2.8.1 to 2.9.0
e2f0ce0a bats functionality tests update
f378359d System and secret view sort dialogs + code enhancement
8185525e Network view sort dialog
d13317c9 Image view sort dialog
57a2e0f7 Volumes view sort dialog
7bfde770 Pods view sort dialog
7aeb812e Containers view sort dialog
4f9d6429 Bump github.com/containers/podman/v5 from 5.5.2 to 5.6.0
ced73692 golangci-lint v2.3.1 update for podman v5.6.0
2d5c903e golangci-lint update to v2.3.1
5e752b13 Bump actions/checkout from 4 to 5
9320b4b5 Bump golang.org/x/crypto from 0.40.0 to 0.41.0
7e7e0198 Enable packit EPEL10 build
e120c2a1 Bump to v1.8.0-dev
611535d9 Bump to v1.7.0
2affb5c0 Bump golang.org/x/crypto from 0.39.0 to 0.40.0
a28f4f98 Remove unused BUILDTAGS
e6cf0675 Bump github.com/containers/podman/v5 from 5.5.1 to 5.5.2
04b6c478 Bugfix invalid error when default remote connection is not defined
a2eb9b48 Add feature to use podman remote connections config if exist
58b4fbdc Using json format for app config file
9ed811d2 packit - set rpm build for fedora-all
6e59fa69 Added pod create namespace category
cd74eeb5 Added pod create namespace category
196004fe Added container create namespace (ipc, userns, uts, ...) category
e3242f37 Bugfix - connection list lock
92b96533 UI code cleanup + set max with for container view image name
5fc35157 Bump github.com/containers/podman/v5 from 5.5.0 to 5.5.1
5a9541f9 Bump golang.org/x/crypto from 0.38.0 to 0.39.0
5ab12464 Bump to v1.7.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
17e2c213c6 |
netavark: update to v1.16.1
Bumping netavark to version v1.16.1-1-g64b453a, which comprises the following commits:
c95689f release v1.16.1
72706df release notes for v1.16.1
b032159 Revert "[skip-ci] Update actions/download-artifact action to v5"
00c8234 update nftables to v0.6.3
99f73d4 release v1.16.0
97ee174 release notes for v1.16.0
ebe61f2 sync release notes from 1.15 branch
38b098f fix new lint warnings on rust 1.89
e6ef79e [skip-ci] Update actions/checkout action to v5
9b3e332 [skip-ci] Update actions/download-artifact action to v5
e5a773a fix(deps): update rust crate tokio to 1.47.1
6c72a58 fix(deps): update rust crate clap to ~4.5.42
8bc9a2d fix(deps): update rust crate serde_json to 1.0.142
6eed183 fix(deps): update rust crate tokio to 1.47.0
9002adc fix(deps): update rust crate hyper-util to 0.1.16
f7c3883 exec_netns macro: update comment
dbc9200 test: add new test program for connection checks
c984a9f add .cargo/config.toml to runs tests via unshare -rn
43e979d fix(deps): update rust crate rand to 0.9.2
2369c96 fix(deps): update rust crate serde_json to 1.0.141
1614faf fix(deps): update rust crate zbus to 5.9.0
2fee844 log default route mtu
57e37bb get_mtu_from_iface_attributes: return error without mtu
fbedef9 make get_default_route_interface return the full LinkMessage
38cbf3a bridge: early break out of loop
047ef70 change exec_netns macro to return result
cd4d1ff Set bridge MTU to match default route.
5c39692 fix(deps): update rust crate zbus to 5.8.0
c40ee94 fix(deps): update rust crate hyper-util to 0.1.15
4c5833d fix(deps): update rust crate tokio to 1.46.1
e2d1f6e fix(deps): update rust crate tokio to 1.46.0
e5b23f0 fix new rust 1.88 lint errors
083e525 fix(deps): update rust crate clap to ~4.5.40
7e93c15 fix(deps): update rust crate hyper-util to 0.1.14
7105bee make more use of NetavarkError
bc1eeda drop DhcpProxy error type from NetavarkError
8188984 update nix to v0.30.1
6a08cd6 fix(deps): update rust crate clap to ~4.5.39
204dc49 fix(deps): update rust crate zbus to 5.7.1
060f55d write bridge sysctl to config file
b67d91b extract systemd path check to core_utils
35f1db6 move sysctl code into separate module
1d5ee4e wrap sysctl name in error
cdf7302 drop sysctl dependency
f6604eb update MSRV to v1.83
acd3949 dhcp_proxy: set timeout_sender only if required
769a2ac cargo: bump mozim to 0.2.6
b6e12b2 fix(deps): update rust crate hyper-util to 0.1.13
03f1269 Revert "remove search domain from response"
0a6db8d fix(deps): update rust crate tokio to 1.45.1
fca86bb update netlink-packet-route to v0.23.0
3514007 update nix to v0.30.1
23ba475 remove unused nispor from Cargo.toml
ecb32b3 fix(deps): update rust crate zbus to 5.7.1
c24391b fix(deps): update rust crate hyper-util to 0.1.12
a1046af rpm: update description
8f6f84d bump to v1.16.0-dev
c382840 fix(deps): update rust crate zbus to 5.7.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
227651bf69 |
lxc: update to v6.0.5
Bumping lxc to version v6.0.5, which comprises the following commits:
9e4e69ed1 Release LXC 6.0.5
a0fb994a5 build(deps): bump actions/checkout from 4 to 5
93a06e70f lxc/conf: do not leak opts.data memory in __lxc_idmapped_mounts_child()
97eeb8a9a lxc/network: null-terminate ifname string in lxc_network_recv_name_and_ifindex_from_child()
7a94d11d9 tests/lxc-test-snapdeps: try to load overlay kernel module
0bf6aedf0 tests/lxc-test-rootfs: add idmapped rootfs testcase
98ebede63 lxc/lxccontainer: stop printing misleading errors in enter_net_ns()
7111f9d83 lxc/process_utils.h: use strsignal() or sys_siglist[] for Non-GNU distros
032290ec8 meson.build: use has_header_symbol() instead of get_define() to improve compatibility
85c5312be meson.build: fix checks for fsconfig and calls
4da694582 meson.build: set `LXC_DISTRO_SYSCONF` when `-Dspecfile=true`
e4cddef06 Add loong64 to list of recognized architectures
e9980ac90 Revert "re-add onexec for apparmor, move label assumption until after container has been setup for attach"
ab55d52a5 src/tests/oss-fuzz: pin meson to 1.7.2 to workaround build failures
9041ae313 lxc/conf: support flag kind of mount options in lxc.mount.entry options
859f736f0 lxc/conf: support nosymfollow mount flag
c42951b71 conf: Add support for "move" mount flag
e6bce2a2d src/tests/lxc-test-unpriv: prevent fail on cleanup path
601576a08 src/tests/lxc-test-apparmor-mount: prevent fail on cleanup path
b12d1bf89 src/tests/lxc-test-apparmor-generated: enable test
e35133a54 meson.build: remove quirk for Ubuntu 14.04 libcap-dev
cbe34bcc2 apparmor test: add an overlay container start
1541bd8f2 re-add onexec for apparmor, move label assumption until after container has been setup for attach
8ab6ad25b lxc/conf,start: fix setting container_ttys environment variable
b185e523f selinux: fix typo (AppArmor)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f281a3e744 |
kubernetes: update to v1.34.1
Bumping kubernetes to version v1.34.1-54-g03a5f06c269, which comprises the following commits:
30fd2664059 Do not validate etcd version for aggregated server conformance test
f3b637f6c3a Bump etcd to v3.6.5
6ebab3f180f Include relevant dimensions in pod controller indexing
8cd6b631ceb update setcap and debian-base to bookworm-v1.0.6
2674d8a049a Bump images, dependencies and versions to go 1.24.9 and distroless iptables
bddc18b0948 Add integration test for invalid SAN certificate handling
f40e4ce5529 Remove invalid SAN certificate construction
ed6bf3e5db3 kubeadm preflight checks: fix host URL construction
5be5dc9d54a With new changes we will also have a VolumeModifying condition
ea75d2aa00a gce: Fix etcd manifest
61c0fb13a70 Disable SchedulerAsyncAPICalls feature gate due to a known regression
40899107c1d upgrade to cos 121
2bfc98b313c Update pod resize test to accept new cpu.weight conversion.
3ffc54a9e96 kubeadm: rework the FetchInitConfigurationFromCluster node flags
e9f5e892f74 kubeadm: use JoinHostPort in WaitControlPlaneClient
663664c6171 kubeadm: ensure waiting for apiserver uses a local client
3f170932be0 Revert "Merge pull request #133213 from sanposhiho/second-trial-conor"
09ddc5ebbf2 Bump images, dependencies and versions to go 1.24.7 and distroless iptables
b245b551f74 Split preemption integration tests to mitigate the timeout
560cc36db21 fix incorrect warning whenever headless service is created/updated
07ac83c146b fix: use iifname for input interface name matches
35b87e4c188 Wait for quota to report used before creating pvc
856ac4923d7 release-1.34: pin system-validators to v1.10.2
7d43ddbbfb6 Fix ClusterIP load balancer disappearing when InternalTrafficPolicy: Local is set.
4a40ddf1e6b gofmt and review feedback
4ae3b64b736 fix: Update unit test to catch actual nil Labels case and fix functionality to handle nil Labels
16e3f7c1793 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.1
93248f9ae09 Release commit for Kubernetes v1.34.1
988bdd12587 Do not remove PVC ClaimRef to fix flaky VAC test
b97399727e0 DRA kubelet: avoid deadlock when gRPC connection to driver goes idle
76ab5f06640 kubelet/metrics: fix multiple Register call
04fd1ada6f4 kubelet/metrics: misc optimization
7bd2900b1e6 fix: Only warn for unrecognized formats on type=string
f779cf63819 Disable estimating resource size for resources with watch cache disabled
96739661c7c Disable collecting stats for resources not setting prefix to prevent error logs
2631a5f21ea Fix linter
94c0e478827 Fix completion of resource names
08515c751b0 Fix missing control plane health check timeout
a75938d9e5f Fix DaemonSet misscheduled status not updating on node taint changes
3ebbe57311f Add a note about Conflicts return value
98dca817c91 Fix SELinux label comparison
3e75f388199 Add missing cases to SELinuxMount tests
d1337421461 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0
f28b4c9efbc Release commit for Kubernetes v1.34.0
f2170bc6c3d kube-proxy: log but don't exit if ipv4 or ipv6 is not available
f47e9696d72 CHANGELOG: Update directory for v1.34.0-rc.2 release
78405b2c893 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.2
ed3ccdbe323 Release commit for Kubernetes v1.34.0-rc.2
db01f940320 Remove patch/update from ServiceCIDR API conformance test
d49e3d67cb3 Fix storage counting all objects instead just objects for resource
747a295caca fix flake in dra test 'TestPlugin'
4ebe560c74f DRA allocator: fix data race around `claimsToAllocate`
41013e7bf0a e2e_dra: use latest release if stable doesn't exist
e49f6116f9e clarify that staging repos are automatically published
ada2ed84877 add pointer to CONTRIBUTING.md for more details on contributing, clarify read-only
8919ac43c81 special case that kubectl staging repo is currently used to track issues, and only pull requests should be redirected back to the main repo.
011d5001975 link to what a staging repository is
7c43e6d2fdb docs: clarify that this is a staging repository and not for direct contributions
f8bad82c212 update go version for publishing bot rules
bf6c86b562d DRA: wait for stats to converge in "creates slices" e2e test
020b7052ca8 Bump dependencies, images and versions used to Go 1.24.6 and distroless iptables
c8ab780edbd dra plugin: assume claim after api call in bindClaim
81affffa1b8 CHANGELOG: Update directory for v1.31.12 release
8311c1d3d70 CHANGELOG: Update directory for v1.33.4 release
edfa9a5bd28 added WithFlaky() to the device plugin test case: supports extended resources together with ResourceClaim
48a4967718e CHANGELOG: Update directory for v1.32.8 release
064b5916172 improve CRD handling in VolumePopulator test
944b0a49235 do not allow the node to update it's owner reference
0bd039e89af Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.1
4d6b49b3fd4 CHANGELOG: Update directory for v1.34.0-rc.1 release
a956ef48629 Release commit for Kubernetes v1.34.0-rc.1
e073a91256e Add release-1.34 configuration
cbd6fb867ba Remove DeprecatedVersion for apiserver_storage_objects, adjust help text
89b5034d562 Make podcertificaterequestcleaner role feature-gated
2629fe25faa Use Delete() instead of DeleteLabelValues() for etcd metrics
13ced7b7ddc CHANGELOG: Update directory for v1.34.0-rc.0 release
40e8ad9517f Release commit for Kubernetes v1.34.0-rc.0
b7969189866 reduced numPods to 5 from 10 to fix flaky test (supports reusing resources) due to timeout.
2a026f6d659 1/ added retries to AssumeClaimAfterAPICall for the object which is not present in the cache (dynamicresources.go) 2/ modified the assume cache verification to not error out as long as the expected claim is in the cache, no matter its latest and api object are different or not. (dynamicresources_test.go). 3/ fixed nil panic as seen from https://prow.k8s.io/view/gs/kubernetes-ci-logs/pr-logs/pull/133321/pull-kubernetes-integration/1952472629470302208
01470d973b2 Fix memory limit decrease test on cri-o
aca402f25b3 e2e: node: skip breaking tests
0fbc8cd44ce Remove integration-test labels from long running scheduler_perf workloads
e83e5815e5e always pull pause image for eviction tests
418e96bf1af Update prerelease lifecycle to v1.34
65fda6dd34e fixed exended resource scheduling performance test, added more nodes for scheduling the init pods
9eda4789c02 Fix potential race in PodStatusPatchCall implementation
dbfeb9c351a Fix potential race in closing API dispatcher
c7db6362fe6 Move NominatedNodeName preemption-related integration tests to a new package
46b858aa130 fix: return false to apply the patch
07c71097d33 Split DRA scheduler_perf tests into multiple packages
988c9b03fd1 Demote KEP-5278 feature gates ClearingNominatedNodeNameAfterBinding and NominatedNodeNameForExpectation to Alpha
0a12f00e9d3 fix nil panic in hasBindingConditions, it cannot assume claim has allocations
7f052afaef5 KEP 5075: implement scheduler
3e3b2447ffe Promote PodLevelResources to Beta (#132999)
59bba927178 KEP-5075: generated codes from make update
5ad969588d5 KEP-5075: API updates
29d1951eb76 fixes scheduler nil panic due to empty init container request&limit
23d6f73e720 extended resource backed by DRA: test
34a64db2c73 extended resource backed by DRA: implementation
a3a767b37ec WIP: fix e2e tests
4ca47255a8b node: disable resource managers when pod-level resources are enabled
3068b60b830 extended resource backed by DRA: codegen
1f2fd18ac86 extended resource backed by DRA: API types.go
7fbf63a23fc HPA support for pod-level resource specifications (#132430)
6e9b60e3fd8 Add / update kubelet and DRA API owners
60fa65db883 Clear pod.Status.NominatedNodeName when pod is bound
15b1a7fd317 Revert "CPU and Memory manager event when using pod level resources"
aea0a3cca29 Run all relevant test cases with the feature gate enabled and disabled
856e7d2383c scheduler: Stop clearing NominatedNodeName on all cases
6653ef652b3 KEP-5007 DRA Device Binding Conditions: Add dra integration test
9e82c133010 KEP-5007 DRA Device Binding Conditions: Implement DRA logic
e8c3af1f5cc KEP-5007 DRA Device Binding Conditions: Implement scheduler logic
ac81b829e4a KEP-5007 DRA Device Binding Conditions: Run make update
987ad395167 KEP-5007 DRA Device Binding Conditions: API Related code Update
34c3b093835 KEP-5007 DRA Device Binding Conditions: API Update
ac9fad60301 feat: trigger PreFilterPreBind in the binding cycle
48eef9ce9af test: fix TestStructuredAuthenticationConfigReload flake by handling expected network errors
4874d41665b Pod Certs: Fix kubelet volume host arg order
f9bb14fcf06 Fix apiserver service proxying e2e test flakiness
8ace0fb89fb remove failing test that depends on expired credential, remove credential, add TODOs
f07dcd443d7 fix flake on TestStreamTranslator_WebSocketServerErrors
7ba22700bfd websocket streamtranslator increament metrics before writing status
0aea6a1e45d TestStreamTranslator_BlockRedirects use subtests
4b698656bec Returning early if podResources is nil to avoid nil pointer dereferencing
766d011bba2 E2E tests for no hints nor aligment of CPU and Memory managers
5672750e6a3 Unit tests for no hints nor aligment of CPU and Memory
7804b51f420 CPU and Memory manager event when using pod level resources
fd206a0efb3 Add comments for restart rules not used for unknown container status and probes
4b479da4b5b Remove the feature from e2e test
6997fbd1edc Fix incorrect validation on the kubelet
48f8458c41f validation: Fix user-namespaces test case name
50a7a8af4d2 validation: Align usage of hostUsers in error messages
5f7e611f736 validation: Return error if hostUsers=false && volumeDevices
f3466f8adc1 fix: flake integration test
ed74d4cd52f Revert "Revert "fix: handle corner cases in the async preemption""
e8dc272c533 Update etcd to 3.6.4
0f7cd149596 Fix prerelease-lifecycle for volumeattributesclass
9c8dacb0374 ContainerRestartRules feature gate should work with probes
48fd30113c6 [PodLevelResources] Add missing label to Downward API test
57ceb56c6fa Bump etcd sdk to v3.6.4
b562335cb36 Build etcd v3.6.4 image
17d733e2433 KEP-5229: Send API calls through dispatcher and cache
40a90df3b36 DRA E2E: remove stress test
b956484c25a KEP-5229: Add metrics for async API dispatcher
006d7620a8c Revert "fix: handle corner cases in the async preemption"
727a6e6db50 Reject pod when attachment limit is exceeded (#132933)
a652896307c Allow white-spaced CABundle during webhook client creation and validation (#132514)
f1737db166b Update DRA Pod spec comments
b7de71f9ce7 feat(kubelet): Add ResourceHealthStatus for DRA pods
d4a83b9a522 fix(golangci-lint): skip config verification when -c none is used
252513a1b99 Add WithFeature and WithSerial, also check if cgroup v2 is used in test
1bc995c195e Generated files
f925e555483 E2E tests for container hugepage resources immutability
9f5b09eb7bb Unit test pod level hugepage Default and Validation logic
845e94d3707 Validation logic and Defaulting update for pod level hugepages
c15a54f8c0c draadminaccess: move metrics test from e2e to integration
d176808d3a9 Rename hack/*-yamlfmt to -owners-fmt
7adcd21148f Replace cmd/yamlfmt with k-sigs/yaml/yamlfmt
79833578f66 KEP-3695: add kubeletPodResources feature gate to Beta
2cb955d8cca Add KYAML support to kubectl
8182a27f3b0 Re-vendor sigs.k8s.io/yaml @ v1.6.0
94bf8fc8a9d Promoted API `VolumeAttributesClass` and `VolumeAttributesClassList` to `storage.k8s.io/v1`.
8e3f93c8796 Unit test propagate pod level hugepages to containers
52b457421a9 Pod level hugepage cgroup when unset in container
add7132a6db E2E tests for pod level resources Kubelet Preemption
976a617d059 E2E tests for pod level resources eviction manager
13b122b6ffe Unit tests for pod level resources eviction manager
9a3ca05f6bc Use pod level resources for eviction manager
b34f8782e2f Add e2e tests
9086e52feeb Implement restart rules in kubelet
af595a44aef Add container restart rules to API
5dc2030c027 4033: GA KubeletCgroupDriverFromCRI feature gate
27e16751538 Make PSA host enforcement honor emulation version
32053b1d2f3 chore: replace ptr caster with unified ptr.To
83a0d0c660a kubelet: add metric for version CRI implementation will lose support
ffe306d6795 client-go, kubectl: Replace deprecated ErrWaitTimeout with recommended method (#132718)
cb33accc8fc JSON & YAML output for kubectl api-resources (#132604)
8a2db4da426 fix: adjust the log level in the preemption
4c9bf4719b8 fix: handle cornor cases in the async preepmtion
bf98e45afb3 Migrate pkg/kubelet/volumemanager to contextual logging
aecd37e6fb4 Moving Scheduler interfaces to staging: Move PodInfo and NodeInfo interfaces (together with related types) to staging repo, leaving internal implementation in kubernetes/kubernetes/pkg/scheduler
c954e13255a Revert "DRAAdminAccess: add upgrade downgrade test"
12d67506661 client-go/metadata/fake: sets opts.Watch to true
b37fd0cab28 [KEP-4816] DRAPrioritizedList to Beta
6767d54bba6 Bump DRA API version to "v1" in "deviceattribute" package in "k8s.io/dynamic-resource-allocation" module
449763fb115 e2e: podresources: disable memory manager integration
b768c1d1d5b DRA API: bump storage version to v1beta2
24de875cebc DRA: graduate DynamicResourceAllocation feature to GA
d8df1dc1b89 DRA RBAC: fix kube-scheduler bootstrap policy
21d929f5992 integration: use --runtime-config-emulation-forward-compatible
5c4f81743c2 DRA: use v1 API
cff91579e80 DRA API: v1 registration + tests
4e592f6c145 DRA API: s/v1beta2/v1/ and generated files
1f2f433f76d DRA API: verbatim copy v1beta2 -> v1
837b7395d29 kubelet: DRA: Close gRPC connection when removing DRA plugin
c7d6c096833 List available endpoints for kube-apiserver (#132581)
5f4a1aa58c3 chore: ptrTo util removal with ptr.To
a82187cf11a [PodLevelResources] Update Downward API defaulting for resource limits
4c87e60d0db Tests using .host field in probes must be at priviledged level
f94fcac8680 Add new fixture testData for 1.34 PSA
fc0474d7718 Copy test fixtures to 1.34 from 1.32
9540a963964 Copy test fixtures to 1.33 from 1.32
4a3ebf886c4 update the minimal version to fix unit/fixture tests
333b19b4416 Add PSA for blocking .host field on pod probes and lifecycle
c7bf3b81f6a Add flake debugging for admission test
a806e069e26 Remove WinDSR feature gate unit test
765d84e9bff Test only EndpointSlices, not Endpoints, in dual-stack e2e tests
2cb48f77f0f schedule pod availability checks at the correct time in ReplicaSets
61cc6cf8072 draadminaccess test make it serial
33b45c8383e Update "should proxy through a service and a pod" to look at EndpointSlices
d70e7e223cf Port aggregated apiserver discovery to EndpointSlices
41dc2d3b024 Add utilities for getting EndpointSlices for a Service
f7109ed281a [KEP-3751] Allow PVC VACName to update to nil or empty when status.currentVAC is nil
c35e4ad2b24 add codes for drop disabled pod fields
8d65e1e98ee Add e2e tests.
f31aeca4256 Add code for overriding hostnames
88b76214343 Add validation for the HostnameOverride field.
c889ee17a2f Convert kubelet plugin manager from gogo to protoc
abb1b26d508 DRA: Add experimental allocator variant
17cc5e9ecd8 e2e: node: podresources: exercise with dynamicresources enabled
ee8ef383bec Update kubectl kustomize to kyaml/v0.20.1, cmd/config/v0.20.1, api/v0.20.1, kustomize/v5.7.1
af6c97bd14f add Feature Gate.
8b3814c4ab8 Add the HostnameOverride field to the Pod API
c2a06e7912c DRA: skip flaky test case on Windows
f6061605fb5 DRA E2E: run multi-node control plane tests also with two nodes
f0e29208985 DRA E2E: simplify "control plane" test names
603751ee80d DRA E2E: remove redundant test
21ed19798ea kubelet: DRA: Handle grpc.ErrServerStopped in plugin tests
61bd5789be4 Updated to not directly change the global variable `claim`
4f0a5771abd test: add e2e case for mutating named port
db9b9b5a429 Build etcd v3.6.3 image
179551a7cb3 feat: Implement warnings for unrecognized formats in CRDs
437a2ad693f feat: Add func to export the supportedVersionedFormats
d943239c57b added debug_redact to cri api secrets
88af8b6060a Add PodLevelResources to the Windows OS limitations in the API doc
c2b26617bec Check OS for PodLevelResources in kubelet
e2c308aff93 Check OS for PodLevelResources in API server
f6aee636906 add validation logic for APIVersion fields of HPA
6f3b6b91f08 KEP-3721: Support for env files (#132626)
0b60c121947 KEP-4222: Adopt text and JSON transcoding support for CBOR.
917659269af Bump to github.com/fxamacker/cbor/v2 v2.9.0.
216f7485bd9 DRAAdminAccess: add upgrade downgrade test
303a7056ffc e2e: node: podresources: enable multi-container tests
38a9a8a59dc e2e: node: podresources: add tests for missing pod
19b00ecc941 update CCM image to v33.1.1
b070b0a5c5f chore: residual boolptr and intptr removal
407bcf88645 kubelet: add metrics for userns pods
e5ccc31e704 chore: replace float64Ptr with ptr.To helper in validation and integration tests
545b36ba295 fix uncore e2e check
b97decb7d91 client-go/dynamic/fake: sets opts.Watch true
f626e847e72 Migrate pkg/kubelet/winstats to contextual logging
ce2d979390e Run Unschedulable scheduler_perf test case with SchedulerAsyncAPICalls feature gate enabled
0da0897c18d Bump external snapshotter for vgs tests
78bf3410c88 DRA E2E: revisit conformance classification of tests
911df655d3b chore: migrate kubelet lifecycle to contextual logging.
872f0682d58 Use "k8s.io/api/resource/v1beta2" instead of "k8s.io/dynamic-resource-allocation/api" for resource API imports.
31d2de59dd9 Split the symlink target error cases into for each condition
a4fb1562f4a introduce resolvePCIeRoot instead of resolveSysDevicesPath
f3d4b216f3a assign return value to a variable instead of using it directly
7f27c88d0fb Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
ee26a5837c4 Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
8b558a1bc3e fix(validation-gen): correct typos in comments and documentation
63a958ff344 chore(validation-gen): remove TODO regarding ratcheting behavior for slices and maps
c659b418265 e2e test for mirror pod with pod generation
a5b9c7a7981 bump resource claim controller concurrent syncs to 50
6d4000f844e Pod Certificates: make update
4624cb9bb92 Pod Certificates: Basic implementation
facbb66142e Temporarily revert restart-on-node-IP-change behavior of proxy NodeManager
e2d37f3cd7e kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
0dc51b16f9e kube-proxy: merge NodeEligibleHandler with NodeManager
d4892fef768 kube-proxy: merge NodePodCIDRHandler with NodeManager
373fb487f60 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
d21ca8674ce kube-proxy: add NodeTopologyConfig for tracking topology labels
8acda3631f7 Belatedly add tests of proxy NodeConfig and ServiceCIDRConfig
edf4654d76d generate proto
18918e20085 add CSR declarative_validation_test.go tests
69a8a169d59 add WithOrigin and MarkedByDeclarative, update hand-written to error at list instead of list item field, add additional tests for approved+denied case
6a2d5a1e644 feat: add CSR status.conditions approved+denied declarative validation tags and associated declarative validation tags to v1 and v1beta1 types.go
248ad21610b graduate prefer-align-cpus-by-uncorecache to beta
6e77bff18b8 pod sandbox image is not being used by kubelet any longer
43706d6b7a8 add warnings when creating headless service with specified load balancer ip,external ips and/or session affinity
53aa4332b56 fix integration tests
8996e81fc87 fix unit tests
dd4dd3d8ea4 feat: Enabledeclarative validation in CertificateSigningRequest subresources updates
ccc82775f45 expand test coverage for uncore alignment
cb29414b44f Extend E2E test coverage for PSI metrics under pressure
4ed231da063 kubelet/imagePullManager: add benchmarks for image pull record accessors
5486e6f44e2 DRAAdminAccess: move to beta
5d4010d2d24 Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta
4fc9546e0e2 KEP-5229: Implement API dispatcher
549f7c4fc98 image pull manager: add in-memory LRU intents/pulled records caching
ea326373ef3 e2e: node: cpumanager cgroup v1 compatibility
b8d74e75c7b Add test case to prove MaxElements correctly set on IntOrString
7e5aafcb164 ci: remove unnecessary test harness
457df1cf981 ci cleanup: make sure to remove test KUBECONFIGs
3026020b44a Convert `k8s.io/kubelet/pkg/apis/deviceplugin` from gogo to protoc
4f9f6c05363 scheduler_perf: hide "metric ... not found" errors
b8758ac31b7 node: mm-mgr: migrate to contextual logging
2e756e7412c fix data race in OIDC integration tests by serializing test server starts
03acd266a31 chore: residual uint64ptr removal with ptr.To
b84271a7795 DRAAdminAccess: add e2e
ab839c93ff8 feat(kubelet): migrate kuberuntime to contextual logging
30e5cdd6412 kubelet: don't fetch image credentials if the image is present and if we don't need to check if the pod is allowed to pull it
cbba3281a3a integration: fix etcd output handling
d0fc938a07f DRA client: fix conversion of watch channel
f77ce8951e6 DRA: debug output for list/watch client
9d7d3a61722 Bump sample-device-plugin base image to alpine:3.22
7ddb0426266 feat(cmd/kubelet): support structured and contextual logging
fb4e2522240 test: add batch pod deletion for kubelet e2e tests
4b8dd9612ff cleanup: remove example plugins
067bd16b154 Add unit tests to check if right feature gate is checked based on resize request.
f71080c930e Create separate feature gates for static CPU Manager and static Memory Manager support
07ef7842be2 Change memory manager static policy to a public const
ae5247afc18 address feedback
65951744564 unit test for HandlePodReconcile retrying pending resizes
0d24c3b57f0 add sourcesReady parameter to fakeKubelet constructor
6e86af48ccb fix check if requests have shrunk
6a40bcb4268 Retry pending resizes if a status update leads to aggregate requests shrinking
22d724969c9 kubelet: record container_resize_requests metric for all resize updates
13a6d2121c1 check a couple extra failure scenarios
8957109b76b only record resizes in progress and pending after all pods are added
d51375dccf2 record 'kubelet_pod_deferred_resize_accepted_total' metric
b8fc1b6750f record 'kubelet_pod_infeasible_resizes_total' metric
d845e1fd6b8 record 'kubelet_pod_pending_resizes' metric
23005281f74 record 'kubelet_pod_in_progress_resizes' metric
0595ddaafa6 record 'kubelet_container_requested_resizes_total' metric
468aa5e30c4 record 'kubelet_pod_resize_duration_milliseconds' metric
12966276334 define and register ippr metrics
3964fbeab14 kubelet: integrate sa creds in image pull manager
f1728bd584a Add ServiceAccount coordinates to ImagePullCredentials v1alpha1
b9dd2fdec03 credentialprovider: track service account cred source in ext provider keyring
9a4c0f9b2f1 scheduler_perf: Add memory tracking to performance tests
8a42f4ccce5 Add support for CEL list library.
5d31866313a dedupe fetching allocatable and available resources in node test
79dc0b8a414 Add jitter to priodically executed process in storage to avoid too concurrent executions
a48420e3ceb promote PodObservedGenerationTracking to beta
336b5aff452 Check for valid UID range when runasnonroot is true
e9492239b24 Promote windows graceful shutdown to Beta
00bf3b37a74 Graduate PodLifecycleSleepActionAllowZero to GA
99059895f4f Account for caching and maximum object size when estimating LIST request
2256f5747dd Add resize completed event after Inprogress conditionCleared is cleared
d42a1d58d0e DRAAdminAccess: add metrics
f5d12ed39a1 fix: Compare versions instead of pointer comparison
8dc20a0f62d Fix IntOrString cost estimation when schema has a MaxLength constraint
a2e9e9f6677 fix pass ctx into a revised HandleError function
729cd583ad9 scheduler integration: fail test instead of existing
bfa33b18a08 fix(kube-proxy) avoid add zero-masked loadBalancerSourceRanges to ipset
d6e85b504d0 Add kubelet_credential_provider_config_info metric
14a5ef56a34 fix pipeline failure
21e2fcea9ec Add automatic_reload_last_config_info metric for auth configs
5f829195e6b Only warn when AppArmor annotation doesn't match pod field
f2c48ffec9e Add generic config info custom collector
11921f75857 [KEP-5100] WinOverlay feature gate to GA
e417232f92b Warn when using AppArmor annotations with a pod field
4fdf09fdc1b Stop syncing AppArmor fields to annotations
3ecb3d230f3 Remove unused appArmor*InUse functions
75ae2d727a0 Add an E2E test for memory limit decrease usage check
2a9388c3036 Move memory limit decrease e2e test to success cases
c7a78185c25 Remove the restriction on memory limit decrease
d9c91127d06 Check memory usage before decreasing limits
465f7281419 use gomega.BeComparableTo instead of Equal for resource quantity check in resize test
cedcbfb94c3 Update cel-go to v0.26.0
24065780ed7 Add e2eendpointslice.WaitForEndpointPorts, use in some tests.
f456a70bdea use CreateBatch and MakeResizePatch
5cea72d5649 DRA integration: add test case for FilterTimeout
241ac018e25 DRA integration: remove unnecessary anonymous import
bc338e7505c DRA scheduler: implement filter timeout and cancellation
430c79b53fc chore(validation-gen): hold uniqueness check of listmap
1745094c405 Update VolumeAttributesClass API Description
2cb30c77949 Refactor target check
86bc1bf0a45 more complex e2e test for deferred resizes
66de1960a5d Increase maxSeats for List requests
025c606e398 DRA scheduler: add plugin configuration
ee38a001311 DRA scheduler: add DRASchedulerFilterTimeout feature gate
837ef29f5a2 scheduler: enhance and document Filter cancellation
7910b43cd39 scheduler_perf: document benchstat usage
b9ce92d50eb edit versioned_feature_list.yaml
070621bf776 Remove unit tests that rely on feature gate enablement check
3f847d97c32 GA the NodeSwap feature gate
1a7630c0979 Remove deprecated LegacySidecarContainers feature gate
300c7b815a2 set the timeout to Get method
2b13b87e609 chore: replacing timer ptr with ptr.To
532d48fe6ad Convert `k8s.io/kubelet/pkg/apis/podresources` from gogo to protoc
cf68f75fc33 Deprecate apiserver_storage_objects and replace it with apiserver_resource_objects metric using labels consistent with other metrics
db342010f46 kube-controller-manager: enable WatchListClient
cef9f9edb6e kubeadm: fix a bug where it should generate default etcd command based on etcd version when the etcd image tag supports semver
ace2a224926 drop rules for release-1.30 as it is EOL
6737c31d0f7 update publishing bot go rules for release-1.31/1.32
a1a85ddb161 SSA: test optional map keys
4d34975a466 sigs.k8s.io/structured-merge-diff/v6 v6.3.0
3357e8fc057 SSA: add integration tests
a2a3839a8ee DRA scheduler: add pohly as approver
4bc2ad6eea7 migrate pkg/kubelet/preemption to contextual logging
b96e3cac741 migrate pkg/kubelet/pod to contextual logging
0cb31bc4073 migrate pkg/kubelet/nodeshutdown to contextual logging
75ccd69babe migrate pkg/kubelet/kubeletconfig to contextual logging
1d0fd592881 kubectl: add port names to describe pod output
7dad9e2af6f migrate pkg/kubelet/apis to contextual logging
f141907ddd8 DRA kubelet: add v1 gRPC
1b5a08cbfb5 cleanup: fetch individual PodResourceInfo from allocated resource state
6e7e6b37c7e Fix the cost issue to match the bug fix for target being nil in CEL side.
ad220eb6c32 chore: remove residual int64ptr usage with ptr.To
a9644686381 Add PodCPUAndMemoryStats to stats.Provider interface
8f4a624a593 Fix pipeline errors
e8536c01910 add item + union and item + zeroroneof output tests
be72d963b88 add validate/zeroorone_test.go and add +k8s:zeroOrOneOfMember output tests
10b20852e3c feat(validation-gen): add +k8s:zeroOrOneOfMember tag validator and associated validate method
81f18759e6e add validate/union_test.go and add +k8s:unionMember and +k8s:unionDiscriminator output tests
5bc9b691141 feat(validation-gen): add +k8s:unionMember and +k8s:unionDiscriminator tag validators and associated validate methods
bfb42fc31c9 refactor item.go with buildMatchConditions, make itemTagValidator a LateTagValidator
5d1c5ebd8cb add ParentPath to context, remove Parent from context and plumb changes in validators
c50da38aa18 allow field validators to generate variables
e7aeb4ff5c1 Promote MutableCSINodeAllocatableCount to Beta
9bcaa8c86b1 Fix conversion-gen caching incorrect memory equality comparisons
b35ad4e9b01 Add e2eendpointslice.WaitForEndpointPods, use in various test
dbecdd18763 Use e2eendpointslice.WaitForEndpointCount in more network tests
b7998a397b5 Add e2eendpointslice.WaitForEndpointCount, use it in some network tests
dd3691b1698 refactor allocator, removed claimsToAllocate from NewAllocator(), instead, passed it through Allocate()
8e6651520e6 Convert `k8s.io/kms/apis` from gogo to protoc
2f605f49fcf CHANGELOG: Update directory for v1.34.0-beta.0 release
9cf00ec6d17 kube-apiserver: promote WatchList feature to beta
e4320fe25cf e2e_node: DRA: test handling fatal serving failures
ea05ad8887b e2e_node: DRA: add errorOnCloseListener
fc21d3f37dc e2e: DRA: enable test plugin to cancel main context on error
1981c985b17 e2e: DRA: support test and public options
d44b737447f DRA: handle grpc.Server.Serve failures
169965350cc e2e_node: Refactor DRA tests to use variadic options
52fab5969cc Add NominatedNodeNameForExpectation feature flag
fd23fa3d423 Graduate ListFromCacheSnapshot to Beta
665599417ab Add e2eendpointslice.WaitForEndpointSlices, use it in a few places
b5931f53dd7 Auto update openapi spec
a100dfdfaa5 Using alpha as the stored version for one release.
6e932445326 Add validation of volumeClaimTemplates in StatefulSet
ae4a43de6dd Refactor: isolate flag registration to kube-apiserver to eliminate global state
5b4c1872a0f chore: residual intptr removal with ptr.To
e9aab4648fd CHANGELOG: Update directory for v1.31.11 release
dc0ca0be3f8 CHANGELOG: Update directory for v1.33.3 release
d6caa36dcc7 CHANGELOG: Update directory for v1.32.7 release
d460611e77c Add more checks
b69fd9d42c4 Add egress selector support to JWT authenticator
e9c1ca724f0 Add conversion-gen memory equality test
62521d83508 fix observedGeneration in pod resize conditions
38637260281 add unit-test for ensuring authn latency annotation
760eb7d5dea fix: record authentication latency before audit filter wraps up
26c8ee7b858 DRA: Improve allocator with better backtracking
d383c8e0243 Update history of checkpoint support in Kubelet
20914ef4e90 Prevent running two HPA cachers for different API versions
bc5088cbf35 Revert "Kube proxy node manager"
f8c7131b46b Drop experimental- prefix from etcd flags
d8747d716e4 Use object size estimation for non-recursive list
05e1c4b4893 e2e: node: fix podresources API feature label
6e1875fac94 local-up-cluster.sh: don't require to be invoked in the root
356be5ae30f DRA E2E: move upgrade/downgrade test into test/e2e_dra
c8ca9249acd DRA integration: add upgrade/downgrade testing with local-up-cluster.sh
60e9316c0cc DRA E2E: refactor helper code
2e3228e2ca9 DRA E2E: support deploying driver on localhost
e5f57d2cfab ktesting: add WithoutCancel
e01603b2e33 ktesting: document side effect of SetDefaultVerbosity during init
0b1bed1a1e0 ktesting: WithCancel does not cancel on test completion anymore
f381d737247 DRA E2E: retry exec of hostpathplugin
c2080e7e45d DRA E2E: support using ktesting
906505281fc ktesting: add step Begin/End
b7c2d6aba50 ktesting: skip logging error when capturing it
4977163860b DRA E2E: reduce port proxy verbosity
5721c927e6a DRA E2E: increase verbosity of resource claim controller
1a284472f17 E2E framework: retry also on EOF errors
6a7b9589f61 E2E framework: support setting REST config
bd30b0adef6 remove general avaliable feature-gate DevicePluginCDIDevices
9c0e65b085d test/apimachinery/watchlist: server supports sending resources in Table format
2dfc4e25a9a endpoints/handlers/respone: include metadata when IncludeNone and watchlist requested
e1a0cf6244f handle stoppedCh and listenerStoppedCh returned by cc.SecureServing.Serve
6cd00cdcba0 Auto gen
a3ecea296c1 manual change
4f3334b7cee Promote feature gate
0d8fd61e64c address review comments
32afbd9ea5d Inconsistency resets cache snapshots and prevents collection of new ones until cache is marked consistent again
4f77a461863 Generated files
a04e7cf5eb8 KEP-4601: Graduate selector authorization to stable
6f4be0d8c93 DRA allocator: skip unsupported test cases
740e568468e address review comments
61542e7a987 Cleanup: Remove field name from invalid field detail message
14f3c26842d Remove redundant metric field.
ad03cb87336 chore: residual strPtr utility removal with ptr.To
af249fb2e97 DRA E2E: test mixture of extended resources + ResourceClaim
9a7dddf5a71 fix test
09ec6f74483 chore
85adda5e68f Use object size to estimate list cost assigning 1 sear per 100KB
f20be4c094c add test which checks release method calls Get
7d9eb2b3d0d test/apimachinery/watchlist: update tests that receive resources in Table format
da7c55e0d2f reflector: detects unsupported meta.Table gvks for watchlist
ebc1ccc491c Bump k8s.io/kube-openapi to latest SHA (f3f2b991d03b)
8d1cbc83d8c endpoints/handlers/get: remove watchListEndpointRestrictions
14d1bbf36f4 chore: maxPtr utility removal with ptr.To
6462ad918e7 codegen tool: resolves GOBIN via `go env`
1073b3b9055 Add unit tests for AddPod()
fcb595a2df7 service-ip-alloc: delay ip processing on service recreate
8de14b526e9 service-ip-alloc: make repair loop consumer clock interface
e3836172845 Fix TestProgressNotify for etcd v3.6.2
e0f9914ef72 chore: replace int32Ptr usage with ptr.To
cf4912eb4e5 chore(validation-gen): reorder imports
419e70b7637 run update-codegen
4c8f489b817 add +k8s:neq tests
fc1c832c495 feat: add +k8s:neq tag which enforces field is neq to a specified comparable value
fb971325c39 feat(validation-gen): add new test cases for item validation
5cc2721f6c6 feat(validation-gen): add k8s:item
af05aa61d9c feat: Add validation ratcheting for subfields tag
daef13ecc36 chore: improve error rendering and add unit tests for ErrorMatcher
f40ee6f996d feat(validation-gen): add new test cases for validation of slices and maps
b059bb55143 feat(validation-gen): enhance validation functions for slices and maps
0b1fa64a920 refactor(validation-gen): streamline type validation logic
7ad89e19971 feat(validation-gen): add FieldValidator
ba45e37b24b chore: removed boolPtrFn helpers with ptr package implementation
5971802fdda chore: intPtr removal with ptr.To
a091fa607ea Add apiserver_resource_size_estimate_bytes metric
e6cf7dbf063 Enable running cache inconsistency detection by default
a06b3d356c8 Bump dependencies, images and versions used to Go 1.24.5 and distroless iptables
cba38b62932 DRA allocator: fix linter hint
5eab2b7a6e4 Remove unuse runtimeCache parameter from stats.Provider
46e2c22fd76 kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
fa9e466945c kube-proxy: merge NodeEligibleHandler with NodeManager
c6735d9b3bc kube-proxy: merge NodePodCIDRHandler with NodeManager
45c355ca58b Move unschedulablePods struct to a separate file
bfeaae3310f Compact watch cache based on last observed etcd compaction
c43104cbea8 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
af7abde0e55 kube-proxy: add NodeTopologyConfig for tracking topology labels
98c4514eae2 add e2e_node tests for uncore alignment
70191dd21ca fix uncore cache alignment for odd integer cpus
65e0cff3c5a add Replicaset -> ReplicationController conversion test
9df4c35a60a Disable SchedulerAsyncPreemption feature correctly in integration tests
3636d5bd3a5 Added NodeSelectors field to DriverDefinition
4f0d3eaa36b enhance exec probe logging with pod and container context
ffe90820710 DRA allocator: select tests based on supported features
b1a35c640eb Build etcd image v3.6.2
7e37711d6ee kubelet: Add service account UID to token cache key for proper invalidation
45dfb46448a Add TokenRequestServiceAccountUIDValidation feature gate with UID validation
237fbde8b1e clean up e2e test and sorting code
4d2566eb5a1 credentialprovider: wire in service account mode cache type
03db2278d52 kubelet: Add CacheType field to ServiceAccountTokenAttributes with validation
ff4746af139 increase verbosity of kubelet preemption log
f2de8897e77 Add metrics for mutation
bfa7f38c6af fix TestPodResourceAllocationReset for windows
e8b914c4b83 address comments
6052c569db3 prioritize resize requests by priorityClass and qos class
c126870ebc9 Bump RecoverVolumeExpansionFailure to GA
7b906f204a6 DRA allocator: fork the code
5caf7bca15b DRA allocator: refactor code
03e32bd260f Expose compaction revision from compactor
5e3ea8e279c Add test for compactor
bbab5941103 local-up-cluster: stop running Docker
f57662856f9 local-up-cluster: store logs in artifacts directory
81b6e1d3a34 local-up-cluster: start containerd before Docker
27a77370dde local-up-cluster: simplify installing packages
ddda1dca33c local-up-cluster.sh: add dry-run mode
0950b9ee508 DRA allocator: export DeviceClassLister
bc5aa94d8d1 local-up-cluster.sh: allow configuring all ports
a4b1d26b14b local-up-cluster.sh: dump config on KUBE_VERBOSE >= 2
5665bafaa86 CHANGELOG: Update directory for v1.34.0-alpha.3 release
381b3f376bd clear just the errors rather than the entire in-progress condition when a new resize is allocated
b89ab301f5c feedback round 2
67aaa956da3 Update docs on shutdown and draining
7a6f6fdf721 Delete unnecessary mutex
271233a62ae Prevent the failure of releasing the lock by updating the resource version in case of a resource conflict
d9de590a26b test: increase test coverage for pkg/kubelet/types
2dd07e92428 DRA E2E: ResourceSlice Controller test flake
26f54e5c0e3 chore: replace int64ptr with ptr.To
f2b24b98494 Increase verbosity of frequently printed loglines in binder plugin
621482d68b6 update pause version to 3.10.1
ce456c87f1c add SuccessCriteriaMet status for kubectl get job
bb6bd520126 Add feature gate enable test for KubeletPodResourcesGet
c925243779a address feedback
c6fef9752c2 fix: improve the pod level request validation (#132551)
89344dc2391 feat(validation-gen): add k8s:enum validator
345641f106b feat(validation-gen): add Enum validator function
adb71d041d6 Forcefully expire lease in integration test to fix flake
637bf55cbc2 bump golang.org/x/vuln/cmd/govulncheck to v1.1.4
e0cc07af866 Promote PSI metrics feature to beta
b46a124db31 skip pending resize evaluation if sources aren't ready
35bf1522b0e update allocation manager unit tests to cover push and retry of pending resizes
e6d165b879b move resize allocation out of the sync loop
87fe2491a11 add some additional helpers to kubelet status manager
cb2baef9122 move handlePodResourcesResize unit tests into allocation_manager_test
1a62ade7428 cleanup conntrack entries test for UDP service
8f92a81787e node: e2e: podresources: add more e2e tests
380ed8d9b3a e2e: node: memory manager: build everywhere, run only on linux
bc56d0e45a2 podresources: list: use active pods in list
30a3bfdbcba chore: remove residual uint64ptr usage with ptr package
006b2a3b52c e2e: node: cpumanager: fix cpu quota non-regression tests
54f86a22e88 chore: removing redundant type conversion
25d9d8d9ba7 refactor: use getLocalNode() to avoid code duplication
bc9e8e1a910 add a context argument to prePodCreationModificationFunc()
83584d13c49 fix: TestPatchResourceTimeout flaky test
994e106dc0d ci: update sample-apiserver version to v0.33.2
3379d5ac4b6 make sure all streams are created before starting demux websocket
1cec0acebf2 Short circuit CategorizeEndpoints when there are no endpoints
c53b41e98c2 Add testing compaction in storage List tests
1ac60e35e96 e2e test: Add a container_swap_limit_bytes metric
bdd662f7c6b unit test: Add a container_swap_limit_bytes metric
341957a367c Add a container_swap_limit_bytes metric
c530b022576 chore: depr. pointer pkg replacement for pkg/security and plugin/pkg
dfe6a5c9c13 Clean up `unversioned_feature_list.yaml` file
e909e0cf738 chore: replacement of toPtr helper functions with ptr packge
841886df76f Convert externaljwt from gogo to protoc
1b730abf8dc cleanup: use HandleErrorWithXXX instead of logger.Error where errors are intentionally ignored
075abb07a91 ci: redis removal for e2e test dependency simplicity
830a088d1bc chore: remove strPtr usage with ptr.To instead
838f3afc521 storage/etcd3: add back missing errcheck
604cc2b51f4 hack/update-openapi-spec.sh
5adc3bf08a6 hack/update-codegen.sh
ae7d637b893 Delete unused ResizeContainerPatch function
f1b35cae913 Use MakeResizePatch instead of hand-written patch strings in resize E2Es
00c1c1a58e8 Generate an E2E resize patch from original & desired ResizableContainerInfo
cfd65c5f74d chore: replacement of helper functions to ptr packge
ff7c781e251 Loop over all IP address from each node
d9de37d9316 chore: typo invaILd occurrence replacement
1ae1964e88e chore: depr. pointer pkg replacement for pkg/apis
31156514102 chore: remove uint64Ptr using ptr.To instead
38080c082e1 kubeadm: use named ports in static pod manifests
baf71997f53 chore: depr. pointer pkg replacement for pkg/controller
8abcdf0885a chore: depr. pointer pkg replacement for pkg/controller
f966647b4de chore: depr. pointer pkg replacement for pkg/apis
6cef8492e71 chore: depr. pointer pkg replacement for cli-runtime
bc72fb81c35 chore: depr. pointer pkg replacement for test/e2e
d193ffe57ff Use sets.Set instead of a local impl
277c665e8bc use early return
81be9065d12 improve the log message to clarify what users should do
e74bbd5db48 chore: depr. pointer pkg replacement for test/e2e
2f7148782b2 chore: depr. pointer pkg replacement for test/e2e and utils
1802c556524 chore: depr. pointer pkg replacement for test integration
b22ffdb48f2 golangci-lint: exclude naming convention check for swagger docs
0e8424fcf00 chore: depr. pointer pkg replacement for the e2e_node
bb24afe586c chore: depr. pointer pkg replacement for component-base
bd8d5f9798c chore: depr. pointer pkg replacement for controller-manager
fe61e825e04 chore: second depr. pointer pkg replacement for apiserver
4a61b817013 chore: first depr. pointer pkg replacement for apiserver
4625908a640 remove unused file
995a7872c55 chore: remove utilpointer usage in pkg/api/pod
ebae4193371 feat: add PreBindPreFlight and implement in in-tree plugins
c5b0c9fdc01 chore: depr. pointer pkg replacement for psa policy
88d885e4073 chore: depr. pointer pkg replacement for psa admissiontest
dc947510da6 chore: depr. pointer pkg replacement for psa tests
35e118a4794 chore: depr. pointer pkg replacement for apiext. apiservers validations
4a205cc7fd3 chore: depr. pointer pkg replacement for apiext. pkg/cntroller
107c58eeea3 chore: depr. pointer pkg replacement for apiextensions in general
b8ec161d7f1 chore: depr. pointer pkg replacement for apiext. integration
ca1d7fff7f1 chore: remove utilpointer usage in pkg/apis/autoscaling
0ad351281bc Cleanup duplicate function to get port number from named port
1ac5f661ed8 Don't log irrelevant zone hints message on no endpoints
27812e44bce chore: depr. pointer pkg replacement for apiext. pkg/registry
b72ab8a4e14 chore: depr. pointer pkg replacement for the cloud-provider
b464bbeb8f7 Remove gogo-protobuf from CRI
ce7b3694f7c chore: remove utilpointer usage in package test/integration/service/loadbancer_test.go
9016f9cb1bf chore: remove utilpointer usage in conversion package
90bbce56b95 PriorityMemoryEvictionOrdering: allocate more memory when swap is provisioned
25498cd34d7 Eviction tests: small refactor
43b22a24395 Apply fix to namespace deletion test (#132691)
0766a3c6b14 chore: depr. pointer pkg replacement for the kube-aggregator apiregistration
6c3146e3557 chore: depr. pointer pkg replacement for the csr
9345552274d chore: depr. pointer pkg replacement for the reflactor
ebea328f173 Fix volume limit e2e test cleanup
38bf213271e podtopologylabels: update topology.k8s.io->topology.kubernetes.io
2e966244ed8 DRA resourceslice controller: fix recreation after quick delete
fa313170001 Remove unused PodIndexLabel feature reference
8c6c7df736d remove apiserver_storage_objects metrics after crd deleted
a7e8a505c25 Improve ignore-not-found behavior (#132542)
1c1f00a5f47 fix: add RV check on GC delete calls
84f6d742c5b Make dynamic and metadata clients plumb DeleteOptions
ad0b2bf4f57 DRA E2E: serialize costly test
33cd2e1ba08 Fix AuthInfo godoc for Token / TokenFile precedence (#132659)
c6f87f6e64a Fix offline expansion tests for case where no node expansion tests is required
b44b0fbf129 Update github.com/emicklei/go-restful/v3 to v3.12.2
58e620cc440 Bump go.yaml.in/yaml/v3 to v3.0.4
00f8cbae6b8 Bump sigs.k8s.io/json to latest - no code changes
22138ef552b Add DNS e2e test of NameIsDNSLabel validated Service names
97c1974e9c2 Add integration test for RelaxedServiceNameValidation.
