| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is a significant update to lxc as autotools has been replaced
with meson.
Not all existing autotools options have meson equivalents, so there
may be differences in functionallity.
As part of this update, and unused features have been dropped, mainly
when the meson equivalent was not available.
Basic / core functionality has been tested with systemd, sysvinit
requires more work, and patches will be accepted to restore that
capability.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This CVE was fixed[1] in the container image go library skopeo is using
(vendoring). The current version of the image go module is v5.20.0 while
the fix landed since v3.0.0[2].
See RedHat's resolution[3] for more details.
[1] https://github.com/containers/image/issues/654
[2] https://github.com/containers/image/pull/669/commits/a3d69a4a89244803d2f5350aca6dd0fcbe444551
[3] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10214
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Files are sorted in lexicographic order. Moving podman-rootless.conf to
something greater then '00' would help with systems providing default
values in other configuration files that can be overridden by
podman-rootless.conf.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The local irqbalanced.service was written long before when there wasn't one in
upstream. Then upstream created temporary runtime directory /run/irqbalance in
its irqbalanced.service, but no one did this for this recipe. Which renders the
following error.
/usr/sbin/irqbalance[314]: Daemon couldn't be bound to the file-based socket.
This patch starts to use upstream irqbalance.service instead and remove the
local one.
root@qemux86-64:~# systemctl status irqbalanced
* irqbalanced.service - irqbalance daemon
Loaded: loaded (/lib/systemd/system/irqbalanced.service; enabled; preset: enabled)
Active: active (running) since Mon 2022-08-22 10:10:22 UTC; 3s ago
Docs: man:irqbalance(1)
https://github.com/Irqbalance/irqbalance
Main PID: 208 (irqbalance)
Tasks: 2 (limit: 263)
Memory: 1.4M
CGroup: /system.slice/irqbalanced.service
`-208 /usr/sbin/irqbalance --foreground
Aug 22 10:10:22 qemux86-64 systemd[1]: Started irqbalance daemon.
root@qemux86-64:~# ls -l /run/irqbalance/irqbalance208.sock
srwxr-xr-x 1 root root 0 Aug 22 10:10 /run/irqbalance/irqbalance208.sock
Signed-off-by: He Zhe <zhe.he@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Ceph-volume does not properly control key sizes.
Cherry-pick from github.com/ceph/ceph.git.
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
There is no need we can see for this dependency to be provided as such -
especially forcing this to using glibc.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
* the inc file was dropped in:
58f5ac6 kernel: drop 5.10 .inc
but this .bbappend still causes parsing error, because 5.10 recipes
were removed from oe-core
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping nerdctl to version v0.22.2-2-ge084a2d, which comprises the following commits:
013ebdc Bump github.com/containerd/nydus-snapshotter
37cb3fe Fix `can't get final child's PID from pipe` on rootless (v0.22.1 regression)
fbbf10e Bump github.com/compose-spec/compose-go from 1.3.0 to 1.4.0
7f94a17 fix(hosts): extra-host params should be 'domain:ip'
a4fd8fa go-ipfs (0.13.1) -> Kubo (0.14.0)
f3001be doc: readme and help msg about firewall plugin
0e81051 ps_linux_test.go: improve variable names
cae0f01 README.md: `nerdctl system prune` is now available
8f57e95 add label display support in ps subcommand
2dfa2a4 Bump github.com/compose-spec/compose-go from 1.2.9 to 1.3.0
d0fe7ab skip reconfig network when missing
83ce9a0 Add extra logging warning for log options
09bd981 Pass https://index.docker.io/v1/ to GetAuthConfig() for Docker Hub
17771d0 Refactor: Abstract the way to handle remote snapshotter
0ff788b Add the ability to inspect volume sizes
3676219 Bump github.com/containernetworking/cni from 1.1.1 to 1.1.2
8b6417c fix stats values
bcedaae optimize tests of stop the sleep container
014525f support system prune
81a9a9b add labels in container inspect using dockercompat mode
81095fb fix yaml pkg vulnerability
1bb09dd support network prune
bc68696 Add oom-score-adj option while running
3507d0b remove useless args from load
d7ba334 rewrite test of run with init flag
1f7ec3f Bump github.com/compose-spec/compose-go from 1.2.8 to 1.2.9
5ecf242 Bump github.com/containerd/go-cni from 1.1.6 to 1.1.7
cccf19e test fluentd log driver without build image
1199ac5 small refactor for rmAction
a4b51e2 bridge network use free subnet
e027ce4 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
0818f7d Bump docker/build-push-action from 3.0.0 to 3.1.0
a78de9a support --network=container:<contaienr> for sharing network namespace
df376b8 Remove duplicate host record when update the DNS
685371e TestRunWithJsonFileLogDriver: make log message more specific
357fdfd Fallback to Containerfile when Dockerfile is not present.
de3d05a README.md: clean up
e06e3a6 ignore force remove container error
4a7f6eb support force remove image
f2cc696 fix stats for no-stream
a7dd254 fix flaky test TestRunWithJsonFileLogDriver
663541c README.md: clean up
ad0e42f infoutil: make runc version output consistent with Docker
e016c55 infoutil: relax buildctl version format
2087827 fix found multiple IDs when container walker
0e07104 update buildg (0.3.0)
bd78358 update IPFS (0.13.1)
ddf5b5a update stargz-snapshotter (0.12.0)
8f5ac28 refactor container restart command
70826c7 update imgcrypt (1.1.6)
08f9f6b Display buildkit and runc version in nerdctl
2c5bd7f Log matches of log paths to understand TestRunWithJsonFileLogDriver flakiness
15decf3 wait for detached container running before exec
fa392af Add document about overlaybd
41c63f3 fix json file logging filenames
9c63c61 container exit should terminate tail logs
ff6e75f update unimplemented flags for run
28de2e3 support volume prune
a74e852 add update flag blkio-weight
eb3715a fix dockerfile local dir
e20c145 support image prune
79ed9ca TestRunCgroupV1: fix cgroup version check
d746ab9 fix broken deps for dbus
5e91753 add flag kernel-memory
9b4287e typo and return error
67e2ded remove failed container state
efd3961 adjust ps header
b35ae67 cli: implement -s/--size option for nerdctl ps command
e8127e6 docs: add nydus snapshotter description
f20cb34 Validate formats before ticking
8b5a0ec Bump github.com/containerd/nydus-snapshotter
fb3eb33 fix error message
5f41b41 support container prune
4637c99 add TabReader for test
4f9c3ed fix some error
86056b8 Enable staticcheck in golangci-lint
34e3ad8 feat: makes nerdctl available to pull nydus images
76fbdbe Support multiple tags in nerdctl build.
e56ac42 Fixed gosimple errors in issue #1134
afb0c57 bind-mounts: add rbind option defaultly
6a382f7 support stop-signal and stop-timeout
f9522ae support dns-search and dns-option for compose
486100d volume: set fstype to bind if mount options contains bind or rbind
eaf3354 remove invalid debug
50a8eaa show name for images
0b67272 support dns-search and dns-opt
2f79653 fix: using default resolver
2b5a45b add group-add flag for run
a5b0d1d go mod tidy
b1930a7 1117: specify needsLoading when output flag is specified.
abaa167 Bump github.com/compose-spec/compose-go from 1.2.7 to 1.2.8
7954e19 Bump github.com/ipfs/go-ipfs-http-client from 0.3.1 to 0.4.0
12aae30 Bump github.com/multiformats/go-multiaddr from 0.5.0 to 0.6.0
8b34083 Fix typo in instructions on how to run docker compat tests.
daea277 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
b1b226f Bump gotest.tools/v3 from 3.2.0 to 3.3.0
0bcefdc Update golangci-lint version to 1.46.2
063c025 fix stylecheck errors
75ff587 CI: unparallelize TestRunAddHost
1c191a1 add umask
676c5c3 Validation for nerdctl load to fail when stdin is empty.
