| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
In some scenarios (and package managers), packages post install
scripts may have references to /bin/sh.
The package manager doesn't know if the scripts will run on the
build host or target, so we get a calculated redepnds on /bin/sh
base-files and base-passwd fall into this category of having
post installs, but no need for /bin/sh on the target.
If you know what you are installing, and want the smallest
container possible, this package will satisfy the dependency when
assembling the rootfs.
To enable it, put the following in a configuration file (local.conf
or otherwise):
PACKAGE_EXTRA_ARCHS_append = " container-dummy-provides"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release notes for 1.27.4:
- Bugs
- Remove path checks for bind mounts
- Fix port rendering to output long form syntax for non-v1
- Add protocol to the docker socket address
Release notes for 1.27.3:
- Bugs
- Merged max_replicas_per_node on docker-compose config.
- Fixed depends_on serialization on docker-compose config.
- Fixed scaling when some containers are not running on docker-compose
up.
- Enabled relative paths for driver_opts.device for local driver.
- Allowed strings for cpus fields.
Release notes for 1.27.2:
- Bugs
- Fix bug on docker-compose run container attach
Release notes for 1.27.1:
- Bugs
- Fix compose run when service.scale is specified
- Allow driver property for external networks as temporary workaround
for swarm network propagation issue
- Pin new internal schema version to 3.9 as the default
- Preserve the version when configured in the compose file
Release notes for 1.27.0:
- Features
- Merge 2.x and 3.x compose formats and align with COMPOSE_SPEC schema
- Implement service mode for ipc
- Pass COMPOSE_PROJECT_NAME environment variable in container mode
- Make run behave in the same way as up
- Use docker build on docker-compose run when COMPOSE_DOCKER_CLI_BUILD
environment variable is set
- Use docker-py default API version for engine queries (auto)
- Parse network_mode on build
- Bugs
- Ignore build context path validation when building is not required
- Fix float to bytes conversion via docker-py bump to 4.3.1
- Fix scale bug when deploy section is set
- Fix docker-py bump in setup.py
- Fix experimental build failure detection
- Fix context propagation to docker cli
- Miscellaneous
- Drop support for Python 2.7
- Add script for docs syncronization
- Bump docker-py to 4.3.1
- Bump tox to 3.19.0
- Bump virtualenv to 20.0.30
Release notes for 1.26.2:
- Bugs
- Enforce docker-py 4.2.2 as minimum version when installing with pip
Release notes for 1.26.1:
- Features
- Bump docker-py from 4.2.1 to 4.2.2
- Bugs
- Enforce docker-py 4.2.1 as minimum version when installing with pip
- Fix context load for non-docker endpoints
Signed-off-by: Ricardo Salveti <ricardo@foundries.io>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release notes for 4.3.1:
- Miscellaneous
- Set default API version to auto
- Fix conversion to bytes for float
- Support OpenSSH identityfile option
Release notes for 4.3.0:
- Features
- Add DeviceRequest type to expose host resources such as GPUs
- Add support for DriverOpts in EndpointConfig
- Disable compression by default when using container.get_archive method
- Miscellaneous
- Update default API version to v1.39
- Update test engine version to 19.03.12
Signed-off-by: Ricardo Salveti <ricardo@foundries.io>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Minor upgrade including bug and CVE fixes namely CVE-2020-13977
Testing:
Built, booted and started nagios-core service without any errors.
Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
If a recipe DEPENDS on xen we should include its binaries in the sysroot.
The do_install task also ships files to /boot and /usr/lib64. Hence, extend
SYSROOT_DIRS to include these paths.
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
When having rm_work and bitbake needs to re-run do_deploy, we need to ensure
that the ${B} is re-generated, otherwise the deploy-xen will be empty.
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
/var/run has been deprecated by systemd, so use /run instead,
as suggested by systemd.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
/var/run has been deprecated by systemd, so use /run instead,
as suggested by systemd.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
/var/run has been deprecated by systemd, so use /run instead,
as suggested by systemd.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Historically we copied ctr into the install as containerd-ctr, but many
different guides expect 'ctr' to be present. So we make the copy and
then create a symlink to make both variants available.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Python related things are installed in /usr/lib and not /usr/lib64 even
if xen-tools is built for x86_64 with multilib activated.
Use nonarch_libdir variable for all python related files.
Change-Id: I24e4336aaac4477efc5dc7426a6d9e909c98a6af
Signed-off-by: Bertrand Marquis <bertrand.marquis@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The src/import/build/root/Makefile.generated_files are called several times
during the build, so the following target which installs go2make will also run
several times:
$(META_DIR)/$(GO_PKGDEPS_FILE): FORCE
It runs automatically when the Makefile is called because of:
sinclude $(META_DIR)/$(GO_PKGDEPS_FILE)
So there is a race issue of go2make when parallel build:
hack/run-in-gopath.sh: line 34: build/tmp-glibc/work/corei7-64-wrs-linux/kubernetes/1.18.8-r0/git/src/import/_output/local/go/bin/go2make: No suc h file or directory
Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Since our oe-core go infrastructure insists on both -pie and static
builds (for the most part), and that is not recommended by many
packages, we end up with errors like:
containerd-opencontainers/v1.4.1+gitAUTOINC+e44e8ebeaa-r0/git/src/import/cmd/containerd-shim
cannot find package runtime/cgo (using -importcfg)
containerd-opencontainers/v1.4.1+gitAUTOINC+e44e8ebeaa-r0/recipe-sysroot-native/usr/lib/x86_64-overc-linux/go/pkg/tool/linux_amd64/link:
cannot open file : open : no such file or directory
In a similar manner to:
https://www.yoctoproject.org/pipermail/meta-virtualization/2019-March/004084.html
We introduce '-a -pkgdir dontusecurrentpkgs' to mask/fix the problem,
and continue to work towards non-static builds.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add ipxe patch to pass -fcommon flag to gcc during compilation.
This patch is required to have ipxe compiling properly with gcc10.
Without it the following error occur (and multiple others of the same
kind:
bin/blib.a(epic100.o):(.bss+0x0): multiple definition of `_shared_bss';
bin/blib.a(davicom.o):(.bss+0x0): first defined here
Change-Id: Id9aed4cfe6bec9c0cbdb0b99271ddff472f1f0c3
Signed-off-by: Bertrand Marquis <bertrand.marquis@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
With the newer containerd, we need the runc shims in order to properly
start a container. So we add the v1 and v2 variants to our install and
packaging.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
The containerd-docker fork has been abandoned for a while now. We take
the first step in removing it, but making it generate a warning if
someone attempts to use it.
Next release, we'll consolodate the .inc and remove the recipe.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Updating containerd to the 1.4.x release series, which contains the
following changes:
97d690d20 Prepare v1.4.1 release
42f387186 Always consume shim logs
f247618a3 Report correct stats for windows containers
cc5d1518f Update go list to respect build tags
086e859d2 BUILDING.md: fix description about static builds
16712ae49 bump cni version to v0.8.0
1575c88cc seccomp: add `faccessat2` syscall.
8bd2becea seccomp: add `openat2` syscall.
4e3397e05 shimv1: downgrade poroccess missing log to debug
d118c90d3 Ignore SIGURG signals in signal forwarder
3ee6189fe Exit signal forward if process not found
a1289d6b8 tasks: Monitor v2 tasks in initFunc as well
1f823f76d seccomp: allow io-uring related system calls
3d28944be seccomp: allow clock_settime when CAP_SYS_TIME is added
e5cc7d527 seccomp: allow quotactl with CAP_SYS_ADMIN
20273a803 seccomp: allow sync_file_range2 on supported architectures.
357d10021 seccomp: allow personality with UNAME26 bit set
0c9de6629 seccomp: allow syscall membarrier
caa461167 seccomp: allow adjtimex get time operation
2b80b7dc4 seccomp: allow add preadv2 and pwritev2 syscalls
e71eccbca seccomp: move the syslog syscall to be gated by CAP_SYS_ADMIN or CAP_SYSLOG
feff914af runtime: ignore ErrNotExist when remove rootfs
23e0ea27b snapshots/devmapper: fix rollback
d68ddb0c0 Prepare v1.4.0
6be2eccd7 Update releases page for v1.4.0
d469bffcd CI: disable crun on Vagrant to decrease flakiness
77a33e3db systemd: add license header to systemd unit
8d39722fe Vagrantfile: increase memory
41469ed72 Update version for 1.4.0-rc.1
60fa35f11 Fix DCO commit limit
d2472ecc5 Add CRI release build
1c7312e5d Update containerd systemd unit file
ccda53760 Create etcd user in cloud init.
e973719cc use containerd/project header test
cb7ffd4b0 Fix indent in cni.template.
3e03ba7aa Update deployment and integration test
9c5451792 Add TaskMax=infinity
523b0b3c6 Remove `noSnat`
231d291b2 Use v2 config.
1e1688d21 Use per-pod shim.
87bd84a7b Add DefaultRuntimeName option.
cfab98a5f Use ctr images import.
5e3ac16cc Add `cri` as required plugin.
5b9d8476e Use runc.v1 for now for debugging.
e6e272e74 Enable runc.v2 as the default runtime in test.
d19aa0fd2 Use local env to avoid writing to passed-in readonly env.
ee6d69bbc Set default "" to extra runtime handler.
474c79bd5 Expose vars to configure an additional runtime handler
ce12477f4 Support docker 18.09 in the test script.
146712101 Remove the unused `health-monitor.sh`.
201ad4d3c Support netd in GCE bootstrap.
5ce705750 Serve streaming on localhost by default to match k8s 1.11 default.
b553fdaf3 Remove crictl on GCE for all cases.
d8ce08fd9 Set stream server to serve on localhost on GCE.
1629bab7f Make max container log line size configurable through cloud init.
042378dcf Disable TLS streaming to work with new kubelet streaming proxy.
37f2ecad9 Update cni.template
b58b6fef8 Disable restart plugin on GCE.
f938a166c Fix kube-container-runtime-monitor.
91f8e61bd Use crictl installed in kube-up.sh
5161f663e Add `unix://` prefix for socket addresses used by CRI remote client.
1b995fcaf Add KUBE_CONTAINER_RUNTIME_NAME to fix fluentd support.
48457a254 Try using preloaded containerd if no version is specified.
c67a38b0b Add log level support.
4453aac00 Improve gce bootstrapping in various ways.
1bd3cdc57 Add cni config template support.
d520fac50 Enable TLS streaming in all the setup.
cdb4aec93 Use systemd service cgroup and oom score adj.
af8bd8068 Fix for kube-up.sh and update several documments.
005da4a9b Replace `ctrcri` with `ctr cri`.
0e2bd216c Update GCE cluster bootstrapping and e2e test
59e65e1f3 Enable container log rotation.
85b4e69c9 Do not block on stream server close.
2ea6584ca Add initial wait for health-monitor and use pkill -x.
56b7ef2c4 The ENV is finalized as KUBE_KUBELET_EXTRA_ARGS.
24a3a0a06 change crictl sandboxes to pods; other references to sandboxes
8bc30e7a2 Update ocicni to main stream.
a01071558 Add a separate CLI for cri-containerd `ctrcri`.
a843a3064 Use registry-1.docker.io as backup
ec649079a Put version into metadata so that version won't be changed across restart.
7cbc1c8dc Set registry mirror.
9f0816ac4 Configure container runtime cgroups for cgroup.
be72f47ec Add runtime cgroup and fix a cli panic.
680e21c43 Update all glog flags to `log-level`.
d50b9dd64 Update containerd to 6c7abf7c76c1973d4fb4b0bad51691de84869a51.
869ea6b0c Add document for kube-up.sh
30cbfb62e Add OS and arch in release tarball.
0512d1e0b Add `cluster` directory and health-monitor.sh.
a1736f98a vendor: containerd/cri 4e6644c8cf7fb825f62e0007421b7d83dfeab5a1
15fa7f378 vendor: update kubernetes v1.19.0-rc.4
4a0ac319c vendor: golang.org/x/sys v0.0.0-20200622214017-ed371f2e16b4
f80b4dc58 vendor: golang.org/x/net v0.0.0-20200707034311-ab3426394381
5a9a6a145 vendor: golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9
aa40ebb41 vendor: json-iterator/go v1.1.10
b4376e986 Update Vagrantfile for testing SELinux
55c9eade3 Bump Golang 1.13.15
e3e2c3946 update docs/rootless.md
843360298 update runc to v1.0.0-rc92
e20a5079e Add --cpu-quota, --cpu-period flag to ctr
3cc2be2a8 Update cri-tools to v1.18.0-100-g2bf7674 for Go 1.15 compatibility
628855923 Prepare 1.4.0-rc.0 release
74e9aa7ab snapshots/devmapper: don't hardcord the platform strings
adeba792f Add namespace query parameter for registry proxying
5a190c707 Remove seccomp/Linux deps steps in GH Actions
6988b4d64 remove `seccomp` buildtag
362b7167a vendor: update cri (no more libseccomp cgo dependency)
03b5a053e remotes: mark GetTokenScopes public
b43a01a22 Change nodeset to `ubuntu-xenial-arm64-openlab`
04b98bb0e Deprecate legacy shims
b87023185 vendor runc library to v1.0.0-rc91-48-g67169a9d
02afa9425 Add --cpus flag to ctr
aa56cfc0a Import Windows manifest into test build, rather than copying by script
5b1627410 vendor: update containerd/continuity efbc4488d8fe1bdc16bde3b2d2990d9b3a899165
1ec1e9eab Add Windows 10/Windows Server 2004 for integration tests
faa4ff56e Usefully fail tests with unknown or bad Windows Build version
3795dd41a Always report server log from verbose integration test runs
4318f93f9 Add Spec() method to task
3611efdce update cri to 8448b92d237e877bed1e4aa7a0baf0dee234
1b320bcc2 update for cni config
c2081369c Add doc about remote snapshotter
403dc83a2 mount: retry executing the helper binary on ECHILD
06fb93e0f Reject host-mode networking on Windows
ca15cb0d8 Fix incorrect (cut-and-paste) method comment
c8b14ae4c Set content labels based on content type
d7b9cb001 shim: move event context timeout to publsher
b97c660e1 cgroup2 CI: add RUNC_FLAVOR=runc
1a7bbd1f7 vendor: update containerd/cri
96099550b parseIDMapping: accept 32-bit IDs
089672fff Bump Golang 1.13.14
c383436af snapshots/devmapper: suspend a device to avoid data corruption
71f11db8a Annotate bare ErrNotImplemented returns
061d338ec CI: run CRI tests on Fedora 32
decbb0499 RELEASES.md: fix a dead link
b2ee43206 CI: add back shim v1 test
c4418bb3a CI: remove an unreferenced variable
212c29833 Updates to go-systemd and selinux
b47c7ec27 Update to later version of critools with timing fix.
7af3d7e17 Don't clash with GH Actions runner's containerd
c520f819a Bump Go 1.13.13
7119a2a15 platforms: don’t log arm variant error on darwin
fc0448518 Update version to 1.4.0-beta.2
cc493eba3 vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
7855b0a78 Make title similar with other CI workflow jobs
852587cd1 [events/exchange_test] Fix deadlock in TestExchangeFilters
d47c0392d Updating build doc to require Go 1.13
09f453394 CI: {v1, v2} -> io.containerd.runc.{v1,v2}
d7e59b141 enable removecontainer to forcibly remove containers
963625d7b Update runc to v1.0.0-rc91
c041970e9 update crun to v0.14
a6dd1f27d update urfave/cli v1.22.1, go-md2man v2.0.0, blackfriday v2.0.1
68b736ddf cio: should not open fifo for stderr if terminal
57a9f0b50 Minor actions fixes/updates
148cc8f71 [events] Fix deadlock in TestExchangeBasic
aa191deff Change log for unknown mt to debug
45c28f56b Add ability to use remapper labels versus remapping snapshot helper
c76bf5504 Make unique snapshotter opt for label-assisted remapping
331793118 allow user namespace remapping using snapshotters
e977564a8 seccomp: allow 'rseq' syscall in default seccomp profile
e7f069e2c describe content flow and dependencies
b96f5f4b5 Fix deprecation warnings in CRI tests due to missing unix:// scheme
fd99b6566 decrease log level of cgroup2 ToggleController error when running in UserNS
2b0a994cc explicitly fail apparmor when !linux
bebfbab03 vendor: update bbolt to v1.3.5
1a83f9a63 Bump Golang 1.13.12
03ab1b2ca Add config for allowing GC to clean unpacked layers up
ee734e867 Add test case with backticks
ea0687769 vendor: golang.org/x/text v0.3.3
f1a469a03 shim v2 runc: propagate options.Root to Cleanup
8897e1520 Add more test cases with single quotes
cb91b1724 Add testcase containing mountpoint with escaped backslash
87f9fdb06 Cope with double quotes in Linux Mountinfo
4c49ff88c integration: assume TEST_RUNTIME to be io.containerd.runc.v2 by default
785f4c5cd Bump CRI for 1.4x release
730b7a932 Change the type of PdeathSignal
d656fa38c restart plugin: support binary log uri
0f831093c Update usage of whitelist in project
d36810d66 overlay: use index=off to fix EBUSY on mount
7213cd89d Process I/O: Fix goroutine leak
ae08491bf waitForPid: fix goroutine leak
8fcd5a1f2 Streamline hcs shim release flow
ef0cf1264 Match version used in CRI project
2be80f999 Add windows hcsshim to release pipeline
3e95727f3 Make killing shims more resilient
e64b14820 Revendor CRI to 62c91260d2f43b57fff408a9263a800b7a06a647
3dd8242a6 Add host specific headers
2f601013e cgroup2: implement `containerd.events.TaskOOM` event
62fd1750e Revendor CRI to 8898550e348932e406049e937d98fb7564ac4e7a
2bc4e90f6 Don't inadvertently clip release notes
636c533d9 Add ctr subcommand to print default OCI spec
230cf6ded Add unit test for func in remotes/docker/handler.go
bb2b2825b Add release GH Action triggered by signed tag
8f1ddb142 Update release for 1.4.0-beta.1
c376f4f76 Move Windows testing to GH Actions
322628347 Fix client tests to work on Windows.
b8ccdcb07 Add `ctr` flags for configuring default TLS credentials.
c5273930b Update CRI to 52c2c6b5df15790b671ebd6cbbc6039a4d30
af131d725 cgroup2 CI
e34bf08e5 riscv64 arch does not support -buildmode=pie
0c9b05fa6 Fix image usage calculation error
84619ee99 Fix configurations with no server provided
06b0cd45b Fix nil pointer errors
03755821d seccomp: remove the unused query_module(2)
5765991f2 seccomp: Whitelist `clock_adjtime`
db74d3115 unpacker: Fix data race and possible data corruption
232518252 docker: fix data race on err
d07a71b97 Bump Golang 1.13.11
0207b7ff0 Enable running CodeQL on PRs that modify Action
1a06884f1 Add CodeQL Analysis workflow
563964e9d Trigger nightly builds on pull reuqest events
77ab0104e Add release notes for 1.4 beta
6eeed18cb vendor: opencontainers/go-digest v1.0.0
7cdacdda8 Set codecov to not comment on PRs
3e7bbb8a4 vendor: update containerd/cri, remove "docker/distribution" dependency
9898dc2a6 Code about `task` in "README.md" is out of date
f09e99909 vendor: containerd/go-runc 7016d3ce2328dd2cb1192b2076ebd565c4e8df0c
d9d1d5b62 vendor: containerd/fifo f15a3290365b9d2627d189e619ab4008e0069caf
c5078a5b7 vendor: containerd/continuity d3ef23f19fbb106bb73ffde425d07a9187e30745
b437938d2 Transfer error to ErrNotFound when kill a not exist container, also add test case.