19e7e38af29 Add unit test for Ingress service ref relaxed validation
37a90b7c244 Add unit test for Service relaxed validation
b430159c86a Allow Ingress service refs to be validated with apimachineryvalidation.NameIsDNSLabel
487eb8a9e47 Allow Service names to be validated with apimachineryvalidation.NameIsDNSLabel
9043afae6d9 kubectl: Cache Verifier.HasSupport calls
179c4398f35 use defaultImage per OS
998776d80bb remove breaking test
a17b0d7f66d gofmt
1514568ddfe rename sortedfeatures -> sorted
9e1a21816d2 update README
5cebe66b646 update log line
dcbed2fbdce Graduate PodLifecycleSleepAction to GA
977c6707333 Add unit tests for minReady new behaviour
4b99dc5f1e0 document hostnetwork <> port implications
952d2727a66 Add OrderedNamespaceDeletion to conformance.
12330a6c426 Drop BoundedFrequencyRunner from pkg/util/async
5d4a85f9f6c Enable versioned validation fuzz testing for certificates v1/v1alpha1/v1beta1 group
0fd4a0acc10 CSR: Add declarative validation test suite
5db2056682f CSR: Enable declarative validation
eecba765de0 Enable validation-gen on certificates/v1,v1alpha1&v1beta1
ec6471f63ef Remove gnostic-models gopkg.in/yaml.v3 unwanted dependency
d04ee27c98b Update vendor
b41d375b888 pin kube-openapi to v0.0.0-20250628140032-d90c4fd18f59
6d5e0bf2a21 review remarks
95b1151d2ab use format specifier
459188ce25c Port BoundedFrequencyRunner from flowcontrol.RateLimiter to clock.Clock
eae17c21b02 Change how BoundedFrequencyRunner retries work
c16ee887efc Remove burst syncs from BoundedFrequencyRunner
0298e04ea0f Updates to BoundedFrequencyRunner
6da9d363f36 Copy BoundedFrequencyRunner to kube-proxy
799aa8b2a8c Graduate streaming list encoding feature gates
5bae9fa8939 Graduate ConsistentListFromCache to GA
d4e49b2eed7 Ensure Loadbalancer internal port is set to container port from endpointslice if the targetPort is not specified in service info creation.
6a25bdaac8f kubeadm: fix missing log of health check
764a8bc8b61 chore: remove utilpointer usage in package pkg/apis/admissionregistration
a55318fe149 fix: versioned validation test avoid incorrect conversion
4c09aa9073f review: feedback
776382daa58 review: assert
43f6bd45f59 review: assert
fa87098ae30 fix: kubelet CRI portforward concurrent map write on error
a0ea2569a76 chore: remove utilpointer usage in package staging/src/k8s.io/apiserver/pkg/registry/rest/delete
7236f3fc2c2 graduate APIServerTracing featuregate to GA
75fc2b1cf6d promote TracingConfiguration to v1
a8068e27b1d scheduler_perf: Fix version emulation for empty featureGates map
5a20c38da61 remove usage of KubeletTracing featuregate from kubelet
7faf797a946 promote KubeletTracing featuregate to GA
d28791fa625 Remove unused sysfsPath's methods
6e5c99dd059 Review remarks
ee8c265d350 Move Code and Status from pkg/scheduler/framework to k8s.io/kube-scheduler/framework
08dd9c47b36 improve the log message to clarify the cause of the failure
a6e2cd4e8d3 scheduler_perf: add logs to report the failure of measuring SchedulingThroughput
7e816ca9b1e Commented out for unused sysfspath methods
2bc45ca4666 Make test only helpers private (sysfspath methods, touchFile, createSymlink)
94973ba3fc9 Fix typo: s/smock/mock/g
ac86e67b7d2 Commonize filtering of Pods by Owner with all orphans in namespace
ca314b9f561 Fix validation for Job with suspend=true,completions=0 to set Complete condition
1134220e011 Add RelaxedServiceNameValidation feature gate
f644e35d193 kubeadm: cleanup after WaitForAllControlPlaneComponents GA
cfe8604504a kubeadm: graduate WaitForAllControlPlaneComponents to GA
f437aa4aa67 scheduler_perf: Set version emulation only when QueueingHints is disabled
b2f27c0649f fix: Truncate too long Deployment name in RS name (#132560)
d67e7937e63 Remove recovery related featuregates
fa6f27c8f7a Add extra validations for newer resizing related fields
00dd610c93e DRA E2E: run some tests without feature label
f93b4408a77 Drop test that checks openAPI resource name since we currently don't guarantee name stability in the API
3eefb05a2c3 Fix gRPC listener error message in kubeletplugin and some minor renaming
e54e01e0abb Enhance help text for the 'top' command
7d5ab756277 Re-generate applyconfigurations
9af684ae098 Applyconfig-gen: Only the root type is an applyconfiguration
d50e1a684cd Ensure all the files have the updated sorting
f2d8b7ec2cc Add linter to report on unsorted feature gates
efcb03759dc E2E framework: sort tests in JUnit report
dfd34a5b189 fix pod template spec validation missing in sts
a57f15e0816 DRA kubelet: remove v1alpha4
005cef332da DRA kubelet: API clarification
f1845218e2d fixup! DRA: fix deleting orphaned ResourceClaim on startup
585ed0a5cb3 [client-go #1415] Use transformer from provided store within internal stores in reflector to limit memory usage bursts
8632257c934 Cleanup: Remove redundant detail messages in field.Required
e82d4f8e559 review: feedback
5cca0379274 resolve linter check
ce86fca8cd5 Add warnings for use of Alpha features with Emulated Version Warn for both api and feature flag use of alpha features with emulated versions. This is an unsupported use case and users may run into issues.
00d37505033 Move ClusterEvent type to staging repo, leaving some functions (that contain logic internal to scheduler) in kubernetes/kubernetes (#132190)
74af3ac8ad1 Revert "pop respects the context"
2dcce93336e Revert "modify tests"
31667cc7412 Avoid killing kops etcd-manager
6d6a749c62e DRA kubelet: add dra_resource_claims_in_use gauge vector
75432a14108 component-base metrics: allow usage of Prometheus types in tests
1639b090839 Add benchmark for SizeBasedListCostEstimate feature
c75d425ae2e CHANGELOG: Update directory for v1.34.0-alpha.2 release
292679a28ae Handle consistent LIST in watch cache to avoid incorrect semantics while setting ResourceVersion on options
c6c15bbe441 bug: Remove duplicate DaemonSet update validations
39dda2b88dd tests: runtime units
8bd8c14312e tests: add more units
f9a5aec318b Added unit tests
5390f75360d Added podutil.HasAPIObjectReference to deny admission for static pods referencing API objects
8b2eb9090e9 chore: Remove vet target and associated script from Makefile and hack directory
7d85134caee improve unit test coverage for pod observedGeneration
1a59c250eab feat: make CLE timers configurable
ef117edf356 DRA: fix deleting orphaned ResourceClaim on startup
c5b4b133ce3 switch to latest sigs.k8s.io/yaml v1.5.0 (run update-gofmt.sh as well)
e2c6b7fdf97 Override getKeys when cacher is enabled
7cb24179993 Run background cleanup goroutine
ec78b8305ad Estimate average size of objects in etcd and plug it into request cost estimator
190c8c7abc5 Use per-policy marker names for VAP integration tests.
6795d5366f1 feature(kubectl): support mem-percent,cpu-value,cpu-average-value,mem-value,mem-average-value flag to kubectl autoscale
9de075def7d replacing deprecated pointer pkg with newer package version
b8b3984874e client-go/reflector: stop exposing UseWatchList (#132453)
0028ea8e993 Improve containers lifecycle test output parsing
7e0d71fc14b apiserver/storage/cacher/listwatcher: error when the WatchList FG is disabled
ec6ea2213ed test: code coverage increase for kubelet_client
cb4014fb75f cleanup: Migrate more usages of deprecated function ExtractCommentTags
b50d5081766 bugfix(hpa): introduce buildQuantity helper for consistent resource quantity creation
cbba973b6c9 Fixing go-vet finding "call of reflect.DeepEqual copies lock value" by just asserting on the basic fields that should be reset when ClearState() is called
35ecb00f1c5 fix: Add wait for cache sync for customresourcediscovery tests
d6d186ece06 Activly poll for namespace termination instead of sleeping
e1daa69de8c Add printer column validation tests
369e6a25a28 Introduce k8s-short-name and k8s-long-name to the OpenAPI formats supported by CRDs
6f1295ae9d2 fix: prevent SSA from creating CR while CRD terminating
3b0fd328106 e2e: serial: cpumanager: continue on failure
f76e1381d08 e2e: node: fix quota disablement testcases
dc323756cea Bump to latest kube-openapi
d180fe28ad5 Add json-patch v4 compatibility test
2ca4ffe6532 Add evanphx/json-patch/v5 to unwanted dependencies
5a7e04b6cc7 feat: optimize ListAll and ListAllByNamespace to return directly when nothing to select
ae13d101958 KEP-5229: Add SchedulerAsyncAPICalls feature gate
dce69afadea apiserver/cacher: properly wire listwatch options to the listwatcher
0276769c2c8 kubectl: avoid logging during init
6040344a65c kubelet: DRA: fix TestRegistrationHandler
cc7893a42c6 kubelet: DRA: fix unit test failure
cf544da6f7a e2e_node: DRA: add tests for different socket setups
7f6389e7709 e2e_node: DRA: pass socket path as a parameter
3ae99f25471 kubelet: DRA: fix test failure on Windows
c90c2e0d402 kubelet: DRA: fix linter warnings
165bb1da58e DRA kubelet: use TimedWorkersQueue
4ee7374b24e DRA kubelet: add connection monitoring
f927cd01088 DRA kubelet: simplify plugin creation and connection handling
cfeab03ade4 remove kvh.exec
75862f3f461 show namespace on delete (#126619)
56d97283afb fix: Improve error messaging on updating a deleted object
fd8bf1c8211 e2e: retry getting status on restart policy tests
c5f061e0df0 Fix pod and container level swap metrics for CRI
e1d74f1d335 Update etcd image revision to 3.6.1-1
7e3945808d3 nftables: remove filter-output-post-dnat chain
91f2256b34e update filter chains and priority
72305f82f9a Move UnsafeCorruptObjectDeletion outside of etcd3.New function
59dd2bd60dd ci: update test image base: nginx, nginx-new
af89044a78c conntrack: clean stale entries on endpoint port change
861e7b8fae2 fix unit test flake for authn config on windows
2fd93c08988 fix: data race for patchResource func
ccdef28acd3 fixing large resourceversion and limit for storages
fe84377458b e2e/watchlist: new test for checking metadata informer
d6ba9e1b9f7 replacing depr. pointer pkg with new ptr pkg on src/apimachinery
db32c4cf7ca fixing syntax issue for etcd builds
8454093f09e DRA: add e2e test with initContainer using external claim
138e363e413 cleanup shellcheck for temporary HOME directory
66c611125c7 Add namespace-aware orphan pod indexing
5e54df3e72e Fix [Failing test] [sig-node] [Feature:GPUDevicePlugin] [Serial]-related tests
280cecb8fb0 fixing location to ensure the cp commands dont fail
d2945a21fda bumping revision
fa1832484d1 handling the etcd 3.6+ build directory location change
e68d6013449 Don't panic in case of an unknown API error code
4ca91a03052 WIP: Fix tests
2b2c9adef38 Nicer value rendering in API errors
cfff359b419 fix for gimme when $HOME is not writable
6a654e5be0c Deprecate StreamingConnectionIdleTimeout field, that is not being used for a long time
b8cd05881c5 Address PR comments
6f97f5bbf87 Use Mock CSI Driver for MutableCSINodeAllocatableCount storage e2e test (#132373)
176095ac30e [KEP-5100] WinDSR feature gate to GA
64c44e1fa63 Test that generated applyconfigs are a runtime.ApplyConfig
a5d42f56939 Re-Generate applyconfigs
d5527b51930 Update applyconfiguration-gen so acs implement runtime.applyconfiguration
3fe4ea550e8 Add an interface that all applyconfigs implement
b0b52f4fb29 CHANGELOG: Update directory for v1.30.14 release
2bc98f123d7 CHANGELOG: Update directory for v1.31.10 release
20e9f160c97 CHANGELOG: Update directory for v1.32.6 release
9e126a37720 CHANGELOG: Update directory for v1.33.2 release
df32f10e069 apimachinery/pkg/util/errors: deprecated MessageCountMap
de2f22ee8ee e2e/watchlist: intro verifyStoreFor
017c9b94daa e2e/watchlist: rename toSecretPointerSlice
caa64afd017 merge constants.go into attribute.go
73d65f830a1 Put _linux suffix for linux specific go files
88b34ea1f1d Move bdfRegexp from global constant to local variable
fc854a9a861 Introduce DeviceAttribute{Name, Value} and change return type of 'GetPCIeRootAttributeByPCIBusID' with it
8ed8217e9ab Moved device attribute constants from api to deviceattribute package
f7461a12dcb Revert "Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions"
6b9ac7c5160 cluster/gce: rm KUBE_LIST_FROM_CACHE_INCONSISTENCY_DETECTOR
512563e7b08 pkg/proxy/conntrack: refactor
91b4816c230 Optimize job controller performance: reduce work duration time & minimize cache locking
18dd1daaeb9 Add Windows Server 2025 (ltsc2025) to BASEIMAGEs (#132235)
44b4682a320 Use jq docker image for pause windows build
3827d3bc4f1 Drop usage of forked copies of goyaml.v2 and goyaml.v3
2869b6f42c4 Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions
a8ab9eb5fea Simplify the implementation: just provide GetPCIeRootAttributeByPCIBusID
d390902b99a Verify scheduler resource metrics account for Pod Level Resources
32fcaf14067 client-go/util/consistencydetector: move IsDataConsistencyDetectionForWatchListEnabled
72654620a2f removing WaitIntervalString from iptables
bad49390493 client-go/util/consistencydetector: remove CheckListFromCacheDataConsistencyIfRequested
15ca38b521d apimachinery/meta/types.go: remove InitialEventsListBlueprintAnnotationKey const
690790257fd Add test verifying KUBECTL_KUBERC can be turned on and off
45449a78d5e Removing setting KUBECTL_KUBERC env var, now that it's on by default
3f32edeace1 chore: Remove the dependency of the volume manager on the container runtime.
3dc1810bb7e fix: failed unit test.
b8a2127d277 Add random interval to nodeStatusReport interval every time after an actual node status change update or restart
fbf4b47d150 chore: clean up probemanager for shutdownnamager.
3fa23d06af6 Adjusting AdminAccess Type for API v1beta1
2a5e4d55824 add script for verifying dead code elimination
891e7fec6e1 add seperate health check/probe for multi etcd override servers - grouping health checks for exclusion purposes & add exclude integration test
28573e373fd Add error prefixes for authn config load or validation failures
4cb6d3d7761 Validate requests sent to etcd in TestList "test List with limit" scenario
03afe6471bd Add a replacement for cmp.Diff using json+go-difflib
32ec4e68cc8 adding omitempty tag and opt tag
e654deba630 CHANGELOG: Update directory for v1.34.0-alpha.1 release
f4a45862556 fix APIServerTracing test data race
2004ee50f5d Fix -Consistent paginated lists serve from cache
bccc9fe470f KEP-3939: Job Pod Replacement Policy; promote to GA
fc198b92c0d apiserver/handlers/watch: stop encoding initialEventsListBlueprint (#132326)
854499f986b clean: use correct pod template
fae2fdd052c DRA: wrap e2e finalizer update in retry
7a95f3e4787 Fix NetworkPolicy podSelector comments
233a0aeedbf DRA E2E: label tests which need a certain minimum kubelet, II
2cd5dbbdaab modify tests
59f0ab97c25 Add boilerplate header to go files
1c33d987625 pop respects the context
f67d30b3529 handle context in process loop
384240b4d95 Use "Invalid" errors rather than "TypeInvalid"
bdfa8839bec calculateStatus should use the same now time point for each pod
ce44bcdf52b conformance servicecidr read status endpoint
c2988884f34 fix kubeadm e2e tests
cb26d065d39 Validate PCI Address (domain is 16 bits, bus is 8 bits, device is 5 bits, function is 3 bits)
752a043692f fix lint: apply De Morgan's laws to simplify conditionals
76ef6a388f8 fix kubeadm e2e tests
79601d13569 Fix CRI fake_runtime RemovePodSandbox
666f38f4189 DRA: Introduce a helper function producing standardized device attributes for DRA drivers
7a3af908c64 add securitycontext OWNERS to be SIG Node as the package is mostly used and contributed by SIG Node
7f1dde2a0fe test/apimachinery/watchlist: properly wire modified config to informer for fallback case
40c718864b7 chore(apiserver): avoid using html template which disables dce
6a37976848b client-go/rest: rm watchlist
4372c59ebf0 update go version for publishing bot rules
e09b042d34b Bump etcd to v3.6.1
901441c66eb Promote SeparateTaintEvictionController to stable
85bc3cb0960 Remove GetExec method from VolumeHost
9251b2a7a58 Expand webhook test to check rejection metrics
f8b4ea50e8d ./hack/update-internal-modules.sh
71b2f32d70f DRA E2E: label tests which need a certain minimum kubelet
3908550c0dc Update to latest github.com/modern-go/reflect2
d8bfafe07af test/apimachinery/watchlist: prove typed client's List method not streaming
601065a7c6b bug: Fix misleading response codes in admission control metrics
5882df8beb3 promote env test to conformance
69a5bda836e Bump base image used in nonewprivs to alpine:3.22
04110fce1bc Correct error message to print `ResetConfigurationKind`
3443c1115ae make update
798c6ebab85 client-gen/code-generator: remove watchList
db2555628c1 Fix: HPA suppresses FailedRescale event on successful conflict retry
2f943293ed8 client-go/gentype: remove watchlist
f0dde38234f Remove pluginName param from GetMounter and GetExec
fb611f4c93e kubectl delete: Update interactive delete to break on new line
d46e13b9c5f change the command of the terminated container
226c0d10959 Bump ipc-utils base image to alpine:3.22
e75ccce83fc feat: optimize label selector match performance
ac467d3aea4 add ratcheting testcase for validateFalse tag
9384285c604 add ratcheting testcase for minimum tag
1574001a1cd run update-codegen.sh
f574115f14f feat: add default ratcheting support
e9eabb2007d feat(validation-gen): Refactor type handling and introduce utility functions
03c6e15f845 bump to alpine 3.22 and bump apparmor-loader to 1.6
b86b4632b3f disable selinux relabeling when mounting sourcedir to shellcheck
dc3836c49ed Remove deprecated encryption config controller metrics
5a2844a766b Update to etcd v3.6.1 in vendor/
a9108e8f532 Adding `grpcnotrace` tag for production (non-debug) builds
11abb0042d2 Fix outdated links in VolumeSource godocs
4b2fe2a544d pkg/kubeapiserver: use utils/ptr package instead of utils/pointer
69eddde89b4 using finalizer
57d55fbb106 test: Add test case for createNodeOp
1d69a2fbc3a ./hack/update-vendor.sh
edadfee47d3 test/apimachinery/watchlist: prove dynamic client's List method not streaming
348ff7497c3 Build etcd image v3.6.1
3038f3530d1 client-go/dynamic: rm watchlist
86c709cd817 skip nfacct test in IPv6 clusters
e5f36796e34 Bump dependencies, images and versions used to Go 1.24.4 and distroless iptables
07151bb0f4c chore: Add validation error for unsupported map of slices in validation-gen
89f5453e314 Allow system:monitoring role to access kubelet metrics endpoints
2810f6e65f5 add bentheelder to cmd/preferredimports *reviewers*
00a6d2c99c0 add bentheelder to conformance related test *reviewers*
1dd055774cd backfill some sig-testing-reviewers (tech leads aojea and pohly)
ad68a4b4cdd emeritus spiffxp
512f000d0f3 Update tests for StructuredAuthenticationConfiguration feature gate GA
efebfe9e3a5 Set StructuredAuthenticationConfiguration feature gate to GA in v1.34
769d71b3045 Remove unused Expect methods in testscheme
105dd3b0ab0 Add ExpectMatches to ValidationTester
28e973c0447 Better formatting of matcher errors
b39741b5062 e2e: node: serial: fix cgroup path with crio
26b188aaa8f KEP-4633: Graduate to Stable.
fd5d7a18ed1 reduce logspam when calculating sandbox resources
0baeccd32f0 KEP-740: promote ExternalJWTSigner feature to beta
ef2c18a5a0e Add more test cases
eb3c9a3184a Promote feature OrderedNamespaceDeletion to GA.
f8b70124350 Revert "improve display format"
449320a54a2 update github.com/spf13/cobra v1.9.1
260a720a851 Rate-limit the LoadBalancer rolling update test
0a86ca40615 Add healthChecker to the kubeDeps
dacafec88c2 KEP-3015: PreferSameTrafficDistribution to Beta
b2ab0ba1938 Drop unused testing manifest
96b39187c5f Add context to Count()
9d1bc51cbb7 adjust durations for sleepAction
c85ac59df41 Build k8s using latest commit of golang
4a7e68a3555 fix: Fix the issue where kubelet's slow startup causes it to be mistakenly killed by the watchdog.
b02fba7e0e6 Fix incorrect logging of insufficientResources in preemption
fc7ba63ee8b support parsing of iperf 2.2.0 output
1755a9e5455 fix: iperf version in comments
0ca9c380add update all api files
32aa52adf66 tolerate newer golang/oauth2 version
3cfa73bc17b add -q flag for git worktree
97ec8618d3e Fix kubelet iptables startup, clarify semantics of utiliptables calls.
6a4751da7fa Graduate RelaxedEnvironmentVariableValidation Feature gate to GA
f4ab6c2befe cleanup: Migrate deprecated function ExtractCommentTags
0d468f58c07 kuberuntime_manager: don't log entire container spec.
858b88bceef kube-proxy: log ipt errors during platformCheckSupported
1f46b3fdbff Clean backoff record earlier
7b1f4990677 DRA kubelet: rename Store + Plugin -> DRAPluginManager + DRAPlugin
fad670c27b9 DRA kubelet: move RegistrationHandler into Store
494a129d02a DRA kubelet: clarify plugin vs, driver name
0d5578b8395 test/apimachinery/watchlist: prove metadata client's List method not streaming
5b0f0d2efa2 update pr template issue links section
a38ad3a2c67 client-go/metadata: rm watchlist
beb86a8391b KEP-3329: drop PodDisruptionConditions feature gate
b5a8f5d0a50 KEP-3715: drop ElasticIndexedJob feature gate
10de6780cf6 DRA API: remove obsolete types from v1alpha3
0896693693d fix TestNodeAffinityPriority: calculate the priorities correctly even if PreScore is not called
087554448ca Make nodeports scheduling plugin sidecar initContainer aware
1876c544511 Remove unsupported map of slice validation for non-byte elements in validation-gen
50139381006 Change option to a slice
990cb7547ca Use slice.Contains()
28e99ef2ee6 Add type information to tag Docs() and use it to typecheck tags
31aa3c20297 Switch to using named args in output_tests
7892fd95f24 Use codetags in validation-gen
249801b7ccc Fix windows-pause-image-base:<tag>@<digest> invalid reference format
2c4c3037b6a Fix field path for embedded fields in root types
d1bddfd779f Forbid github.com/pkg/errors in k/k
efaaece0fbc go.mod: drop pkg/errors as a direct dep
cbbfabe7fec Support embedded fields properly
d1a858ca9f6 kubeadm: fix one missed pkg/errors location
036f4bfe282 hack: fix KUBE_RACE in benchmark-dockerized.sh
5be254650f8 kubeadm: start using util/errors
f522d7cb858 kubeadm: add a local implementation of wrapped errors
2bf3d8b7336 KEP-3335: drop StatefulSetStartOrdinal feature gate
1d1d0c154c2 promote agnhost to v2.56
258961cb350 pkg/appis/apps: use utils/ptr package instead of utils/pointer
7b664a11352 pkg/volume: drop pointer wrapper functions.
253a08d7e39 pkg/util: drop pointer wrapper functions.
ac5cb23000f Bump gengo/v2 to latest
d6ec03a1302 Preempt based based on allocated resources rather than desired
7d47165e3ec Replace queue.FIFOs with k8s.io/utils/buffer.Ring
705e89b046f Only set pod allocation if admission succeeds
f8b893489c1 Update pkg/kubelet/kubelet_test.go
147073102b7 fix: prevent data race in metric LabelValueAllowList initialization
8cdbbf5cdae Update k8s.io/utils for new generic ring buffer
daae472fe1b e2e_node: verify restart looping container correctly
109ae1bacad feat: Allow leases to have custom labels set when a new holder has the lease
8d3fb9ee0a5 [KEP-2400] kubectl top: add a --show-swap option (#129458)
4c7840ec5d2 podResizeMutex cleanup
c7fdf6abde1 Handler will return the server port number instead of address
6a495241ef3 KEP-3331: Add test to simulate revocation via user validation rule using unique identifier (jti)
466fb815287 test/e2e/apimachinery/namespace.go: make OrderedNamespaceDeletion test serial
7e7aa6d810d e2e: node: cpumanager: require cgroup v2
68efb079aab kuberc: add tests for DefaultGetPreferences
ad3a13e014f Graduate NodeLocalCRISocket to beta
b9d9dea03f4 Update npd from v0.8.20 to v0.8.21
47dead1c403 unexport allocationManager IsPodResizeInProgress
de1d6fbf242 fix: ResolverTypeProvider data race
9b8d7ce4987 pr review feedback
a512de6e094 Clarified the token scope and future plans for the next security scan to refer to it
032a9eaede4 DRA kubelet: code cleanup
a6e22689946 Ensure github.com/pkg/errors is used only in kubeadm
7ccb9657f7c sched: Apply EnablePlugins to CoreResourceEnqueueTestCases
6cb14884b61 test-integration: allow enabling race detection
545fbc99c2b test: drop dependency on github.com/pkg/errors
899f76159f1 add unit test for IsDNS1123SubdomainWithUnderscore function
0a7d9f9bfd9 KEP-4427: Promote Relaxed DNS search string validation to GA
2aa7ef3d273 Address comments
dbdd6a3b435 FieldManagedObjectTracker: Fix to work with unstructured
b7d16fea7fd disable terminatingReplicas reconciliation in ReplicationController
ee33c1a9fc9 e2e: fix userns test
be049397dfd Fix IsDNS1123SubdomainWithUnderscore to return correct error message
4f91a69f2b0 DRA integration: move and extend device status test
0a96613754b proxy: remove iptables wait interval flag
a5aabf9f7e0 DRA kubelet: validation pass before changing claim info cache
5420dcec553 Promote two more EndpointSlice tests to conformance
b9496d1a9d7 Update client-go template with backticks
d70fcf731bd Update client-go PR template
d75af825fbe Extract interface CycleState and move is to staging repo. CycleState implementation remains in k/k/pkg/scheduler/framework
be6807e6a57 Allow specifying a directory for image credential providers json/yaml configuration
aac00c1f0ed add orphanedPods parameter to getRSPods
d13dcbbf95c kube-dns bump to v1.26.4
96b5ae792bc Add code for not expanding volume if it has NodeExpansionNotRequired annotation
2b0b3435078 DRA: Improve implementation of counter management in allocator
1cd71cbb14e ManagedFieldsObjectTracker: Reload scheme
4654496c395 Add code to not expand certain types of volumes
741d0e2b81a Gradute ResilientWatchCacheInitialization to GA
c8f1a653014 agnhost: added server address for conntrack cleanup entries
5058e385b09 DRAAdminAccess: update label key
ee2d3b6a2c2 DRA: Exclude individual devices when PartitionableDevices feature is disabled
ab6fdf46d89 Move the autoscaling e2e tests to be ran in parallel (#131091)
4e3634bbbfb Update security contacts for sig-cli owned repos
b0847b47697 Add unit tests for fsGroupChangePolicy accessors
74167f9041b Fix typo in the `--anonymous-auth` flag name
6410329a07e update go version for publishing bot rules
60b5338d460 Promote automatic_reloads of authn config metrics to BETA
f694c58c6cc feat: graduate QueueingHint to GA
1310fc027a5 kubelet: drop dependency on github.com/pkg/errors
346fe182bea DRA E2E: fail test when ResourceSlice publishing fails
dc2f33f9d8a Update Perl to 5.40
7c0f968ab25 Drop usages of deprecated otelgrpc methods
157903b09b6 Skip backoff when PodMaxBackoffDuration is set to zero
54b2fad0330 kubectl: drop dependency on github.com/pkg/errors
b461d80f3d9 etcd: update etcd image to v3.6.0
df2857e7777 Revert shorthand for kubectl explain --output
1d17ca9b7e9 generate code
8ae7171041b Simplify subresource matching
9715c90b31c Clarify errors and improve tests
4cac349f86b Clarify group version lookup in validateDeclaratively
c2eef42cf4d Add output_tests
6284a0f50bb Tag types with +k8s:isSubresource and +k8s:supportsSubresource for scale
7dc8660d036 Update testing to fully track subresources
6ca6b7bb6ab Add +k8s:isSubresource and +k8s:supportsSubresource tags
105391403fa Enable scale subresource in generated validations
a3eddf7d854 Add declarative validation testing for replicationcontroller/scale
356f395f0de Enable declarative validation for replicationcontroller/scale
030b4ab9cc9 Add declarative validation testing to Scale.spec.replicas
48e1079cf03 Add subresource mapping support to ValidateDeclaratively and introduce configs
8c5c5fb7618 Add origin and use apivalidation.ValidateNonnegativeField for Scale.spec.replicas validation.
d0f6fe30bf1 Add k8s:minimum validation to Scale.spec.replicas
ffb4e003f70 Enable validation-gen for scale group-versions
e63019a8701 DRA integration: refactor code to support other tests
1ffda045cbf update to latest ishidawataru/sctp dependency
50f152440be DRA integration: start scheduler on demand
488c94735ce Bump dependencies, images and versions used to Go 1.24.3 and distroless iptables
699dce0a579 DRA kubelet: fix gRPC timeout flake
7215de79b3c DRA kubeletplugin: some doc updates
24c0e91d295 DRA resource slice controller: disable resync
01820ff7c27 chore(scheduler): add filter integration tests for missing part plugins: NodeAffinity plugin
151d9d79f4a Remove package protected field updatePodOther from ActionType. Make ActionType.None public
76f95271a5d kuberc: make update and update-vendor
b8e6de08e1b kuberc: add API violation exceptions
c29accaf581 kuberc: introduce fuzzing for kuberc types
b0370c483af Promote kuberc to beta
1f355e5b441 kuberc: pick the first known version when decoding + tests
0341b27c5d0 kuberc: align internal and v1alpha1 go-types with v1beta1
39195f9a463 kuberc: add v1beta1 types
35870c480d6 client-go remotecommand: avoid "unexpected error" log when there is no error
7287dcd2fb3 vendor: update system-validators to v1.10.1
b35c5c0a301 e2e: Fix shadowed error in reboot test and clean up containers after reboot test (#131699)
f79012a0db3 renamed SIG Node google groups
50fe29e524b Add accessors for fsgroup change policy
17946fe7994 Add Stress Tests for VolumeAttributesClass
32c45ecf10c Bump github.com/vishvananda/netlink to v1.3.1
aea2743e4e9 vendor: update system-validators to v1.10.0
96e4cc65fbc update baseimage
c5f368522d5 kubeadm: fix dryrun-latest e2e by updating cluster-info fixture
d7b6049099e e2e: node: always declare testcase CPU requirements
b571840d00f bug: Remove duplicate ReplicaSet update validation
67345417c03 Update tests to use v1 for AuthenticationConfiguration
aea874e5e47 Duplicate v1beta1 AuthenticationConfiguration to v1
c509e22d11d Add a list of modules that should be pinned at current versions
c4421fc13e7 address more feedback and some cleaning
637d234aae3 feat: Add support for ECDSA-P384 encryption algorithm
b98b86bd6ab DRA: Add scheduler perf test for partitionable devices (#131771)
4cc2bded914 DRA: Add an allocator test that uses an attribute selector
60c36432f2a DRA integration: set up nodes for scheduling
1c3beb47a5c Fix goroutine leak in unit tests
f6fafba424a fix flacky test: ResourceQuota should verify ResourceQuota with terminating scopes through scope selectors
8cf5e8db78d Deprecate kubeconfig's preference field in favor of kuberc
1ce8503e91e add UT for volumepathhandler
a8ed33bc646 feat: add metrics for compatibility version
c4a59afe9dc Fix incorrect URL in build/dependencies.yaml file
5bb3f862a06 DRA: Clean up allocator tests
5834476681c fix lint and unit test failures
676978641e1 address feedback
88e1909e518 move pod admission and resize logic into the allocation manager
35307319740 Kubectl: check version skew (#127365)
3878f7e7489 E2E ResourceQuota: ensure consistent ResourceQuote during scope selector test
4a353d07e4f E2E ResourceQuota: fix pod creation flake
4b10ba9eef8 E2E ResourceQuota: dump last ResourceQuota
f712b01ddb5 Unify references to group resource in metrics
d3afe8a87eb hack/local-up-cluster.sh: remove kubelet --cloud-config
772d0106651 client-go workqueue: clarify parallel reenqueuing
d043beb223b HealthChecker has a List method
9b3830fba23 Bump google.golang.org/grpc v1.72.1
be5d8c767b2 Update cmd/kubeadm/app/cmd/upgrade/apply.go
c0885e018ae Fix --config option from suggested kubeadm command
8f49fb5ce7e future-proof csi test mocks
adc4916dfe4 feat: introduce pInfo.UnschedulableCount to make the backoff calculation more appropriate
968e19d1b6f docs: avoid broken link
a271d3e5339 cleanup: remove error comment of AddIndexers func
5def7fadf3e Drop dependency on x/exp package in mount_linux_test.go
b9e2a160832 e2e_node: dra: test plugin registration retry
aef61622aed e2e: dra: implement ResetGRPCCalls
e8be3e575b9 e2e: dra: simulate GetInfo failure
2f50d0a510d Add kube-api-linter plugin to golangci-lint
0e5eab042c3 test: Use sub-tests in watch tests
5da12b5aee9 Add tests that validate the return value of resize operation
c369e3cd493 etcd: build etcd image v3.6.0
65a27eb97d6 restrict the use of scheme internally to client-go
671d1a07a58 Bump the busybox image
88b23605404 ResourceQuota E2E: more informative failure message
ba77d27560a DRA E2E: reduce risk of flake in ResourceSlice stress test
6b0ebedccc1 Set non-experimental WatchProgressNotifyInterval config field
079d4e52c24 Fix kubeadm etcd client interface
cf0bbf1171e bump etcd client to 3.6
7bccb1acb5e Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go
139fab0ebdc kubelet: don't import testing dependency in non-test code
90b256537c2 Add suggestChangeEmulationVersion if setting locked feature.
5314fcece31 Promote automatic_reloads of authz config metrics to BETA
1b9bb3393f5 test: Fix CURL download of Windows busybox test image
b0ab168a71e CHANGELOG: Update directory for v1.30.13 release
ec7e732cbcc e2e: dra: move gomega matchers to dedicated package
fcfd87812f1 CHANGELOG: Update directory for v1.31.9 release
2b7f8e1682c CHANGELOG: Update directory for v1.32.5 release
1ab54ffa642 CHANGELOG: Update directory for v1.33.1 release
bba9c49e101 e2e: DRA: test 2 claims with the same name
8d8fd92966b DRA: test mismatched claim UIDs
96da66054db DRA: genTestClaimInfo: add claimUID parameter
69e16d2f544 DRA: kubelet: check for duplicate claim names
b9fec8bf4ff fix scheme import
cf8acf5cb73 package bootstrap matches dir
e9fcdabcf50 feat: kubectl debug: add label for debugger pod
b13cf0a65ae tests: userns: Add framework.WithFeatureGate()
9549c111551 fix e2e network test flake because of network programming latency
ef0547741db verify scripts: preserve exit code
0114d33c346 datapol: compare types directly
a1a4bc8fec8 fix: add BackoffExpiration to DeepCopy
2fe65bbf48b fix(kubelet): update lease duration when config changes
094466539e0 Add rotation and clean up for logging
125600e7458 Remove unused GetHostname method
ee94ba913ad Run codegen
4eb9fb21b69 applyconfig-gen: handle non-pointer embedded members
c374ab81185 Add a breaking example for applyconfig-gen
70e05132645 Separate getList and watch errors to prevent TestGetCacheBypass flakes
5121115711e Add sig/scheduling label to scheduler integration tests and staging repo OWNERS
1ed6cf21966 Add e2e tests for kuberc
0ad8e65d90e e2e pod readiness gate network flake
fe1b1fff7c6 Remove unused GetHostIP method
504b681ae14 Adding Joel Speed
47f85960638 DRA: prevent admin access claims from getting duplicate devices
c5e4cab9b1e e2e: add corresponding featuregate label to node features
c4d6fcb1974 Remove misleading comment from NodeTaint TimeAdded field
d0b6ea36b60 update got to 1.23.8 for the active release branches
3043257b838 remove release-1.29 as it is deprecated
9fd545bcc46 [sig-scheduling] SchedulerPreemption [Serial] validates various priority Pods preempt expectedly with the async preemption: replace finalizers with preStop hook and TerminationGracePeriodSeconds
74e9b27e56e Port "Service endpoints latency should not be very high" to EndpointSlices
e5f7fc25e71 TestNodeAffinityScoring: wait all nodes
e42aba6c0ce Optimize RS Controller Performance: Reduce Work Duration Time & Minimize Cache Locking
28602c66fcf Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption_test.go
52e7aa37daa gofmt
a507e64fe4b Have separate tests for custom selection vs ordering, add comments around system pod eligibility
283c5e6b61f Have IsEligiblePod be supplemental to priority check, update tests
3ed73e058ae Clean up the affinity explanation, fix for new lint rule
d4bc527a7b8 Update comments: affinity info, default behavior, priority->importance
95ebc2c10e9 Apply suggestions from code review
7f57c6e52dc Update factory to use generics, keep single New function
137da6a4882 Remove line about equal priority, fix typo
b8ac1714370 Apply suggestions from code review
224e6a3a355 Rename EligiblePod* to IsEligiblePod*
4bf6841495e Update the customizations to operate on individual pods, for more flexibility later
c34f8db5594 Remove unnecessary context and typecheck, switch to cmp.Diff
c6f2d3879b8 Fix gofmt in default_preemption_test.go
78b059c064e rename OrderedPods -> OrderPods
2616202ac9e Implement tests with example customizations, add direct constructor
760daaf1100 feature(scheduler): Custom pod selection/ordering in DefaultPreemption
721947a5703 Update staging/src/k8s.io/apiserver/pkg/audit/request_log_test.go
153233c677d review from tallclair
e418ee3a92c Avoid encoding in LogResponseObject when we are not going to use it
26c198dc202 Some fixes
0b915a538fd Cleanup after rebase
a6586aa610a Addressed comments
e262cccf23b Cleanup after rebase
86104043588 Add e2e tests for Partitionable Devices
ece35e58828 Update DRA e2e test framework to allow publishing advanced ResourceSlices
a437a269f18 Fix comments on ginkgo label functions
85734ac6b38 DRA E2E: don't run prioritized list tests twice
808a5cfd469 e2e tests: remove all cloud provider calls in storage/volume_provisioning.go
51407868295 feat: improve the backoff calculation to o(1)
cfe7d042435 Account consumed newlines properly in YAML decoder
d5a56739cee use framework.ExpectNoError instead
699ec0a538a Remove wrong comment
f718096b744 NoExecute taint should be added when a Node's ready condition becomes Unknown
3911b677bd4 test: wait for nodes to be in scheduler's cache
ea6b4ea7e9d kubeadm: bump supported etcd version
9d963298a3b test: Close response body in watch tests
d1fb42a4000 fix: fixes a possible panic in `NewYAMLToJSONDecoder`
960a4939f25 Eliminate AuditContext`s SetEventLevel
c39705281c9 Self nominate adrianmoisey as sig-network reviewer
b09d034a570 DRA E2E: revise test labeling
13bd0b4ee82 e2e: node: rewrite the sidecar related tests
f4265638be9 e2e: node: factor out reservedCPUs
a8c8b0987dd e2e: node: dissolve skipIfNotEnoughAllocatableCPUs
32d4724ab8c e2e: node: add comment about reserved CPU
daf2fc71002 e2e: node: rewrite multi-pod tests
ccc662c228e e2e: node: initial multi-container tests
2419d9ccc5f e2e: node: rewrite: multi-cpus single-container pods
e4726719a75 e2e: node: rewrite more compatibility tests
74fda8c700a e2e: node: rewrite compatibility tests
dd3f9b60741 e2e: node: rewrite CFS quota tests
b9ce058ab67 e2e: node: rewrite strict-cpu-reservation tests
3eb2e65fc30 e2e: node: rewrite cpumanager tests
94dd0b8402a Move test cases from mounted_volume_resize into testsuites/volume_expand.go
4aa3c968a78 Build etcd image v3.6.0-rc.5
641834d030e Fix broken recursion
eb4641d6512 Add container Resources to the backoff key
080d6f9ead7 test: pass the test context to http requests
3f188e5d86b refactor: Use http method constants in apimachinery
75afa1e0acf Fix API server crash on concurrent map iteration and write
f93e4645c18 refactor: Stop using ioutil in apiserver
9e3a1b0a908 Add comment describing the feature gate with a link to KEP
e3f3da5e795 Swap KUBECTL_COMMAND_HEADERS to use the proper feature gate mechanism
d1b5f268b48 Drop KUBECTL_ENABLE_CMD_SHADOW featgure gat entirely
a6abd717eae DRA: Fix failure to allocate large number of devices
6cca37b36fe Add integration test for log verbosity
69682b75e50 Manually read verbosity before kubectl command construction
ee4c6b90ce9 add HirazawaUi to kubeadm approvers list
77b1236a523 fix: Kubernetes versions in unit tests
f40892f4813 client-go: call out WithContext inconsistency
871cabeedb0 deflake e2e tests: StatefulSet Non-retain StatefulSetPersistentVolumeClaimPolicy should delete PVCs after adopting pod (WhenScaled)
8b81a3d883e Rename GetStableKey to GetBackoffKey
861682235cf DRA: Fix incorrect behavior for AllocationMode: All in ResourceClaim when used in subrequests
a3097010faa Change the implementation design of matchLabelKeys in PodTopologySpread to be aligned with PodAffinity (#129874)
ce02da8daba generate code
4821604f83a Reorganize scheme type converter into apimachinery utils
e81887276c6 refactor: Add request method constants
af1d60f30bc Add hpa reviewers
0acc7bd4dcc HPA: Fix int overflow in GetExternalPerPodMetricReplicas
b9cb3cb3339 update klog flags
57218ac969d Revert "kube-proxy: log errors during proxy boot"
9def40c9e7b DRA E2E: fix "must manage ResourceSlices"
c71e29ff12b DRA E2E: fix flaky "sequential update with pods replacing each other"
d28c8cd4887 fix: not removing the plugin from the unsched plugins after PreEnqueue
47d296d62d7 feat: introduce pInfo.GatingPlugin to filter out events more generally
441dd305150 userns: Wrap more errors
43f61e80de3 userns: Improve error returned if userns is not supported
c5efc843dac Fix rudimentaryErrorBackoff to only be created once
97e64e80c3e Fix typo in comment
68f0204e3e1 Better logs and debugging
8a571f7fb80 Rename discover() to discoverType()
eb3c061cafb Reorder and merge blocks handling named types
67bab26ea13 hasValidations should return cached values first
bb10f55fd1e Fix lint warnings
22fa3c747b1 add retries to exec command in cgroup verification
8652b6ab283 Update sig-network-approvers/reviewers
b1bb9a5885a Kubelet: Randomize ClusterRole name in e2e
863168e4749 e2e: stabilize Windows memory pressure eviction test
4ed3768dc95 userns: Use len to handle empty non-nil slices
97a2cb39ce2 Make sig-scheduling-api-approvers actual approvers
6d927c3c250 Comment out sig-scheduling-api-reviewers, since it's currently empty.
038bb1a9a5c Remove alculquicondor who is stepping down from sig-scheduling-api-reviewers
55b5827d8f0 integration: etcd data
aa9f156d7aa integration test for compatibility version
3be3051fb77 Adding test case for the webhook behavior change
cf82fd7e9ce Treat error decoding a mutating webhook patch as error calling the webhook
9bcec340f88 modify unit test for compatibility version
15ab88f88bf remove networking v1alpha1 and make update
54b014be1cd use networkingv1 as default storage for servicecidr and ipaddresses
b2fe862ae3d graduate disableAllocatorDualWrite and lock MultiCIDRServiceAllocator
d2fa246b069 Update codegen
d78b295a845 Reenable guard to only validat root and scale subresources until ratcheting merges.
94d043b149b Drop KUBECTL_DEBUG_CUSTOM_PROFILE feature gate entirely
d52f05dad3a remove hwdef from hack reviewer
2e6ec2414c8 Remove unused function
2e8b409a5ff Rewrite Subresources godoc.
164fefa9483 Update codegen
2119555e02b Add subresource to operation, do not special case subresources in validation-gen
2073ba2372b pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on
2b3f2aa705c propogate error
10c5bdd6a1a Apply feedback
36685c6f1ce Add information about expected status
6c89041043c fix(scheduler): node pre-check logic to consider NoExecute taint effect
e36a168a630 test/e2e/node/kubelet_authz.go: fix SAR to include service account groups
aeb43eb22f6 Migrate ExtractCommentTags to ExtractFunctionStyleCommentTags
1ec7231f633 DRA node: reject static pods which reference ResourceClaims
2ea4b1aba60 golangci-lint: don't warn about conversion and defaulting functions
15d9a93d7c8 golangci-lint: redirecting stderr raced with termination of script
3b5cfeaf204 DRA: use v1beta2
b262d56165f DRA: client-go wrapper with latest API as types
8e9abfaf217 DRA: v1beta1 <-> v1beta2 conversion
d7a64d68b56 DRA resourceslices: clarify code
a171795e313 DRA resourceslices: better error reporting
6392b54e12a DRA resourceslices: avoid update loop when partitionable devices feature is off
5af026120a1 test: bump agnhost image to 2.54
e5ffec242a3 Bump CNI to 1.7.1
47fddb08f75 Expand has() tests for omitempty and omitzero
c2c003a71fc update k8s.io/utils to bring fakeClock.Waiters()
b3bf5ed0ee1 verify-shellcheck.sh: normalize KUBE_ROOT using pwd -P
a1a6208863e use the minimal shellcheck image instead
e0983dbee87 remove unused shell imports in verify-shellcheck
7b50c8a510f jwt: support CEL expressions with escaped names
784c589a77a Check for newer resizing related fields after expansion is successful
6bb6c993429 Drop null creationTimestamp from test fixtures
41805aff915 Update runtime convertor to honor IsZero()
bc605171713 bump cbor to add omitzero support
06b0784062f bump structured-merge-diff to add omitzero support
fdf0bb41a44 Omit null metadata.creationTimestamp
79891eac8bb agnhost: bump version to 2.54
09912f35219 Make ToUnstructured match stdlib omitempty and anonymous behavior
49f765e2b3c Remove redundant Required validation for IngressRules
c78556fb4b9 agnhost pause: report signal, support termination message
a6549edd1a7 kubeadm: use named ports for coredns probes
0faeb5a0d09 golangci-lint: move into hack/tools/golangci-lint
5d9a2f30f28 golangci-lint: finish migration to v2
9bada79de10 DRA node test: fix useless gomega.Consistently
4adb58565cb chore: bump golangci-lint to v2
f6d0498017f Continue alias creation when __completion is used to enable completion
dceae3b3889 DRA e2e: avoid terminationGracePeriodSeconds
56e533f4a08 servicecidr: only patch status if necessary
7fedcc34e49 refactor default service cidr sync status logic
edda4b02d61 fixup! Introduce special handling for updates involving a single resource slice.
6d8b41fac66 Introduce special handling for updates involving a single resource slice.
2e98d87c561 api: Fix typo in word "immediately"
5441f5fdef7 jwt: add unit tests for using CEL with deeply nested claims
43ce37ed481 Address feedback
7e1cec680e5 e2e: Deduplicate cgroup verification
cc4c14d4cb2 Disable size check for xfs/ext3/ext4 filesystems before expansion
48054afd6ac Relax external signer path validation to allow relative paths
5712881cac1 Disable disk size checking when calling NeedsResize function
e500f94519c add missing space in string concatenation (kubeapiserver)
c5a2c69b943 add missing space in string concatenation (kubeadm)
43a0da5880e add missing space in string concatenation (kube-proxy)
66b8a8427cf Fix CEL equality bug for structs will nil field not marked as omitempty
1b9386aac37 Add comment explaining the metric sampling logic for plugin execution metrics
0a4ab936763 fix incorrect comments
4d5d48da706 Remove unused volume limit constants
3a5dda78afd e2e network: blue green deployments
ea644182714 Appease linters
43d6ea12e3f jwt: refactor CEL eval to drop unstructured and map[string]any
064074c07ac Add lazy reflective CEL object wrapper
903d6d4f030 Don't reinitialize test framework during each test case
a56378d9fcb Update UserNamespaceSupport feature gate name
3cadb6ff808 DRA test: update examples
c6f652d5fe0 Refactor pod failure policy defaults
68b1a950f9b kube-proxy should check global IPv6 enablement
2080bafa154 Add sunnylovestiramisu as Reviewer
d6b45bc98d9 [FG:InPlacePodVerticalScaling] clean code resize test
dddfeb4a0e4 Handle unsupported node expansion for RWX volumes
62ddcfba575 kube-proxy: conditionally skip e2e
8bb7b056378 dependencies: github.com/client9/misspell -> github.com/golangci/misspell
ad40bc88568 kubectl describe service: Add Traffic Distribution
28e7acf0f93 improve display format
f30c23a7831 kubectl: sort configmaps alphabetically to avoid random order
db960d10078 Fix openid discovery docs with external jwt signer.
1869f6f23a9 Fix typo in service account config test.
c7a870135a3 nftables: cleanup service chain checks
494b2b563f8 use testing.TempDir and delete helper function
efcceee903b reduce assignment
f42ee7a2d67 use slices package to reduce the codes
9cb3dfb5d3c kube-proxy: log errors during proxy boot
2d337f5151b Retool validator utils realType and unaliasType
835bb2ecc5c Change v8n context.Type and Parent on typedefs
6ea1db51a75 Disallow pointers as listmap keys
fc7f0173577 Handle typedef fields in optional validations
9d519c7c46e Fix immutable validation for structs with pointers
0b190b81748 Add test cases for immutable to verify pointers
855918f75c2 Add tests for optionalness of typedef fields
7a24c4ce5d9 chore: update github.com/google/cel-go dependency to v0.25.0
addaf680aed remove v1.31.0 api testdata
86a43f4b539 Add v1.33.0 API testdata
89156452aeb fix nil pointer panic on windows node
00908ce2d13 Wait for resource quota status to be populated
d5bf33e7d71 update-codegen.sh: automatically install protoc
8a2f367ec3e automatically install goimports when running update-codegen
1473aeaac4d add goimports to tools module
540ea5949f3 skip kubectl proxy env tests when the host is localhost/loopback and would not be proxied
1214dc223c7 kubelet: Use node addresses from informer
c0b2f341a72 clean up cloud provider code because cloud provider only supports empty or external and cloud is nil
187b43d5ada enable dep-approvers for staging go.mod/go.sum
f50ad91ed76 Create a single TypeDiscoverer for all inputs
08794974b79 track gopkg.in/yaml.v3 as an unwanted depdendency
aee4945252f alculquicondor stepping down from sig-scheduling approvers
58e5dfd45c4 attempt to re-introduce dep-approvers for go.mod/go.sum
74e84dbf5a3 Add more test cases to TestDescribeSecret test (#131422)
6eff9db0f10 chore: Add VeryShortWatchError typed error
92359cdc69d update godoc for and rename observedGeneration helpers
932cff5dd41 add more error details to the failing cgroup check
c3bb59d078a Fix etcd3 watcher flake
0d3d2733f60 Update go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful to v0.44.0
a2281f97bb0 bump fsnotify v1.9.0
44d7132afbf Update hnslib version in Windows KubeProxy.
7c53a5aaa4d Remove feature label NodeOutOfServiceVolumeDetach
f74424bd7c1 etcd: better logging
24257f2d316 Remove deprecated scheduler cache metrics
269d3ae5147 Fix comment for default gRPC log level in DRA plugin
2ea68920776 Always check for Immutable selector in Deployment Replicaset Daemonset (#131017)
947a9f26fa3 Move pod resize e2e utilities out of e2e/framework
609e4a9ba04 Unhandled panic crash on rollout_history printer.PrintObj (#130503)
fa8e37f7805 Allow disabling caching for webhook authorizers when using `apiserver.config.k8s.io/v1{alpha1,beta1}.AuthorizationConfiguration` (#129237)
1db2d6a0184 Mark NodeExpansion finsihed without featuregate check
70ebe90b139 Also change final status by removing featuregate check
849924b6ba5 Increase delay in kuberuntime termination order test to prevent time rounding flake.