1192a04 Fixed gosimple errors in issue #1134
02582d0 go.mod: golang.org/x/* master
e86deda go.mod: github.com/containerd/containerd v1.6.6 (=> v1.6.1-0.20220616041926-9c6154bff158)
c078e20 pkg/logging: refactor
92e3cc2 Initialize the log file to fix `nerdctl compose up` error
5c3aec6 add memory-reservation memory-swappiness
7fbafcb fix swap memory
261da0c Add GitLab Container Registry documentation
4f6b914 MAINTAINERS: add Zheao Li as a REVIEWER
04a8450 update IPFS (0.13.0)
8ac66ef update fuse-overlayfs (1.9)
21edc9d update runc (1.1.3)
ffdc0aa fix log-driver name not check error
8717e4f Implement fluentd logging driver
a817a8b add flag memory-swap
44c80db Adding tests for start and handling AkihiroSuda feedback
db4a505 Adding --attach flag to start
0b9e9cb add flag oom-kill-disable
404c532 [#868] Update moby/sys to fix the FreeBSD build
3b1df0e Bump github.com/docker/cli
d50fec4 Bump github.com/docker/docker
cfe8ca0 Bump github.com/moby/sys/mount from 0.3.2 to 0.3.3
6386775 update buildg (0.2.0)
26639fd update containerd (1.6.6)
35f60d6 go.mod: github.com/containerd/containerd v1.6.1-0.20220606171923-c1bcabb45419
8a36c0d persist default network config
bb3f9ee Bump github.com/vishvananda/netlink from 1.2.0-beta to 1.2.1-beta.2
eae4b2d Bump github.com/containernetworking/cni from 1.1.0 to 1.1.1
3007fc8 Bump github.com/containerd/go-cni from 1.1.5 to 1.1.6
b00fa84 fix squashes --add-host with the same ip
dd8a0ff Implement journald logging driver
f087279 Bump github.com/compose-spec/compose-go from 1.2.6 to 1.2.7
60b77c1 Bump github.com/containerd/cgroups from 1.0.3 to 1.0.4
96a3276 CI: TestRunCgroupV2: add --memory-swap=-1 for Docker with cgroup v2
5a47349 CI: skip TestRunCgroupConf for Docker
e077b38 CI: use GHA ubuntu-22.04 for cgroup2 tests
08924b9 docs/compose.md: update the compatibility information
423600f Bump github.com/compose-spec/compose-go from 1.2.5 to 1.2.6
793a95d enbale entrypoint as stringArray
feb1316 Bump github.com/compose-spec/compose-go from 1.2.4 to 1.2.5
193e8d6 Bump up buildg to v0.1.0
04f9b47 update BuildKit (0.10.3)
0aeed30 update runc (1.1.2)
fc87586 go.mod: golang.org/x/* master
f66b943 refactor TestRunIpcHost
b7d9eee create/run: add ipc flag to create and run commands
998f457 Bump github.com/docker/cli
47e7eb7 Bump github.com/docker/docker
773a413 Support interactive debugging of Dockerfile
d81dcf3 logging: ensure that MagicArgv1 is always argv1
004f2ff README.md: typo
70c90f1 Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0
7c3fd8f add bind-nonrecursive for mount
47ff895 fix flaky test TestComposeConfigWithComposeFileEnv
c5841dd pkg/taskutil: let StdinCloser implement io.Closer
c9881fd supporting COMPOSE_FILE environment variable
b4f2e5f Support logging in compose file
0fc816a Support for networks in compose files
0b9d48e Bump github.com/docker/docker
e031d13 update containerd (1.6.4)
abaa4d0 Support riscv64
49f6d78 Bump github.com/docker/cli
7e3dc43 Bump docker/build-push-action from 2.10.0 to 3.0.0
450486a Bump docker/login-action from 1.14.1 to 2.0.0
e11fb20 Bump docker/metadata-action from 3.8.0 to 4.0.1
d3e449a implement log opt with containerd logging driver
97ece6a enhancement restart policy
81528d5 support rename container
56b0f10 update BuildKit (0.10.2)
e258cda update RootlessKit (1.0.1)
489a521 update slirp4netns (1.2.0)
d73ef7a fix default driver capability for gpus
ed10fec Bump docker/metadata-action from 3.7.0 to 3.8.0
f853dc4 Bump github.com/containerd/go-cni from 1.1.4 to 1.1.5
18ea81f Fix `flag -t needs -i to be specified together` restriction
b2fa405 Makefile: avoid flattening `nerdctl-X.Y.Z-go-mod-vendor.tar.gz`
ff1aec4 info: add --mode=native to show full plugin info
a629145 update containerd (1.6.3)
62979d7 Bump gotest.tools/v3 from 3.1.0 to 3.2.0
6d1bfc6 fixes #1004 : Build image only when changes merged to master
10990ad Bump github.com/pelletier/go-toml from 1.9.4 to 1.9.5
dbc0ec5 Bump github.com/ipfs/go-ipfs-http-client from 0.3.0 to 0.3.1
c63982b Bump actions/checkout from 3.0.1 to 3.0.2
85ca787 [Carry 643] cp cmd
90a3a2c Bump github.com/tidwall/gjson from 1.14.0 to 1.14.1
8385be4 add test case for nerdctl inspect to check mounts field
a766555 show mounts info for nerdctl inspect
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We bumping to 1.24.x, along with the k3s changes, we update our
dependencies to allow a vendored build.
Dependencies were gathered via: go list -m all | sort | uniq > mod.all
And then processed to generate the SRC_URI fetches and relocations into
the build.