2c77dc63a vendor: update containerd/cri to current master
a4f8be1d4 vendor: kubernetes v1.18.2
0d198fd09 vendor: roll docker/distribution back to latest (v2.7.1) release
1b9640496 ConfigureHosts: remove deprecated DualStack option
e9e765d6e Use tagged versions in vendor file
bd3210d29 remove releases/*-beta.toml
ed261720c Update ttrpc/typeurl to v1.0.1
dc92ad652 Replace errors.Cause() with errors.Is()
f212e7d1f vendor: github.com/pkg/errors v0.9.1
63b7587cd snapshots/devmapper: fix race windown causing IO hangup
24b331ad1 omit sudo when EUID eqto 0
0088c2de8 sys: RunningInUserNS(): use sync.Once
76c62f272 sys: simplify RunningInUserNS to original implementation
6a9b94927 Remove remaining uses of libcontainer/system package
37c839e59 sys/proc: remove GetSystemCPUUsage as it is unused
1b66fecad Integrate sys.SetSubreaper, sys.GetSubreaper in sys/reaper package
fffea312a move sys.Reap() into sys/reaper package
295e74008 sys: remove custom setChildSubreaper const
ec12d3042 vendor: sirupsen/logrus v1.6.0
23aab35fd Remove libcontainer from containerd-shim
ae7cdc814 vendor: update containerd/cri
c1096864a Update to latest hcsshim - 0.8.9
ea182aec8 vendor: sirupsen/logrus v1.5.0
68f151593 vendor konsorten/go-windows-terminal-sequences v1.0.3
046a520c9 vendor: update containerd/cri dc7afe8fbe53db06c3f883f6f8c9895a9dfb2314
8e76d18ef remove if condition because it is handled by the sdNotify daemon func
1a10211e3 WithLease: always return context and done fn
98b30f469 Add commands to mount/unmount image from ref
cd0e62f5c Allow more time for containerd to start for integration
9687ba631 test: TestRuntimeWithEmptyMaxEnvProcs should cleanup
b566859ac .zuul: update go version to 1.13.10
32649fe30 Fix retrieval of golangci-lint specific version
126e497e6 vendor: update ttrpc with 6e416eafd26e6e738df716b21d421d5b59702bb4
0116352e1 runtime: ignore ttrpc.ErrClosed when delete task
917e7646a Add binary IO tests
9175401b2 Cleanup binary IO resources on error
0dc7c8595 Don't use timeout package when stopping shim logger
857408315 This config no longer exists, so remove from docs.
e79d666cd vendor: update containerd/cri 61b7af7564602234662562a9d37e772f5a54facb
61597b431 Disable Travis CI on master
74ceb35f5 Small fixes to our Actions CI workflow
7a252f3ca Build runc with selinux support
041545cd6 Fix protobuild and CI check protos
e3bc5c487 Use GH Actions CI status for badge
49200a1dd CRI plugin needs selinux tag as well
d97cca47e RELEASES.md: update release1.2 status
4615111ba content/local: validate digest before calculating path
a6828e8c3 CI: Some Go 1.13.10 updates that were missed
7da1e13b5 Bump Golang 1.13.10
35c14c6b5 sys/mount_linux: use pipe for communicating mount result
f328f61b8 Update to selinux 1.5.1
f7c2bf544 Migrate functions to actions
d7c2513ff Update integration test timeout
0caa23315 Rework shim logger shutdown process
067aba732 Add test for default setup for host configuration
d9a1c3f9e bugfix: add default host config if not set
6d4429edd Setup dependencies between jobs
e598e5e0c Add CRI tests
4175ebf23 Move integration tests to Github Actions
599547d9c Make binaries with Github Actions
3968fb0a4 Revert "vendor: update go.etcd.io/bbolt v1.3.4"
056d60224 vendor: update go-events to fix alignment for 32bit systems
4fb3410f6 vendor: cilium/ebbf 4032b1d8aae306b7bb94a2a11002932caf88c644
e822296fc vendor: runtime-spec v1.0.2
3261fb5c4 vendor: containerd/cgroups b4448137398923af7f4918b8b2ad8249172ca7a6
aa76d9537 Bump Golang 1.13.9
ad090e67e man: move ctr.1, containerd-config to section 8, and fix generation
356782cb4 Makefile: man page: rename containerd.1 to containerd.8
547301cb0 Update ctr resolver to use new config package
17b6050d2 Add Docker resolver configuration package
dc131aa86 support loading certs from a directory
c263c5b14 Add unit test for func in remotes/docker/handler.go
c8d9c6f2a Add unit test for func in remotes/docker/handler.go
fb9e3d9f2 vendor: update go.etcd.io/bbolt v1.3.4
e4cbbc78b Move checks to Github actions
c1a218195 Add docs for build tags used by cri.
d654dbafa Allow the id for cgroup metrics to be changed
78ab1d13d Correct logic of FIFO cleanup
92a36dc10 Add version numbers for newly tagged repos
0c78dacbc Move isFifo from process/io to sys/ and make public
9529c69b8 seccomp: add 64-bit time_t syscalls
ebd745f91 ctr: do not assume runc options by default
e2269f2ae archive: skip chmod IsNotExist error
bd2265300 Add devmapper configuration examples
5ef66e48f ParseSignal: drop add'l check for numeric signals
649f2aac6 add -v to shim binaries
4ff9d6996 Increase golangci-lint timeout
c00cf9a67 vendor: containerd/cri 92cb4ed9786a6cd271152ba1f862183d84701003
488d6194f fix dial error when clean up a dead shim
6e638ad27 Nit: fix use of bufio.Scanner.Err
4326fc624 Update Golangci-lint v1.23.8
4756258fa service_windows.go: remove unused "service" variable
a9bd451ab Avoid duplicate imports of github.com/gogo/protobuf/types
cad67b73f Update btrfs dependencies in docs for debian buster and ubuntu 19.10 * Fixes: #4090
632023698 Partial revert of sys: windows: use golang.org/x/sys/windows
0a7fd55f3 sys: deprecate EpollCreate1, EpollCtl, EpollWait
7b06192f6 sys: windows: use golang.org/x/sys/windows
1b7d1e81b vendor: golang.org/x/sys 5c8b2ff67527cb88b770f693cebf3799036d8bc0
ddae905b8 Support NOTIFY_SOCKET
b78dfbdfb vendor: golang.org/x/sys 52ab431487773bc9dd1b0766228b1cf3944126bf
ba6796abd vendor: update kubernetes v1.18.0-beta.1
f3d062423 vendor: sigs.k8s.io/yaml v1.2.0
04c805e63 vendor: github.com/google/gofuzz v1.1.0
12c7d6976 vendor: update containerd/cri 1a00c068864a59835ff442e0dddfa5a254be6bb3
5607b23b0 vendor.conf: move some imports to match position with containerd/cri
e3ab8bda6 Avoid allocating slice for finding Process
1239f5403 export cgroups collectors
8c9e84174 RELEASES.md: update release status
e0a8fe7cb vendor: bump golang.org/x/crypto bac4c82f6975
a687d3a36 Check error return from json.Unmarshal
a3ca8a0df Add linux resource oci.SpecOpts
00e6be9f4 Add ctr c info --spec flag to output spec
3be12fe1c Do not loose snapshotter options
8cddb5f91 Pass snapshotter opts during Pull
a3685262f snapshots/devmapper: do not stop snapshot GC when one snapshot removing fails
b6bf7b97c devmapper: async remove device using Cleanup
c7eec0c17 Fix file header in builtins_cri.go
f2edc6f16 vendor: update gotest.tools v3.0.2
026e43806 Update to a released version of opencontainers/selinux (1.3.3)
f8ade8deb Use named error return for service#StartShim
985b26f2f AppVeyor: disable download progress on choco installs
4105135e3 fix killall when use pidnamespace
4dd75be2b Unify dialer implementations
8e448bb27 vendor protobuf & grpc
c134a9bef Use spec's mountLabel when mounting the rootfs
1d888ad6a cleanup the image synchronously for Usage case
18e581dd9 bugfix: cleanup dangling shim by brand new context
fed8890e9 Enable CRI plugin for Windows builds as well
84464b801 v2: Cancel shim log ctx when ttrpc is closed
f3652d068 vendor: golang.org/x/crypto 1d94cc7ab1c630336ab82ccb9c9cda72a875c382
773adf7ab Remove the executable bit for api/*.txt files
8e685f78c support building with BUILDTAGS="no_zfs no_aufs"
61596169b Update .mailmap
f44d36099 Update .mailmap with changes from release-branches
499ab8a99 Update Golang 1.13.8
246a560ed script: use github.com/kubernetes-sigs/cri-tools directly
75d0c5f2e Fix incorrect comment from copy/paste of starting script
0dd6d24d2 Fix reference to LICENSE in README.md
89de113de Support 32-bit userspace on 64-bit ARM cores
d8a0d29c2 Set octet-stream content-type on put request
348e683ce Fix zsh autocomplete script
263ab7014 vendor: bump gopkg.in/yaml.v2 v2.2.8
4c3827889 vendor: update containerd/cri c0294ebfe0b4342db85c0faf7727ceb8d8c3afce
f0652e143 Make tests less flaky
bb8af922b Add support for custom wcow and lcow sandbox scratch sizes
5e6d56ee2 Fix startup_delay within default configuration
833701165 ctr events: do not exit on an error
200241163 vendor: update golang.org/x/crypto 69ecbb4d6d5dab05e49161c6e77ea40a030884e1
32ba75f0f Update Golang 1.13.7 (CVE-2020-0601, CVE-2020-7919)
e42110f32 Fix broken link to release-tool
e2e07c9bc RELEASES.md update links to latest v1.2.11 and v1.3.2
0dc69620b update dependencies of containerd/cri
53ced5ffe update to latest containerd/cri (master)
faf03c3d2 Pick up fix for CVE-2019-16884 in opencontainers/selinux
923c05bed Bump to opencontainers/runc new version - v1.0.0-rc10
e44d00865 Appveyor on_success field should be an array.
a224937d2 Disable CGO for AppVeyor build steps
75af17946 Pull: create image record after blobs download
45a17cffb Vendor Microsoft/hcsshim with CGO removal
94964b36d Update Golang 1.13.6
22b73a9a7 vendor: bump containerd/btrfs to 153935315f4ab9be5bf03650a1341454b05efa5d
1189cc40f snapshots: fix flaky TestMetastore
35a8e6e58 sys: clean up process after test
3eb57b01b Added IO metrics
e859b8a92 gc: increase sleep time in test
486d33631 test runtime v2 CPU settings
66508589d fix: eventfd leak for v2 runtime with v1 cgroups
9456040ac fix: eventfd leak
2f0db8e2a vendor: bump prometheus/client_golang v1.3.0
e10c91187 vendor: bump prometheus/client_golang v1.1.0
845b91d6b vendor: bump prometheus/client_golang v0.9.4
04506b87d vendor: bump docker/go-metrics v0.0.1:
99911ea66 vendor: bump prometheus/procfs v0.0.8
ed6ae8186 vendor: bump prometheus/common v0.7.0
c02dc24ec vendor: bump prometheus/client_model v0.1.0
77a3780c2 vendor: bump beorn7/perks v1.0.1
e1221e69a revendor containerd/cgroups
4d62d8795 bump microsoft/hcsshim to 0.8.7
95fbf3dc2 Fix unpacker to pass use apply options
3af3a7602 Fix filter errors
7b52bc506 Add unit test for func in filter.go
cd1cad9d5 Support disk usage in windows-lcow snapshot
f3090ce80 ci: set pipefail in zuul script
90cd777a6 platforms: fill default arm variant when parse platform specifier
b553bc14a update docs/rootless.md
94d499843 Add Makefile variable to skip test packages
123af61c0 Add Cleanup to snapshot API
465c11dc8 Fix build with gccgo
52e477f94 Fix outdated comments
b127b666a ctr: support $CONTAINERD_ADDRESS env var
a4b423b19 overlay: test actual Opts
067a66b90 .travis.yml: run test with crun
1fb1d9321 v2: Fix missing ns when openShimLog on windows
a18f77bea create local version of introspection service
e739314ed mount: support FUSE helper
87e2a9595 Fix a typo in task.go
d82fa4319 v2: Call shim.Delete at first when create is failed
493a36de9 Move label filter to snapshots package
06f6ea099 switch nighly builds to Go 1.13.5
c07e356d2 Update Golang 1.13.5
072dfbaf3 Support pushing a specific platform of a multi-architecture docker image to a registry
4ccb7aa22 Enable to propagate necessary information to snapshotter during unpack
496836c09 Update containerd/console vendor for fix
a057bfbd7 Add more adopters to ADOPTERS.md
facedf898 Remove an empty line
05d192929 Update checkImages to accept images.MediaTypeDockerSchema2Manifest
c4ed3ff1e Replace ocispec.MediaTypeImageManifest with manifest.MediaType
fbd46d709 runtime v2: Close platform in runc shim's Shutdown method.
02dcf384b Disable criu tests in Travis CI
62adc516d sys: mkdirAs: do chown if dir already exists
49e7039a8 cpu metrics consistency
b9d9bdf1f make cpu metrics consistent with v2 docs
929ab521c fix system usage naming
659c971ca task metrics fix
23dbae3e7 Schema name fix
17d61d6b7 Units fix
f287bc229 Schema names fix
6bfb24824 Fix prometheus metrics units
b98cc7918 Added memory and cpu metrics for cgroupv2
75efbaf67 Attempt to make device mapper snapshotter tests less flaky
9eef69e3a Update after review comments
43fca9eba metrics: rename pids_v2 to pids
a022c2181 Improve host fallback behaviour in docker remote
fa62b6d23 Use logrus instead of printf for warning
08517e586 Allow empty scope authorization
499fbb033 Improve install scripts
e0011978f start.go: Improve help text
9862cb8f8 support user remapping in ctr
b02e20f12 cgroup2: enable controllers automatically
8f870c233 support cgroup2
caeacfce3 Correct grammar/typo in BUILDING.MD
51a6813c0 Split uid and gid user ns remapping in oci
30d92eff1 Defer layer download until unpack
9d5a095b0 Bump containerd console for os.File changes
cd23ad244 Bump go-runc for buffer race fix
6a22a8fc9 Return the underlying images metadata
787be0efe Modify ctr run to search for read-only flag instead of readonly
cfb4f734d Make sure for next release branch appveyor runs
f92470b3e Fix dependency in BUILDING.md
a6b6097c9 Fix container pid.
726dcaea5 update cpuinfo to make variant matches aarch64 and so on
6fa9a42ea vendor.conf: sort imports alphabetically
a44189d2f vendor.conf: pin all dependencies by git-sha
55ea3dc9b vendor.conf: reformat to use columns
8da434668 Fix cleanup error on content client test
252d6550f Update cri and docker vendors
8a66dc6ed bump containerd/go-runc a2952bc25f5116103a8b78f3817f6df759aa7def
526c0db69 Support target snapshot references on prepare
d1261b508 Update snapshot parent filter property to always exist
11ef041ff Update golang.org/x/sys to recent commit
afd33bce8 test add tests to spec_opts
731e144a4 devmapper: update example base image size in README
19f7f3ccc test: Do SynchronousDelete cleanup before testing ImageIsUnpacked
0bb48aef0 Add `--log-file` flag for windows service.
c56059162 Avoid deadlock in unpacker.