0e40ed642bc Check for newer fields when deciding expansion recovery feature status
4fa090bd812 Remove alculquicondor from test framework OWNERS
6a17858ff9b CHANGELOG: Update directory for v1.33.0 release
90de4b58943 Remove warning about resizing failed for unknown reason
41809284025 Update cri-tools to v1.33.0
f63702de0f9 scheduler: return UnschedulableAndUnresolvable when node capacity is insufficient
d10eb869276 fix: Fix non-constant format string in framework.Logf call
b9a6a257b7d add TODO for unifying .go-version
5c84ee07eee test/images: read .go-version instead of duplicating
722581f5f68 Expand etcd data test to n-3
c21f26895c2 Fix VAP test for v1.34
bfcee664500 Bump DefaultKubeBinaryVersion to 1.34
27815acee14 remove outdate comment
64b4c96e20f fix: use correct apiextensions v1 API instead of apiregistration v1
a53ea3357c2 Updates prober_total_total to BETA and updates the list of stable metrics
f844abfc6f9 Fix typo in ResourceEncodingConfig comment
ff108e72a52 DRA device taints: fix rare unit test flake
97dd6dc2846 Add warning message for attach
8672956f730 etcd: use Unix Domain socket for testserver
33f16a55ba2 etcd: fix 5 second delay during shutdown
ff2e6dddc8b DRA device taints: work around fake.ClientSet informer race
638abf03396 DRA device taints: more logging in test
40f2085d68a DRA device taint: clean up test initialization
091d09b4479 deflake e2e tests: CustomResourcePublishOpenAPI works for multiple CRDs of same group and version but different kinds
db1e107150d Job: Fix API comments for SuccessCriteriaMet
ac3274521be scheduler: remove duplicate nominatedNodeName clearing in preemption
373866eee99 Build etcd v3.6.0-rc.4 image
7fcc1bcf1d1 chore: move watch handler tests to handlers pkg
3fcb26f0179 reduce etcd install log noise
3e609ecf6e9 fix: Watcher deadlock from Stop not being called
c704025a0eb Fix error handling and csi json file removal interaction
1654aa619c2 deflake intergation test: TestEndpointHandlers
3d53bfec09f Typo fix: watchActcion
4e3026fdb81 pr fix
7d6f86594fc kubectl: sort secrets alphabetically to avoid random order
8f1326251c2 Improve Job API comment for the backoffLimit
9d5f78a990a Update OWNERS_ALIASES add aojea to sig-network-api-reviews
e8dbfc0b6ff add miss Shutdown call for selinux_warning controller
405b9e80221 Check expected emitted events with assert.Equal
5ebeb8defac don't only run events in nested lists consecutively
614b1e90170 Run all permutations of events in ResourceSliceTracker tests
29b499e2ba4 simplify applyEventPair
45b0ddff12c make input events a slice
3883e050fc1 Use shared test fixtures for ResourceSlice Tracker test cases
7f21df6ab14 resolved review comments
5928fc0e600 Add ContainerIter utility for ranging over pod containers
3b2cd123479 fix(kubelet): acquire imageRecordsLock when removing image
6d6abaab7d1 Simplify etcd3 watcher
b82fd6c2888 add e2e test for healthz/
8bc7e6c10e0 add etcd server overrides to etcd probe factory for healthz and readyz
b141ac6a235 adjust container_spec_memory_limit_bytes e2e to range: ppc64le is 44*1024 less
2aa39a0c77c Update the busybox test image to 1.37.0
f9c1876b45d Make proxy CleanupLeftovers methods quieter
b61ca041b45 Add some missing cleanup to "kube-proxy --cleanup"
c1ff9cf4e81 chore: Upgrade the mockery version to v2.53.3.
ffe235d2dd3 replace context.TODO with context.Background in tests
4bd0c024e9d add goleak to kubelet vendor via hack/update-vendor.sh
161b44d04ed add missing header in httpstream_test.go; whitespace in imports
79150d1ecf1 add unit tests to verify the fix
42d3716d727 fixed the formatting
268033a5116 Fixed go routine leak in kubelet tests
30f1bcadea4 Add a unit test for iptables.CleanupLeftovers, improve ipvs test
94530dad7b7 Move iptables/ipvs/ipset interface creation into CleanupLeftovers
975e653af44 RWX tests should create RWX volumes
5ad90c3b63a merge RunBenchmarkPerfScheduling and runBenchmarkPerfScheduling
780c0d67251 add license description in options.go
4f33b74a35c Use Go 1.24 os.Root instead of filepath-securejoin
5677f7ab0b1 Make Request#RequestURI honor configured context root
b206264ffba Shorten long directory names with e2e pod logs
2800c16c8b9 Remove FlowSchemas handling non-leases-backed leader election
16f4a5c4eac cleanup unneed code
88fbccd6982 Fix the allocatedResourceStatuses Field name mismatch in PVC status validation
302a8505833 Update coredns version to v1.12.1
d4fd41285b8 update the log message to reflect success and failed jobs
cc42846187b Fix for HNS local endpoint was being deleted instead of the remote endpoint.
551f3c7824d merge the integration tests into a single one
de98a71ff57 Update PodSecurityLevel used during Service CIDRs tests
58ff3129add update kubelet_authz.go to new test framework
c7d0ed5c488 add integration test for job failure event delay and remove the unit test
6747bf7a9cb Clean up leaked goroutines in cache unit tests
04d0715e663 scheduler-perf: add option to enable api-server initialization
16af0d79d87 update sig-autoscaling maintainers
653f48d8867 Certificate store: ensure data is written to disk
5a14fdbf7f3 e2e: Keep original error when exec in container fails
9c228e81d24 Increase kubectl cp command timeout to 30 seconds
310b395a04f [cloud-provider] respect the "exclude-from-external-load-balancers=false" label
ae08504ca62 Remove unneeded return values
2c94112a026 Disable thresholds for PreemptionBasic and PreemptionPVs tests
f7d8853213d Add dom4ha to SIG-Scheduling approvers
8e65a62b3fd Deduplicate MilliCPUToQuota function & constants
3067bbfe159 hack/ginkgo-e2e.sh: fix misplaced brackets
5e4600e46ba e2e service ip preservation test
f7e82d8059d clarify mutual exclusivity of service account annotation keys in godoc
4fa96391457 kubectl http proxy e2e: do not append os.Environ() redundantly
f7f4aa02baf kubectl e2e: debug appended environment variables
5aa61f84797 Test tooling: fix agnhost pause command
65b8fba34bb Mask Linux thermal interrupt info in /proc and /sys.
0ff1e3778f1 Remove general available feature-gate PodDisruptionConditions
fe14689f221 bump k8s.io/utils
1c3dc397ae1 make update
8af1629f7ae remove inaccurate hostNetwork doc comment
bad6c7e4cc5 Set LANGUAGE env variable in TestDiffProgram for consistent locale behavior
c005b85d4df Reduce locking duration on cache to fetch data from Cache
252d584cb73 Implement validation-gen lint for CI
1a694bfd328 Make validation-gen lint errors easier to read
8dc6806d26d Expose NodeInfo to PreFilter plugins and Framework
5413d0edfa4 chore: correct the comment on UnschedulablePlugins
8db5f061838 adding commits of the original PR
1b8bbcac44c Add integration test
1402a54917e Removed unused function UncompressLog.
88a3c000e5b Implement CSI e2e test for MutableCSINodeAllocatableCount
d868eeb0889 Migrate pkg/kubelet/status to contextual logging
7f263b057dd Tag api change instead of apimachinery on generated openapi. changes
4120ed1df05 chore: `make update` for doc changes
356e148045e fix: comment on preferred PodAntiAffinity
a2624f9c64b make update
21f7026c25c clean up CSIDriverRegistry
a68501da72b Add check to see if promote worked within the retry loop
53499d97eec prefer error over bool, prefer Should(gomega.Succeed())
d54ff7441e1 test: don't panic during an Eventually retry loop
cab6045a40f hack: remove verify-e2e-suites.sh
73afab1856c handle review comments
51fdd55e87e use sync map for the cache
3a5f8b4b99c Update OWNERS_ALIASES for sig scalability
547c005cb7f handle job complete update delayed event
410ada00220 Made the unsupportedError msg more readable
780fac5a37d chore(kubelet): migrate network to contextual logging
125b8d2809d Removed kubelet test duplicate line.
c1efa2e1618 delete test/e2e/common/storage/volumes.go
42943796244 e2e storage test: intree driver adds the support for nfs v3
6df869347bc remove outdate comment about pv controller
32999059054 Based on the issue #8304 add mfahlandt as ne Co Chair for Contributor Experience
9a60ea01f9f fix getPodMatches should call /runningpods endpoint
5da366e3efa Update pkg/quota/v1/evaluator/core/resource_claims.go
ce7d3ea00cc fix wrong api version in toExternalResourceClaimOrError
0f0f9d01c0d remove out-of-date comments about version
c2b455f55c6 remove unnecessary functions
44d31af29bf Add example in etcd override flag help text
3dc611e6666 fix container lifecycle e2e tests
4a4fb0a11ce Fix LC_CTYPE for kubemark start scripts
ea644981df4 Update pkg/controller/certificates/cleaner/cleaner.go
1e1e2dee909 Update pkg/controller/certificates/cleaner/cleaner.go
006ebbc33a8 Fix comment typos
4bf5f1a6b31 kubelet: add coverage for identical kubelet config and drop-in config content
eae133919f0 fix: killPodOptions support JSON serialization
55ba8f063b1 kube-scheduler: Fix a misleading error message in the VolumeRestrictions plugin
a52863827ba [kubectl] drain daemonSetFilter with other APIVersion
9f50740b7bc Simplify span handling
c64b6f80eb7 Trace across start handler invocations, nesting spans
6fd8954fe86 kube-controller-manager: also support context for record.NewBroadcaster
bea35b1f565 remove non-lease resource locks in tests.
ff74405bd39 kubelet: remove --register-schedulable flag
05be83b3848 tracing: set audit-id on incoming requests
eda71f9e958 cleaner.go should use time.Until instead of t.Sub(time.Now())
1354bb9e2ea Update log verbosity for node health and taint checks
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
03eb707025 |
docker-distribution: update to v3.0.0-tip
We drop a patch that is now in the upstrem project, as well as the
new commits below:
Bumping distribution to version v3.0.0-63-g76fe6170, which comprises the following commits:
0e77b285 chore: labeler: add area/client mapping for internal/client/**
2f1a51dc client: add Accept headers to Exists() HEAD
ad5d9994 build(deps): bump github/codeql-action from 4.30.7 to 4.30.8
6d764586 build(deps): bump github/codeql-action from 3.26.5 to 4.30.7
11519e6d build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
99c47b61 build(deps): bump actions/labeler from 5 to 6
e1e5d051 build(deps): bump actions/setup-go from 5 to 6
f5512709 build(deps): bump actions/upload-pages-artifact from 3 to 4
0fb77d6a Fix broken link to Docker Hub fair use policy
251bf1b9 build(deps): bump actions/checkout from 4 to 5
6e59b824 Fixes #4683 - uses X/Y instead of Gx/Gy for thumbprint of ecdsa keys
b559f27a Switch to UUIDv7
b39441b1 Fix markdown syntax for OTEL traces link in docs
53dde7fc fix: set OTEL traces to disabled by default
68cd681b docs: Add note about `OTEL_TRACES_EXPORTER`
1fc84617 fix tests
02b1f6e3 fix(registry/handlers/app): redis CAs
bb278c2b fix: fixed data race in TestSchedule test
b09be3d6 build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
6970080b s3-aws: fix build for 386
e629f886 docs: Add OpenTelemetry links to quickstart docs (#4270)
fea36383 refactor: replace map iteration with maps.Copy/Clone
369663e4 Fix S3 driver loglevel param
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
424f6c5701 |
docker-moby: update to docker-v29.0.0-rc.1
Along with the listed updates, we also update the cli, adjust our build
path (it is now under moby), refresh patches and explicitly export
trimpath to avoid QA warnings.
Bumping moby to version docker-v29.0.0-rc.1-54-gd1a720cb15, which comprises the following commits:
5fa3c65682 client: Client.PluginList: add options-struct
aa36c44ef9 api/types/volume: move `UpdateOptions` to `client.VolumeUpdateOptions`
709336a2c3 api/types/network: EndpointSettings: make MacAddress "operational data"
e84bbc09b1 integration/container: fix daemon min API version
1caf3dd3b2 integration-cli: TestDockerCLIBuildSuite/TestBuildEmitsEvents: reduce logs
acfe4e8613 gha: add support for docker-v* tags
b87ed4512a integration/container: fix test using wrong daemon
ecd7551310 daemon/server/router/container: fix back-filling of top-level network fields
865cfe9a7f client: VolumesPrune: rewrite to use option structs and result
b11d9d410f client: NetworksPrune: rewrite to use option structs and result
0672a0f999 client: ImagesPrune: rewrite to use option structs and result
91323b7a35 client: ContainersPrune: rewrite to use option structs and result
d9a03a374f daemon: consolidate "log-level" and "log-format" options and flags
4e6c955e78 daemon/command: configureDaemonLogs: don't panic
06ff7d9cd4 daemon/config: add validateDaemonLogConfig function
c73fe6d26e daemon/config: move daemon log-config to a separate struct
a6cf5e19e8 daemon/command: remove placeholder
c584855329 daemon/command: configureProxyEnv: accept smaller struct
0a2ab376ff daemon/config: slight cleanup of Config struct
69702bd821 fix minor linting issues
3b075a79b9 api: remove image inspect `Parent`, `DockerVersion` from swagger docs
d62a521c7d daemon: initialize volumes if nil on decode
a65293c036 libnetwork/osl/kernel: ApplyOSTweaks: don't log errors if not found
adb4269928 api/types/image: remove deprecated Summary.VirtualSize field
2537eae6f3 api/types/container: remove support for config mac address
e77f116c9c integration: remove some version-gates for API < v1.44
2c59be7011 daemon: raise default minimum API version to v1.44
47fe719b33 api/types/build: remove deprecated BuildCache.Parent field
36f1c830bb add back replace rules and re-vendor
45caa74e3b api/types/sytem: remove deprecated DiskUsage.BuilderSize
a5d9619093 api/docs: remove BuildCache.Parent field for API v1.42 and up
e1722eb8d8 daemon/command: disable c8d snapshotter when userns remapping enabled
1aa73144f2 update to go1.25.3
5e9e261107 vendor: github.com/moby/moby/client v0.1.0-beta.2
01a19e9d95 vendor: github.com/moby/moby/api v1.52.0-beta.2
b1e57881c3 gha/labeler: disable sync-labels to preserve human-added labels
3848b16bca Removed all occurrences of wrapError in libcontainerd/remote
28018a51d8 update to go1.25.2
39cf847787 api: regenerate with go-swagger v0.33.1
b4c3b29245 Dockerfile: update to go-swagger v0.33.1 (for go1.25)
bbdd24d145 api/templates: align with go-swagger v1.32.3
b3f74e85aa Dockerfile: bump gotest.tools/gotestsum v1.13.0
ac3960a44c api/types/container: omit `Config.OnBuild` when empty
0ee0283c9d gha/labeler: Some more file-based rules
15289ad2dc client: Filters: add Clone method
a6206f2da9 dockerd-rootless: default MTU 65520 for slirp4netns
7e63d2a81b dockerd-rootless.sh: if no slirp4netns, try pasta
cfdb9068f0 client: ImagePullResponse: use sync.OnceValue
3c44bd67b2 client: ImagePullResponse: don't panic without reader
4210e4ad16 daemon/internal/netiputil: make "MaybeXXX" functions a function, not var
4c6e571d38 api/pkg/stdcopy: move stdWriter to daemon/internal
8cf0529a8c api/types/swarm: add documentation to clarify virtual IP address type
c2812dc285 api: fix swarm network field from addr to prefix
9912ccd7b3 Clean up bridge device on network create error
e6bac8983b introduce ImagePullResponse to manage JSONMessage stream decoding
7652f38c28 client: remove API-version compatibility for API < v1.44
7ea066c8d1 client: add Filters type
778e5bfad3 api/types/filters: move to daemon/internal
96b29f5a1f client: remove support for negotiating API version < v1.44 (docker 25.0)
ef5feb4992 vendor: golang.org/x/net v0.45.0
3f75e2116f vendor: golang.org/x mod v0.28, net v0.44, text v0.29, crypto v0.42, tools v0.37
6de0417884 vendor: golang.org/x/sync v0.17.0
4bc628581d vendor: golang.org/x/sys v0.36.0
9169ed2873 client: touch-up some godoc
04318e0d86 client: update some tests using obsolete API versions
ca9c5c6f7b vendor: github.com/moby/swarmkit/v2 v2.1.1
1b1608f2cd hack: add patch to buildkit tests
3c418bea4e vendor: update buildkit to v0.25.1
0aed907a86 update to go1.24.8
0cc04d0c5c Network restore, don't update config to match state
b1e20b6a3a api/types/system: remove deprecated Commit.Expected field
1a7d7cc015 builder: use proper percentage calculations for default gc policy
dbcbe87d52 ci: fix cache for go modules
f8d3c4e4a7 api/types/image: InspectResponse: remove deprecated Parent, DockerVersion
1a81903854 api/types/image: InspectResponse: remove deprecated fields
a8dd9c5025 daemon/pkg/plugin: stop propagating Plugin.Config.DockerVersion field
1d3687aeee ci: update gha cache attributes
a99b7947e1 daemon: stop propagating Image.DockerVersion field
f6e1bf2808 Rework Go mod tidy/vendor checks
45a728a13b image inspect: fix legacy fields for API < v1.52 response
fdd61821da use consistent alias for docker image spec
c4fda95bea api/types/plugin: deprecate Config.DockerVersion field
a9a1ac3c45 Dockerfile: update compose to v2.40.0
94ab6a9c5e Dockerfile: update buildx to v0.29.1
b9ac2cea0c Dockerfile: update cli to v28.5.0
222a3fe94e integration-cli: remove deprecated buildImage utility
bd8a99b400 api/types/image: InspectResponse: deprecate Parent, DockerVersion
288b9f033b integration-cli: remove deprecated buildImageSuccessfully utility
15bef6ff1a daemon/server: move GetImageOpts, ImageInspectOpts to imagebackend
95e77d6861 daemon/images: minor linting fixes
e204ba1dca daemon/internal/compat: add extra fields recursively, and don't replace
50269e6e39 api/types/swarm: remove `PortConfigProtocol`
ea76dbefeb api/types/swarm: deprecate PortConfigProtocol
c646091d57 api: move container port type to network package
038bfbfbd4 api: omit legacy fields from image inspect if not set
f289cb2d7c api: docs: sync v1.52 yaml
d6899ca5a5 api/types/registry: use netip types as appropriate
fd4329a620 api/types/container: use netip types as appropriate
d5c838dc5e internal: move sliceutil from daemon/internal
a90adb6dc1 api/types/network: use netip types as appropriate
ef31514a9f api/t/network: move IPAM validation to daemon
4d6a2be79d api/t/network: validate EndpointIPAMConfig in daemon
2da472b1a5 api/types/system: use netip types where appropriate
cc082add87 api/types/swarm: use netip types as appropriate
46ab36ae46 daemon/internal: move netiputil from libnetwork
470f5b50a5 internal/sliceutil: map nil to nil
df506c107e negociate content-type used by /events API
0ad35e3ef0 Add existence check for go.mod and go.sum files
cb3abacc52 api/types/container: add network port and port range types
c46704a80f client/build_prune: Wrap result in a struct
a35b3cd149 client/build_cancel: Add options struct
3f3bbe4430 vendor: github.com/moby/buildkit v0.25.0
9a32a7e0d1 daemon, client: remove version-gate for daemon-side AutoRemove
af5988238a client: reduce uses of obsolete API versions in tests
eafca64a6b daemon/server: implement image-inspect with "compat" package
51cbd2ed16 api: swagger: remove VirtualSize fields for API > v1.43
a7edbe8e5f api: remove support for `KernelMemoryTCP`
fb2f8115c8 api: deprecate `KernelMemoryTCP` support
eff4f064a3 daemon/libnetwork/internal/kvstore: remove unused ErrBackendNotSupported
1697aecbd5 daemon/libnetwork/internal/kvstore: remove unused BOLTDB and Backend type
94bcf89412 Eliminate warning about endpoint count store delete
08d014cac8 api/docs: remove email field from example auth
344ab458a1 api/types/registry: remove deprecated AuthConfig.Email field
3241d46525 client: Client.doRequest: adjust error matching for TLS1.3 handshake
b8fbd0539e vendor: github.com/deckarep/golang-set/v2 v2.8.0
178d697484 integration-cli: adjust TestHTTPSInfoRogueCert for TLS1.3 handshake
efa077848f api/types/storage: define generic `Storage` type for container inspect
77bf85647c contrib: add docker_client SELinux policy module to access socket in container
b48fcf6cdb client/checkpoint_list: Wrap result in a struct
646e068cf1 api/checkpoint: Don't return null if no checkpoints
38fb0dd10c Add build tag "no_libnftables"
062479f95c vendor: github.com/hashicorp/go-memdb v1.3.5
3912ffacd6 integration/nw: TestEmptyPortBindingsBC use context
e80e2908ba dockerversion: use t.Context() in tests
aca0adfb97 daemon: use t.Context() in tests
8905c3052b daemon/libnetwork: use t.Context() in tests
01f9186d6d daemon/logger: use t.Context() in tests
c1c9087404 daemon/containerd: use t.Context() in tests
544f8f53ed daemon/builder: use t.Context() in tests
415274d62a vendor: github.com/opencontainers/cgroups v0.0.5
73ed41ef79 vendor: github.com/coreos/go-systemd/v22 v22.6.0
0f393630f8 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
6db6de2c20 Use libnftables in dynamically linked binary
e8d3609031 hack: use custom ref for buildkit tests
21d2d55500 vendor: update buildkit to v0.25.0-rc1
de5e64b3bd Add option WithSetNsHandles for testutil SetupTestOSContextEx
0fb46d08ad api: docs: remove deprecated BridgeNfIptables, BridgeNfIp6tables
362d4d9538 testutil:SetupTestOSContext - don't leak namespaces, netlink handles
a32a53ae01 daemon/containerd: pass custom metaHeaders to resolver
2223b7f582 daemon/server/imagebackend: add PushOptions struct
9d53093db6 daemon/server/imagebackend: add PullOptions struct
cbafff64e4 project: mark 23.0 branch as unmaintained (EOL)
5d22d9bec9 integration/service: rename var to prevent shadowing
471f24bafc daemon/server/backend: CreateImageConfig: change "Pause" to "NoPause"
bad3dfe9cb client: ContainerCommitOptions: change "Pause" to "NoPause"
1135ab0283 Dockerfile: update xx to v1.7.0
f5847040cc client: Client.negotiateAPIVersionPing: trim v-prefix before handling
af3f971431 client: TestNegotiateAPIVersionAutomatic: gofumpt
a8cb35f01a client: TestPingHeadFallback: check method, path, and fix example response
87d1da50f0 test: migrate test api network get defaults and filter
d9cdfd2887 client: remove unused Client.HTTPClient() method
d4d93bf558 daemon/container: remove State.ExitCode() method
ee4b7a8374 daemon/container: remove NewState() constructor
d06f0d008d explicitly access Container.State.Health.Health
0df791cb72 explicitly access Container.State instead of through embedded struct
aa492314a1 ipams: Re-enable legacy remote plugins support
41a6ad5def client: remove deprecated ImageListOptions.ContainerCount
02c4bb6a0c daemon/config: More tests for DNS addresses
f7ed1b84d2 client: ImageList: don't discard reference filter on API < 1.25
d60b4ea278 client: fix version-gate for readonly-recursive mounts validation on service
0673d43663 client: remove "version" header for service create, update
9fc12daf80 client: remove version-gate for "--force" on "volume remove"
839c2709af client: WithMockClient: match version behavior of actual client
8f8a2db52c client: rename validateAPIVersion to validateServiceSpecForAPIVersion
0468dac252 client: Client.ContainerCreate: fix panic when passing a nil config
6d0551e13a api/types/network: CreateRequest: remove deprecated CheckDuplicate field
50ea842e17 client: separate exec methods to ExecAPIClient interface
94309db0aa daemon/server: Server.makeHTTPHandler: pass Route as argument
81506ad8b1 daemon/server/router: NewRoute: don't use un-keyed struct literal
82e5d3064a client: ImageBuildResponse: remove OSType field
5028ff1f40 integration-cli: remove startContainerGetOutput, runCommandWithOutput
2a867f0c4d daemon/server/backend: remove ExecInspect, ExecProcessConfig alias
ff21989215 api/types/container: move ExecInspect type to client
c1be6ef5de api/docs: remove KernelMemory option from old API versions
c5991341eb remove support for deprecated kernel memory limit
20d8342a4b move endpoint API version constraints to API server
b70c1a439d gha: add missing dependency to Windows workflows
18b289f9df daemon/server: fix requests not logged with --log-level=trace
839e46f97c client: remove support for API < v1.22 filter format
a83d91f427 API: /info: remove `SecurityOptions` re-formatting for API < 1.25
082b4e8d77 client: move ExecOptions to client
6a642300f0 client: move ExecStartOptions, ExecAttachOptions to client
c8c13fe058 API: /info: remove magic `<unknown>` values for API < 1.39
c600f62c25 api/docs: sync swagger and update changelog
6084882b98 client: tidy go.mod
2bb0443ae9 Release IPv6 address if unused due to sysctl setting
252659278e Configure addresses before adding them to DNS or /etc/hosts
18b8e369ae Split OS-specific code out of Sandbox.populateNetworkResources
a8b9eff902 Don't set up DNS in Network.createEndpoint
ddf10ee1cd Delay Endpoint config until the osSbox exists
b043980e6f daemon/config: remove deprecated CommonConfig.CorsHeaders
4c7deaf832 Windows containers: restore network name after reboot
9129094b98 Windows containers: report HNS network name in inspect
aa78f19066 ipvlan-l2: do not allocate a gateway address from IPAM
468e3521b0 macvlan: do not allocate a gateway address from IPAM
caae209d25 api/types/container: remove deprecated ExecOptions.Detach
19edf44896 daemon/config: remove deprecated Config.
fabe66322f builder/remotecontext: remove deprecated "Rel()" utility
cf243b64aa daemon: fix build after revendoring api module
c2c2b80e90 daemon: report IPAM status for Swarm networks
b092c8ca64 api/t/container: drop NetworkSettingsBase
fc1ff44bc2 api/t/container: drop DefaultNetworkSettings
d5d3716705 daemon/i/compat: disable HTML encoding
8efe6b0183 Add TestJoinError
73413ea693 bridge_linux_test.go: gofumpt
52c9cfd016 Use sbLeave to roll back on error from sbJoin
53390f85dd Put clearNetworkResources() inline in its only caller
916fa31ab5 Acquire Sandbox.joinLeaveMu for Endpoint force-Delete
a9db1e9a26 Endpoint.sbLeave: don't load ep from store
b192d06ec7 Remove network info from container when endpoint join fails
1b74b3e1ce api/types/events: Message: remove deprecated Status, ID, and From fields
5815eb82ee daemon/events: omit deprecated event fields on API >= v1.52
c4eb791dba daemon/events: remove tests for deprecated API fields
33a05ac344 daemon/internal: add "compat" package for legacy responses
3f86797d3f api,daemon: report IPAM status for network
ee8abb845d d/libnetwork: move uint128 to its own package
65ffac3dbf internal/iterutil: add Chain, Chain2 iterators
ee24728b1e go.mod: replace client
139b6464b5 api/docs: fix events example response
f8925bac6f daemon: Do not default to c8d image store on Windows
bdd0a2a970 gha: extract vm test to a separate workflow
8c8324b37f Dockerfile.windows: remove deprecated 7Zip4Powershell
9d2e74d43d gha: Add automatic PR labeling for modules
705f26010e client/image_inspect: Unexport ImageInspectOptions
67c8064bb3 client: remove ImageInspectWithAPIOpts function
5303799297 go.mod: re-add replace github.com/moby/moby/api
2f1015482f libnet/d/windows: ReleasePorts: use errors.Join
fc86411353 libnet/d/windows: inline releasePort
9efc1cc264 libnet/portmapper: rename, move PortMapper to portallocator
4b230a4909 internal/testutils: merge with internal/testutil
d3e45f8743 testutil: move back to internal
af677b61a5 libnet/portmapper: clean up windows port mapper
90f31c6c27 libnet/portmapper: remove dead field bridgeName
f6e5b3afc5 libnet/portmapper: drop unused NewWithPortAllocator
9e7de1b679 libnet/portmapper: remove unused field proxyPath
f6c59f9779 libnet/portmapper: merge mapper.go & mapper_windows.go
b48442db4c libnet/portmapper: remove dead DeleteForwardingTableEntry
32710d3e5e libnet/portmapper: remove dead AppendForwardingTableEntry
eb2e296711 daemon: GetContainerStats: use errdefs for error-type handling
97eceb266a errdefs: remove deprecated IsXXX utilities
2d73fed24e update AUTHORS
37de02378c Prepare release notes for v2.0.0-beta.0
de4ae66d08 Update client vendor to use tag
b5dde0234c add back replace
1499623a9d go.mod: update client to v0.1.0-beta.0
0525ae2aed api: image inspect: remove temporary backfill for Config fields
d98a8c59ab testutil/daemon: fail gracefully if DEST is unset
8995619b9d testutil/daemon: fix DOCKER_USERLANDPROXY env var
b5035def03 Prepare release notes for client/v0.1.0-beta.0
76964752d3 Update client api version to v1.52.0-beta
a1e3a109ee api/docs: sync v1.52 docs with latest
0fe1af95f3 api/docs: remove temporary "full" example for image config (v1.50, v1.51)
7bfbb6e8ca api/swagger: remove temporary "full" example for image config
2d1af4e4e4 api/types/build: move build options to client and backend
5232d82c1b daemon/server/backend: move build options to buildbackend
8b8a3cb14c api/types/image: move LoadResponse to client
a8afc2c6fb api/types/checkpoint: move checkpoint options to client
f1da80e8d3 contrib/check-config: check SCTP protocol option
d904f3b625 Prepare api/1.52.0-beta releases
4e30076e4d Add mailmap entry for Austin
e656f39952 api/t/network: generate more structs from Swagger
ea1c2530da api/t/network: generate Inspect, Summary structs
26e335b647 api/types/build: move `CachePruneOptions` to client mod
798abe8965 vendor: github.com/spf13/cobra v1.10.1
02a50be1f9 vendor: github.com/spf13/pflag v1.0.10
aaa9dd4e26 gha: skip "vm" checks if `ci/validate-only` label is set
ccf1363680 api/docs: update v1.52 docs with current swagger
c208f90796 api/templates: vendor structfield template
57ce548341 client: move container options together with their users
4d20b6fe56 api/types/container: move container options to client
c441b2ef19 api/types/image: make `InspectResponse.GraphDriver` optional
1a86389419 api/types/network: separate Summary from Inspect
f8bd170b2a daemon: validate args in network.New*Filter
ea1dfbda9e daemon: prune networks using network.Filter
f0d10ae733 d/network: filter networks individually
a4a90c2248 api: fix deprecation of "keep-storage" /build/prune query parameter
e46a991dc5 api: remove unused DefaultVersion, MinSupportedAPIVersion consts
30406d42e3 update to go1.24.7
e2e9f36c5f api/types/system: move `SecurityOpt` type and `DecodeSecurityOptions` to client
d47b0db4f9 vendor: update buildkit to v0.24.0
ca97d071b7 fix: client vendor with config struct changes
37d6a1909b libcontainerd/remote: wrapError: don't convert c8d errdefs error
36303969b9 libcontainerd/remote: container.NewTask: move vars to where used
f37094ad4f libnet/d/bridge: CreateEndpoint: use d.config directly
ae24edfc0d libnet/d/bridge: merge configure into newDriver
2436458227 libnet/d/bridge: Register: pass a Configuration struct
386a3a6bba libnet/config: mv config_{unsupported,windows}.go
18f2e61d08 libnet/config: rm config_freebsd.go
e099f1e409 daemon: Daemon.ContainerExecStart: fix typo in log field
6e512cc292 libnet/d/ipvlan: Register: remove unused config param
459f4f431d libnet/d/macvlan: Register: remove unused config param
43014a891b libnet/d/overlay: Register: remove unused config param
18efa5513d libnet: makeDriverConfig: drop support for label-based config
1470048e00 libnet: remove drivers_freebsd.go
4ea085187a libnet/d/bridge: export Configuration
7b75f355e5 daemon/srv/r/ctr: handlePortBindingsBC: fix warning
fbad7b568d libcontainerd/remote: task.Exec: log warning on cleanup failure
e67b3b0b90 libcontainerd/remote: task.Exec: rename processID -> execID
003e17ff5a libcontainerd/remote: task.Exec: preserve parent context during cleanup
167b0e9ea6 libcontainerd/remote: task.Exec: make defer error-handling more explicit
55c929c97f libcontainerd/remote: rename var that shadowed import
023ae2e218 contrib: remove udev rules for hiding loopback devices
0ca7ac3258 daemon: backfill empty PBs slices for backward compat
4d2a293ff3 libnet/drvapi: make NetworkAllocate optional
cbd04b6f08 libnet/cnmallocator: use a list of local netdrivers
478d1fc8ba Bump go.mod minimum-go-version to 1.24
269960a4c6 integration-cli: TestConcurrentPush: refactor to improve failure logs
8031b077bc gha/arm64: Setup qemu
ce338dec81 integration/internal: Print Buildkit logs
27fca93b65 c8d/history: Fix non-native platforms
ad830a47af integration/internal: Handle Buildkit in GetImageIDFromBody
f66f555ad4 graphdriver/windows: Potential fix for access denied
ea73c88d12 libnet/cnmallocator: rm drivers_darwin.go
18b21a32a1 libnet/cnmallocator: rm drivers_unsupported.go
60fa39d559 hack: temporarily use custom buildkit ref for testing
5682f65cca hack/dind-systemd: collect firewalld logs
03df89b84a hack/dind-systemd: enable firewalld debug logs
77ce202515 vendor: update buildkit to v0.24.0-rc2
3c83038936 hack: use heredocs in generate-swagger-api.sh
854ec0a1ad d/libn/internal/addrset: add popcount methods
b7c597ec35 api/t/ctr: deprecate DefaultNetworkSettings
c9fdad2552 daemon: marshal legacy `registry.ServiceConfig` extra fields for compatability
d0de293513 testutil/daemon: remove unused FindContainerIP
80bb864fd6 api/t/ctr: deprecate NetworkSettingsBase
16dc39136c api/t/ctr: deprecate NetworkSettingsBase.Bridge
20b679b4a6 client: Extract clientConfig for opt applying
9ddf9d87e7 client: Remove newMockClient
7cd089edd9 client/volume_test: Use functional option to create mock client
72e11d78d7 client/task_test: Use functional option to create mock client
a1e304f76c client/system_test: Use functional option to create mock client
407af72993 client/swarm_test: Use functional option to create mock client
124bba478a client/service_test: Use functional option to create mock client
98434a5ea4 client/secret_test: Use functional option to create mock client
c99f2eaf34 client/request_test: Use functional option to create mock client
8581a15c25 client/plugin_test: Use functional option to create mock client
0b577c703a client/ping_test: Use functional option to create mock client
d401228b43 client/options_test: Use functional option to create mock client
643e94ebf5 client/node_test: Use functional option to create mock client
5a82c3397e client/network_test: Use functional option to create mock client
be76beee8f client/image_test: Use functional option to create mock client
005a289703 client/distribution_test: Use functional option to create mock client
bc1d436aa9 client/container_test: Use functional option to create mock client
c70aac772e client/config_test: Use functional option to create mock client
6452807fb4 client/client_test: Use functional option to create mock client
a3d073e160 client/checkpoint_test: Use functional option to create mock client
17396e5d94 client: Add WithMockClient opt
09ecd74cf3 CI: add oraclelinux-8 for running tests with cgroup v1
1570ca934d Dockerfile: install fuse-overlayfs
e15c51a03d Makefile: propagate DOCKER_IGNORE_BR_NETFILTER_ERROR
ed78637b9a nftables: iterate over rules
9dc0c094e6 cmd/docker-proxy: set O_NONBLOCK unconditionally
12897011fa vendor: github.com/ishidawataru/sctp v0.0.0-20250829011129-4b890084db30
785ae9a0f9 Rework the interface to libnet/internal/nftables
cf913f5b0a d/cluster: use lockedManagerAction in more places
4b866fdcef d/cluster: add context param to lockedManagerAction
8839f53175 d/libnet: TestUserChain: fix error matching for nonexistent chains
fbde2bcb9a nftabler,nftablesdoc: stringify numerical dstnat prio
a4949b669e iptablesdoc: remove -n from iptables -L invocations
fc045ad139 libnet/pmapi: remove firewaller arg from Map/UnmapPorts
9b1c4ad3b1 libnet/pm/routed: don't set up firewall rules directly
9d9b05446c libnet/pm/nat: move back fw / proxy steps into the bridge driver
268e636b2b libnet/pmapi: let portmappers specify NAT/fwding rules
c6717f4387 libnetwork: provide endpoint name for IPAM drivers
5349095cd1 vendor: github.com/docker/go-events 605354379745 (main)
229a29649f vendor: github.com/moby/buildkit v0.24.0-rc1
071e6472db Unmap IPv4 addresses loaded from store
b721c4f4a8 daemon: minor touchups for backend system info response marshal
60c6e57b82 hack/make/test-integration: disable firewalld integration
1b4fcb8da7 api/types/network: move `CreateOptions` type to client module
b0b7260c77 ImageCache.restoreCachedImage: rename var that shadowed import
1e249cc309 api/types/network: move connect/disconnect options types to client module
3003c5fe45 d/libnet: fix CreateOptionIPAM capitalization
853aed171b api/types/image: move image option types to client
33066cddb1 api/types/swarm: move `SecretListOptions` type to client
33cdcd62f5 daemon: Daemon.getInspectData: also set Config
fae54e03af api/types/container: merge InspectResponse and ContainerJSONBase
c9a0c93b04 d/libnet: remove unused arg from CreateOptionIpam
b85c91f1b8 fix vendor
44972d7427 daemon: Daemon.getInspectData: inline struct-literals
94d0b10503 api/types/swarm: move `ServiceInspectOptions` type to client
a2291e5eac api/types/swarm: move `ServiceListOptions` type to client
3b1e16594b api/types/swarm: move `ServiceUpdateOptions` type to client
bb4125e89f api/types/swarm: move `ServiceCreateOptions` type to client
4dcc7af116 api/types/swarm: move `UpdateFlags` type to client
ad0fa5a872 api/types/swarm: move `TaskListOptions` type to client
2718f953f0 api/types/swarm: move `NodeRemoveOptions` to client
7d2b87e95f api/types/swarm: move `NodeListOptions` to client mod
b1260cd493 api/types/swarm: move `ConfigListOptions` to client
bdce1608c8 api: move authconfig package from types/registry to pkg
ff0e644c88 daemon/cluster: use authconfig package for decoding
9f1d8be252 docs/contributing: minor fixes
dbe19a506e fluentd logger: add read timeout configuration.
28ba0fcaae vendor: github.com/fluent/fluent-logger-golang v1.10.1
3bcaf1c4da vendor: github.com/tinylib/msgp v1.3.0
27b609b401 vendor: github.com/philhofer/fwd v1.2.0
1d6c7663c4 d/libnet/i/nftables: move golden files into subdir
28afa75c39 d/libnet: TestIptabler: move golden files into subdir
ce4a331287 d/libnet: TestNftabler: move golden files into subdir
c5e75cc485 daemon/containerd: remove convertError utility
6fbea5f5c1 image delete: inline some variables, and touch-up TODOs
7f8ce05f6e client: check for Digested reference instead of Canonical
eed354379c api: docs: update v1.52 swagger with latest changes
0de3d2ec51 Dockerfile: update rootlesskit to v2.3.5
70d096313f vendor: github.com/rootless-containers/rootlesskit/v2 v2.3.5
fe8516cf4b client: refactor `InspectOptions` to `NetworkInspectOptions`
5eaed0366c api/types/network: move `InspectOptions` to client mod
6084c6ae78 client: refactor `ListOptions` to `NetworkListOptions`
d6aa6ae9bd api/types/network: move `ListOptions` to client
d867f9f0f1 api/docs: update description for AuthConfig.Email field
6cfff7e880 api/types/registry: update deprecation comment for AuthConfig.Email
7aa50424e3 daemon: decouple daemon backend from client volume list options
9fc6a1e437 api/types/volume: refactor volume options to prune report
ee22a62dd5 client: refactor `ListOptions` to `VolumeListOptions`
c48585f104 api/types/volume: move `ListOptions` to client mod
56626a1222 api/types/system: move `DiskUsageOptions` to client mod
4665aa11ce client: refactor `SearchOptions` to `ImageSearchOptions`
40025bdf43 api/types/registry: move `SearchOptions` to client
e8d0aba254 vendor: golang.org/x/sync v0.16.0
60125b888c contrib: update dockerfiles to debian 13 "trixie"
39d4dbea9c Dockerfile: update debian frozen image to trixie-slim
15f92925f0 vendor: go.etcd.io/bbolt v1.4.3
eb9774cbf9 client: rename `ListOptions` type to `EventsListOptions`
d73dd4990c api/types/events: move `ListOptions` type to client
db72cc28c7 Rename test helper function input parameters to not shadow client package
f07d359043 client: rename `ResizeOptions` type to `ContainerResizeOptions`
882fd68b1b api/types/container: move `ResizeOptions` type to client
14262696d7 libnet/pa: OSAllocator: retry allocations
201968cc03 libnet/pa: OSAllocator: listen after bind
86ae7a56d2 daemon: Fix container restore with automatic driver selection
555e3939c9 daemon: Fix forceful switch to containerd image store
47bdbf5a4b client/pkg/jsonmessage: remove unused fields
c4e82bab70 api/types/volume: move `DiskUsage` type internal to daemon backend
0d61b55add api/types/image: move `DiskUsage` type internal to daemon backend
566c44edfe api/types/container: move `DiskUsage` type internal to daemon backend
d588092be2 api/types/build: move internal to daemon backend
eac4c43aaa integration/system: remove TestEventsBackwardsCompatible
b0d9a90f45 integration/system: add TestEventsNonBlocking
000f5e8d10 daemon: Daemon.ContainerStats: small cleanups
f4ae01a38a daemon/server/router/system: getEvents: use event consts for filtering
6b52a16f14 integration/network/bridge: add "generated" header to markdown docs
48557f72f9 daemon/libnetwork: TestUserChain: rename golden files
ff8364a39f hack/test/unit: use empty default values
fbd3cdc007 fix vendor
da2b1a2930 Fix image prune events for containerd backend
b68ff62ab7 daemon/libnetwork/bitmap: add OnesCount method
be7a769b69 Dockerfile: disable CGO for building utilities
8de606beb1 Dockerfile: remove trailing slashes for GOBIN
aa80ad2572 Copy the daemon/internal/timestamp package to internal client package
812aa46d81 Move the api/types/time package to internal daemon package
033ec8be44 daemon/router/image: initialize default authConfig
f0c069ffc9 gha: Add conditional skip for jobs with 'ci/validate-only' label
8013d80c24 hack/test/unit: run in the right module when TESTDIRS is used
97587945ef .github/workflows: Add kind label validation to PR workflow
d2e0895b9b daemon: deprecate env vars set by legacy links
b13ea83488 api: bump github.com/google/go-cmp v0.7.0
56c48e8708 d/libn/bitmap: tidy up constants, branchy math
82ba7fef17 api/types/container: rename Port to PortMapping
48038347d7 Match device driver on name and ignore capabilities
2aba802ae6 daemon: don't strong-type filters
a2aa7be724 vendor: go.etcd.io/bbolt v1.4.2
1c34ff94bc client: consistently use defer for ensureReaderClosed
f6b63e6013 client.sendRequest: clean-up logic for error-handling
2a4f70309d client.doRequest: improve GoDoc to clarify behavior
d69fde4c60 client: Client.Ping: improve error handling and fallback
b2e6fd31cf Restore DOCKER_DRIVER environment variable for storage driver configuration.
80294ddb60 client: make checkResponseErr a regular function
423980614e daemon: use slices.Clone, maps.Collect in some places
6505e8d605 daemon/libnetwork/types: rename StaticRoute.GetCopy to Copy
1e11e64c9c daemon/libnetwork/types: remove TransportPort.Equal()
561e14ea3f daemon/libnetwork/types: remove TransportPort.GetCopy()
385297ee40 daemon/libnetwork/types: remove unused IsIPNetValid utility
7960f742a2 daemon/libnetwork: Endpoint.CopyTo: use maps/slices.Clone
a82a68a445 daemon/libnetwork: replace endpointJoinInfo.CopyTo with Copy()
2d5100749d daemon/libnetwork: replace EndpointInterface.CopyTo with Copy()
80452e5d4a daemon/libnetwork/types: PortBinding.Equal: use non-pointer receiver
7d5312ab56 daemon/libnetwork/types: rename PortBinding.GetCopy to Copy and non-pointer
e387dc977e daemon/libnetwork/types: cleanup GetIPNetCopy, GetIPNetCanonical
68a94ecbb5 daemon/libnetwork/types: remove GetIPCopy; use slices.Clone
115b801a3b daemon/libnetwork/types: remove GetMacCopy; use slices.Clone
cfad3ed6b9 daemon/libnetwork: replace IpamInfo.CopyTo with IpamInfo.Copy()
2f74f245b6 daemon/libnetwork: replace IpamConf.CopyTo with IpamConf.Copy()
796a4ce952 daemon/libnet/drv/bridge: stubPortMapper.UnmapPorts: fix slices.Delete
a4fbbc1570 Add context to restore and load containers
85b79f83f4 Fix hardlink handling in containerd snapshot remap
ead007f1f1 Use native snapshotter for integration tests and run
99181f56ce Fix symlink evaluation to a directory that may not exist
4816383c0b Add environment variable to define the threshold
185ae7ec2c docs: api: Tweak type of ForceUpdate to uin64
c8173c5c1f api: swagger: Tweak type of ForceUpdate to uint64
0a89d98bad daemon/libnetwork/types: remove errdefs aliases
892ebd2f17 daemon/libnet/drivers/windows: small cleanup in error-handling
11094e27b0 api/types/network: modernize EndpointIPAMConfig.Copy, EndpointSettings.Copy
b48df69b02 daemon: Daemon.ContainerInspect: move vars closer to where used
582ee7ea57 daemon/builder/dockerfile: copyRunConfig: use slices/maps.Clone
0ded8645b6 Fix custom runtimes handling on Windows
aa6838ae54 vendor: go.uber.org/zap v1.27.0
daf843b72f vendor: go.uber.org/multierr v1.11.0
aa85a44139 vendor: github.com/google/btree v1.1.3
fe32e4a999 vendor: github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8
76fc74317a vendor: github.com/golang/gddo v0.0.0-20190904175337-72a348e765d2
632fb0c89a Update graphdriver check logic to account for disabling of snapshotter
b41babafaa Fix windows test graphdriver setting
8700bca2bf Update migration test to use graphdriver env
00463b9216 Fix containerd image count
7f87cf9d8a Check for snapshotter plugin availability
632de98f75 Enable containerd snapshotters by default
9f5f4f5a42 Add containerd migration to daemon startup
2fff6b442e check-config.sh: report IP forwarding sysctl state
f71e86eed5 rootless: enable IP forwarding
f802d8a08e When cleaning iptables rules, warn on filter-FORWARD DROP
67ffa47090 nftables: don't enable IP forwarding
7dfeee8460 Drop FirewallCleanerSetter interface
200a75b34a Return concrete types from NewNftabler/NewIptabler
050fbbccca chore: use errors.Join instead of github.com/hashicorp/go-multierror
96f8c6395e chore: enable use-any rule from revive
c6be4ad999 libnet/pa: don't set SO_REUSEADDR on UDP sockets
3862a0875c check for net.ErrClosed instead of "use of closed network connection"
9cae3fb167 docs/contributing: remove GIT_BRANCH image tag references
04d95003fd Stabilize TestSaveAndLoadPlatform integration test.