We also change our TAGS to avoid two different errors. btrfs
build restrictions:
package command-line-arguments
imports github.com/k3s-io/k3s/pkg/cli/agent
imports github.com/k3s-io/k3s/pkg/agent
imports github.com/k3s-io/k3s/pkg/agent/config
imports github.com/k3s-io/k3s/pkg/containerd
imports github.com/containerd/containerd/snapshots/btrfs/plugin:
build constraints exclude all Go files in github.com/k3s-io/containerd@v1.5.13-k3s1/snapshots/btrfs/plugin
And ctrd, which leads to the following (which is also
found on non Yocto / non-cross build k3s builds):
# github.com/containerd/containerd/pkg/cri/server
../../go/pkg/mod/github.com/k3s-io/containerd@v1.5.13-k3s1/pkg/cri/server/instrumented_service.go:36:9: cannot use &instrumentedService{?} (value of type *instrumentedService) as type grpcServices in return statement:
*instrumentedService does not implement grpcServices (missing ListPodSandboxStats method)
../../go/pkg/mod/github.com/k3s-io/containerd@v1.5.13-k3s1/pkg/cri/server/service.go:156:9: cannot use c (variable of type *criService) as type CRIService in return statement:
*criService does not implement CRIService (missing ListPodSandboxStats method)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping crun to version 1.4.5-74-gba3cb60, which comprises the following commits:
5af21e2 linux: fix idmap annotation
c75b58d wasm,wasmedge: drop support for experimental WasmEdgeProcess
22c6181 linux: fix creating devices in the rootfs
6f46ad5 chore(wasmedge): remove legacy option
0de6bb2 fix unknown type name 'uint64_t'
3a16555 linux: fallback to netlink to setup lo device
1a3f8f1 linux: use $PATH for newgidmap and newguidmap
74679c6 krun: use library soname in dlopen
0130f08 krun: limit the number of vCPUs to 8
2a4458d linux: fallback to tmpfs mount if umount fails
fd33331 artifacts, centos9-build: add libprotobuf-c-dev for protobuf headers
77f5c99 linux: devices mounts should have NOEXEC and NOSUID
c923cec tests: add wasmedge build test
33f900c fix(wasmedge): breaking changes in wasmedge c api
699757b test, podman: skip podman pod create --share-parent test
eb4ff94 handler: move notifer for phase HANDLER_CONFIGURE_AFTER_MOUNTS just after finalizing mounts
b02a68d linux: honor mount mappings
8d774c5 libocispec: sync from upstream
38f60b1 ci: re-enable and fix clang-format
d21594a *.c: clang-format
9ed3c1b mono: remove incorrect wasm headings from mono docs
c44937b tests: disable "podman kill paused container"
965129b test/check: fix wrong argument
17d1c16 cgroup: make target cgroup threaded if needed
77d2ac5 readme: show crun logo
2ebd7fc Adding crun logo SVG file
ec9ab49 container, exec: honor process user's uid while setting HOME env
d8a0c7f tests/podman/Dockerfile: build on fedora:35 and fedora:36
21de997 copy_recursive_fd_to_fd(): copy the whole file
3445f0f tests: add tests for covering '--pid-file' and '--no-new-privs' options
e48db34 mono: add documentation and tryout example
f8b85e8 windows/mono: bind mount windows dlls and runtime config from host
0df040d handler: add support for HANDLER_CONFIGURE_MOUNTS for handlers
6b3b4dc linux: add public api libcrun_container_do_bind_mount for adding ctr mounts
009430c windows: add mono based native dotnet handler
eb48a65 cri-o: bump golang to 1.18.1 for capnproto.org/go/capnp
6cc7b03 test: set /crun as safe directory on containers running the tests
2f13875 linux: create missing cwd
1e30424 cgroup: remove tun/tap from the default allow list
6904cf4 cgroup: add support for cpu.idle
2824e92 libocispec: sync from upstream
70deaf0 podman-tests: change default log-driver to k8s-file instead of journald
c381048 NEWS: tag 1.4.5
359e26d crun.1: regenerate
f0cd1a7 .github: fix CI
9998f00 linux: hooks inherit env if not specified
9e361c8 tests: specify the user in the form UID[:GID]
4a61eb1 github: fix CI
db77ef2 libcrun: fix typo
69289ce tests: add an environment variable
81ccd00 criu: add support for different manage cgroups modes
27b7fe5 tests: specify an additional capability to add to the process
cdbc357 tests: delete multiple containers
a39b07d podman: skip authenticated push
0ce2f2d exec: fix double free
5a528f4 docs: fix dependencies on RHEL/CentOS 8 section
cd93941 git-version-gen: fix version comparison
38256da tests: disable failing CRI-O tests
6521fcc NEWS: tag 1.4.4
1aeeed2 exec: --cap do not set inheritable capabilities
b847d14 spec: do not set inheritable capabilities
ca75d1f feat(terminal-receiver): make terminal interactive
ed6e424 remove duplicate "libtool" from install commands
d10fe74 linux: resolve symlinks in bind mounts
ba17004 tests, clang-check: install git
1a4fae9 rhcontainerbot/podman-next COPR autobuild
77df89b docs: update known issues with CRI and side-cars
164d753 wasm, kubernetes: support wasm for kubernetes infrastructure with side-cars
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
crun: update runtimespec
Bumping runtime-spec to version v1.0.2-100-g8d0d6d4, which comprises the following commits:
0da1600 fix rfc link
9d1130d IDMapping field for mount point
fc985aa config-linux: update type of LinuxCPU.Idle to *int64
bc545ec schema: add cpu idle
1fef707 Update Windows CPU comments
600a8bd cgroup ownership: clarify that some files may not exist
b8dbce9 update idle type of LinuxCPU from *int64 to int64
9d363b3 config-linux: add idle option for container cgroup
b05eb53 typo: seccompFD -> seccompFd
0608c1f Switch to GitHub Actions, CODEOWNERS, etc.
f4ef391 specify cgroup ownership semantics
104385d config-linux: MAY reject an unfit cgroup
411082c add youki to implementations.md
6641127 alphabetize the implementation list.
84251a4 specs-go: export LinuxBlockIODevice
3f30167 schema: make with golang 1.16
34a7544 schema: update README.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Bumping umoci to version v0.4.7-101-g4270d5b, which comprises the following commits:
d8f4f12 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We drop our gpme patch, since it is no longer needed.
Bumping skopeo to version v1.8.0-75-gb95e0811, which comprises the following commits:
61593fcc Revert "Change a repo used for sync tests"
62158a58 Vendor unreleased c/image with OCI artifact support
7900440a Use errors.As() instead of direct type checks
c654871b Remove uses of pkg/errors
7abcca93 Modify error messages on failures to close
f7df4a08 Introduce noteCloseFailure, use it for reporting of cleanup errors
33116235 Bump github.com/stretchr/testify from 1.7.5 to 1.8.0
89089f3a Update IRC information
ba6af16e Use bytes.ReplaceAll instead of bytes.Replace(..., -1)
2024e2e2 Update & fix skopeo multiarch image Containerfiles
774ff9d1 Cirrus: Migrate multiarch build off github actions
899d3686 Bump github.com/stretchr/testify from 1.7.4 to 1.7.5
2f77d213 Bump github.com/stretchr/testify from 1.7.2 to 1.7.4
2009d1c6 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
fe022809 [CI:DOCS] skopeo.spec.rpkg: Fix syntax highlighting
71d450cb [CI:DOCS] Makefile: include cautionary note for rpm target
37388544 CoPR: Autobuild rpm on rhcontainerbot/podman-next
38f4b9d0 Enable schema1 support on the test registries
1b5fb465 Update for docker/distribution CLI change
e9ed5e04 Use an updated CI image
bbdabebd Change a repo used for sync tests
92c0d0c0 Use testing.T.Setenv instead of os.Setenv in tests
a3a72342 Update go.mod to Go 1.17
e9379d15 Bump github.com/docker/docker
69840fd0 Bump github.com/stretchr/testify from 1.7.1 to 1.7.2
63622bc7 Bump github.com/containers/ocicrypt from 1.1.4 to 1.1.5