32ef2e630 Update README
82651d386 Cross build nightly builds (arm64, s390x, ppc64el)
c479156b8 Add Github workflow for nightly builds
856ea3055 Add client unpack opts
3db1c3b8f Better support windows binaries.
843423ec3 snapshots: return error if readSnapshot fails
5bf2c6fc2 Fix panic on reference.Spec.Hostname()
fda652be5 Update name for btrfs headers package
a647407ca Fix dependency in BUILDING.md
608791bfc Update to Golang 1.13.4
cfb425fc1 Update .mailmap to reduce duplicates
15669a1d3 Update to Golang 1.12.13
8f74de9e9 ctr: allow specifying --runc-systemd-cgroup
7f5d90076 ctr: allow specifying --runc-binary
0f4374169 Add proto path /usr/include to Protobuild
4c99c8132 mips: -buildmode=pie is not supported for the mips arch
fdf7a795b Clarify requirements for identifiers validation
76aa4e546 Use common identifiers package with less restrictive regex
84879b7c4 Add CGO makefile flag
7c016b655 add tests to server_test
8f9eff4fe Support disk usage in windows snapshot.
d21f0f116 windows process shim installer
a2688b972 bring back aufs and zfs
78be73662 Return not found error if no platform matched.
d12b53a07 ppc64: -buildmode=pie is not supported
5e5584196 Makefile: Drop vndr whitelist
20e844a22 Use logrus trace support.
66aa1d3ef Add snapshot walk implementations
e8c14c07c Added filters to snapshots API
f593efdf0 RELEASES.md: 1.1 EOL
aaccfcbe2 Fix `containerd config dump`.
c224edc5c apply: use naive applier when running in UserNS
37b56cafc Add ctr metrics support for Windows/LCOW containers
178469e2a Update Microsoft/hcsshim vendor
3bf461ae8 Move autocomplete files to contrib/
885232b72 bump google.golang.org/grpc v1.23.1
6356e55be Update Golang 1.12.12 (CVE-2019-17596)
074b453ac vendor: call vndr to remove useless pkgs and update vendor
7177af84a Allow 202 response code for commit
d52cbc19b snapshots/native: ignore xattr errors during CopyDir
f8cca26f3 Handle large output in v2 shim with TTY
d5b7bf51a Move flag.Parse in tests to TestMain
54257bb5e Add local-fs.target to service file
a6d3f4d30 Add device opts to ctr --privileged
ffcb1cc9b Fix delete error code on the containerd daemon side.
036db34f3 build: Fix manpage generation
06be794cb Fix shim delete error code.
901bcb223 Add distribution subpkgs to core
eaef634ef version: use runtime.Version() directly
25947db04 Add support for spec generation with host devices
c0984941e adding go version to client description
fe947e83d bump runc v1.0.0-rc9
772032598 Fix flaky btrfs test
e4e7e554d Make client's WithLease more flexible.
18be6e371 Use cached state instead of `runc state`.
f277665ed Bump runc to 1b8a1eeec3f337ab5d94f28980
e33f70385 Add more detail on releases
8ff5827e9 Update cri and cgroup packages
b5fa55b0c ctr: Enable shell autocompletion
45ce73567 Limit travis release script to a single build
0cb7e4d5f Perfect documentations
b172b7f9d Update release docs for 1.3.0
394db03f1 Fix all media types in Accept header to match RFC
90735a5d1 Update cri to 5d49e7e51b43e36a6b9c4386257c7d08c602237f.
1b1b862eb Get CRI dependency versions from containerd vendor.conf.
35d3bae1e AppVeyor: bump golang 1.12.10 (CVE-2019-16276)
95dbbdc8c Bump runc for CVE-2019-16884
62c2eea78 fix-up typo
c5821baa4 Sync and stat btrfs loopback in tests
5ea936362 Perfect documentation
a0ae24b98 Word spelling correction
85eac2550 Add release note for gc fix
cbbb6a229 Update release note.
fc31fa176 Update cri to 4ea022f82a55c449bf15bfc62ac8b0de968d81be.
0b224ac7d Update metadata interfaces for containers and leases
2a636f8c3 gen-manpages: Create man directory if it does not exist
0a2129222 Check for more kill error types
dd5122809 Don't search for state.json path
6f31417d4 Generalize media types
f3148d0b9 Add metrics type alias
57b51b948 Move golangci-lint deadline to config file
e84a84a5a Add function to set custom auth scope in context
bca374aa1 Get media type key from context
20d3fae3d Add Opt for modifying shm size
83a72858f Makefile: increase deadline to 2m for golangci-lint
b4211d94e fail on file not found for shim reconnect on containerd restart
fd6299be9 Fix density spec generation
3bc99755d Try set GOGC for golint
19ecd49ed implement ctr -connect-timeout
58892a3ba Skip darwin deploy
5bb0281d1 Fix missing vendor packages
5a656cacb Move manpage gen to separate binary
6ed809168 Publish cri release to gs://cri-containerd-release.
f997c30ec Skip cleanup in travis deploy and avoid gcs race condition.
36c543a72 Remove extra CI testing on older Ubuntu
4e8a49948 Encrypt the secret file in containerd/containerd.
f3a5b8c0a Add command to generate man pages
d1a12823b Update gcs cri release.
424d33c5b Update go-runc to e029b79d8cda8374981c64eba71f28e
3db5a5ad2 Fix darwin build for cri release
1b4cec979 Update cri test to fix image reference test and fix gcs deploy.
e3abd03ae Fix CRI release build.
61f113e60 Automate CRI tarball release.
c1fc21e92 ctr: use NewDockerAuthorizer instead of deprecated NewAuthorizer
fa11147e5 Add --env-file to ctr
5c576b026 Update and simplify mailmap
c8cb864ce platforms: update known OS and arch values
3d1fdaccc config_test: sort result before check
8788af7f8 modify-document-duplicate-word
d6a6e0b8b Support foreign and encrypted layers in the unpacker.
a4482d9a6 Fix proxy plugin config validation
01f726589 Support v1 configurations for config dump
cd79e0edf travis: fix Xenial tests not being run on master
555cb31fd Support configurable default platform in the client.
c410f0eae Fix potential panic for task in unknown state.
dd24d76a1 Fix potential containerd panic during graceful shutdown.
fa546dc3e travis: don't run old Xenial LTS on pull requests
94e4b6879 travis.yml: add TRAVIS_DISTRO env-var for easier identification
214b8328d travis: add Bionic (Ubuntu 18.04 LTS) to test matrix
b6c811b7a Update cri to 0165d516161e25e52b4ab52a404a00823f8f0ef6
db3a71173 Add 'containerd config dump' subcommand
779701b29 Add --seccomp flag to ctr
86f8be86e Add sigprocmask to default profile
f4927a298 fix mis-spelling in nvidia.go
bc692cc59 Use default UNIX env when image has no environment
a292bf0f2 bump containerd/zfs 2ceb2dbb8154202ed1b8fd32e4ea25b491d7b251
97962976a Update ttrpc to 92c8520ef9f86600c650dd540266a00
92a5b08a6 fix-grammar-mistake
372472b5f archive: truncate modification time
2d8a65b1b Export shim publisher functions
6624a70d9 runtime/opts: move WithNamespaceCgroupDeletion from containerd to its own package
8266a3c5e fix-up spelling mistake
09b184c15 rootfs: use new ctx to cleanup instead of canceled one
2f54a7cb6 bump containerd/ttrpc 9abb3e268010ea188f4e4051f77eb5aca49315fb
eb7a6bf02 bump google.golang.org/grpc v1.23.0
56bcc7767 Handle layers with the same digest in unpacker.
6f8fb9ee5 add WithImageName container opt
a40c3830d Add option to pull all metadata
55f737bd3 bump hashicorp/golang-lru v0.5.3
ed1df65c2 bump hashicorp/go-multierror v1.0.0
cbb3a3790 bump hashicorp/errwrap v1.0.0
5cab0d3f3 update the max if cur will be greater than max for setting the limit
24b9e2c1a Merge configs section by section
8ebffecbc Use map for stream processors
aae2d0d75 delete unnecessary checks and fix a test
9e183f5e5 add cli option to download all manifests
ea6c749e3 Update config doc
19cd0a4f1 Append slices when importing config files
b5f03eacd Pin to libseccomp 2.3.3
4d11bb36a devmapper: activate dm device if snap device marked as activated
bca085753 Fix toml plugin decoding
a1e3779ca Support config imports #3289
6e2228df7 Vendor github.com/imdario/mergo
6cf031e1e Pass ttrpc address to shim via env
89eae6429 Cleanup: fix some typos in code comment
d7e1b2538 Allow explicit configuration of TTRPC address
03aafaa1c Update the integration test.
60f73b6cf Support simultaneous image unpack.
550518ab8 Read trailing data on apply
348e9f7c3 Update release notes and mailmap
8acf5a142 Update release note for CRI plugin for 1.3.
041e9debb Revendor github.com/Microsoft/hcsshim
21174cb49 Change bufferSize back to 32
1073868e5 runtime: only check killall for init process
64a0b2eb2 Revendor to remove unused dependencies
7379fa663 Remove the process default ENV
5023d96ad Remove Windows EventLog logging hook
276363938 Try to preserve exit event order
04caf1fc4 Ignore fifo error when using v2 multi-container shim
9cbd18ac7 Update cri to f1d492b0cdd14e76476ee4dd024696ce3634e501.
bcc4a146e Support applying with parent directories
5a0ff41c8 Update continuity vendor
80d31d15b Update fifo for typed errors
6d0e355c6 cleanup code typos in leases.go
bee4c1a8a Add retry and non-blocking send for exit events
0d27d8f4f Unifi reaper logic into package
bb4c92c77 Fix shim hung
1c30d4d04 bugfix: override image.Env with process.Env, rather than be contrary
7682acb9e AppVeyor: update to go 1.12.9
81386df91 Add direct unpack support for overlay and aufs
1b389b362 AppVeyor: update to go 1.12.8 (CVE-2019-9512, CVE-2019-9514)
2e8ea9fd6 Allow timeouts to be configured in config
a80db38c3 blkio.go: correct help message word spells.
3ef26cd87 bump x/sys to fix riscv64 epoll
2ff7183cc AppVeyor: update to go 1.12.7
c017e0efe Use a child context for errgroup in dispatch
75771c463 Add usage function to client
b6fca48fe bump go.etcd.io/bbolt v1.3.3
0dadef19c Add docs for stream processors
d085d9b46 Remove encryption code from containerd core
282b19efd remotes: remove useless line
a3a30635e namespace: Copy ttrpc metadata before setting header
04b7f1b59 Remove ppc64le from travis
2fac3ee27 Add release notes for stream processor
116140977 Limit multiple platform manifests to one for size check
fe3638e88 Add UnpackOpts to RemoteContext
d8322e38c cast Rdev of Stat_t to uint64 for mips
af7b7cdb0 Save default namespace in the client.
552a0b1be Handle stderr in stream processors
3fded74bc Add unpack opts
26b90619e Pass apply opts through rootfs/* code
e1489f93c Use named pipes for windows processors
134d3c815 Add windows apply code
f867401c6 Use fds and pass Payloads over diff api
366823727 Add server config for stream processors
97a98773c Add StreamProcessor for apply
0bc5df035 Clarify text on `ctr` support/inclusion
0a3769eec pusher.go: error message typo correction
635ccc067 Add cri release notes
4667ee47a Update Microsoft/go-winio v0.4.14
7792c23b1 Limit default matrix to runc v2 runtime
9f0bc2b53 Add UUID and server info to introspection
08483d18a v2: Close ttrpc connection when `Delete()`
4b5dfaee1 Completely remove Windows v2 in-tree shim
2398421d5 Fix travis matrix
a5940da62 Remove `ctr cri load` and update cri-tools to v1.15.0
0a4bf1bd1 Mark faulty devices
c99961c6c Update cri to b213648c5bd0a1d2ee42709c10dff63fbfee3ad7
4b4ce4a26 remotes: remove unnecessary string formatting
d1b9ee543 travis: Enable travis CI for ppc64le arch
bb9968891 Fix containerd on windows.
3e52e2902 Fix bug in export named manifest option
594f42319 protobuf: Bump Protobuf version to 3.7.0
c965a6c4d Prevent push by tag for sub-manifests
5cf79913e gpg: Use a Pipe() rather than a file
6a2512879 gpg: Pass the passphrase to the gpg2 tool using a file
3741fd859 Remove deferred flag when removing devmapper device
b16e7c5de Update pkg/ttrpcutil with improved pipe dial logic
daf12cd19 Improve error return from AnonDialer on Windows
4d5a0e19e Mark faulty device in one transaction
878a3205c Better error recovery in devmapper
578216950 Add note about pb.txt files
f68186e10 Improve custom cgroup test
8a6190856 Add 1.3 beta release note
612628c2f fix wrong spells in compression.go
98ead46d1 Call Update of snapshotter plugin
f543f2fbc Call CloseIO when stdin closes in ctr
eb4b3e877 Fast path getting pid from task
8cd480c23 Specify protocols in ctr encrypt recipients
e3cc9c20c bug fix:#3448
c27e48d66 fix mis-spelling in client.go
22f44c44d Add garbage collection doc
02826345c Add option to compress blobs on import
9da7d3036 archive: return chtimes error with path information
3d1fa6969 Implemented constructors for both encryption and decryption
392668d00 ctr:Support deleting multiple tasks at a time
05a2b63e8 Create CryptoConfig constructors in place of dcparameters
1c7eab197 Allocate a conhost during Windows service startup
364de4c35 Wrap creation of CryptoConfig in constructors
51bc61533 Update releases doc for 1.1 release
101d4b78e Add timeout to task state calls
e097ab8bb Disable windows integration tests
f055bdb0a Remove windows v1 runtime
d531e7849 Modified image_enc_test to use a different image from other tests
5e5ae23d8 test: Check manifest.Platform before dereferencing
1945e26ac Add concurrent execs in stress tests
ffa86b25f Add new shims for checking binary sizes
c118c45f8 Change image_enc_test so that it more reliably delete images
c6d437fd7 Corrected lease implementation
c00517a94 Made fixes and optimizations to encryption GC
725d3ad8c Add --device flag to ctr
518be1cb0 Fix bug in setting request body
dd0a45dfe Add flat GC label for leases
dca17853d Add WithLinuxDevices Opt
804ae89be errors: use errdefs errors in client and commands
dde436e65 Crypto library movement and changes to content helper interfaces
bf8804c74 Implemented image encryption/decryption libraries and ctr commands
30c344394 Add crypto dependencies/vendoring
a1f3ebaec Update cgroups to c4b9ac5c7601384c965b9646fc51588
b72673fdc Makefile: allow custom base path to install
fab016c7a runtime/v1/linux: ignore ErrCgroupDeleted in Task.Start
ce0d2489a Fix regiression from #3403 with snapshot cmd
0b29c9c37 Update resolver to handle endpoint configuration
63ceaf877 Add testing log context
f63eab32e Add testing log hook to context
61d930ad5 Move specific errors to their respective packages
82826df9b Small refactor due to CI linter changes
ef7f46eb7 Fix linter errors
2b521e25a Switch to golangci-lint
abc152d14 fix name in containers file
70b00a0fa fix variable name
4988424fc * fix: view snapshot is deleted before diff
db95af43f centralize harded-code message
d643f1dc8 images: only fetch the best matched manifest info
550a6f1d7 Fix integration tests
1918ee4d1 Respect default snapshotter label
47d2ac090 Improve default label handling
4e2fc81ed Add aliases to namespaces subcommand
2a92c2741 Bump travis to criu 3.12
5ed1a3ce0 Add RELEASE note about config versioning
6601b406b Refactor runtime code for code sharing
7d2117245 Fix metadata content store to call writer digest after commit
af93e4009 ctr: Add images tag subcommand
ec8d9d3d7 shimv2: remove the dead task from runtime task list
d3e1a51f8 vendor: bump go-runc
46af8ccd2 Check exec log flags compatibility
9fda4a5fe Bumps the version of go-winio.
6b59b425e Support --log-uri for exec subcommand
844c58102 Add cgroup delete opt for ns deletion
3d3dbc8fb Handle RequestTimeout and TooManyRequests
7dfc605fc Set shim OOM scores to +1 containerd daemon score
719a2c594 Robust pid locking for shim processes
2d0379115 docs: remove shim_no_newns in ops.md
0886e4f1b No need to keep 2017 DockerCon doc
650a7e5c1 Add hashsum for release archives
cb4a8f51a bump runc v1.0.0-rc8-32-gf4982d86
bb41ef87f bump libseccomp-golang v0.9.1
174c4907d Fix shim's file IO logging
1a8df3f23 Reserve exec id to prevent race
245052243 Add timeout for I/O waitgroups
12a14c442 fix: polish log to make more clear
ec78305c4 Close the inherited socket fd
fbf96d302 Fix path in LogFile creator
63a8dee60 Switch to GitHub's new issue templates.
341c7c144 Update dependency containerd/cgroups
5e0d79380 Fix bugs in BinaryIO creator
75f183887 Allow opts to flow to the backend snapshotter during snapshot creation.