1f323d5035 client: README: add badges
662154a940 api: README: add badges
b4e353c02b README: add license and OpenSSF badge
df3aea43aa remove references to "vendor.mod"
98790830eb Deprecate api/types/strslice.StrSlice and remove its use
b25b421f97 update to go1.24.6
677c2a19d9 vendor: github.com/docker/go-connections v0.6.0
50789e2bab testutil/fakestorage: inline go code and remove contrib/httpserver
d49a354cb2 testutil/fakestorage: use local paths, fix port-mapping and optimize
8be1b2372a Dockerfile: update containerd binary to v1.7.28
b9b52d59b8 download-frozen-image-v2: Use curl -L
359a881cea download-frozen-image-v2: handle 307 responses without decimal
12c6345d3a libn/d/overlay: don't deref nil PeerRecord on error
dcaf8893a0 windows: do not forgot IPAM configuration when re-creating networks
0ad765c67d add back replace and vendor, tidy
f5f984eec6 Dockerfile: update runc binary to v1.3.0
234349d173 api/docs: sync v1.52 swagger with current version
833dc69ad9 docs: improve the description of the `outputs` parameter for `/build` endpoint
c145229828 update some fixtures in tests
90c3d29bfb go.mod: tidy
78ccee32b3 update various "doc" links in code
d82f50557e Bump api version in client and main module to v1.52.0-alpha.1
a0a7d9a3d7 Add release notes for client/v0.1.0-alpha.0
32ec26be6c Update client and main module api version to latest alpha tag
e30b8e3393 update golangci-lint settings
57256a9b62 fix error-capitalization
c13266d2c0 api/types: move plugin types to api/types/plugin
c17d43ae67 api/types: move ErrorResponse to common/ErrorResponse
15f78b752c daemon: make buildSandboxOptions, buildSandboxPlatformOptions more atomic
77c2e3279d daemon/libnetwork: Sandbox.EnableService/DisableService slight cleanup
bfce6556c4 client: use stdlib errors
3fe93532e4 client: tidy go.mod
3b14c5488f go.mod: github.com/containerd/containerd/v2 v2.1.4
259eb259bc go.mod: dario.cat/mergo v1.0.2
d8b622b315 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
8e63b55146 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
044234f847 api/docs: add v1.52 swagger
59e8fe8479 Prepare release notes for v1.52.0
dfac16c297 hack: Update cosmetic occurences of the old package name
83267a0fda go.mod: github.com/docker/docker v28.3.3
5b3e1a6425 go.mod: tidy
0ae3cb000e validate/pkgimports: Fix package name
22bd59010e hack: Fix dockerversion not being set correctly
79148460b0 hack/make.ps1: Replace old package name with moby/v2
2dcd8b8def golangci: Replace old package name with moby/v2
cad3a5775b docs: fix URI fragment by changing it to the existing subheading
778d8e3a26 libnet/d/bridge: handleFirewalldReloadNw: fix deadlock
519adb26c3 libnet/d/bridge: driver: un-embed mutex
752a3b302c api/pkg/stdcopy: add example
26cf610e6e api/pkg/stdcopy: improve docs
c010c84ade api/pkg/stdcopy: don't use iota for consts
195a6bbb1e client: touch-up godoc
e7c784c270 Dockerfile: add GO_SWAGGER_VERSION build-arg
908895b9c3 api: update "interface{}" to "any"
51bbc37f64 api/types/strslice: use slices.Equal
dab42db691 contrib: remove editorconfig
5fbbf040aa contrib: remove mac-install-bundle.sh
5a40d4ed9f contrib: remove syntax (Dockerfile syntax) files
62545ddf90 daemon/internal/image: remove image-spec markdown
4cfc260a5f TESTING.md fix links to gotest.tools, and some touch-ups
1205a15db1 libnetwork/types: define RouteType type
6aab881534 libnetwork/types: make Protocol consts strong-typed
ec5dbaf233 libnetwork/types: define IPFamily options using syscall.AF_XXX consts
95eeb0b3b0 libnetwork/types: define IPFamily type for IP-family consts
ee560a3b23 api/types: fix Plugin.Config.Interface.Types def'n
2783f80ecf api/types: generate with latest go-swagger
5365f08ae2 daemon/config: make DNSConfig.DNS a netip.Addr
a43198845b daemon/pkg/registry: un-export ResolveAuthConfig
5fbf680f5d daemon/pkg/registry: move newIndexInfo to search
6a7f0008a3 daemon/pkg/registry: move searchRepositories to where it's used
17d0ac56f3 daemon/pkg/registry: remove session; make searchRepositories a func
0c73c459b4 daemon/pkg/registry: un-export GetAuthConfigKey
eda6a499e3 router/distribution: fetchManifest; detach from distributionRouter
aac2623115 integration/container: TestCheckpoint: inline containerExec util
03991f4846 builder-next: puller.Snapshot: cleanup handling of v1 images
0156a42200 daemon/libnetwork/resolvconf: remove unused code
bbec7a5150 migrated test container API rename to docker/cli
1e499bae79 daemon: consolidate platform-specific inspectExecProcessConfig
49aa38e9e7 update links to swarmkit v2 docs
c98e5cb60b update github links to moby/moby
cf15d5bbc6 remove obsolete //go:build tags
02b3f1cd99 integration: remove stray "distribution" directory
297ea75204 check_config: add nftables modules to optional features
83357620e2 Update unit test script for windows
58c95cde9b Replace uses of code which requires 1.24+
900a0516de Update hack/test/unit for go module
1d571e619d Rename build package to moby v2 module
65867642d3 Remove go module workarounds
f74e5d48b3 Create github.com/moby/moby/v2 module
a954a0f4a2 Remove profiles
53bd828853 Remove libnetwork
e55d294ea7 api/types/registry: add TODO/note about empty authConfigs
8b68b977b1 Revert "api/types/registry: EncodeAuthConfig: use empty string for zero value"
5bbf3af980 daemon: fix linting S1016 (staticcheck) false positive
d58dc493fe replace direct uses of nat types for api/types/container aliases
494677f93f api/types/container: add aliases for go-connections/nat types
f3ba0b2dc2 client/pkg/jsonmessage: remove Stream interface
19edf5c53c client/pkg/jsonmessage: remove DisplayJSONMessagesToStream
fdaccdb233 pkg/jsonmessage: stop printing deprecated progressDetail, errorDetail
94ac102e4b api: remove deprecated NoBaseImageSpecifier
0d8ca8eefe Move pkg/jsonmessage to client/pkg/jsonmessage
d00ecdc479 Move pkg/streamformatter to api/pkg/streamformatter
66862e14d1 Move pkg/progress to api/pkg/progress
1da417980c Move api/stdcopy to api/pkg/stdcopy
ebef4a44fd Split streamformatter from jsonmessage
5a144c40e2 pkg/streamformatter: reduce jsonmessage.JSONMessage dependency
f4127d76c5 pkg/jsonmessage: move JSONProgress to api/types/jsonstream
0515e1c991 pkg/jsonmessage: move JSONError to api/types/jsonstream
9a52e474a3 pkg/jsonmessage: suppress unhandled errors
02fcde0c18 Add separate const for daemon httputils to avoid jsonmessage import
e257027903 pkg/jsonmessage: remove github.com/morikuni/aec dependency
d7082848a6 tidy vendor.mod
6c7e2909c2 api/types/filters: remove deprecated ToParamWithVersion
5535e81a79 pkg/system: move to daemon/internal
d94171bfaa pkg/system: make XattrError linux-only
aa9de914ca pkg/system: remove unused ErrNotSupportedPlatform
28b822d5b3 pkg/system: remove Lgetxattr, Lsetxattr stubs for non-Linux
450ac30e4a pkg/system: LUtimesNano: remove stub for non-Linux
03f44e6d14 pkg/system: MkdirAllWithACL: remove stubs and unused os.FileMode arg
6f9e099fd3 pkg/system: remove deprecated IsAbs
53a3085256 pkg/system: remove deprecated EscapeArgs
1313b8caff pkg/fileutils: move ReadSymlinkedDirectory to daemon
ae0a3d6918 pkg/fileutils: move ReadSymlinkedDirectory internal to daemon
bae46854c5 pkg/fileutils: remove unused CopyFile utility
46854ca5ab daemon/pkg/registry: remove copy of rootless.RunningWithRootlessKit
f1c65c1dd6 daemon/pkg/registry: Service.Auth: remove unused statusMessage return
f797ced96a daemon/pkg/registry: remove unused ParseRepositoryInfo, RepositoryInfo
e30d541da0 daemon/pkg/registry: remove unused ReadCertsDirectory
d80e16bb18 daemon/pkg/registry: remove unused ParseSearchIndexInfo
4c1ab68c6c daemon/builder/remotecontext: remove detection of system.XattrError
1dc53e8ec7 Update client go.mod
03d7f47f31 Update api go.mod
5bbb7182e7 Move logdriver to internal under daemon/logger
d7cfe97984 Update logdriver to remove proto definitions
f866621303 contrib/check-config: fix kernel version range check
df8d45c7c9 contrib/check-config: fix MEMCG_SWAP
ee24dcec3d Move swarm runtime plugin storage type to internal
86190e7366 Move swarm runtime plugin spec to swarm types
d761d9d358 pkg/rootless: move to daemon/internal
17959aff2c remove pkg/stdcopy as it has moved to the api module
c055c3e098 remove pkg/stringid as it has moved to the client module
76e2ca1d41 pkg/stack: move to daemon/internal
f78d595c96 runconfig: move to daemon/internal/runconfig
75bc4c5292 daemon/server/router/container: request sysInfo from daemon / backend
02867f9473 runconfig: rewrite ContainerDecoder to DecodeCreateRequest
5e567a3856 daemon/server/httputils: remove ContainerDecoder interface
ec3e83a7b5 api/types/container: move StateStatus, NewStateStatus internal again
667cb4bec8 fix vendor
26fda349b8 runconfig: remove exported errors
969b293778 iptables: remove SCTP checksum rule
e6298db297 cli/ is not in moby repo (anymore)
83510a26b3 api/types: move backend types to daemon/server
be27300c6e daemon/server/router/checkpoint: remove unused httputils.ContainerDecoder
b448dc5575 daemon/server/router/container: postCommit: only decode Config
6b4dfb0135 integration-cli: migrate TestPostContainersCreateShmSizeXXX to integration
617326a40c testutil, integration-cli: fix minor linting issues
da92ea2837 integration-cli/daemon: rewrite CheckActiveContainerCount with client
6adbeff449 integration-cli: remove parseEventTime utility
281a3f6c41 integration-cli: remove deprecaed inspectMountSourceField
6124c00827 integration-cli: buildImageSuccessfully: don't wrap buildImage
877529c62d integration-cli: remove deprecated inspectFieldWithError utility
68480dc11d integration-cli: remove createTmpFile utility
29a7d4039e integration-cli: remove deprecated inspectFieldMap utility
d100fd6a77 integration/system: remove "hdr" utility
97827e1a58 integration-cli: TestContainerAPIGetExport: fix minor linting issues
f73aba83dc client: TestContainerStats: fix minor linting issues
f67e6555bf api/types/container.StatsResponseReader: move to client
4dda328af8 client: rename files for system-commands to their canonical name
96a6884cb3 api/types: move DiskUsage types to api/types/system
82c069c857 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
24aa86991c api/types: move PluginCreateOptions to client
b93ad81898 api/types: move plugin client options into client
44ae4cd2b7 api/types: move HijackedResponse into client
f491b70aa4 integration-cli: remove "requirement" package
ca1c5ee08f pkg/stringid: move to daemon, and provide copy in client
0abcdb7405 Update golangci for lazyregexp
6514282136 Move internal/testutils/networking to integration/internal/testutils/networking
14eb2770b9 Move internal/unshare to daemon/internal/unshare
28de87fb28 Move internal/unix_noeintr to daemon/internal/unix_noeintr
5b913b3ea0 Move internal/sliceutil to daemon/internal/sliceutil
20cc1a6203 Move internal/rootless to daemon/internal/rootless
8042010175 Move internal/platform to daemon/internal/platform
c3b0e0130a Move internal/otelutil to daemon/internal/otelutil
b62b542c2e Move internal/opts to daemon/internal/opts
713d7f5ed1 Move internal/nlwrap to daemon/libnetwork/nlwrap
fd21e3b935 Move internal/multierror to daemon/internal/multierror
baea1c5092 Move internal/ioutils to daemon/internal/ioutils
50743e3f38 Move internal/containerfs to daemon/internal/containerfs
ca9c4dffb7 Move internal/cleanups to daemon/internal/cleanups
222b2b8b2f Move internal/lazyregexp to daemon/internal/lazyregexp
9566272f30 Move pkg/tarsum to daemon/builder/remotecontext/internal/tarsum
ca5d2348d0 Move pkg/idtools to daemon/internal/idtools
7bfb804dbe Move registry to daemon/pkg/registry
f1f83dae55 Move reference to daemon/internal/refstore
c74ba95583 Move oci to daemon/pkg/oci
f24455c90b Move image to daemon/internal/image
1ff6011e04 Move distribution to daemon/internal/distribution
fa9a3c383d Move layer to daemon/internal/layer
3003c56c57 Delete TestRunDNSOptionsBasedOnHostResolvConf
3205fcf6c7 pkg/stringid: TruncateID: touch-up doc
6ed00d5044 registry: ConvertToHostname: use strings.Cut
547a2db21d registry: TestNewIndexInfo: inline testIndexInfo (thelper)
5ea78575e7 registry: fix assorted gocritic issues
406ee2feb5 registry: translateV2AuthError: fix singleCaseSwitch (gocritic)
ecb0354da5 registry: isCIDRMatch: fix captLocal (gocritic)
1ceda96864 registry: serviceConfig.loadInsecureRegistries: fix ifElseChain (gocritic)
d4e85443ff registry: remove deprecated RepositoryInfo.Class field
cc2d564a9e registry: remove deprecated RepositoryInfo.Official field
38453db513 contrib: remove gitdm
0d9304c9e1 docs: remove old rootless placeholder
a1f68bf5a6 overlay: Reload Ingress iptables rules in swarm mode
8b208f1b95 libnetwork: split programIngress() and dependent functions on Add and Del functions
50e6f4c4cb libnetwork: refactor ingress chain management for improved rule handling and initialization
4f0485e45f libnetwork: add FlushChain methods for improved iptables management
262c32565b libnetwork: refactor rule management to use Ensure method for Append and Insert operations
19a8083866 libnetwork: refactor iptable functions to include table parameter for improved rule management
c2e2e7fe24 libnetwork: extract plumpIngressProxy steps in a separate function
51ed289b06 libnetwork: extract programIngressPorts steps in a separate functions
752758ae77 libnetwork: extract creation/initiation of INGRESS-DOCKER chains in separate function
07393071ad bridge: Reapply endpoint iptables rules on firewalld reload
6d457d9695 bridge: Trigger firewalld reload during bridge integration tests
f1a97bda3d api/types/container: remove deprecated Stats type
4d5a7289a0 api: move docs to api module
bdcf4e8c85 adjust minimum API-version for multiple platforms on save/load
a401c0c046 runconfig: update fixtures for TestDecodeContainerConfig
1378604cc3 integration-cli: remove tests for pre-docker 1.7 clients
8d8bbefb90 client: remove deprecated CommonAPIClient interface
728f0769e1 client: remove deprecated ImageInspectWithRaw
2f200f9e05 client: remove deprecated IsErrNotFound helper
5ed9891eed client: remove deprecated ErrorConnectionFailed helper
a0fa5da2ab client: remove deprecated NewClient and NewEnvClient functions
30322dd649 client: fix example, and update refs to old modules
4859497098 pkg/stdcopy: fix missing alias for stdcopy.Systemerr
01c7b4233c hack/validate: remove obsolete exception
b91ebbde6d Refactor containerd platform matchers.
fcc8209e12 Add support for multiple platforms in image export and loading.
2303e6bff6 client: Client.doRequest: add special handling for DNS resolution errors
67596f01e2 client: Client.doRequest: add special handling for "not found" errors
462d0ff5aa client: Client.doRequest: simplify permission check and unwrap error
7072acac79 client: Client.doRequest: preserve wrapped error
3b4fbaacd7 client: Client.doRequest: use early return
cf1695bef1 Add option --bridge-accept-fwmark
2a342079c6 api/types/container: add missing type for exec-inspect response.
a600da91f4 profiles/apparmor, seccomp: migrate to separate module
30752f0780 Always allow access to routed endpoints
4538a1de0a libnetwork: handle coalesced endpoint events
e1a586a9a7 libnetwork/d/overlay: handle coalesced peer updates
8340e109de libn/d/win/overlay: dedupe NetworkDB definitions
c7b93702b9 libn/d/overlay: extract hashable address types
844023f794 libnetwork/driverapi: make EventNotify optional
69c3c56eba libn/networkdb: report prev value in update events
34fb2486ef test: migrate test api client version old not supported
cc9e6a13a2 api/types/swarm/runtime: remove module path for generating proto
76c1afeb97 api/types/plugins/logdriver: remove module path for generating proto
85ecf8c0f4 api: update references to old module name
a17a2e8f3d api/stdcopy: touch-up godoc
5b8ef1aff2 api: remove redundant //go:build lines
260cc008f4 fix vendor
4e246efcd1 libnet/d/bridge: mv portmapper to libnet/pms/{nat,routed}
289ef96d8b libnet/d/bridge/i/rlkclient: move to libnet/i/rlkclient
41cd92f6c0 libnet/portmapperapi: add PortMapper interface, registry
afb231d027 libnet/d/bridge: add a new Hairpin config flag
6f59a8e665 libnet/d/bridge: call setChildHostIP while binding
43f384c452 libnet/d/bridge: connectivityConfiguration: use PortBindingReq type
aa36cc5d25 libnet/d/bridge: move portBinding to portmapperapi
429818f969 libnet/d/bridge: move portBindingReq to portmapperapi
090c319f2e Don't allow the daemon to start with nftables and Swarm enabled
26e487db78 testutil: Fix sense of hasFwBackendArg check
6e7a2c830d Add Health attribute on the docker ps command
c4f9616c4a client: cleanup encoding body and add test-coverage
024414b47e integration: rename vars that shadowed import
20d594fb79 deprecate pkg/stdcopy, move to api/stdcopy
f651a5d5e9 registry: remove uses of lazyregexp
b33b4bd290 internal/testutils/networking: rm uses of lazyregexp
daa991c3d8 testutil/environment: don't use regex for string-matching error
0dc3193b2b integration-cli: remove uses of lazyregexp
6f9758047d fix: add create log stream awslog driver log option to validate list
c47afd41c8 Create github.com/moby/moby/client module
afd6487b2e Create github.com/moby/moby/api module
135cea2a10 Update test-unit for client module
7e708a5416 Update unit tests for api module
0971099c5f Add options to vendor to add and remove replace
eab076f217 Gocompat tests no longer needed with go modules
c469e5ebab daemon/server: rename vars that shadowed imports
61b19a494a oci: deprecate SetCapabilities
b9196ed703 oci: fix godoc for SetCapabilities, TweakCapabilities
5c683e8603 oci: sort defaultLinuxMaskedPaths
0433def57d internal/platform: remove NumProcs() stub for Linux
1a504f68fd Add nftables+firewalld tests to CI
02d7a3026a Support nftables+firewalld
d95dceb3b1 build: device entitlement support
655dbe69d0 pkg/tailfile: rename vars that shadowed type
a089c51160 pkg/idtools: remove deprecated functions and types
3bc64b312e runconfig: decodeContainerConfig: fix godoc referencing wrong type
ab5d348b77 integration-cli: remove uses of "runconfig"
0c3185a835 daemon: killProcessDirectly: use "WithFields" for logging
1cc42643ae hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
18e463a082 api/types: remove deprecated RequestPrivilegeFunc type
a3920ae6a0 api/types: remove deprecated IDResponse type
3e5a06179e api/types: remove deprecated container-inspect types
8347b05435 api/types: remove deprecated Container type
f050df0329 api/types: remove deprecated ContainerState type
7abeb4d5a4 api/types: remove deprecated container-networksettings types
c5a2194b5d api/types: remove deprecated container Health types
76bf0e2929 api/types: remove deprecated MountPoint
207db8792e api/types: remove deprecated Port
fa8177ba7a api/types: remove deprecated GraphDriverData
836ec65d5f api/types: remove deprecated ImageInspect, RootFS
7d3459e7fb api/types: remove deprecated SecretCreateResponse, SecretListOptions
68744c8b05 api/types: remove deprecated ConfigCreateResponse, ConfigListOptions
33f07ff3f4 api/types: remove deprecated NodeListOptions, NodeRemoveOptions
f13796d2af api/types: remove deprecated TaskListOptions
72b1e11264 api/types: remove deprecated ServiceCreateOptions
3faead6fc1 api/types: remove deprecated ServiceUpdateOptions
55ad118eaf api/types: remove deprecated ServiceListOptions, ServiceInspectOptions
91558ae3f3 api/types: remove deprecated SwarmUnlockKeyResponse
74fe646ac2 api/types: remove deprecated build-cache types
3eac6e7888 api/types: remove deprecated BuildResult
088cb2ffa6 api/types: remove deprecated build-related types
1359046a36 pkg/process: call out that "Zombie" is only supported on Linux
94618ac3ab pkg/process: separate exported funcs from implementation
a88e13f4f9 client: fix datarace when accessing cli.Version field
e6cdf24bcd windows: include labels when re-creating non-default nat networks
d4e026fe20 Wait for container dependencies upon daemon start up
39ab393274 Add daemon option --firewall-backend
7b9bd987bf api: deprecate NoBaseImageSpecifier
a632b8495b daemon: define default (and maximum) API version
2b17ab0ec6 libnet/internal/resolvconf: fix naming of error (errname)
aa757e591d libnet/internal/resolvconf: don't use rc.WriteFile in tests
8d54d36bce libnet/internal/resolvconf: fix naming of error
60a3a28a04 libnet/internal/resolvconf: minor optimizations
f22a3dfdb7 libnet/internal/resolvconf: optimize Generate() without text/template
0775ab6661 libnet/internal/resolvconf: add benchmark for Generate()
41da5700a4 client: define default (and maximum) API version
b54bde4376 Move testutils image load to integration internal
b83f36877f Move internal/mod to daemon/internal/builder-next/worker/mod
af86e80825 Move daemon/build to daemon/builder/backend
7d48302134 Move builder to daemon/builder
6ff9bea6a7 Move builder/builder-next to daemon/internal/builder-next
3a447bc079 api/types/registry: EncodeAuthConfig: use empty string for zero value
472e09ac47 api/types/registry: DecodeAuthConfig: add early returns and improve errors
6865032baa api/types/registry: add BenchmarkDecodeAuthConfig
c1b95c0ca2 ci/windows: Always run tests with c8d
967daa627a integration: Skip TestRunMountImageMultipleTimes on Windows
a615ec798d builder/remotecontext/git: fix linting issues
6a8654a808 api: bump to 1.52
ac5f464649 libnetwork/networkdb: improve quality of randomness
5799deb853 libnetwork/networkdb: test quality of mRandomNodes
d8730dc1d3 libnetwork/networkdb: add convergence test
7771a38896 Remove integration test using daemon internals
17d5f731f1 Move internal/safepath to daemon/volume/safepath
7edd7c68b1 Move internal/mounttree to daemon/internal/mounttree
daeaac0d3c Move internal/directory to daemon/internal/directory
33d824b838 Move quota to daemon/internal/quota
04f5276267 Move volume to daemon/volume
fdd9ae3465 libnet/internal/resolvconf: use slices.Clone
b1ce0c89f0 client: always send (empty) body on push
50d2dafc7f libnet/portallocator: introduce OSAllocator
14bd3451d8 client: ContainerExecAttach: update GoDoc links
830e0d79f5 vendor: github.com/opencontainers/cgroups v0.0.4
d66cf14a87 registry: replace pkg/homedir.GetConfigHome for os.UserConfigDir
14d9be4978 daemon: Fix mounting same image multiple times with different destinations
a28f031298 Fix libnetwork proto generation
b1884b6bba Restore libnetwork/resolvconf
3b5f7c2a29 Move internal/modprobe to daemon/libnetwork/internal/modprobe
7f4713a364 Move internal/maputil to daemon/libnetwork/internal/maputil
22ed8b1327 hack/make/test-docker-py: split test-exclusions to separate lines
7a720df61f Move libnetwork to daemon/libnetwork
f05652867d Move opts to daemon/pkg/opts
fb2117987d Dockerfile: upgrade Delve to v1.25.0
18438f3c13 Dockerfile: update compose to v2.38.2
8c3e10a011 Dockerfile: update buildx to v0.25.0
4dee288b51 Dockerfile: update cli to v28.3.2
9bcb12aa48 daemon: ContainerExtractToDir: make AllowOverwriteDirWithFile opt-in
fd8fec18cd integration/container: XFAIL flaky TestExecResize on Windows
4a8d77c958 api/types/container: remove deprecated ContainerTopOKBody alias
3d8d9c2bb3 api/types/container: remove deprecated ContainerUpdateOKBody alias
f8a2550a22 pkg/system: deprecate IsAbs and move internal
63bada41e5 pkg/system: deprecate EscapeArgs and move internal
0fc1493654 pkg/system: remove EnableContainerdRuntime, ContainerdRuntimeSupported
a327a9f341 integration-cli: fix flaky TestRestartStoppedContainer
59d5743a43 testutil/daemon: Daemon.Stop() don't log when already stopped
1c8b09ccf6 integration-cli: TestDockerNetworkHostModeUngracefulDaemonRestart start, not restart
9e69fc567e testutil/daemon: remove string-matching for error
cf41e9ac60 testutil/daemon: gofumpt
d6c90dcb87 integration/container: fix flaky TestRemoveContainerWithVolume
d30e61bff4 api/types/registry: add some tests for encoding/decoding authconfig
c31368fffb Don't raise an error when stopping a stopped docker-proxy
f6b3b257c8 implement test api images history integration test on dedicated file
669163c416 remove test api images history integration cli test suite
04dbcddd6a migrate test api images history integration cli test to integration test
adad33b30e Fix expected results for nftablesdoc tests
dde698a2e8 integration/container: add basic test for ContainerInspectWithRaw
16ed75572f client: TestContainerInspectWithEmptyID test both inspect variants
7f602d3b94 When switching between iptables/nftables, delete old rules
a5e3f39770 integration/container: avoid ContainerInspectWithRaw with "size"
88b67eb2fc integration/container: cleanup TestCreateWithCustomReadonlyPaths
bd091c1a9d integration/container: cleanup TestCreateWithCustomMaskedPaths
779052873d Add nftablesdoc
ad579b8a1d daemon/container: remove deprecated IsValidStateString
312eebde49 daemon/container: remove deprecated IsValidHealthString
e9fb208e87 daemon/container: remove deprecated StateStatus, WaitCondition
0d24798529 daemon/graphdriver: remove error or deprecated graphdriver-plugins
7767525ccd daemon/graphdriver: remove deprecated GetDriver()
1fe4a0a7ad daemon/graphdriver: remove redundant init()
bd8f9c3c1b registry: remove deprecated APIEndpoint.AllowNondistributableArtifacts
65d424e126 registry: remove deprecated APIEndpoint.Official
7252c3c78d registry: remove deprecated APIEndpoint.TrimHostName
11a18d3b00 api/types/registry: remove deprecated fields for non-distributable artifacts
b3e513f80a registry: remove deprecated Service.ResolveRepository()
5862b926f5 registry: remove deprecated SetCertsDir and unify CertsDir code
924cd22d1d registry: remove deprecated HostCertsDir
178416334f Run CI tests with nftables
ea29dffaa5 daemon/server: remove compatibility with API v1.4 auth-config on push
54e67d0054 daemon: AuthenticateToRegistry: remove statusMessage return
e8396af484 nftabler: add per-port rules
b677c1a671 Replace integration import test use of image type
d90277372f libn/d/overlay: drop obsolete writeToStore comment
30b9480107 Create legacy links during endpoint Join
dd9e289b6e Don't pass sandbox options to ProgramExternalConnectivity
4f7afb8ac9 Remove libnet's logic to track a driver's port mapping state
89d3419093 libnetwork/d/overlay: fix logical race conditions
843cd96725 libn/d/overlay: fix encryption race conditions
a1d299749c libn/d/overlay: inline secMapWalk into only caller
74713e1a7d libnetwork/d/overlay: un-embed mutexes
a05080c26c libnet/d/bridge: split NATed and routed port mappings
d229c1ba31 libnet/d/bridge: norm pb reqs before forming groups
e2034267f6 nftabler: add per-endpoint rules
b5bf89c315 libnet/d/bridge: pass SCTP sock to the proxy
0a047e825c update to go1.24.5
0ea28fede0 integration/networking: increase context timeout for attach
c833bd598e vendor: github.com/ishidawataru/sctp v0.0.0-20250708014235-1989182a9425
03a662b80e vendor: code.cloudfoundry.org/clock v1.37.0
08bde5edfa libnetwork/networkdb: fix broadcast queue deadlocks
aff444df86 libn/networkdb: make TestNetworkDBIslands not flaky
1e1be54d3e libn/networkdb: prevent spurious rejoins in tests
21d9109750 libn/networkdb: stop forging tombstone entries
428dbe617a nftabler: add network level rules
a55fede2d4 Pass context to nftables functions
1c5d6d1ee3 Mark iptabler/nftabler golden results as generated
ee6a6b061f daemon/pkg/plugin: remove dependency on legacy distribution package
09689298e3 distribution: fix detection of v1 images and remove libtrust dependency
ac9d5a6068 integration-cli: TestPullFailsWithAlteredLayer: use OCI manifest
fd47ccef7b integration-cli: TestPullFailsWithAlteredManifest: use OCI manifest
4e818970e2 integration-cli: TestPullManifestList: use OCI media-types
f6ef56a0bc integration-cli: TestPullManifestList: rewrite using OCI types
51d6687754 api: swagger: Tweak type of GwPriority to integer
bfc0c7cff5 docs: api: Tweak type of GwPriority to integer
557b5d60d3 layer: remove LogReleaseMetadata utility
7d18f65eb2 distribution/xfer: improve test reporting
291872e086 remove type conversions
ade244f97d deprecate layer.CreateChainID for OCI identity
10e9ab66f9 image/tarexport: inline validateManifest utility
471f173170 image/tarexport: improve error messages for invalid archives
033750cf80 image/tarexport: remove suport for loading v0/v1 images
ebfafa1561 contrib: add Wireshark plugins for NetworkDB
aae26b80fe Remove client buildkit dep
e93e15afb0 Replace use of env test util with standard library call
4754c15e2b Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
fa4f3c979f gha: remove GO_VERSION build-arg from builds
136c0e591b image: RootFS.Clone: simplify
aea776332b pkg/stack: suppress some unhandled errors
e32d26cb59 libnet/diag: remove /stackdump endpoint
a881e9e057 Remember port binding state in the bridge driver
7ea50c14d6 Remote network driver: remember gateway state
054738bce3 Pass gateway endpoint ids to ProgramExternalConnectivity
07e5be0a18 image: remove special handling for legacy "layers+base" windows images
5efd2286da vendor: update buildkit to v0.23.2
e1b70074ec distribution/xfer: LayerDownloadManager.Download: remove initialRootFS arg
173436c702 distribution/xfer: rename var that shadowed type
0683bc6355 fix some inconsistency in import aliases
d207ee97ff daemon/listeners: extract utility for DACL, and improve docs
18dc570918 remove project dev "reports"
93bbd21d82 rename codecov.yml to .codecov.yml
ce3c8785dc restartmanager: move to daemon/internal
256f96ef59 remove VENDORING.md
717188201a contrib: remove mkimage-xxx scripts
3f8630cb84 internal/usergroup: move to daemon/internal
cbe6e31487 internal/usergroup: move windows consts to builder/dockerfile
8dbe0f45a9 integration-cli: debug TestPushToCentralRegistryUnauthorized
5fe253cd79 builder/dockerfile: BuildFromConfig: combine loops
a30b63eafc integration-cli: remove uses of deprecated dockerCmdWithResult utility
90f9ce14f1 Move libcontainerd to daemon/internal/libcontainerd
3ee8c1e3a9 Move libcontainerd/types to daemon/internal/libcontainerd/types
841a369b8f Move libcontainerd/supervisor to daemon/internal/libcontainerd/supervisor
fe959261d3 Move libcontainerd/shimopts to daemon/internal/libcontainerd/shimopts
4e8bd050bf Move libcontainerd/remote to daemon/internal/libcontainerd/remote
dd1656e6bc Move libcontainerd/queue to daemon/internal/libcontainerd/queue
6835f367e5 Move libcontainerd/local to daemon/internal/libcontainerd/local
5419eb1efc Move container to daemon/container
a02ba3c7df Move container/stream to daemon/internal/stream
9d9cb00d50 Move container/stream/bytespipe to daemon/internal/stream/bytespipe
3581b982f7 Move plugin to daemon/pkg/plugin
1c700c876f Move plugin/v2 to daemon/pkg/plugin/v2
f5ceed8719 Move plugin/executor/containerd to daemon/internal/plugin/executor/containerd
0b2582dc8f Move internal/metrics to daemon/internal/metrics
87238882e0 Move api/server to daemon/server
3a6e3f85c6 Move api/server/backend/build to daemon/build
79f802d46a Move api/server/httputils to daemon/server/httputils
c7a87f0dee Move api/server/httpstatus to daemon/server/httpstatus
d64bd2cceb Move api/server/middleware to daemon/server/middleware
72a020fcd8 Move api/server/router to daemon/server/router
f293628f55 Move api/server/router/volume to daemon/server/router/volume
15c8007064 Move api/server/router/system to daemon/server/router/system
45172bbf23 Move api/server/router/swarm to daemon/server/router/swarm
f6ba5a5241 Move api/server/router/session to daemon/server/router/session
3eb5fe0277 Move api/server/router/plugin to daemon/server/router/plugin
baa58ddc6a Move api/server/router/network to daemon/server/router/network
0cbb4ac8e6 Move api/server/router/image to daemon/server/router/image
a063389af7 Move api/server/router/grpc to daemon/server/router/grpc
9ff489863c Move api/server/router/distribution to daemon/server/router/distribution
ced7798ed8 Move api/server/router/debug to daemon/server/router/debug
3a9db5fbd6 Move api/server/router/container to daemon/server/router/container
fcf3ff1b2f client: remove getDockerOS utility in favor of "Ostype" header
d6136b660f Move api/server/router/checkpoint to daemon/server/router/checkpoint
31b6886eb1 Move api/server/router/build to daemon/server/router/build
1c0d381f4e client: client.tryImagePush: accept registry.RequestAuthConfig
ca0afe91b9 client: client.tryImageCreate: accept registry.RequestAuthConfig
79b4e18883 client: add staticAuth utility
871543a8c5 client: Client.ServiceUpdate: don't manually construct header value
a824db247f Add progress aux emitter to build backend
374fa24a53 Add multierror function to api network
0964fa01ba Remove dependency on testutil from client
58404b0c28 Remove dependency on httputil for client hijack test
e7289e7e02 hack: check windows resources are set in the binary
44623fb856 cmd: use dockerfile to generate win event messages
0ea20c9f72 cmd: fix winresources and move them out cli package
6b8afec95b fix redefines-builtin-id from revive
90ab64cbda fix increment-decrement from revive
381d9d0723 fix use-errors-new from revive
f0136d1dba fix superfluous-else from revive
369c8f828e fix var-declaration from revive
d72f219a11 gha/bin-image: update tags comment
b40fe5cb8b pluginrpc-gen: align generator with generated
f8fcc20c3b Update maintainer info for austinvazquez
38b98bcf68 gha/bin-image: add major and minor version image tags
057e35dd65 libnetwork/d/overlay: ref-count encryption params
1c2b744ca2 libnetwork/d/overlay: properly model peer db
59437f56f9 libnetwork/d/overlay: refactor peer db impl
33139da522 Split part of dockerd main to command under daemon
98047c5190 Move cmd/dockerd/trap to daemon/command/trap
ea11b5f3fe Move cmd/dockerd/debug to daemon/command/debug
53475e1adf integration/container: TestCreateByImageID: minor improvements
fcf666f9b0 dockerfile: update govulncheck to v1.1.4
8c067c5223 client: Client.addHeaders: remove special handling for api < 1.25
ef50844a0b docs: cut api docs for v1.51
5a02e7f4e3 vendor: update buildkit to v0.23.1
b466c35da1 Update containerd to v2.1.3
7a12bbe5d3 libn/d/overlay: delete FDB entry from AF_BRIDGE
1d8545d60c daemon/config: Validate: add missing validation for registry mirrors
307c18598d registry: ValidateMirror: improve validation for missing schemes
a90da2edc3 vendor: github.com/opencontainers/cgroups v0.0.3
a7f01d238e libnetwork: fix flaky Swarm service DNS
062082ec9b daemon: containerStop: fix ordering of "stop" and "die" events
bf002e51a0 Split [Program|Revoke]ExternalConnectivity out of libnet driverapi
4ccbca1efe Add TestRoutedNonGateway
d85513e1a3 daemon: LogContainerEventWithAttributes: minor optimisation
ec185e57cf Test Nftabler params
e43968d7ed vendor: github.com/moby/buildkit v0.23.0
0c182d4d57 api/types/container: deprecate ExecOptions.Detach
126f99d776 Add a way to undo nftables.Enable(), for unit tests
1289519b03 vendor: update buildkit to v0.13.0-rc2
c3ac979ecf vendor: github.com/moby/swarmkit/v2 v2.0.0
4891396da6 docs(client/ContainerExecAttach): add a mention to stdcopy.StdCopy
b7ef527bdc pkg/idtools: deprecate IdentityMapping, Identity.Chown
66e9cd97f2 remove deprecated pkg/archive, pkg/chrootarchive
d06c22f27d remove deprecated pkg/reexec
98015c21ec remove deprecated pkg/atomicwriter
cf91441a1b pkg/ioutils: remove deprecated atomicwriter functions
1f0e9077e4 remove deprecated pkg/parsers
c66abe486b nftabler: add mirrored WSL2 loopback0 workaround
d31956b2f7 Add an outline nftabler
04618dfc0b remove deprecated pkg/platform
f1e93a1770 pkg/system: remove deprecated MkdirAll
ce31bf3f0b gha: dco: bump alpine to 3.22
1ad9599da7 Drop DOCKER-ISOLATION rules
2d60b8eacd vendor: github.com/moby/swarmkit/v2 v2.0.0-20250613170222-a45be3cac15c
6ec6e0991a libnetwork/networkdb: prioritize local broadcasts
e9a7154909 libnetwork/networkdb: improve TestCRUDTableEntries
dbb0d88109 libn/networkdb: use distinct type for own networks
51f31826ee libnetwork/networkdb: don't clear queue on rejoin
30b27ab6ea libnetwork/networkdb: drop id field from network
9316396db0 gha: run windows 2025 on PRs, 2022 scheduled
6f484d0d4c gha: update to windows 2022 / 2025
0a30b98447 gha: lower timeouts on "build" and "merge" steps
accbfde61e client: use go-winio.DialPipe directly
df6b405796 libnetwork/d/overlay: drop initEncryption function
713f887698 libnetwork/d/overlay: drop checkEncryption function
cb4e7b2f03 libnetwork/d/overlay: make setupEncryption a method
0d893252ac libnetwork/d/overlay: checkEncryption: drop isLocal param
4b1c1236b9 libnetwork/d/overlay: peerdb: drop isLocal param
48e0b24ff7 libnetwork/d/overlay: elide vtep for local peers
a9e2d6d06e libnetwork/d/overlay: filter local peers explicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5cbd89ca26 |
crun: update to 1.24
Along with the updates, there seems to be an interaction with our
configuration that is causing generation issues for APIs. We do
some tweaks to the script to work in our environment.
Bumping crun to version 1.24-19-g64611d7a, which comprises the following commits:
a9187097 Reset the inherited cpu affinity
d41a45ce Add .editorconfig
1188a679 configure.ac: check if error function is available
a569c2e7 cgroup, systemd: improved "same bpf" check
ccbf0d96 tests: Replace sprintf with snprintf for security
fc084fdf chroot_realpath: Replace sprintf with snprintf
b2032647 tests: fix compiler error
7417ead6 Add tmt integration plan
54693209 NEWS: tag 1.24
676c2c12 linux: fix array bounds warning in libcrun_configure_network
d8a88c06 criu: checkpoint correctly the shared empty directory path
6ead5130 linux: add support for numa set_mempolicy(2)
05b9f561 container: add missing crun_make_error
7f9447ec Revert "cgroup: do not create a sub-cgroup by default"
275305f8 intelrdt: honor default closID
e9711231 intelrdt: factor common code in a new function
dfdcf776 intelrdt: add support for EnableMonitoring
6c10fb5b intelrdt: check that schemata is not empty before failing
a9affe5d status: fix error check
a1119953 cgroup, systemd: validate ebpf is loaded
7160e31b libocispec: sync
4004e5be linux: optimize masked paths with shared empty directory
13d4770d contrib: format contrib files
8aa7545e krun: avoid failing if sev/nitro are not available
1556c13f src/libcrun: limit tmpfs memory usage for masked paths
28d60d87 krun: ensure spec->linux->resources->devices exists
e486eeab linux: fix regression mounting within userns
146fdcfe tests: remove unused debug_on_error option
37f702b7 tests: add ability to set debug=True
2aac0f56 Fix BOF
d417e0a4 Fixed BOF
cfedf930 build(deps): bump actions/checkout from 4 to 5
eb9912e0 build: add check for static builds
262d6ac3 cgroup: do not create a sub-cgroup by default
Bumping libocispec to latest, which comprises the following commits:
345279c runtime-spec: update from upstream
c3e5101 image-spec: update from upstream
92656e9 runtime-spec: update from upstream
19d5aeb runtime-spec: update from upstream
3c98525 image-spec: update from upstream
9d1955f sources.py: fix unconditional return in map value clone
Bumping runtime-spec to version v1.2.1-39-g5610abd, which comprises the following commits:
d7de8c0 ci: bump golangci-lint to v2.5
9758011 ci: add codespell job, fix existing issues
9efd9f2 schema/defs-linux.json: fix max for FileMode
09ec668 config-linux,schema: fix FileMode description
87f15fb schema: fix json
869b2d5 linux: clarify pids cgroup settings
a6c310a config-linux: clarify when the RDT sub-directory should be removed.
b280c07 config-linux: clarify the "MB:"-line filtering in RDT.
84b6c2c docs: fix and elaborate the nodes field in Linux memory policy
0758679 features-linux: expose IntelRdt monitoring support
e51a839 config-linux: define default clos for linux.intelRdt
642344a specs-go/features: add linux.intelRdt.schemata field
34a39b9 config-linux: add intelRdt.enableMonitoring (#1287)
afd830f principles: fix typo
57c9495 Add support for Linux memory policy
c6b3b08 runtime: fail when a poststart hook fails
af0d16d config: Add Hardware description object to the VM configuration
Bumping image-spec to version v1.1.1-22-g6519a62, which comprises the following commits:
02ba6e2 Descriptor size cannot be negative
cee899b Fix: Add entry to schema/go.sum
558802d Docs: Update pandoc for rendering documentation
693d8d7 Update to github.com/russross/blackfriday/v2
cbb69e2 Update to github.com/santhosh-tekuri/jsonschema/v6
d0e1005 Split github.com/opencontainers/image-spec/schema into a separate Go module
84ee56d Fix: correct a broken link to "applying changesets"
0bb67c2 Update GitHub Actions configuration
ab50866 Chore: Remove GOPATH from GitHub Actions
4fecf47 Add blake3 as a registered/supported hash algorithm
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
c371e230f4 |
criu: update to v4.1.1
Bumping criu to version v4.1.1, which comprises the following commits:
a44aa6d98 criu: Version 4.1.1
ced15c302 test/zdtm: remove unused compiler argument
570621a48 mount-v2: enter the mount namesapce to propagation properties
b6059ff19 criu: Version 4.1 (CRISC-V)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
b9a87151f6 |
cri-tools: update to v1.34.0
Bumping cri-tools to version v1.26.0-1341-g80b852a5, which comprises the following commits:
25cdc3c2 Remove link to outdated kubic repository
72954ec8 Bump crate-ci/typos from 1.38.0 to 1.38.1
559c81a3 Bump crate-ci/typos from 1.37.1 to 1.38.0
c53f9383 Bump crate-ci/typos from 1.37.0 to 1.37.1
5903b9c2 Fix typos
5bb88133 Bump crate-ci/typos from 1.36.3 to 1.37.0
ac9df58c Bump crate-ci/typos from 1.36.2 to 1.36.3
bd5edc46 Bump actions/cache from 4.2.4 to 4.3.0
776c8c28 chore: sync names
550f39b8 docs: updated the typo in CRI-O badge image URL
684cf823 Bump the kubernetes group with 7 updates
c28735fe Disable short name mode in CRI-O e2e tests
6f1e9f52 Bump actions/setup-go from 5.5.0 to 6.0.0
9bf6d58b Bump crate-ci/typos from 1.36.0 to 1.36.2
405add18 Bump crate-ci/typos from 1.35.5 to 1.36.0
bd848a4c Bump ncipollo/release-action from 1.18.0 to 1.20.0
2c5de193 Bump crate-ci/typos from 1.35.5 to 1.35.8
0fa372bb Bump ncipollo/release-action from 1.18.0 to 1.19.1
1ff5e6e8 Switch to to k8s 0.34.0
f7f7c6b0 Bump the gomod group across 1 directory with 8 updates
ad23e1ea Bump the gomod group with 2 updates
2e2646fa Switch to go 1.25
ee8bc12e Bump crate-ci/typos from 1.35.4 to 1.35.5
d9a45203 Update cri-tools to v1.34.0 in README.md
04365fd8 Update k8s and ginkgo
23d42883 Bump the gomod group across 1 directory with 10 updates
b7c27702 Update golangci-lint and config
b39a7917 Bump crate-ci/typos from 1.35.3 to 1.35.4
e57b4a9f Bump actions/checkout from 4.2.2 to 5.0.0
d1e1a989 Vendor Kubernetes v1.34.0-rc.1
b1b79cad Bump crate-ci/typos from 1.35.2 to 1.35.3
dceb355f Bump actions/cache from 4.2.3 to 4.2.4
6c2ceeb8 Bump crate-ci/typos from 1.35.1 to 1.35.2
00e4e773 Bump the gomod group with 4 updates
46823b3a Bump crate-ci/typos from 1.34.0 to 1.35.1
bfca4858 Bump github.com/docker/docker in the gomod group
e4974ec0 Bump sigs.k8s.io/yaml from 1.5.0 to 1.6.0 in the kubernetes group
ed4f9714 Bump the gomod group with 2 updates
c0a16628 support to auto generate pod uuid
532ecbc4 add warning about empty cgroup_parent field in pod config
d0b9a2d9 Bump the kubernetes group with 7 updates
c49a0899 Bump google.golang.org/grpc from 1.73.0 to 1.74.0 in the gomod group
5e45295c Update golangci-lint and config
610c747c doc: add steps to use runp when systemd cgroup driver is used
6e8c942b Bump crate-ci/typos from 1.33.1 to 1.34.0
2fd2e155 Bump the gomod group across 1 directory with 4 updates
c06fef2d Switch to windows-2025 in CI
86334baa Support websocket connections in `critest`
c7e766e7 Bump ncipollo/release-action from 1.16.0 to 1.18.0
1e5de756 Bump the gomod group with 4 updates
9dee32cb Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 in the kubernetes group
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
d9fe4df438 |
cri-o: update to v1.34.1
Bumping cri-o to version v1.34.1-9-g5780ac7b4, which comprises the following commits:
6d3fac06f Update log formatting in interceptors to use %+v for better readability of structs
83172bb4c Fix dependencies check
1c84c7c4b Re-add the `--enable-fixed-path` removal for gpgme
43f6eeeda version: bump to 1.34.1
7561efe0b HighPerformanceHooks: Defer irqSMPAffinityFile rollback
c2eab18ba HighPerformanceHooks: Move IRQ balancing to PostStop hook
0790633e6 HighPerformanceHooks: Add mock infra for command and system unit tests
e294f5435 HighPerformanceHooks: Make locks atomic for irq SMP affinity
bbd9d0360 server: Fix network cleanup failures when NetNS path is empty
a8b550ad0 config: configure shortname through configuration and enforce shortnames
7a4365cf5 Add crio.runtime.runtimes seccomp_profile to crio.conf.5 doc
9b922306b build(deps): bump the gomod group with 4 updates
5813011e0 build(deps): bump the gomod group with 2 updates
1c4060d8f Warn when CONTAINER_INCLUDED_POD_METRCIS (typo) is used.
a0a44b5dd Add runtime handler seccomp profile
fdda720ff build(deps): bump github.com/prometheus/client_golang in the gomod group
84ea2f8b6 build(deps): bump the gomod group with 2 updates
165d40bfa build(deps): bump the gomod group with 7 updates
15233a7de tests: add a unit test for log rotation
d07b9575e Update nixpkgs
c411cfa7b build(deps): bump github.com/onsi/ginkgo/v2 in the gomod group
47b7f11ff Update nixpkgs
c5942f667 Update other deps
fb2861507 build(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
fb183a27c runtime_vm: Implement the ReopenContainerLog function
d1839c936 build(deps): bump the gomod group with 4 updates
eb3004491 Use k8s 0.34.0
cc074af34 build(deps): bump the kubernetes group with 7 updates
cf1c33f6e Remove thermal_throttle masked paths.
d10c4e501 Use k8s rc instead of the next minor
558c5483c build(deps): bump the gomod group across 1 directory with 16 updates
9d999d519 Cleanup container user log message and trivial code
655c5f8fe docs: regenerate/update man pages.
2a71e8181 completions: regenerate completions.
64863ccbe nri: add configuration for the default validator.
7c5f1fe54 server: add type conversion functions removed from NRI.
831b8dd9b go.{mod,sum}: update NRI to v0.10.0.
21b03fda2 inspect: add hostnetwork information
cc10ee3cd Add support for conmon-rs log driver and heaptrack config
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
34e36ce8b6 |
containerd: update to v2.2.0-beta.1
Bumping containerd to version v2.2.0-beta.1-12-ga7e49900a, which comprises the following commits:
a4ddfd7eb build(deps): bump the golang-x group with 2 updates
c740c57b4 build(deps): bump github/codeql-action from 3.30.6 to 4.30.8
6316ab81d build(deps): bump softprops/action-gh-release from 2.3.4 to 2.4.1
ed2e81a78 bugfix:sync parent dir to ensure blob entry is reliably stored
bfd6c52b4 Defer removal of deprecated registry config fields to 2.3
71f5d16aa bugfix:fix container logs lost because io close too quickly
c039f5349 ci: bump Go 1.24.8
773bfa0ea Use tartest to simplify generating a tar
6a3b10fe7 Add a test for the erofs differ using tar index mode
42f2784ca Update go.mod to use api/v1.10.0-beta.1
8922d84e5 build(deps): bump google.golang.org/grpc from 1.75.1 to 1.76.0
36c22f45c Update referrers fallback logic to always have a fallback
0f3c5484f Fix gha api release file path
f6b3b8cbe build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
7a7d7a996 build(deps): bump github/codeql-action from 3.30.5 to 3.30.6
669c3047a build(deps): bump softprops/action-gh-release from 2.3.3 to 2.3.4
ba606fe14 build(deps): bump actions/stale from 10.0.0 to 10.1.0
15d5fa725 build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
60fb4adb0 1.6 is EOL
aa571f63c Prepare release notes for api/v1.10.0-beta.0
83a946dca Add missing implicit dependency to podsandbox controller
c69f443ba Update sandbox controllers service implicit dependency
637429a25 Update logging for sandbox controller service
f0aeb9037 Add sandbox controller create call to client
a338d8b2f Fix sandbox client shutdown to ignore not found errors
54ba402a2 Add default sandboxer to client
c7b3114eb Update mount manager code documentation
f3af360f6 Update runtime to read allowed custom mounts from runtime
2189d3d6c build(deps): bump docker/login-action from 3.5.0 to 3.6.0
cfb1b653d build(deps): bump actions/cache from 4.2.4 to 4.3.0
94e6bcea5 Add support for allowing custom types through mount manager
efc995011 Add runtimes option to task manager
dd9c43150 Add option to allow formatted mounts
9c21e867e Handle flaky case for loop autoclear
f7b77e649 Update mount manager cleanup logic
069cbfe8f Use mount manager for temp mounts
93070961b Update snapshotter tests to use mount manager
fa327566b Fix mount manager deactivate errors
9c0cc4a42 Add mount manager format test
61b8426ae Add mount manager documentation
67f0970a5 Add mount activation integration test
39f128b99 fix invalid deactivate error
76a877bb5 Add mount activation support to task service
5b4de2c34 Add implementation of list and get mount activation
184fae60f Add backreference support to mount manager
9794addce Add mount formatting test
d8e5cdd76 Fix gc cleanup and add unit tests for gc
49634889f Update ctr image mounts to use mount manager
62062902f Add support for mount manager to ctr snapshots mount
563b28154 Add mount manager to client
c8e7674cc Add temporary mount support to manager
aba772012 Add debug logs to mount service calls
d23e635a5 Fix mount manager plugin when no handlers provided
75ed5e003 Fix mount manager gc
8db301086 Add mounts api service
67fbf9db9 Generate and vendor proto changes
c5097ac63 Add mount manager to protobuf services and types
4d34b01ce Add loopback and overlay mount manager tests
0e88cde87 build(deps): bump github/codeql-action from 3.30.3 to 3.30.5
5a00693e7 Fix integ-test: looking for sleep inf as longCommand
739821fc5 pkg/display: use platforms.Format for platform display
748cd9f03 Prevent goroutine hangs during ProgressTracker shutdown
54325eedc Fix typos introduced on PR 12323
a7537cb8a Add referrers to default registries
b668614b5 Add referrers to host config
c1b1297c6 Update capabilities for referrers
09b4ac136 Add referrers fetcher to remotes
9ca659a53 Add conf.d include in the default config
de20021f5 Make E2E workflow a required check
cbfb535ad Add a comment to explain why apt-get install erofs-utils can't be used
3df2b5d98 TestErofs/Rename fails with EROFS snapshotter
c1bf79e7a Build and install erofs-utils from source and modprobe erofs
35f94ef70 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
33e6b79fc Fix device mapper suspend/resume flakyness
5be6c0309 build(deps): bump azure/CLI from 2.1.0 to 2.2.0
7e74801b7 Move wintls as internal pkg
d2adfd820 Add support to retrieve certificate and key from windows cert store
6243cf562 Add mount manager tests
f4b7b9344 Improve formatting and support for deactivate
55ff11737 Add loopback mount handler
ed03f3a71 Add mount manager plugin and types
78ca11c1c Add mount garbage collection resource
c71598622 Add mount manager interface to mount package
1809f3ef1 Update metadata gc to run context finishes in parallel
37cec6800 Move transaction context to boltutil
09644bd13 [github-action] release - Empty allowedSignersFile
635907e63 Ensure errContentRangeIgnored error when range-get request is ignored by registry
010ad4c06 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
8112ca64f cri: remove copying of message structs
9d351805b go.mod: Bump up k8s.io to 0.34.1
517ca7566 build(deps): bump google.golang.org/grpc from 1.75.0 to 1.75.1
e009b98ce build(deps): bump github/codeql-action from 3.30.1 to 3.30.3
84aa20676 docs: Update 1.7 LTS support timeline
cfe20b588 add k8s 1.34 support matrix
479cf42ca Add extraction progress to transfer service
09e531b88 Add progress to apply options
a85610d52 Prepare release notes for v2.2.0-beta.0
dba7f8fbe Update releases doc to show v2.2 has started beta
da2a8b34e build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3
6f92111a9 build(deps): bump actions/stale from 9.1.0 to 10.0.0
52c310c98 build(deps): bump actions/github-script from 7.0.1 to 8.0.0
39a38dd60 build(deps): bump google-github-actions/upload-cloud-storage
284716350 build(deps): bump github/codeql-action from 3.30.0 to 3.30.1
d4fd22ce7 build(deps): bump github.com/prometheus/client_golang
b2866150a build(deps): bump the golang-x group with 3 updates
65badbef4 Resolve `staticcheck` complaints on FreeBSD
f45716efe Clean up issues cited by `usetesting` package with golangci
53d78b68d runc:Update runc binary to v1.3.1
c77b70852 pkg/cio: Close(): use errors.Join to return all errors
bfbb18ca8 build(deps): bump github.com/containernetworking/plugins
1fac82f0e build(deps): bump github.com/checkpoint-restore/checkpointctl
6374ac511 build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0
23c51c25b build(deps): bump github/codeql-action from 3.29.11 to 3.30.0
b56804da7 build(deps): bump google-github-actions/auth from 2.1.12 to 3.0.0
683cd7d60 gc:make sure lastCollection is not nil
bcecb979a build(deps): bump lycheeverse/lychee-action from 2.5.0 to 2.6.1
fb28794f4 Update Go requirements in BUILDING
591a769a6 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
f4238238f build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0
fd1a7a102 build(deps): bump google.golang.org/grpc from 1.74.2 to 1.75.0
8ebe57e2e build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
cc2a52ca8 Update pkg/oci to use FS interface
6fa776811 docs: remove shutdown adopter D2iQ Konvoy
56cde7d2c add SystemdCgroup to default runtime options
363e02310 install-runhcs-shim: fetch target commit instead of tags
77905cf6f build(deps): bump go.etcd.io/bbolt from 1.4.2 to 1.4.3
fe4ec31bc build(deps): bump github/codeql-action from 3.29.10 to 3.29.11
f0ee598ff integration: Add test for directives with userns
41953f7ac cri: Fix userns with Dockerfile VOLUME mounts that need copy
48f5d4255 script/test: clean up generated NRI test configuration.
ad207c1ce docs: update docs for NRI v0.10.0.
37b12bf5e Add documentation for cgroup_writable field
b7a401f1d cri: warn about deprecated v0.1.0-style NRI plugins.
cb9fda2e7 nri: add configuration for the default validator.
fa820a5d0 go.{mod,sum}: update NRI to v0.10.0.