6b584598 Cirrus: use Ubuntu 22.04 LTS
00a58e48 Update to github.com/opencontainers/runc >= 1.1.2
263a5f01 fix make completions for all POSIX shells
0a3be734 Update to gopkg.in/yaml.v3 v3.0.0
0ad7ec24 Updated skopeo logo with new artwork
014d47f3 [CI:DOCS] Pin actions to a full length commit SHA
d78bc827 shell completion: add completion for transports names
6c2a415f shell completion: add install instructions docs
9bed0a9e shell completion: add Makefile target
ebc5573e Stop calling gpgme-config
1ebb2520 Update c/image
9b4c1f15 Remove cgo_pthread_ordering_workaround.go
6863fe2d add completion command to generate shell completion scripts
3eca480c Bump github.com/docker/docker
149dea8d Bump github.com/containers/storage from 1.40.2 to 1.41.0
804f7c24 Avoid hard-coding the location of bash
e47765ed Config files live in /usr/local/etc on FreeBSD
13ceb93b Bump github.com/docker/docker
cd4607f9 Move to v1.8.1-dev
37727a45 Bump to v1.8.0
75d94e79 Bump ocicrypt to v1.1.4
737ed9c2 Vendor in containers/storage v1.40.2
3c286dd1 Vendor in containers/(common, storage, image)
b8b0e993 [CI:DOCS] install.md: include distro package info links
d9035db6 [CI:DOCS] install.md: remove Kubic package info for Ubuntu
916a395d Cirrus: Update to F36 w/ netavark+aardvark-dns
8960ab3c Update vendor of containers/(common,storage,image)
d9d3ceca Use filepath.WalkDir instead of filepath.Walk
23a46057 Extract four copies of the same loop into a function
4811c07d Update users of deprecated io/ioutil
4ef35a38 Add option to specify the identity for signing
38ae81fa Bump containers/image to include sign identity option
9b09b6eb delete non-existent option in the cmdline example
c233a6dc Add dry-run mode to skopeo-sync
e6802c4d Update skopeoimage/README.md that tags are v-prefixed
80871786 Bump to v1.7.1-dev
f45ae950 Release 1.7.0
3bc06242 Bump github.com/prometheus/client_golang to v1.11.1
89cd1951 Bump github.com/containers/common from 0.47.4 to 0.47.5
7f6b0e39 Bump github.com/containers/storage from 1.38.2 to 1.39.0
f6bf5746 Bump github.com/docker/docker
a9cc9b91 Improve the (skopeo delete) man page
ac7edc7d Bump github.com/containers/ocicrypt from 1.1.2 to 1.1.3
c819bc17 Update the command to install golint
6a2f38d6 Formally record that we require Go 1.15
2019b79c Use check.C.MkDir() instead of manual ioutil.TempDir() calls
f79cc8ae Update to Go 1.14 and revendor
ac4c291f Use assert.ErrorContains
5aaf3a9e Bump github.com/stretchr/testify from 1.7.0 to 1.7.1
bd524670 Simplify the proxy server a bit
693de29e Add various missing error handling
f44ee2f8 Remove assignments to an unused variable
a7190099 Rename "self" receiver
7ba56f3f Add support for docker-archive: to skopeo list-tags
ad3e8f40 Bump github.com/spf13/cobra from 1.3.0 to 1.4.0
0703ec6c Bump github.com/docker/docker
52002728 Update github.com/containerd/containerd
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Bumping docker-distribution to version v2.8.1-2-gdc5b207f, which comprises the following commits:
38018aeb Fix CVE-2022-28391 by bumping alpine from 3.15 to 3.16
96cc1fdb FIx typo
e744906f Update 2.8.1. release notes
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v20.10.17-2-g3949ff121e, which comprises the following commits:
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
6f3f2b6d08 update containerd binary to v1.6.6
b3bcb15da8 update containerd binary to v1.6.5
f55b030fa0 system: unbreak build for darwin
63ab12cd3a Port pkg/system/mknod.go to FreeBSD
081e538fbd vendor: libnetwork f6ccccb1c082a432c2a5814aaedaca56af33d9ea
8e9d647c01 [20.10] update golang to 1.17.11
87ead7fd2a vendor: hcsshim a11a2c44e8a4aa9d66314b1d759ef582df5ab5e8
27f8322324 vendor: libnetwork 2dab5620d4462865c6151e573b3e7fa5d3b8458b
829951ec19 docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
6cbe73bfc0 Rename Reservation to Reservations in the open API
d9ed3d7e28 update runc binary to v1.1.2
a15acb4bd6 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5f2e0b79ad [20.10] update golang to 1.17.10
Bumping libnetwork to version v0.7.0-dev.3-1835-gf6ccccb1, which comprises the following commits:
af0c46d8 Apply peformance tuning to new sandboxes also
23ffb31f Set ExternalPortReserved for dummy proxy
9b82e422 Bump hcsshim
9db86fb7 Only check if route overlaps routes with scope: LINK
Bumping docker-cli to version v20.10.17, which comprises the following commits:
7502d7e56 Fix dead external link
308624c3b fix: remove asterisk from docker command suggestions
de7d866b6 [20.10] update golang to 1.17.11
240e4b550 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5d4776bd9 [20.10] update golang to 1.17.10
49e9c2ae3 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
87a3ce269 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
1d8abed17 vendor: update x/sys to 134d130e
31dad66f9 [20.10] update golang to 1.17.9
80f673bf9 gofmt with go1.17
3d4cc8e69 [20.10] update remaining files to go1.17.8
30277a8f8 update go to 1.17.8
cfef3a7dc docs: deprecated: add entry for "fluent-async-connect" log-opt
53426025c [20.10] docs: reformat table for compatibility
573a66463 Describe privileged mode in terms of capabilities
cf0ab7ac4 [20.10] vendor: github.com/docker/distribution v2.8.1
d05fd4ffc [20.10] vendor: github.com/opencontainers/image-spec v1.0.2
870f13825 [20.10] vendor: github.com/docker/docker v20.10.14
198d6b872 [20.10] circleci: update buildx to v0.8.2
55a14ec85 [20.10] update remaining Dockerfiles to go 1.16.15
1f9a0df05 e2e: update docker-compose to 1.29.2
4ae338b33 docs: reference: remove trailing space to fix yaml formatting
6380142dd docs: fix (table) formatting, fix some broken links
82f422fcf docs: build: fix minor markdown and syntax issues
80fd77903 Update the list of log drivers
c3d4d623c Fix CMD --ignored-param1 example
2e82d11de docs: dockerd: fix broken link in blockquote area
738a6ee1c improve cp documentation with some illustration examples
246d96bb6 docs: unify "docker create" and "docker run" reference
2fd0f1705 docs: add missing documentation for --pull flag
5fa500000 Fix incorrect pointer inputs to `json.Unmarshal`
1e6a8ce2b Dockerfile: update xx to 1.1
6f7a931a2 [20.10] use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
91bab605f [20.10] vendor.conf: don't use git:// protocol
a282e0c5d [20.10] update to go 1.16.15 to address CVE-2022-24921
700364e30 Fix mistake with env var example in docker run docs
62d27c32f Update WORKDIR command information
c0e952cf0 Fix the (dead) link for docs for Dockerfile syntax reference
04104a04d Update dockerd.md
b721998b7 Fixing typo (his --> its)
4065e1246 format create.md table
f1002eb9f Fix typo
e97c7b240 added missing closing parenthese
aa7893763 Update stats.md add example json output
40fe0573a Update Ubuntu version number references in push.md
c9737e1c3 docs/daemon: replace deprecated '-g' option for '--data-root'
5c6723d08 Correct device syntax to --gpus
fd5fc61ec [20.10] Update Go to 1.16.14
3624019d8 [20.10] update Go to 1.16.13
f3ff8e6ad [20.10] vendor: compose-on-kubernetes v0.5.0 to remove github.com/golang/glog
ee1ac1b31 fix innocuous data-race when config.Load called in parallel
38dd744a1 [20.10] Update Go to 1.16.12
4de40a825 Update Go to 1.16.11
03fa8f92c Update Go to 1.16.10
9989fdbc4 Update most links in docs to use https by default
0e20c1fd2 Update Go to 1.16.9
1c0927a04 Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
82f9d5921 info: skip client-side warning about seccomp profile on API >= 1.42