95f9bbf18 Add timeout in load shim v2
62e9e1169 switch to a working link
41e1bb832 Fix snapshotter getter in client code
052551573 Ensure labels is not nil in differ
67cf9f7f0 AppVeyor: Bump golang 1.12.6
0b7abc02b ttrpc updates for interceptors, close, and metadata
d15a06b19 docs: Fix typo to some markdown files in /docs.
dd7c0aabc remotes: support cross-repo-push
bca566736 Make newBinaryIO public
31afff294 Fix backwards compat with v2 containerd configs
bb0087280 Add user agent header to all requests
9547d269a Add v2 server config support with plugin URIs
9e0cd529d fix shim std logs not close after shim exit
fb6b0ae4c Update x/sys, x/net and bbolt modules to support Risc-V
ed308ea1e Unmount rootfs with separate Remove() in bundle
cf7fb14ef Update timestamp atomic write
4f6ba8286 Ensure close in content test
faf925ba2 Handle EOF from ReadAt in content.ReadBlob
fa6a9f063 Add ttrpc namespace support
42f24b57e Update ttrpc to a5bd8ce9e40bc7c065a11c6936f4d032ce
7531c66d5 Ensure that the rootfs dir is created in the bundle
bf24fb0ca Close file r.log after used to release resources.
5b9a43d2e Fix seccomp contributed profile for clone syscall
cee19d1e6 Change restart delay for Windows service to 15s
8a388d623 leases: support resource management
ac4485c76 Add support to gRPC errdefs for context cancel/deadline exceeded
bbe45e446 add Restart=always to unit file
a274dbe82 Fix run with specified platform
48b81e872 Do not return error when rootfs already exists.
e0c4fe411 Forcibly sync writes on lcow layer.vhd after write
5e2d7efd8 Use a single custom annotation for export
41b7b0e0d Ensure namespaced writer commit has correct namespace
7f79fbb24 Move ttrpc client to pkg/ttrpcutil
5b7a327c4 Improve atomic delete
fe6a2b03e Add shim cgroup support for v2 runtimes
62609d66d Fix typo in description comment
90c6c1af4 Pass options on shim create for v2
690706286 ctr: make ctr shim command easy to use
7b06c9a1c Add TTRPC client
5e962dd8b Remove unused Resize method from initState
66036d920 v1: Respect the `shim_debug` flag when load tasks
a6a888cb5 Bump ttrpc
fbb80b951 containerd-shim: redirect output into stdout fifo
543d1e807 Add travis_wait to prevent vndr timing out
00bc2f5cf Update to Golang 1.12, and prepare for ppc64le
67b45aef4 Add WithoutRefreshed metadata
ad25c1a9c Improve ARM platform matching
bd27bef4a Move checkpoint and restore commands to new files
cf6e00854 Fix fd leak of shim log
6f463d350 test/snapshots: umount before committing snapshot
388705317 snapshots/devmapper: deactivate thin device after committed
bdd7dce31 Add OpenLab CI configuration
660554d67 Fix error handling for task deletion.
2ed8e60fa bump google.golang.org/grpc v1.20.1
d1c59513d bump google.golang.org/grpc v1.12.2
2f22d8e67 Fix broken link to containerd logo
cb7c780af ctr images import: add --no-unpack option
ee902afa5 Compute manifest metadata when not provided.
5c9811ded Cleanup dead v2 shim.
cfc36388b Remove redundant error checks
38e369657 Use cancel on errors
eded188f4 Fix misspells
969035bcb Stop logging error on v2 multi shim log failure
c7f067f27 Update vendor/ with new required vndr go.mod files
8c5779c32 bump containerd/ttrpc 699c4e40d1e7416e08bf7019c7ce2e9beced4636
dff745680 Return NotFound error for kill and delete in deleted state.
5d17ed230 Update cri to 2fc62db8146ce66f27b37306ad5fda34207835f3.
e5aab17a0 bump opencontainers/selinux v1.2.2
dd85aea62 bump runc v1.0.0-rc8
5b9bd993a differ: fix deadlock on commit error
48f46516a Support disabling default setup of shim logger.
c79c7921c bump docker/go-units v0.4.0
dfa51c927 runtime-v1: kill shim in cleanupAfterDeadShim
0376dd460 Don't write dumped stacks to file for ETW capture state
e6fc0ed22 Convert Windows CI to use Microsoft MCR image urls
06a3a480c bump containerd/console 0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7f
a333dbcfb Update x/crypto to 88737f569e3a9c7ab309cdc09a07fe7fc87233c3
0fd02564a bump gocapability
7718d060e Write stack dump to `os.TempDir()` as well
a4942ca4f Fix error on pull hang in CI
6bcf463b0 Move to sha-specified test image for nanoserver
cfb8b5573 .mailmap: update Akihiro Suda's email address
be2cbd0b2 Access to client's GRPC connection object
78f3dc433 Allow dumping stacks via ETW capture state
05dd66b2e Update go-winio in vendor.conf
c9059c767 bump mistifyio/go-zfs f784269be439d704d3dfa1906f45dd848fed2beb
63c7a879b Requeue events in the shim publisher
fc167f957 Correct PusherFunc helper to match Pusher intf
a7af3c13a Correct import path in services/server package
9cc58781f Check task list to avoid unnecessary cleanup.
97d247cd0 Rename `hrpc` to `tcpServer`
047348e19 Add dialer for events service
ae87730ad Improve shim shutdown logic
a12f836d5 Use $TEST_RUNTIME for cri test.
4b3b99ea1 Add support for required plugins.
4ba756edd Fix API forward events for shims
1a1f8f11a Set nofile to 1048576
b911ae342 Add tcp service for grpc listeners
a6f587e4c Use ttrpc to publish runtime v2 events
a8a805cad Add ttrpc server to containerd
c93d64543 Add GetOOMScore function
ae5ca8177 Refactor mount path check and add comments
7045801fd delete the ingest when any errors happen during resuming status
dcf6023c4 Extend release timeline
d5b770aa8 Introduce 'clean-test' target in Makefile
2583d9e42 update gogo/googleapis v1.2.0
a98df70da update containerd/btrfs af5082808c833de0e79c1e72eea9fea239364877
aa8dccd22 update containerd/aufs f894a800659b6e11c1a13084abd1712f346e349c
ed61d7f68 bump containerd/zfs and dependencies
d667628ca bump github.com/pkg/errors v0.8.1
68ef17835 bump github.com/BurntSushi/toml v0.3.1
1978c0b74 bump gotest.tools v2.3.0, google/go-cmp v0.2.0
2741dbe2c contrib: Dockerfile: bump go 1.12
a84f87d84 contrib: Dockerfile: add a base stage
a07e12cde contrib: Dockerfile: reformat, and use --no-install-recommends
ba9e1ea23 contrib: Dockerfile: use build-arg for go-version
4754d2aee Update image export to support Docker format
74eb0dc81 Return event publish errors.
10cf21dcf Export ExitStatus init func
a73358749 Update cri to 6d353571e64417d80c9478ffaea793714dd539d0.
de1da8be3 Update handling of registry errors
8d1ae237e Always add compressed blobs to Docker import manifest
c0f0b2131 Apply PR feedback
2a5e4c4be Skip rootfs unmount when no mounts are provided
abfc89ce0 Update CRI to master
4730088cb Update runc to resolve selinux issues
2d11f5e6d Regenerate protobufs
830b0294c Update protobuf v1.2.0
7c1365b46 bump sirupsen/logrus v1.4.1
01310eaeb do not use unkeyed fields in compose literals
90085a7ac Add empty file to prevent build from failing
baf340343 Extend Applier's Apply() method with an optional options parameter
8784eb630 Move snapshotters benchmark to a separate package
adc4fa217 Use pkg/errors for all errors
c22effb16 fix parseInfoFile does not handle spaces in filenames
559dfa59a Add configurable plugin path
d9526f5c4 Move CloudFormation template to contrib
ae04c1660 runtime: guard Close() until both streams are complete
e96ac2040 runtime: log IO error when copying output streams
515be73c8 Add snapshotters benchmark
872296642 fix shouldKillAllOnExit check for v2
fa5f744a7 fix shouldKillAllOnExit check
f7f6dd7b4 test: add custom cgroup test
2b8df8309 bump containerd/cgroups 4994991857f9b0ae8dc439551e8bebdbb4bf66c1
bc6ac0878 update opencontainers/runc v1.0.0-rc7
808b22353 Fix race and panic.
87289a0c6 devmapper: implement Usage
010b4da36 devmapper: implement dmsetup status
871094016 Windows: Build shim binary from Microsoft/hcsshim
e16e99593 Vendor Microsoft/hcsshim@8abdbb82
5d50b9c2b Extend adaptImage function with annotations case
388c8a176 Fastpath opt and ExecProcess loading
a84966451 Windows:ProgramFiles to ProgramData
6034c1950 Windows:Create root/state with ACL
7361b1987 Update Windows lcow differ to set NT VIRTUAL MACHINE\Virtual Machines SID
4c9b5ef8e Update vendor github.com/Microsoft/go-winio
d15832a4c Address review comments
8f8fd3c3a seccomp: whitelist statx syscall
908b77108 Add code to return message field of returned registry errors
9a8727cf0 Allow to import an image for the default platform only.
4506eb45b seccomp: whitelist io_pgetevents
f3ff95ab7 decouple api.ContentServer implementation package from bbolt dependency
14a050688 ctr: fix image cmd ArgsUsage
bdd84abf0 Add additional capability handling opts
a631796fd horten the unix socket path for shim
b858cfb41 Makefile: allow overriding package name
7ca2c3d68 contrib/nvidia: export helper binary path and list of Nvidia capabilities
a7aeffc22 Update mailmap for cgroup authors
e6ae9cc64 Shim pluggable logging
506b81548 remotes: add distribution labels to blob data
b8d40b353 update runc to 2b18fe1d885ee5083ef9f0838fee39b62d653e30
09cf2a629 Extend metadata images test with fieldpaths for Annotations
5124f9ee5 Write the Annotations map into the bolt db
02cc1485d Prepare boltutil for reading and writing another map
1e893b19c devmapper: add no_devmapper build tag
79248fea2 Add test for ocispec.Descriptor Annotations
34f377295 Allow WithNewSnapshot and WithNewSnapshotView to take in snapshotter options.
aaae81189 Update checkpoint opts with runtime handling
160737d2c Fix no pivot and keyring opts
0b711d616 Copy annotations around where necessary
4d2a26d75 BUILDING.md: update testing section
6424a3603 ctr/commands/images/push: don't show progress if it is debug mode
7cfb99ab9 Add content gc ref labels from containers, images, and snapshots
f0d5dd3c8 Use unix.SignalNum in ParseSignal on unix platform
1745951ba Vendor golang.org/x/sys d455e41777fca6e8a5a79e34a14b8368bc11d9ba
e13a4b67e Update the snapshotter docs to refer to the snapshots package for WithLabels.
277147135 Fix issue with NewFIFOSetInDir with Terminal true
828f6eb84 Fix a bug in shim log on Windows that can cause 100% CPU utilization
c6703d4c7 Add missing annotations map to Descriptor for gRPC transfer
d2bec5422 Bump cgroups to dbea6f2bd41658b84b00417ceefa416b97
208957ba3 devmapper: proper cleanup in pool device test
734989c2a Update README
fb8048371 docs: Add NAME section in all manpages
95f0a4903 devmapper: rollback thin devices on error
adf5c640f devmapper: don't create or reload thin-pool from snapshotter
7efda48c5 devmapper: more precise way of checking if device is activated
37cdedc61 devmapper: add linux tags, fix build
0c6d194cc devmapper: add README and minor fixes
2218275ec devmapper: register plugin
cec72efc2 devmapper: add snapshotter
3a7588252 devmapper: add pool device manager
6e0ae68e1 devmapper: add snapshotter config
fcd9dc274 devmapper: add pool metadata
809e5fd3b devmapper: add dmsetup
fe05e4d1a devmapper: add losetup
d83e4e9b3 Vendor Microsoft/go-winio@v0.4.12
e0d7ed12a Windows: Enable ETW logging
cbc032ed3 Update go.etcd.io/bbolt to v1.3.2
5e8406984 Update travis to xenial worker
84a24711e Add runc.v2 multi-shim
6bcbf88f8 Move runc shim code into common package
fd6ac5d02 Vendor sirupsen/logrus@1.3.0
b553a12be runtime: allow specifying supported platforms with config
f6ac73d71 fixing typo and added a missing comment.
4b3e0a8aa metadata: merge snapshot labels with metadata's labels
88f19a90a Windows: Update stackdump event name
14f7e5272 Unpack should set 0755 when the parent directory doesn't exist.
a6f43b549 Add website update to release process
17b2c8498 Update supported versions
b87e9eef3 Add ExecID for StateResponse
bfb266ab5 Fix some misspells in helpers_test.go
dc09ed1e1 Add image handler wrapper
a4f7b3758 Add support for TaskDelete event on exec in RuntimeV2
00895670e Stop sending stderr with TTY on Windows
6a21728fb Use defaults package for listing namespace labels
14eaad0cd Update runc to 6635b4f0c6af3810594d2770f662f34ddc15b40d (CVE-2019-5736)
98766e863 Vendor opencontainers/runtime-spec 29686dbc
225d9b120 Fix LCOW layer ordering
0190e5f39 Removes the oci.test.exe binary.
525802f9c Use distribution's reference.ParseDockerRef
3538174e6 Bump github.com/docker/distribution to 0d3efadf0154c2b8a4e7b6621fff9809655cc580
2dacef07c Add shim skeleton code
59ea134ce OCI Modifiers for Windows
d25007e54 Add structure documentation for metadata
823b7a8a0 Cleanup releases directory
7bd8dcd0d Fix potential containerd panic.
41f540621 Add release documentation
f014adfa1 readme: fix example for checkpoint
dfcc5942f Fix deadlock in Windows runhcs shim exec
da2ab865e Add documentation for using namespace labels for configuring defaults.
952d58297 Add a separate lock for pid.
9777d7689 Revert "use state machine management for exec.Pid()"
34323985a Use labels only when default namespace is provided and prefer given options.
59432aaec Take default runtime and snapshotter from namespace labels
6629f853a BUILDING: update BUILDING.md
d7ed40307 Add image pull concurrency limit.
7f5d7ff6b Update snapshots docs with garbage collector label
34672d483 metadata/gc: remove the noop-loop for snapshot reference
6ed293ba9 Fix bug in shim path lookup
d63099c4a Allow matching shim path side by side with containerd
764afa0d1 Include extension for shim binary format on Windows
dfebb404c remove excessive []byte(s) conversion
85aa8ad36 Move task events to runc v2 shim
28f8a90bd Update cri plugin to 4dd6735020f5596dd41738f8c4f5cb07fa804c5e.
bb32c0f61 Revendor github.com/Microsoft/hcsshim v0.8.4
f44469698 Return out of windows signal handler
26ab393e7 Use context.Background for `O_NONBLOCK` `OpenFifo`.
7db569771 unix.UtimesNanoAt now supported on Darwin
132ee9b82 fix: linter issue
6468619d7 Implement the Runtime v2 Shim async task model for runhcs
b444d7d50 Handle additional cleanups from prior PR
4ef9bf5c8 Windows: Publish exit status correctly in TaskExit
90caf6f6a Windows:NewDirectIOFromFIFOSet
3aec9e7be bump up runc
0befa457d Update ttrpc to support context timeout.
946e40266 Update releases files
c5a8c9fc1 Fix issue in runhcs shim CloseIO
31616e794 Fix runhcs shim bug in Create with "len(Rootfs) == 0"
bcd4cc51c Fixes a bug in runhcs shim Exec.Pid
bc76e01a8 Update runhcs options to include CRI Sandbox support
a79879e9d Add security audit report to README
dee0945e1 Fix spurious ttrpc client shutdown error log on success
64a004641 Update cri-tools to v1.13.0.
b55c9c6c3 Update cri to 4b4b2abb2eb19ad6913a6c5d2a6869a0a43a3fc1.
17b77aeb0 Fix annotation typo errors
5137fc6f1 bugfix: support application/octet-stream during pull
568b5be93 runtime: add Add/Delete method in PlatformRuntime interface
7faaa64cf fix: miss remove temp file in createSnapshot
4247f2684 metadata: define content sharing policy
1be86af10 add test for WithImageConfigArgs
36e4dc603 Ensure bundle removal is atomic
723797d32 docs: remove website leftovers
d4ecb00f6 checkpoint: return empty image if checkpointPath exist
f2344db40 do not mutate defaults in replaceOrAppendEnvValues
da9471fb1 fix oci.WithImageConfigArgs for windows
897afeaf3 Revert "Fix CI due to Golang 1.10.6 / 1.11.3 regressions (workaround)"
0ec6526fd Update the delete docs for Runtime V2 on Windows
e20ba5fa5 test: add test for c/r without image
40267382c fix ctr image export not found error
8be05eb23 Fix freebsd build
7b1e6f323 fix: use func args instead of build new one
9baecf66b fix: fix defer in loop
903abf33c Fix annotation typo error
52de37170 Fix CI due to Golang 1.10.6 / 1.11.3 regressions (workaround)
2d96aad77 bugfix: unpack should always set the snapshot gc label
a2a424197 Add timeout and cancel to shim fifo open
6f944e419 fix: SCHILY.xattrs should be SCHILY.xattr
6ccb0d062 fix: remove dead code
2db0c6c26 Explicitly stating utf-8 when fetching oauth token
603e97a9e ctr/content: make editor flag is required
7ac221e8d Adding ctr memory and cpu flags
822ae18b1 Update cgroups to 1152b960fcee041f50df15cdc67c29db
3ae8e8a30 Add shim config for shim binary options
66c20f2b7 Update runc to 96ec2177ae841256168fcf76954f7177af
79499980e Kill should still work in stopped state.