3dbb9695a build(deps): bump github/codeql-action from 3.29.7 to 3.29.10
da3dc1ef6 core/mount: Retry unmounting idmapped directories
27ba690a1 core/mount: Test cleanup of DoPrepareIDMappedOverlay()
dd7fe0b76 core/mount: Properly cleanup on doPrepareIDMappedOverlay errors
cb56df4fb build(deps): bump the k8s group with 3 updates
d449d94d2 build(deps): bump github.com/emicklei/go-restful/v3
b595e0173 Update hcsshim to v0.14.0-rc.1 in preparation for containerd/2.2
7a19c94d6 core/mount: Don't call nil function on errors
dc38aaf6c ci:fix TestSandboxRemoveWithoutIPLeakage failed
6dcbdcfb3 ci: add Go 1.25.0
93c034c80 build(deps): bump actions/cache from 4.2.3 to 4.2.4
f77717f50 build(deps): bump lycheeverse/lychee-action from 2.4.1 to 2.5.0
a2d30ba30 build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
6e9b6eada core/mount: Only idmap once per overlayfs, not per layer
6ce7f6d87 pkg/sys: check SupportsPidFD first
c7f19d104 build(deps): bump the golang-x group with 2 updates
8d275704a build(deps): bump actions/checkout from 4.2.2 to 5.0.0
e3b2bcead build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0
5bd22a3e9 build(deps): bump github.com/containerd/go-cni from 1.1.12 to 1.1.13
bd9e577c2 Fix ctr snapshot mount produce invalid mount command for empty option
db31fbc5a ci: bump Go 1.24.6
45e02e1dc sys: fix pidfd leak in UnshareAfterEnterUserns
7340a7a28 fix: create bootstrap.json with 0644 permission
2b48e3cb9 build(deps): bump docker/login-action from 3.4.0 to 3.5.0
398d42313 build(deps): bump github.com/prometheus/client_golang
aeace7daa build(deps): bump google-github-actions/auth from 2.1.11 to 2.1.12
009625290 Block CIM snapshotter & differ
63c9cfcc1 fix typo: collecter -> collector
3653c911b Update mailmap for austinvazquez
55fd29789 build(deps): bump github/codeql-action from 3.29.2 to 3.29.4
6e0579453 build(deps): bump google-github-actions/upload-cloud-storage
22a88c1ac build(deps): bump the k8s group with 3 updates
83deebdd5 build(deps): bump google-github-actions/auth from 2.1.10 to 2.1.11
a38708cc9 build(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2
68a55252f refactor: use the built-in max/min to simplify the code
b70b43f6b time to upgrade to 1.33 cri-tools
4f95737e1 Remove Alpha gate from k8s e2e runs
46325f114 Update 1.6 timeline to add an extended period
ed174c914 cmd/ctr: rename vars that shadowed builtin
4420b5a49 Ensure fetcher always closes body and properly calls release
1b821ca04 fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
118a84147 ci: update crun to 1.22
c5ad254a3 ci: bump Go 1.24.5
0eaa09e35 Make signal notifications work on Windows
636d29832 build(deps): bump the golang-x group with 3 updates
dbb44287f Plumb windows CPU affinity values to runtime spec
12daca5f6 Fix intermittent test failures on Windows CIs
117179ae1 Remove WS2025 from CIs due to regression
222b2d3e7 update pause image to pause:3.10.1
e96ebc008 erofs-snapshotter: make IMMUTABLE_FL optional
f75323f89 nri: enable otel traces in NRI.
b641933cf erofs snapshotter: Add tar index mode
62bbdce7f update go-md2man binary to v2.0.7
fd464031d build(deps): bump github.com/tchap/go-patricia/v2 from 2.3.2 to 2.3.3
e0d733c87 blockfile: Ensure required options are always set
aed961a6f Remove additional fuzzers from CI
24ea5f23f build(deps): bump golangci/golangci-lint-action from 6.5.2 to 8.0.0
a0ed14fd4 erofs-differ: fix filesystem UUID for tar-converted layers
b92e8b544 Add GitHub Action for k8s node e2e tests
eb63b5b4d Amend runtime handler test for stable order
c6ae08193 CRI: Stable sort for RuntimeHandlers
f51a2fbfd Test showing RuntimeHandlers in Status() are unordered
cc913cac6 build(deps): bump github/codeql-action from 3.29.0 to 3.29.2
40f3b74af build(deps): bump go.etcd.io/bbolt from 1.4.1 to 1.4.2
587c0757b build(deps): bump github.com/intel/goresctrl from 0.8.0 to 0.9.0
35cbd7349 Fix port forward error logger to not cause concurrent write
7a46fe7e6 Correct Commit Memory Aggregation for Windows Containers
a4aebea4b build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
100b78711 build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
621d661be Add coverage support for CRI integration tests
bf1c47f5e core/runtime/v2: shimManager.cleanupWorkDirs ignore non-existing path
d553c4014 Update GHA runners to use latest image for most jobs
610f29914 Update garbage collection docs
6537a61d0 Add back reference test for collectible resources
df87a8f71 Add support for backreferences in gc
8ecd6b6fa Update gc tests to make digests easier to identify
cf7f4f5cc restore: skip pull for existing base image
b671a9721 ctr:add sandbox info command to print sandbox info
b95265124 build(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1
9f9ce00aa build(deps): bump the k8s group across 1 directory with 3 updates
a79e79141 ci:fix ci TestContainerExecLargeOutputWithTTY panic
97bbc1f73 Remove unused Windows 2019 powershell scripts
cb53f381e fix when multipart fetching and the server does not return content length
d3516916a Fix fetch always adding range to requests
aea4e685e build(deps): bump github.com/urfave/cli/v2 from 2.27.6 to 2.27.7
ed7746656 ci: bump golangci from 6.5.2 to 7.0.0
37147b13a Disable ST1003: struct field Uid should be UID (staticcheck)
19a713061 Disable QF1003: could use tagged switch on base (staticcheck)
03a44a2d7 fix: Used nolint to ignore the static checks
4ba81d429 fix: ST1001: should not use dot imports (staticcheck)
b52997372 fix: ST1019: removed the duplicate imports
403f86ecc fix: QF1012: Use of fmt.Fprintln(...)
d93d18c85 fix: QF1001: could apply De Morgan's law (staticcheck)
b3eec6d8e fix: ST1005: error strings should not end with punctuation or newlines
1ff590004 fix: QF1004: strings.ReplaceAll instead (staticcheck)
56516173d fix: QF1002: could use tagged switch on host (staticcheck)
0df6d1e6b build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0
4593023f1 build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus
1f288492c build(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
0779c0a6d build(deps): bump softprops/action-gh-release from 2.2.2 to 2.3.2
9b7f24610 build(deps): bump github/codeql-action from 3.28.18 to 3.29.0
b7bda5d6e build(deps): bump go.etcd.io/bbolt from 1.4.0 to 1.4.1
7c97cd331 build(deps): bump the golang-x group with 2 updates
e6708bddf bugfix:close container io when runtime create failed
4bf1705a8 Implement io.ReaderAt on docker fetch reader
734d52c39 chore: remove specific go version code
04ce9f884 feat: preserve nsPath on mount failure to ensure cleanup
af068ff86 Update fetcher errors to include full registry error
6e1f0203e Register remote errors for clients to access registry errors
697d77676 Decode grpc errors in the transfer client proxy
9de26f315 [e2e] add case for shim wait interface
49664dab5 Add context in Process Wait interface
415df3892 ci: bump Go 1.24.4 in CI
2f1948a50 Enable CIs to run on WS2022 and WS2025
8de612020 pkg/oci: don't use var for WithPrivileged
cf667aa7e pkg/oci: add basic test for WithParentCgroupDevices
d72c21450 pkg/oci: don't use vars for WithAllKnownCapabilities, WithAllCurrentCapabilities
ac3c3ad5d pkg/oci: cleanup some tests
4de598d94 pkg/oci: remove compatibility code for go1.16 and older
17c632e78 pkg/oci: fix minor linting issues
cff8184ff support image volume sub path
a8658a708 erofs-snapshotter: fix to work with wrapped errors
4f7c69ae6 Update differ selection in transfer service to prefer default
21f0595b9 Add debug log when transfer returns not implemented
d9bb00578 Add more error details when unpack fails to extract
4dd2cd92c build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
48cec3659 Update transfer supported platforms logic
1ac97c2c1 *: properly shutdown non-groupable shims to prevent resource leaks
128229975 Enable DuplicationSuppressor in transfer service
00edba6aa Remove internal interface from unpacker interface
77562a8e4 fix import for local transfer service
a93c8d3cd build(deps): bump google.golang.org/grpc from 1.72.0 to 1.72.2
4a2c40223 build(deps): bump lycheeverse/lychee-action from 2.4.0 to 2.4.1
ee85517b1 docs: fix v2.1.0 release link
e57b9f751 dep: bump up k8s.io/cri-api to 0.33.0
a4dd2b8f2 go.mod: bump up go to 1.24.3
b9a29bdb9 ci: bump up go to 1.24.3
811d04422 shim-v2:improve shim error message
6e17198f0 Add descriptor to transfer pull image events
213337ce4 Fetch image with default platform only in TestExportAndImportMultiLayer
aa9c17c69 Add symlink breakout test for overriden path
78e838c34 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
b98b99836 build(deps): bump github.com/emicklei/go-restful/v3
fb6dd2cf1 client:improve mount error message
8be437ee8 docs(ansible): fix the folder
d498e690e clones k8s util exec used by streaming code removing k8s util dependencies
6c0d36b24 follow-up changes discussed at end of review creating these packages
b0052d94a pkg/oci: prevent panic for some platform-specific options
ee5ad982f docs/snapshotters/erofs.md: a tip for improved performance
5f2200b2c erofs-differ: fix EROFS native image support
af24e463b update runhcs to v0.13.0
7063ee659 clones vendor of k8s.io/kubelet/pkg/cri/streaming
11efadd36 build(deps): bump github.com/vishvananda/netlink
e29c0fe58 build(deps): bump github.com/Microsoft/hcsshim
21215b216 build(deps): bump dario.cat/mergo from 1.0.1 to 1.0.2
38c9bb93a Revert "perf(applyNaive): avoid walking the tree for each file in the same directory"
1a4c32105 seccomp: kernel v6.13
6180d6243 seccomp: kernel v6.12
fea77e15b ci: bump golang [1.23.9, 1.24.3] in build and release
a2f1f4a67 cri:use debug level when receive exec process exited events
8d3eb6567 Update removal version for deprecated registry config fields
2be7a7310 ci:fix ci timeout on almalinux
98698617c Update internal/cri/server/container_create.go
af05355e4 internal/container_create: if sandboxConfig's metadata is nil will panic
bcfba26ca internal/cleanup: remove Background(), add tests for Do()
ada7bdf19 replace "cleanup.Background" for "context.WithoutCancel"
c4435bb48 internal/cleanup: fix package godoc
e58bc944f core/runtime/v2: cleanup shim-cleanup logs
9ae54175d ctr:make sure containerd socket exist before create client
6ebe15dd4 cri:fix containerd panic when can't find sandbox extension
8bc62da9c client/New: Don't unlazy the gRPC connection implicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
cf405d46b3 |
conmon: update to v2.1.13-tip
Bumping conmon to version v2.1.3-280-g42da7ac, which comprises the following commits:
8debcb5 Move attach start message after failure check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2ddec7ea71 |
aardvark-dns: upate to v1.16.0
Bumping aardvark-dns to version v1.16.0-20-g360f28c, which comprises the following commits:
56db1e0 release v1.16.0
2cdc994 release notes for v1.16.0
0c392ba [skip-ci] Update actions/checkout action to v5
5d34b0f fix(deps): update rust crate libc to 0.2.175
254c6d1 test: Remove empty user= directive in dnsmasq.conf to avoid SIGSEGV
b8a6c4c [skip-ci] Update actions/download-artifact action to v5
52cf09a fix(deps): update rust crate tokio to 1.47.1
ef89561 fix(deps): update rust crate tokio to 1.47.0
83b2433 coredns: fix typo in debug message
cdcaf7c coredns: process more than one message per tcp connection
5061851 fix(deps): update rust crate tokio to 1.46.1
fece9be fix(deps): update rust crate tokio to 1.46.0
57e60fa fix new rust 1.88 lint errors
7706847 fix(deps): update rust crate clap to ~4.5.40
6cf86fc fix(deps): update rust crate libc to 0.2.174
4930bb6 fix(deps): update rust crate libc to 0.2.173
9f6a258 make more use of AardvarkError
f93435d fix(deps): update rust crate clap to ~4.5.39
995be0e fix(deps): update rust crate tokio to 1.45.1
147de22 fix github release action
7af0797 bump to v1.16.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
5302350d7a |
buildah: update to v1.41.5
Bumping buildah to version v1.41.5-1-g0e4301a18, which comprises the following commits:
7d95c695c Tag v1.41.5
b7b5a915c tests/run.bats: "run masks" test: accept "unreadable" masked directories
913046ac2 Run: create parent directories of mount targets with mode 0755
4094f92e3 [release-1.41] Bump to Buildah v1.41.4
4acf2a549 [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
4778d77f24 |
podman: update to v5.6.2
Bumping libpod to version v5.6.2-2-g3529cd312f, which comprises the following commits:
9dd5e1ed33 Bump to v5.6.2
3b1ae51c60 Release notes for v5.6.2
aa5595391d Vendor buildah@v1.41.5
1751612f33 Handle SIGPIPE to prevent machine stuck in Starting state
a2dda0410c Bump Podman to v5.6.2-dev
1e2b231515 Bump to v5.6.1
9812c1f87d Final release notes for v5.6.1
dcdaaf24be update tests duo to CRUN#1767 to support both values
f93cad508a Fix a locking bug in that could cause a double-unlock
bd0386ff56 Add R! to systemd-tmpfiles script for all /tmp dirs
f532f361c0 [v5.6] Bump c/buildah v1.41.4, c/storage 1.59.1, and ...
ca994186f0 kube play: don't follow volume symlinks onto the host
74b2ea3a68 Bump xz to v0.5.15 to pick up a CVE fix
66eb23b4d1 Preliminary release notes for v5.6.1
7601c78be3 do not pass [no]copy as bind mounts options to runtime
26a41ad665 do not pass volume-opt as bind mounts options to runtime
4e83155959 tests: Get rid of netcat on the host and use Bash's /dev/tcp
f8800b7fa8 tests: Replace ncat for socat
8f3fcf7c29 test/e2e: actually start container in startContainer
bc905f25c3 fix(libpod): truncate long hostnames to correct maximum length
a366d42c99 Add a release note for 5.6 Rosetta being disabled-by-default
cd08b088f6 windows: do not convert unconfined seccomp path
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
437efd9259 |
lopper: update to -tip
Bumping lopper to latest, which comprises the following commits:
873dc86 docs(zephyr): Add comprehensive AMD SoC processor documentation with Sphinx integration
56aebd4 lopper: assists: zephyr: Add support to generate AXI Ethernet node
bbc725f lopper: assists: zephyr: Add support to generate ADMA node
2bbaa8a lopper: gen_domain_dts: Add board-specific Kconfig.defconfig generator
c427c8e sanity: schema types validation
a1ee241 schema: add /bits/ 64 type hinting
e8fd208 docs: update READMEs to latest
3da2ee3 openamp: xlnx: fix get_platform() so it does not modify tree compatible string
d2c606f lopper: assists: zephyr: Add support to generate SPIPS node
5da49d5 lopper: assists: zephyr: Add support to generate OSPI node
c99a35c lopper: assists: zephyr: Add CANFD node for zephyr
0318aa1 lopper: assists: Add AMD-VERSAL-GEN2 UFS for Zephyr
9eef3ea lops: microblaze-riscv: Use full extension linkflags
944b5c1 lopper: assists: gen_domain_dts: Add psu_r5_0_atcm_lockstep
0b74369 gen_domain_dts: Add watchdog0 alias support for Zephyr DT generation
b89ae38 lopper:assists:baremetal_getsupported_comp_xlnx: Dynamically read supported procs from YAML condition
d2f950a lopper/tree: add trusted mode for node addtions
bbe8ac4 schema/tree: add /bits/ 16 array and /bits/ 8 support
d878a40 schema: workaround mixed-type /bits/ properties
1288749 gen_domain_dts: Prune IPI child node properties using Yaml schema
fa1200b lopper: assists: gen_domain_dts: Add zynqmp-ipi-mailbox DT yaml
fc77531 lopper: assists: baremetalconfig_xlnx: Avoid unsupported sysmon child node
26ff1d9 lopper: assists: gen_domain_dts: Add tcm IPs to the linux_ignore_ip_list
0db98f3 schema: convert print statements to _warning
3cf6669 schema: add uint64 single and array definitions
3ae7472 schema: complete path based typing
8eb7a1e tree: normalize phandle managmement
d0523e7 tree: enhance 16 bit value support
756c0b8 lop-microblaze-riscv: Remove hardcoded libpath generation in favor of toolchain auto-handling
09b8c42 tree: do not print/create explicit phandle properties
d14118e tree: do property clobber by default
8f70860 schema: support /bits/ 8 and flexible whitespace in parsing
23956b6 schema: strip /* */ comments
b339f7e schema/core: add 16 bit support
93bcf44 lopper:assist: Add processor check for library validation
86b5ebb lopper: gen_domain_dts: zephyr: consolidate mailbox setup
c0dcedc openamp: xlnx: simplify xlnx_rpmsg_update_tree
9115871 openamp: xlnx: remove old fn xlnx_rpmsg_kernel_update_ipis
27762b9 openamp: xlnx: xlnx_rpmsg_ipi_parse: simplify logic
d059e2a openamp: xlnx: cleanup: use list comprehensions where able
1254986 openamp: xlnx: zephyr: ipi: Remove superfluous handling
7aa1fab lopper: assists: Enhancing assists with improved logging for better traceability
9822917 docs: Add docs directory for documenting AMD specific lops and assists usages
12e708b openamp: xlnx: xlnx_openamp_find_channels: add back support for single run
f93c309 lopper: assists: yaml_bindings: Add properties to support MST Protocol
7897482 lopper: assists: gen_domain_dts: Add support for DPLL clock primitive
bdd741f lopper:assist: Define FRL enable macro based on HDMI mode
ccbac5e openamp: xlnx: zephyr: fix up IPI checks
fd90af0 assists/gen_domain_dts: don't use nested quotes
e4714e6 setup: allow yaml nodes to be recursively merged
aedf720 openamp: xlnx: versal2: ensure remoteproc range/regs are IDs limited to 0 or 1
d2dd4a3 openamp: xlnx: add logging
a8e953b openamp: xlnx: only add memory-region property if DDR nodes are present
2c3a5ab openamp: xlnx: Ensure that single run still works
4fd7a05 openamp: xlnx: Err Handling for Zephyr
cc0e518 lopper: gen_domain_dts: zephyr: Cleanup for root node compatible and ipi children
e2be7c1 assists: README: Document optional <machine> arg and auto platform inference
ee2ea68 baremetallinker_xlnx: Select correct DDR system map for platform
59ee3c4 openamp: xlnx: Update mapping to just use v2
807f579 lopper: assists: yaml_bindings: Add dynamic BPC flag
27c80d2 lopper: assists: yaml_bindings: Add linerate property for vtc calculation
915f3cb openamp: xlnx: Update to work with latest
2755d92 assists/subsystem: Add clustercpu property
8f9475f openamp: xlnx: xlnx_remoteproc_construct_carveouts: Ensure that if there exists reserved memory node - append to it
9dc47e8 openamp:xlnx: add check for size strings
1f1b9b3 assists/subsystem: fix cpu expand check
7482536 schema: enhance regex's to be more whitespace tolerant
1c3f28b sanity: unset LOPPER_DTC_ARGS
9b817c6 openamp:xlnx: update to work with latest gen machine conf consecutive runs
b133397 openamp: xlnx: update to account for second run
2955e6f tree: when adding becomes merging, consider children
9366900 yaml: do parent key replacement in-place
61a19c9 schema: add support for /bits/ notation
933aaee tree: make dtc escaping exception safe
97be86b sanity: embedded lop test
a2ddd8c lopper/yaml: allow "parent" properties to be written to yaml
80db4fb openamp: xlnx: Update zephyr flow for latest
63a1b99 tree: ensure strings are dtc safe
cb23ccd lops/domain: make lops more descriptive
0b5422b tree: automatically update lnodes on label set
3664bb7 lopper_sanity: add multi-yaml, parent include and glob tests
1c6f28a assists/subsyste: make domain access management more robust
9542d1b yaml: input search and error if files are not found
3d59b12 assists/subsystem: add type hint for json encoded strings
309c33a schema: convert to lopper log format
21fe9b6 lopper: update phandle descriptions while building the schema
899bcbc lopper: consolidate phandle parsing and analysis
0501728 tree: allow subnodes to be retreived by name
b666add fdt: handle boolean properties as int
45a9d93 assists/domain_access: add reserved-memory and chosen node merging
88b61cb lopper: ensure that input files are unique and compatible
f5adfe4 lopper/schema: allow saving of the schema
0a170fc schema/fdt: improve property type detection and debug
af8018c sanity: adjust to schema API changes
c7ec270 lopper: enable schema for type checking
8e6e1db lopper: introduce schema support
d3b58fc assists/subsystem: add parent and glob handling
dbc1302 lopper-core: strict/permissive handling enforcement
f8a4b88 lops: add autorun domain processing lop
04e3c37 lopper: add autorun lop files
a5d31ba yaml: introduce parent key support
8fd077e lopper/yaml: implement preemptive merging of yaml files
e9b7a71 inputs: enhance property merging
7178d62 lopper/assists: Add automatic platform inference to xlnx_overlay_pl_dt
1bbebf5 assist:baremetal_getsupported_comp_xlnx: Add variant support for platform-specific example filtering
7b785fa openamp: xlnx: add fix for libmetal ipis
f59ad9e openamp: xlnx: Use IPIs from SDTGEN
073e05e lopper: gen_domain_dts: Remove IPI deletion
05ae429 Lopper: Assists: Allow application creation when required memory is exactly matched
f77119b baremetalconfig_xlnx: improve clock offset logic
8121752 openamp: xlnx: zephyr: fix up for latest
02eccfe lopper: assists: Add AMD-Xilinx IPI for Zephyr
54fa128 openamp: xlnx: fix bug for linker generation
88e9679 lopper:assist: Preserve Individual Memory Regions in Memory Config to Avoid Merging Holes
8fa4f93 assists: zephyr_supported_comp: Remove timeout-sec property from wwdt
a4c16bd assists: bmcmake_metadata: Add support to define generic CMAKE_MACHINE defines using family
f6d4fcc lopper: gen_domain_dts: Add IPI node filtering for A78 processors
fa0b351 openamp: xlnx: zephyr: clean up parsing code path
8bcd2b2 openamp: xlnx: zephyr: output mailbox node given domain YAML
1a08579 openamp: xlnx: zephyr: Add IPC node
5919f78 lopper: assists: gen_domain_dts: Add support for generating AXI SPI compatible node for zephyr
28903f8 lopper: assists: gen_domain_dts: Bug fixes in the zephyr A78 support
1cecbb8 lopper: assists: gen_domain_dts: Add support for zephyr board dt handling
7050320 openamp: xlnx: support latest zephyr build flows
2e4d500 lopper/assists: Generate pl.dtso instead of pl.dtsi for overlay output
b2052d2 lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root
a9c713d assists: generate_config_object: Check key before indexing into map
5cc1d67 lopper: assists: gen_domain_dts: Add support for generating cortexA78 specific Zephyr device-tree
757d2e5 assists: gen_domain_dts: Add special handling for QDMA IP when it is configured as Endpoint mode
06f2eff lopper:assists: Add Versal QDMA PL IP support to XDMA YAML
0634982 lopper/assists/README: Add --firmware-name option documentation for xlnx_overlay_pl_dt.py
e8048da lopper: assists: zephyr: Add interrupt-names to UARTPSV
65e7e8b lopper/xlnx_overlay_pl_dt: Add support to override firmware-name via command-line
bb0b0c3 lopper: lops: Update the lops to use outdir option
5014ddf lopper:assists: Add support to read the custom configurations in the YAML
9573da8 lopper: Fix tx_clk index handling in clock property
b0983f5 tree: add alias lookup to deref()
b513a01 lopper: pass output directory in the lop environment
9f84e4c assists: Exclude TTC sub-nodes from peripheral test generation
055968c assists: generate_config_object: Avoid generating corrupted config object
6196b98 lopper: assists: gen_domain_dts: Don't generate PMP related configuration incase of pmp-entries is zero
a03c519 lopper: Support specific clock retrieval
3b2fed2 lopper: make support binary checks work with no input SDT
2fd02d5 lopper_lib: handle invalid cpu phandles gracefully
9399826 lopper: handle NotADirectoryError when searching for input files
a4e7a3f lopper: allow phaandle replaceent exclusions
299f01e lopper: consider arguments when filtering assist options
c47115d lopper: sync lopper_base definition of dt_compile with fdt/dt functions
efb278e assists: baremetallinker: Add DDR_PL NOC specific address ranges
b3d1ced gen_domain_dts: Retain memory controller nodes in linux device tree
7aa07f3 assists: gen_domain_dts: Delete the afi (xlnx, afi-fgpa) and clocking (xlnx, fclk) nodes from linux dt
b1b177c ops/assists: add support for disabling selected IPs and removing status="okay"
4adabd7 lopper: lops: Restrict FreeRTOS OS selection for Versal2
e861668 lopper: explictly declare the Lopper package variable default
8caa4b1 loper/dt: update dt_compile to match libfdt version
d24db69 lopper: allow assists to be called without an input SDT
0bffe70 lopper-sanity: adjust node tests for new __lopper-phandles__ node
d71030d lopper: learn phandle patterns from source code
d194515 lopper: support pcpp-python as well as pcpp
0846969 lopper:assists:baremetal_getsupported_comp_xlnx: Add support to include the examples in the lib_list.yaml
5b46bb1 sanity: add embedded lop and phandle replacment sanity test (example)
fa0c035 lopper: allow priority on embedded lops
4560397 baremetal_xparameters_xlnx: Add macros DDRMC5 device type
bdbe71e lopper: improve tmpfile handling
67b71f3 isospec: disable phandle resolution on yaml nodes
5c55e6e tree: add phandle_resolution flag
3421043 lopper: lops: lop-microblaze-riscv: Update multilib mapping when fpu is configured in the design case
2a10805 assists: generate_config_object: Fix overwriting of ipi_bit_pos by adding break statement after assignment
81fb3e1 assists/domain_access: update logging and error checks
e2a1f39 tree: resolve node after adding as subnode
f1b899e openamp: xlnx: versal2: Update compatible string for cluster
377d871 Revert "lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root"
4bca811 lopper: assists: gen_domain_dts: Don't delete memory node when generating zephyr device-tree
5a78f6d lopper: update README with xlnx_overlay_pl_dt.py details and usage
eaabffe lopper: assists: baremetalconfig_xlnx: Add special handling for pciepsu driver
8c5290b openamp: xlnx: updates for latest driver
c5ea88b lopper: assists: zephyr: Add GPIOPS nodes for zephyr
8681dc5 lopper: assists: zephyr: Add SDHC node for zephyr
f6c99bc assists: gen_domain_dts: Add support to read input clock for r52
8945793 assists: gen_domain_dts: Add support to create clock nodes
fda70d0 assists: gen_domain_dts: Keep the nodes having no base address in linux dt
6dc564d lopper: assists: bmcmake_metadata_xlnx: Add speed_grade property
39db3ed lopper: assists: convert zephyr mb-v fast interrupt error message to warning
6232e03 lopper/assists: Move non-address-mapped subnodes from '/amba_pl' to root
71d56c4 lopper: assists: baremetal_xparameters_xlnx: Generate CPU-specific macros for MicroBlaze processors
bd7deb3 ops/assists: Introduce new assist file to address PL overlay issues
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
183ff71f2b |
docs: update README with improved layer description
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Patrick Vogelaar
|
39d095241e |
docker: make ca-certificates a packageconfig
Moving ca-certificates into a packageconfig allows using docker without installing all the certificates. Signed-off-by: Patrick Vogelaar <patrick.vogelaar@belden.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
4aebf900d9 |
cloud-init: update to 25.2
We also convert to meson, so the python setuptools patch is dropped.
Bumping cloud-init to version 25.2-65-gb04c475f3, which comprises the following commits:
b04c475f3 feat(schema): add support for the not keyword (#6469)
f626daa0f fix: correct netplan renderer target (#6465)
d4f268a51 feat(hetzner): enable hotplug support and prepare IPv6 integration (#6445)
f68c11dcc fix(net-convert): respect output directory with netplan
8a90aa5ab fix(bddeb): require exec permissions on temporary folder
7b591b9bc fix: properly quote commands in `do_as` function (#6400)
1e9aba633 Optionalize bash completion. (#6441)
b12c9f1bb docs(nocloud): Fix file schema examples (#6455)
1955952be fix(systemd): revert auditd.service dependency (#6448)
2cdc58f24 fix: bddeb tool needs distro debian param for package dependency lookup
ae2311d1e fix(test): raises match against an empty string will always pass
254d459cd fix(test): marks applied to fixtures have no effect
cd03bf97c test: refactor test_reporting.py to use only pytest (#6449)
c5c635847 Update wait_for_cloud_init.rst to be more consistent about systemd usage (#6442)
8d888b336 fix: add OpenRC support to Meson build (#6426)
5fd23da61 feat(rh_subscription): new release_version field (#6347)
822358b0c chore: bump isort version (#6446)
ada8b0cb7 net_convert.py: make some import failures not generate an error (#6399)
6f27d0e8d test: fix lru_cache test wrapper (#6443)
464903f96 docs(cc_raspberry_pi): Fix example4 (#6439)
f123b65e7 test: refactor test_data.py to use only pytest (#6440)
12ab35987 tests: convert util.pathprefix2dict tests from unittest to pytest (#6433)
63d5b797d chore: hand off responsibilities (#6432)
e10c8809e feat: support nmap in socket protocol (#6339)
f9fc38095 feat(cc_raspberry_pi): remove remote_gpio interface (#6429)
6de2a6e73 fix(docs): Fix typo in `fDQn` (#6420)
8b05eaa0d Refresh dev docs for tests (#6428)
93af2dda8 fix(raspberry-pi-os): Update ntp client (#6425)
664563504 fixed defs types in cloud-init cmd devel make_mime (#6419)
16f2039d0 test: remove CiTestCase fully (#6416)
8ebe74fd5 test: drop citestcase from test_reporting_hyperv.py (#6413)
d3240b168 test: drop citestcase from net/test_init.py (#6410)
21cc50c6d test: drop citestcase from test_version.py (#6415)
890873f50 fix: read-dependencies syntax error on regex (#6326)
fed437569 doc: add testing links to doc/rtd Development headings (#6326)
697999962 chore: update developer specfile and build for opensuse (#6326)
232e8c18f chore: update developer specfile redhat/fedora and dependencies (#6326)
ad367e2b1 chore: drop yaml validation target, covered in unittests (#6326)
ff9a69ba1 chore: update debian developer packaging template (#6326)
a5d280996 fix: add apt-get update before development pkg install (#6326)
cf59dba84 chore!: switch to meson.build due to PEP632 (#6326)
e0bf72661 chore: render vlan, bond, bridge mac properly in network state (#6397)
9648ad628 chore: replace all mailing-list references with GH Discussions
ffba354cc chore: replace all IRC references with matrix
4349e29c0 fix: fixed defs types in cloud-init analyze show (#6353)
3c067c6b7 chore(tox): align check_format's pylint folder targets (#6414)
442d45186 test: drop citestcase from net/test_network_state.py (#6402)
64afa5343 test: drop citestcase from net/test_dhcp.py (#6401)
885843a52 chore(ci): bump pylint version, fix test failures (#6408)
a90e65252 chore(ci): fix cloud-init test failures from new pylint (#6407)
922468845 chore(ci): bump versions for black, ruff, and mypy (#6406)
f1f28d0a0 doc: change `jammy` to `noble` (#6398)
d094a99eb test: drop citestcase from t* tests (#6379)
1c1eebb52 fix: add missing test mock (#6395)
0af8dcbfe test: drop citestcase net_freebsd (#6374)
6a4075f35 test: drop citestcase from test_util.py (#6387)
d2f422d17 Add 'to: default' support in network state (#6391)
52ec5ae24 test: drop citestcase from s* tests (#6378)
c9e282a23 test: drop citestcase from r, s and u sources (#6373)
df9175600 test: drop citestcase from v sources (#6372)
861773055 test: drop citestcase from n and o sources (#6363)
dbc63b030 fix: make tools/tox-venv with current versions of tox (#6365)
ab2a33659 test: skip gpg dependency test on questing (#6388)
dc0bfda39 feat(networkd): add support for rendering bridge devices (#6349)
265fabd5f cloud-init-hotplugd: remove use of "exec" and unnecessary exit (#6357)
e682bef5b Release 25.2
f21d266eb fix: Ensure 822 template renders correctly on Debian (#6381)
3fc9a0648 test: support systemctl try-reload-or-restart messaging alternatives (#6377)
8f89f5604 test: increase 2nd disk size for disk setup tests (#6376)
1b908e331 feat(clean): Add a new clean option to clean fstab entries (#6348)
aa4a1d354 test: handle TMPDIR != "/tmp" (#6356)
c7007900d fix: add openeuler hosts template to avoid cloud-init service failures (#6328)
58c2b9d47 test: increase timeout on test_clean_package_install (#6362)
c1551ade3 test: relax checks on authorized keys (#6361)
10d933bd8 fix: Correct v2 ENI route and dns rendering (#6331)
a15b77b18 test: drop citestcase from i sources (#6346)
af8bb5f97 test: drop citestcase from g and h sources (#6344)
23e728cc1 test: drop citestcase from c and d sources (#6336)
b15f97de2 test: drop citestcase from al* sources tests (#6318)
e210598d9 disk_setup: Optionally use 'sfdisk' for GPT
13891e06a disk_setup: Fully support full GPT partition GUIDs
deb0f9e5b fix(ENI): render keys with hyphens (#6333)
219cbbbb8 fix: fixed defs types in cloudinit analyze dump (#6343)
01b93d065 feat(networkd): support vlan and bond rendering (#6324)
12ce7d9fb fix(analyze-boot): use monotonic clock for containers #6322
90d80fe3f clean: do not attempt to find datasource when cache has been cleaned (#6325)
c3e881f2c test: drop citestcase from azure_helper tests (#6335)
a729cd7e5 chore: remove unused target arg from Activator.available
b92f3cd50 chore: add typing to cloudinit.net.eni
08a9dcf34 feat(azure): Implement the clean callback for DataSourceAzure (#6321)
0fec2e239 feat(oracle): set keep_configuration to true for iscsi instances
cf5bb7b08 feat(network): add keep_configuration setting to v1
60d40baa2 doc: Document how to wait for cloud-init
5e11d38db doc: Document changed systemd order in 24.4
08630373f fixed defs types in cloudinit analyze (#6308)
c4e80f7b6 ci: downgrade LXD to fix integration tests (#6340)
699b0afab test: drop citestcase from azure source test (#6320)
067197e33 fix: catch and log exception during pip upgrade in ansible pull (#6301)
61f25bed0 test: drop citestcase from some config tests
c57cf3f15 fix: GCE datasource query issue (#3398) (#6279)
720d00b2b test: drop citestcase from distro tests (#6317)
2dab1fdcb test: drop citestcase from rest of config tests (#6314)
7d602e0a8 ci: update patch checking to use current supported releases (#6315)
dfaf5fd69 test: drop FilesystemMockingTestCase (#6294)
753c7a671 test: ensure image setup only runs once, even for xdist
bf233fe71 test: turn reaper into a fixture
1eb9e5c91 test: refactor obtaining session args into new function
9a480f1ce test: simplify passing of lxd_setup callback
aefdbe06b test: drop citestcase from analyze tests (#6312)
3a56dd0d6 test: drop FilesystemMockingTestCase in netconfig (#6290)
2a2491939 test: expose tests.unittests.ditros._get_distro (#6290)
fbbe53c47 doc: detailed examples of openstack config alternatives for non-x86 images (#6303)
0fbea98bb test: drop FilesystemMockingTestCase in smartos (#6291)
6873d635d test: drop some FilesystemMockingTestCases (#6284)
422573b66 docs: clarify what #include can include (#6309)
87e748188 doc(ssdlc): Add hardening page (#6297)
9ecb0db69 docs: Document network device table and limitations (#6187)
2b6c7e654 fix: allow downstreams to strip invalid MTU (#6246)
de6ae26fe test: drop FilesystemMockingTestCase from cc tests (#6282)
ff1d9f041 docs: use correct jinja content-type (#6296)
a5083f810 test: drop ResponsesTestCase (#6277)
4e3ca8208 test: Consolidate use of paths fixture (#6289)
a113049d0 test: pytestify test_vmware.py (#6288)
1dfd7b597 feat(ca_certs): Add CentOS support (#6287)
ab2cc28d0 feat(wsl): Reuse metadata as Landscape installation_request_id (#6200)
37b0e26a5 test: drop / pytestify ResourceUsingTestCase (#6276)
21961048a docs(mounts): Correct fs-freq reference to fs_freq (#6262)
bffd33209 test: pytestify ds_identify tests (#6274)
170ef23a8 test: pytestify t/u/test_log.py (#6275)
0ecd7b772 feat(hetzner): integrate private networks metadata (#6224)
685361722 test: pytestify cloudinit.s.helpers.netlink tests (#6273)
009c4cfd3 Release 25.1.4
02879c364 Release 25.1.3
e3f42adc2 fix: strict disable in ds-identify on no datasources found
55692b0fe test: add integration test to install cloud-init from clean state (#6260)
eb9c1239d docs: provide example3 for PAM and ssh_pwauth behavior (#27)
8b45006c4 fix: Make hotplug socket writable only by root (#25)
8c3ae1bb9 fix: Don't attempt to identify non-x86 OpenStack instances
703117132 doc: update discourse release schedule link (#6263)
770e01212 doc: update discourse link
cf8e70266 chore: log URL when retrying 503s (#6264)
f1a156ca5 test: add option to keep instance on error (#6241)
aa29a62f1 eni.py: ensure that a "dns" entry is not rendered in interfaces file (#6253)
20c9074cf feat(azure): improve handling for reading VM ID (#6199)
f731cdf35 fix: remove unnecessary 'Wants' from cloud-init-main.service (#6255)
805ad91c4 test: use latest version of LXD in integration tests (#6249)
8d9cae224 docs: include missing --seed flags in clean CLI (#6244)
8024a4a4b ec2: Improve metadata retrieval by iterating all interfaces (#6233)
c61e42a03 feat: Add Raspberry Pi OS support (#5827)
c3848d574 feat(azure): add interface to dhcp_log_func (#6238)
b8ed20e3d fix: fix untyped-defs on tests/unittests and cloudinit/sources (#6230)
4512e9e3c test: pre-fetch instance id when logging from reaper (#6234)
6f8d157e2 feat: Add subnet metric support for netplan (#6222)
e830bfb9e test: remove FilesystemMockingTestCase from test_cc_apk_configure.py (#6226)
e67b35901 fix: make 'cloud-init --all-stages' work interactively (#6211)
7bd9659c8 test: remove FilesystemMockingTestCase from test_util.py (#6220)
7b11c084c test: remove FilesystemMockingTestCase from test_dmi.py (#6219)
d6e7ace4d docs: merge "Availability" and "Supported distros" pages (#6217)
52820da4a fix: ansible-pull multiple playbooks on older ansible ver < 2.12 (#6218)
752d4a6c7 docs: remove monospace formatting from SSH section heading (#6215)
1eb5bbabd fix: no traceback on command line missing subcommand (#6214)
e2bef7815 feat: Change ansible pull module type from dict to list (#6010)
951f397a5 test(apt): add questing versiong for hello pkg (#6213)
ab4f8cf81 docs: Use Noble for examples instead of Jammy (#6209)
6e1e3d47b feat(ca_certs): add rocky to rhel distro overrides (#6208)
990145862 docs: ensure proper 'sudo' representation (#6196)
50e42da3b fix(net): ignore udevadm failures when enumerating nics (#6185)
b5046c400 Release 25.1.2 (#6197)
dc6a6817d revert "chore: Deprecate partially supported system config (#5515)"
315908aad fix: copr builds of CentOS9 require CRB and baseurl in centos.repo (#6192)
282b7296f chore: add fedora package build support for run-container and read-deps (#6174)
27f09b77e test: drop fixed xfail tests
619e3fc63 fix: simplify MAAS check logic
4668c5ad6 feat(azure): allow unspecified user name (#6177)
a90db9223 fix: stop reporting error if cloud-init receives signal (#6159)
589c9461d Fix: Add Ephemeral Network for CloudStackLocal DS (#6144)
74d0bf2a1 docs: clarify examples for network addresses/gateway (#6186)
cc791571c fix: setup.py doesn't match AmazonLinux CPE 2.2 releases (#6173)
7a0265d36 fix: ensure MAAS datasource retries on failure (#6167)
e018cdb29 cloud.cfg.tmpl: do not enable cc_reset_rmc for Alpine Linux (#6170)
d709574e5 tests: ibm avoid schema validation for DataSourceNone on ibm (#6168)
d17c77787 tests: ibm fix apt and ds-id testing (#6168)
e1a499dbd test: fix integration test on new lxd versions (#6164)
41f790816 tests: ibm correct logged message. Invalid schema: vendor-data (#6163)
15d2e89c7 tests: ibm expect invalid vendor-data in stderr (#6160)
ccd69e8b6 tests: ibm expect invalid vendor-data in stderr (#6158)
5a0b09b03 tests: fix ibm expected warnings on invalid vendor-data schema (#6157)
3c2ff0ca7 fix: drop udev remove action in hotplug (#6152)
f322144d7 chore: remove reference to refresh_rmc_and_interface module (#6156)
755e9811f chore: reorder iface filters & log on inherited MAC (#6140)
a87e4da88 fix(azure): update ReportableErrorUnhandledException (#6133)
cc8d1b4c4 chore: make auditd wait for cloud-init-local.service (#6138)
1ce03e269 chore: allow custom pkg-config binary path (#6118)
851d25956 fix: rename "reload-or-try-restart" to "try-reload-or-restart" (#6142)
a376f0266 chore: make lint interpreter configurable (#6121)
a748c5066 fix: ensure system sshd_config is not overwritten (#6105)
de415c61c fix(oracle): properly detect ipv6 only for private ULA addresses (#6123)
59ffa16ac feat(oracle): downgrade warning log about falling back to imds (#6134)
c0b65f920 Release 25.1.1 (#6120)
802717a1a chore: remove remaining references to .github-cla-signers (#6116)
441d677bd fix(cli): wrong usage output when invalid arg in subcommand (#6115)
a3c73f9cd fix(Azure): don't reraise FileNotFoundError during ephemeral setup (#6113)
fb5e24f32 fix(azure): handle unexpected exceptions during obtain_lease() (#6092)
34cb46e20 feat: add callback for datasources to clean config changes (#6100)
2ad1b675a chore: Fix untyped-defs on tests/unittests/config (#6104)
9e648827b chore: switch to has-signed-canonical-cla GH action (#6109)
ff9c8e9d7 Allow to set mac_address for VLAN subinterface (#6081)
022152954 change retry sleep for wireserver (#6107)
53d6f413d test: pytestify cc_chef tests, add migration test
5367237fc chef
23ad9b966 chef: migrate files in old config directories for backups and cache
0dbbed7a2 fix: correct the path for Chef's backups (#5994)
8f7739b58 test: replace version check with has_netplanlib() (#6106)
70c239b22 feat(vmware): Support network events (#6063)
2400f4b65 test: correctly mock fallback nic in openstack tests (#6101)
3179611bf fix: Remove erroneous EC2 reference from 503 warning (#6077)
1931ee5a6 test: update keys_to_console timeout (#6087)
340481d46 test: move to has_netplanlib() in test_networking.py (#6089)
671baf22d fix: NM reload and bring up individual network conns (#6073)
3da7eca87 ci(oracle): fix issue installing cloud-init on custom image creation (#6084)
ad984da18 test: decouple netplan integrations from libnetplan SRU (#6085)
ee7b6aa83 test: warning on users/groups test is version specific (#6078)
9547ec19c test: fix errors in custom datasource networking (#6076)
a136a979d test: ensure software-properties-common properly removed (#6080)
b73643fb7 test: remove script death check from test_signal_handler.py (#6079)
f696327d2 test: ensure NoCloud networking works on plucky (#6072)
c21dbade9 fix: stop warning on dual-stack request failure (#6044)
a9f19a92d test: Add integration test for signal handling warnings/errors (#6037)
da32327a7 feat(azure): format ReportableErrorImdsInvalidMetadata without repr (#6052)
50a8747da docs: v1.cloud_name section typo (#6070)
d590f649e fix: install_method: pip cannot find ansible-pull command path (#6021)
aba3791c3 fix: Fix DataSourceAliYun exception_cb signature (#6068)
9311e066f fix: Update OauthUrlHelper to use readurl exception_cb signature
582f16c14 test: add OauthUrlHelper tests
8810a2dcc test: Remove CiTestCase from test_url_helper.py
c60771d8e test: pytestify test_url_helper.py
9704ba816 test: check for correct logrotate config (#6060)
eefaae571 test: don't fail test if ppa has no uploads (#6059)
d264ac6f3 test: make users/groups warning test release aware (#6056)
6250553ca fix: when get_session_cloud() fails, _SESSION_CLOUD isn't set (#6051)
1286a55b8 chore: Sort .gitignore
15ebbba71 chore: Add new entries to gitignore and glob more
3221b4b03 fix: track more removed modules (#6043)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
f0401f5870 |
xen-tools: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
690655a511 CI: Include microcode for x86 hardware jobs
0258350a63 CI: save toolstack artifact as cpio.gz
69a629b462 CI: Switch to new argo artefact
1532272067 CI: remove now unused alpine-3.18-arm64-rootfs job and its container
7f26cba32c CI: avoid repacking initrd as part of the test job
20212a32e9 CI: Rename intermediate artefacts in qemu-* scripts
fd7218e3f4 CI: write whole etc/issue for domU initrd
16b30e0827 CI: switch qubes runners to use console.exp
563af5983b CI: fix waiting for final test message
17bad6958a CI: wait for Xen to start before waiting for test to complete
a70222e30c CI: Drop stale test-artifacts/alpine/3.18.dockerfile
18d59a6056 CI: Update ARM64 tests from Linux 6.6.74 to 6.6.86
e9978d089a CI: Update x86 tests from Linux 6.1.19 to 6.6.56
87ab3ad445 CI: adjust resolving network interface into PCI device
052e7f57ec CI: wait for the network interface in PCI passthrough tests
23f7c8341c CI: consistently use DOCKER_CMD in makefiles
78317ae331 CI: increase verbosity of starting a domain
17c6958bb4 CI: include domU kernel messages in the console output log
d747ca04b4 CI: enable XHCI console in Xen debug build on Alpine
0ab5bedcfd CI: prevent grub unpacking initramfs
a30bb23e9a ci: add Intel KabyLake HW runner
d6a11ac363 ci: create boot.ipxe for legacy boot
59be07b2d3 automation/eclair: Reduce verbosity of ECLAIR logs.
2b430f8685 automation: add tools/tests jobs on the AMD Zen3+ runner too
56899974ca automation: allow selecting individual jobs via CI variables
b0a94e392c automation: add jobs running tests from tools/tests/*
f2603e2b1d automation: skip building domU if there is no test defined for it
d4e5f8c627 automation: upgrade arm32 kernel from bullseye to bookworm
56badca5d8 automation: upgrade Linux kernel for arm64 tests to 6.6.74
35cb38b222 x86: constrain sub-page access length in mmio_ro_emulated_write()
f1e8b37f50 xen: remove -N from the linker command line
a05e4817f9 x86/intel: workaround several MONITOR/MWAIT errata
fc07876bea x86/EFI: correct mkreloc header (field) reading
7d9bbb8ba8 compat/memory: avoid UB shifts in XENMEM_exchange handling
23a02992ed x86emul: also clip repetition count for STOS
ade8230830 x86/HVM: update repeat count upon nested lin->phys failure
dee15facf8 x86/mm: account for the offset when performing subpage r/o MMIO access
6b399ed19f xen/rangeset: fix incorrect subtraction
f1dd955988 include: sort $(wildcard ...) results
f01a09d0b1 x86emul/test: drop check for AVX512-4FMAPS
1a8df8282c xen: x86: irq: initialize irq desc in create_irq()
2bd2c08a0f x86/cpu: Validate CPUID leaf 0x2 EDX output
e0d9137ae7 xen: vm_event: do not do vm_event_op for an invalid domain
5b5a11c6c8 sched/null: avoid another crash after failed domU creation
da24dccf53 x86/MTRR: hook mtrr_bp_restore() back up
ad82c8c7b6 x86/ucode: Extend AMD digest checks to cover Zen5 CPUs
ad569a4bd7 x86/ucode: Perform extra SHA2 checks on AMD Fam17h/19h microcode
41d65b3114 xen/lib: Introduce SHA2-256
95d726d28b tools/libxl: do not use `-c -E` compiler options together
c413eff3c5 automation/eclair: Remove bespoke service B.UNEVALEFF
e071b23394 CI: Add yet another HW runner
dd81219b84 automation/cirrus-ci: add smoke tests for the FreeBSD builds
fdbb32a9a9 automation/cirrus-ci: store XTF and Xen build artifacts
e6816c3758 automation/cirrus-ci: build XTF
cfa5bc6f0a automation/cirrus-ci: use matrix keyword to generate per-version build tasks
81189d7116 automation/console.exp: do not assume expect is always at /usr/bin/
0b37231312 automation/cirrus-ci: store Xen Kconfig before doing a build
44407a9d92 automation/cirrus-ci: update FreeBSD to 13.5
0a84ef2731 automation/cirrus-ci: add timestamps
8f94c1ec72 automation/cirrus-ci: store xen/.config as an artifact
2599ee0b60 CirrusCI: Use shallow clone
3ccbe66d30 xen/percpu: don't initialize percpu on resume
b1bbf20a93 x86/P2M: synchronize fast and slow paths of p2m_get_page_from_gfn()
64f9c54daa ARM/vgic: Fix out-of-bounds accesses in vgic_mmio_write_sgir()
ad063b08b1 tools/ocaml: Fix oxenstored build warning
a2cf6f9d52 Arm/domctl: correct XEN_DOMCTL_vuart_op error return value
52c99f4b43 x86/pmstat: correct get_cpufreq_para()'s error return value
108fcc6a73 x86/PVH: account for module command line length
f14c523da1 x86/emul: Emulate %cr8 accesses
990a3d8710 x86/emul: Rearrange the logic in hvmemul_{read,write}_cr()
a1f8f1e681 x86/PVH: expose OEMx ACPI tables to Dom0
fcbd016bd2 xenpm: sanitize allocations in show_cpufreq_para_by_cpuid()
92afeb2961 x86/boot: Simplify the expression for extra allocation space
859e2c4f84 xen/compiler: Fix the position of the visibility pragma
de440d0407 x86/vga: fix mapping of the VGA text buffer
da36efa852 x86/xlat: fix UB pointer arithmetic in COMPAT_ARG_XLAT_VIRT_BASE
fbb06cfa73 x86/shadow: fix UB pointer arithmetic in sh_mfn_is_a_page_table()
8c788b41d7 x86/mkelf32: account for offset when detecting note segment placement
c607822b5a x86/setup: correct off-by-1 in module mapping
c1badde601 xen/arinc653: call xfree() with local IRQ enabled
97f064d9ab x86/mm: Fix IS_ALIGNED() check in IS_LnE_ALIGNED()
408935872a x86/ioremap: prevent additions against the NULL pointer
b29984df38 libxl: avoid infinite loop in libxl__remove_directory()
80cbb29612 xen/sched: fix arinc653 to not use variables across cpupools
f2ddbeb9dd tools/libxl: Skip missing PCI GSIs
1ddf72bbdf tools/ctrl: Silence missing GSI in xc_pcidev_get_gsi()
94928e415f x86/hvm: check return code of hvm_pi_update_irte when binding
74b40fe105 x86/vmx: fix posted interrupts usage of msi_desc->msg field
f581b36608 x86/msr: expose MSR_FAM10H_MMIO_CONF_BASE on AMD
4a480e7a14 x86/vlapic: Fix handling of writes to APIC_ESR
70038e8c09 tools/xl: fix channel configuration setting
bc3006b9fe x86/dom0: be less restrictive with the Interrupt Address Range
a1a5bd40b5 x86/iommu: account for IOMEM caps when populating dom0 IOMMU page-tables
1d8d5753b7 x86/dom0: correctly set the maximum ->iomem_caps bound for PVH
b5ade8ef26 x86/dom0: attempt to fixup p2m page-faults for PVH dom0
48f013199a x86/emul: dump unhandled memory accesses for PVH dom0
9d465658b4 update Xen version to 4.20.1-pre
3ad5d648cd Update to Xen 4.20
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
71c31c79b5 |
xen: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7c5b606679 |
xen: update to RELEASE-4.20.1-tip
Bumping xen to version RELEASE-4.20.1-40-gae992e68d3, which comprises the following commits:
ae992e68d3 CI: Create initrd fragments explicitly as root
d7e55a4139 Arm: adjust locking in p2m_get_page_from_gfn()
1230b94f1c Arm: foreign page handling in p2m_get_page_from_gfn()
665a641471 x86/viridian: protect concurrent modification of the reference TSC page
c5ecaf0200 x86/viridian: avoid NULL pointer dereference in viridian_synic_deliver_timer_msg()
5f83f721fb x86/viridian: avoid NULL pointer dereference in update_reference_tsc()
c59a69ae9e x86/gen-cpuid: Fix debugging for cycle detection
24fef7a86f x86/gen-cpuid: correct cycle detection
eb1dc440b2 xen/efi: Fix crash with initial empty EFI options
9eb436c461 hvmloader: fix SMBIOS table length checks
68f5ecf690 tools: add sizeof_field and endof_field macros
1541866d47 x86/suspend: unconditionally raise a timer softirq on resume
96b7183a02 x86/mce: Adjustments to intel_init_ppin()
a98591e217 x86/iommu: setup MMCFG ahead of IOMMU
cb827d8317 x86/hvm/ioreq: Fix condition in hvm_alloc_legacy_ioreq_gfn()
e2590544d5 x86/mkelf32: pad load segment to 2Mb boundary
16dae1e1cf efi: Call FreePages() only if needed
67fcd2d2e5 x86/hpet: do local APIC EOI after interrupt processing
ea5025554e xenalyze: correct symbol name length fscanf() specifier
7cda6b6509 tools/xl: don't crash on NULL command line
4072b0b24c xen/arinc653: fix delay in the start of major frame
ec5752e154 xen/credit2: factor in previous active unit's credit in csched2_runtime()
2fd3628fa6 x86/svm: Always flush TLB using TLB_CTRL_FLUSH_ALL
f1f2ac1a63 x86/alternatives: serialize after (self-)modifying code
69568ab306 x86/S3: don't lose previously collected CPU data (AMD extra)
73eaac394c x86/idle: Fix the C6 eoi_errata[] list to include NEHALEM_EX
c7f876c993 x86/ept: batch PML p2m type-changes into single locked region
c75f3aea50 x86/ept: move vmx_domain_flush_pml_buffers() to p2m-ept.c
a586e3865a x86/S3: don't lose previously collected CPU data
36a83978c5 x86/SMP: guard socket_cpumask[] access in cpu_smpboot_free()
758879c019 x86emul: adjust BSF/BSR/LZCNT/TZCNT behavior as to EFLAGS
60186d6f5f x86/mwait-idle: add Clearwater Forest SoC support
76281c34cd x86/mwait-idle: add Granite Rapids Xeon D support
1345e24869 x86/mwait-idle: add Granite Rapids Xeon support
a634a48b48 x86/mwait-idle: add Sierra Forest SoC support
a4dd64ea81 x86/mwait-idle: add Grand Ridge SoC support
733dd65888 x86/mwait-idle: Add Meteorlake support
53939e22c2 x86/mwait-idle: add Emerald Rapids Xeon support
6d0b94a461 x86/mwait-idle: Add AlderLake-N support
faf408249c update Xen version to 4.20.2-pre
08f043965a update Xen version to 4.20.1
4f0dc6c643 x86/idle: undo use of MONITOR/MWAIT mnemonics
138d403e07 x86/spec-ctrl: Mitigate Transitive Scheduler Attacks
05b991100e x86/idle: Rearrange VERW and MONITOR in mwait_idle_with_hints()
be1e30b45d x86/ucode: Digests for TSA microcode
67dda84795 x86/cpu-policy: Infrastructure for CPUID leaf 0x80000021.ecx
88c8875c9d x86/cpu-policy: Rearrange guest_common_*_feature_adjustments()
349c70a391 x86/idle: Fix buggy "x86/mwait-idle: enable interrupts before C1 on Xeons"
13d09b2f12 x86/idle: Implement a new MWAIT IPI-elision algorithm
1a51c6252a xen/softirq: Rework arch_skip_send_event_check() into arch_set_softirq()
3f11eda311 x86/idle: Convert force_mwait_ipi_wakeup to X86_BUG_MONITOR
d6727b7e25 x86/idle: Drop incorrect smp_mb() in mwait_idle_with_hints()
f5dd06f9b1 x86/idle: Remove broken MWAIT implementation
60522d4040 x86/cpu-policy: Simplify logic in guest_common_default_feature_adjustments()
b6436bb005 Revert part of "x86/mwait-idle: disable IBRS during long idle"
8869f66d29 x86/idle: Remove MFENCEs for CLFLUSH_MONITOR
fa254938f0 x86/idle: Move monitor()/mwait() wrappers into cpu-idle.c
0c70d44453 x86/cpu-policy: Fix handling of leaf 0x80000021
703e42cd87 xen/build: pass -fzero-init-padding-bits=all to gcc15
74e66f34f9 libxc/PM: Retry get_pxstat if data is incomplete
f448bc1074 libxc/PM: Ensure pxstat buffers are correctly sized
9e1309b0f0 x86/emul: Fix extable registration in invoke_stub()
2f80f3071a xenalyze: Add 2 missed VCPUOPs in vcpu_op_str
fd64f59cc7 cpufreq: Avoid potential buffer overrun and leak
110bc6ef1a x86/pmstat: Check size of PMSTAT_get_pxstat buffers
0cd774e8c2 tools/libxl: Only access legacy altp2m on HVM
60f6137190 x86/pv: Fix breakpoint reporting
ed3bf0a89b x86/vmx: Fix VMEntry failure on ADL/SPR with shadow guests
5919917921 x86/vpci: fix handling of BAR overlaps with non-hole regions
a60e953080 x86/pv: fix emulation of wb{,no}invd to flush all pCPU caches
ddec00769c x86/emul: Fix emulation of RDSEED with older toolchains
612cfd7215 x86/IRQ: constrain creator-domain-ID assertion
ee150f56fc x86/pv: fix MMUEXT_FLUSH_CACHE to flush all pCPU caches
f938c08494 x86/spec-ctrl: Support Intel's new PB-OPT
b1eeea44cd cpufreq: don't leave stale statistics pointer
68506161ef x86emul: avoid UB shifts in FLDENV/FRSTOR handling
d58800f13d xen/link: Include .debug_str_offsets in DWARF2_DEBUG_SECTIONS
45056fe5c5 x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware
b9e8204ab1 x86/thunk: Build Xen with Return Thunks
cda26aed40 x86/stubs: Introduce place_ret() to abstract away raw 0xc3's
c6a2b5e9d0 x86/thunk: (Mis)align the RETs in clear_bhb_loops() to mitigate ITS
f81f44393f x86/thunk: (Mis)align __x86_indirect_thunk_* to mitigate ITS
5992d3ab9f x86/guest: Remove use of the Xen hypercall_page
cf81888012 x86/alternative: Support replacements when a feature is not present
47d911f69e CI: Build with --prefix=/usr rather than setting LD_LIBRARY_PATH
690655a511 CI: Include microcode for x86 hardware jobs
0258350a63 CI: save toolstack artifact as cpio.gz
69a629b462 CI: Switch to new argo artefact
1532272067 CI: remove now unused alpine-3.18-arm64-rootfs job and its container
7f26cba32c CI: avoid repacking initrd as part of the test job
20212a32e9 CI: Rename intermediate artefacts in qemu-* scripts
fd7218e3f4 CI: write whole etc/issue for domU initrd
16b30e0827 CI: switch qubes runners to use console.exp
563af5983b CI: fix waiting for final test message
17bad6958a CI: wait for Xen to start before waiting for test to complete
a70222e30c CI: Drop stale test-artifacts/alpine/3.18.dockerfile
18d59a6056 CI: Update ARM64 tests from Linux 6.6.74 to 6.6.86
e9978d089a CI: Update x86 tests from Linux 6.1.19 to 6.6.56
87ab3ad445 CI: adjust resolving network interface into PCI device
052e7f57ec CI: wait for the network interface in PCI passthrough tests
23f7c8341c CI: consistently use DOCKER_CMD in makefiles
78317ae331 CI: increase verbosity of starting a domain
17c6958bb4 CI: include domU kernel messages in the console output log
d747ca04b4 CI: enable XHCI console in Xen debug build on Alpine
0ab5bedcfd CI: prevent grub unpacking initramfs
a30bb23e9a ci: add Intel KabyLake HW runner
d6a11ac363 ci: create boot.ipxe for legacy boot
59be07b2d3 automation/eclair: Reduce verbosity of ECLAIR logs.