adb01ca79 docs: some minor touch-ups in checkpoint reference
8260476a0 docs: remove trailing space to fix generated YAML format
bce2e1f95 docs: create.md: typo fix
44064f51c Fix typo in documentation - build.md
292779add Add doc for BUILDKIT_PROGRESS env var
f2e79b826 docs: use "console" code-hint for shell examples
fa46b9236 docs: rewrite reference docs for --stop-signal and --stop-timeout
400f81089 experimental: fix broken link to "checkpoint and restore" page
c72057c8d docs: move checkpoint/restore doc from experimental into reference
77db97d59 Use private network address for default-address-pools setting in daemon.json example
cbf0d2b7b docs: fix some broken anchors
d0014a86b docs: fix description of restart-delay to mention max (1 minute)
6c1c8b55a docs: fix search results by filterd is-official
44fdac11f Update Go to 1.16.8
061051c24 docs: add missing redirect, and remove /go/experimental redirect
2012fbf11 Update Go to 1.16.7
42d1c0275 registry: ensure default auth config has address
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v20.10.17-2-g3949ff121e, which comprises the following commits:
ff7feeac37 vendor: github.com/containerd/continuity v0.3.0
6f3f2b6d08 update containerd binary to v1.6.6
b3bcb15da8 update containerd binary to v1.6.5
f55b030fa0 system: unbreak build for darwin
63ab12cd3a Port pkg/system/mknod.go to FreeBSD
081e538fbd vendor: libnetwork f6ccccb1c082a432c2a5814aaedaca56af33d9ea
8e9d647c01 [20.10] update golang to 1.17.11
87ead7fd2a vendor: hcsshim a11a2c44e8a4aa9d66314b1d759ef582df5ab5e8
27f8322324 vendor: libnetwork 2dab5620d4462865c6151e573b3e7fa5d3b8458b
829951ec19 docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
6cbe73bfc0 Rename Reservation to Reservations in the open API
d9ed3d7e28 update runc binary to v1.1.2
a15acb4bd6 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5f2e0b79ad [20.10] update golang to 1.17.10
Bumping libnetwork to version v0.7.0-dev.3-1835-gf6ccccb1, which comprises the following commits:
af0c46d8 Apply peformance tuning to new sandboxes also
23ffb31f Set ExternalPortReserved for dummy proxy
9b82e422 Bump hcsshim
9db86fb7 Only check if route overlaps routes with scope: LINK
Bumping docker-cli to version v20.10.17, which comprises the following commits:
7502d7e56 Fix dead external link
308624c3b fix: remove asterisk from docker command suggestions
de7d866b6 [20.10] update golang to 1.17.11
240e4b550 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
5d4776bd9 [20.10] update golang to 1.17.10
49e9c2ae3 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
87a3ce269 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
1d8abed17 vendor: update x/sys to 134d130e
31dad66f9 [20.10] update golang to 1.17.9
80f673bf9 gofmt with go1.17
3d4cc8e69 [20.10] update remaining files to go1.17.8
30277a8f8 update go to 1.17.8
cfef3a7dc docs: deprecated: add entry for "fluent-async-connect" log-opt
53426025c [20.10] docs: reformat table for compatibility
573a66463 Describe privileged mode in terms of capabilities
cf0ab7ac4 [20.10] vendor: github.com/docker/distribution v2.8.1
d05fd4ffc [20.10] vendor: github.com/opencontainers/image-spec v1.0.2
870f13825 [20.10] vendor: github.com/docker/docker v20.10.14
198d6b872 [20.10] circleci: update buildx to v0.8.2
55a14ec85 [20.10] update remaining Dockerfiles to go 1.16.15
1f9a0df05 e2e: update docker-compose to 1.29.2
4ae338b33 docs: reference: remove trailing space to fix yaml formatting
6380142dd docs: fix (table) formatting, fix some broken links
82f422fcf docs: build: fix minor markdown and syntax issues
80fd77903 Update the list of log drivers
c3d4d623c Fix CMD --ignored-param1 example
2e82d11de docs: dockerd: fix broken link in blockquote area
738a6ee1c improve cp documentation with some illustration examples
246d96bb6 docs: unify "docker create" and "docker run" reference
2fd0f1705 docs: add missing documentation for --pull flag
5fa500000 Fix incorrect pointer inputs to `json.Unmarshal`
1e6a8ce2b Dockerfile: update xx to 1.1
6f7a931a2 [20.10] use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
91bab605f [20.10] vendor.conf: don't use git:// protocol
a282e0c5d [20.10] update to go 1.16.15 to address CVE-2022-24921
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-o to version v1.24.0-189-g78992d160, which comprises the following commits:
3e085ffc3 build(deps): bump github.com/containers/buildah from 1.26.1 to 1.26.2
4ca27d0b0 Remove enable_custom_shm_size
4149fa03e Add annotations to allow power management configuration
0f4d79209 Fix release notes pull behavior
44d42542f oci: unconditionally set as not stopping after a stop stops stopping
56b807510 container_server: drop StopContainerAndWait
b4ddab0e7 server: take container server Stop method
7cda39bb4 container server: drop duplicated Remove function
f03e563ec config: set version-file-persist to empty by default
935652c90 version: don't wipe if filename is empty
2e3b19475 bundle: always install runc
c57d3b05c scripts: install runc if not found in get script
6d729cd4d remove Vagrantfile
87a4e8eb7 Fix a link in install.md building section about dependencies
e8e523dda Retry release notes push if failed
ee80a2b9e Bump version to 1.25.0
c00962a51 build(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0
a2d1ca204 server: userns support
41f67c326 vendor, kubernetes: update to kubernetes-1.25.0-alpha.2
df5e39094 Fix release-notes tag determination
b068d17cf Upload release notes for each tag
66d33db6b Fix unit test coverage
f61332ed9 hostport: don't use unexported symbol
01a7c0276 server: use k8s.io/utils/clock
20ef6c73e update ubuntu releases
8a981fef4 Pin upstream node e2e test to latest `main`
7f0604ceb Verify SBOM for static binary bundle
489caa132 Use default token for stale bot
0a3bfc078 Switch to golang native error wrapping
b86d8c343 build(deps): bump github.com/stretchr/testify from 1.7.4 to 1.7.5
80d1d7908 Run more stale operations
da2dce1e1 chore: Set permissions for GitHub actions
c800d043b build(deps): bump github.com/urfave/cli/v2 from 2.10.2 to 2.10.3
e30ae00a1 Add stale bot workflow
863d1a334 cgmgr/systemd: don't recalculate cgroup path
d94e48924 build(deps): bump sigs.k8s.io/bom from 0.3.0-rc1 to 0.3.0-rc.2
8c7cc72e4 Generate SBOM for static binary bundle
26138ec52 build(deps): bump k8s.io/klog/v2 from 2.60.1 to 2.70.0
0cdf37c86 Verify signed artifacts via `get` script
fdb6c3b30 server: unify logging in resourcecleaner
896456bc8 server: move cleanup funcs closer to function that provisioned resource
49ad4b0ad build(deps): bump github.com/urfave/cli/v2 from 2.10.1 to 2.10.2
7b2475303 build(deps): bump github.com/stretchr/testify from 1.7.3 to 1.7.4
0f46b58cb Fix container status for HostToContainer propagation
99d86536e Fix docs validation
9f105d8f0 build(deps): bump github.com/stretchr/testify from 1.7.2 to 1.7.3
748fd5d2e build(deps): bump github.com/urfave/cli/v2 from 2.8.1 to 2.10.1
93fc6b72e build(deps): bump github.com/containers/podman/v4 from 4.1.0 to 4.1.1
491b03a30 Update cgroupfs cgroup manager
de8672f7e contrib/test/int/build/runc: rm build tags
0b3153d7d Bump runc to v1.1.3
a3171b395 Sign static binary bundle via cosign
704f9aeb6 dependencies: update conmon
333cc8988 contrib/test/integration: skip installing conmon via ansible
4b120cbef Fix lint CI
40df9c9ae Bump `go.opentelemetry.io/*` dependencies
06b6e86b2 Bump `containers/*` dependencies
67c18103e Cleanup: remove BuildContainerdBinaryName as it is not called anymore.