27ba2db10 Revendor github.com/Microsoft/hcsshim to v0.8.3
2d3a4f99e should no defer when detach
70084ea6c Add /proc/asound to masked paths
6daf8b778 Eliminate misuses of errors.Wrapf
a404f27a0 Add more adopters
6593399e9 cr: support checkpoint/restore without image
996c60616 fix: fix error info start capitalized
b4a642f6a Add dumpStacks support for containerd on Windows
40d898a82 Windows: Allow running as a service
97dd5df66 Update runc to v1.0.0-rc6
09bf314bf Cache shim v2 exec.LookPath results
fd16bf6d4 runtimev2: add image-path and work-path for c/r
83ebcf999 runtimev1: add image-path and work-path for c/r
f90e5d564 Move ctr run --isolation to Windows only
bbc2a995f use state machine management for exec.Pid()
461222dba fix: should get runtime name from container info
2101b1362 add ctr delete --exec-id to debug DeleteProcess
a2e8ab9ff remotes: avoid panic with default resolver conf
7d91d631e Lock `KillAll`.
9639db552 refactor: no need defer in closeAll
e76a8879e fix pipe in broken may cause shim lock forever for runtime v1
b3438f7a6 fix pipe in broken may cause shim lock forever for runtime v2
956e49a36 Revert v2 dropped events
1d4105cac Use named pipes for shim logs
581a63ce4 Add build requirement doc on fedora/centos
01f5aa387 add flag -d for ctr t exec to run a service in container
51ad4d302 change args usage for ctr c create
bd2a21985 fix container cmd args may parsed as ctr args
90880078b Adding a --load-kmods flag to the NVIDIA OCI hook
e1a59ba0f Update runc to 10d38b660a77168360df3522881e2dc2be
8e25ca6bf Revendor github.com/sirupsen/logrus to v1.0.3
0e7a70dbf skip already exists content
6f2f4e434 checkpoint: add copts to checkpoint; save snapshotter to annotation
40caece8d update tests
4fdf720b8 move rw to opt; make snapshot opt; move to NewContainerOpts
147208061 add image name and runtime name media types; remove task operation on checkpoint
ce0673fd7 Restore take image
0e4d9da75 remove task handling from Restore
2d3db08da refactor spec and snapshot restore into opts
45c700a95 refactor checkpoint and restore to client
555ea3fb4 Ignore modprobe failures in ExecStartPre (systemd unit)
abd971cfb Revendor github.com/Microsoft/hcsshim
831a41b95 Fix process locking and state management
c4feaa75c fix: fix failed to get container-shim relation with io.containerd.runc.v1
c524b9ce4 Partially revert the event discard change in #2748.
38d7d59e8 enhance: update v1/v2 runtime
ce6d4c9a9 add docs/rootless.md
dd0539b09 ctr: add --cgroup for oci.WithCgroup
18363d0c9 Add ADOPTERS.md file
354dab0ca Forward ctr.exe --debug as io.containerd.runhcs.v1 options
a33ad4024 Implement io.containerd.runhcs.v1 shim log opts
ec3dbd155 Add io.containerd.runhcs.v1 shim proto options
7d70d2b78 Fix Makefile to run protobuild on paths with spaces
83f4ab885 makefile: remove emoji on Linux
8329a491b Build Windows V1 and V2 runtimes always
124194b98 check task existence before new task
a02f7cea8 bugfix: use skip-verify flag in ctr instead of insecure
2bb7da843 Fix mingw version back to working version with Golang
068880ff1 Add custom headers option to dockerResolver
fa912a79b update link for slack invite
7c85d873a fix typo in ResolverOptions.Credentials documentation
232a06349 Increase reaper buffer size and non-blocking send
00ba92364 bugfix: CloseIO should return correct status code
1cc93460d Bump aufs for unsupported errors
1301813f7 Update ZFS for unsupported warnings
16aaf6c06 Change unsupported snapshot warnings to INFO
07237e34e Bump to Go 1.11.x
c206da795 optimize shim lock in runtime v1
c5a0c7f49 Add build option "GODEBUG=1"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The kernel RRECOMMENDS, wasn't complete and in some minimal systems
we are missing modules to start dockerd.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
using bb.utils.contains wasn't able to match on the substring
"type=kmeta" to enable the conditional inclusion of fragments
and KERNEL_FEATURES.
We switch to a python string only method so we can fix the
fragment application
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
yq is used by some builds to do command line parsing of yaml config
files.
We introduce the recipe/package and all of its dependencies.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Some of the dependencies are no longer valid for the kata runtime
recipe.
This also drops hyperstart as a dependency. With this removal, we
need a replacement kernel and initrd for kata. That replacement
will happen in future commits.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Although it appears abandoned, and has some build issues, updating
hyperstart to its newest commit to be a base for future work, or
simply be removed.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
| |
Adding the version specific include for linux-yocto 5.8.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Rather than only matching on the major/minor version, we should also
check that the SRC_URI contains a "type=kmeta", to indicate that a
kernel-meta data repository is available.
This allows fragment enabled kernels, that don't want to use the
main kernel meta data repository to not throw an error (when their
version matches one of the reference kernels).
This can potentially mask runtime issues (since kernel configuration
options may not be present in the final kernel), but it makes the
layer more usable, so we take the tradeoff.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Remove deprecated options in lxc*.service to silence below warning:
# systemctl status lxc
[snip]
/usr/lib/systemd/system/lxc.service:17: Standard output type syslog is obsolete, automatically updating to journal. Please update your unit file, and consider removing the setting altogether.
/usr/lib/systemd/system/lxc.service:18: Standard output type syslog is obsolete, automatically updating to journal. Please update your unit file, and consider removing the setting altogether.
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
We already have a distro feature that controls the static/non-static
configuration of libgcrypt: 'vmsep'
To avoid build errors on distros that don't have static libgcrypt
available, we move the CONFIG_STATIC config to a fragment and only
enable it whent he distro feature is set.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Newer version now available via meta-oe/meta-python:
- meta-python/recipes-devtools/python/python3-texttable_1.6.3.bb
Signed-off-by: Ricardo Salveti <ricardo@foundries.io>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Remove local python3-websocket-client recipe in favor of a similar one
that is provided by meta-oe/meta-python (same verison but with the correct
license).
Signed-off-by: Ricardo Salveti <ricardo@foundries.io>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
runx knows how to build its own copy of busybox for its initrd,
adding a flag to allow us to select which mode we want.
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Although this dynamic layer currently only adds Xen support, it will
eventually hold other board and platform specific tweaks to core
meta-virt recipes.
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Adding one build and one runtime robustness change:
- build: specify the syroot native as a library path to qemu user.
This allows us to run dynamic executables
- runtime: add a patch to increase the serial fd timeout. We'll
drop this once it is merged upstream.
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add a busybox variant that inherits almost all of its support from
the core busybox recipe, but adds configuration values that are
appropriate to be used in an initrd.
In particular:
- we build busybox statically
- we enable runlevel and init functionality
- mdev is always enabled
- applet install support is enabled
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Sometimes Xen is built with different mixes of kernel modules and
built-in values. If we put our expected/default modules in a
variable, they can be overriden by a different kernel provider
as required
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
There are some missing dependencies for a fully functional runx
host. We add them here.
Signed-off-by: Bruce Ashfield <bruce.ashfield@xilinx.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
To avoid systemd complains that the libvirt unit files use legacy
directory, we configure the libvirt with '--with-runstatedir=/run'
and do some minor changes.
------------------cut here----------------------
014: systemd[1]: /lib/systemd/system/virtlogd.socket:6: ListenStream=
references a path below legacy directory /var/run/, updating
/var/run/libvirt/virtlogd-sock → /run/libvirt/virtlogd-sock; please
update the unit file accordingly.
014: systemd[1]: /lib/systemd/system/virtlogd-admin.socket:8:
ListenStream= references a path below legacy directory /var/run/,
updating /var/run/libvirt/virtlogd-admin-sock →
/run/libvirt/virtlogd-admin-sock; please update the unit file
accordingly.
014: systemd[1]: /lib/systemd/system/virtlockd.socket:6: ListenStream=
references a path below legacy directory /var/run/, updating
/var/run/libvirt/virtlockd-sock → /run/libvirt/virtlockd-sock; please
update the unit file accordingly.
014: systemd[1]: /lib/systemd/system/virtlockd-admin.socket:8:
ListenStream= references a path below legacy directory /var/run/,
updating /var/run/libvirt/virtlockd-admin-sock →
/run/libvirt/virtlockd-admin-sock; please update the unit file
accordingly.
014: systemd[1]: /lib/systemd/system/libvirtd.socket:9: ListenStream=
references a path below legacy directory /var/run/, updating
/var/run/libvirt/libvirt-sock → /run/libvirt/libvirt-sock; please update
the unit file accordingly.
014: systemd[1]: /lib/systemd/system/libvirtd-ro.socket:11:
ListenStream= references a path below legacy directory /var/run/,
updating /var/run/libvirt/libvirt-sock-ro →
/run/libvirt/libvirt-sock-ro; please update the unit file accordingly.
......
Signed-off-by: Yanfei Xu <yanfei.xu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
Workaround rebuild failure
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Updating the go-build recipe to use the latest runX commit and
sync with the main recipe.
We also no longer need runc and recvtty so they are dropped from
the recipe.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
runqemu is looking for the QB_DEFAULT_KERNEL to be set to "none"
to trigger special processing. The current set of QB_DEFAULT_KERNEL=""
won't trigger that behaviour .. so we change the default.
We also make the assignments weak, to allow easier overrides in
specific implementations.
We also need a patch to qemuboot.bbclass to make the defaults ??=,
and when that is done, our ?= here will work properly.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
Backport patch to fix build failure for gcc-10.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
gcc-10 uses '-fno-common' by default, which results in build
error complaining multiple definition.
Use '-fcommon' to fix this problem.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The ncurses patch was slightly mangled by email, so we devtool
refresh it to fix the fuzz warning.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch introduces the following changes:
1. When building in OE environment the linker path needs to be passed when
buildind the Kconfig tool in order to get the menuconfig task properly
working.
2. By inheriting cml1.bbclass we can drop some environment variables
settings in xen-hypervisor.inc for the menuconfig task, and also be
able to search for config fragmens and use the diffconfig task. Also,
there is no need to have a custom do_menuconfig task anymore.
Change-Id: I8d61ec76d92de7d1613b79edf55b4868fe712334
Signed-off-by: Diego Sueiro <diego.sueiro@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Instead of disabling particular warnings, its better to use configure
switch, since some of these warnings could be compiler specific
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
While we are updating, we refresh one patch to remove fuzz, otherwise
there are no significant changes.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Refresh patches for new context, drop CVE patch that has been integrated
into the main repository.
The following changes are part of this refresh:
49a73463 Merge pull request #2547 from kolyshkin/moar-v2-tests
9ada2e6d Merge pull request #2539 from kolyshkin/ext-pidns-nits
b70de388 Merge pull request #2540 from kolyshkin/unify-test-inval-cgroup
0509b5ba Merge pull request #2553 from AkihiroSuda/support-kernel59-caps
6dfbe9b8 support CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE
54c53b10 Merge pull request #2533 from XiaodongLoong/fix_cgMode_redundant
a2d1f85b Merge pull request #2542 from AkihiroSuda/go1.15
4c71a68c upgrade Go to 1.15
dedadbf9 Merge pull request #2545 from kolyshkin/go-mod-vendor
809dc640 Merge pull request #2548 from kolyshkin/int-cr-fix
7f64fb47 use criu cgroup mode const from go-criu
5026bfab tests/int: fix error handling and logging
2de0b5aa libct/integration: enable some tests for cgroupv2
985bd24f Makefile: fix go vet/fmt
a340fa9b Merge pull request #2543 from mrunalp/release_1.0.0-rc92
1ff1bf34 VERSION: back to development
ff819c7e VERSION: release 1.0.0-rc92
f6688549 Merge pull request #2499 from kolyshkin/find-cgroup-mountpoint-fastpath
234d15ec Merge pull request #2520 from thaJeztah/bump_runtime_spec
78d02e85 Merge pull request #2534 from adrianreber/go-criu-4-1-0
637d54b7 cgroups/fs tests: unify TestInvalid*Cgroup*
e54d1e47 libct: initialize inheritFD in place
8b973997 libct: criuNsToKey doesn't have to be a method
3de3112c Merge pull request #2525 from adrianreber/external-pidns
6f4616dd Pass location of CRIU binary to go-criu
267b7148 Upgrade go-criu to 4.1.0
d6f5641c Merge pull request #2507 from kolyshkin/alt-to-2497
46243fce Merge pull request #2500 from kolyshkin/fs-apply
e0c0b0cf libct/cgroups/GetCgroupRoot: make it faster
901dccf0 vendor: update runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
97b02cf9 Merge pull request #2531 from JFHwang/gomod_update
59352963 Update go.mod
67169a9d merge branch 'pr-2529'
95a59bf2 devices: correctly check device types
09e103b0 Tell CRIU to use an external pid namespace if necessary
610c5ad7 Factor out checkpointing with external namespace code
d65df61d Merge pull request #2521 from zvier/master
92e2175d cleancode: clean code for utils_linux.go
86d9399c Merge pull request #2524 from adrianreber/fix-travis
b7683d6b Fix .travis.yml warnings
f8749ba0 merge branch 'pr-2509'
f9850afa Merge pull request #2518 from XiaodongLoong/redundant_chroot_param
af283b3f remove redundant the parameter of chroot function
b7d8f3bf Merge pull request #2516 from ide-rea/fix-typo
47fbafb7 Merge pull request #2510 from kolyshkin/criu-el7
76b05e6d fix small typo
cf1273ab Merge pull request #2498 from kolyshkin/v1-code-cleanups
545ebdd1 Merge pull request #2511 from kolyshkin/fedora-dnf-fix
fbf047bf Merge pull request #2501 from XiaodongLoong/systemderror-fix
f57bb2fe fix TestPidsSystemd and TestRunWithKernelMemorySystemd test error
ce54a9d4 Merge pull request #2514 from rhatdan/windows
6d5125f8 tests/int/checkpoint: don't remove readonly flag
9806eb55 Merge pull request #2513 from lsm5/custom-PREFIX-in-Makefile
d78ee471 Allow libcontainer/configs to be imported on Windows
5517d1d7 Merge pull request #2505 from XiaodongLoong/redundant-copy-src
ffe9f0b0 Vagrantfile.centos7: do not ignore script failures
bc1a9c11 allow customizable PREFIX variable
a73ce38d cgroupv1/FindCgroupMountpoint: add a fast path
c27b8e7f tests/fedora32: retry dnf
92f49821 tests/centos7: add criu
98c7c01d tests/int/checkpoint: require cgroupns
c1adc99a cgroup/fs: rework Apply()
417f5ff4 tests/int/checkpoint: fds and pids cleanup
819fcc68 merge branch 'pr-2495'
2a322e91 cgroupv1: remove subsystemSet.Get()
daf30cb7 cgroups/fs: rm getSubsystems
2e225799 libct/cgroups/fs.GetStats: drop PathExists check
11fb9496 cgroups/fs: rm Remove method from controllers
30dc54a9 Merge pull request #2503 from giuseppe/cgroup-fixes
3f811318 Merge pull request #2490 from kolyshkin/dev-opt
32034481 cgroup, systemd: cleanup cgroups
46a304b5 Merge pull request #2502 from tjucoder/master