2b430f8685 automation: add tools/tests jobs on the AMD Zen3+ runner too
56899974ca automation: allow selecting individual jobs via CI variables
b0a94e392c automation: add jobs running tests from tools/tests/*
f2603e2b1d automation: skip building domU if there is no test defined for it
d4e5f8c627 automation: upgrade arm32 kernel from bullseye to bookworm
56badca5d8 automation: upgrade Linux kernel for arm64 tests to 6.6.74
35cb38b222 x86: constrain sub-page access length in mmio_ro_emulated_write()
f1e8b37f50 xen: remove -N from the linker command line
a05e4817f9 x86/intel: workaround several MONITOR/MWAIT errata
fc07876bea x86/EFI: correct mkreloc header (field) reading
7d9bbb8ba8 compat/memory: avoid UB shifts in XENMEM_exchange handling
23a02992ed x86emul: also clip repetition count for STOS
ade8230830 x86/HVM: update repeat count upon nested lin->phys failure
dee15facf8 x86/mm: account for the offset when performing subpage r/o MMIO access
6b399ed19f xen/rangeset: fix incorrect subtraction
f1dd955988 include: sort $(wildcard ...) results
f01a09d0b1 x86emul/test: drop check for AVX512-4FMAPS
1a8df8282c xen: x86: irq: initialize irq desc in create_irq()
2bd2c08a0f x86/cpu: Validate CPUID leaf 0x2 EDX output
e0d9137ae7 xen: vm_event: do not do vm_event_op for an invalid domain
5b5a11c6c8 sched/null: avoid another crash after failed domU creation
da24dccf53 x86/MTRR: hook mtrr_bp_restore() back up
ad82c8c7b6 x86/ucode: Extend AMD digest checks to cover Zen5 CPUs
ad569a4bd7 x86/ucode: Perform extra SHA2 checks on AMD Fam17h/19h microcode
41d65b3114 xen/lib: Introduce SHA2-256
95d726d28b tools/libxl: do not use `-c -E` compiler options together
c413eff3c5 automation/eclair: Remove bespoke service B.UNEVALEFF
e071b23394 CI: Add yet another HW runner
dd81219b84 automation/cirrus-ci: add smoke tests for the FreeBSD builds
fdbb32a9a9 automation/cirrus-ci: store XTF and Xen build artifacts
e6816c3758 automation/cirrus-ci: build XTF
cfa5bc6f0a automation/cirrus-ci: use matrix keyword to generate per-version build tasks
81189d7116 automation/console.exp: do not assume expect is always at /usr/bin/
0b37231312 automation/cirrus-ci: store Xen Kconfig before doing a build
44407a9d92 automation/cirrus-ci: update FreeBSD to 13.5
0a84ef2731 automation/cirrus-ci: add timestamps
8f94c1ec72 automation/cirrus-ci: store xen/.config as an artifact
2599ee0b60 CirrusCI: Use shallow clone
3ccbe66d30 xen/percpu: don't initialize percpu on resume
b1bbf20a93 x86/P2M: synchronize fast and slow paths of p2m_get_page_from_gfn()
64f9c54daa ARM/vgic: Fix out-of-bounds accesses in vgic_mmio_write_sgir()
ad063b08b1 tools/ocaml: Fix oxenstored build warning
a2cf6f9d52 Arm/domctl: correct XEN_DOMCTL_vuart_op error return value
52c99f4b43 x86/pmstat: correct get_cpufreq_para()'s error return value
108fcc6a73 x86/PVH: account for module command line length
f14c523da1 x86/emul: Emulate %cr8 accesses
990a3d8710 x86/emul: Rearrange the logic in hvmemul_{read,write}_cr()
a1f8f1e681 x86/PVH: expose OEMx ACPI tables to Dom0
fcbd016bd2 xenpm: sanitize allocations in show_cpufreq_para_by_cpuid()
92afeb2961 x86/boot: Simplify the expression for extra allocation space
859e2c4f84 xen/compiler: Fix the position of the visibility pragma
de440d0407 x86/vga: fix mapping of the VGA text buffer
da36efa852 x86/xlat: fix UB pointer arithmetic in COMPAT_ARG_XLAT_VIRT_BASE
fbb06cfa73 x86/shadow: fix UB pointer arithmetic in sh_mfn_is_a_page_table()
8c788b41d7 x86/mkelf32: account for offset when detecting note segment placement
c607822b5a x86/setup: correct off-by-1 in module mapping
c1badde601 xen/arinc653: call xfree() with local IRQ enabled
97f064d9ab x86/mm: Fix IS_ALIGNED() check in IS_LnE_ALIGNED()
408935872a x86/ioremap: prevent additions against the NULL pointer
b29984df38 libxl: avoid infinite loop in libxl__remove_directory()
80cbb29612 xen/sched: fix arinc653 to not use variables across cpupools
f2ddbeb9dd tools/libxl: Skip missing PCI GSIs
1ddf72bbdf tools/ctrl: Silence missing GSI in xc_pcidev_get_gsi()
94928e415f x86/hvm: check return code of hvm_pi_update_irte when binding
74b40fe105 x86/vmx: fix posted interrupts usage of msi_desc->msg field
f581b36608 x86/msr: expose MSR_FAM10H_MMIO_CONF_BASE on AMD
4a480e7a14 x86/vlapic: Fix handling of writes to APIC_ESR
70038e8c09 tools/xl: fix channel configuration setting
bc3006b9fe x86/dom0: be less restrictive with the Interrupt Address Range
a1a5bd40b5 x86/iommu: account for IOMEM caps when populating dom0 IOMMU page-tables
1d8d5753b7 x86/dom0: correctly set the maximum ->iomem_caps bound for PVH
b5ade8ef26 x86/dom0: attempt to fixup p2m page-faults for PVH dom0
48f013199a x86/emul: dump unhandled memory accesses for PVH dom0
9d465658b4 update Xen version to 4.20.1-pre
3ad5d648cd Update to Xen 4.20
89fd1ba884 Config.mk: Bump tags to final
6bf05e0867 SUPPORT.md: Define support lifetime
5cd830509d CHANGELOG.md: Set release date for 4.20
720499db05 CHANGELOG.md: Finalize changes in 4.20 release cycle
c0a7c96182 IOMMU/x86: the bus-to-bridge lock needs to be acquired IRQ-safe
48c7aff2f4 PPC: Activate UBSAN in testing
ac8198c532 Switch to release builds by default
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
2fade05b86 |
kernel: add 6.16 support
Adding the 6.16 configuration files to support meta-virt against 6.16 kernels. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Anil Dongare
|
23dff61259 |
grpc-go 1.59.0+git: Ignore CVE-2024-7246
Upstream Repository: https://github.com/grpc/grpc-go Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2024-7246 Type: Security Fix CVE: CVE-2024-7246 Score: 6.3 (Medium) Patch: https://github.com/grpc/grpc/issues/36245 Analysis: -CVE-2024-7246 describes an HTTP/2 HPACK header table poisoning issue found in the gRPC C-core implementation (grpc/grpc). -The vulnerability does not apply to the pure Go implementation (grpc-go) used in Yocto (meta-virtualization layer). -Marking as not-applicable-config (implementation difference). -The affected code path is not present in grpc-go.Hence ignoring the CVE for grpc-go. Reference: [1] https://nvd.nist.gov/vuln/detail/CVE-2024-7246 [2] https://github.com/grpc/grpc/issues/36245 [3] Upstream gRPC release notes confirming fixed versions for gRPC C-core (not grpc-go). Signed-off-by: Anil Dongare <adongare@cisco.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
17a69ce26e |
cri-o: correct SRC_URI and HOMEPAGE
cri-o now resides under https://github.com/cri-o/cri-o. The old URL, https://github.com/kubernetes-sigs/cri-o, now redirects to https://github.com/cri-o/cri-o. Correct SRC_URI and HOMEPAGE to use https://github.com/cri-o/cri-o. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Darshan Patel
|
5b76b43ce1 |
doc: Fix typo in README
- Corrected minor typographical error(s) in the documentation for clarity. Signed-off-by: Darshan Patel <darshan.patel@arm.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
6f84db4be0 |
umoci: update to v0.5.0 -tip
Bumping umoci to version v0.5.0-49-g645eba4, which comprises the following commits:
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
837d335ced |
skopeo: update to v1.20.0
Bumping skopeo to version v1.20.0, which comprises the following commits:
e2c1eecd Bump to v1.20.0
33d3ae41 chore(deps): update module github.com/docker/docker to v28.3.3+incompatible [security]
36176ac4 fix(deps): update github.com/opencontainers/image-spec digest to 2daaaaf
d1bbcb46 openshiftCluster.dockerLogin: create path with parents
5973d144 integration: rename registry binary
a4f3fb31 Update dependency golangci/golangci-lint to v2.3.0
203a4cf7 Improve parameter passing to hack/test-system.sh
319d18c0 Improve parameter passing to hack/test-integration.sh
94e94998 Centralize policy edits in copySuite.policyFixture
5d2cb67f Use t.Cleanup in fileFromFixture
d64b5991 Update module github.com/spf13/pflag to v1.0.7
0aab0745 Update module github.com/containers/common to v0.64.0
a3b8e175 Update opencontainers/image-spec after https://github.com/opencontainers/image-spec/pull/1253 .
f17b4c96 Update module github.com/containers/image/v5 to v5.36.0
f87d5696 Update dependency golangci/golangci-lint to v2.2.2
f9bdc2d8 Consolidate options shared between copy and sync to sharedCopyOptions
1f18641d Consistently use AddFlagSet before flag definitions
4ac60afc Update GPG keys not to use SHA-1
862c2331 Update module golang.org/x/term to v0.33.0
ef2375bc Update module github.com/Masterminds/semver/v3 to v3.4.0
3de83e9f Update dependency golangci/golangci-lint to v2.2.1
3c93577b Packit: disable official CentOS Stream update job
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
be00049d5a |
runc: update to v1.3.0
Bumping runc to version v1.3.0-24-g81693c22, which comprises the following commits:
765cd9dc runc update: don't lose intelRdt state
3ac9e165 [1.3] rootfs: remove /proc/net/dev from allowed overmount list
0f13e3f7 tests/int/cgroups.bats: exclude dmem controller
ce4ad992 libcontainer: close seccomp agent connection to prevent resource leaks
2ff79594 Preventing containers from being unable to be deleted
c6825478 fix rootfs propagation mode
15dc7b51 libct/configs: stop using deprecated id
af614c94 libct/configs: fix/improve deprecation notices
daada5e8 libct/configs: add package docstring
34fd5f0e gha/ci: allow validate/all-done to succeed for non-PRs
24537420 ci/gha: allow to run jobs manually
3a93edb6 ci/gha: fix exclusion rules
6923754a ci: bump golangci-lint to v2.1
996b5185 VERSION: back to development
4ca628d1 VERSION: release v1.3.0
60e2125b go.mod: Delete exclude directives
7031f31d runc: embed version from VERSION file
51b5267a runc --version: use a function
7b2b95d9 ci: bump to golangci-lint v2.0
6a39b491 libct/intelrdt: fix staticcheck ST1020 warnings
1ceca371 Fix staticcheck ST1020/ST1021 warnings
5d9653d8 Fix a few staticcheck QF1001 warnings
bd84d8a3 libct: fix staticcheck QF1006 warning
c3318434 notify_socket.go: fix staticcheck warning
708fe761 rootfs: improve error messages for bind-mount vfs flag setting
4f7de1e0 mount: add string representation of mount flags
2d2dd7fd ci: upgrade to criu-4.1-2 in Fedora
3c375a84 Unify and fix rootless key setup
5275ebb9 ci: install newer criu for almalinux-8
657ab785 ci: bump bats to v0.11.0
6a249199 script/setup_host_fedora.sh: use bash arrays
477391a7 script/setup_host_fedora.sh: remove -p from mkdir
d230ee59 tests/int: rm some "shellcheck disable" annotations
bcc92067 ci: bump shellcheck to v0.10.0
a46cf790 Makefile: bump shfmt to v3.11.0
6d667629 runc pause/unpause/ps: get rid of excessive warning
763f3d58 pause: refactor
55e45c64 VERSION: back to development
159c67f8 VERSION: Release v1.3.0-rc.2
d8e6733e CHANGELOG: port 1.2.x changes
713045ed tests: Add env var tests
8dd36d11 libct: Override HOME if its set to the empty string
a56f2bc8 libct: we should set envs after we are in the jail of the container
73973fb0 test: check whether runc set a correct default home env or not
109116ae criu: Add time namespace to container config after checkpoint/restore
c991b266 .cirrus.yml: install less dependencies
ffbb1dd9 CI: migrate Vagrant + Cirrus to Lima + GHA
473c740e doc: update spec-conformance.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3877bf4bb9 |
podman: update to v5.6.0
Bumping libpod to version v5.6.0-7-g41224eb949, which comprises the following commits:
cd08b088f6 windows: do not convert unconfined seccomp path
fb14c3192d podman events: show network create/remove event with journald
57cb2ca3c6 Bump Podman to v5.6.1-dev
da671ef6cf Bump to v5.6.0
98c3228471 Update release notes for v5.6.0 final release
43cb0db93b [v5.6] Bump Buildah to v1.41.3
f6584e443a [v5.6] Reverse skipped test for 26773
3354423c0d Add a deprecation notice for users of BoltDB
11efbf84c7 Bump Podman to v5.6.0-dev
ec0652f4ad Bump to v5.6.0-rc2
44e1f1e598 Update release notes for v5.6.0-RC2
5dc87663a9 feat: add Podman artifact support to Go bindings and remote clients
906b97e3e1 compat: remove deprecated VirtualSize
17a1e6cfb2 compat: add shared-size par to GET /images/json
8bcfe0ea56 compat: RepoTags and RepoDigest return [] and not null
e1f65f1642 compat: remove GET /system/df BuilderSize
ec778d94b5 compat: GET /_ping return Builder-Version: 1
57493f61d0 [v5.6] Bump Buildah to v1.41.1
8865152a3b [v5.6] Skip failing Buildah v1.41.1 test
e98899689c Remove Experimental from Artifacts man pages
21cf326c7b [v5.6] Bump c/storage to v1.59.1, c/image 5.36.1, and
797a59cefa Bump Podman to v5.6.0-dev
a3a6d9cc33 Bump to v5.6.0-rc1
e22fc65217 Add release notes for Podman v5.6.0-rc1
f3e3aace95 Temp fix for #26680
6aa70f07c2 Update "podman diff container and image with same name" e2e test
e6f812c21e API server: drop inherit-labels/annotations for compat builds
7bc9691045 buildah-bud tests: handle "-t oci:" and such, skip a new --output
ac99084d03 API handler: don't force the SkipUnusedStages flag
55f4d2aa25 API handler: don't force the CompatVolumes flag
db2baee9fa API handler: don't force the IdentityLabel flag
3e673591ad Update compat-volumes setting for remotes
bf79a9b71e Update inherit-labels setting for remotes
bfe6cbe319 pkg/emulation.parseBinfmtMisc(): accept empty "flags" fields
a615dde1a5 build endpoint: document the "timestamp" flag
7517e3267a remote build: relay more new flags introduced in buildah 1.41
73f3e98947 Feat: send additional build contexts for remote builds
97103ffef5 Add Buildah build's passwd test helper
2f71314b4a Add CLI updates for inherit and unset annotations
97f27f35a5 Add missing manpages options for Buildah v1.41.0
048729a560 Bump to Buildah v1.41.0
ca5deaace1 fix(deps): update module github.com/onsi/gomega to v1.38.0
cfdf27b350 test/system: add quadlet drop-in regression test for subdirs
022bac25ea Quadlet - fix dropin overwrites if different parent dirs
ea5b83c0cb chore(deps): update dependency golangci/golangci-lint to v2.3.0
0fda2d8aa2 added updated state in podman-auto-update.1.md.in
f293c1a179 Initial implementation of `podman quadlet` commands
3c33b33424 fix(deps): update module github.com/containers/common to v0.64.0
82ad043197 docs: add description about our code structure
da3df0c45b fix(deps): update common, image, and storage deps
c1cf4b0d89 podman rm: handle case where conmon was killed
8b1f06bf8f podman inspect: fix error difference between local and remote
21356fa06b Update module github.com/containers/storage to v1.59.0
df7d787b4c Update module github.com/opencontainers/cgroups to v0.0.4
55296e1c44 Fix test that checks for podman exec leaks
e899f49926 Update common, image, and storage deps
b48eb6e2fb volume export: refuse to write to terminal (TTY)
e55270a51a podman auto-update: include container in invalid policy message
4bc22a4b3c Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY]
0c586807ea chore(deps): update dependency golangci/golangci-lint to v2.2.2
215cecdbaa Maintainers: add Nicola Sella as Reviewer
78d4f63b93 Maintainers: add Jan Kaluza as Reviewer
5731557d54 Maintainers: add Lewis Roy as Reviewer
b4ed23dc27 fix(deps): update module golang.org/x/net to v0.42.0
8987fd412a fix(deps): update module golang.org/x/crypto to v0.40.0
047d231008 test/e2e: podman update make env check stricter
a360b29626 pkg/bindings/containers: do not ignore ErrUnexpectedEOF
ffec133766 pkg/bindings/containers: do not create sub slice
f42453457c pkg/bindings/containers: don't check for short read
439448c287 Quadlet - add support for the Policy key for .image files
5e44c17309 Clarifies error message when using an improperly formatted secret with kube
3e8b2d7d96 Fix seccomp profile path on Windows
c01eaa87dd fix(deps): update module golang.org/x/term to v0.33.0
1c943f0ad8 docs: replace fuse-overlayfs example with additionalimagestore
b59648a2d6 hack/podman_cleanup_tracer.bt: check map before deleting keys
1f8bc9d736 hack/podman_cleanup_tracer.bt: clamp str size for strcontains()
5e5bfadf93 hack/podman_cleanup_tracer.bt: use new max str lenth
152849ebd2 libpod/build: add headers
c735f8e237 Update the journalctl function to ignore No entry message
0e106c24e0 fix(deps): update common, image, and storage deps
0f61e48ac5 [Artifacts] Remove erroneous ArtifactListOptions var ImagePushOptions
53b5cb5581 [Artifacts] Add note about ArtifactInspectOptions Remote var
cd807f8ff6 Quadlet - print warning when fail to parse
2b4b4c5b06 manpages: adds example for podman system renumber
b10beb5395 Add basic locking to Libartifact
c5c6e44d7d Fix documentation around checkpoints
4410fcb394 cirrus: setup WSL logging
99e719aec8 fix(deps): update github.com/containers/image/v5 digest to 3532547
13816eb86f Fix `podman inspect` to correctly handle log_size_max
31b4efcaec warn instead of error, lift logic to main.go
68e7136536 Enforce wsl.exe UTF-8 encoded output
9fbe2fffe9 WSL commands execution refactoring
0f403ac43e Clarify meaning of --syslog
4b1f7bcb9a Quadlet - Error when units define User, Group, or DynamicUser in Service group
5391721aa3 fix(deps): update common, image, and storage deps
10a5f9715b fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.6
d8599658ff Makefile: add Makefile to sources
145fb74dbf rpm: add grpcnotrace build tag
3d453572a9 Makefile: add grpcnotrace build tag
62bfeb5d88 Add conditional release-checking system test
fed198eaf9 api: Don't HTML escape application/json responses
ffbb0ed7b0 update CI images 2025-06-27
92a6298729 chore(deps): update dependency golangci/golangci-lint to v2.2.1
38ed6c6589 vendor: update c/{common,image,storage} to main
5786d5f846 fix new lint errors from the docker update
f1a1948b23 Quadlet - Do not override existing Environment in Service group for Pod units
cf87278e66 vendor: update docker to v28.3.0
570fbf0078 pkg/domain/infra/tunnel: ignore error from removeContainer()
247c1dfb53 libpod: remove deadcode
09caf60687 remove test/framework/framework.go
d2291d7f1a pkg/util: remove deadcode
552e38ec6d remove pkg/util/camelcase
6893ecc469 pkg/rootless: remove deadcode
880808dfb9 pkg/parallel: remove deadcode
6bfd28bc6f pkg/namespaces: remove deadcode
f3c82a917c pkg/machine: remove deadcode
d919a3666b pkg/libartifact: remove deadcode
6da360a223 pkg/fileserver: remove deadcode
fb5cbb9b1f pkg/farm: remove deadcode
1a0917de35 pkg/errorhandling: remove deadcode
4d5e0a647c podman images --sort use ChoiceValue flag
a92e685c0b pkg/domain: remove deadcode
fc21bcd7d1 pkg/bindings: remove deadcode
9d328d8782 pkg/api: remove deadcode
75bad52af5 remove unused ShouldRestart() code
1d3089ea82 cmd/podman: remove deadcode
054036f073 podman images --sort autocomplete options
c99d237349 Update Neil Smith's GitHub username in MAINTAINERS.md
2ef0148b8a machine: enable nested virt on libkrun by default
e00dfa606a pkg/machine/e2e: add CVE-2025-6032 regression test
b5783ae1fb test/e2e: fix podman run check dns flake
b099a93580 Bump bundled krunkit from 0.2.1 to 0.2.2
bfc327a08e Secret create - add ignore option to allow noop
f21dacc4fb cmd/podman: add --latest option to update #26380
f266034d56 docs: document when a volume is chowned
98876454cb Refactor `volume import` to support the remote client
67fa077a5c update image_fix -> automation_images#407 skip test duo to rawhide know issues
5ab4328318 Podman pull - add policy flag
17601aa913 Pod YAML: Add support for `lifecycle.stopSignal`
726b506acc machine init: fix tls check
ca1c4388b3 update podman-machine-start with examples for --no-info and --quiet
01fb3aaae4 test/e2e: fix "with unsafe hostPath subpaths" test
964069326d quadlet: remove indirect logrus import
fa67681601 docs: add three examples to podman-generate-spec man page
e4c810a8f1 fix panic on state refresh
5989370c39 pkg/systemd: expose [Pod] ExitPolicy key for pod create --exit-policy
1f9893817b volumes: add new --uid and --gid option
d79d596bce docs: add an example to podman-secret-rm man page
a218dfa2fd chore(deps): update dependency pytest to v8.4.1
d7f980b719 [CI:DOCS] Tweak Governace slightly
a93b63c4ad remove .github/workflows/pr-title.yml
0439167943 remove hack/install_catatonit.sh
bf7c9a1536 Makefile: remove some old files from clean target
8cfe7bb003 remove cni/
6623ab8d17 remove pkg/timetype
5d88999447 remove contrib/modules-load.d
241f2d7928 remove contrib/snapcraft
4582c3413f remove contrib/script/size.sh
605b1f7386 remove contrib/remote/containers.conf
e9aad3d40d remove contrib/dependabot-dance
14b1ee5837 remove contrib/dependencies.txt
febb667865 remove contrib/containers-common
4ec7d35cbb Removed the 'Deleted: ' prefix from each example
6b996445bc add more exmples applying current style for each page
15d8b5b2fb docs: add an example to podman-network-rm man page
139d3fc82b [CI] Correct ST1005 staticcheck lint rule
6510d81f69 docs: add examples to podman-system-migrate man page
63bf454d66 Refactor `podman export` to work with the remote client
0ab8a3c576 artifact mount: add new name option to specify filename
c647a7200e Fixes: #26374 add example network connect with mac address
21f34601eb artifact mount: improve single blob behavior
6368b248f0 docs: remove bogus markdown heading in podman-ps
fd325e33fd Update podman system prune doc
bd2c838b0e fix 26348: add container diff --latest doc
ffa4c124a1 Add missing --pod examples to podman ps manpage
93d66542d4 Move 'Examples' section down in the podman-volume-create man page
bb571b48c3 fix(ci): add ST1005 linter rule
cbba265f29 Add examples of `--all` flag
1a461fe41a Manpages: podman machine init add example with --now
24e5c00e6e Update docs/source/markdown/podman-secret-inspect.1.md
4a35cf00ec Improve documentation for podman-secret-inspect, closes #26362
ad7087af56 Add Craig Loewen to Reviewer role
ae49463a8f man pages: Add an example about --no-prune
085082a805 Manpages: add podman exec missing example of detach option
d680c48eaf fix(cmd): improve ValidURL reliability
d1187be8a3 Bunch of trivial manpage fixes
1141ae4a87 libpod: log file doesn't need to be executable
9922bddb1f libpod: do not dereference nil pointer
54afcdf6b3 libpod: fix file descriptor leak
5838bfef9a podman-update: fix EXAMPLES
2221ca9943 test: check podman update errors on non-block devices
3f0cdb9414 pkg/specgen: error out when a block device isn't
9b6e548387 pkg/specgen: refactor FinishThrottleDevices, WeightDevices
2b6c477884 quadlet: handle generate environment params that inherit from host
ad882ac730 fix(deps): update module go.etcd.io/bbolt to v1.4.1
d4a8598ca4 make validate-in-container changes
0080368fd6 Clarified the consequences of --network=host
22789928d4 podman machine: pull wsl image from machine-os
48b19e98f9 remove hack/libdm_tag.sh
9aedc47aff rpm: build rpm with libsqlite3 tag
c6842d3425 Makefile: use libsqlite3 build when possible
c45b27ffb0 Remove bin/podman.cross Make target
c96d87ccad Allow generate-bindings on darwin
087a44a8e7 Update module github.com/go-swagger/go-swagger to v0.32.3
f0c15f1c7a docs: replace RemapUsers=keep-id with UserNS=keep-id
2825521337 tmpfs: Add support for noatime mount option
a87bef9606 fix(deps): update module golang.org/x/net to v0.41.0
0f7b21ad00 pkg/machine: remove unsused net recover file
0c77654be7 Revert "podman machine: fix proxy test"
adc35b157e pkg/machine: remove old fw_cfg service
0b8dd90840 podman machine: fix proxy test
0c406f25ad pkg/machine/e2e: skip rosetta test
793242da8d RPM: Limit Epoch 102 to podman-next copr
18ecd2046b quadlet: generate RequiresMountsFor for Type=bind volumes
b85d770be0 Make podman.io update action reusable
971321228c Skip layer digests for podman system check --quick
465578d7ec test/buildah-bud: skip new build-with-two-outputs on remote
4286f03b34 test/buildah-bud: update buildah-tests.diff
c1653bdc29 Build the `dumpspec` test helper for the `buildah bud` tests
ac71bc6cf2 vendor: update buildah to latest main
96abeafc61 vendor: update c/{common,image,storage} to latest main
d44f0afa84 vendor: update github.com/docker/docker to v28.2.2
94478a4144 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2
a0f7db44e8 quadlet: add InterfaceName option to network unit
8532ecb710 fix wsl install workflow on machine init command
99cfdc04db feat: Add OCI Artifact support to the Podman REST API
eadded9154 build: reuse parse.ContainerIgnoreFile from buildah
87450b8f8b podman buildx inspect support
0719acbe7f chore(deps): update dependency pytest to v8.4.0
89b8e23385 test/system: check --dns-option behavior
c87a761e05 podman system check: Fix error check logic
75dc508e98 libpod: don't force only network search domains
04a1a39a69 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.5
869fceb0fd update c/common to latest main
da95bbdd5d play kube: never add empty alias
b64817de40 fix(deps): update github.com/opencontainers/runtime-tools digest to 0ea5ed0
2c252a7614 Don't BuildRequires: ostree-devel
3837339e0e Allow not specifying type with --mount flag
775a85004f Add "dest" as an alias for "destination" in `--mount`
f2d941b241 docs: quadlet can translate names now
db53f6240d e2e: ref full URL for aarch64 criu precheckpoint issues
a17f8afbbc specgen/generate: Fix log tag priority
5e7c0a66ce e2e: skip pre-checkpoint tests on aarch64
3a981915f0 Handle "Entrypoint":[] in compat containers/create API.
415668c802 system df --verbose don't crash
b276e7ef21 Fix SQLite volume lookup queries matching too liberally
b551939be6 vendor: update c/{buildah,common,image,storage} to main
e0b08fcfa3 Recreate the Rootfs in mountStorage for infra-container.
ca20c42a52 test: fix race conditions in /dev/kmsg tests
f25cefcb1b Fix overlay volumes on Windows
d5520ded64 chore(deps): update dependency setuptools to ~=80.9.0
051be9b2d2 libpod: Don't exclude running deps from the container graph inputs
66bf98e27c compat API: respect base_hosts_file containers.conf option
416bb84c0e Trigger podman.io version bump from release action
ad05a878df Packit: remove propose-downstream for centos stream
44ec71358e Packit: use fedora-all alias for tests
9d4267c8f2 Disable the tests for rootless pods
5bfdb25b26 Support --cpuset-<cpus/mems> in podman kube play
5797c1dd27 pkg/machine: don't use dummy linger service
79a857e0a0 pkg/machine: correctly enable lingering
9872f0e83c Update expected output for a machine copy test
af495e1aa9 Replace alpine_nginx with TESTIMAGE in e2e tests
9a452db918 Support '$FOCUS' env variable on winmake too
6265ef07ae pre-commit: exclude rpm/gating.yaml from check-yaml
50379429ca lint: Fix linter issues on TMT files
cff69f89e9 Update release notes on main
c39fd061f0 fix CONTRIBUTING to say reference issue number 'or' url
92a15085cb compat: fix Container State.Status JSON values
f10e2ffd36 chore(deps): update dependency setuptools to ~=80.8.0
953e385bd2 libpod: fix mount order for "/" volume
b9cc2d87d7 Update RELEASE_PROCESS.md
6d6ebad829 github: remove fcos next image workflow
3ab45807b4 [skip-ci] Packit: set fedora-all after F40 EOL
736ca60378 test/e2e: do not check dns.podman
7c0262db3d compat: Add DefaultAddressPools field to GET /info
265ca77276 Be explicit about ssh configs suitable only for localhost
b82f2962c3 compat: Add CgroupnsMode to POST /containers/create
06ddffc81d Update dependency setuptools to ~=80.7.1
9c206a467d docs: drop --pre-checkpoint requirement
90ee7c86a3 podman: remember hooks-dir on restarts
53f118d135 GHA Release: Fix windows installer uploads
3e08c2abf0 Revert "GHA: Pin Go to 1.24.2"
db65baaa21 fix macos compile issue with go 1.24.3
206d92c25f Packit: disable OpenScanHub scans
fb9ef0dda0 GHA: Pin Go to 1.24.2
fe84fbae72 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1
637c264e2e fix issues found by nilness
6ae920de8b Bump bundled krunkit to 0.2.1
59d9f1ea5d chore(deps): update dependency setuptools to ~=80.4.0
5471f6e191 chore(deps): update dependency docker to v7
59c45a01c7 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.5
6a96f70180 fix(deps): update module github.com/crc-org/vfkit to v0.6.1
b572b892b1 fix(deps): update module github.com/containernetworking/plugins to v1.7.1
077649f9d0 Fix: Use SIGKILL instead of SIGTERM when ExecStopContainer timeout is 0
499ea1168b Fix: Ensure HealthCheck exec session terminates on timeout
d7fefb7064 [skip-ci] Tighten version match
700c679cd2 Quadlet - Update the docs to reflect the default naming of resources
09d9d3e26b Revert "Quadlet - fix pod name to depend on the name of the generate service"
5be3f8d480 Fix a shellcheck warning about word splitting
a5748206d1 fix(deps): update module github.com/vishvananda/netlink to v1.3.1
7a161115f9 Fix parsing of paths for unmask
b6eeaea7f3 Take path for wsl instead of forcing through WindowsApps
d12588f581 fix(deps): update module golang.org/x/net to v0.40.0
136f2e1ba4 Update win-installer github job for arm64
efc3b178bb Build windows arm64 artifacts
35e1c2033a Fix windows arm64 installer build
f4819412b8 README.md: add openssf passing badge
9dffc251fc fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.6
d6239385fd Update podman-secret-create.1.md
4f38c2fea2 Quadlet - fix pod name to depend on the name of the generate service
4a4b8dcfe9 fix(deps): update module golang.org/x/crypto to v0.38.0
f825639ebc Verify the ExecSession pid before killing it.
32d389a19c fix(deps): update module golang.org/x/term to v0.32.0
1f7d8e2273 fix(deps): update github.com/vishvananda/netlink digest to 9d88d83
fbdeff2b88 fix(deps): update module golang.org/x/sys to v0.33.0
0b1623e2e4 fix(deps): update module golang.org/x/sync to v0.14.0
5d6c784252 docs: fix markdown format
ec6423e73b chore(deps): update dependency golangci/golangci-lint to v2.1.6
78065fd8c7 chore(deps): update dependency setuptools to ~=80.2.0
3448ba5091 Automatically bump to -dev after tag
7fddbd4d4d Update winmake.ps1 to build arm64 artifacts
2419732eb7 [skip-ci] TMT: system tests
ac6080bea9 pkg/machinie: use TZ env for reading local timezone
a90fad3fc8 pkg/machine: rework getLocalTimeZone on linux
193d7b8202 pkg/machine: properly setup zoneinfo symlink
b431f06e64 pkg/machine: do not add broken localtime symlink
039679d0ae fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0
ebcdd3c8cd fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.4
bc810cb07d fix(deps): update github.com/hugelgupf/p9 digest to abc96d2
b7f67badf3 chore(deps): update dependency setuptools to ~=80.1.0
941a6d0c05 pkg/signal: ignore SIGTOP for signal proxy
a4d0067249 pkg/signal: rework CatchAll() behavior
8de2e0ec21 sigproxy: ignore if container already removed
80065f7224 ci: Load null_blk for I/O limit tests
8160e02459 test/e2e: Use nullb0 for IO limit tests
3b61e56152 test/system: Use correct device for I/O limit tests
f6b91d7be0 inspect: Ignore character devices for IO limits
d7eaf42727 Do not error on tz detection
c9b1bd1cf3 Stop setting btrfs_noversion build tag
9c5f7662d1 Remove providers checks from the Windows Installer
9b2fb40ab8 Quadlet - remove the usage of cid and podid for container and pod files
8e6ecb97c9 Fix running machines with volumes containing spaces
ad20e257d6 Makefile: move some Go-related variable definitions up
24267452e6 Handle signal preventing Start from completing
f6be9fbc7f Build documentation in a container on Win arm64
2b06c01357 Fix mach os pr release action
8d65e0e36c bump main to 5.6-dev
579b17425e pkg/bindings: wrap image push decode error
6c0e581fa9 pkg/bindings: fix infinite loop/memory leak in image pull
ae9e85bfc5 Update "check.c" to be C23 compliant
7b1055a5fb feat: Add support for configuring swap in Podman machine
6c9f378a9b fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
3f56de0199 Quadlet - use helper function to initialize service struct
2588b96993 Fix logging podman machine server9 output
fd444bd7d7 OWNERS: Fix Github handle
e66ff395b7 Fix handling of "r_limits" in Podman REST API /libpod/containers/create
7819879776 chore(deps): update dependency setuptools to v80
6e7de438cc bug: Correct Docker compat REST API image delete endpoint
a969dbd73e update podman socket output to include also exposed ports
585f046e95 Disable FS mount in volume only test
4268c61dd0 Added tests for inheritlabel fix
0c4d023822 Fix: inheritlabels=true if query param absent
75f05a9807 Add Mohan Boddu as community manager
710c077342 chore(deps): update dependency golangci/golangci-lint to v2.1.5
7e14a03409 fix(deps): update module github.com/cpuguy83/go-md2man/v2 to v2.0.7
633f727f2d Quadlet - use helper function for handling key=val type keys
802fc15b1e Add Label to quadlet pod
0eac57ed31 podman start: remove container if needed
3a2d7587fe remote: don't print bogus error when starting container attached
9b751a27b9 [skip-ci] Packit: do not merge PR in CI
e443bffe5a [skip-ci] Packit: re-enable fedora-41 targets
4dd9340a56 hack/bats: Pass --tap (-t) option to bats
bfd5de309f hack/bats: Fix to allow multiple tests
bf7dcd5619 Fix: Remove appending rw as the default mount option
c1ad54f89a hack/bats: Allow specifying PODMAN_ROOTLESS_USER
0463ad12cb libpod: fix a confusing error message from 'podman system reset' on FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
6d45724b26 |
crun: update to 1.23.1
Bumping crun to version 1.23.1-9-gca8e5c74, which comprises the following commits:
eb9912e0 build: add check for static builds
bb04c555 libocispec: sync
a9d12996 linux: never chown devices
eecadda9 tests: fix test_mount return type
38c5795e tests: add capabilities to net test
d20b23db NEWS: tag 1.23.1
f56fc445 utils: add bounds checking for Unix domain socket paths
59066cc9 ring_buffer: do not use the reserved byte
abc42863 utils: write to ring buffer whenever there is space available
7d21fa1e tests, podman: skip auth test
3fc25616 NEWS: tag version 1.23
69c3ba16 krun: define KRUN_NITRO_IMG_TYPE_EIF if missing
aa9e1c51 krun: drop unused variable
55d603f2 krun: enable virtio-gpu
e76c7451 container: refactor container_init_setup
7acad117 container: refactor libcrun_container_run_internal
e83abf35 linux: refactor do_mounts
f9edd528 container: use xmalloc instead of malloc and OOM
2dbee366 criu: Add support for tcp-close
3040a07f cgroup-resources: extract common pattern
d30d1512 linux: fix regression in libcrun_configure_network
220a39a6 krun: Give container access to nitro_enclaves device
ac297b79 krun: Allow /dev/kvm to be unavailable with nitro
500f1c92 krun: Configure nitro enclave data if enabled
d9ddb935 krun: Use nitro flavor when indicated
702d09b7 krun: Open libkrun-nitro handle during loading
54771724 krun: End loop traversal when SEV device found
72b35020 linux: add missing crun_make_error
e2789c70 container: propagate error from exec setup
4e5375cb libcrun: inline can_skip into write_cgroup_resources_v2
ad9f90b7 tests: add test_bpf_devices
6f466dcc cgroup,systemd: do not install duplicated ebpf
edf66788 cgroup,systemd: check for loaded bpf on update
227bd0f1 cgroup,systemd: use BPFProgram=device if supported
832db004 write_devices_resources_v2: refactor
1dae52ba cgroup,systemd: allow empty slice in cgroupsPath
5610c0cf RPM/Packit: wasmedge support Fedora-only
39bdaaef Packit: disable propose_downstream for CentOS Stream
c6dfc871 RPM: placeholder check to silence rpmlint
8d61001d crun: print version even with invalid rundir
76805119 Remove dead code after exit
0b9aab09 handler: add NULL check to handler_manager_free
a755e043 utils: Add NULL pointer check to cleanup_close_vecp
66d710ce linux: add NULL check to cleanup_free_init_statusp
ce47a219 linux: Add NULL pointer checks to free_remount
54d4b042 string_map: ignore empty map
f25352f9 linux: limit mounts creation outside of namespace
d51df096 lua: clean up unused defines
4b7257d4 linux: fix regression with idmapped mounts
83f601d3 lua: fix build errors
4de19b63 NEWS: tag 1.22
aa082854 tests: install catatonit package
72e5468e tests: improve cpu_weight_systemd coverage
4998c928 cgroup: improve conversion from shares to weight
aaeeefc3 tests: install gperf on alpine
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
93493802e8 |
crio: update to v1.33.0 -tip
Bumping cri-o to version v1.33.0-167-g259e23fd4, which comprises the following commits:
21b03fda2 inspect: add hostnetwork information
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
13ad3d54b6 |
containerd: update to v2.1.4
Bumping containerd to version v2.1.4-6-g30bd62aac, which comprises the following commits:
74b0505eb ci: bump Go 1.23.12, 1.24.6
3c174cf64 fix: create bootstrap.json with 0644 permission
5ef6ea747 sys: fix pidfd leak in UnshareAfterEnterUserns
112e41363 Add release notes for v2.1.4
add2dcf86 Ensure fetcher always closes body and properly calls release
34a1cb1dd fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
82c4d6875 ci: bump Go 1.23.11, 1.24.5
6cc2a8d77 Fix intermittent test failures on Windows CIs
6adc69312 Remove WS2025 from CIs due to regression
8d194c19f erofs-snapshotter: make IMMUTABLE_FL optional
2df7175d7 client/New: Don't unlazy the gRPC connection implicitly
02298e1a0 cri:fix containerd panic when can't find sandbox extension
4902adb92 update go-md2man binary to v2.0.7
583133e71 erofs-differ: fix filesystem UUID for tar-converted layers
57db13d50 Amend runtime handler test for stable order
d822c9048 CRI: Stable sort for RuntimeHandlers
a2fd70639 Test showing RuntimeHandlers in Status() are unordered
b74268f86 bugfix:close container io when runtime create failed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
dce2da1fb3 |
buildah: update to v1.41.3
Bumping buildah to version v1.41.3-1-ga56e49701, which comprises the following commits:
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
1f7f1d285 Commit: don't depend on MountImage(), because .imagestore
5442721d4 [release-1.41] Bump to v1.41.2
72e680a9e Rework how we decide what to filter out of layer diffs
870c53c69 Note that we have to build `true` first for the sake of its tests
4fe68bc9b copier.Stat(): return owner UID and GID if available
f42946075 copier.Get(): ensure that directory entries end in "/"
9933e7966 copier.Get(): strip user and group names from entries
4ae77145e imagebuildah.Executor/StageExecutor: check numeric --from= values
2de767f3a [release-1.41] Bump Buildah to v1.41.1
0d0c7340e [release-1.41] Bump c/* projects and Buildah to v1.41.1
540cec341 [release-1.41] generatePathChecksum: ignore ModTime, AccessTime
f06ea2c5d History should note unset-label, timestamp, and rewrite-timestamp
d2e9062ea pkg/cli.GenBuildOptions(): don't hardwire optional bools
af12f7539 Only suppress "noted" items when not squashing
dee9f3d19 Test that pulled up parent directories are excluded at commit
34b0bc031 Exclude pulled up parent directories at commit-time
4f2feb8f4 copier.Ensure(): also return parent directories
19041cde3 copier.MkdirOptions: add ModTimeNew
ea7dfee85 Restore the default meaning of `--pull` (should be `always`).