b480e8a3b Bump golang dependency on containerd
864733f77 build(deps): bump actions/checkout from 2 to 3
e2a32f36c bump ocicni to v0.4.0
63399460e build(deps): bump github.com/containers/ocicrypt from 1.1.3 to 1.1.5
e67e36753 build(deps): bump google.golang.org/grpc from 1.46.2 to 1.47.0
24d401919 Bump golang dependencies
f72969022 Fix unit tests
37c1a01fe drop use of deprecated package io/ioutil
8bdadc77c security: add 2022 audit report
79e404fa5 conmonmgr: query help text to see if it supports log-global-size-max
a4080bb34 add support for conmon log-global-size-max
b7f15ac3d oci: cap exec sync length
1e277b836 utils/RunUnderSystemdScope: fix wrt channel deadlock
03e4aa482 Bump cri-tools to v1.24.2
2fbf71963 test: set cri stats more idiomatically
efff3878c server: reduce object creation in List{Containers,PodSandboxes}
0cde0a6de update kubeadm init instructions
e5bb0c600 docs: update for CNI package change
62a14cf91 oci: reuse helper function to reduce duplication
9fea6e219 oci: kill children of container if it is in the host pid namespace
f6d963871 Add pause/unpause description to readme
35ca21623 Fix review issues
fa435f79c Use a default umask of `0o022`
6293c07b9 Fix it case failed
5d75cc24a Fix review issues
26432e631 changesinREADME
908111147 move 1.23 to 1.24 in README
85bcbe8d1 OWNERS: remove fgiudici
eb41d30e0 build(deps): bump actions/download-artifact from 2 to 3
c14faa62e build(deps): bump golangci/golangci-lint-action from 2 to 3
7fe39c7bc Add integration test for remove paused ctr
33997ae93 vendor: bump crypto package
8a090364d 1.When in paused state, stop contianer should unpause it 2.We should treat paused state as running, or kubelet will delete it and restart one
1e61f1318 build(deps): bump actions/setup-go from 2 to 3
c40fa5350 fix review issues
985c182a4 build(deps): bump google.golang.org/grpc from 1.43.0 to 1.46.2
cef56110d build(deps): bump actions/upload-artifact from 2 to 3
e932964fc build(deps): bump cachix/install-nix-action from 12 to 17
bf67bfd4f build(deps): bump actions/cache from 2 to 3
7db2b3b39 Try to force delete ctr when in paused state
0c1bf03fa chore: Included githubactions in the dependabot config
c657f4623 Fix some uses of Atoi
54d7da638 typo fix
2b8a7055c Typo fix
d4ec76bd4 Add CodeQL Github actions
ed53fa23b Use go 1.18 buildinfo for version output
21c8f6bde Bump third party dependencies
d68931ddb Run critest with conmonrs
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-o to version v1.24.1-18-gb0d2ef327, which comprises the following commits:
81ef20b38 Fix unit test coverage
7b4941478 Fix release-notes tag determination
0dde66a3c Upload release notes for each tag
29762438c Fix container status for HostToContainer propagation
2cf9cf9df bump ocicni to 0.4.0
5481d35e9 Fix unit tests
b0040ddd9 test: set cri stats more idiomatically
cf0037d1a utils/RunUnderSystemdScope: fix wrt channel deadlock
5b75a4763 oci: kill children of container if it is in the host pid namespace
489819e33 bump to v1.24.1
8acadd3f4 conmonmgr: query help text to see if it supports log-global-size-max
fc852b402 add support for conmon log-global-size-max
77f0429d9 oci: cap exec sync length
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.3-2-g1e7bb5b7, which comprises the following commits:
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
7219387e cgroups: systemd: skip adding device paths that don't exist
93d1807b libcontainer: relax getenv_int sanity check
8242c05d script/seccomp.sh: check tarball sha256
017cb29b Dockerfile,scripts/release: bump libseccomp to v2.5.4
51649a7d Allow mounting of /proc/sys/kernel/ns_last_pid
3a09da6b ci: drop docker layer caching from release job
8b93f9fb seccomp: enosys: always return -ENOSYS for setup(2) on s390(x)
fc2a8fe1 libct/cg/sd: check dbus.ErrClosed instead of isDbusError
d105e052 libct/seccomp/config: add missing KillThread, KillProcess
e4474ef8 [1.1] vendor: bump seccomp/libseccomp-golang to f33da4d
dc083b2b fix deprecated ActKill
bf1cd884 ci: use golangci-lint-action v3, GO_VERSION
1feafc31 ci: bump golangci-lint to v1.44
89f79ff0 libct: StartInitialization: fix %w related warning
3b7f2605 Format sources using gofumpt 0.2.1
eeac4e77 build(deps): bump actions/checkout from 2 to 3
cd7fa00d Vagrantfile.fedora: fix build wrt new git
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.3-2-g1e7bb5b7, which comprises the following commits:
eb1552a0 VERSION: back to development
6724737f VERSION: release 1.1.3
91fa032d ci: add basic checks for CHANGELOG.md
7219387e cgroups: systemd: skip adding device paths that don't exist
93d1807b libcontainer: relax getenv_int sanity check
8242c05d script/seccomp.sh: check tarball sha256
017cb29b Dockerfile,scripts/release: bump libseccomp to v2.5.4
51649a7d Allow mounting of /proc/sys/kernel/ns_last_pid
3a09da6b ci: drop docker layer caching from release job
8b93f9fb seccomp: enosys: always return -ENOSYS for setup(2) on s390(x)
fc2a8fe1 libct/cg/sd: check dbus.ErrClosed instead of isDbusError
d105e052 libct/seccomp/config: add missing KillThread, KillProcess
e4474ef8 [1.1] vendor: bump seccomp/libseccomp-golang to f33da4d
dc083b2b fix deprecated ActKill
bf1cd884 ci: use golangci-lint-action v3, GO_VERSION
1feafc31 ci: bump golangci-lint to v1.44
89f79ff0 libct: StartInitialization: fix %w related warning
3b7f2605 Format sources using gofumpt 0.2.1
eeac4e77 build(deps): bump actions/checkout from 2 to 3
cd7fa00d Vagrantfile.fedora: fix build wrt new git
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The major stacks have been tested against 5.19, so we add the
tracking .inc to indicate support.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
| |
oe-core has removed 5.10 from master, so we drop our tracking .inc
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
clang-based builds are still broken due to:
https://github.com/llvm/llvm-project/issues/53999
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
clang-based builds are still broken due to:
https://github.com/llvm/llvm-project/issues/53999
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
This will fix clang-based builds.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.6.6-10-g4e92d8e7e, which comprises the following commits:
37dfc5c9d [release/1.6] Fix WWW-Authenticate parsing
fa2016d58 [release/1.6] Downgrade MinGW to version 10.2.0
99c56d217 ctr: fix label args used in NewContainer
51de785f8 [release/1.6] Make building static binaries simpler
2ea4e6348 update runc binary to v1.1.3
61213742a Prepare release notes for v1.6.6
f92068350 Implicitly discard the input to drain the reader
2eb67213b [release/1.6] Limit the response size of ExecSync
185e87275 Prepare release notes for v1.6.5
5c9c83d3e [release/1.6] update golang to 1.17.11
fdcdc27bc update go-cni/for cni update fixing plugins that don't respond with version
e33b9e709 archive: add human-readable hint to Lchown error
3bb5a9d19 config: improve config v1 deprecation message
6eff5b6c0 [release/1.6] go.mod: Bump hcsshim to 0.9.3
f1d2d9260 [release/1.6] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
9f99be51b [release/1.6] update golang to 1.17.10
246a1b42e vendor: github.com/opencontainers/runc v1.1.2
43717e03a update runc binary to v1.1.2
82a77be2d reverts removal of parallel run from critest
06bdfeb67 Allow git commands in Vagrantfile
70839a344 Bug fix for mount path handling
1520bae0f update critools to v1.24