e638eda0 Merge pull request #2496 from kolyshkin/freeze-nits
a4cb88f3 redundant souce code copy There is a docker -v flag for test in Makefile
2deaeab0 cgroup: store the result of IsRunningSystemd
ab35cfe2 make sure pty.Close() will be called and fix comment
62a30709 cgroups/fs/path: optimize
46b26bc0 cgroups/fs/Freeze: simplify
cd479f9d cgroupv1/freezer: don't use subsystemSet.Get()
3cb1909c Merge pull request #2493 from thaJeztah/bump_ebpf
108ee85b libct/cgroups: add SkipDevices to Resources
f49adb52 vendor: update cilium/ebpf v0.0.0-20200702112145-1c8d4c9ef775
6f5edda9 merge branch 'pr-2491'
d0e92896 VERSION: back to development
24a3cf88 VERSION: release 1.0.0-rc91
1b94395c Merge pull request #2476 from kolyshkin/cpt-err-log
834c4573 Merge pull request #2482 from kinvolk/alban/integration-tests
327284eb integration tests: fix typo in README.md
0fa097fc merge branch 'pr-2481'
dff7685c Merge pull request #2459 from tedyu/linux-cont-set-cfg
e643db6e Merge pull request #2479 from haircommander/fix-systemd-version
04806abd nsenter: fix repeat close() operations
9748b487 Merge pull request #2229 from RenaudWasTaken/create-container
861afa75 Add integration tests for the new runc hooks
2f7bdf9d Tests the new Hook
6a0f64e7 systemd: add unit tests for systemdVersion
6369e388 systemd: parse systemdVersion in more situations
819c40b3 Merge pull request #2478 from kolyshkin/get-pids
89516d17 libct/cgroups/readProcsFile: ret errorr if scan failed
406298fd Merge pull request #2466 from kolyshkin/systemd-cpu-quota-period
12a7c8fc Merge pull request #2411 from kolyshkin/v1-specific
ccdd7576 Add the CreateRuntime, CreateContainer and StartContainer Hooks
e232a71a tests/int/checkpoint: fix checks, add logs
a6ddabd6 tests/int/checkpoint: whitespace cleanups
e751a168 cgroups/systemd: add setting CPUQuotaPeriod prop
8c5a19f7 libct/cgroups/fs: rename some files
cec5ae7c libct/cgroupv1/getCgroupMountsHelper: minor nit
0626c150 libct/cgroupv1: fix TestGetCgroupMounts test cases
0681d456 libct/cgroups/utils: move cgroup v1 code to separate file
7db2d3e1 libcontainer/cgroups: rm FindCgroupMountpointDir
d244b405 libct/cgroups: improve ParseCgroupFile docs
5785aabc libct/cgroups: make isSubsystemAvailable v1-specific
d5c57dce libct/criuApplyCgroups: don't set cgroup paths for v2
52b56bc2 libc/criuSwrk: remove applyCgroups param
142d0f2d libct/cgroups/utils: make FindCgroupMountpoint* v1-specific
44b75e76 libct/cgroups: separate getCgroupMountsV1
82d2fa4e Merge pull request #2453 from AkihiroSuda/vagrant-centos7
3834222d libct/cgroups/utils: getControllerPath return err for v2
55c77cb9 Merge pull request #2472 from kolyshkin/paths-nits
dd2426d0 libct/cgroups: fix m.paths map access
a77d7b1d libct: don't use GetPaths
5b247e73 Merge pull request #2338 from lifubang/systemdcgroupv2
c76af1d2 Merge pull request #2470 from katarzyna-z/kk-fix-numa-stats
601fa557 Merge pull request #2414 from kolyshkin/criu-notif
71e63de4 Fix #2469 omit memory.numa_stat when not available
fdc48376 Merge pull request #2458 from kolyshkin/cpu-quota-II
3ddb913a Merge pull request #2467 from mrunalp/save_state_atomic
ed9d93e2 Merge pull request #2455 from AkihiroSuda/docs-cgroup2
a4a306d2 Write state.json atomically
499357d6 add Vagrantfile.centos7
262ef563 update.bats: support systemd <= 226
1f366c6a tests/rootless.sh: fix executing bats in non-root PATH
6246bb11 spec.bats: avoid using `git -C`
bd236e50 integration: skip checkpoint tests if criu binary not found
b2163040 Merge pull request #2454 from AkihiroSuda/ci-fix-rt
1b03e725 tests/int/update: more cpu period/quota cases
a92b0327 cgroups/systemd: fix set CPU quota if period is unset
1832bf0b tests/int/update: add cpu-quota -1 tests
7c2b2349 tests/integration/update: enable cpu quota for v2
32746fb3 update: do not overwrite old cpu quota/period
4189cb65 cgroups: remove cgroup.Resources.CpuMax
8b964677 cgroups/systemd: unify adding CpuQuota
2ce20ed1 cgroups/systemd: simplify gen*ResourcesProperties
9d275d32 Set configs back when intelrdt configs cannot be set
4be54355 add integration test for ps/kill after the container stopped
1b97c04f merge branch 'pr-2445'
2a046695 merge branch 'pr-2446'
79fe41d3 Replace sed with jq for more readable json manipulation in tests
13865704 add cgroup v2 documentation
10d1e1ed test "update rt period and runtime": fix up runtime and period
0853956d Merge pull request #2452 from AkihiroSuda/silence-criu-not-found
13020202 Merge pull request #2449 from katarzyna-z/kk-fix-2440
9087f2e8 fix path error in systemd when stopped
4ad326a3 silence "which: no criu"
92f831bf Fix #2440 omit cpuacct.usage_all when not available
d1ba8e39 (*initProcess).start: rm second Apply
dbe5acad Merge pull request #2439 from kolyshkin/int-noswap
332a8458 Merge pull request #2443 from kolyshkin/kmem-fixup
0f7ffbeb Merge pull request #2416 from AkihiroSuda/exec-join-init-cgroup
a30f2556 merge branch 'pr-2018'
c91fe9ae cgroup2: exec: join the cgroup of the init process on EBUSY
ed1f14af tests/int/events: skip oom test if no swap
755b1016 test/int/update: simplify mem+swap presence check
8d943633 test/int/update: simplify mem+swap checks
e664e732 merge branch 'pr-2442'
2679754a Merge pull request #2441 from kolyshkin/check-cpushares
3fe6e045 cgroupv1/systemd.Set: don't enable kernel memory acct
3249e237 cgroupv1: check cpu shares in place
774a9e76 Merge pull request #2420 from tedyu/criu-proc-wait
3ba3d9b1 Wait for criuProcess once
0f3d6bec Remove pullapprove integration
64dbdb86 Merge pull request #2437 from kolyshkin/remove-faster
a78e21b5 tests/int/delete.bats: fixups
0ac92aab cgroups/fs2: make removeCgroupPath faster
4f0bdafc Merge pull request #2412 from lifubang/removecgpath
a891fee8 Merge pull request #2434 from kolyshkin/cpu-quota-fix-minimal
be546787 cgroupv1: minimal fix for cpu quota regression
82fa1941 remove cgroup path recursively in cgroup v2
1f737eeb Merge pull request #2426 from kolyshkin/mem-swap-unlim
7673bee6 Merge pull request #2395 from lifubang/updateCgroupv2
68391c0e use lazy-pages ready notification for criu >= 3.15
7ab13298 libct/criuNotifications: simplify switch
3c6e8ac4 cgroupv2: set mem+swap to max if mem set to max
27515719 add testcase for enable all supported controllers in cgroupv2
a67dab0a Revert "CreateCgroupPath: only enable needed controllers"
3c8da9da Merge pull request #2422 from kolyshkin/criu-j
d57f5bb2 cgroupv1: don't ignore MemorySwap if Memory==-1
21cb2360 merge branch 'pr-2427'
6a6ba0c0 Merge pull request #2423 from kolyshkin/systemd-v2-pids-max
8cd84e35 Merge pull request #2333 from opencontainers/add-cii-badge
59897367 cgroups/systemd: allow to set -1 as pids.limit
95413ecd tests/int/update: add cgroupv1 systemd CPU checks
06d7c1d2 systemd+cgroupv1: fix updating CPUQuotaPerSecUSec
7abd93d1 tests/integration/update.bats: more systemd checks
e4a84bea cgroupv2+systemd: set MemoryLow
4fc9fa05 tests/int: simplify check_systemd_value use
716079f9 Merge pull request #2406 from cyphar/devices-cgroup-header
5b601c66 README.md: fix a dead link
cd4b71c2 Merge pull request #2409 from adrianreber/go-criu-4-0-0
28cd9d9c Merge pull request #2419 from tianon/buildmode-arch-toggle
9a808dd0 Merge pull request #2424 from giuseppe/errno-ret
944e0570 Update to latest go-criu (4.0.2)
41aa1966 libcontainer: honor seccomp errnoRet
510c79f9 vendor: update runtime-specs to 237cc4f519e
236ec045 Dockerfile: speed up criu build
be66519c Remove "-buildmode=pie" from platforms that don't support it
b207d578 Merge pull request #2418 from AkihiroSuda/fix-bad-rebase-2413
2fa3c286 fix "libcontainer/cgroups/fs/cpuset.go:63:14: undefined: fmt"
f369199f Merge pull request #2413 from JFHwang/2392-spec-check
53a46497 Merge pull request #2401 from kolyshkin/fs-cpuset-mountinfo
825e91ad Merge pull request #2341 from kolyshkin/test-cpt-lazy
67fac528 Merge pull request #2410 from lifubang/swap0patch
5aa0601a validateProcessSpec: prevent SEGV when config is valid json, but invalid.
7fc291fd Replace formatted errors when unneeded
9ad1beb4 never write empty string to memory.swap.max
dc9a7879 cgroups: add copyright header to devices.Emulator implementation
3f1e8869 Merge pull request #2391 from cyphar/devices-cgroup
2db3240f libct/cgroups: rm GetClosestMountpointAncestor
f1603526 libct/cgroup: prep to rm GetClosestMountpointAncestor
85d4264d Merge pull request #2390 from lifubang/threadedordomain
4b71877f Merge pull request #2292 from Creatone/creatone/extend-intelrdt
41855317 Merge pull request #2271 from katarzyna-z/kk-cpuacct-usage-all
fe0669b2 don't enable threaded mode by default
ba6eb282 tests: add integration test for paused-and-updated containers
4438eaa5 tests: add integration test for devices transition rules
b810da14 cgroups: systemd: make use of Device*= properties
afe83489 cgroupv1: devices: use minimal transition rules with devices.Emulator
2353ffec cgroups: implement a devices cgroupv1 emulator
24388be7 configs: use different types for .Devices and .Resources.Devices
60e21ec2 specconv: remove default /dev/console access
b2bec980 cgroup: devices: eradicate the Allow/Deny lists
859a780d cgroups: add GetFreezerState() helper to Manager
a79fa7ca contrib: recvtty: add --no-stdin flag
df3d7f67 Merge pull request #2393 from kolyshkin/criu-pi
58bf0835 Merge pull request #2400 from kolyshkin/bats-1.2.0
17aee8c4 Dockerfile: bump bats to 1.2.0
2b9a36ee Merge pull request #2398 from pkagrawal/master
867c9f5b Merge pull request #2386 from kolyshkin/gordian-knot
ca1d135b runc checkpoint: fix --status-fd to accept fd
4aa91014 Honor spec.Process.NoNewPrivileges in specconv.CreateLibcontainerConfig
f0daf651 Vagrantfile: use criu from stable repo
714c91e9 Simplify cgroup path handing in v2 via unified API
2c8d668e Merge pull request #2387 from kolyshkin/g-knot-prepare
1d143562 libct/cgroups/fs: access m.paths under lock
51e1a084 libct/cgroups/systemd/v1: privatize v1 manager
d827e323 libct/cgroups/systemd/v1: add NewLegacyManager
fc620fdf libct/cgroups/fs: privatize Manager and its fields
5935bf8c libct/cgroups/fs: introduce NewManager()
24f945e0 libct/cgroups/systemd/v2: return a public interface
63854b0e newSetnsProcess: reuse state.CgroupPaths
9a3e6326 notify: simplify usage
6621af89 merge branch 'pr-2381'
828e4ad8 epbf: update github.com/cilium/ebpf
b18a9650 test: update devicefilter tests
128cb60f ebpf: fix big endian issue for s390x
2b31437c Merge pull request #2281 from AkihiroSuda/rootless-systemd
47a73431 Merge pull request #2373 from kolyshkin/logging-nits
492cfd8b Merge pull request #2352 from lifubang/eventsv2
bf15cc99 cgroup v2: support rootless systemd
657407ff fix runc events error in cgroup v2
64416d34 Merge pull request #2382 from thaJeztah/bump_selinux
b48bbdd0 vendor: opencontainers/selinux v1.5.1, update deprecated uses
407e9f9d Add reading of information from cpuacct.usage_all
a57358e0 Merge pull request #2370 from lifubang/swap0
96310f04 Merge pull request #2377 from thaJeztah/ticks_simplify
402d645c Simplify ticks, as the value is a constant
a0ddd02b Merge pull request #2378 from thaJeztah/bump_logrus
12ba2a73 Merge pull request #2380 from thaJeztah/userns_sync_once
9df0b5e2 libcontainer: RunningInUserNS() use sync.Once
e8bece65 vendor: sirupsen/logrus v1.6.0
609ba79f Merge pull request #2371 from kolyshkin/criu314
6161d255 Merge pull request #2375 from tedyu/wait-lazy-close
a70f3546 let runc disable swap in cgroup v2
db29dce0 Close fd in case fd.Write() returns error
f6439a84 Merge pull request #2372 from thaJeztah/improve_error_readability
1b84a21c Don't print errors twice
64ca5481 libcontainer: simplify error message
2adfd20a libcontainer: don't double-quote errors
c52a598d Remove fatalf()
d2061ee5 Vagrantfile: install less packages
e9e31f70 Vagrantfile: use criu 3.14 from testing
9634a80c Dockerfile: bump criu to version π (3.14)
dd8d48ed Merge pull request #2358 from kolyshkin/fs2-nit
c3b0b13f cgroups/fs2: don't always parse /proc/self/cgroup
051d6705 Merge pull request #2363 from AkihiroSuda/vagrant-f32
85c44b19 Vagrantfile: use Fedora 32
c18485ad Merge pull request #2359 from cyphar/terminal-docs-subreaper
0a4dcc02 Merge pull request #2331 from lifubang/StartTransientUnit
eea0fbfe docs: terminals: mention subreaper requirement
bfa1b2aa check that StartTransientUnit and StopUnit succeeds
80e2d1f1 Merge pull request #2357 from kolyshkin/makefile-2
a1f007e0 Merge pull request #2340 from AkihiroSuda/fix-2339
772d0909 Makefile: rm RELEASE_DIR and SHELL
731947d5 Makefile: fix/clean install-man
df72e898 Makefile: rm uninstall* targets
a036e890 Makefile: add -mod=vendor to go test
2fe9e31a Makefile: don't use -mod=vendor if GO111MODULE=off
19ba7688 Makefile: test, localtest: no need to invoke make
fc54f6d7 Makefile: rm $(SOURCES), mark targets as PHONY
b7dadf0f Makefile: rm $(allpackages)
60c647e3 fs2: fix cgroup.subtree_control EPERM on rootless + add CI
53fb4a5e Merge pull request #2342 from kolyshkin/vagrant-rm-ct
799d9481 intelrdt: Add Cache Monitoring Technology stats
b19f9cec Merge pull request #2343 from lifubang/updateSystemdScope
0fd8d468 Merge pull request #2318 from lifubang/linuxResources
baa20026 Merge pull request #2327 from kolyshkin/cpt-err
084144a6 travis: run vagrant tests on the host
634e51b5 Merge pull request #2335 from kolyshkin/cgroupv2-cpt
10ba72a6 add integration test for runc update with systemd
49ca1fd0 Merge pull request #2347 from kolyshkin/v2-allow-all-devs
78ff2797 Merge pull request #2334 from kolyshkin/makefile
c420a3ec Merge pull request #2324 from kolyshkin/criu-freezer
5b4bff96 Merge pull request #2336 from kolyshkin/bats-core-2
44024426 Merge pull request #2330 from KentaTada/use-linuxnamespace-const
fbeed522 Makefile: add -mod=vendor
1fe709a0 Makefile: use $(FOO) not ${FOO}
d09a6ea9 Makefile: split long lines
64ec3557 Makefile: abstract go build flags
55d5c99c libct/mountToRootfs: rm useless code
20959b16 libcontainer/integration/checkpoint_test: simplify
1d4ccc8e fix data inconsistent when runc update in systemd driven cgroup v1
7682a2b2 fix data inconsistent when runc update in systemd driven cgroup v2
dbe44cbb merge branch 'pr-2348'
fb99bbc7 merge branch 'pr-2326'
44747953 libcontainer: use x/sys/unix instead of the hardcoded value
d4bc7c10 Dockerfile: use bats-core
32d52a0f tests/checkpoint: enable for Fedora 31 / cgroup v2
9280e356 checkpoint/restore: fix cgroupv2 handling
00a2844a tests/checkpoint: add simple c/r test for cgroupns
75a92ea6 cgroupv2: allow to set EnableAllDevices=true
cdce577d Merge pull request #2332 from kolyshkin/cgroupv2-cr
7376bdc1 Fix reference to badge
d5e68ceb tests/checkpoint.bats: fix test hang/failure
bf172ef4 tests/checkpoint.bats: consolidate requires checks
e216457e tests/checkpoint.bats: simplify status checks
69d599dd tests/checkpoint.bats: fix $? checks
46be7b61 Merge pull request #2299 from kolyshkin/fs2-init-ctrl
5c2a9782 Add CII Badge to README
5b38ef71 Merge pull request #2320 from kolyshkin/vgr
ab276b1c cgroups/fs2/Destroy: use Remove, ignore ENOENT
992d5cad travis: enable fs2 driver test on fedora
4b4bc995 CreateCgroupPath: only enable needed controllers
bb47e358 cgroup/systemd: reorganize
de113415 cgroups/fs2/CreateCgroupPath: nit
b5c1949f cgroups/fs2/CreateCgroupPath: reinstate check
813cb3eb cgroupv2: fix fs2 cgroup init
60eaed2e cgroupv2: move sanity path check to common code
dbeff894 cgroupv2/systemd: privatize UnifiedManager
88c13c07 cgroupv2: use SecureJoin in systemd driver
9c80cd67 cgroupv2: rm legacy Paths from systemd driver
b6cc3975 travis: rm BUILDTAGS
5f0424c9 Vagrantfile: rm disabling weak deps
cd5f4fd9 Merge pull request #2325 from kolyshkin/nits-2
3006db2b checkpoint: don't print error if --pre-dump is set
3de86133 libcontainer: use consts of Namespace from runtime-spec
480bca91 cgroups/fs2: move type decl to beginning
353e9177 cgroups/fs2: do not use securejoin
9ae21e8d MAINTAINERS: add Kir Kolyshkin
58f970a0 cgroups/fscommon: use errors.Is
af6b9e7f nit: do not use syscall package
b3a481eb libcontainer: fix Checkpoint wrt cgroupv2
bf0a8e17 Merge pull request #2322 from lifubang/forceCgroupNS
d0f9b9ce default join cgroup namespace in runc example
e4981c91 merge branch 'pr-2317'
d2a9c5da using default allowed devices when linux resources is null
7a978e35 Defer netns.Close() after error check
9f6a2d4d Merge pull request #2305 from kolyshkin/fs2-fix-default
191def70 Merge pull request #2308 from kolyshkin/exec-no-tty