9f185b777 Bump to Buildah v1.41.0
2b7cb35d0 Bump to c/storage v1.59.0, c/image v5.36.0,
9c525fd52 fix(deps): update module github.com/containers/image/v5 to v5.36.0
b8c6fcf21 fix(deps): update module github.com/containers/storage to v1.59.0
350288967 stage_executor: check platform of cache candidates
96588db2e fix(deps): update module golang.org/x/crypto to v0.40.0
d9443fe42 fix(deps): update module golang.org/x/term to v0.33.0
d6e5cbaf7 fix(deps): update module golang.org/x/sync to v0.16.0
c694e3c7a fix(deps): update module github.com/docker/docker to v28.3.2+incompatible
eea4838d8 ADD/COPY --link support added
063ee7625 RPM/TMT: account for passwd binary moving to tests
af210ea87 buildah: move passwd command to tests
16c0bdad5 Update "bud with --cpu-shares" test, and rename it
7a482aceb Remove BUILDTAG btrfs_noversion as no longer effective
c0fdc9a05 fix(deps): update module github.com/docker/docker to v28.3.1+incompatible
513775f3f fix(deps): update module github.com/moby/buildkit to v0.23.2
34488b549 fix(deps): update github.com/containers/luksy digest to bc60f96
9f809a88f chore(typos): fix typos
d95b2dad1 vendor: update c/{common,image,storage} to main
b47791a93 chore(deps): update module github.com/go-viper/mapstructure/v2 to v2.3.0 [security]
46e814173 fix(deps): update module go.etcd.io/bbolt to v1.4.2
f172a9d1d Update Neil Smith's GitHub username in MAINTAINERS.md
149bf968f Accept SOURCE_DATE_EPOCH as a build-arg
5bb8d5ed4 fix(deps): update module github.com/docker/docker to v28.3.0+incompatible
0832c3e08 Add conditional release-checking system test
52bbc61e1 info,inspect: use the "formats" package to get some builtins
7944b4b2b Use containers/common's formats package instead of our own
5968d8204 build, commit: set the OCI ...created annotation on OCI images
df36bb835 commit: exclude parents of mount targets, too
a3bea818b run: clean up parents of mount targets, too
7d5f1e1ca tarFilterer: always flush after writing
fce45b77d Builder: drop the TempVolumes field
fe4c1b734 Update module github.com/moby/buildkit to v0.23.1
128153867 Update module github.com/opencontainers/cgroups to v0.0.3
5b1d3e666 Add CommitOptions.OmitLayerHistoryEntry, for skipping the new bits
5995db7af Update module github.com/fsouza/go-dockerclient to v1.12.1
c12808594 conformance: use mirrored frontend and base images
ee5fd19c8 commit-with-extra-files test: use $TEST_SCRATCH_DIR
c578786e5 fix(deps): update module github.com/moby/buildkit to v0.23.0
3e11fea02 "root fs only mounted once" test: accept root with only the rw option
f8f398bb3 Run with --device /dev/fuse and not just -v /dev/fuse:/dev/fuse
a9a9a4396 CI: pass $BUILDAH_RUNTIME through to in-container test runs
b97fd7d68 CI: ensure rootless groups aren't duplicates
47da2f29b build: add support for --inherit-annotations
9ecc98e58 CI: give the rootless test user some supplemental groups
ab8fc6dee bud,run: runc does not support keep-groups
2eb666c22 Fix lint issue in TestCommitCompression
873e5458c Add a unit test for compression types in OCI images
aa84d9c34 Support zstd compression in image commit
1aa6c1e35 fix(deps): update module go.etcd.io/bbolt to v1.4.1
03b980a3e rpm: build rpm with libsqlite3 tag
e5b876571 Makefile: use libsqlite3 build when possible
962ab4bb1 commit,build: --source-date-epoch/--timestamp omit identity label
b167073d5 docs: add --setopt "*.countme=false" to dnf examples
9f35e8a2a Builder.sbomScan(): don't break non-root scanners
2d0152e99 build: --source-date-epoch/--timestamp use static hostname/cid
87d9db82c fix(deps): update module golang.org/x/crypto to v0.39.0
5842593d2 fix(deps): update module golang.org/x/sync to v0.15.0
865daceeb build: add --source-date-epoch and --rewrite-timestamp flags
83acf720d build,config: add support for --unsetannotation
6c82e7eac commit: add --source-date-epoch and --rewrite-timestamp flags
a4a30cf5e fix(deps): update module github.com/openshift/imagebuilder to v1.2.16
5b26b7922 vendor latest c/{common,image,storage}
9c2b43ccc Tweak our handling of variant values, again
db336cef4 Don't BuildRequires: ostree-devel
56f3171ab parse, validateExtraHost: honor Hostgateway in format
56cfd2fdf remove static nix build
2717599f9 Ensure extendedGlob returns paths in lexical order
910933b33 CI: run integration tests on Fedora with both crun and runc
b122c325f buildah-build(1): clarify that --cgroup-parent affects RUN instructions
8178c3a5d runUsingRuntime: use named constants for runtime states
4ea64c387 Add a dummy "runtime" that just dumps its config file
d53d837e0 run: handle relabeling bind mounts ourselves
913e4d2d3 fix link to Maintainers file
c0c4148fc Update to avoid deprecated types
285dcc914 fix(deps): update module github.com/docker/docker to v28.2.0+incompatible
1f6302a6e [skip-ci] Packit: cleanup redundant targets and unused anchors
a99ad87af [skip-ci] Packit: set fedora-all after F40 EOL
26f4f3a02 Use Fedora 42 instead of 41 in that one conformance test
eee1f2102 [CI:DOCS] README.md: add openssf passing badge
48a4a446e fix(deps): update module github.com/moby/buildkit to v0.22.0
dda8e65e8 copier: add Ensure and ConditionalRemove
d568dda6c [CI:DOCS] update a couple of lists in the build man page
3a85df003 build: allow --output to be specified multiple times
b9a65a9d8 add: add a new --timestamp flag
a57e7f4b2 tests/helpers.bash: add some helpers for parsing images
5cfbf7241 pkg/parse.GetBuildOutput(): use strings.Cut()
ca3271a15 [skip-ci] Packit: Disable osh_diff_scan
ee0f750ea internal/util.SetHas(): handle maps of [generic]generic
cf4635e86 Refactor NewImageSource to add a manifest type abstraction (#5743)
964ec24c1 [skip-ci] Packit: Ignore ELN and CentOS Stream jobs
8f885843d imagebuildah: select most recent layer for cache
7fbca08c0 [CI:DOCS] Add CNCF roadmap, touchup other CNCF files
168eef473 fix(deps): update module golang.org/x/crypto to v0.38.0
ada0ac0b8 Fix typo in comment (#6167)
081e9b308 Support label_users in buildah
27c2c3e4b fix(deps): update module golang.org/x/sync to v0.14.0
ffcbec7f7 fix(deps): update github.com/containers/luksy digest to 4bb4c3f
cbe582395 test/serve: fix a descriptor leak, add preliminary directory support
f97596adf fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
fd8e85e83 fix(deps): update module github.com/moby/buildkit to v0.21.1
9ac03e6bf Update to avoid deprecated types
7ce7072f2 fix(deps): update module github.com/opencontainers/runc to v1.3.0
a59af89cd Only filter if containerImageRef.created != nil
2dae3b465 Drop superfluous cast
15278aa27 Remove UID/GID scrubbing.
ef7ad851a fix(deps): update module github.com/seccomp/libseccomp-golang to v0.11.0
e4cf6cbb9 cirrus: turn prior fedora testing back on
5de286ca8 chore(deps): update dependency containers/automation_images to v20250422
97cf88f50 fix(deps): update module github.com/docker/docker to v28.1.1+incompatible
36adabb2d Bump to Buildah v1.41.0-dev
365ad53df CI vendor_task: pin to go 1.23.3 for now
522bc8ba5 fix(deps): update module github.com/containers/common to v0.63.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
1eb9f8ec48 |
docker: update to v28.3.3
Bumping moby to version v28.3.3-53-g80947b5724, which comprises the following commits:
553c3b8c9f vendor: go.etcd.io/bbolt v1.4.2
7d7edf46a6 go.mod: github.com/containerd/containerd/v2 v2.1.4
993eae423e go.mod: dario.cat/mergo v1.0.2
2c93d2f909 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
6305a44e58 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
03a4cd8d9a vendor: code.cloudfoundry.org/clock v1.37.0
687cd8ebae integration/system: remove TestEventsBackwardsCompatible
95c3340e75 integration/system: add TestEventsNonBlocking
e364b6c466 ci: add golangci-lint configuration to ignore deprecated api type usage in daemon
9396c31e13 api/types: deprecate disk usage types for build cache, container, images, and volumes
bcbccc6eec pkg/jsonmessage: JSONMessage: deprecate From, Time, and TimeNano fields
5a0d62cab0 Add multierror function to api network
8a89fe5c19 daemon/router/image: initialize default authConfig
e53cd07fcc client: remove getDockerOS utility in favor of "Ostype" header
cf0958f89b docs: api: Tweak type of ForceUpdate to uin64
fd89baef7e api: swagger: Tweak type of ForceUpdate to uint64
3fc876cd7b update to go1.24.6
85aaa37c08 Dockerfile: update containerd binary to v1.7.28
16c7a35584 Dockerfile: update runc binary to v1.3.0
61443a72c2 integration/container: XFAIL flaky TestExecResize on Windows
492b3c94cb integration-cli: fix flaky TestRestartStoppedContainer
d5b47b8fdf integration/container: fix flaky TestRemoveContainerWithVolume
30663d3e86 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
3a15e3ed23 download-frozen-image-v2: Use curl -L
ad243becbe download-frozen-image-v2: handle 307 responses without decimal
648c74d243 Add separate const for daemon httputils to avoid jsonmessage import
eadee3e5b9 [28.x] api/types/filters: reimplement ToParamWithVersion
60e84e7350 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
7d6a75b342 runconfig: update fixtures for TestDecodeContainerConfig
596404f3aa integration-cli: remove tests for pre-docker 1.7 clients
9fd8eaa95d Delete TestRunDNSOptionsBasedOnHostResolvConf
b2f03f45ea profiles/apparmor, seccomp: migrate to separate module
3e9ff78b94 bridge: Reapply endpoint iptables rules on firewalld reload
29ed80aa86 bridge: Trigger firewalld reload during bridge integration tests
e4b1f89996 daemon/server: remove compatibility with API v1.4 auth-config on push
0c9e14dcce hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
4205776b85 client: always send (empty) body on push
38c0abffce update to go1.24.5
bfade89ec2 integration/networking: increase context timeout for attach
a818cfd87b gha: run windows 2025 on PRs, 2022 scheduled
653777a522 gha: update to windows 2022 / 2025
1ad3df4768 api: swagger: Tweak type of GwPriority to integer
6323db8e78 docs: api: Tweak type of GwPriority to integer
a3c8f7fa8c dockerfile: update govulncheck to v1.1.4
dfbba63a34 gha: remove GO_VERSION build-arg from builds
e17e96e3c5 vendor: update buildkit to v0.23.2
a2af8bdebd gha/bin-image: add major and minor version image tags
docker/cli: update to v28.3.3
873609d790 cli/command/*: remove deprecated cobra command constructors
570a17b3bc internal/commands: RegisterLegacy: remove redundant copy
4405c0bd50 internal/commands: remove mutexes / synchronisation
56cab16779 Register CLI commands implicitly
e650803f09 opts: deprecate ParseEnvFile
bd8e3e4440 Unexport trust commands
c6b7268932 Unexport plugin commands
2ce94e4fff internal/registryclient: repositoryEndpoint: memoize repoName
bf39340294 Unexport swarm commands
d4588c711c Unexport registry commands
630fe430ff Unexport stack commands
3b0edc794c Unexport context command
9961e39d40 Unexport volume commands
88178eda32 Unexport service commands
e00762ed7d Unexport secret commands
02fda07211 Unexport manifest command
ab3fcf9f9b Unexport node commands
78a8856c14 Unexport network commands
4286883b95 cli/command: inline resolveAuthConfigFromImage
2d3b0b33b4 cli/command: fix godoc links
9b9d103b29 cli/flags: remove special quote handling for `--tlsXXX` flags
cfb8cb91f2 Unexport system commands
1d571d178d docs: deprecated: fix formatting of deprecated/removed in
13010ba673 cli/registry/client: deprecate and move internal
5c76f7f2d8 docs/deprecated: legacy links env vars
e66a1456d3 Unexport image commands
ae1727c41e cli/command: TestRetrieveAuthTokenFromImage: don't decode authconfig
38595fecb6 Unexport container commands
cce29da061 Unexport config command
3265cead1d Unexport checkpoint command
1b9d0762a5 Unexport the builder command and bake stub command
72f76f2720 cli-plugins/manager: deprecate annotation metadata aliases
f9777d2517 cli: remove deprecated VisitAll, DisableFlagsInUseLine utilities
5934553198 opts: remove deprecated NewNamedListOptsRef, NewNamedMapOpts
a056cc6164 opts: remove deprecated ListOpts.GetAll
15f3e910d1 opts: remove deprecated ValidateHost
0c07d81a03 opts: remove deprecated QuotedString
ee05a71513 Deprecate special handling for quoted values for TLS flags
6f0c66c152 opts: deprecate NewNamedListOptsRef, NewNamedMapOpts
4ead8784d0 Add command registration helpers
69854c4e08 cli/command/container: TestRunPullTermination: rewrite with streamformatter
f14eeeb361 cli/flags: add "hostVar" to handle --host / -H as a single string
5ee2906e78 cli/flags: use a regular StringArray for the `--host` / `-H` flag
d0ac0acff0 opts: deprecate ValidateHost utility
187a942a88 opts: deprecate QuotedString
5a38118956 cmd/docker: fix some minor linting issues
6bd8a4b2b5 cli: deprecate VisitAll, DisableFlagsInUseLine utilities
5a99022556 cli: remove HasCompletionArg utility
bf13010df8 docs: fix output example for docker system prune
4cd9833d7c gha/validate-pr: Replace `continue-on-error`
1456b53e4e .github/workflows: Add kind label validation to PR workflow
6d9b06d227 gha/validate-pr: Run on synchronize
eb5b03a8a3 cli/command/container: copyToContainer: improve error-handling
c5ea9079af cli/command/container: copyToContainer rename error-return
f2af519f2e build(deps): bump actions/checkout from 4 to 5
27a7947535 cli/command/image/build/internal/git: use stdlib errors
53183396d7 internal/volumespec: use stdlib errors
70f1147394 cli/command/trust: use stdlib errors
a8f11a2fa2 cli/command/formatter: use stdlib errors
c612e141b5 cli/command/registry: use stdlib errors
9b7ee0e201 cli/config: use stdlib errors
3b677449d8 cli/context: use stdlib errors
d38317c781 cli/compose: use stdlib errors
2dd462cc36 cli/command/idresolver: use stdlib errors
4c89455378 cli/registry/client: use stdlib errors
adbe04b5fc cli/manifest, cli/command/manifest: use stdlib errors
097cc9ca64 cli/trust: use stdlib errors
e069ded4c3 cli: reduce uses of pkg/errors for stdlib errors
3529651fa7 vendor: github.com/docker/go-connections v0.6.0
3035b6685b e2d skip flaky test: TestPromptExitCode/plugin_upgrade, plugin_install
6769f62746 update to go1.24.6
5052a39915 cli/command/completion: remove deprecated ValidArgsFn
7026e68a71 cli/command: remove AddPlatformFlag utility
c0fbbe05ca cli/command: remove AddTrustVerificationFlags
8c22927978 cli/command: remove AddTrustSigningFlags
3f5b1bdd32 cli/command/plugin: remove DCT
d3c23a223c e2e/global: TestPromptExitCode: group plugin preparation steps
081add2fc5 e2e/testutils: SetupPlugin: return path of directory
8972e53ad0 cli/command: remove prompt utilities that were for internal use
a93ed48d06 vendor: dario.cat/mergo v1.0.2
abfe4d4629 remove deprecated `bind-nonrecursive` option for `--mount`
f9431e3b35 vendor: moby/moby/api v1.52.0-alpha.1, moby/moby/client v0.1.0-alpha.0
22cc0e90ae cli/command: remove deprecated ConfigureAuth utility
de54347518 cli/command: remove deprecated CopyToFile utility
2abcbf842f cli/connhelper: remove dependency on pkg/process
513ceeec0a cli-plugins/manager: remove deprecated ResourceAttributesEnvvar
5876b2941c cli-plugins/manager: deprecate metadata aliases
50963accec cli-plugins/manager: wrapAsPluginError: don't special-case nil
d789bac04a cli-plugins/manager: pluginError: remove Causer interface
71460215d3 cli-plugins/manager: deprecate "IsNotFound"
1cc698c68f cli-plugins/manager: un-export "NewPluginError"
549d39a89f cli-plugins/manager: fix Plugin marshaling with regular errors
54367b3283 cli-plugins/manager: un-export "Candidate" interface
057f3128b6 cli-plugins/manager: reformat TestValidateCandidate table
dfbac70efa remove some remnants from CLI "experimental" config option
3b6a556533 cli/command: remove exported "RunPrune" functions
bf8cb43025 system prune: delegate version check
a888c4091c system prune: delegate confirmation message and validation
02d578b637 system prune: use register function for prune functions
21e8bbc8a2 internal/registry: remove RepositoryInfo, add NewIndexInfo
066710ba7b opts/swarmopts: minor cleanup and refactor
b8df4abeb5 bump version to v29.0.0-dev
3f0ccd1b71 dockerd.md: Add --firewall-backend
6176a7686e dockerd.md: add --bridge-accept-fwmark
f937e62c89 replace direct uses of github.com/docker/go-connections/nat types
bf16dd1251 vendor: docker/docker, moby/moby/api and moby/moby/client 4faedf2bec36
149503a32c migrate e2e container rename test
5c3577ff9f cli/command/service: credentialSpecOpt: use strings.Cut
b6d7ac34be vendor: docker/docker, moby/moby/api and moby/moby/client 2574c2b2e917
83e507377a vendor: docker/docker, moby/moby/api and moby/moby/client 25e2b4d48551
86b5b528a6 internal/registry: ParseRepositoryInfo: remove unused error return
89d8c8a2a7 remove aliases for containerd/errdefs, disallow docker/errdefs
d63cae6f1c cli/command/formatter: use alias/wrapper for TruncateID
4bd6b6897f vendor: update docker, api, client to master
7ab3e7e774 templates: deprecate NewParse()
c6f935eba5 cli/command/plugin: fix linting issues, and assorted cleanups
ef7fd8bb67 refactor(cli/compose/loader): extract ParseVolume() to its own package
9257cc7f68 image/tree: Unmark as experimental, warn when redirected
f214f860b6 image/tree: Remove extra newline after legend
f907c7a4b0 internal/registry: fix linting issues (revive)
cd277a5815 cli/command/system: remove use of Mirrors field in test
c297770d2d internal/registry: remove pkg/errors
219cfc8b7d internal/registry: define local serviceConfig
2607ba8062 internal/registry: remove ValidateIndexName
5322affc9f internal/registry: remove duplicate endpoint methods
dc41365b56 internal/registry: remove NewStaticCredentialStore
dad2e67860 internal/registry: remove PingResponseError
7cf245d2f7 internal/registry: Service.Auth remove unused statusmessage return
e0b351b3d9 internal/registry: remove code related to mirrors
7716219e17 internal/registry: remove dead code
f6b90bc253 add internal fork of docker/docker/registry
20181d4363 vendor: github.com/docker/docker master
fa169b6933 vendor: docker/docker, moby/api, and moby/client master
a87bde0068 cli/registry/client: remove deprecated RepoNameForReference
323ef1997f vendor: docker/docker, moby/api, moby/client to latest
e504faf6da cli/command/registry: remove uses of registry.ParseSearchIndexInfo
644dc16b16 vendor: github.com/docker/docker master (v29.0-dev)
7609dde8d0 build: remove DCT support for classic builder
e2cab2c64c cli/command/image: remove use of api.NoBaseImageSpecifier
64f33cd463 TestCloneArgsSmartHttp: fix unhandled error
a3bea24086 Include FirewallBackend in docker info output
b05aa464a6 Dockerfile: install git-daemon for use in tests
e34616574f fix linting issues
260f1dbebb cli/command/image: move build-context detection to build
e95d133612 remove some redundant import aliases
3dec3879c8 opts: minor cleanup in tests
fdc90caeee cli/command/container: deprecate DiffFormatWrite
0db7b9f774 cli/command/container: newDiffContext: use struct-literal
239b727834 cli/command/container: DiffFormatWrite: remove intermediate var
907507e22a cli/command/container: deprecate NewDiffFormat
29263e865b cli/command: remove usages of RegistryAuthenticationPrivilegedFunc
ea4c161067 Dockerfile: update to alpine 3.22
3d985799d4 cli/command: remove some redundant import-aliases
8b6436ecee Dockerfile: document ALPINE_VERSION build-arg
2b56b66b10 cli/command: remove interactive login prompt from docker push/pull
0f2b709c7c cli/command/container: diff: remove redundant validation and cleanup
53d02ece89 remove use of github.com/docker/docker/pkg/longpath
3600ebca76 remove uses of github.com/docker/docker/pkg/ioutils ReadCloserWrapper
9b047a501f remove uses of pkg/stringid.GenerateRandomID()
e0f4bc699c cli/command/formatter: add TrunateID utility
1264a59779 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
e6b8cc1c7d Dockerfile: update buildx to v0.25.0
50fa436c21 Dockerfile: update compose to v2.38.2
0be687acc0 cli/command/container: don't set CopyToContainerOptions.AllowOverwriteDirWithFile
8eac03d5fa docs: fix CDI device configuration anchor
0c5e258f8a e2e/global: TestPromptExitCode: check for trailing newline
9bcc88611f update to go1.24.5
ccd5bd8d57 registry: warn of DOCKER_AUTH_CONFIG usage in login and logout
dec07e6fdf tui/note: add warning note type
7e040d91ef docs: cdi is not experimental anymore
76524e7d0e vendor: github.com/docker/docker v28.3.1
3262107821 cli/config: export const dockerEnvConfig
4ea6fbf538 cli/debug: fix OTELErrorHandler logging messages if there's no error
94f097da28 rename codecov.yml to .codecov.yml
e7e238eb4b cli/command/container: remove redundant uses of strslice.StrSlice
2ba7cb8b44 mount /var/run/docker.sock for --use-api-socket
52e1e4fb21 vendor: github.com/docker/docker v28.3.0
88d1133224 cli/connhelper: quote ssh arguments to prevent shell injection
82eda48066 cli/connhelper/internal/syntax: fix linting issues
52d2a9b5ae cli/connhelper/internal/syntax: remove unused code from fork
64a9a6d0c8 cli/connhelper: add fork of mvdan.cc/sh/v3/syntax v3.10.0
0ba4362d69 Update markdown docs to indicate multi-platform support in image load/save.
8993f54fc3 Add support for multiple platforms in docker image save
38b99adc10 Add support for multiple platforms in docker image load.
342f8bca25 builder: remove // import comments
09a3c93f96 fix(QF1001): Apply De Morgan’s law
a10a1e619b builder/remotecontext: remove unused named and "naked" returns
75f791d904 builder: use lazyregexp to compile regexes on first use
8d3c0fb6dc tests: migrate to assert.ErrorContains when possible
45f09a1504 builder/remotecontext/git: remove redundant capturing of loop vars (copyloopvar)
52c62bd13b Fix isGitURL regular expression
8f865184a6 builder/remotecontext: format code with gofumpt
6291744fa4 builder/remotecontext/git: use strings.Cut()
60b326f814 builder/remotecontext/gitutils: switch back to os/exec
66713384c3 builder/remotecontext/git: allow building on go1.18
5c21ec520e builder: add missing doc comment
212213e81e builder: fix running git commands on Windows
bcd6c45731 builder: make git config isolation opt-in
876fc1dac4 builder: isolate git from local system
3bfb30acd7 builder: explicitly set CWD for all git commands
3f4cc89f64 builder: modernize TestCheckoutGit
a12090d787 gofmt GoDoc comments with go1.19
26a11366a7 builder/remotecontext/urlutil: simplify and improve documentation
9e39630a05 pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
6d2a901118 refactor: move from io/ioutil to io and os package
389ada7188 Use golang.org/x/sys/execabs
a4c8c72411 replace pkg/symlink with github.com/moby/sys/symlink
5896d383ca bump gotest.tools v3.0.1 for compatibility with Go 1.14
ea850377cd builder/remotecontext: allow ssh:// urls for remote context
2d0d4ce4af builder/remotecontext: use net/url instead of urlutil
a0d9b0cf0d TestParseRemoteURL: use subtests
70aef9f502 gosec: add ignore comments for reported issues that can be ignored
04e2a24a9e gitutils: add validation for ref
71672ece9c Update tests to use gotest.tools 👼
db857b5d9c Post migration assertion fixes
242f176825 Automated migration using
6ea4877cff Add canonical import comment
7bc503344a gitutils: remove checkout directory on error
e2cc22d076 gitutils: fix checking out submodules
e9831d75e2 Fix shallow git clone in docker-build
9450481b7e Move IsGitTransport() to gitutils
a6cc6cd878 Fix handling of remote "git@" notation
e907d54fe6 Move pkg/gitutils to remotecontext/git
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Chen Qi
|
8f15c45f7d |
skopeo: avoid overriding GOBUILDFLAGS set in go.bbclass
When MACHINE is riscv64, skopeo fails to build with the following
error message:
ERROR: QA Issue: skopeo: ELF binary /usr/sbin/skopeo has relocations in .text [textrel]
To reproduce the issue, run the following command:
MACHINE=qemuriscv64 bitbake skopeo
In go.bbclass, we have:
"""
export GOBUILDFLAGS ?= "-v ${GO_LDFLAGS} -trimpath"
...
python() {
if 'mips' in d.getVar('TARGET_ARCH') or 'riscv32' in d.getVar('TARGET_ARCH'):
d.appendVar('INSANE_SKIP:%s' % d.getVar('PN'), " textrel")
else:
d.appendVar('GOBUILDFLAGS', ' -buildmode=pie')
}
"""
The '-v -trimpath' and arch depedent '-buildmode=pie' is generally reasonable.
And we can see we'll need to use anonymous python function to handle PIE. So we
should avoid overriding it unless necessary.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Koen Kooi
|
f707bbe323 |
Docker: add more required kernel modules as RRECOMMENDS:${PN}
With a very minimal image recipe that just pulls in docker, the daemon won't start due to missing modules, so add the missing ones. The list of new modules was created by diffing the output of `lsmod` before installing all kernel-modules and the output after launching docker with all modules installed. Signed-off-by: Koen Kooi <koen.kooi@oss.qualcomm.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Chen Qi
|
135bf45c74 |
containerd: drop CVE_VERSION
It's easy to forget to update this CVE_VERSION setting. So remove it. The default value of CVE_VERSION is PV. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Anibal Limon
|
b66d2ca088 |
scripts: wic plugin bootimg-biosxen drop helper to reuse bootimg_pcbios
- With wic plugins rename on OE-Core now can be imported. See OE-Core revs, afa1b5c9f6ed17c021e37a54d0d6abee50a60bf9 2de444fc3ef450f45f8f93403544e8f7461657b0 16c8251e5272510ad96613b8c6623550c5a72a34 - Drop the custom helper to find BootimgPcbiosPlugin plus adapt the code removing all custom calls and references. - Finally rename bootimg-biosxen to allow be imported. Tested with xen-image-minimal and testimage. Signed-off-by: Anibal Limon <anibal@limonsoftware.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Yiding Liu (Fujitsu)
|
9b034e3def |
openvswitch: small ptest fix adapt to UNPACKDIR changes
Assume the build conf dir is /mnt/test/build_auh before UNPACKDIR change: S="/mnt/test/build_auh/tmp/work/qemuarm64-poky-linux/openvswitch/3.5.0/git" after UNPACKDIR change: S="/mnt/test/build_auh/tmp/work/qemuarm64-poky-linux/openvswitch/3.5.0/sources/openvswitch-3.5.0" Then we should change ptest patch to adapt to it Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
69c32e6e65 |
tini: update to v0.19.0
We also switch to _git and add PV to the recipe as we don't need
to exactly track a tag.
We drop patches that have been merged upstream.
Bumping tini to version v0.19.0-15-g369448a, which comprises the following commits:
369448a Document TINI_KILL_PROCESS_GROUP environment variable
37ff361 Update README.md.in
924c4bd Support POSIX basename() from musl libc
7724cbe Update "ENV key value" format in README
071c715 chore: allow CMake though to 3.10
0b44d36 chore: bump minimum CMake to 2.8.12
a49fdd3 tini.c: a function declaration without a prototype is deprecated in all versions of C
378bbbc Update keyserver recommendation to Ubuntu
b9f42a0 Indicate that -e can be repeated
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Zhang Peng
|
3b773f4477 |
packagegroup-container: fix do_package_wrte_rpm issue in multilib build
When build lib32-packagegroup-container, the follwing error occurred: ERROR: lib32-packagegroup-container-1.0-r0 do_package_write_rpm: An allarch packagegroup shouldn't depend on packages which are dynamically renamed (lib32-ipset-dbg to ipset-dbg) ERROR: lib32-packagegroup-container-1.0-r0 do_package_write_rpm: An allarch packagegroup shouldn't depend on packages which are dynamically renamed (lib32-ipset to ipset) ERROR: lib32-packagegroup-container-1.0-r0 do_package_write_rpm: An allarch packagegroup shouldn't depend on packages which are dynamically renamed (lib32-ipset-dev to ipset-dev) To resolve this issue in a multilib build, set PACKAGE_ARCH appropriately to avoid using allarch. Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> |
||
|
Bruce Ashfield
|
640bca7e04 |
xvisor: update to v0.3.2
Along with the uprev:
- drop patch that has an equivalment upstream
- fix a c99 build error with typedef bool
- add addtional QA skips for buildpaths
Bumping xvisor to version v0.3.2-43-g355c79a0, which comprises the following commits:
0ff13149 TOP: Bump-up version to 0.3.2
ba466764 DOCS: Add Xvisor v0.3.2 release notes
0c941aa5 x86: Move the logging to subsystem level logging
b796e9e0 x86: Add sub-system level loggin facility for x86 architecture
9bec8ba1 x86: Make guest be CR0 owner
3c0ebc10 tests: Disable and Enable virtio block and LAPIC emulation respectively
fcd8311b emulators: Add class code in i440FX emulator
71e51bfc emulators: Fix the ordering of class and prog_if registers
3fbc78df x86: Separate out the EPT logs from general VM logs
a24f34db doc: x86: updated the reponame
5e97e0fa x86: Add support for PAM registers and boot from single copy of BIOS
4938d909 x86: Handle reset in better way
f884efed x86: Add support for direct ljmp instruction decoding
23cd1898 x86: Remove static linking of guest fdt in Xvisor binary
63ebd17c TESTS: common: Update default linux version in scripts
4f8a845b ARCH: generic_mmu: Don't print if attach fails in mmu_pgtbl_get_child()
b420fc50 ARM: arm32ve: Fix linker warning seen with binutils 2.39
eb1d1dd4 DRIVERS: input/mouse: Use "static inline" instead of "inline"
0f9cf481 CORE: Fix compile warning seen with GCC 12 (or higher)
45aea5f7 Makefile: Suppress linker warning
e8d2f6ca TESTS: arm32/arm64/riscv: Clean spaces and alignment in linker scripts
bb9bfc54 TESTS: arm32/arm64/riscv: Suppress linker warning
a658b6ca RISC-V: Fix compile error for RV32 systems.
4c5b22da RISC-V: Add nested virtualization support for Sstc extension
5696391b RISC-V: Take nested interrupts after vmm_scheduler_irq_exit()
60ea33c8 TESTS: riscv: Add sstc to ISA string whenever Xvisor support it
eed9c4aa RISC-V: Use Sstc virtualization in VCPU timer implement
01edb473 RISC-V: VCPU ISA bitmap should only have extensions available on Host
65f8a9b9 RISC-V: Introduce VCPU timer save/restore functions
29f4b46d RISC-V: Move time delta update function to cpu_vcpu_timer.c
1d0efd78 RISC-V: Rename VCPU timer handling functions for consistency
cedc2575 DRIVERS: riscv_timer: Use Sstc extension when available
e2001afb RISC-V: Add CSR defines for Sstc extension
fda8f6e6 RISC-V: Extend ISA parsing to detect Sstc extension
f175f245 RISC-V: Change the SBI specification version to v1.0 for guest
7d57a594 RISC-V: Add cpu_vcpu_sbi_xlate_error() helper function
82f6c463 RISC-V: Add regs_updated flag in struct cpu_vcpu_sbi_return
2ec320ec RISC-V: Combine SBI extension handler output parameters into a struct
ed9a6c89 RISC-V: Make function to emulate SRET instruction as global
bbe352fd RISC-V: Improve SRET based nested world-switch
a7cf2ae1 CORE: Add endianness helper macros for long
0f0a06a4 CORE: Add vmm_scheduler_irq_regs() function
3bc00b88 RISC-V: Gather and prints stats for normal VCPU
7314d0d4 DRIVERS: irqchip/riscv-imsic: Use riscv,slow-ipi DT property
bf6a24b4 DRIVERS: irqchip/riscv-imsic: Remove [m|s|vs][set|clr]eipnum CSRs
940b76ff RISC-V: Remove riscv_aia_available feature flag
358e0222 RISC-V: Extend ISA string parsing for multi-letter extension names
e475b1ab EMULATORS: plic: Fix number of irq lines
5dc36a1e TESTS: Don't disable CONFIG_PROFILING in update-linux-defconfig.sh
688e2525 RISC-V: Emulate dummy henvcfg[h] CSR for the guest hypervisor
43b75145 drivers: Outsmarted by compilers. IDE detection with latest compiler fails.
21b2818f ARCH: generic_mmu: Initialize attributes of hypervisor page table
f1be1ac5 COMMANDS: memory: Add iodump8, iodump16, and iodump32 sub-commands
6b525a5d ARCH: generic_mmu: Fix typo in mmu_pgtbl_nonpool_alloc()
ece1229f RISC-V: Print shadow page input address when panic
f8415e0d ARCH: generic_mmu: Check child pointer before use in mmu_pgtbl_get_child()
bec57dbd RISC-V: Fix compile error for latest binutils 2.38
e6004db5 COMMANDS: host: Add sub-command to poke a host CPU
5d8775f4 RISC-V: Enable RISC-V IMSIC in RV32 and RV64 defconfigs
c7803a49 DRIVERS: irqchip/riscv-aplic: Add support for MSI-mode
0361bfd3 DRIVERS: irqchip: Add RISC-V incoming MSI controller driver
c53bd8f0 LIBS: bitops: Improve get_count_order() implementation
44162c12 CORE: vmm_host_irqext: Fix extended IRQ allocations
05603bb8 CORE: vmm_devres: Add custom action APIs
d6f365a3 CORE: vmm_host_irq: Allow irqchip drivers to mark chained interrupts
e27a6647 CORE: vmm_msi: Add common msi_index for both PCIe and Platform MSIs
421083c1 CORE: vmm_msi: Provide complete set of default ops
a1c78b6b CORE: vmm_msi: Add vmm_msi_domain_write_msg() API
96e8fac3 CORE: vmm_msi: Use desc->msg in vmm_msi_domain_alloc/free_irqs()
f56aa048 CORE: vmm_msi: Move compose_msi_msg() from MSI domain to irqchip
cb05e804 CORE: vmm_host_irqdomain: Add alloc() and free() domain operations
030b9bed DRIVERS: irqchip/riscv-aplic: Align priority and threshold with Linux
3b7563d5 RISC-V: Setup interrupt delegation for both Orphan and Normal VCPUs
d84772f4 RISC-V: Use timer event to ensure interrupt delivery to virtual-VS mode
15f6c9db CORE: vmm_stdio: Improve defterm polling in vmm_scanchars()
8cbb373f RISC-V: Use shadow_page for nested_swtlb_lookup()
106139c4 TESTS: riscv: Enable earlycon=sbi for Linux Guest/VM
a9d45de1 RISC-V: Add Sv57x4 support for Guest/VM
e9eb5389 RISC-V: Add Sv57 support for Host
e75e1884 TESTS: common: Enable conspy in busybox-1.33.1 defconfig
3486a117 DRIVERS: riscv_timer: Ensure timer interrupt is not pending at boot time
10c6355f RISC-V: Emulate guest G-stage page table and guest HFENCE instructions
edce82b7 ARCH: generic_mmu: Add attributes and hardware tag for each page table
88cfeee6 RISC-V: Emulate HLV and HSV instructions for guest hypervisor
7228e6bd ARCH: generic_mmu: Add mechanism to get guest page table mapping
a1c7f49e RISC-V: Initial support for nested virtualization
f3a8e769 RISC-V: Add helper functions for nested virtualization
d344d440 RISC-V: Improve H-extension CSR defines for emulation
e19319ce RISC-V: Add more indentation in VCPU register dump prints
bffdf810 RISC-V: Add nested virtualization state in VCPU private context
0356895d RISC-V: Treat Guest SBI HFENCE calls as NOPs
1bf1d25f RISC-V: Fix typo in __sbi_rfence_v02() call to host
60ea8f65 TESTS: riscv: Generate VCPU isa string using Xvisor SBI extension
ad77ac9a RISC-V: Add Xvisor specific SBI extension
0310b843 TESTS: riscv: Improve SBI support in basic firmware
4c4839a8 TESTS: riscv: Add letter h to guest ISA string
f0994562 TESTS: riscv: Enable SBI based earlycon for guest linux
2f5ec150 TESTS: riscv: Enable HUGETLBFS for Linux guest
ee5b02ed x86: Fix compilation warnings in guest address translation
a393c49b x86: Add framebuffer support for early prints
464ff881 x86: Information on how to add Qemu monitor on telnet
b54c1e85 x86: Add EPT tracepoints
5557a15c x86: Add locks for accessing LAPIC area
d187dc38 x86: Facing facility for timer programming and IRQs
74fb4224 x86: program the flags before writing to ICR
ddeabbff RISC-V: Add linux style flat image header
76b00f26 RISC-V: Make CY, TM, and IR counters accessible in VU mode
434652b4 TESTS: riscv: Update ramdisk size in autoexec command list
02134aba TESTS: riscv: Disable DRM drivers for Linux guests
ba26c6ae RISC-V: Fix usage of hfence.gvma instruction
fcb2870c RISC-V: Use hfence.vvma in arch_mmu_test_nested_pgtbl()
af877113 RISC-V: Enable RISC-V APLIC in RV32 and RV64 defconfigs
649a05a7 DRIVERS: irqchip: Add RISC-V Advancded PLIC driver
8b699fef CORE: vmm_devtree_irq: Fix vmm_devtree_irq_create_mapping() domain check
78728e5c CORE: vmm_platform: Probe interrupt controller before other devices
6f03350e CORE: vmm_devtree: Add declaration of vmm_devtree_irqdomain_find() API
5083883a DRIVERS: irqchip/sifive-plic: Simplify contexts setup in plic_init()
7f9c4167 CORE: vmm_smp: Add vmm_smp_map_cpuid() API
1bc308b8 DRIVERS: irqchip/sifive-plic: Implement irqdomain map() callback
b165fd50 CORE: vmm_host_irqdomain: Add common xlate() to translate two cells
3ddbe813 CORE: vmm_host_irq: Provide previous interrupt in active_irq() callback
e2e58eaa DRIVERS: irqchip/riscv-intc: Add support for RISC-V AIA
5f3a5adf RISC-V: Fix base host irq used for IPI irqdomain
ba80399c CORE: vmm_host_irq: Improve sanity check in vmm_host_irqdomain_add()
fdefa93f RISC-V: Add feature flag for AIA support on all CPUs
35159846 RISC-V: Add AIA related CSR defines
40a06b69 RISC-V: Sync-up CSR and instruction encoding defines with OpenSBI v1.0
9be2fdd7 DOCS: Update commit tag in v0.3.1 release notes
5609318e TOP: Bump-up version to 0.3.1
82418c99 DOCS: Add Xvisor v0.3.1 release notes
cb2f5a6f TESTS: common: Improve basic firmware WFI test
8a0e6af5 CORE: vmm_vcpu_irq: Yield a few times before pausing VCPU upon WFI
974aed5f CORE: vmm_vcpu_irq: Check for pending interrupts after VCPU pause
11b344d4 CORE: vmm_vcpu_irq: Reduce granularity of default WFI timeout
6d369bab ARM: Fix MPIDR emulation generic v7 and v8 CPUs
f5a56566 TESTS: common: Update default linux and busybox version in scripts
0eba1089 ARM: Fix timer event expiry in generic_timer_vcpu_context_save()
f3090f88 TOP: Update the list of supported architectures in README.md
1befa80c ALL: Fix compile warning for packed structure
ddf3d681 ARM: Emulate cp15 aux control read for generic-v7 Guest VCPUs
cb2b8e02 TESTS: common: Fix busybox-1.33.1 defconfig
217edf76 TESTS: common: Update busybox and linux version in build scripts
c67b5d04 TESTS: arm32: Remove guests meant for ARM32 without virtualization
b282d089 DOCS: Remove documentation for ARM32 boards without virtualization
9fcd6969 ARCH: arm: Remove port for ARM32 without virtualization support
19bcb59c DRIVERS: clocksource/riscv_timer: Add error prints
f5bec49b RISC-V: Add riscv_node_to_hartid() for drivers
89b0b0dd DRIVERS: irqchip/riscv-intc: Minor cosmetic changes
6a9bc097 RISC-V: Enable ACLINT SWI driver in defconfigs
86c5d590 DRIVERS: irqchip: Add RISC-V ACLINT SWI driver
67585877 DRIVERS: irqchip/sifive-plic: Add multi-socket support
17805551 RISC-V: Add arch specific irqchip driver for SBI based IPI
c795c72c ARCH: generic_devtree: parse multiple memory DT nodes
9f0f85bb COMMANDS: host: Print HWIRQ number for each host IRQ
f216a723 CORE: vmm_host_irqdomain: Allow domain of_node to be NULL
81b230f3 RISC-V: Advertise SBI v0.3 via SBI BASE GET_SPEC_VERSION call
7ba8378c RISC-V: Add a simple implementation of SBI HSM HART suspend call
ab455318 RISC-V: Update SBI defines as-per SBI v0.3 specification
1eee1160 ARM: vgic: Queue interrupt immediately in __vgic_irq_handle()
32153a14 TESTS: common: disable NFS support in busybox
1c96c910 TESTS: common: busybox-1.33.1_defconfig addition
48ca88b1 TESTS: riscv: Increate Guest NOR flash size to 48 MB
e1d6ae2f RISC-V: Fix SBI remote HFENCE function ids
0a0a8643 x86: Fix build break
a326d27d x86: Handle vmwrite failures during vmlaunch/vmresume
dd22f58c x86: Fixed all the warning in the code.
45cca8d2 x86: VMInstruction handling moved to interception code
b9a178a3 x86: VM_LOG will not print file/line number by default
cfcb782a x86: Added support for Extended CPUID in guest
3fe74279 x86: Change the CPUID base name to LFUNCxx
7bd2f854 x86: Refactored the CPUID feature bit and mask
27d34efb x86: Enable interrupts on VMExit
c926d1a8 x86: Initialize AMD specified feature after checking vendor id
79b6cce7 x86: Fix the interrupts missing problem
0ec1e62b x86: Fixed problem with default terminal
0bd47a35 x86: Add missing changes in boot code for FB support
190f32b8 x86: Add CPUID handling code in vmexit
8d8994d1 x86: Fix the xvisor hang issue after vmexit
4e099d12 x86: Refactoring and Emlation support
93ae808b x86: Guest entry is successful
c11b7018 x86: Added information on how to run QEMU with nested VTX
7f1d496b x86: Change the following
7a82b55f x86: Fix EPT setup
fbad8542 x86: Add function to read rflags
3da8b83e x86: Fix the long standing VMCS configuration problem!
473fa8f7 x86: Add VMCS configuration auditor
ac1ff63b x86: Fix the bootup problem in bochs
45b82a25 x86: Updated test bios and guest init commands
276b1051 x86: Updated the dts and defconfig
12af8433 DOCS: Update the document regarding the virtual drive creation
c33c0aa5 x86: Set the serial port to port zero is none is specified.
d8da527c x86: Fix the host env init failures
40d7db68 x86: Fix the LAPIC timer for AMD processors
e3d3aac6 x86: cosmetic change
626e3b6a x86: Framebuffer support for initial and later console.
46cf54d8 RISC-V: Remove TIMER_EVENT_THRESHOLD_NS define
54b3bb14 RISC-V: Don't pack essential structs in arch_regs.h
c132e616 COMMANDS: vcpu: Fix expected args count for monitor sub-command
bdd07429 RISC-V: Simplify initialization of Guest time_delta
826e9f61 RISC-V: Cosmentic changes in arch specific macros
e5b1a8b2 TESTS: riscv: Update default earlycon bootargs for Guest Linux
cdab53db TESTS: riscv: stdout-path should be in Guest Linux DTS
0a92c06b TESTS: riscv: Introduce sbi_clear_timer() and use it for timer driver
b678e305 RISC-V: Stop timer in riscv_timer_event_start() when next_cycle=-1ULL
6eea7e9c DRIVERS: irqchip: Simplify riscv_intc_active_irq() implementation
583eafdc RISC-V: Implement SBI SRST extension for Guest/VM
6e867bd1 RISC-V: Don't print SBI in all prints of sbi_init()
0f8efab4 RISC-V: Detect and use SBI SRST extension when available.
e1898a01 RISC-V: Add SBI SRST extension defines
cfc58782 x86: Fix early vmentry host-state check failures
1ae7f05d TOP: Update travis.yml to use makeall script
26140d28 TOOLS: scripts: Add optional parameter to makeall script
b37fa9e8 TOP: Update README.md to show travis build status
62ccb953 TOP: Added travis.yml for travis-ci
f2ef21bc ARCH: generic_devtree: Check and show FDT/DTB as reserved entry
b82ee019 RISC-V: The root stage2 page table is 16KB in size and 16KB aligned
2f1ab3cc DOCS: Replace Linaro toolchains with ARM Ltd toolchains
c217b919 TESTS: arm32: Explicity enable NEON for Realview-PB-A8 Guest Linux
f0412862 TESTS: common: Add Busybox v1.32.0 defconfig
a9a918e4 ARM: arm64: Get nested MMU test suite working
2577c1a5 ARM: mmu_lpae: Set access flag for no-read-write Stage1 memory
6a1e8e43 ARCH: generic_mmu: Minor fix in mmu_test_nested_pgtbl()
ac7b3492 RISC-V: Remove redundant add instruction from SAVE_ALL() macro
65731aa6 RISC-V: Save/restore SCOUNTEREN CSR for normal VCPUs
f0926293 RISC-V: Determine transformed instruction length correctly
da009fb5 DOCS: Update RISC-V related READMEs
2bfa5ab5 CORE: Orphan VCPU may take wrong waitqueue lock after context switch
e12adf5d CORE: vmm_host_irqdomain_alloc() parameter validation is incorrect
1e3c0872 ARM: FSC Access Faults are not handled correctly.
f35352c2 ARM: vgic reset does not de-activate all pending LRs
a17e06fc RISC-V: Fix typo in HCOUNTEREN CSR define
004ff06e TESTS: riscv: virt32/virt64: Remove interrupt-parent from Linux DTS root
c42db8c2 TESTS: common/basic: Add fdt_print_tree command
92997e62 LIBS: wboxtest: Print leakage details only when there is some leakage
1b709f37 LIBS: wboxtest: More nested MMU tests
3ce72f92 RISC-V: Set HSTATUS.SPVP to known value in arch_mmu_test_nested_pgtbl()
bc33f339 RISC-V: Set access and dirty bits in leaf PTEs
f8df22b2 RISC-V: Provide initial defterm ops using SBI console calls
68a25e9a ARCH: generic_defterm: Allow overriding initial defterm operations
b3bde40c DOCS: riscv: No need to specify console and rtc in boot parameters
c148104c CORE: vmm_main: Improve boot parameter processing
e6a92afd LIBS: wboxtest: Add nested MMU tests
38bdc217 CORE: vmm_host_ram: Add APIs to get start and end of all RAM banks
1242cb07 RISC-V: Implement arch_mmu_test_nested_pgtbl() for testing nested MMU
51ffd3df ARCH: generic_mmu: Add mechanism to test nested page tables
6b090292 ARCH: arm32ve/arm64/riscv: Add arch_mmu_pgflags_set() function
a3ac2dba ARM: arm32ve: Remove redundant defines from arch_mmu.h
9e31f030 RISC-V: Rename __hfence_bvma_xyz() to __hfence_vvma_xyz()
c381176d RISC-V: Fix __hfence_gvma_vmid_gpa() and __hfence_bvma_asid_va() args
8128ba24 RISC-V: Add support for H-extension v0.6.1 draft
3c6f5457 RISC-V: Enable all counters for VS/VU-mode by default
51aa969e TOOLS: d2c.py: Add varalign and varprefix parameters
38c4b223 ARM: arm32ve: fix access to SPSR banked register
81f49add RISC-V: Minor fix in arch_cpu_nascent_init()
a19e6602 TOOLS: openconf: improve code to fix potential string buffer overrun
4aae2669 EMULATORS: Allow Xvisor to compile with gcc 10.
bd88e3cf CORE: Allow Xvisor to compile in VERBOSE mode.
7b3ed10b ARM: Allow arm32ve and aarch64 to compile in non SMP mode
94745330 ARM: RPI4: Add DT node to power off/reset device
d2787229 ARCH: generic_mmu: Separate root and non-root initial page tables
363493df ARCH: generic_mmu: Remove redundant def_pgtbl_tree[]
975de604 RISC-V: Use struct cpu_vcpu_trap extensively for passing trap details
05231dd8 RISC-V: Use HLV/HSV instruction for unpriv access
f966f0c8 RISC-V: Use HVIP CSR to inject virtual interrupts
f806605c RISC-V: Update CSR defines as-per H-Extension v0.6 spec
4e0ea042 ARCH: generic_mmu: arch functions for page table size and align order
bb38fcb4 ARCH: Remove redundant ARCH_MMU_PGTBL_ENT<xyz> defines
8374279d ARCH: generic_mmu: Common arch_cpu_aspace_memory_xyz() functions
0d6af31d ARCH: generic_mmu: Use page table pool only for stage1 page tables
c4eb4ece ARCH: generic_mmu: Implement arch_cpu_aspace_print_info() function
08829d3d COMMANDS: host: Add aspace info sub-command
6d83b8ea ARCH: simplify includes in arch/include headers
93e8d90c ARCH: Add generic MMU implementation
9918d806 DOCS: Update DTB path in all documentation files
1242a0f6 ARCH: Move DTS files outside board directory
1d531ed1 ARM: Move SMP operations from board to cpu sources
e87d50a0 RISC-V: Move SMP operations from board to cpu sources
0f715395 ARCH: Introduce generic arch board implementation
827c990c ARCH: Introduce generic arch defterm early implementation
b656ad6a ARCH: Introduce generic arch defterm implementation
689c60bb ARCH: Introduce generic arch IPI implementation
37f7464e ARCH: Introduce generic arch devtree implementation
f04122c5 Makefile: Allow sources common accross architecture
60105f0f ARM: Map DTB early instead of copying
3abcf3f9 RISC-V: Remove load reservation hack
8822fcab CORE: Move DMA heap initialization after device tree reservations
84a7068a CORE: Do pagepool and exception table init after nascent functions
a82a64b0 RISC-V: Improve init data and init const free-up
d341c354 RISC-V: Map DTB early instead of copying
f8d000a9 CORE: vmm_host_aspace: Introduce arch_cpu_aspace_vapool_xyz() functions
3bec3fda COMMANDS: host: Use vmm_host_vapool_size() for VAPOOL size
773cc46a RISC-V: Provide shutdown method using SBI v0.1 call
8c22af64 DOCS: Add Raspberry Pi4 documentation
b100144b RISC-V: Parse CPU capabilities in arch_cpu_nascent_init()
94963123 ARM: Do PSCI init from arch_cpu_nascent_init()
31241524 ARCH: Introduce nascent init functions
94fe1144 ARM: Factor-out PSCI library from SMP operations
a1049497 COMMANDS: Fix cmd_devtree_print_attribute() for boolean attributes
ad7675d3 ARM: arm32ve: arm64: No need for identity mappings in intial page table
8cd0f5e6 ARM: arm32ve: arm64: Increase default VAPOOL size to 64MB
a802f231 ARM: arm32ve: arm64: Set MAX_DTB_SIZE to 1MB in defconfigs
8ca6ac4a ARCH: Reduce memory waste from ALIGN(MAX_DTB_SIZE) in linker scripts
bfd794e1 ARCH: defterm: Fix console node parsing
48245a5e RISC-V: No need for identity mappings in intial page table
06e9233b ARM: Initial DTS for RPi4 model B board
370b11a5 ARM: arm32ve/arm64: Use cache invalidate for early page table setup
b3dac5b1 ARCH: defterm_early: Fix early_base computation
0069e564 RISC-V: Detect and use Sv48 MMU mode for Guest whenever possible
f7bf69c6 RISC-V: Simplify stage1 and stage2 mode managment
1ce7a618 RISC-V: Detect and use Sv48 MMU mode for host whenever possible
ff55d352 RISC-V: Print MMU mode in arch_cpu_print_summary()
5416b36d RISC-V: Don't have compile time fixed MMU mode
3f683003 RISC-V: Fix linker error for RV32 systems
72cf420d RISC-V: Fix #ifdef used for defterm early mappings
26c67263 CORE: Don't return failure in vmm_devtree_reserved_memory_init()
f7a19dde ARM: Add RK3399 I2C device tree configuration.
20c0a2db ARM: Enable RK3399 I2C driver in generic-v8 defconfig
fe249951 DRIVERS: Add RK3399 I2C driver ported from Linux
5ac38de6 DRIVERS: i2c: Add generic i2c Device Tree parsing
c258e593 DRIVERS: Add EACCES errno error number definition
ae37ac83 CORE: The result from vmm_devtree_attrval is ambiguous.
d7eb5cbd RISC-V: Fixup HIDELEG CSR programming
d3b65e1f ARM: Add RK3399 pinctrl and pinmuxes to deivce tree
1dc602cc ARM: Enable RK3399 pinctrl driver in generic-v8 defconfig
87d4f797 DRIVERS: pinctrl: Fix compiler warning
f04f7f37 DRIVERS: Add GPIO pin control driver for RK3399
d6612ba8 DRIVERS: of: Add function to count children of a DT node
e5bcce54 DRIVERS: gpio: Move the gpiochip_generic_XXX functions to gpiolib
118daefa RISC-V: Use hardware division instructions
0be68702 RISC-V: Guest SBI v0.2 HSM extension implementation
271a8ddf RISC-V: Guest SBI v0.2 RFENCE extension implementation
761514bb RISC-V: Guest SBI v0.2 TIME extension implementation
656bc817 RISC-V: Guest SBI v0.2 IPI extension implementation
090001f0 RISC-V: Guest SBI v0.2 base extension implementation
ec85ff26 RISC-V: SBI error codes defines as-per SBI v0.2 spec
264a48e7 RISC-V: Re-factor Guest SBI implementation
a0b66eaf DRIVERS: 8250-uart: Prepare uart clock if configured in device tree
8856c5dd ARM: Turn off unused clocks on RK3399 SoC
db458c58 ARM: Add UART clock configuration to device tree for RK3399
9e79b2b7 DRIVERS: clk: Incorrect cells count name for assigned-clock-parents
59c9c1b7 ARM: Add RK3399 clock configuration to device tree
903b9836 ARM: Enable RK3399 clock driver in generic-v8 defconfig
13eaa65f DRIVERS: Add the Rockchip clock drivers.
d55c5e3d DRIVERS: clk: Add support to limit input rate for fractional divider
e3fb7ac1 DRIVERS: clk: Allow clock adjustment back to requested rate after parent changes
22cdf5f4 LIBS: mathlib: Add a GCD function
66a26c36 CORE: __initconst and __initdata variables must be in separate sections
c041a2a8 DRIVERS: do_div macro does not behave as Linux drivers expect
2ae1a3fe LIBS: mathlib: DIV_ROUND ULL macros return incorrect result
25e58269 ARCH: 64-bit arch_in_<xxx> macros lose upper 32-bits of result
0ef0e194 RISC-V: Update SBI HSM defines as-per latest SBI spec
d3136401 RISC-V: Use hbase=-1UL whenever hart_mask=NULL for SBI v0.2 calls
6c360b1a RISC-V: Remove redundant SMP_OPS_DECLARE() macro
97e31963 RISC-V: Add SBI SMP operations
83ca3b07 RISC-V: Add SBI v0.2 HSM extension defines
d03b500c EMULATORS: virtio_mmio: Fix compile warning with GCC9
9e9a0172 DOCS: arm: Add RockPro64 documentation.