0d1d2953b Prepare release notes for 1.6.4
42d691fe6 Bump opencontainers/selinux from 1.10.0 to 1.10.1
e9f22e008 Update go-cni to v1.1.5
be4909e95 cri: close fifos when container is deleted
baa386dc0 Prepare release notes for v1.6.3
e8da82adc tracing: fix panic on startup when configured
1764ea9a2 CRI: improve image pulling performance
9cd76d465 [release/1.6] update golang to 1.17.9
c09cc1242 check for duplicate nspath possibilities
fe6ba62ce metrics/cgroups: fix deadlock issue in Add during Collect
8b81a7843 [release/1.6] go.mod: update image-spec to merge-commit of v1 into main
f2ba2041b update runc binary to v1.1.1
b736b4dab go.mod: github.com/opencontainers/runc v1.1.1
72f1e58c7 CI: add Rocky Linux 8
7ede40c5c [release/1.6] vendor: github.com/containerd/imgcrypt v1.1.4
5538be6cf cgroup2: monitor OOMKill instead of OOM to prevent missing container OOM events
da35c19da Test turning off golang CI lint cache
a0213573b Add nolint:staticcheck to platform-specific calls
ad0036ed6 Update prometheus client vendor
c7bbf316f Mount devmapper xfs file system with "nouuid" option.
a1de89c3e Make the temp mount as ready only in container WithVolumes
82a12edf2 moving up to go-cni v1.1.4
28b44826b native: fix deadlock from leaving transactions open
8461dd6e5 Prepare release notes for v1.6.2
91800c4e9 Add static checks to shim for Windows
ca51d7f85 Update go.mod go version
765df6609 [release/1.6] remove empty go mod to allow building for go 1.18
e9af80859 Fix the Inheritable capability defaults.
7c929318a Update TestNormalize to only test Windows
06985e7d0 Upgrade golangci-lint and its GitHub Action
b13d3e05c cri: relax test for system without hugetlb
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Our "canary" recipe for colorama picks up potentially destabilizing
changes in meta-python, but is kept in sync to avoid autombuilder
issues. If we can't stay in sync, we'll fork the recipe and change
our dependencies to match.
There has been a change in the meta-oe version, around checksums
and native integration. Both those changes are fine, so we update
to match.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The Xen image recipe provides a default WKS_FILE for x86 builds to enable
booting the image either in qemu or directly on hardware. Add settings
for WKS_FILE_DEFAULT_DEPENDS that specify the wic image build
dependencies, which are lower than the defaults used without it.
This change reduces the amount of build resources required for CI of
this image and images that are derived from it.
Since WKS_FILE is specified separately for x86-64 and qemux86-64
overrides, do the same for WKS_FILE_DEFAULT_DEPENDS, even though the
dependencies for the two separate WKS_FILEs are currently the same.
Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
patch a33188f [podman: Fix host contamination] appears to have
introduced fuzz/failures. Which strangely wasn't picked up on
merge testing.
We refresh the patch to fix the issues.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Add an optional parameter that allows to override the stop
signal that is used.
Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Pascal Bach <pascal.bach@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
This support is disabled by default and exposed via PACKAGECONFIG.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Podman can run in via a docker symlink emulating docker commands. By
default this generates a runtime warning. This change silences it via
the provided interface.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
slirp4netns uses a TAP device to connect to the internet in an
unprivileged way. Without the required kernel support (TAP/TUN),
slirp4netns will fail at runtime.
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping lopper to latest, which comprises the following commits:
9159040 lopper: assists: baremetallinker_xlnx: Fix race condition in memory domain handling
38d18ca lopper/fdt: add /memreserve/ to preprocessing routines
33ee8e6 sanity: add /memreserve/ test
c6431bf fdt: fix dtb handling of common prefix nodes
211c902 lopper: add support for /memreserve/
4545eed base: add powerdomains to default phandle meta data
bc95bc2 tree: handle variable sized phandle properties
69d8849 openamp: Update YAML handling to match spec
578de1d lopper: assists: bmcmake_metadata_xlnx: Fix race condition in the assist file
14d2aa3 tree: ensure that phandle is initialized before export
a6b38e8 tree: make label generation more robust
9faf923 extract-xen: add [extract-xen] prefix, and write xen,passthrough
00c14d5 assists: add imagebuilder wrapper assist
d879eaf extract: use lopper.write for export of trees
ca80fbb extract: improve xen passthrough configuration
791f0f5 lopper.py: allow execution from any directory
0c62984 lops: fix comment style
3598d54 lopper/tree: handle invalid last phandle
697aa62 assists: create generic tree extraction and xen-processing assists
5ae6650 lopper/tree: improve phandle and node operations
5a230a5 lopper/assists: allow chained command line assists
bbb92ee lopper/tree: make import/export more robust
b8aeb54 lopper/tree: improve node iteration and resolution
692cbc9 lopper: lops: lop-domain-linux-a53-prune: Remove unneeded nodes for Linux boot
cd25873 lopper: assists: baremetalconfig_xlnx: Fix KeyError exception
58dd00c lopper: assists: baremetal_xparameters_xlnx: Fix KeyError exception
01ae242 openamp: xlnx: Update RPMsg-kernel mailbox information
fbc4329 lopper: assists: petalinuxconfig_xlnx: Fix indentation and width params
5c3074b lopper: assists: petalinuxconfig_xlnx: Add support for additional meta-data
cc3de25 lopper: assists: breametallinker: fix race condition in memory node handling
7723fed lopper: lops: a72 linux: remove axi intc node
743432e openamp: xlnx: remove TCM compat strings
53746be lopper: lops: lop-domain-linux-a53-prune: remove amba_pl pruning
0d56f35 lopper: lops: lop-domain-linux-a72: move prune operations to separate lop
fdbbe7b openamp: xlnx: add support for Versal platform
1839bdb openamp: xlnx: add 'power-domain' prop for Xilinx R5 remoteproc driver SRAMs
14d1caf lopper: lops: lop-domain-linux-a53: move prune operations to separate lop
7169df0 openamp: xlnx: remove dead code
ec9fdce openamp: xlnx: remove definitions node
07f48d0 openamp: xlnx: Add text file for OpenAMP Channel information
637863f openamp: xlnx: update IPI for mappings for ZU+ platform
1b41e52 openamp: xlnx: rpmsg: generate rpmsg device tree nodes
a643273 openamp: xlnx: remoteproc: generate remoteproc device tree nodes
a833729 openamp: fix bug for domain-to-domain subnodes for openamp relations.
ea6d8e1 lops: openamp: describe OpenAMP relation properties as phandles
40c2070 openamp: translate YAML Remoteproc carveouts to DTS
fda40d8 openamp: translate YAML RPMsg carveouts to DTS
9d938f7 openamp: xlnx: parse pre-existing nodes in YAML
eafb17a lopper: process .dtsi input files the same as .dts
ce4638a lopper: assists: petalinuxconfig_xlnx: Add assist file for generating petalinux tool required configuration
cfa0593 fdt: make node prefix lookups more robust
2f3f2d2 lopper/format: allow tabs to be used when writing dts
c7b22ce lopper/subsystem: update access to latest specification
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Nothing in Xen respects --enable-sdl, and nothing in Xen links to libSDL,
so this PACKAGECONFIG is obsolete.