d1e4c7b8 intelrdt: add mbm stats
56aca5aa Merge pull request #2295 from kolyshkin/integration-cgroups
5c6216b1 Merge pull request #2278 from iwankgb/memory.numa_stats
84583eb1 Enable integration tests in cgroupv2 env
0965c970 tests/integration: disable swap tests for v2
483f9a0c tests/integration: add some cgroup v2 tests
3dfa5434 tests/integration/update.bats: simplify file creation
b8b46419 tests/integration: rm kmem from upgrade tests
ba3ee7fe tests/integration/update.bats: rm obsoleted comment
3f6a31b7 tests/integration: simplify cgroup paths init
3ae93580 tests/integration: check_cgroup_value: simplify
13431e0e Merge pull request #2312 from tedyu/cgrp-path-rollback
614bb966 cgroupv2/systemd: Properly remove intermediate directory
939bed2a runc exec: don't enable terminal unless -t is set
ccbb3364 Merge pull request #2304 from AkihiroSuda/travis-do-not-ignore-cgroup2-failures
d65ba5fa Merge pull request #2303 from KentaTada/remove-unneeded-syscall-import
ea36045f cgroupv2: fix fs2 driver default path
16d21e2d travis: move `cgroup-v2` out of `allow_failures`
e58a406b libcontainer: remove unneeded import
7fa13b27 intelrdt: change parseCpuInfoFile to return struct
9a93b737 Merge pull request #2288 from kolyshkin/mem-swap
7fe0a98e Exposing memory.numa_stats
5c15da9e Merge pull request #2300 from kolyshkin/fix-max
568cd62f cgroupv2: only treat -1 as "max"
c86be8a2 cgroupv2: fix setting MemorySwap
d3fdacb9 Merge pull request #2296 from KentaTada/update-readme-for-go1.13
a4bbc39d Merge pull request #2297 from giuseppe/cgroups-use-newstats
8b7ac5f4 libcontainer: use cgroups.NewStats
d5e91b1c Merge pull request #2289 from AkihiroSuda/fix-TestGetContainerStateAfterUpdate
0c7a9c02 Merge pull request #2294 from tklauser/unused-consts
6cda0eac Merge pull request #2293 from tedyu/restore-svr-close
f8f03700 README.md: update Go version to build
21d7bb95 Close criuServer so that even if CRIU crashes or unexpectedly exits, runc will not hang
3e678c08 Remove unused consts testScopeWait and testSliceWait
e4363b03 Merge pull request #2291 from kolyshkin/errors-unwrap-v2
ec8c6950 Merge pull request #2235 from Zyqsempai/add-hugetlb-controller-to-cgroupv2
b2272b2c libcontainer: use errors.Is() and errors.As()
c39f87a4 Revert "Merge pull request #2280 from kolyshkin/errors-unwrap"
4540b596 Fix TestGetContainerStateAfterUpdate on cgroup v2
0c6659ac Merge pull request #2261 from AkihiroSuda/vagrant-kvm
f8e13885 Merge pull request #2280 from kolyshkin/errors-unwrap
6ca9d8e6 Merge pull request #2283 from tedyu/runc-path-in-prefix
b26e4f27 Merge pull request #2284 from tedyu/criu-svr-close
e3e26caf Merge pull request #2276 from kolyshkin/criu-v2
22a2c9a4 Merge pull request #2282 from kolyshkin/cgroupv2-getpaths
49896ab0 Avoid double close of criuServer
d02fc484 isPathInPrefixList return value should be reverted
8d7977ee libct/isPaused: don't use GetPaths from v2 code
12e156f0 libct.isPaused: use errors.Unwrap
272c83e1 libct/cgroups: use errors.Unwrap
bd737f1e libct/cgroups/fs: use errors.Unwrap
d2dfc635 libct/cgroups/fs2: use errors.Unwrap
e4e35b8d libct/cgroups/fscommon.WriteFile: use errors.Unwrap
66778b3c libct/setKernelMemory: use errors.Unwrap
b8eed86e vagrant: switch from VirtualBox to KVM + increase HW resources
fc840f19 cgroupv2: don't use GetCgroupMounts for criu c/r
9ec5b03e Merge pull request #2259 from adrianreber/v2-test
8221d999 Merge pull request #2279 from masters-of-cats/freezer
92a3f80e Merge pull request #2203 from mrunalp/systemd_conn_cleanup
2abc6a36 Actually check for syscall.ENODEV when checking if a container is paused
3e99aa36 Fix checkpoint/restore tests on Fedora 31
9a0184b1 cgroup2: use CRIU's new freezer v2 support
d05e5728 systemd: Lazy initialize the systemd dbus connection
33c6125d systemd: Export IsSystemdRunning() function
4a9e1747 Merge pull request #2234 from thaJeztah/debian_buster
dca34a04 Dockerfile: switch to "buster" variant (current stable)
48bf88c4 Dockerfile: prevent busting build-cache for busybox rootfs
a5963876 Dockerfile: sort dependencies, and cleanup apt cache
c4821c2b Dockerfile: set DEBIAN_FRONTEND=noninteractive
201152a9 Dockerfile: use build-args to allow overriding versions
8df45c89 Merge pull request #2268 from AkihiroSuda/vendor-20200325
ad6d577a travis: run `make verify-dependencies` with Go 1.14.x
dfc1b0cd update vendor
f1eea905 Merge pull request #2275 from kolyshkin/scan-nits
53ad1d51 Merge pull request #2256 from kolyshkin/mountinfo-alt
75ff40cd Merge pull request #2273 from kolyshkin/v2-untangle
aab2c8ba libcontainer/intelrdt: optimize parseCpuInfoFile
0af5cd20 Nit: fix use of bufio.Scanner.Err
d4a6a1d9 Merge pull request #2258 from masters-of-cats/eintr-retry
b45db5d3 libcontainer/cgroup: obsolete Get*Cgroup for v2
a949e4f2 cgroupv2: UnifiedManager.Apply: simplify
5406833a cgroupv2/systemd: add getv2Path
cebef0ee Merge pull request #2272 from kolyshkin/cgroupv2-max
ec1f957b cgroupv2: don't use getSubsystemPath in Apply
6905b721 cgroupv2: use "max" for negative values
96596cbb Merge pull request #2270 from kolyshkin/systemd-no-kmem
a675b5eb cgroupv2: don't try to set kmem for systemd case
be51398a Merge pull request #2193 from milkwine/fix-readSync
a7ee31fa Merge pull request #2260 from adrianreber/leave-running
7de5db3d Merge pull request #2263 from kolyshkin/nits
cc183ca6 Merge pull request #2242 from AkihiroSuda/vendor-systemd
4e6d8a0f Merge pull request #2267 from tedyu/runner-destroy
3087d43b Merge pull request #1826 from jingxiaolu/fix_specconv_process_nil
07bd2809 Merge pull request #2257 from kolyshkin/no-signal
0a7762c6 Avoid duplicate calls to runner#destroy
1797622f Merge pull request #2264 from kolyshkin/dockerfile
dd7b3461 libct/msMoveRoot: benefit from GetMounts filter
fc4357a8 libct/msMoveRoot: rm redundant filepath.Abs() calls
dce0de89 getParentMount: benefit from GetMounts filter
81d8452e libct/TestFactoryNewTmpfs: benefit from GetMounts
c7ab2c03 libcontainer: switch to moby/sys/mountinfo package
3147c320 Switch to golang 1.13, drop unsupported versions
88a02447 Dockerfile: add -f to curl
a572216f libcontainer/intelrdt: rm fmt.Sprintf
5542a2c7 libcontainer/cgroups: GetAllPids: optimize
12dc475d libcontainer: simplify createCgroupsv2Path
648295be Skip test for cgroups v2
f34eb2c0 Retry writing to cgroup files on EINTR error
87712d28 checkpoint: remove error message with --leave-running
34d47176 fix readSync
0e062a78 Remove signalmap, use unix.SignalNum
939cd0b7 Merge pull request #1737 from wking/remove-procConsole-comment
88474967 Merge pull request #1974 from openSUSE/unreachable-code
525b9f31 Merge pull request #2248 from AkihiroSuda/fix-cgroupv2-conversion
492d525e vendor: update go-systemd and godbus
981dbef5 Merge pull request #2226 from avagin/runsc-restore-cmd-wait
a15d2c3c merge branch 'pr-2073'
9167393c merge branch 'pr-2254'
89c108b1 Makefile: add selinux and apparmor build tags
69f6f32f README, travis.yml: rm ambient tag
8615da6f Merge pull request #1999 from lifubang/rootlesspath
167e33ca Merge pull request #1807 from giuseppe/notify-no-block
25fd4a67 sd-notify: do not hang when NOTIFY_SOCKET is used with create
aa269315 cgroup2: add CpuMax conversion
64e9a979 cgroup2: fix conversion
b477a159 Remove unreachable code paths
7d6e091f fix error when there is --root and XDG_RUNTIME_DIR env
0ff53526 Merge pull request #2252 from pkagrawal/2251-fix
71dfb559 Merge pull request #2238 from tedyu/init-proc-err-ret
89a87adb Changed hugetlb pagesizes info source
d804611d Added failcnt stats
62cfad97 specconv: add a test case to check null spec.Process
5b2b138d Synchronize the call to linuxContainer.Signal()
957da1f9 Use named error return for initProcess#start
bbaba4c0 Merge pull request #2228 from cpuguy83/no_whiches
2864bf46 Merge pull request #1877 from KentaTada/add-rootless-testpath-in-makefile
777f97d8 Run verify-dependencies only on go1.x
83f9b889 Don't add git utils to go.mod in CI
f7edcc3a Remove refrences to vndr
a08ab87f Make CI script to verify that vendor is in sync
df583b4c Fix file permissions for mounts.bats
38273546 Update spec test to use go.mod
69e8fb2a Add support for GO Modules
fc5759cf Merge pull request #2222 from cyphar/update-travis
af3a81e4 Add rootless testpath in Makefile
6503438f Merge pull request #2212 from Zyqsempai/2211-convert-blkio-weight-properly
c4730fa6 Merge pull request #2230 from thaJeztah/update_selinux_v1.3.1
42bfdf5f Use "command -v" shell builtin instead of "which"
93e5c4d3 merge branch 'pr-2232'
b6657fc3 Merge pull request #2231 from thaJeztah/nominate_akihiro
d8953334 vendor: update opencontainers/selinux v1.3.3
22e00ddc vendor: update golang.org/x/sys 52ab431487773bc9dd1b0766228b1cf3944126bf
c295a633 vendor: update opencontainers/selinux v1.3.1
3b7e32fe Merge pull request #2210 from Zyqsempai/2164-remove-deprecated-systemd-resources
7f37afa8 Added HugeTlb controller for cgroupv2
98de8426 libcontainer: dual-license nsenter/cloned_binary.c
bc43c4bd MAINTAINERS: add Akihiro Suda to maintainers
688cf6d4 merge branch 'pr-2223'
0f32b03d merge branch 'pr-2192'
13b1603f Merge pull request #2224 from kolyshkin/systemd-props
4b8134f6 Convert blkioWeight to io.weight properly
1cd71dfd systemd properties: support for *Sec values
2a81236e Document using annotations to set systemd props
4c5c3fb9 Support for setting systemd properties via annotations
81ef5024 Merge pull request #2213 from Zyqsempai/2166-convert-cpu-weight-poperly
7c439cc6 Added conversion for cpu.weight v2
269ea385 restore: fix a race condition in process.Wait()
f27c4e15 Fix the value corresponding to rlimitmap [key]
dc7d0bfa travis: update configuration
3b992087 Fix skip message for cgroupv2
e6555cc0 merge branch 'pr-2184'
e0385902 README.md: modify the explanation of make flags
ff107ee0 merge branch 'pr-2190'
7d23d1e1 Update README.md
0061cad8 Adding .pdf of audit
2b5730a5 Merge pull request #2221 from inductor/feature/fix_path_security
e4c4935a Merge pull request #2217 from cyphar/release-rc10
ed4a3e9b Apply review
c8ba9853 Fix path for security report line
e4de2b25 VERSION: back to development
dc9208a3 VERSION: update to 1.0.0~rc10
2fc03cc1 Merge pull request #2207 from cyphar/fix-double-volume-attack
3291d66b rootfs: do not permit /proc mounts to non-directories
f6fb7a03 merge branch 'pr-2133'
5b96f314 Exchanged deprecated systemd resources with the appropriate for cgroupv2
cf9b7c33 Fix MAJ:MIN io.stat parsing order
709377ca Merge pull request #2198 from AkihiroSuda/criu-master
55f8c254 temporarily disable CRIU tests
5c20ea14 fix merging #2177 and #2169
5cc0deaf Merge pull request #2169 from AkihiroSuda/split-fs
2b52db75 Merge pull request #2177 from devimc/topic/libcontainer/kata-containers
a88592a6 Merge pull request #2185 from liggitt/exec-race
8541d9cf Fix race checking for process exit and waiting for exec fifo
52951a7c Fix race in tty integration test with slow startup
8ddd8920 libcontainer: add method to get cgroup config from cgroup Manager
cd7c59d0 libcontainer: export createCgroupConfig
7496a968 merge branch 'pr-2086'
201b0637 merge branch 'pr-2141'
e1b5af06 Merge pull request #2161 from AkihiroSuda/makefile-overrride-docker
ec49f98d fs2: support legacy device spec (to pass CI)
88e8350d cgroup2: split fs2 from fs
5e636953 merge branch 'pr-2174'
8bb10af4 Merge pull request #2165 from AkihiroSuda/travis-f31
41a20b58 Expose network interfaces via runc events
48b055c4 Makefile: allow overriding `docker` command
c35c2c9c merge branch 'pr-2172'
42690e68 Make event types public
2186cfa3 Merge pull request #2168 from AkihiroSuda/ebpf-fix-rlimit
faf1e44e cgroup2: ebpf: increase RLIM_MEMLOCK to avoid BPF_PROG_LOAD error
46def4cc Merge pull request #2154 from jpeach/2008-remove-static-build-tag
b133feae Merge pull request #2145 from AkihiroSuda/ebpf
ccd4436f .travis.yml: add Fedora 31 vagrant box (for cgroup2)
faf673ee cgroup2: port over eBPF device controller from crun
e57a7740 Merge pull request #2149 from AkihiroSuda/cgroup2-ps
d239ca84 Merge pull request #2148 from AkihiroSuda/cg2-ignore-cpuset-when-no-config
03cf145f Merge pull request #2159 from AkihiroSuda/cgroup2-mount-in-userns
f04fb998 Merge pull request #2160 from AkihiroSuda/cgroup2-no-proc-cgroups
74a3fe5d cgroup2: do not parse /proc/cgroups
9c81440f cgroup2: allow mounting /sys/fs/cgroup in UserNS without unsharing CgroupNS
13919f5d Remove the static_build build tag.
c4d8e168 Merge pull request #2140 from crosbymichael/fs-unified
792af40d Merge pull request #1929 from kkallday/patch-1
8790f243 Merge pull request #2147 from AkihiroSuda/iov2-remove-v1-code
2cd9ba23 Merge pull request #2146 from AkihiroSuda/doc-not-prod-ready
dbd771e4 cgroup2: implement `runc ps`
9996cf7d README.md: clarify cgroup2 support is not ready for production
d918e7f4 cpuset_v2: skip Apply when no limit is specified
033936ef io_v2.go: remove blkio v1 code
a610a848 criu: Ensure other users cannot read c/r files
4e370170 Merge pull request #2139 from rst0git/desc-permisions
b28f58f3 Set unified mountpoint in find mnt func
f017e0f9 checkpoint: Set descriptors.json file mode to 0600
c1485a1e merge branch 'pr-2134'
1b8a1eee merge branch 'pr-2132'
ba16a38b Merge pull request #2135 from mrueg/security
4be50fe3 SECURITY: Add Security Policy
2111613c VERSION: back to development
d736ef14 VERSION: update to 1.0.0-rc9
cad42f6e Merge pull request #2130 from cyphar/apparmor-verify-procfs
d463f648 *: verify that operations on /proc/... are on procfs
9aef5044 vendor: update github.com/opencontainers/selinux
28e58a0f Support different field counts of cpuaact.stats
e63b797f Handle ENODEV when accessing the freezer.state file
84373aaa Add SCMP_ACT_LOG as a valid Seccomp action (#1951)
3e425f80 Merge pull request #2129 from crosbymichael/proc-mount
331692ba Only allow proc mount if it is procfs
7507c64f Merge pull request #2041 from jburianek/notify-socket-permissions
bf27c2f8 Merge pull request #2126 from flynn/fix-nsenter-unsupported
af7b6547 libcontainer/nsenter: Don't import C in non-cgo file
6c055520 Merge pull request #2125 from giuseppe/mount-cgroups
267490e3 Merge pull request #2010 from lifubang/checkpointrootless
e7a87dd2 Merge pull request #2098 from adrianreber/master
718a566e cgroup: support mount of cgroup2
a6606a7a Merge pull request #2029 from thaJeztah/bump_dependencies
115d4b9e bump golang/protobuf v1.0.0
85c02f3f bump coreos/go-systemd v19, godbus/dbus v5.0.1
21498b8e bump mrunalp/fileutils 7d4729fb36185a7c1719923406c9d40e54fb93c7
eb86f603 bump syndtr/gocapability d98352740cb2c55f81556b63d4a1ec64c5a319c2
1150ce9c bump urfave/cli v1.20.0
8e4f645f bump docker/go-units v0.3.3
0fc06623 bump cyphar/filepath-securejoin v0.2.2
414a39de bump containerd/console 0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7f
de24d733 bump github.com/pkg/errors 0.8.1
4be3c48e Reformat vendor.conf and pin all deps by git-sha
0fd4342a Merge pull request #2028 from thaJeztah/bump_golang_versions
92ac8e3f Merge pull request #2113 from giuseppe/cgroupv2
524cb7c3 libcontainer: add systemd.UnifiedManager
ec111368 libcontainer, cgroups: rename systemd.Manager to LegacyManager
1932917b libcontainer: add initial support for cgroups v2
92d851e0 Merge pull request #2123 from carlosedp/riscv64
4316e4d0 Bump x/sys and update syscall to start Risc-V support
51f2a861 Merge pull request #2122 from AkihiroSuda/cleanup
0bc069d7 nsenter: fix clang-tidy warning
b225ef58 nsenter: minor clean up
dd075602 Merge pull request #2120 from rhatdan/master
e4aa7342 Rename cgroups_windows.go to cgroups_unsupported.go
c61c7370 Merge pull request #2103 from sipsma/cgnil
68d73f0a Merge pull request #2107 from sashayakovtseva/public-get-devices
f061842f Merge pull request #2119 from KentaTada/fix-proc-settings
c740965a libcontainer: update masked paths of /proc
3525edde Merge pull request #2117 from filbranden/detection1
f7b65885 Merge pull request #2116 from filbranden/running1
518c8558 Remove libcontainer detection for systemd features
4ca00773 Update vendored dependencies to remove go-systemd/util
588f040a Avoid the dependency on cgo through go-systemd/util package
afc24792 Make get devices function public
9c822e48 cgroups/fs: check nil pointers in cgroup manager
1712af0e man: fix man-pages
2e943784 Merge pull request #2094 from sipsma/2093-nodotudev
44f9ec13 Merge pull request #2089 from anx-astocker/master
f08cdaee Skip searching /dev/.udev for device nodes.