54269ba1 TESTS: Basic Firmware does not poll serial port correctly
174435bb ARM: Basic support for RockPro64 Single Board Computer
0b138c5f CORE: Split vmm_smp_ipi_init() into two parts
a16d4440 RISC-V: Allow multiple version of riscv gcc to build xvisor
1f82ff89 tools: Add the RISC-V architecture to the makeall script.
f3e9be29 RISC-V: Fix RV32 build when using RV64 crosss compiler
3379e5c9 CORE: vmm_schedalgo_prr: Use list_del_init() instead of list_del()
6fea5d23 DOCS: Update commit tag in v0.3.0 release notes
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
e34424555f |
libvirt: update to v11.4.0
Bumping libvirt to version v11.4.0, which comprises the following commits:
8ba3d94995 Release of libvirt-11.4.0
eb7b8ac5ff Translated using Weblate (Korean)
cd6a09c7f3 NEWS: Mention removal of compile time helper program lookup, virito-net ABI check and FDC capabilities
73f57e051a qemu: Fix error when migration with shared TPM storage is unsupported
dc1fe00e94 NEWS: update NEWS for POWER11 support
93d34fe442 NEWS: Make sure releases are separated by two blank lines
cfa295eccb NEWS: Fix virtqemud crash when resuming failed post-copy migration
34ce7f25c5 qemu: Fix crash when resuming failed post-copy migration
ac4f855bb0 Update translation files
0020966fee po: Refresh potfile for v11.4.0
43dc3b690b docs: domain: Explain supported options of 'error_policy'
d82df5884a Translated using Weblate (Georgian)
8482e27ed7 Translated using Weblate (Chinese (Simplified) (zh_CN))
424d3720e2 Translated using Weblate (Korean)
bb881a2e49 qemuDomainMachineSupportsFloppy: Check for QEMU_CAPS_BUS_FLOPPY
f7d1caa81d qemu: capabilities: Introduce QEMU_CAPS_BUS_FLOPPY
600065cefc qemu: Move floppy device support validation to validation code
e8017c12c8 qemu: domain: Introduce qemuDomainMachineSupportsFloppy
481a38c45f libvirt_nss: Allocate buffer in aiforaf() dynamically
209ca5f839 libvirt_nss: Allocate buffer in ERROR() dynamically
6133c09cf5 libvirt_nss: Drop needless cleanup labels
dbd41b6558 libvirt_nss: Use automatic memory freeing
6d1848ac12 nss: Declare g_autofree and g_steal_pointer() macros
f79ef43f2c nss: Add missing includes for gai_strerror()
46b0115778 libvirt_nss_macs: Fix type of @len in findMACsFromJSON()
7b0888b4ef cpu_ppc64: Add POWER11 host-model support
e17aa7408c cpu_map: Add POWER11 CPU model support
a714d53f74 tests: Add capabilities for QEMU 10.0.0 on ppc64
1c077f6a73 tests: qemuhotplugtest: Set the cpu version at source for PPC64 tests
0742b6487a tests: Pin pseries-2.7 tests to the version 7.0
47431165f4 virsh: Do not print warnings with "error:" prefix
eb9b48bddf docs: drvbhyve: document NVRAM support
14c05d8f3e NEWS: bhyve: document NVRAM support
e06902917c build-aux: simplify grep detection on FreeBSD
17e170a137 qemuMonitorJSONMigrate: Drop 'detach' QMP option
f0b29d4a6f qemuMonitorDumpToFd: Drop 'detach' argument
d9b90d6f89 virsh: domain: Annotate rest of arguments taking local existing file
811749a266 virsh: Apply empty completer to arguments where completion doesn't make sense
0f430122d3 vsh: Apply empty/local completers to global commands
8d1cd03478 virsh: completer: Extract common completer methods from virsh to vsh
c22b734117 cputest: Skip more tests requiring JSON_MODELS if QEMU is disabled
5fdcf07e5d bhyve: support removing NVRAM on domain undefine
4fc9b49217 bhyve: introduce bhyveDomainDefValidate()
b869102f5e bhyve: firmware: try to guess NVRAM settings
c7d1bbd9a4 bhyve: generate NVRAM bhyve arguments
24bdf9a15f bhyve: conf: introduce nvramDir
aeb1f77c0f qemu: fd: Log information about passed file descriptor
c8c3920e35 docs: backup: Hint at proper selinux labelling of the FD-passed NBD socket
3d05fe7aa3 qemuBackupPrepare: Actually allow 'VIR_STORAGE_NET_HOST_TRANS_FD'
16c4fa9f82 build: do not use -Winline
681d64b939 build: prohibit inline functions in C files by syntax-check
df75a015a1 NEWS: Mention new option '--no-pkttyagent'
0eea768f4b virsh: Add option '--no-pkttyagent'
05f34d585a qemuDomainRemoveInactive: Remove 'driver' argument
e9e8faa280 qemuProcessReconnectData: Drop 'driver' struct and clean up
36069750ee qemuProcessReconnect: Modernize local variable setup
54aad47a02 qemuDomainRemoveInactiveLocked: Remove 'driver' argument
1375974995 qemuProcessStop: Drop 'driver' argument
b5131f00b6 qemuDomainRemoveInactiveCommon: Remove 'driver' argument
475000c9bc qemuSnapshotDiscardAllMetadata: Remove 'driver' argument
ecadb2f19a qemuCheckpointDiscardAllMetadata: Remove 'driver' argument
f0ccfe9f9d qemuExtDevicesCleanupHost: Use 'virQEMUDriverConfig' instead of 'virQEMUDriver'
e0481ec1db qemuProcessStartWithMemoryState: Rename 'snapshot' to 'internalSnapshotRevert'
897b3aa3c5 qemuProcessStart: Rename 'snapshot' to 'internalSnapshotRevert'
a82f2b6de7 qemuProcessLaunch: Rename 'snapshot' to 'internalSnapshotRevert'
63bc7ea39c qemuBuildCommandLine: Drop 'snapshot' argument
c4f70cc4d9 qemuSnapshotRevertInactive: Ensure all error paths handle transient domains properly
542f1378bf qemuSnapshotRevertActive: Remove transient domain on failure
f06805a979 NEWS: Mention fix for internal snapshot reversion regression
889d2ae289 qemuProcessStartWithMemoryState: Don't setup qemu for incoming migration when reverting internal snapshot
bf79a021a6 cpu_x86: Do not inline cpuidCall()
768b539d83 spec: Bump min_fedora
e2bc742fcc spec: Bump min_rhel
37ce03c6fe ci: refresh with 'lcitool manifest'
431911a846 tests: Add pcihole64 test for virt machine
329afc74b1 qemu: Add command line support for PCI high memory MMIO size
91e1b2cb7c qemu: Add capability for PCI high memory MMIO size
8a9d201bf6 ch: Support RNG device
95d665c768 rpc: Add the {repoll,retry} logic in virNetClientSetTLSSession
1e2b13fb20 src: Fix retval of some functions declared to return an int
fe1f94a034 virsh-pool.c: Fix return type of virshBuildPoolXML()
a9adca0956 virnetdevvlan: Fix return type of virNetDevVlanEqual()
a857d993d1 storage_backend_rbd.C: Fix return type of a volStorageBackendRBDUseFastDiff() stub
1cf0944ceb qemu_process: Fix return type of qemuDomainHasHotpluggableStartupVcpus()
7e763c5275 nwfilter: Fix return type of virNWFilterCanApplyBasicRules callback
9fc9395c41 storage_backend_rbd.c: Make virStorageBackendRBDSetAllocation() stub report an error
d892d3c276 virDomainNetDefCheckABIStability: Consider virtio 'queues' ABI
465a38154f virNetDevTapCreate: Use error message hinting to multiqueue use only when opening multiple queues
0e1c309157 docs: man: Document '--once' for 'virsh autostart'
dd8573b3ea API: Clarify behaviour of autostart vs autostart once
6db8dc63bc qemuDomainPrepareHostdevPCI: Simplify error messages
fced1da279 qemuDomainPrepareHostdevPCI: Fix return values after conversion from bool to int
28c16b7d11 virnetdevtap: Fix memory leak in virNetDevTapReattachBridge
6c4260b501 virnetlink: Split virNetlinkBridgeVlanFilterSet()
6a23a61496 virnetdevbridge: Include virnetlink.h more often
54fbcc6c7d virnetdevbridge.c: Fix comments in virNetDevBridgeSetupVlans()
89c622744f virnetlink: Provide stub for virNetlinkBridgeVlanFilterSet()
bd30147e74 rpm: disable zfs on Fedora >= 43
cea2ee1d28 tests: Add capabilities for QEMU 10.0.0 on aarch64
3d6c40df37 tests: Use collie instead of borzoi for aarch64 tests
6ff8d08777 qemu_capabilities: Fetch caps for virtio-mem-ccw too
18ff3c9fbf ci: refresh with 'lcitool manifest'
2756609a3e docs: hooks: Document when shutoff-reason argument was introduced
c074f2f9a8 cpu_x86: Fix algorithm for computing CPU model weight
8c23ba74c7 cpu_x86: Refactor virCPUx86CompareCandidateFeatureList
18baf82a02 cputest: Add data for a newer version of Intel Atom(R) P5362 CPU
91878efb57 cputest: Add data for Intel(R) Xeon(R) w7-3465X CPU
44bbbb672a cputest: Add data for Intel(R) Xeon(R) Gold 6530 CPU
3b6fcd3e13 cputest: Add data for Intel(R) Xeon(R) Bronze 3408U CPU
ac35760043 cputest: Add data for Intel(R) Xeon(R) 6731E CPU
9d518cd0fe cputest: Add data for AMD EPYC 9334 32-Core CPU
05ee8942f0 cputest: Add data for Intel(R) Xeon(R) Gold 6152 CPU
a7e7971224 cputest: Add data for AMD Ryzen 5 5500U CPU
e7be4feea1 cputest: Add data for AMD EPYC 7713 64-Core CPU
42e14595f3 cputest: Add data for Intel(R) Xeon(R) Silver 4214R CPU
1424a1a17b cputest: Add data for Intel(R) Xeon(R) CPU E3-1270 v5 CPU
e66a2079b8 cputest: Add data for Intel(R) Core(TM) i7-1365U CPU
c976bf9be7 cputest: Add data for Intel(R) Core(TM) i7-1270P CPU
670aae6cda tests: update capabilities for QEMU 10.0.0 on s390x
c72a1751e5 qemuxmlactivetest: Don't segfault when capability XMLs are invalid
5650f1f1e7 domaincapstest: Remove XMLs for already dropped qemu versions (4.2.0 - 5.1.0)
f0668b7bf0 qemucapabilitiesdata: Enable GTK graphics for 'caps_10.0.0_x86_64'
5df511d178 scripts: Adapt mock-noinline.py to ATTRIBUTE_MOCKABLE
f8bc6af44d src: s/G_NO_INLINE/ATTRIBUTE_MOCKABLE/
76f8c0b80d internal: Introduce ATTRIBUTE_MOCKABLE
27c964a7e4 openvz: stop hardcoding vzlist/vzctl/vzmigrate paths
a3977c246e util: stop hardcoding pkttyagent path
4f8b9e731a storage: stop hardcoding LVM tool paths
68d17f641a meson: stop setting conf var for optional programs
8faebd4aa8 util: remove use hardcoded TC path
5f781ab311 util: remove use hardcoded OVS_VSCTL path
b6e50df68d util: remove use hardcoded MODPROBE/RMMOD paths
19f2b047d3 util: remove use hardcoded MM_CTL path
d15cdacc3a nodedev: remove use hardcoded MDEVCTL path
fa513d5845 util: remove hardcoded ISCSIADM command path
ce7ac2f908 meson: remove check for 'ip' program
5d36775747 util: remove use hardcoded DMIDECODE path
f4e95d1215 meson: stop setting conf var for required programs
014bf667c6 build-aux: add missing definition of PERL variable
46aab93457 docs: stop setting vars for docs tools
6bfead9893 util: stop hardcoding 'ifconfig' path
f7abafdd05 util: stop hardcoding bhyve, bhyvectl, bhyveload paths
654e30b98c util: stop hardcoding numad path
88f560b619 tests: storage hardcoding paths for mount & vgchange
69eff8ed22 storage: stop hardcoding paths for mkfs, mount, umount
62cf5ba3f9 Post-release version bump to 11.4.0
cc934f93a5 Release of libvirt-11.3.0
eeae25d07c Translated using Weblate (Romanian)
4792cc46b6 Translated using Weblate (Spanish)
27f2900615 Translated using Weblate (Romanian)
742fca442d Translated using Weblate (Ukrainian)
e1882a4ac4 Translated using Weblate (Chinese (Simplified) (zh_CN))
afadcc7359 Update translation files
e1fdff61be scripts: Fix reading list of files in mock-noinline.py
c19c8f1996 util: Add missing G_NO_INLINE annotation
b41577396f po: Refresh potfile for v11.3.0
386cb6708b Translated using Weblate (Finnish)
408475296a Translated using Weblate (Georgian)
05ed4dde65 Translated using Weblate (Korean)
09798e46e3 Translated using Weblate (Spanish)
7d3ac8017d remote: expand some debug messages for socket detection
11abe72fad kbase: update docs to account for changed error message
79e26b7b21 remote: improve error message when no URI is set
a77cdea4cf qemucapabilitiestest: Final update for qemu-10.0 release on x86_64 of the 'amdsev' variant
6e1448d8a8 qemucapabilitiestest: Final update for qemu-10.0 release on x86_64
2dd0ad6d52 rpm: Enable KVM for riscv64 on RHEL 10+
c5a73f75bc qemu_rdp: Fix a typo existance -> existence
750eaf2243 python: Do not explicitly state variables are global when only read
ab1218c610 nwfilter: Fix erroneous pointer passing to g_clear_pointer
8685923df0 virbitmap: Change return type of virBitmapToData to void
6387253c42 docs: formatdomain: Metion virtio model for currentAddress
da062b4d6c bhyve: use const virDomainDef pointer in bhyveBuildNetArgStr()
16a34cedf3 conf: use const virDomainDef pointers
faa98ca6d3 nss: Fix memory leak in findLease()
5de27c32a1 nwfilter: Avoid possible double free in virNWFilterInstReset()
9ccd9676a8 virsh: prevent potential NULL dereference
6230eed02c bhyve: capabilities: advertise RNG device support
9b152fcf6f docs: drvbhyve: document virtio-rnd support
21e3cf978b NEWS: bhyve: document new features
ac6519084c vsh: Turn _vshControl::progname into a const string
9e89ef3f2f vsh: Free commands in vshDeinit()
32fb9af277 NEWS: Mention fix of crash on disk hotplug failure
ba4de5e09e qemuDomainAttachDiskGeneric: Report errors from 'qemuBuildThrottleFiltersAttachPrepareBlockdev'
727f42a8cd qemu: block: Don't crash if qemuBlockThrottleFiltersDetach gets NULL @data
44abaa0128 qemu: make passt+vhostuser reconnect behave identically to passt+user
95ff77f289 qemu: put vhost-user code that's special for passt in a helper function
dedf1ada95 qemu: respond to NETDEV_VHOST_USER_DISCONNECTED event
03a6bc7752 qemu: make processNetDevStreamDisconnectedEvent() reusable
51a54dc1c4 qemu: remove nonsensical sanity check in processNetdevStreamDisconnectedEvent()
68a83cac64 qemuDomainBlockCopyCommon: Don't revoke access to file twice on failure
63c348e88a qemuDomainBlockCopyCommon: Reorder setup of 'mirror' data
93307c7a50 qemu: domain: Unexport 'qemuDomainPrepareStorageSourceBlockdevNodename'
a55f1930d5 ch: fix double space in error message
e1e40b5035 bhyve: support interface type 'network'
1ec1b765d6 bhyve: extend RNG device validation
0464a9462c bhyve: argv2xml: support virtio-rnd devices
03fac384c5 bhyve: support random number generator device
97ed7f22b0 qemu: Properly propagate migration state to TPM cleanup code
a5e4ca6f02 qemu: Rename outgoingMigration parameter in various TPM functions
ac5874ba87 network: Suppress reporting an error when D-Bus is unavailable in networkStateInitialize()
4f502feebf virinhibitor: Suppress reporting an error when D-Bus is unavailable in virInhibitorAcquire()
4940e27321 NEWS: Mention fix for 'qemu-rdp' error being logged
bd473480b4 qemu: rdp: Fix 'qemuRdpAvailable()'
59f40ba67c esx: Accept empty "path" URI component same way as "/"
617e2dc319 manpages: virsh: Use disclaimer from 'virNodeGetInfo()' for 'virsh nodeinfo'
6654cf472c virNodeGetInfo: Improve description of the case when fake data is reported
e54cc1500c libvirt-host: Clarify/fix description of the CPU frequency field
be29dbe187 virHostCPUGetInfoPopulateLinux: Remove 'cleanup'
f883dab020 virHostCPUGetInfoPopulateLinux: Use automatic memory freeing
9a747afe6c qemu: capabilities: Retire QEMU_CAPS_NBD_BITMAP
4675e7d3a8 qemu: capabilities: Retire QEMU_CAPS_BLOCK_EXPORT_ADD
57b9b969fb qemu: monitor: Drop wrappers for 'nbd-server-add'
cb332d616a qemu: block: Always assume support for 'block-export-add'
fe88f3f151 docs: drvqemu: Fix required minimum qemu version to 6.2.0
cdf599cfb6 NEWS: mention vol-create bug fix
b8c3d847a9 storage: virStorageVolDefParse and storageVolCreateXML flags fix
7f07cf5a72 docs: Render API and XML sections one per line in HTML
d8d7d970c3 docs: Re-order XML schema after API documentation on 'docs' page
4ba5b659dc NEWS: Document ARM CPU map bug fix
701b2c0fca cpu_map: Install Ampere-1 ARM CPU models
b72270fafd tests: Add a basic CPU test for aarch64
73d8cbaae5 meson: Drop workaround for -Wframe-larger-than and clang
01a098ebc7 vbox: Move parts of vboxSnapshotRedefine() into a separate function
61e1e61f81 vbox: Move parts of vboxSnapshotRedefine() into a separate function
cccdb33ced vbox: Move parts of vboxSnapshotRedefine() into a separate function
de3ea81270 vbox: Move parts of vboxSnapshotRedefine() into a separate function
f9c4f20d8f doRemoteOpen: Drop needless typecast of @transport
62ba268cd7 doRemoteOpen: Move RPC talk to a separate function
063222801a remote_driver: Move URI arg extraction into a separate function
008ccd3518 ch: Fix printf format strings wrt size_t argument
b065df3d04 ch: Drop pid from monitor
3dae81c8d7 ch: Use CH_DOMAIN_PRIVATE() more
6e147f6eac Add NEWS item for <hyperv/> flags with Xen
410dfde9bb libxl_conf: Implement hyperv domain flags for Xen
312088d9b6 tools: virsh: metadata: do not report error on missing metadata
d7492f5225 Translated using Weblate (Ukrainian)
60b37479f8 docs: add table showing guest IP/DNS/gateway settings when using SLIRP
4c5e3b1ca0 ch: virCHProcessEvent() vm shutdown event handler fix
ad22460a75 ch: virCHProcessEvent() update domain info after reboot
9d6e2d127e ch: virCHMonitorNew() run new CH monitor daemonized
e677faa11e qemu: capabilities: Retire QEMU_CAPS_SNAPSHOT_INTERNAL_QMP
38d47345e2 qemu: monitor: Remove HMP monitor code
edc541129f qemu: Always revert internal snapshots via QMP rather than '-loadvm'
31896db4d5 qemu: snapshot: Always assume support for QEMU_CAPS_SNAPSHOT_INTERNAL_QMP
4d548a2458 qemuSnapshotCreateActiveInternal: Fix error logic
62d6794827 qemu: domain: Don't check return value of 'virCPUDefCopy'
8c2872d72c qemu: monitor: Improve field annotations in QEMU_CHECK_MONITOR
e2c6f436dc tests: domainbackupxml2xml: Add test case for pull-mode backup with NBD transport='fd'
eb768a556d backup: Add support for passing server socket file descriptor to backup NBD server
2e014dfae6 qemu: monitor: Support FD passing of sockets to 'qemuMonitorJSONNBDServerStart'
5da6b62419 virStorageNetHostDefClear: Move into virStorageNetHostDefFree
ee49106dbf conf: Introduce VIR_STORAGE_NET_HOST_TRANS_FD
081f3ec3dd virDomainStorageNetworkParseHost: Refactor cleanup
aa3c1de260 virDomainStorageNetworkParseHost: Remove unpopulated 'transport' variable
93ecaec845 virDomainDiskDefValidateSourceChainOne: Fix validation of 'data-file' nesting
7d4de62cfa esxConnectListAllDomains: Don't propagate failure to lookup a single domain
904b5e9d06 news: document dropping apparmor < 3.0.0
5ed5673ebf meson: drop remaining checks for apparmor version
2c46d5c216 Revert "apparmor: Allow version-specific bits in profiles"
b8b60c4bee Revert "apparmor: Allow version-specific bits in abstractions too"
933494237a apparmor: assume at least apparmor >= 3
21b7b02b72 meson: mandate apparmor >= 3.0.0
52638fb16a Post-release version bump to 11.3.0
73329aa737 Release of libvirt-11.2.0
803671de80 Translated using Weblate (Korean)
60d3a62c35 Translated using Weblate (English (United Kingdom))
40f5082683 NEWS: qemu: support block disk along with throttle filters
0123456789 NEWS: Document features/improvements/bug fixes I've participated in
d84b249577 NEWS: Mention bump to qemu-6.2, vhost-user shmem check and stats params discoverabilty
8a48877a5a doc: remove wrong comment
3cb6e14343 lib: virDomain{Save,Restore}Params: Ensure absolute path
fa86037eb5 Update translation files
52e3f3041f qemu_driver: Fix virDomainSaveImageDefineXML
a442f46b0e po: Refresh potfile for v11.2.0
50981052a5 qemu: Emit NIC_MAC_CHANGE event
057872df2d Introduce NIC_MAC_CHANGE event
ac95617d3d qemu: Reflect MAC address change in live domain XML
d5666b3c2e NEWS: Mention virsh hypervisor-cpu-models command
bd21e22fe6 Translated using Weblate (Spanish)
631fceade9 NEWS: Mention guest agent error code improvements
8ab9c74df9 qemuAgentCheckError: Rewort error if neither return nor error is found
b38d66e81e qemuAgentCheckError: Use 'VIR_ERR_AGENT_COMMAND_FAILED'
c3a92081c8 lib: error: Introduce 'VIR_ERR_AGENT_COMMAND_FAILED'
8b40067ece docs: Point to VIR_ERR_AGENT_COMMAND_TIMEOUT when setting timeout
54312df15b qemuAgentCommandFull: Use VIR_ERR_AGENT_COMMAND_TIMEOUT when agent disappears
305e91dc21 qemu: agent: Differentiate timeouts when syncing from command timeout
ae499e4536 lib: error: Introduce 'VIR_ERR_AGENT_COMMAND_TIMEOUT'
d61ca2665e NEWS: fix one more typo
50cc071858 NEWS: hotplug virtio-mem device
25a26bd97b Translated using Weblate (Chinese (Traditional) (zh_TW))
0ae12c6173 Translated using Weblate (English (United Kingdom))
5801e3ce26 Translated using Weblate (Russian)
ec16313f8b NEWS: Mention support for mapped-ram
6bd9b06484 qemu: Fix build on 32-bit platforms
ddb8305049 virsh: add --image-format option to the save command
73cf89e8f2 tools: use virDomainSaveParams only when necessary
b982583d92 tools: use virDomainRestoreParams only when necessary
ff22383b34 qemu: remove VIR_DOMAIN_SAVE_PARALLEL flag
2582f4dcab tools: remote --parallel from virsh save command
ec274a96b6 tools: remove --parallel from virsh restore command
743f49aa66 NEWS: fix even more typos
37429530cc qemu/dbus: Allow connections from root to the dbus-daemon
c2f6feb54f Fix typo in NEWS files
a6aa0f0c7e Add NEWS item for auto-shutdown feature
a274048196 tools: add parallel parameter to virsh restore command
380cffda23 tools: add parallel parameter to virsh save command
f0169f4d6c qemu: Add support for parallel save and restore
3637c4dd8b include: Define constants for parallel save/restore
da4273db05 qemu: Support O_DIRECT with mapped-ram on restore
06bdb1b6c7 qemu: Support O_DIRECT with mapped-ram on save
28a0621528 qemu: Add support for mapped-ram on restore
138737b203 qemu: Apply migration parameters in qemuMigrationDstRun
5b324c0a73 qemu: Move creation of qemuProcessIncomingDef struct
c2518f7bc7 qemu: Add support for mapped-ram on save
a24f10f91e qemu: Add helper function for creating save image fd
fa68f78f13 qemu_saveimage: add "sparse" to supported save image formats
c939bf537e qemu: Add function to get migration params for save
ac2f196ddd qemu: Add mapped-ram migration capability
f80d59afe1 qemu: Add function to get bool value from migration params
61a095cfc7 qemu: Add function to check capability in migration params
3f53bfac41 qemu: Add function to get FDPass object from monitor
9cbc2b9c51 virsh: Add option "throttle-groups" to "attach_disk"
180d41934c virsh: Add support for throttle group operations
f839ff5887 virsh: Refactor iotune options for re-use
53088d8cab qemustatusxml2xmldata: Add 'throttlefilter' tests
18a912f55f qemuxmlconftest: Add 'throttlefilter' tests
2279f9e0ff config: validate: Verify iotune, throttle group and filter
9a6560f066 qemu: block: Support block disk along with throttle filters
80307f4823 qemu: helper: throttle filter nodename and preparation processing
937f300c56 qemu: Implement qemu driver for throttle API
9f29461704 qemu: Refactor qemuDomainSetBlockIoTune to extract common methods
a10b3ffebb remote: New APIs for ThrottleGroup lifecycle management
5023d974b1 tests: Test qemuMonitorJSONGetThrottleGroup and qemuMonitorJSONUpdateThrottleGroup
8beb51f23d qemu: monitor: Add support for ThrottleGroup operations
7b4ea19772 config: Introduce ThrottleFilter and corresponding XML parsing
644a97b87d config: Introduce ThrottleGroup and corresponding XML parsing
8ce2d2df0e schema: Add new domain elements to support multiple throttle filters
2463533aad schema: Add new domain elements to support multiple throttle groups
65eeaf12d0 virsh: Introduce new hypervisor-cpu-models command
563d3cfb86 hypervisor: emit systemd status & log messages while saving
364977b94a rpc: don't let systemd shutdown daemon while saving VMs
27020d20ee admin: add 'daemon-shutdown' command
94029c9d64 rpc: fix shutdown sequence when preserving state
4acd18b5b8 rpc: don't unconditionally quit after preserving state
1cad0a1c78 rpc: move state stop into virNetDaemon class
77c32d2d53 rpc: rename virNetDaemonSetShutdownCallbacks
256ed0c9f9 src: clarify semantics of the various virStateNNN methods
da1d0f32d0 qemu: add config to control if auto-shutdown VMs are restored
7e153492e7 qemu: wire up support for once only autostart
602f2e60ca hypervisor: wire up support for auto restore of running domains
c6018e5f87 conf: implement support for autostart once feature
65345dbf47 src: add new APIs for marking a domain to autostart once
543d259ad3 qemu: add config parameter to control auto-save bypass cache
b11c76e514 hypervisor: support bypassing cache for managed save
faa7a082a1 qemu: configurable delay for shutdown before poweroff
eb51f97870 qemu: improve shutdown defaults for session daemon
f48f700f3d qemu: support automatic VM managed save in system daemon
84bb136c31 hypervisor: custom shutdown actions for transient vs persistent VMs
f4f5e6bdc4 hypervisor: expand available shutdown actions
2b792b35a4 remote: always invoke virStateStop for all daemons
991a20a938 hypervisor: move support for auto-shutdown out of QEMU driver
f48fb17d72 qemuHotplugRemoveManagedPR: Integrate check whether removal is needed
ad94d8fb19 qemuDomainChangeEjectableMedia: Separate rollback and success code paths
1f00a208ea qemu: Remove return value from 'qemuHotplugRemoveManagedPR'
d87e5a1de1 qemu: Do not replace filter nodes with virDomainBlockCopy
ca429f102c qemu: monitor: Wire up 'replaces' attribute for 'blockdev-mirror'
6ccf67f5a7 NEWS: Mention multiple iothread support for 'virtio-scsi' controller
a4cbad35c9 qemuxmlconftest: Add 'iothreads-virtio-scsi-mapping' case
adb812f068 qemu: Implement support for iothread <-> virtqueue mapping for 'virtio-scsi' controllers
9c4664e8e5 conf: Add support for iothread to queue mapping config for 'virtio-scsi'
285ae7feb3 qemu: capabilities: Introduce QEMU_CAPS_VIRTIO_SCSI_IOTHREAD_MAPPING
d2414079f7 qemucapabilitiestest: Update 'caps_10.0.0_x86_64' to v9.2.0-2799-g0462a32b4f
815c22a3a7 conf: also free auth for rdp in virDomainGraphicsDefFree
cae2d23a83 qemu: remove unreachable breaks in qemuDomainAssignMemoryDeviceSlot
9ef080d6d9 qemu_domain_address: fix CCW virtio-mem hotplug
be30b8eef9 tests: add qemu <graphics type='rdp'/> test
d80f1f8e63 qemu: add RDP support
f5e5a9bec9 qemu: add 'rdp' capability if qemu-rdp is available
e008d229f4 qemu: pass virQEMUDriverConfig to capabilities
469e161946 qemu: add qemu-rdp helper unit
cdee56a955 qemu: validate RDP configuration
507be3425b qemu/dbus: log daemon stdout/err, use domainLogContext
dbfb96d18c qemu/dbus: keep a connection to the VM D-Bus
3af8f135e9 qemu/virtiofs: use domainLogContext
a4d8df93ce qemu: limit to one <graphics type='rdp'>
cab7d25371 qemu: add RDP ports range allocator
14146b05b6 qemu: use virDomainDefHasGraphics
97829d016d conf: generalize virDomainDefHasSpiceGraphics
bfa7d5aaa8 conf: parse optional RDP username & password
bd5f4d3237 qemu: add qemu RDP configuration
12d7b9fe26 qemu: add rdp state directory
ebdcec7dc9 util: annotate non-null arguments for virGDBusCallMethod()
de9b1f0e72 qemu-slirp: drop unneeded check for OOM
44089b4eea build: fix -Werror=maybe-uninitialized
7253dda517 build-sys: drop -Winline when optimization=g
7dcfa95e47 news: Add item for guest load averages
acf2f9e1ef src: add new target for regenerating protocol structs files
dcd1132937 src: normalize whitespace in protocol structs files
fc201e0fcc ch: Fix refcounting in virCHEventHandlerLoop() and virCHStartEventHandler()
1db1244752 ch: preserve last error in virCHProcessStop()
5a20684788 docs: Fix some typos
01a7e84be9 docs: remove references to removed APIs
cb3a6e8806 scripts: add execute permission to several files
40c0c9c838 docs: document workaround for DMARC countermeasures
4c979edaa5 conf: parse interface/source/@dev for all interface types (with backend type='passt')
902237664f Remove unreachable breaks right after return
c6f0819f1d qemu: remove unused vm from qemuBuildPVCommandLine
5c52740587 qemu: remove unused vm from qemuBuildSEVSNPCommandLine
cda322b8b2 qemu: remove qemuCaps from qemuBuildIOThreadCommandLine
fc43efc312 qemu: remove qemuCaps from qemuBuildObjectCommandline
7e0fbdf91d qemu: remove qemuCaps from qemuBuildTLSx509CommandLine
69ccd52b7c qemu: remove qemuCaps from qemuBuildObjectSecretCommandLine
28a22dc3a1 qemu: remove qemuCaps from qemuBuildObjectCommandlineFromJSON
7fc6764fb6 qemu: validate: fs: remove unneeded parameter
e4383feaa4 qemu: seccomp sandbox: remove incorect G_GNUC_UNUSED marker
b6dbabc589 NEWS: Mention new 'image_format' parameter for virDomainSaveParams
b9f54f8792 docs: Clarify what source and name attributes of TPM profile describe
eb6c28408d ch: Rework virCHProcessConnectMonitor()
5ed2ed8708 ch: Unref @cfg in virCHProcessStop()
b9a10cf4bb ch: Free @iothreads array in virCHProcessSetupIOThreads()
1b25f1e53b ch: Don't leak virCHDomainObjPrivate struct members
9da8db464a ch: Free retval of curl_slist_append()
8701ba4feb network: Free inhibitor in networkStateCleanup()
4f1e9d02ea qemu: capabilites: Retire QEMU_CAPS_MIGRATION_PARAM_BLOCK_BITMAP_MAPPING
e5d7a871c5 qemu: migration: Always assume support for QEMU_CAPS_MIGRATION_PARAM_BLOCK_BITMAP_MAPPING
eb27abb415 qemu: domain: Remove qemuDomainSupportsCheckpointsBlockjobs
e1bce4ecd2 qemu: capabilites: Retire QEMU_CAPS_INCREMENTAL_BACKUP
0b939c467a qemu: Always assume support for QEMU_CAPS_INCREMENTAL_BACKUP
e6815547c8 qemu: capabilities: Retire QEMU_CAPS_BLOCKDEV_SNAPSHOT_ALLOW_WRITE_ONLY
2f4e76a770 qemu: Always assume support for QEMU_CAPS_BLOCKDEV_SNAPSHOT_ALLOW_WRITE_ONLY
514c1f8dda qemu: capabilities: Retire QEMU_CAPS_BLOCKDEV_REOPEN
4983cb62e6 qemu: Always assume support for QEMU_CAPS_BLOCKDEV_REOPEN
5ec6318c05 qemu: capabilities: Retire QEMU_CAPS_QMP_QUERY_NAMED_BLOCK_NODES_FLAT
a8ac578419 qemu: monitor: Always assume support for QEMU_CAPS_QMP_QUERY_NAMED_BLOCK_NODES_FLAT
52ec7929b0 qemu: capabilities: Retire QEMU_CAPS_OBJECT_JSON
f46e2bf3b0 util: Drop 'virQEMUBuildCommandLineJSONArrayBitmap'
af227c6ab0 qemu: monitor: Drop support for extra wrapper for 'object_add'
51f7b35612 qemuBuildObjectCommandlineFromJSON: Assume all qemus support QEMU_CAPS_OBJECT_JSON
554a5e508a qemu: capabilities: Retire QEMU_CAPS_COMPAT_DEPRECATED
57cbe6a569 qemuBuildCompatDeprecatedCommandLine: Assume that QEMU_CAPS_COMPAT_DEPRECATED is supported
67d2787807 domainbackupxml2xml: Add test case with unix socket server for pull mode backup
5d95391203 docs: formatdomain: Clarify configuration of iothread <-> virtqueue mapping
0ee6848ca5 virDomainIothreadMappingDefParse: Fix usage of virXMLNodeGetSubelementList
fcd47086f4 virXMLNodeGetSubelementList: Document return value semantics
482a2d119b qemu: Use modern header formatting in 'qemu_command.h'
080c7fd341 qemu: process: Remove un-updated 'qemuProcessStartWarnShmem'
0d20632179 qemuValidateDomainDeviceDefNetwork: Require shared memory for all vhost-user interfaces
779a975355 qemuxmlconftest: Include shared memory 'net-vhostuser' test cases
2daf61ffec qemuNodeGetSEVInfo: Use virTypedParamList to construct return value
710e90fc69 qemuDomainGetLaunchSecurityInfo: Use virTypedParamList to construct return value
20e0bc3fbd qemuDomainGetLaunchSecurityInfo: Don't forget unlock VM object on (impossible) error
defca11627 src: expand docs for guest stats constant version handling
c27bced958 src: expand docs for guest stats array handling
728b22be92 src: document that no constants are provided for custom VM stats
5d9f73628b src: add constants for domain stats 'dirtyrate.' parameters
b1c0ec1767 src: add constants for domain stats 'memory.' parameters
ca0aa86fbb src: add constants for domain stats 'iothread.' parameters
69e8341f10 src: add constants for domain stats 'perf.' parameters
4661ceb067 src: add constants for domain stats 'block.' parameters
88bae83ea9 src: add constants for domain stats 'net.' parameters
b040ee0c98 src: add constants for domain stats 'vcpu.' parameters
6a16c3ca8c src: add constants for domain stats 'balloon.' parameters
947306957e src: add constants for domain stats 'cpu.' parameters
df0513fa36 src: add constants for domain stats 'state.' parameters
8927d4eedc src: expand docs for guest info constant version handling
5436eba3a8 src: expand docs for guest info array handling
325b5701ae src: add constants for guest info 'load.' parameters
9e725c1ccd src: add constants for guest info 'if.' parameters
d28a49cd6d src: add constants for guest info 'disk.' parameters
c9a8c55f96 src: add constants for guest info 'fs.' parameters
941d11fe71 src: add constant for the guest info 'hostname' parameter
e7a122a192 src: add constants for guest info 'timezone.' parameters
7192539cec src: add constants for guest info 'os.' parameters
0a19b61a6c src: add constants for guest info 'user.' parameters
278b8334eb qemu: snapshot: error out early when reverting snapshot for VM with non-file disk
fc47a37a7a security: Don't stop restoring labels too early
63c0f15f09 docs: Correct dbus graphics' accepted p2p values
b0527a8f8e tests: update capabilities for QEMU 9.2.0 on s390x
477a81fedb esx: Refactor esxVI_LookupHostScsiTopologyLunListByTargetName
cc33c02ad5 ch: Enable SEV SNP support
695a4f38b5 util: Introduce virStringFormatHex
9d1e4b25ba security: Set seclabels on UEFI shim
39c1784ca0 qemu_command: Generate cmd line for UEFI shim
b136e492c5 qemu_validate: Check whether UEFI shim is supported
30be3b0d9d qemu_capabilities: Introduce QEMU_CAPS_MACHINE_SHIM
6b63334233 conf: Introduce os/shim element
17945b8ec9 qemucapabilitiestest: Add data for the qemu-10.0 dev cycle on x86_64 for the '+amdsev' variant
c941fec220 qemucapabilitiestest: Update 'caps_10.0.0_x86_64' to 'v9.2.0-2369-g98c7362b1e'
5cc3803d1d qemu: block: Drop 'sheepdog' protocol support
8824af826d qemu: capabilities: Bump minimum qemu to qemu-6.2
cbe39cfa8e qemucapabilitiesdata: Drop un-updated 'qemu_8.0.0_riscv64' data
81098ff4c6 qemucapabilitiesdata: Drop un-updated 'caps_7.0.0_aarch64' data
623312ecfb qemucapabilitiesdata: Drop un-updated 'qemu_6.2.0_aarch64' data
991ac7372f qemucapabilitiestest: Drop unused fake data 'caps_7.0.0_aarch64+hvf'
c63055dc38 qemucapabilitiestest: Add 'qemu_9.2.0.aarch64+hvf' test data
ac3291f8db qemucapabilitiestest: Drop qemu-6.1 data
58193c5b25 qemucapabilitiestest: Drop qemu-6.0 data
4ddc5cdddc qemucapabilitiestest: Drop qemu-5.2 data
ab10e9b003 qemuxmlconftest: Drop tests pinned to qemu-6.1
9d3e9e0bc7 qemuxmlconftest: Drop tests pinned to qemu-6.0
f642c029f5 qemuxmlconftest: Drop tests pinned to qemu-5.2
f976d1b06c conf: Drop support for 'sheepdog' disks
23c3900054 ci: refresh with 'lcitool manifest'
d23a516eba util: netdevvlan: Change return type of virNetDevVlanCopy to void
c4b7d29610 util: virxml: unexport virXMLFormatElementInternal
e042ff6dd0 domain_conf: refactor virDomainLoaderDefFormatNvram
aedfdaa3f6 conf: use virXMLFormatElementDirect
4cc562651f util: virxml: introduce virXMLFormatElementDirect
915b2bfcfe Translated using Weblate (Spanish)
798d87539d domain_conf: graphics: properly escape user provided strings when formatting XML
6786ae80a3 domain_conf: graphics: fix error messages when formatting XML
1ef5926a80 domain_conf: graphics: move remaining VNC formatting
15599d3481 domain_conf: graphics: move remaining spice formatting
08925c0bea domain_conf: graphics: move listens formatting to relevant graphics types
5f97b846f0 domain_conf: graphics: extract listen formatting to separate function
4c2c7720fe domain_conf: graphics: extract DBus formatting to separate function
e95d362ba7 domain_conf: graphics: extract EGL-Headless formatting to separate function
287c1a761e domain_conf: graphics: extract Spice formatting to separate function
a93ea4cd84 domain_conf: graphics: extract Desktop formatting to separate function
c2dcb47413 domain_conf: graphics: extract RDP formatting to separate function
7a05d981eb domain_conf: graphics: extract SDL formatting to separate function
9774254ce3 domain_conf: graphics: extract VNC formatting to separate function
227bf2c9de domain_conf: modernize graphics formatting
8d055b7d61 domain_conf: graphics: use a function to format audio element
320273df54 domain_conf: graphics: use a function to format gl element
288f90feb3 qemu: support MSDM ACPI table type
32765cd14e conf: support MSDM ACPI table type
dac6ecba6f libxl: support 'rawset' ACPI table type
fe0cf62e0f qemu: support 'raw' ACPI table type
513ef8f028 src: introduce 'raw' and 'rawset' ACPI table types
3d94587655 src: validate permitted ACPI table types in libxl/qemu drivers
55f48d3852 conf: introduce support for multiple ACPI tables
92de6563c6 nwfilter: Fix deadlock between nwfilter-list and VM startup/migration
8acc0b76c6 qemu: snapshot: Remove dead code in qemuSnapshotDeleteBlockJobFinishing()
628989369b docs: Fix formatting in formatdomain.rst
07d8755523 domain_caps: Don't leak 'cpu0_id' in 'virSEVCapabilitiesFree'
bddb2363e8 qemuxmlconftest: Add '+amdsev' versions of the rest of 'launch-security-sev*' cases
8a852c3a90 qemuxmlconftest: Add 'latest' version of 'launch-security-sev*' originally using 6.0.0
59e528ea0d qemuxmlconftest: Propery discriminate output files for caps variants
4492348b96 qemucapabilitiestest: Add test data for 'qemu-9.2' on a SEV-enabled AMD host
0e58c04fc9 qemucapabilitiesdata: Document '+amdsev' variant
b7657a6d2e domaincapstest: Allow tests of all capability variants
af68ab6b26 domaincapstest: Use proper input file based on 'variant' in 'fillQemuCaps'
107cf9992f qemu: capabilities: Parse 'cpu0Id' from capability cache XML
25270737d3 conf: change virDomainDefAddImplicitControllers() to return void
fd6cfeeeea conf: change virDomainDefMaybeAddSmartcardController() to return void
be9a0f4764 conf: change virDomainDefMaybeAddVirtioSerialController() to return void
74e36dfce0 conf: change virDomainDefAddDiskControllersForType() to return void
7cfcfcc403 conf: change virDomainDefMaybeAddHostdevSCSIcontroller() to return void
250d6ac2a0 conf: change virDomainDefMaybeAddController() to return true/false
cc82b06036 hyperv: change hypervDomainDefAppendController() to return void
e207c9c17e conf: change virDomainDefAddUSBController() to return void
b0ef70aca9 conf: stop checking for NULL return from virDomainDefAddController()
b62ce44a61 conf: stop checking for NULL return from virDomainControllerDefNew()
3d263290df conf: change qemuDomainDefAddImplicitInputDevice() to return void
b7da649e6e libxl: change xenDomainDefAddImplicitInputDevice() to return void
8733ce0151 conf: change virDomainDefMaybeAddInput() to return void
2f8fde6680 conf: change virDomainShmemDefInsert() to return void
1456fe2c54 conf: change virDomainFSInsert() to return void
5c5135849b conf: change virDomainNetInsert() to return void
9bd83854f7 ci: refresh with 'lcitool manifest'
49b2a75e04 ci: use Fedora 41 to run integration tests
7762cbc308 ci: use iptables to run libvirt-tck
b98a474a44 docs/api.rst: revert erroneously change of Once -> OnDevice
e5299ddf86 meson: Generate runstatedir according to newer standard
100dd5f3a7 virDomainHostdevDefNew: update users not to check return value
5e3e924248 qemu: Add support for 'image_format' typed parameter
fdb7b1e19a include: Define constant for save image format
ec50e0cf63 qemu: Check for valid save image formats when loading driver config
1564607cd0 qemu: Change return value of SaveImageGetCompressionProgram
757fa62cfd qemu: Don't ignore dump image format errors
1a5692a6e1 qemu: Move declaration of virQEMUSaveFormat to header file
1bbb1a02d9 schemas: domaincaps: Add missing schema for '<cpu0Id>'
e088895a62 qemuPrepareNVRAMFile: Fix NVRAM image conversion check
a479c3465e conf: metadata: remove metadata node if all metadata is removed
0b69d47774 conf: metadata: ignore empty metadata element
633c55dbd6 conf: obj: remove extra empty line
66d6fd7ffa conf: networkobj: fix indentation
282f38ad3d cpu_map: arm: Add AmpereOne CPU models
7d78044165 cpu_arm: Report vendor ID for unknown PVRs
40b83176af qemuDomainGetGuestInfo: Remove temporary infrastructure
9f4c6ebc39 qemuDomainGetGuestInfo: Convert hostname code to virTypedParamList
dd59d0f77d qemuAgentGetUsers: Convert to virTypedParamList
0f5bb2c20d qemuAgentGetOSInfo: Convert to virTypedParamList
52fd07c9f0 qemuAgentGetTimezone: Convert to virTypedParamList
3d0203709f qemuAgentFSInfoFormatParams: Convert interface code to virTypedParamList
1dc68d6c6e qemuAgentDiskInfoFormatParams: Convert interface code to virTypedParamList
3c75bae720 virDomainInterfaceFormatParams: Convert interface code to virTypedParamList
2391a96141 qemuDomainGetGuestInfo: Convert load code to virTypedParamList
d6b34d0de8 qemuDomainGetGuestInfo: Prepare for refactor to virTypedParamList
89a57e7fe0 qemu: Report disk bus as reported by agent in virDomainGetGuestInfo
71e75ce092 virsh: Add support for VIR_DOMAIN_GUEST_INFO_LOAD
b4cf9c8cba qemu: Add support for VIR_DOMAIN_GUEST_INFO_LOAD
1669d91ead qemu_agent: Add qemuAgentGetLoadAvg()
c52c449fd4 Add load average information type into virDomainGetGuestInfo
e9cb690d21 Post-release version bump to 11.2.0
9cd0673748 Release of libvirt-11.1.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
3dfe02afd2 |
cloud-init: update to 25.1.4
Bumping cloud-init to version 25.1.4, which comprises the following commits:
ea53a592b Release 25.1.4
787d32b8c fix: strict disable in ds-identify on no datasources found
79ac5c831 Release 25.1.3
cd3cf268f docs: provide example3 for PAM and ssh_pwauth behavior (#27)
483973642 fix: Make hotplug socket writable only by root (#25)
f43937f0b fix: Don't attempt to identify non-x86 OpenStack instances
e1730a166 Release 25.1.2
be3ed1bb3 fix: ensure MAAS datasource retries on failure (#6167)
8a1d73498 Release 25.1.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
0928637671 |
umoci: update to v0.5.0
Bumping umoci to version v0.5.0-28-g8a7f789, which comprises the following commits:
e0662ee internal: move pkg/system to internal
58645a6 internal: move pkg/testutils to internal/testhelpers
973fe4f internal: move pkg/iohelpers to internal
7b16c17 internal: move pkg/funchelpers to internal
141cc9a internal: move pkg/pathtrie to internal
1a2fc2f internal: move pkg/idtools to internal
46ad7b5 gha: cflite: move cronjob timing
7e958cb gha: cflite: remove unneeded matrix
90bdb13 README: update release key description
ee36e53 gha: add batch fuzzing for ClusterFuzzLite
c4cce9a gha: add ClusterFuzzLite to ci
ed840cd fuzz: minor improvements
7a79fc3 oci: dir: ensure ownership of new files matches image dir ownership
a652677 gha: use CODECOV_TOKEN to fix main branch uploads
0cc9dac unit: switch to alternative 'go test ./... -test.gocoverdir' workaround
55d9840 tests: switch to modern GOCOVERDIR
9fbccd4 ci: remove vestiges of Travis and manual CodeCov uploads
2f95855 dockerfile: fix 'dubious ownership' git error
3d0704d dockerfile: drop unneeded helper tools
1894c20 meta: properly mark meta.WhiteoutMode as Deprecated
4d65d2f version: use go:embed
6df6dcf VERSION: back to development
0bb7e0b VERSION: release v0.5.0
486a6a5 oci: layer: handle auto-converting to an opaque whiteout with overlayfs
a665c67 oci: layer: fix extraction with a non-directory parent component
7d2d5e5 oci: layer: add support for userxattr in OverlayfsRootfs
55fc2f5 oci: layer: clean up ToDisk and ToTar signatures
8375e7a oci: layer: explicitly handle unrelated xattrs for overlayfs xattr filter
0cea894 oci: layer: merge is-overlayfs config and mapping into OnDiskFormat config
fbe9b0e tests: make sure we use a new t.TempDir per-t.Run
456443e golangci-lint: enable some more lints
4e65fea lint/usetesting: enable lint
96e507b lint/forcetypeassert: make type assertion requirements more standard
a0622e5 lint/revive: fix up revive lints
64c02a5 lint/prealloc: add trivial pre-allocation fixes
bcd14d6 cmd: switch flattenCommands to a recursive foreach
cf70516 casext: fix typo in t.Run
5a4a7aa *: remove old open-coded funchelpers.VerifyError
36a1d10 lint: add fuzzer code to lints
bbd479d fuzz: fix build errors
7f704ea lint/exhaustive: fix non-exhaustive switch statements
63e82cd lint/unconvert: remove unnecessary conversions
b68268e lint/unparam: remove unused parameters for internal funcs
e156d27 lint/errorlint: use error.Is in spots we missed
95fedd6 lint/godot: fix doc comments
c88a83a gha: switch to golanglint-ci
5ee7982 lint/errcheck: improve verification of deferred errors
470498c lint/ineffassign: remove unneeded assignments
fbead65 lint/staticcheck: SA1019: permit use of our own deprecated mutate.Compressor
72409e8 lint/staticcheck: SA1019: explicitly allow usage of deprecated archive/tar features
379b24f lint/staticcheck: SA1019: switch away from deprecated io/ioutil
53a7b21 lint/staticcheck: apply minor fixups
f80a675 lint/gofumpt: apply gofumpt rules
3a100c5 lint/testifylint: fix all testify lints
7b875f8 meta: drop whiteout_mode from umoci.json
b1a69f5 oci: layer: temporarily disallow overlayfs on-disk bundle unpacking
474f50a keyring: add cyphar@cyphar.com as trusted signing key
c578970 keyring: add keyring management scripts from runc
18b9ae3 oci: blobcompress: switch to Docker-friendly gzip block size
44b018a mutate: make consistency test use larger layers
54f34c9 oci: layer: refix auto-applied xattr handling
d267494 oci: layer: refactor round-trip xattr test
caa0306 oci: layer: improve logging of xattr mapping
8d78eb1 pkg: hardening: fix spurrious InvalidDigest test failure
6599ffe build(deps): bump golang.org/x/sys from 0.32.0 to 0.33.0
9a1cefa oci: layer: correctly handle trusted.overlay xattr namespace escaping
6494555 pkg: pathtrie: optimise deletions to prune more garbage
c479530 oci: extract: correctly handle mixed overlayfs whiteouts
0dea233 oci: extract: properly handle missing parent dirs for overlayfs
b1dd141 oci: generate: support converting trusted.overlay.{whiteout,opaque} xattrs
d54275b oci: insert: only use unpriv.Walk when rootless
a55c157 oci: insert: don't generate opaque entry for root whiteout
1d0c345 test: tar extract: move pseudoHdr generation to tarDentry
8d5500f test: layer: reorganise overlayfs-related tests
0219792 test: layer generate: properly test GenerateLayer output
9cab21a oci: generate: actually generate layer with TranslateOverlayWhiteouts
d065c36 oci: generate: use correct path for converted overlayfs whiteout
9367b0d oci: layer: fix docs for KeepDirlinks
2d252c7 oci: insert: match variable naming for GenerateLayer
b438602 oci: layer: pass RepackOptions to tarGenerator
ad71792 system: switch lclearxattrs to use skipFn
578f925 pkg: unpriv: simplify lclearxattrs
e68606e deps: update github.com/cyphar/filepath-securejoin@v0.4.1
aa67731 deps: update golang.org/x/crypto@v0.37.0
27725c4 deps: update google.golang.org/protobuf@v1.36.6
c8a82c3 deps: update to golang.org/x/sys@v0.32.0
c08adaa ci: more image-tools workarounds
b94dfa1 go: bump to 1.23
86e7254 README: remove lxd mention
19cb696 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
b485e0e README: mention incus and lxd
1c93e3f tests: modernise and switch to testify assertions
7856970 tests: migrate to t.TempDir()
55189f8 pkg: hardening: remove duplicate test
f16094a pkg: mtreefilter: properly test FilterDeltas
03ff2a6 pkg: mtreefilter: fix broken err check in tests
eac7bfa *: clean up with goimports -local
3f264cb userns: switch third_party to github.com/moby/sys
d2fd96a deps: update github.com/stretchr/testify to v1.10.0
c94c4fb go.mod: bump to 1.21 minimum
9e2c5a9 ci: remove unused .lgtm config
de6d399 *: ensure all files have license and SPDX header
41ca97d tests: add --compress= fail tests
a79788c test: add mixed-compression unpack tests
f8f12bc cmd: add --compress= option to repack-like commands
3373613 repack: don't hardcode layer compression algorithm
6355ec2 unpack: make layer decompression based on mediatype more generic
245726c casext: unify blob compression and decompression
fa3077f mutate: make uncompressed annotation hint not use globals
15fa55f mutate: merge add and Add
b4ca5a1 repack: remove TODO for non-distributable layers
a31a208 gha: switch from CentOS to AlmaLinux for image tests
e9fff47 pkg: fmtcompat: remove now that there are no users
63bbda0 errors: drop remaining errors.Wrap-like fmtcompat.Errorf users
73fffb3 errors: drop fmtcompat.Errorf for complicated err != nil checks
00a632e errors: drop fmtcompat.Errorf for explicit err != nil checks
5339feb errors: drop fmtcompat.Errorf for non-%w errors
1c67765 *: migrate to Go stdlib error wrapping
cd18171 pkg: fmtcompat: add a compatibility shim for fmt.Errorf
aaa6de8 fmt: use %q for quoting
97cbde3 *: fix new golint warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
7827d68e75 |
skopeo: update to v1.19.0
Bumping skopeo to version v1.19.0-36-gb6c726f8, which comprises the following commits:
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
99c6fb09 Also exit with status 2 for missing tags in oci-archive:
634c0d99 Fix the "missing image" check when reading oci:
40353ad7 Fix some comments
bdc6d70f TMT: Install bats from source on RHEL
654c3fcc RPM: make bats a weak dep
3ddcdee0 Add conditional release-checking system test
abf7bbba Packit: disable osh-diff-scan
889225db Tweak Governance and Maintainers for alignment
f87cd5ec rpm: build rpm with libsqlite3 tag
a50b2d91 Makefile: use libsqlite3 build when possible
763606cd Improve documentation of --authfile
ea37e10d Add Colin Walters as a reviewer
3618a76e Add --retry[-times] to test operations that tend to fail
08dc3c94 fix(deps): update module github.com/containers/common to v0.63.1
c9d5569a [skip-ci] RPM: fix gating.yaml
3ad4bfcf Don't BuildRequires: ostree-devel
50f414a7 unshare: Add CAP_SYS_ADMIN to needed capabilities
a5cbf052 docs: Add a manpage for experimental-image-proxy
aaba5370 Bump to v1.20.0-dev
7aa78df9 Bump to v1.19.0
64e5ebe2 fix(deps): update module github.com/containers/common to v0.63.0
ec3516ec fix(deps): update module github.com/containers/image/v5 to v5.35.0
d0d0b709 Disable Packit builds on ELN
9ddfd549 [skip-ci] Packit: set fedora-all after F40 EOL
ffad97c2 [CI:DOCS] README.md: Add openssf passing badge
6ecc6c33 proxy: Move defer() higher up
983e77d8 proxy: Add GetRawBlob
faa6f8a0 [CI:DOCS] README.md: Add badges
c228b1db [CI:DOCS] CONTRIBUTING.md: Update communication channels
f8432950 fix(deps): update module golang.org/x/term to v0.32.0
2bd609a0 chore(deps): update dependency golangci/golangci-lint to v2.1.6
159095c1 chore(deps): update dependency golangci/golangci-lint to v2.1.5
eff578f5 chore(deps): update dependency containers/automation_images to v20250422
4c55fce1 chore(deps): update module golang.org/x/net to v0.38.0 [security]
5cf5a11e Stop setting libdm_no_deferred_remove
47bf2b4e Stop setting btrfs_noversion
320a3e07 Don't require BUILDTAGS to be non-empty
ed34be71 fix(deps): update module github.com/containers/storage to v1.58.0
3755a3db chore(deps): update dependency golangci/golangci-lint to v2.1.2
f4d30802 Makefile: add linting with --tests=false
d66183b1 Remove hack/validate-lint.sh wrapper
b74989df integration: add unix tag to non-windows tests
25481e1a integration: add _test suffix to files
53a1b695 chore(deps): update dependency golangci/golangci-lint to v2.1.1
f9e03e6c .github: check_cirrus_cron work around github bug
b39bf85a GHA: remove .github/labeler.yaml
4920d7f1 .golangci.yml: simplify
5b135b92 Add MAINTAINERS.md and Governance, update OWNERS
f5c34db7 fix(deps): update module golang.org/x/term to v0.31.0
b6b64152 chore: fix some function names in comment
f7ab0ed0 fix(deps): update module github.com/containers/common to v0.62.3
0e68f7be chore(deps): update dependency golangci/golangci-lint to v2.0.2
edfeb735 [skip-ci] TMT: keep PR-label independent tests
ba2f8b7a chore(deps): update dependency golangci/golangci-lint to v2
11fc49b4 Rely on golangci-lint exit code instead of expecting empty output
b78fa41e Satisfy staticcheck
da1bf9f7 chore(deps): update dependency containers/automation_images to v20250324
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|
Bruce Ashfield
|
1a0120817b |
runc: update to v1.3.0-rc.1
Bumping runc to version v1.3.0-rc.1-171-gb1722d79, which comprises the following commits:
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|