It looks like the last user of SDL in Xen was removed in "Remove
internal tools/ioemu tree"[1] back in 2008.
[1] xen 19dc3860dcfde9bc4ec4ef35bb1337e13276f630
Signed-off-by: Ross Burton <ross.burton@arm.com>
Reviewed-by: Christopher Clark <christopher.w.clark@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
To fix warnings when the buildpaths QA test is enabled, pass the file
and debug prefix map options that were previously supplied only for
reproducible builds, adding them to the DEBUG_PREFIX_MAP variable
and supplying that to CC.
Testing indicates that passing the prefix maps needs to be via CC
rather than the EXTRA_CFLAGS_XEN_CORE/TOOLS variables.
Signed-off-by: Christopher Clark <christopher.w.clark@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
The base inittab recipe is creating inittab entries for consoles listed
in SERIAL_CONSOLES.
For qemu, this contains "115200,hvc0" so an entry is created in inittab
for it.
Prevent to create a second entry if hvc0 is present in SERIAL_CONSOLES.
On qemuarm, this solves issues with the console when starting on top of
Xen as dom0.
Signed-off-by: Bertrand Marquis <bertrand.marquis@arm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Keeping in sync with meta-python. We mainatain our own version of
the recipe, as docker-compose and others have been sensitive to
version bumps in the past.
We pick up the following commits:
f8ab4fd version bump 0.4.5
f411cb9 Release checklist: no need to rebuild
372c486 Omit demo06 from demos.sh
0f5c36f Further tweaks made to support the release
c29f133 tweaks for build process
6105ab3 Mention fixed ValueError at exit in CHANGELOG
e866230 Release checklist includes '.candidate' releases
35e9a91 Add methods to ``StreamWrapper`` to allow better pickling
8ba396b Replace deprecated pypyX with pypy-X.Y
8a364bd Added test
788106f Detached stream fix
7899683 Add light colors in README
912fe9b Add support for Python 3.10
53e0db3 Update README-hacking.md
e8e311b Update README-hacking.md
69f4644 Replace Travis CI with GitHub Actions
5ed1070 README suggests not using Colorama to print colors
536e966 fixup! Fix typo discovered by codespell
1d92c3a .
16847d7 Make bandit, codespell, and pytest mandatory tests
f307a6d GitHub Action to lint Python code
402d236 Note that escapes are stripped out for redirected outputs.
eea3a58 Added new demo
f690a2b Use ASCII decoding explicitly in setup.py
0275556 Add support and testing for PyPy3
293d782 Remove discussion of unmaintained nose for running tests
8f0587b Remove unused test imports and utils
d8a0836 Add support for Python 3.9
9946cfb Reference my blog p[ost about annotated tags
9b770a0 README-hacking on tagging
86bfecd Add --extra-index-url to test-release scripts
938f5c5 Add Makefile docstring to test-release
e0a314e Release scripts now include sdist.
14a21e9 README mentions Pypy compatibility.
d8a7ff0 fix README-hacking typo
99765af Fix README link markup
d080175 Fix README link markup
5a393b2 Move contributing info to README-hacking.md
f7efb11 Fix Makefile PHONY declaration
759d5c7 Bump to version 0.4.5-pre
b7596ad Fix Changelog markup
24721c0 Belated CHANGELOG entries for 0.4.4 release
688f6cc Unicode README chars that don't render on PyPI
dc8460c Make tests pass on all OS.
faafef8 Add light colors in README
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The project's internal Makefile uses BUILDFLAGS variable to pass
arguments to `go build` while Yocto/OE defines it as GOBUILDFLAGS. Add a
patch to align this and avoid using host headers in which case, a musl
build will fail similarly to:
| [...]ld: /tmp/go-link-3172010154/000015.o: in function `vfprintf':
| /usr/include/x86_64-linux-gnu/bits/stdio2.h:130: undefined reference to `__vfprintf_chk'
| [...]ld: /tmp/go-link-3172010154/000016.o: in function `fprintf':
| /usr/include/x86_64-linux-gnu/bits/stdio2.h:100: undefined reference to `__fprintf_chk'
| collect2: error: ld returned 1 exit status
Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The redhat versions work with out modification.
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Just as with systemd, the build needs the dev manager installed
as a dependancy
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
buildah is a command line tool, to be installed and run on target,
that can be used to:
- create a working container, either from scratch or using an image
as a starting point
- create an image, either from a working container or via the
instructions in a Dockerfile
- images can be built in either the OCI image format or the
traditional upstream docker image format
- mount a working container's root filesystem for manipulation
- unmount a working container's root filesystem
- use the updated contents of a container's root filesystem as a
filesystem layer to create a new image
- delete a working container or an image
- rename a local container
Testing:
Setup the build directory:
$ . oe-init-build-env <build_dir>
Add to local.conf:
IMAGE_INSTALL:append = " buildah kernel-modules"
KERNEL_FEATURES += "features/overlayfs/overlayfs.cfgi \
features/netfilter/netfilter.scc \
features/lxc/lxc-enable.scc"
IMAGE_ROOTFS_EXTRA_SPACE = "5242880"
Build image:
$ bitbake core-image-minimal
Run the image:
$ runqemu nographic kvm qemuparams="-m 4096"
On target:
Pull an image:
> cnt=$(buildah from fedora)
Or build from Dockerfile
> buildah bud -t <image_name>:<tag> .
Mount the image:
> mnt=$(buildah mount ${cnt})
Install packages on the container rootfs:
> dnf install --installroot $mnt <packages_to_install> -y
Copy local files to the container:
> buildah copy $cnt <local_file> <dest_on_container>
Save the changes to an image
> buildah commit --format docker $cnt <name>:<tag>
Run the image using buildah:
> buildah run $cnt /bin/sh
Or using docker:
> docker run -it <name>:<tag>
Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Use the lower case and remove the '.git' suffix to sync with other
go-logurs SRC_URIs in nerdctl and k3s recipes.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Adjust the GOROOT setting as directory specified by the original
one does not exist.
The CGO_CFLAGS and CGO_LDFLAGS should use target flags instead
of the nativesdk ones.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Adjust the GOROOT setting as directory specified by the original
one does not exist.
The CGO_CFLAGS and CGO_LDFLAGS should use target flags instead
of the nativesdk ones.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Adjust the GOROOT setting as directory specified by the original
one does not exist.
The CGO_CFLAGS and CGO_LDFLAGS should use target flags instead
of the nativesdk ones.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Adjust the GOROOT setting as directory specified by the original
one does not exist.
The CGO_CFLAGS and CGO_LDFLAGS should use target flags instead
of the nativesdk ones.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