808e809f doc: First process in container needs `Init: true`
80d35c7c Merge pull request #2082 from AkihiroSuda/blkio-kernel50
dd8b9b14 Merge pull request #2081 from AkihiroSuda/criu312
9ae79017 Merge pull request #2080 from zhlhahaha/pr_id
5e0e67d7 fix permission denied
351bfb4b integration: remove blkio.weight (unavailable in kernel 5.0)
7e678625 Bump CRIU to 3.12
68cc1a77 Update busybox source and fix runc exec bug
6cccc176 Merge pull request #2075 from KentaTada/fix-bash-completion
371d13c9 Update bash completion for v1.0.0 release
f4982d86 Merge pull request #2074 from odinuge/dep/libseccomp-golang
652297c7 Update dependency libseccomp-golang
7a9ffa89 Change the permissions of the notify listener socket to rwx for everyone
e7831f2a Update to Go 1.12 and drop obsolete versions
2e8efc1b add prompt when rootless users have no read access to runc bin
472fe623 criu image path permission error in rootless checkpoint
056909bd Adds note about user ns for rootless containers
d71b3f53 libcontainer/sync: Drop procConsole transaction from comments
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Updating to the latest 19.03 commits:
88820a4793 Merge pull request #41287 from thaJeztah/19.03_backport_bump_netns
dae08c333e vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
93cb737687 [19.03] vendor: vishvananda/netns 0a2b9b5464df8343199164a0321edf3313202f7e
7d597ee2c9 Merge pull request #41273 from thaJeztah/19.03_backport_swagger_fixes
22c458b67c Merge pull request #41274 from thaJeztah/19.03_backport_Double_RLock
8b97280f11 Merge pull request #41279 from thaJeztah/19.03_bump_buildkit
eda52d433e [19.03] vendor: moby/buildkit v0.6.4-28-gda1f4bf1
168254fcfa Merge pull request #41277 from AkihiroSuda/rootlesskit-0.10.0-1903
9dc455dffb bump up rootlesskit to v0.10.0
c200868fa2 Merge pull request #41271 from thaJeztah/19.03_backport_remove_dockerproject_from_tests
9eade7d03c docs: API v1.39: move system version response to definitions
4685e9ef72 docs: API v1.40: move system version response to definitions
d8f22d0307 swagger: move system version response to definitions
32366de5f9 plugin: fix a double RLock bug
ad0278f002 docs: API v1.39: fix type for BuildCache CreatedAt and LastUsedAt
cb8b7a282d docs: API v1.40: fix type for BuildCache CreatedAt and LastUsedAt
e1ae07b7a0 swagger: fix type for BuildCache CreatedAt and LastUsedAt
d49278cc17 Merge pull request #41269 from thaJeztah/19.03_update_buildkit
892c228219 Remove apt.dockerproject.org from test
a7e309944b Merge pull request #41248 from thaJeztah/19.03_backport_swagger_updates
765245d54b [19.03] vendor: moby/buildkit v0.6.4-26-ga1e4f48e
2d4bfdc789 Merge pull request #41081 from thaJeztah/19.03_backport_fix_sandbox_cleanup
b990b6c2b0 Merge pull request #41235 from thaJeztah/19.03_backport_bump_golang_1.13.14
4d9397c268 swagger: sync updates to v1.39
51bd95dc95 swagger: sync updates to v1.40
d5ba93575c docs: sync API v1.40 swagger formatting with current version
12b7746a84 docs: sync API v1.39 swagger formatting with current version
0c6bdf5974 docs: add example calculations to container stats API
630185b4ae swagger: add DeviceRequests to container create, inspect example
d7423180e7 swagger: move NetworkingConfig to definitions
c30ff6885e swagger: reformat, and wrap to ~80-chars
7005841048 swagger: clarify the meaning of Image field in ContainerInspect endpoint
1608292c09 Bump Golang 1.13.14
1763b4e88b Bump Go 1.13.13
5e8ab898c7 Merge pull request #41222 from thaJeztah/19.03_bump_buildkit
23d47bd12e [19.03] vendor: moby/buildkit v0.6.4-20-g4cb720ef
789bd1c67b Merge pull request #41192 from ameyag/19.03-hcsshim-vndr
0eaa22b95d Merge pull request #41185 from thaJeztah/19.03_bump_buildkit
9d6053eda2 Revendor hcsshim to fix image import bug
589b07262c vendor: Microsoft/hcsshim v0.8.9
e7c2b106ec [19.03] vendor: buildkit dc6afa0f755f6cbb7e85f0df4ff4b87ec280cb32 (v0.6.4-15-gdc6afa0f)
a40b877fbb Merge pull request #41133 from roidelapluie/bsd2
7dd9fdcfbe Enable client on netbsd and dragonfly
9dc6525e61 Merge pull request #41124 from thaJeztah/19.03_bump_libnetwork
b4ca19a992 vendor: docker/libnetwork 026aabaa659832804b01754aaadd2c0f420c68b6 (bump_19.03 branch)
ae158b371c allocateNetwork: fix network sandbox not cleaned up on failure
And the following cli changes:
80fd48bcb Merge pull request #2635 from thaJeztah/19.03_backport_bump_golang_1.13.14
e5e227672 Bump Golang 1.13.14
79a6c494e Merge pull request #2633 from thaJeztah/19.03_backport_bump_golang_1.13.13
5e05ef345 Merge pull request #2631 from cpuguy83/19.03_handle_close_error_on_save
64d25cc6e Bump Golang 1.13.13
1b96aa29c Merge pull request #2629 from thaJeztah/19.03_backport_circleci_updates
aaf117052 Handle errors on close in config file write.
14010c88b config: preserve ownership and permissions on configfile
3d64a5d4b Move circle.yml to .circleci/config.yml
d0b656088 CircleCI: update docker versions used in CI
b0a78cc1a Merge pull request #2623 from s0j/s0j_19.03_bump-crypto-readconsole
ab8bd02fc vendor: golang.org/x/crypto 2aa609cf4a9d7d1126360de73b55b6002f9e052a
18d6f8f6b Merge pull request #2620 from thaJeztah/19.03_backport_builder_comment_info
7498d9cc4 docs/builder: add note about handling of leading whitespace
cb59cafc3 Merge pull request #2609 from thaJeztah/19.03_backport_docs_fixes
541f050e1 Merge pull request #2608 from thaJeztah/19.03_backport_vendor_bumps
ac7723056 docs: fix example output for docker plugin ls
9c9ff4369 list state `ready` for filtering in stack_ps.md
e3b981c18 vendor konsorten/go-windows-terminal-sequences v1.0.3
ec276f3a6 vendor: mitchellh/mapstructure v1.0.0
c9125cc39 vendor: beorn7/perks v1.0.1
0ed913b88 Merge pull request #2592 from thaJeztah/19.03_backport_logout_config_out_of_sync2
5a12f90b4 Don't filter out registries to logout from with config file contents
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This update comprises the following commits:
ff3fbc9d55 Merge pull request #655 from tiborvass/bump_19.03.13-beta2
475484e351 Bump VERSION to 19.03.13-beta2
321dc6b4bd Merge component 'engine' from git@github.com:moby/moby 19.03
9b85caeb7c Merge pull request #41287 from thaJeztah/19.03_backport_bump_netns
b82e19207e vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
69223588df [19.03] vendor: vishvananda/netns 0a2b9b5464df8343199164a0321edf3313202f7e
32c58830e3 Merge pull request #654 from tiborvass/bump_19.03.13-beta1
f2cad45d0a Merge branch '19.03' of github.com:docker/docker-ce into 19.03
a2fa6c7fb3 Merge component 'engine' from git@github.com:moby/moby 19.03
1015e8af79 Merge component 'engine' from git@github.com:moby/moby 19.03
1d7d9d001f Merge pull request #41273 from thaJeztah/19.03_backport_swagger_fixes
3087b3114f Merge pull request #41274 from thaJeztah/19.03_backport_Double_RLock
520fc10363 Merge pull request #41279 from thaJeztah/19.03_bump_buildkit
120511a214 Merge pull request #642 from tiborvass/19.03-switch-to-moby
a4f55cdbab [19.03] vendor: moby/buildkit v0.6.4-28-gda1f4bf1
bee145aad2 Merge component 'engine' from git@github.com:docker/engine 19.03
b768eabf04 Merge component 'engine' from git@github.com:docker/engine 19.03
4e9725b988 Merge pull request #41277 from AkihiroSuda/rootlesskit-0.10.0-1903
c13dfa3f39 bump up rootlesskit to v0.10.0
b714998077 Merge pull request #41271 from thaJeztah/19.03_backport_remove_dockerproject_from_tests
009eca42ef docs: API v1.39: move system version response to definitions
4f25b9eed4 docs: API v1.40: move system version response to definitions
0ea6312f6d swagger: move system version response to definitions
9f4029e6dc plugin: fix a double RLock bug
dff89f8092 docs: API v1.39: fix type for BuildCache CreatedAt and LastUsedAt
95599eb2e6 docs: API v1.40: fix type for BuildCache CreatedAt and LastUsedAt
81bd78b07a swagger: fix type for BuildCache CreatedAt and LastUsedAt
d9cb8734cf Merge component 'engine' from git@github.com:docker/engine 19.03
820098ff18 Merge pull request #41269 from thaJeztah/19.03_update_buildkit
0994e492c5 Remove apt.dockerproject.org from test
a49a4f288a Bump VERSION to 19.03.13-beta1
a89cfd520d Merge component 'engine' from git@github.com:docker/engine 19.03
dcaed39807 Upstream-commit: a7e309944b3bdefbca4186ce41a8374784133be2 Component: engine
422fa1b13e [19.03] vendor: moby/buildkit v0.6.4-26-ga1e4f48e
81dab2018b Merge component 'engine' from git@github.com:docker/engine 19.03
1490b1df51 Merge pull request #41081 from thaJeztah/19.03_backport_fix_sandbox_cleanup
c6c4809630 Merge component 'engine' from git@github.com:docker/engine 19.03
9eea25a62f Merge pull request #41235 from thaJeztah/19.03_backport_bump_golang_1.13.14
f224762af0 Merge component 'packaging' from git@github.com:docker/docker-ce-packaging 19.03
0850d19f24 Merge pull request #485 from thaJeztah/19.03_backport_remove_eoan
5ba0889c4a swagger: sync updates to v1.39
7d189e5b0b swagger: sync updates to v1.40
047a3b6ca8 docs: sync API v1.40 swagger formatting with current version
d5a51018d4 docs: sync API v1.39 swagger formatting with current version
69aae6c1db docs: add example calculations to container stats API
bf77a77bab swagger: add DeviceRequests to container create, inspect example
d43b66d55c swagger: move NetworkingConfig to definitions
c210a26d28 swagger: reformat, and wrap to ~80-chars
0d1edc403c swagger: clarify the meaning of Image field in ContainerInspect endpoint
f3b514426e Merge component 'cli' from git@github.com:docker/cli 19.03
07d59f4164 Merge pull request #2635 from thaJeztah/19.03_backport_bump_golang_1.13.14
289eec988f Remove Ubuntu 19.10 "Eoan" (EOL: 2020-07-17)
eeec8d3ba5 Remove Ubuntu 19.04 "Disco Dingo" (EOL: 2020-01-23)
02ab061844 Remove Fedora 30 (EOL: 2020-05-26)
391d22f0e0 Bump Golang 1.13.14
a033b71571 Bump Go 1.13.13
03ae74b5b7 Merge component 'packaging' from git@github.com:docker/docker-ce-packaging 19.03
20042180c1 Bump Golang 1.13.14
aaf10aa9c6 Merge pull request #482 from thaJeztah/19.03_backport_bump_golang_1.13.14
fc9fece6e1 Merge component 'packaging' from git@github.com:docker/docker-ce-packaging 19.03
d552a52dbb Bump Golang 1.13.14
887f0eb7c6 Merge pull request #479 from thaJeztah/19.03_backport_bump_golang
8a9e1bdc07 Merge component 'engine' from git@github.com:docker/engine 19.03
ab25bbca2f Merge component 'cli' from git@github.com:docker/cli 19.03
f56046026b Merge pull request #2633 from thaJeztah/19.03_backport_bump_golang_1.13.13
bbdb18fa3a Merge pull request #41222 from thaJeztah/19.03_bump_buildkit
a48c990d07 Merge component 'cli' from git@github.com:docker/cli 19.03
e1e647a270 [19.03] vendor: moby/buildkit v0.6.4-20-g4cb720ef
021a6048e6 Merge pull request #2631 from cpuguy83/19.03_handle_close_error_on_save
a6c6dce3a6 Bump Golang 1.13.13
a252aaae7a Merge component 'cli' from git@github.com:docker/cli 19.03
f19d902423 Merge pull request #2629 from thaJeztah/19.03_backport_circleci_updates
4e3a5637b4 Handle errors on close in config file write.
19d2ee3b78 config: preserve ownership and permissions on configfile
08fd87da44 Move circle.yml to .circleci/config.yml
45b3865643 CircleCI: update docker versions used in CI
c6012e45cc Update Golang 1.13.13
3a19c4a1df Merge component 'engine' from git@github.com:docker/engine 19.03
b636594b37 Merge pull request #41192 from ameyag/19.03-hcsshim-vndr
177165b75d Merge component 'engine' from git@github.com:docker/engine 19.03
d2e020dbd1 Merge component 'cli' from git@github.com:docker/cli 19.03
d0a4b67aee Merge pull request #41185 from thaJeztah/19.03_bump_buildkit
d4e6d9b301 Merge pull request #2623 from s0j/s0j_19.03_bump-crypto-readconsole
06d576d294 Merge component 'cli' from git@github.com:docker/cli 19.03
80e9882cdf vendor: golang.org/x/crypto 2aa609cf4a9d7d1126360de73b55b6002f9e052a
e0c24158ad Merge pull request #2620 from thaJeztah/19.03_backport_builder_comment_info
d7e86d9c77 Revendor hcsshim to fix image import bug
14ab1c306d vendor: Microsoft/hcsshim v0.8.9
03a47bb4c5 [19.03] vendor: buildkit dc6afa0f755f6cbb7e85f0df4ff4b87ec280cb32 (v0.6.4-15-gdc6afa0f)
fd33ebfc36 Merge component 'engine' from git@github.com:docker/engine 19.03
fb095d16b8 Merge pull request #41133 from roidelapluie/bsd2
d0a8d03b7b docs/builder: add note about handling of leading whitespace
b56ef36968 Merge component 'cli' from git@github.com:docker/cli 19.03
d2a8fe0e12 Merge pull request #2609 from thaJeztah/19.03_backport_docs_fixes
e453c06e79 Merge pull request #2608 from thaJeztah/19.03_backport_vendor_bumps
dac7a0fe9a docs: fix example output for docker plugin ls
8c8b82eeb3 list state `ready` for filtering in stack_ps.md
055ee582e3 vendor konsorten/go-windows-terminal-sequences v1.0.3
037e7383ec vendor: mitchellh/mapstructure v1.0.0
2f446000e0 vendor: beorn7/perks v1.0.1
8f8179e576 Enable client on netbsd and dragonfly
5b2eac44f7 allocateNetwork: fix network sandbox not cleaned up on failure
f620b6de75 components: use moby/moby instead of docker/engine
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
